picnoir
/
Systemd
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Systemd/src/libsystemd-network/network-internal.c

838 lines
25 KiB
C
Raw Normal View History

Add SPDX license identifiers to source files under the LGPL This follows what the kernel is doing, c.f. https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5fd54ace4721fc5ce2bb5aef6318fcf17f421460.
2017-11-18 17:09:20 +01:00
/* SPDX-License-Identifier: LGPL-2.1+ */
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
net-util: add inet address/family parsing
2013-11-09 22:19:42 +01:00
#include <arpa/inet.h>
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 22:58:24 +02:00
#include <linux/if.h>
#include <netinet/ether.h>
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
log: minimize includes in log.h log.h really should only include the bare minimum of other headers, as it is really pulled into pretty much everything else and already in itself one of the most basic pieces of code we have. Let's hence drop inclusion of: 1. sd-id128.h because it's entirely unneeded in current log.h 2. errno.h, dito. 3. sys/signalfd.h which we can replace by a simple struct forward declaration 4. process-util.h which was needed for getpid_cached() which we now hide in a funciton log_emergency_level() instead, which nicely abstracts the details away. 5. sys/socket.h which was needed for struct iovec, but a simple struct forward declaration suffices for that too. Ultimately this actually makes our source tree larger (since users of the functionality above must now include it themselves, log.h won't do that for them), but I think it helps to untangle our web of includes a tiny bit. (Background: I'd like to isolate the generic bits of src/basic/ enough so that we can do a git submodule import into casync for it)
2018-01-11 00:39:12 +01:00
#include "sd-id128.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 22:58:24 +02:00
#include "sd-ndisc.h"
util-lib: split out allocation calls into alloc-util.[ch]
2015-10-27 03:01:06 +01:00
#include "alloc-util.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 22:58:24 +02:00
#include "condition.h"
#include "conf-parser.h"
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
#include "device-util.h"
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
#include "dhcp-lease-internal.h"
network,udev: add Property= setting in [Match] section Closes #5665.
2019-06-22 18:44:13 +02:00
#include "env-util.h"
network: fix wrong include of source file "ether-addr-util.c" (#3402) Fixes: 9ed8b06c9be4a5efae432d5cf4b1c47d03e6f107
2016-05-31 13:00:54 +02:00
#include "ether-addr-util.h"
tree-wide: sort includes Sort the includes accoding to the new coding style.
2015-11-16 22:09:36 +01:00
#include "hexdecoct.h"
net-config: start split out matching and parsing logic Move this to src/share/net-util.c, so it can be used elsewhere.
2013-11-02 02:13:48 +01:00
#include "log.h"
util-lib: split string parsing related calls from util.[ch] into parse-util.[ch]
2015-10-26 16:18:16 +01:00
#include "network-internal.h"
#include "parse-util.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 22:58:24 +02:00
#include "siphash24.h"
tree-wide: port more code to use ifname_valid()
2016-05-06 21:20:59 +02:00
#include "socket-util.h"
network: support matching based on wifi interfece type
2019-10-25 09:29:23 +02:00
#include "string-table.h"
util-lib: split our string related calls from util.[ch] into its own file string-util.[ch] There are more than enough calls doing string manipulations to deserve its own files, hence do something about it. This patch also sorts the #include blocks of all files that needed to be updated, according to the sorting suggestions from CODING_STYLE. Since pretty much every file needs our string manipulation functions this effectively means that most files have sorted #include blocks now. Also touches a few unrelated include files.
2015-10-24 22:58:24 +02:00
#include "string-util.h"
#include "strv.h"
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
#include "utf8.h"
udev: link-config - use new0 instead of calloc
2013-10-29 15:59:45 +01:00
#include "util.h"
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
libsystemd-network: rename net_get_name() to net_get_name_persistent() This reflect its role better. (I didn't use …_persistent_name(), because which name is actually used depends on the policy. So it's better not to make this sound like it returns *the* persistent name.)
2019-06-17 13:38:40 +02:00
const char *net_get_name_persistent(sd_device *device) {
networkd: monopolize in_addr utility functions in shared/in-addr-util.h Primarily, this means we get rid of net_parse_inaddr(), and replace it everywhere with in_addr_from_string() and in_addr_from_string_auto(). These functions do not clobber the callers arguments on failure, which is more close to our usual coding style.
2014-08-11 22:44:51 +02:00
const char *name, *field;
network-internal: split out net_get_name()
2014-06-19 14:39:05 +02:00
assert(device);
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
/* fetch some persistent data unique (on this machine) to this device */
network: replace udev_device by sd_device
2018-08-22 07:30:49 +02:00
FOREACH_STRING(field, "ID_NET_NAME_ONBOARD", "ID_NET_NAME_SLOT", "ID_NET_NAME_PATH", "ID_NET_NAME_MAC")
if (sd_device_get_property_value(device, field, &name) >= 0)
networkd: monopolize in_addr utility functions in shared/in-addr-util.h Primarily, this means we get rid of net_parse_inaddr(), and replace it everywhere with in_addr_from_string() and in_addr_from_string_auto(). These functions do not clobber the callers arguments on failure, which is more close to our usual coding style.
2014-08-11 22:44:51 +02:00
return name;
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
networkd: monopolize in_addr utility functions in shared/in-addr-util.h Primarily, this means we get rid of net_parse_inaddr(), and replace it everywhere with in_addr_from_string() and in_addr_from_string_auto(). These functions do not clobber the callers arguments on failure, which is more close to our usual coding style.
