mirror of
git://slackware.nl/current.git
synced 2025-01-06 05:25:20 +01:00
57f9e5505b
patches/packages/network-scripts-15.0-noarch-19_slack15.0.txz: Rebuilt. This update fixes a bug and adds a new feature: Re-add support for the DHCP_IPADDR parameter from rc.inet1.conf. Expand the help text for DHCP_IPADDR in rc.inet1.conf. Add support for a DHCP_OPTS parameter. Thanks to ljb643 and Darren 'Tadgy' Austin. patches/packages/vim-9.0.1667-x86_64-1_slack15.0.txz: Upgraded. This fixes a rare divide-by-zero bug that could cause vim to crash. In an interactive program such as vim, I can't really see this qualifying as a security issue, but since it was brought up as such on LQ we'll just go along with it this time. :) Thanks to marav for the heads-up. (* Security fix *) patches/packages/vim-gvim-9.0.1667-x86_64-1_slack15.0.txz: Upgraded.
703 lines
28 KiB
Bash
703 lines
28 KiB
Bash
#!/bin/bash
|
|
# /etc/rc.d/rc.inet1
|
|
# This script is used to bring up the various network interfaces.
|
|
#
|
|
# @(#)/etc/rc.d/rc.inet1 10.2 Sun Jul 24 12:45:56 PDT 2005 (pjv)
|
|
|
|
############################
|
|
# READ NETWORK CONFIG FILE #
|
|
############################
|
|
|
|
# Get the configuration information from /etc/rc.d/rc.inet1.conf:
|
|
. /etc/rc.d/rc.inet1.conf
|
|
|
|
###########
|
|
# LOGGING #
|
|
###########
|
|
|
|
# Message logging.
|
|
info_log() {
|
|
# If possible, log events in /var/log/messages:
|
|
if [ -f /var/run/syslogd.pid ] && [ -x /usr/bin/logger ]; then
|
|
/usr/bin/logger -t "rc.inet1" --id="$$" "$*"
|
|
else
|
|
printf "%s: %s\\n" "rc.inet1" "$*"
|
|
fi
|
|
}
|
|
|
|
# Verbose logging.
|
|
debug_log() {
|
|
if [ "$DEBUG_ETH_UP" = "yes" ]; then
|
|
info_log "$*"
|
|
fi
|
|
}
|
|
|
|
############################
|
|
# DETERMINE INTERFACE LIST #
|
|
############################
|
|
|
|
# Compose a list of interfaces from /etc/rc.d/rc.inet1.conf (with a maximum
|
|
# of 6 interfaces, but you can easily enlarge the interface limit
|
|
# - send me a picture of such a box :-).
|
|
# If a value for IFNAME[n] is not set, we assume it is an eth'n' interface.
|
|
# This way, the new script is compatible with older rc.inet1.conf files.
|
|
# The IFNAME array will be used to determine which interfaces to bring up/down.
|
|
MAXNICS=${MAXNICS:-6}
|
|
i=0
|
|
while [ $i -lt $MAXNICS ];
|
|
do
|
|
IFNAME[$i]=${IFNAME[$i]:=eth${i}}
|
|
i=$((i+1))
|
|
done
|
|
debug_log "List of interfaces: ${IFNAME[*]}"
|
|
|
|
####################
|
|
# PRE-LOAD MODULES #
|
|
####################
|
|
|
|
for i in "${IFNAME[@]}"; do
|
|
# If the interface isn't in the kernel yet (but there's an alias for it in modules.conf),
|
|
# then it should be loaded first:
|
|
if [ ! -e /sys/class/net/${i%%[:.]*} ]; then # no interface yet
|
|
if /sbin/modprobe -c | grep -v "^#" | grep -w "alias ${i%%[:.]*}" | grep -vw "alias ${i%%[:.]*} off" >/dev/null; then
|
|
debug_log "/sbin/modprobe ${i%%[:.]*}"
