shaba/systemd-stable
1
1
Fork 0
mirror of https://github.com/systemd/systemd-stable.git synced 2025-03-08 20:58:20 +03:00
Code

Merge pull request #11764 from yuwata/network-verify

Browse Source 
network: introduce network_verify() and drop incompatible settings
This commit is contained in:
Yu Watanabe 2019-02-20 06:13:53 +09:00 committed by GitHub
commit 2dcaf38020
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 86 additions and 32 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

102
src/network/networkd-network.c
View File

@ -97,13 +97,78 @@ void network_apply_anonymize_if_set(Network *network) {
network->dhcp_use_timezone = false; network->dhcp_use_timezone = false;
} }
static int network_verify(Network *network) {
Address *address;
Route *route;
assert(network);
assert(network->filename);
if (network->bond) {
/* Bonding slave does not support addressing. */
if (network->ipv6_accept_ra > 0) {
log_warning("%s: Cannot enable IPv6AcceptRA= when Bond= is specified, disabling IPv6AcceptRA=.", network->filename);
network->ipv6_accept_ra = 0;
}
if (network->link_local >= 0 && network->link_local != ADDRESS_FAMILY_NO) {
log_warning("%s: Cannot enable LinkLocalAddressing= when Bond= is specified, disabling LinkLocalAddressing=.", network->filename);
network->link_local = ADDRESS_FAMILY_NO;
}
if (network->dhcp != ADDRESS_FAMILY_NO) {
log_warning("%s: Cannot enable DHCP= when Bond= is specified, disabling DHCP=.", network->filename);
network->dhcp = ADDRESS_FAMILY_NO;
}
if (network->dhcp_server) {
log_warning("%s: Cannot enable DHCPServer= when Bond= is specified, disabling DHCPServer=.", network->filename);
network->dhcp_server = false;
}
if (network->n_static_addresses > 0) {
log_warning("%s: Cannot set addresses when Bond= is specified, ignoring addresses.", network->filename);
while ((address = network->static_addresses))
address_free(address);
}
if (network->n_static_routes > 0) {
log_warning("%s: Cannot set routes when Bond= is specified, ignoring routes.", network->filename);
while ((route = network->static_routes))
route_free(route);
}
}
if (network->link_local < 0)
network->link_local = ADDRESS_FAMILY_IPV6;
/* IPMasquerade=yes implies IPForward=yes */
if (network->ip_masquerade)
network->ip_forward |= ADDRESS_FAMILY_IPV4;
if (network->mtu > 0 && network->dhcp_use_mtu) {
log_warning("%s: MTUBytes= in [Link] section and UseMTU= in [DHCP] section are set. "
"Disabling UseMTU=.", network->filename);
network->dhcp_use_mtu = false;
}
LIST_FOREACH(routes, route, network->static_routes)
if (!route->family)
return log_warning_errno(SYNTHETIC_ERRNO(EINVAL),
"%s: Route section without Gateway field configured. "
"Ignoring %s.",
network->filename, network->filename);
LIST_FOREACH(addresses, address, network->static_addresses)
if (!address->family)
return log_warning_errno(SYNTHETIC_ERRNO(EINVAL),
"%s: Address section without Address field configured. "
"Ignoring %s.",
network->filename, network->filename);
return 0;
}
int network_load_one(Manager *manager, const char *filename) { int network_load_one(Manager *manager, const char *filename) {
_cleanup_free_ char *fname = NULL, *name = NULL; _cleanup_free_ char *fname = NULL, *name = NULL;
_cleanup_(network_freep) Network *network = NULL; _cleanup_(network_freep) Network *network = NULL;
_cleanup_fclose_ FILE *file = NULL; _cleanup_fclose_ FILE *file = NULL;
const char *dropin_dirname; const char *dropin_dirname;
Address *address;
Route *route;
char *d; char *d;
int r; int r;
@ -193,7 +258,8 @@ int network_load_one(Manager *manager, const char *filename) {
.dnssec_mode = _DNSSEC_MODE_INVALID, .dnssec_mode = _DNSSEC_MODE_INVALID,
.dns_over_tls_mode = _DNS_OVER_TLS_MODE_INVALID, .dns_over_tls_mode = _DNS_OVER_TLS_MODE_INVALID,
.link_local = ADDRESS_FAMILY_IPV6, /* If LinkLocalAddressing= is not set, then set to ADDRESS_FAMILY_IPV6 later. */
.link_local = _ADDRESS_FAMILY_BOOLEAN_INVALID,
.ipv6_privacy_extensions = IPV6_PRIVACY_EXTENSIONS_NO, .ipv6_privacy_extensions = IPV6_PRIVACY_EXTENSIONS_NO,
.ipv6_accept_ra = -1, .ipv6_accept_ra = -1,
@ -242,16 +308,6 @@ int network_load_one(Manager *manager, const char *filename) {
network_apply_anonymize_if_set(network); network_apply_anonymize_if_set(network);
/* IPMasquerade=yes implies IPForward=yes */
if (network->ip_masquerade)
network->ip_forward |= ADDRESS_FAMILY_IPV4;
if (network->mtu > 0 && network->dhcp_use_mtu) {
log_warning("MTUBytes= in [Link] section and UseMTU= in [DHCP] section are set in %s. "
"Disabling UseMTU=.", filename);
network->dhcp_use_mtu = false;
}
LIST_PREPEND(networks, manager->networks, network); LIST_PREPEND(networks, manager->networks, network);
r = hashmap_ensure_allocated(&manager->networks_by_name, &string_hash_ops); r = hashmap_ensure_allocated(&manager->networks_by_name, &string_hash_ops);
@ -262,22 +318,10 @@ int network_load_one(Manager *manager, const char *filename) {
if (r < 0) if (r < 0)
return r; return r;
LIST_FOREACH(routes, route, network->static_routes) if (network_verify(network) < 0)
if (!route->family) { return 0;
log_warning("Route section without Gateway field configured in %s. "
"Ignoring", filename);
return 0;
}
LIST_FOREACH(addresses, address, network->static_addresses)
if (!address->family) {
log_warning("Address section without Address field configured in %s. "
"Ignoring", filename);
return 0;
}
network = NULL; network = NULL;
return 0; return 0;
} }
@ -813,6 +857,10 @@ int config_parse_dhcp(
log_syntax(unit, LOG_ERR, filename, line, 0, "Failed to parse DHCP option, ignoring: %s", rvalue); log_syntax(unit, LOG_ERR, filename, line, 0, "Failed to parse DHCP option, ignoring: %s", rvalue);
return 0; return 0;
} }
log_syntax(unit, LOG_WARNING, filename, line, 0,
"DHCP=%s is deprecated, please use DHCP=%s instead.",
rvalue, address_family_boolean_to_string(s));
} }
*dhcp = s; *dhcp = s;