2014-08-11 22:44:51 +02:00
return NULL;
network-internal: split out net_get_name()
2014-06-19 14:39:05 +02:00
}
#define HASH_KEY SD_ID128_MAKE(d3,1e,48,fa,90,fe,4b,4c,9d,af,d5,d7,a1,b1,2e,8a)
udev: introduce NAMING_STABLE_VIRTUAL_MACS (retroactively) This is for 6d3646406560. It turns out that this is causing more problems than expected. Let's retroactively introduce naming scheme v241 to conditionalize this change. Follow-up for #12792 and 6d36464065601f7. See also https://bugzilla.suse.com/show_bug.cgi?id=1136600. $ SYSTEMD_LOG_LEVEL=debug NET_NAMING_SCHEME=v240 build/udevadm test-builtin net_setup_link /sys/class/net/br11 $ SYSTEMD_LOG_LEVEL=debug NET_NAMING_SCHEME=v241 build/udevadm test-builtin net_setup_link /sys/class/net/br11 ... @@ -20,11 +20,13 @@ link_config: could not set ethtool features for br11 Could not set offload features of br11: Operation not permitted br11: Device has name_assign_type=3 -Using interface naming scheme 'v240'. +Using interface naming scheme 'v241'. br11: Policy *keep*: keeping existing userspace name br11: Device has addr_assign_type=1 -br11: No stable identifying information found -br11: Could not generate persistent MAC: No data available +br11: Using "br11" as stable identifying information +br11: Using generated persistent MAC address +Could not set Alias=, MACAddress= or MTU= on br11: Operation not permitted +br11: Could not apply link config, ignoring: Operation not permitted Unload module index Unloaded link configuration context. ID_NET_DRIVER=bridge
2019-06-17 09:42:46 +02:00
int net_get_unique_predictable_data(sd_device *device, bool use_sysname, uint64_t *result) {
network-internal: split out net_get_name()
2014-06-19 14:39:05 +02:00
size_t l, sz = 0;
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
const char *name;
network-internal: split out net_get_name()
2014-06-19 14:39:05 +02:00
int r;
uint8_t *v;
assert(device);
libsystemd-network: rename net_get_name() to net_get_name_persistent() This reflect its role better. (I didn't use …_persistent_name(), because which name is actually used depends on the policy. So it's better not to make this sound like it returns *the* persistent name.)
2019-06-17 13:38:40 +02:00
/* net_get_name_persistent() will return one of the device names based on stable information about
* the device. If this is not available, we fall back to using the actual device name. */
name = net_get_name_persistent(device);
udev: introduce NAMING_STABLE_VIRTUAL_MACS (retroactively) This is for 6d3646406560. It turns out that this is causing more problems than expected. Let's retroactively introduce naming scheme v241 to conditionalize this change. Follow-up for #12792 and 6d36464065601f7. See also https://bugzilla.suse.com/show_bug.cgi?id=1136600. $ SYSTEMD_LOG_LEVEL=debug NET_NAMING_SCHEME=v240 build/udevadm test-builtin net_setup_link /sys/class/net/br11 $ SYSTEMD_LOG_LEVEL=debug NET_NAMING_SCHEME=v241 build/udevadm test-builtin net_setup_link /sys/class/net/br11 ... @@ -20,11 +20,13 @@ link_config: could not set ethtool features for br11 Could not set offload features of br11: Operation not permitted br11: Device has name_assign_type=3 -Using interface naming scheme 'v240'. +Using interface naming scheme 'v241'. br11: Policy *keep*: keeping existing userspace name br11: Device has addr_assign_type=1 -br11: No stable identifying information found -br11: Could not generate persistent MAC: No data available +br11: Using "br11" as stable identifying information +br11: Using generated persistent MAC address +Could not set Alias=, MACAddress= or MTU= on br11: Operation not permitted +br11: Could not apply link config, ignoring: Operation not permitted Unload module index Unloaded link configuration context. ID_NET_DRIVER=bridge
2019-06-17 09:42:46 +02:00
if (!name && use_sysname)
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
(void) sd_device_get_sysname(device, &name);
if (!name)
return log_device_debug_errno(device, SYNTHETIC_ERRNO(ENODATA),
"No stable identifying information found");
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
log_device_debug(device, "Using \"%s\" as stable identifying information", name);
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
l = strlen(name);
sz = sizeof(sd_id128_t) + l;
tree-wide: use newa() instead of alloca() wherever we can Typesafety is nice. And this way we can take benefit of the new size assert() the previous commit added.
2019-01-26 15:52:18 +01:00
v = newa(uint8_t, sz);
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
/* Fetch some persistent data unique to this machine */
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
r = sd_id128_get_machine((sd_id128_t*) v);
if (r < 0)
return r;
memcpy(v + sizeof(sd_id128_t), name, l);
udev,networkd: use the interface name as fallback basis for MAC and IPv4LL seed Fixes #3374. The problem is that we set MACPolicy=persistent (i.e. we would like to generate persistent MAC addresses for interfaces which don't have a fixed MAC address), but various virtual interfaces including bridges, tun/tap, bonds, etc., do not not have the necessary ID_NET_NAME_* attributes and udev would not assing the address and warn: Could not generate persistent MAC address for $name: No such file or directory Basic requirements which I think a solution for this needs to satisfy: 1. No changes to MAC address generation for those cases which are currently handled successfully. This means that net_get_unique_predictable_data() must keep returning the same answer, which in turn means net_get_name() must keep returning the same answer. We can only add more things we look at with lower priority so that we start to cover cases which were not covered before. 2. Like 1, but for IPvLL seed and DHCP IAD. This is less important, but "nice to have". 3. Keep MACPolicy=persistent. If people don't want it, they can always apply local configuration, but in general stable MACs are a good thing. I have never seen anyone complain about that. == Various approaches that have been proposed === https://github.com/systemd/systemd/issues/3374#issuecomment-223753264 (tomty89) if !ID_BUS and INTERFACE, use INTERFACE I think this almost does the good thing, but I don't see the reason to reject ID_BUS (i.e. physical hardware). Stable MACs are very useful for physical hardware that has no physical MAC. === https://github.com/systemd/systemd/issues/3374#issuecomment-224733069 (teg) if (should_rename(device, true)) This means looking at name_assign_type. In particular for NET_NAME_USER should_rename(..., true) returns true. It only returns false for NET_NAME_PREDICTABLE. So this would cover stuff like br0, bond0, etc, but would not cover lo and other devices with predictable names. That doesn't make much sense. But did teg mean should_rename() or !should_rename()? === https://github.com/systemd/systemd/issues/3374#issuecomment-234628502 (tomty89): + if (!should_rename(device, true)) + return udev_device_get_sysname(device) This covers only devices with NET_NAME_PREDICTABLE. Since the problem applies as much to bridges and such, this isn't neough. === https://github.com/systemd/systemd/issues/3374#issuecomment-281745967 (grafi-tt) + /* if the machine doesn't provide data about the device, use the ifname specified by userspace + * (this is the case when the device is virtual, e.g., bridge or bond) */ + s = udev_device_get_sysattr_value(device, "name_assign_type"); + if (s && safe_atou(s, &type) >= 0 && type == NET_NAME_USER) + return udev_device_get_sysname(device); This does not cover bond0, vnet0, tun/tap and similar. grafi-tt also proposes patching the kernel, but *not* setting name_assign_type seems intentional in those cases, because the device name is a result of enumeration, not set by the userspace. === https://github.com/systemd/systemd/issues/3374#issuecomment-288882355 (tomty89) (also PR #11372) - MACAddressPolicy=persistent This break requirement 3. above. It would solve the immediate problem, but I think the disruption is too big. === This patch This patch means that we will set a "stable" MAC for pretty much any virtual device by default, where "stable" means keyed off the machine-id and interface name. It seems like a big change, but we already did this for most physical devices. Doing it also for virtual devices doesn't seem like a big issue. It will make the setup and monitoring of virtualized networks slightly nicer. I don't think anyone is depending on having the MAC address changed when those devices are destoryed and recreated. If they do, they'd have to change MACAddressPolicy=. == Implementation net_get_name() is called from dhcp_ident_set_iaid() so I didn't change net_get_name() like in grafi-tt's patch, but net_get_unique_predictable_data(). net_get_unique_predictable_data() is called from get_mac() in link-config.c and sd_ipv4ll_set_address_seed(), so both of those code paths are affected and will now get data in some cases where they errored out previously. The return code is changed to -ENODATA since that gives a nicer error string.