|
|
/sbin/modprobe ${i%%[:.]*}
|
|
_DID_MODPROBE=1
|
|
fi
|
|
fi
|
|
done
|
|
# Normally the ipv6 module would be automatically loaded when the first IP is assigned to an
|
|
# interface (assuming ipv6 has not been disabled entirely), but autoconf/accept_ra need to be
|
|
# set to 0 before that happens, so try to pre-load ipv6 here.
|
|
if [ ! -e /proc/sys/net/ipv6 ]; then
|
|
debug_log "/sbin/modprobe ipv6"
|
|
/sbin/modprobe -q ipv6
|
|
_DID_MODPROBE=1
|
|
fi
|
|
# If we did any module loading in the blocks above, sleep for a couple of
|
|
# seconds to give time for everything to "take"
|
|
[ -n "${_DID_MODPROBE}" ] && sleep 2
|
|
unset _DID_MODPROBE
|
|
|
|
######################
|
|
# LOOPBACK FUNCTIONS #
|
|
######################
|
|
|
|
# Function to bring up the loopback interface. If loopback is
|
|
# already up, do nothing.
|
|
lo_up() {
|
|
if [ -e /sys/class/net/lo ]; then
|
|
if ! /sbin/ip link show dev lo | grep -wq -e "state UP" -e "state UNKNOWN" ; then
|
|
info_log "lo: configuring interface"
|
|
debug_log "/sbin/ip -4 address add 127.0.0.1/8 dev lo"
|
|
/sbin/ip -4 address add 127.0.0.1/8 dev lo
|
|
if [ -e /proc/sys/net/ipv6 ]; then
|
|
debug_log "/sbin/ip -6 address add ::1/128 dev lo"
|
|
/sbin/ip -6 address add ::1/128 dev lo
|
|
fi
|
|
debug_log "/sbin/ip link set dev lo up"
|
|
/sbin/ip link set dev lo up
|
|
debug_log "/sbin/ip route add 127.0.0.0/8 dev lo"
|
|
/sbin/ip route add 127.0.0.0/8 dev lo
|
|
fi
|
|
fi
|
|
}
|
|
|
|
# Function to take down the loopback interface:
|
|
lo_down() {
|
|
if [ -e /sys/class/net/lo ]; then
|
|
info_log "lo: de-configuring interface"
|
|
debug_log "/sbin/ip address flush dev lo"
|
|
/sbin/ip address flush dev lo
|
|
debug_log "/sbin/ip link set dev lo down"
|
|
/sbin/ip link set dev lo down
|
|
fi
|
|
}
|
|
|
|
#######################
|
|
# INTERFACE FUNCTIONS #
|
|
#######################
|
|
|
|
# Function to create virtual interfaces
|
|
virtif_create() {
|
|
# argument is 'i' - the position of this interface in the VIRTIFNAME array.
|
|
# this loop goes from i=0 to i=number_of_configured_virtual_interfaces_minus_one
|
|
# which means it doesn't do anything if there are none.
|
|
for i in $(seq 0 $((${#VIRTIFNAME[@]} - 1))); do
|
|
info_log "${VIRTIFNAME[$i]}: creating virtual interface"
|
|
debug_log "/sbin/ip tuntap add dev ${VIRTIFNAME[$i]} mode ${VIRTIFTYPE[$i]} user ${VIRTIFUSER[$i]} group ${VIRTIFGROUP[$i]}"
|
|
/sbin/ip tuntap add dev ${VIRTIFNAME[$i]} mode ${VIRTIFTYPE[$i]} user ${VIRTIFUSER[$i]} group ${VIRTIFGROUP[$i]}
|
|
done
|
|
}
|
|
|
|
# Function to destroy virtual interfaces
|
|
virtif_destroy() {
|
|
# argument is 'i' - the position of this interface in the VIRTIFNAME array.
|
|
for i in $(seq 0 $((${#VIRTIFNAME[@]} - 1))); do
|
|
info_log "${VIRTIFNAME[$i]}: destroying virtual interface"
|
|
debug_log "/sbin/ip tuntap del dev ${VIRTIFNAME[$i]} mode ${VIRTIFTYPE[$i]}"