8
src/network/networkd-util.h
View File

@ -6,10 +6,10 @@
typedef enum AddressFamilyBoolean { typedef enum AddressFamilyBoolean {
/* This is a bitmask, though it usually doesn't feel that way! */ /* This is a bitmask, though it usually doesn't feel that way! */
ADDRESS_FAMILY_NO = 0, ADDRESS_FAMILY_NO = 0,
ADDRESS_FAMILY_IPV4 = 1, ADDRESS_FAMILY_IPV4 = 1 << 0,
ADDRESS_FAMILY_IPV6 = 2, ADDRESS_FAMILY_IPV6 = 1 << 1,
ADDRESS_FAMILY_YES = 3, ADDRESS_FAMILY_YES = ADDRESS_FAMILY_IPV4 | ADDRESS_FAMILY_IPV6,
_ADDRESS_FAMILY_BOOLEAN_MAX, _ADDRESS_FAMILY_BOOLEAN_MAX,
_ADDRESS_FAMILY_BOOLEAN_INVALID = -1, _ADDRESS_FAMILY_BOOLEAN_INVALID = -1,
} AddressFamilyBoolean; } AddressFamilyBoolean;

8
test/test-network/conf/veth-bond.network
View File

@ -3,4 +3,10 @@ Name=veth99
[Network] [Network]
Bond=bond99 Bond=bond99
IPv6AcceptRA=false
# Settings below should be ignored
IPv6AcceptRA=yes
LinkLocalAddressing=yes
DHCP=yes
Address=192.168.25.3/24
Gateway=192.168.25.1