2019-01-10 16:23:49 +01:00
/* Let's hash the machine ID plus the device name. We use
* a fixed, but originally randomly created hash key here. */
siphash24: let siphash24_finalize() and siphash24() return the result directly Rather than passing a pointer to return the result, return it directly from the function calls. Also, return the result in native endianess, and let the callers care about the conversion. For hash tables and bloom filters, we don't care, but in order to keep MAC addresses and DHCP client IDs stable, we explicitly convert to LE.
2015-11-16 23:17:52 +01:00
*result = htole64(siphash24(v, sz, HASH_KEY.bytes));
sd-ipv4ll/networkd: generate predictable addresses Increase the chance of using the same link local address between reboots. The pseudo random sequence of addresses we attempt is now seeded with data that is very likely to stay the same between reboots, but at the same time be unique to the specific machine/nic. First we try to use the ID_NET_NAME_* data from the udev db combined with the machin-id, which is guaranteed to be unique and persistent, if available. If that is not possible (e.g., in containers where we don't have access to the udev db) we fallback to using the MAC address of the interface, which is guaranteed to be unique, and likely to be persistent. [tomegun: three minor changes: - don't expose HASH_KEY in the siphash24 header - get rid of some compile-warnings (and some casts at the same time), by using uint8_t[8] rather than uint64_t in the api - added commit message]
2014-03-21 19:23:35 +01:00
return 0;
}
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
static bool net_condition_test_strv(char * const *patterns, const char *string) {
char * const *p;
bool match = false, has_positive_rule = false;
if (strv_isempty(patterns))
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
return true;
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
STRV_FOREACH(p, patterns) {
const char *q = *p;
bool invert;
invert = *q == '!';
q += invert;
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (!invert)
has_positive_rule = true;
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (string && fnmatch(q, string, 0) == 0) {
if (invert)
return false;
else
match = true;
}
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
}
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
return has_positive_rule ? match : true;
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
}
network,udev: add Property= setting in [Match] section Closes #5665.
2019-06-22 18:44:13 +02:00
static int net_condition_test_property(char * const *match_property, sd_device *device) {
char * const *p;
if (strv_isempty(match_property))
return true;
STRV_FOREACH(p, match_property) {
_cleanup_free_ char *key = NULL;
const char *val, *dev_val;
bool invert, v;
invert = **p == '!';
val = strchr(*p + invert, '=');
if (!val)
return -EINVAL;
key = strndup(*p + invert, val - *p - invert);
if (!key)
return -ENOMEM;
val++;
v = device &&
sd_device_get_property_value(device, key, &dev_val) >= 0 &&
fnmatch(val, dev_val, 0) == 0;
if (invert ? v : !v)
return false;
}
return true;
}
network: support matching based on wifi interfece type
2019-10-25 09:29:23 +02:00
static const char *const wifi_iftype_table[NL80211_IFTYPE_MAX+1] = {
[NL80211_IFTYPE_ADHOC] = "ad-hoc",
[NL80211_IFTYPE_STATION] = "station",
[NL80211_IFTYPE_AP] = "ap",
[NL80211_IFTYPE_AP_VLAN] = "ap-vlan",
[NL80211_IFTYPE_WDS] = "wds",
[NL80211_IFTYPE_MONITOR] = "monitor",
[NL80211_IFTYPE_MESH_POINT] = "mesh-point",
[NL80211_IFTYPE_P2P_CLIENT] = "p2p-client",
[NL80211_IFTYPE_P2P_GO] = "p2p-go",
[NL80211_IFTYPE_P2P_DEVICE] = "p2p-device",
[NL80211_IFTYPE_OCB] = "ocb",
[NL80211_IFTYPE_NAN] = "nan",
};
DEFINE_PRIVATE_STRING_TABLE_LOOKUP_TO_STRING(wifi_iftype, enum nl80211_iftype);
network,udev: make MACAddress= in [Match] section take multiple MAC addresses
2018-05-09 04:59:18 +02:00
bool net_match_config(Set *match_mac,
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
char * const *match_paths,
char * const *match_drivers,
char * const *match_types,
char * const *match_names,
network,udev: add Property= setting in [Match] section Closes #5665.
2019-06-22 18:44:13 +02:00
char * const *match_property,
network: support matching based on wifi interfece type
2019-10-25 09:29:23 +02:00
char * const *match_wifi_iftype,
network: support matching based on wifi SSID
2019-07-24 07:46:55 +02:00
char * const *match_ssid,
network: add support matching based on BSSID=
2019-07-24 08:32:24 +02:00
Set *match_bssid,
network,udev: make net_match_config() take sd_device
2019-06-22 18:08:51 +02:00
sd_device *device,
networkd: tie links to rtnl rather than udev This essentially swaps the roles of rtnl and udev in networkd. After this change libudev is only used for waiting for udev to initialize devices and to get udev-specific information needed for some [Match] attributes. This in particular simplifies the code in containers where udev is not really useful, but also simplifies things and reduces round-trips in the non-container case.
2014-04-15 14:21:44 +02:00
const struct ether_addr *dev_mac,
network: support matching based on wifi SSID
2019-07-24 07:46:55 +02:00
const char *dev_name,
network: support matching based on wifi interfece type
2019-10-25 09:29:23 +02:00
enum nl80211_iftype wifi_iftype,
network: add support matching based on BSSID=
2019-07-24 08:32:24 +02:00
const char *ssid,
const struct ether_addr *bssid) {
net-config: start split out matching and parsing logic Move this to src/share/net-util.c, so it can be used elsewhere.