|
|
/sbin/ip tuntap del dev ${VIRTIFNAME[$i]} mode ${VIRTIFTYPE[$i]}
|
|
done
|
|
}
|
|
|
|
# Function to assemble a bridge interface.
|
|
br_open() {
|
|
# argument is 'i' - the position of this interface in the IFNAME array.
|
|
info_log "${IFNAME[$1]}: creating bridge"
|
|
debug_log "/sbin/ip link add name ${IFNAME[$1]} type bridge"
|
|
/sbin/ip link add name ${IFNAME[$1]} type bridge
|
|
for BRIF in ${BRNICS[$1]}; do
|
|
debug_log "/sbin/ip address flush dev $BRIF"
|
|
/sbin/ip address flush dev $BRIF
|
|
debug_log "/sbin/ip link set dev $BRIF master ${IFNAME[$1]}"
|
|
/sbin/ip link set dev $BRIF master ${IFNAME[$1]}
|
|
debug_log "/sbin/ip link set dev $BRIF up"
|
|
/sbin/ip link set dev $BRIF up
|
|
done
|
|
while read -r -d \| IFOPT; do
|
|
if [ -n "$IFOPT" ]; then
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} type bridge $IFOPT"
|
|
/sbin/ip link set dev ${IFNAME[$1]} type bridge $IFOPT
|
|
fi
|
|
done <<<"${IFOPTS[$1]/%|*([[:blank:]])}|" # The | on the end is required.
|
|
# Don't bring up the interface if it will be brought up later during IP configuration.
|
|
# This prevents a situation where SLAAC takes a while to apply if the interface is already up.
|
|
if [ -z "${IPADDRS[$1]}" ] && [ -z "${IP6ADDRS[$1]}" ] && [ -z "${IPADDR[$1]}" ] && [ "${USE_DHCP[$1]}" != "yes" ] && [ "${USE_DHCP6[$1]}" != "yes" ] && [ "${USE_SLAAC[$1]}" != "yes" ]; then
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} up"
|
|
/sbin/ip link set dev ${IFNAME[$1]} up
|
|
fi
|
|
}
|
|
|
|
# Function to disassemble a bridge interface.
|
|
br_close() {
|
|
# argument is 'i' - the position of this interface in the IFNAME array.
|
|
info_log "${IFNAME[$1]}: destroying bridge"
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} down"
|
|
/sbin/ip link set dev ${IFNAME[$1]} down
|
|
for BRIF in $(ls --indicator-style=none /sys/class/net/${IFNAME[$1]}/brif/)
|
|
do
|
|
debug_log "/sbin/ip link set dev $BRIF nomaster"
|
|
/sbin/ip link set dev $BRIF nomaster
|
|
done
|
|
for BRIF in ${BRNICS[$1]}; do
|
|
debug_log "/sbin/ip link set dev $BRIF down"
|
|
/sbin/ip link set dev $BRIF down
|
|
done
|
|
debug_log "/sbin/ip link del ${IFNAME[$1]}"
|
|
/sbin/ip link del ${IFNAME[$1]}
|
|
}
|
|
|
|
# Function to create a bond.
|
|
bond_create() {
|
|
# Argument is 'i' - the position of this interface in the IFNAME array.
|
|
info_log "${IFNAME[$1]}: creating bond"
|
|
debug_log "/sbin/ip link add name ${IFNAME[$1]} type bond"
|
|
/sbin/ip link add name ${IFNAME[$1]} type bond
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} type bond mode ${BONDMODE[$1]:-balance-rr}"
|
|
/sbin/ip link set dev ${IFNAME[$1]} type bond mode ${BONDMODE[$1]:-balance-rr}
|
|
for BONDIF in ${BONDNICS[$1]}; do
|
|
debug_log "/sbin/ip address flush dev $BONDIF"
|
|
/sbin/ip address flush dev $BONDIF
|
|
debug_log "/sbin/ip link set $BONDIF master ${IFNAME[$1]}"
|
|
/sbin/ip link set $BONDIF master ${IFNAME[$1]}
|
|
debug_log "/sbin/ip link set dev $BONDIF up"
|
|
/sbin/ip link set dev $BONDIF up
|
|
done
|
|
# This has to be done *after* the interface is brought up because the
|
|
# 'primary <interface>' option has to occur after the interface is active.
|
|
while read -r -d \| IFOPT; do
|
|
if [ -n "$IFOPT" ]; then
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} type bond $IFOPT"
|
|
/sbin/ip link set dev ${IFNAME[$1]} type bond $IFOPT
|
|
fi
|
|
done <<<"${IFOPTS[$1]/%|*([[:blank:]])}|" # The | on the end is required.