2013-11-02 02:13:48 +01:00
network,udev: make net_match_config() take sd_device
2019-06-22 18:08:51 +02:00
const char *dev_path = NULL, *dev_driver = NULL, *dev_type = NULL, *mac_str;
if (device) {
(void) sd_device_get_property_value(device, "ID_PATH", &dev_path);
(void) sd_device_get_property_value(device, "ID_NET_DRIVER", &dev_driver);
(void) sd_device_get_devtype(device, &dev_type);
if (!dev_name)
(void) sd_device_get_sysname(device, &dev_name);
if (!dev_mac &&
sd_device_get_sysattr_value(device, "address", &mac_str) >= 0)
dev_mac = ether_aton(mac_str);
}
network/link: Fix logic error in matching devices by MAC Prior to this commit, a .link file with a [Match] section containing MACAddress= would match any device without a MAC. This restores the matching logic prior to e90d037.
2018-07-07 11:39:01 +02:00
if (match_mac && (!dev_mac || !set_contains(match_mac, dev_mac)))
udev: net_setup - allow matching on OriginalName= This has been requested repeatedly, so let's give it a go. We explicitly do not allow matching on names that have already been changed (from a previous udev run, or otherwise), and matching on unpredictable names (ethX) is discouraged (but not currently disallowed). We also currently allow: [Match] Name=veth0 [Link] Name=my-name0 SomeOtherSetting=true Which means that the link file will be applied the first time it is invoked, but not on subsequent invocations, which may be surprising.
2014-12-04 18:12:55 +01:00
return false;
net-config: start split out matching and parsing logic Move this to src/share/net-util.c, so it can be used elsewhere.
2013-11-02 02:13:48 +01:00
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
if (!net_condition_test_strv(match_paths, dev_path))
network-internal: chain matches with AND in net_match_config() The test would treat the first non-empty set of matches in match_paths, match_drivers, match_types, match_names as definitive (essentially chaining them with OR). Make those tests instead match like other tests and require all to pass if the set of patterns is nonempty.
2015-02-14 00:38:22 +01:00
return false;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
if (!net_condition_test_strv(match_drivers, dev_driver))
network-internal: chain matches with AND in net_match_config() The test would treat the first non-empty set of matches in match_paths, match_drivers, match_types, match_names as definitive (essentially chaining them with OR). Make those tests instead match like other tests and require all to pass if the set of patterns is nonempty.
2015-02-14 00:38:22 +01:00
return false;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
if (!net_condition_test_strv(match_types, dev_type))
network-internal: chain matches with AND in net_match_config() The test would treat the first non-empty set of matches in match_paths, match_drivers, match_types, match_names as definitive (essentially chaining them with OR). Make those tests instead match like other tests and require all to pass if the set of patterns is nonempty.
2015-02-14 00:38:22 +01:00
return false;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
network: support negation in matching patterns (#4809)
2016-12-07 19:12:10 +01:00
if (!net_condition_test_strv(match_names, dev_name))
network-internal: chain matches with AND in net_match_config() The test would treat the first non-empty set of matches in match_paths, match_drivers, match_types, match_names as definitive (essentially chaining them with OR). Make those tests instead match like other tests and require all to pass if the set of patterns is nonempty.
2015-02-14 00:38:22 +01:00
return false;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
network,udev: add Property= setting in [Match] section Closes #5665.
2019-06-22 18:44:13 +02:00
if (!net_condition_test_property(match_property, device))
return false;
network: support matching based on wifi interfece type
2019-10-25 09:29:23 +02:00
if (!net_condition_test_strv(match_wifi_iftype, wifi_iftype_to_string(wifi_iftype)))
return false;
network: support matching based on wifi SSID
2019-07-24 07:46:55 +02:00
if (!net_condition_test_strv(match_ssid, ssid))
return false;
network: add support matching based on BSSID=
2019-07-24 08:32:24 +02:00
if (match_bssid && (!bssid || !set_contains(match_bssid, bssid)))
return false;
udev: net_setup - allow matching on OriginalName= This has been requested repeatedly, so let's give it a go. We explicitly do not allow matching on names that have already been changed (from a previous udev run, or otherwise), and matching on unpredictable names (ethX) is discouraged (but not currently disallowed). We also currently allow: [Match] Name=veth0 [Link] Name=my-name0 SomeOtherSetting=true Which means that the link file will be applied the first time it is invoked, but not on subsequent invocations, which may be surprising.
2014-12-04 18:12:55 +01:00
return true;
net-config: start split out matching and parsing logic Move this to src/share/net-util.c, so it can be used elsewhere.
2013-11-02 02:13:48 +01:00
}
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
int config_parse_net_condition(const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
ConditionType cond = ltype;
network,udev: split static condition tests from net_match_config()
2019-03-08 07:20:01 +01:00
Condition **list = data, *c;
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
bool negate;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
network,udev: split static condition tests from net_match_config()
2019-03-08 07:20:01 +01:00
if (isempty(rvalue)) {
*list = condition_free_list_type(*list, cond);
return 0;
}
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
negate = rvalue[0] == '!';
if (negate)
rvalue++;
network: drop unnecessary strdup()
2019-03-08 06:42:42 +01:00
c = condition_new(cond, rvalue, false, negate);
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
if (!c)
return log_oom();
network,udev: split static condition tests from net_match_config()
2019-03-08 07:20:01 +01:00
/* Drop previous assignment. */
*list = condition_free_list_type(*list, cond);
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
network,udev: split static condition tests from net_match_config()
2019-03-08 07:20:01 +01:00
LIST_PREPEND(conditions, *list, c);
network/link: Match - filter on kernel cmdline, host and virt
2014-02-20 19:39:49 +01:00
return 0;
}
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
int config_parse_match_strv(
tree-wide: port more code to use ifname_valid()
2016-05-06 21:20:59 +02:00
const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
const char *p = rvalue;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
char ***sv = data;
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
bool invert;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (isempty(rvalue)) {
*sv = strv_free(*sv);
return 0;
}
invert = *p == '!';
p += invert;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
for (;;) {
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
_cleanup_free_ char *word = NULL, *k = NULL;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
Revert "shared/conf-parser,networkd: EXTRACT_UNQUOTE|EXTRACT_RETAIN_ESCAPE → EXTRACT_UNQUOTE" This reverts commit 8a07b4033e5d3c86931b3dd2ddbca41118c05c60. The tests are kept. test-networkd-conf is adjusted to pass. This fixes #13276. I think current rules are extremely confusing, as the case in test-networkd-conf shows. We apply some kinds of unescaping (relating to quoting), but not others (related to escaping of special characters). But fixing this is hard, because people have adjusted quoting to match our rules, and if we make the rules "better", things might break in unexpected places.
2019-08-14 17:41:31 +02:00
r = extract_first_word(&p, &word, NULL, EXTRACT_UNQUOTE|EXTRACT_RETAIN_ESCAPE);
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (r == 0)
return 0;
if (r == -ENOMEM)
return log_oom();
network: Make sure we log about parse errors for ifname lists Fix-up for 93e2822684b37a4eeef03775a7a1f44a3055d7b2
2016-05-09 15:42:23 +02:00
if (r < 0) {
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
log_syntax(unit, LOG_ERR, filename, line, r, "Invalid syntax, ignoring: %s", rvalue);
network: Make sure we log about parse errors for ifname lists Fix-up for 93e2822684b37a4eeef03775a7a1f44a3055d7b2
2016-05-09 15:42:23 +02:00
return 0;
}
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (invert) {
k = strjoin("!", word);
if (!k)
return log_oom();
} else
k = TAKE_PTR(word);
r = strv_consume(sv, TAKE_PTR(k));
if (r < 0)
return log_oom();
}
}
int config_parse_match_ifnames(
const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
const char *p = rvalue;
char ***sv = data;
bool invert;
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
invert = *p == '!';
p += invert;
for (;;) {
_cleanup_free_ char *word = NULL, *k = NULL;
r = extract_first_word(&p, &word, NULL, 0);
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
if (r == 0)
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
return 0;
if (r == -ENOMEM)
return log_oom();
if (r < 0) {
log_syntax(unit, LOG_ERR, filename, line, 0,
"Failed to parse interface name list: %s", rvalue);
return 0;
}
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
tree-wide: port more code to use ifname_valid()
2016-05-06 21:20:59 +02:00
if (!ifname_valid(word)) {
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
log_syntax(unit, LOG_ERR, filename, line, 0,
"Interface name is not valid or too long, ignoring assignment: %s", word);
continue;
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
}
network,udev: fix multiple invert matching lines Previously, ``` [Match] Name=!aaa Name=!bbb ``` does not work. This fixes the issue.
2019-06-22 20:18:52 +02:00
if (invert) {
k = strjoin("!", word);
if (!k)
return log_oom();
} else
k = TAKE_PTR(word);
r = strv_consume(sv, TAKE_PTR(k));
net: support globbing and disjunction in Match logic Match{Name,OrginalName,Type,Driver,Path} can now take a space-separated glob of matches.
2015-02-10 18:30:16 +01:00
if (r < 0)
return log_oom();
}
}
network,udev: add Property= setting in [Match] section Closes #5665.
2019-06-22 18:44:13 +02:00
int config_parse_match_property(
const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
const char *p = rvalue;
char ***sv = data;
bool invert;
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
invert = *p == '!';
p += invert;
for (;;) {
_cleanup_free_ char *word = NULL, *k = NULL;
r = extract_first_word(&p, &word, NULL, EXTRACT_CUNESCAPE|EXTRACT_UNQUOTE);
if (r == 0)
return 0;
if (r == -ENOMEM)
return log_oom();
if (r < 0) {
log_syntax(unit, LOG_ERR, filename, line, 0,
"Invalid syntax, ignoring: %s", rvalue);
return 0;
}
if (!env_assignment_is_valid(word)) {
log_syntax(unit, LOG_ERR, filename, line, 0,
"Invalid property or value, ignoring assignment: %s", word);
continue;
}
if (invert) {
k = strjoin("!", word);
if (!k)
return log_oom();
} else
k = TAKE_PTR(word);
r = strv_consume(sv, TAKE_PTR(k));
if (r < 0)
return log_oom();
}
}
udev: net_setup_link - don't use Description as Alias Use Description only internally, and allow Alias to be set as a separate option. For instance SNMP uses ifalias for a specific purpose, so let's not write to it by default.
2013-11-25 01:33:04 +01:00
int config_parse_ifalias(const char *unit,
const char *filename,
unsigned line,
const char *section,
conf-parser: distinguish between multiple sections with the same name Pass on the line on which a section was decleared to the parsers, so they can distinguish between multiple sections (if they chose to). Currently no parsers take advantage of this, but a follow-up patch will do that to distinguish [Address] Address=192.168.0.1/24 Label=one [Address] Address=192.168.0.2/24 Label=two from [Address] Address=192.168.0.1/24 Label=one Address=192.168.0.2/24 Label=two
2013-11-19 16:17:55 +01:00
unsigned section_line,
udev: net_setup_link - don't use Description as Alias Use Description only internally, and allow Alias to be set as a separate option. For instance SNMP uses ifalias for a specific purpose, so let's not write to it by default.
2013-11-25 01:33:04 +01:00
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
char **s = data;
network-intenal: user _cleanup_ macro in parse_ifname
2015-01-10 00:33:46 +01:00
_cleanup_free_ char *n = NULL;
udev: net_setup_link - don't use Description as Alias Use Description only internally, and allow Alias to be set as a separate option. For instance SNMP uses ifalias for a specific purpose, so let's not write to it by default.
2013-11-25 01:33:04 +01:00
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
n = strdup(rvalue);
if (!n)
return log_oom();
if (!ascii_is_valid(n) || strlen(n) >= IFALIASZ) {
tree-wide: clean up log_syntax() usage - Rely everywhere that we use abs() on the error code passed in anyway, thus don't need to explicitly negate what we pass in - Never attach synthetic error number information to log messages. Only log about errors we *receive* with the error number we got there, don't log any synthetic error, that don#t even propagate, but just eat up. - Be more careful with attaching exactly the error we get, instead of errno or unrelated errors randomly. - Fix one occasion where the error number and line number got swapped. - Make sure we never tape over OOM issues, or inability to resolve specifiers
2015-09-30 18:22:42 +02:00
log_syntax(unit, LOG_ERR, filename, line, 0, "Interface alias is not ASCII clean or is too long, ignoring assignment: %s", rvalue);
udev: net_setup_link - don't use Description as Alias Use Description only internally, and allow Alias to be set as a separate option. For instance SNMP uses ifalias for a specific purpose, so let's not write to it by default.
2013-11-25 01:33:04 +01:00
return 0;
}
network: improve readability of config_parse_ifalias()
2018-11-01 19:24:57 +01:00
if (isempty(n))
*s = mfree(*s);
macro: introduce TAKE_PTR() macro This macro will read a pointer of any type, return it, and set the pointer to NULL. This is useful as an explicit concept of passing ownership of a memory area between pointers. This takes inspiration from Rust: https://doc.rust-lang.org/std/option/enum.Option.html#method.take and was suggested by Alan Jenkins (@sourcejedi). It drops ~160 lines of code from our codebase, which makes me like it. Also, I think it clarifies passing of ownership, and thus helps readability a bit (at least for the initiated who know the new macro)
2018-03-22 16:53:26 +01:00
else
network: improve readability of config_parse_ifalias()
2018-11-01 19:24:57 +01:00
free_and_replace(*s, n);
udev: net_setup_link - don't use Description as Alias Use Description only internally, and allow Alias to be set as a separate option. For instance SNMP uses ifalias for a specific purpose, so let's not write to it by default.
2013-11-25 01:33:04 +01:00
return 0;
}
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
int config_parse_hwaddr(const char *unit,
const char *filename,
unsigned line,
const char *section,
conf-parser: distinguish between multiple sections with the same name Pass on the line on which a section was decleared to the parsers, so they can distinguish between multiple sections (if they chose to). Currently no parsers take advantage of this, but a follow-up patch will do that to distinguish [Address] Address=192.168.0.1/24 Label=one [Address] Address=192.168.0.2/24 Label=two from [Address] Address=192.168.0.1/24 Label=one Address=192.168.0.2/24 Label=two
2013-11-19 16:17:55 +01:00
unsigned section_line,
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
ether-addr-util: make ether_addr_from_string() stricter
2018-05-04 10:36:40 +02:00
_cleanup_free_ struct ether_addr *n = NULL;
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
struct ether_addr **hwaddr = data;
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
udev: link-config - use new0 instead of calloc
2013-10-29 15:59:45 +01:00
n = new0(struct ether_addr, 1);
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
if (!n)
return log_oom();
ether-addr-util: make ether_addr_from_string() stricter
2018-05-04 10:36:40 +02:00
r = ether_addr_from_string(rvalue, n);
if (r < 0) {
log_syntax(unit, LOG_ERR, filename, line, r, "Not a valid MAC address, ignoring assignment: %s", rvalue);
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
return 0;
}
network: fix memleak in config_parse_hwaddr() Fixes #10615.
2018-11-01 19:25:22 +01:00
free_and_replace(*hwaddr, n);
udev: link-config - add proper parsing
2013-10-28 20:59:56 +01:00
return 0;
}
net-util: add inet address/family parsing
2013-11-09 22:19:42 +01:00
libsystemd-network: introduce config_parse_hwaddrs()
2018-05-06 06:47:15 +02:00
int config_parse_hwaddrs(const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
_cleanup_set_free_free_ Set *s = NULL;
const char *p = rvalue;
Set **hwaddrs = data;
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
if (isempty(rvalue)) {
/* Empty assignment resets the list */
network,udev: make MACAddress= in [Match] section take multiple MAC addresses
2018-05-09 04:59:18 +02:00
*hwaddrs = set_free_free(*hwaddrs);
libsystemd-network: introduce config_parse_hwaddrs()
2018-05-06 06:47:15 +02:00
return 0;
}
s = set_new(&ether_addr_hash_ops);
if (!s)
return log_oom();
for (;;) {
_cleanup_free_ char *word = NULL;
_cleanup_free_ struct ether_addr *n = NULL;
r = extract_first_word(&p, &word, NULL, 0);
if (r == 0)
break;
if (r == -ENOMEM)
return log_oom();
if (r < 0) {
log_syntax(unit, LOG_WARNING, filename, line, r, "Invalid syntax, ignoring: %s", rvalue);
return 0;
}
network,udev: make MACAddress= in [Match] section take multiple MAC addresses
2018-05-09 04:59:18 +02:00
n = new(struct ether_addr, 1);
libsystemd-network: introduce config_parse_hwaddrs()
2018-05-06 06:47:15 +02:00
if (!n)
return log_oom();
r = ether_addr_from_string(word, n);
if (r < 0) {
log_syntax(unit, LOG_ERR, filename, line, 0, "Not a valid MAC address, ignoring: %s", word);
continue;
}
r = set_put(s, n);
if (r < 0)
return log_oom();
if (r > 0)
n = NULL; /* avoid cleanup */
}
r = set_ensure_allocated(hwaddrs, &ether_addr_hash_ops);
if (r < 0)
return log_oom();
r = set_move(*hwaddrs, s);
if (r < 0)
return log_oom();
return 0;
}
network: reject bridge port priorities above kernel's max value. (#5877) Bridge port priority in the kernel can only be between 0 and 63. Therefore reject values above maximum. Fixes: #5729
2017-05-02 21:32:42 +02:00
int config_parse_bridge_port_priority(
const char *unit,
const char *filename,
unsigned line,
const char *section,
unsigned section_line,
const char *lvalue,
int ltype,
const char *rvalue,
void *data,
void *userdata) {
uint16_t i;
int r;
assert(filename);
assert(lvalue);
assert(rvalue);
assert(data);
r = safe_atou16(rvalue, &i);
if (r < 0) {
log_syntax(unit, LOG_ERR, filename, line, r,
"Failed to parse bridge port priority, ignoring: %s", rvalue);
return 0;
}
if (i > LINK_BRIDGE_PORT_PRIORITY_MAX) {
log_syntax(unit, LOG_ERR, filename, line, r,
"Bridge port priority is larger than maximum %u, ignoring: %s", LINK_BRIDGE_PORT_PRIORITY_MAX, rvalue);
return 0;
}
*((uint16_t *)data) = i;
return 0;
}
dhcp: move filtering of bogus DNS/NTP addresses out of DHCP client The DHCP client should not pre-filter addresses beyond what RFC requires. If a client's user (like networkd) wishes to skip/filter certain addresses, it's their responsibility. The point of this is that the DHCP library does not hide/abstract information that might be relevant for certain users. For example, NetworkManager exposes DHCP options in its API. When doing that, the options should be close to the actual lease. This is related to commit d9ec2e632df4905201facf76d6a205edc952116a (dhcp4: filter bogus DNS/NTP server addresses silently).
2018-12-14 16:25:01 +01:00
size_t serialize_in_addrs(FILE *f,
const struct in_addr *addresses,
size_t size,
bool with_leading_space,
bool (*predicate)(const struct in_addr *addr)) {
size_t count;
size_t i;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
assert(f);
assert(addresses);
dhcp: move filtering of bogus DNS/NTP addresses out of DHCP client The DHCP client should not pre-filter addresses beyond what RFC requires. If a client's user (like networkd) wishes to skip/filter certain addresses, it's their responsibility. The point of this is that the DHCP library does not hide/abstract information that might be relevant for certain users. For example, NetworkManager exposes DHCP options in its API. When doing that, the options should be close to the actual lease. This is related to commit d9ec2e632df4905201facf76d6a205edc952116a (dhcp4: filter bogus DNS/NTP server addresses silently).
2018-12-14 16:25:01 +01:00
count = 0;
for (i = 0; i < size; i++) {
network: avoid inet_ntoa() in favor of inet_ntop() inet_ntop() is not documented to be thread-safe, so it should not be used in the DHCP library. Arguably, glibc uses a thread local buffer, so indeed there is no problem with a suitable libc. Anyway, just avoid it.
2018-12-16 22:02:21 +01:00
char sbuf[INET_ADDRSTRLEN];
dhcp: move filtering of bogus DNS/NTP addresses out of DHCP client The DHCP client should not pre-filter addresses beyond what RFC requires. If a client's user (like networkd) wishes to skip/filter certain addresses, it's their responsibility. The point of this is that the DHCP library does not hide/abstract information that might be relevant for certain users. For example, NetworkManager exposes DHCP options in its API. When doing that, the options should be close to the actual lease. This is related to commit d9ec2e632df4905201facf76d6a205edc952116a (dhcp4: filter bogus DNS/NTP server addresses silently).
2018-12-14 16:25:01 +01:00
if (predicate && !predicate(&addresses[i]))
continue;
if (with_leading_space)
fputc(' ', f);
else
with_leading_space = true;
network: avoid inet_ntoa() in favor of inet_ntop() inet_ntop() is not documented to be thread-safe, so it should not be used in the DHCP library. Arguably, glibc uses a thread local buffer, so indeed there is no problem with a suitable libc. Anyway, just avoid it.
2018-12-16 22:02:21 +01:00
fputs(inet_ntop(AF_INET, &addresses[i], sbuf, sizeof(sbuf)), f);
dhcp: move filtering of bogus DNS/NTP addresses out of DHCP client The DHCP client should not pre-filter addresses beyond what RFC requires. If a client's user (like networkd) wishes to skip/filter certain addresses, it's their responsibility. The point of this is that the DHCP library does not hide/abstract information that might be relevant for certain users. For example, NetworkManager exposes DHCP options in its API. When doing that, the options should be close to the actual lease. This is related to commit d9ec2e632df4905201facf76d6a205edc952116a (dhcp4: filter bogus DNS/NTP server addresses silently).
2018-12-14 16:25:01 +01:00
count++;
}
return count;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
}
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
int deserialize_in_addrs(struct in_addr **ret, const char *string) {
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
_cleanup_free_ struct in_addr *addresses = NULL;
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
int size = 0;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
assert(ret);
assert(string);
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
for (;;) {
_cleanup_free_ char *word = NULL;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
struct in_addr *new_addresses;
int r;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
r = extract_first_word(&string, &word, NULL, 0);
if (r < 0)
return r;
if (r == 0)
break;
coccinelle: add reallocarray() coccinelle script Let's systematically make use of reallocarray() whereever we invoke realloc() with a product of two values.
2018-02-27 19:09:22 +01:00
new_addresses = reallocarray(addresses, size + 1, sizeof(struct in_addr));
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
if (!new_addresses)
return -ENOMEM;
else
addresses = new_addresses;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
r = inet_pton(AF_INET, word, &(addresses[size]));
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
if (r <= 0)
continue;
tree-wide: make ++/-- usage consistent WRT spacing Throughout the tree there's spurious use of spaces separating ++ and -- operators from their respective operands. Make ++ and -- operator consistent with the majority of existing uses; discard the spaces.
2016-02-23 05:32:04 +01:00
size++;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
}
network: don't return allocated buffer of zero length from deserialize_in_addrs() deserialize_in_addrs() allocates the buffer before trying to parse the IP address. Since a parsing error is silently ignored, the returned size might be zero. In such a case we shouldn't return any buffer. Anyway, there was no leak, because there are only two callers like r = deserialize_in_addrs(&lease->dns, dns); which both keep the unused buffer and later release it. Note that deserialize_in_addrs() doesn't free the pointer before reassigning the new output. The caller must take care to to pass "ret" with an allocated buffer that would be leaked when returning the result.
2018-12-15 00:45:46 +01:00
*ret = size > 0 ? TAKE_PTR(addresses) : NULL;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
return size;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
}
network: use inet_ntop() rather than SD_NDISC_ADDRESS_FORMAT_VAL() when serializing Let's use the usual libc API for serializing IPv6 addresses, instead of the NDISC-specific macro we should get rid of anyway.
2016-06-02 20:35:13 +02:00
void serialize_in6_addrs(FILE *f, const struct in6_addr *addresses, size_t size) {
network: Add function to serialize an IPv6 address
2015-07-06 11:50:47 +02:00
unsigned i;
assert(f);
assert(addresses);
assert(size);
network: use inet_ntop() rather than SD_NDISC_ADDRESS_FORMAT_VAL() when serializing Let's use the usual libc API for serializing IPv6 addresses, instead of the NDISC-specific macro we should get rid of anyway.
2016-06-02 20:35:13 +02:00
for (i = 0; i < size; i++) {
char buffer[INET6_ADDRSTRLEN];
fputs(inet_ntop(AF_INET6, addresses+i, buffer, sizeof(buffer)), f);
if (i < size - 1)
fputc(' ', f);
}
network: Add function to serialize an IPv6 address
2015-07-06 11:50:47 +02:00
}
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
int deserialize_in6_addrs(struct in6_addr **ret, const char *string) {
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
_cleanup_free_ struct in6_addr *addresses = NULL;
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
int size = 0;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
assert(ret);
assert(string);
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
for (;;) {
_cleanup_free_ char *word = NULL;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
struct in6_addr *new_addresses;
int r;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
r = extract_first_word(&string, &word, NULL, 0);
if (r < 0)
return r;
if (r == 0)
break;
coccinelle: add reallocarray() coccinelle script Let's systematically make use of reallocarray() whereever we invoke realloc() with a product of two values.
2018-02-27 19:09:22 +01:00
new_addresses = reallocarray(addresses, size + 1, sizeof(struct in6_addr));
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
if (!new_addresses)
return -ENOMEM;
else
addresses = new_addresses;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
r = inet_pton(AF_INET6, word, &(addresses[size]));
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
if (r <= 0)
continue;
size++;
}
macro: introduce TAKE_PTR() macro This macro will read a pointer of any type, return it, and set the pointer to NULL. This is useful as an explicit concept of passing ownership of a memory area between pointers. This takes inspiration from Rust: https://doc.rust-lang.org/std/option/enum.Option.html#method.take and was suggested by Alan Jenkins (@sourcejedi). It drops ~160 lines of code from our codebase, which makes me like it. Also, I think it clarifies passing of ownership, and thus helps readability a bit (at least for the initiated who know the new macro)
2018-03-22 16:53:26 +01:00
*ret = TAKE_PTR(addresses);
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
sd-network: remove redundant array size parameter from functions that return arrays As long as the number of array entries is relatively small it's nicer to simply return the number of entries directly, instead of using a size_t* return parameter for it.
2014-07-17 01:39:46 +02:00
return size;
sd-dhcp-lease: move in_addr (de)serialization to shared network code
2014-05-18 22:02:42 +02:00
}
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
dhcp: export routes as opaque objects At the moment sd_dhcp_lease_get_routes() returns an array of structs which are not defined in public headers. Instead, change the function to return an array of pointers to opaque sd_dhcp_route objects.
2016-01-20 14:44:14 +01:00
void serialize_dhcp_routes(FILE *f, const char *key, sd_dhcp_route **routes, size_t size) {
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
unsigned i;
assert(f);
assert(key);
assert(routes);
assert(size);
fprintf(f, "%s=", key);
libsystemd-network: fix writing of routes in dhcp lease file inet_ntoa() uses a static buffer, so you can't call it twice in the same fprintf() call.
2014-11-18 14:59:42 +01:00
for (i = 0; i < size; i++) {
network: avoid inet_ntoa() in favor of inet_ntop() inet_ntop() is not documented to be thread-safe, so it should not be used in the DHCP library. Arguably, glibc uses a thread local buffer, so indeed there is no problem with a suitable libc. Anyway, just avoid it.
2018-12-16 22:02:21 +01:00
char sbuf[INET_ADDRSTRLEN];
dhcp: export routes as opaque objects At the moment sd_dhcp_lease_get_routes() returns an array of structs which are not defined in public headers. Instead, change the function to return an array of pointers to opaque sd_dhcp_route objects.
2016-01-20 14:44:14 +01:00
struct in_addr dest, gw;
uint8_t length;
assert_se(sd_dhcp_route_get_destination(routes[i], &dest) >= 0);
assert_se(sd_dhcp_route_get_gateway(routes[i], &gw) >= 0);
assert_se(sd_dhcp_route_get_destination_prefix_length(routes[i], &length) >= 0);
network: avoid inet_ntoa() in favor of inet_ntop() inet_ntop() is not documented to be thread-safe, so it should not be used in the DHCP library. Arguably, glibc uses a thread local buffer, so indeed there is no problem with a suitable libc. Anyway, just avoid it.
2018-12-16 22:02:21 +01:00
fprintf(f, "%s/%" PRIu8, inet_ntop(AF_INET, &dest, sbuf, sizeof(sbuf)), length);
fprintf(f, ",%s%s", inet_ntop(AF_INET, &gw, sbuf, sizeof(sbuf)), (i < (size - 1)) ? " ": "");
libsystemd-network: fix writing of routes in dhcp lease file inet_ntoa() uses a static buffer, so you can't call it twice in the same fprintf() call.
2014-11-18 14:59:42 +01:00
}
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
fputs("\n", f);
}
int deserialize_dhcp_routes(struct sd_dhcp_route **ret, size_t *ret_size, size_t *ret_allocated, const char *string) {
_cleanup_free_ struct sd_dhcp_route *routes = NULL;
size_t size = 0, allocated = 0;
assert(ret);
assert(ret_size);
assert(ret_allocated);
assert(string);
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
/* WORD FORMAT: dst_ip/dst_prefixlen,gw_ip */
for (;;) {
_cleanup_free_ char *word = NULL;
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
char *tok, *tok_end;
unsigned n;
int r;
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
r = extract_first_word(&string, &word, NULL, 0);
if (r < 0)
return r;
if (r == 0)
break;
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
if (!GREEDY_REALLOC(routes, allocated, size + 1))
netowrkd:deserialize_dhcp_routes verify strndup ret strndup need to be chcked
2014-06-29 21:39:08 +02:00
return -ENOMEM;
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
networkd: cleanup FOREACH_WORD
2016-05-06 06:07:31 +02:00
tok = word;
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
/* get the subnet */
tok_end = strchr(tok, '/');
if (!tok_end)
continue;
*tok_end = '\0';
r = inet_aton(tok, &routes[size].dst_addr);
if (r == 0)
continue;
tok = tok_end + 1;
/* get the prefixlen */
tok_end = strchr(tok, ',');
if (!tok_end)
continue;
*tok_end = '\0';
r = safe_atou(tok, &n);
if (r < 0 || n > 32)
continue;
routes[size].dst_prefixlen = (uint8_t) n;
tok = tok_end + 1;
/* get the gateway */
r = inet_aton(tok, &routes[size].gw_addr);
if (r == 0)
continue;
size++;
}
*ret_size = size;
*ret_allocated = allocated;
macro: introduce TAKE_PTR() macro This macro will read a pointer of any type, return it, and set the pointer to NULL. This is useful as an explicit concept of passing ownership of a memory area between pointers. This takes inspiration from Rust: https://doc.rust-lang.org/std/option/enum.Option.html#method.take and was suggested by Alan Jenkins (@sourcejedi). It drops ~160 lines of code from our codebase, which makes me like it. Also, I think it clarifies passing of ownership, and thus helps readability a bit (at least for the initiated who know the new macro)
2018-03-22 16:53:26 +01:00
*ret = TAKE_PTR(routes);
Add support for DHCP static route options This adds support for DHCP options 33 and 121: Static Route and Classless Static Route. To enable this feature, set UseRoutes=true in .network file. Returned routes are added to the routing table.
2014-06-28 00:00:06 +02:00
return 0;
}
networkd: serialize the private options Save the private options along side the rest of the options in the lease files.
2015-08-01 05:18:51 +02:00
dhcp: generic data should be void*, not uint8_t* If we handly arbitrary data we should use "void*" pointers, not "uint8_t*", how go intended C to be used.
2015-08-26 23:05:34 +02:00
int serialize_dhcp_option(FILE *f, const char *key, const void *data, size_t size) {
networkd: serialize the private options Save the private options along side the rest of the options in the lease files.
2015-08-01 05:18:51 +02:00
_cleanup_free_ char *hex_buf = NULL;
assert(f);
assert(key);
assert(data);
hex_buf = hexmem(data, size);
tree-wide: replace explicit NULL checks with their shorter variants Done by coccinelle/equals-null.cocci
2019-04-28 14:28:49 +02:00
if (!hex_buf)
networkd: serialize the private options Save the private options along side the rest of the options in the lease files.
2015-08-01 05:18:51 +02:00
return -ENOMEM;
fprintf(f, "%s=%s\n", key, hex_buf);
return 0;
}