|
|
}
|
|
|
|
# Function to destroy a bond.
|
|
bond_destroy() {
|
|
# Argument is 'i' - the position of this interface in the IFNAME array.
|
|
info_log "${IFNAME[$1]}: destroying bond"
|
|
debug_log "/sbin/ip link set dev ${IFNAME[$1]} down"
|
|
/sbin/ip link set dev ${IFNAME[$1]} down
|
|
debug_log "/sbin/ip address flush dev ${IFNAME[$1]}"
|
|
/sbin/ip address flush dev ${IFNAME[$1]}
|
|
for BONDIF in ${BONDNICS[$1]}; do
|
|
debug_log "/sbin/ip link set $BONDIF nomaster"
|
|
/sbin/ip link set $BONDIF nomaster
|
|
debug_log "/sbin/ip link set dev $BONDIF down"
|
|
/sbin/ip link set dev $BONDIF down
|
|
done
|
|
debug_log "/sbin/ip link del name ${IFNAME[$1]} type bond"
|
|
/sbin/ip link del name ${IFNAME[$1]} type bond
|
|
}
|
|
|
|
# Function to bring up a network interface. If the interface is
|
|
# already up or does not yet exist (perhaps because the kernel driver
|
|
# is not loaded yet), do nothing.
|
|
if_up() {
|
|
# Determine position 'i' of this interface in the IFNAME array:
|
|
i=0
|
|
while [ $i -lt $MAXNICS ]; do
|
|
[ "${IFNAME[$i]}" = "${1}" ] && break
|
|
i=$((i+1))
|
|
done
|
|
# If "i" is greater or equal to "MAXNICS" at this point, it means we didn't
|
|
# find an entry in IFNAME array corresponding to "${1}", which likely means
|
|
# there are more interfaces configured than MAXNICS. Let's err on the
|
|
# side of caution and do nothing instead of possibly doing the wrong thing.
|
|
if [ $i -ge $MAXNICS ]; then
|
|
info_log "${1}: skipping - you might need to increase MAXNICS"
|
|
return
|
|
fi
|
|
info_log "${1}: configuring interface"
|
|
# If you need to set hardware addresses for the underlying interfaces in a
|
|
# bond or bridge, configure the interfaces with IPs of 0.0.0.0 and set the
|
|
# MAC address with HWADDR. Then, finally, define the bond or bridge.
|
|
# If the interface is a bond, create it.
|
|
[ -n "${BONDNICS[$i]}" ] && bond_create $i
|
|
# If the interface is a bridge, create it.
|
|
[ -n "${BRNICS[$i]}" ] && br_open $i
|
|
if [ -e /sys/class/net/${1%%[:.]*} ]; then # interface exists
|
|
if ! /sbin/ip address show scope global dev ${1} 2>/dev/null | grep -Ewq '(inet|inet6)' || \
|
|
! /sbin/ip link show dev ${1} | grep -wq "state UP"; then # interface not up or not configured
|
|
local IF_UP=0
|
|
# Initialize any wireless parameters:
|
|
if [ -x /etc/rc.d/rc.wireless ]; then
|
|
. /etc/rc.d/rc.wireless ${1} start
|
|
fi
|
|
# Handle VLAN interfaces before trying to configure IP addresses.
|
|
if echo "${1}" | grep -Fq .; then
|
|
IFACE="${1%.*}"
|
|
VLAN="${1##*.}"
|
|
# Check if the underlying interface is already up.
|
|
if ! /sbin/ip link show dev $IFACE 2>/dev/null| grep -wq "state UP"; then
|
|
# Bring up the underlying interface.
|
|
debug_log "/sbin/ip link set dev $IFACE up"
|
|
if ! /sbin/ip link set dev $IFACE up; then
|
|
info_log "${1}: failed to bring up interface $IFACE"
|
|
return
|
|
fi
|
|
IF_UP=1
|
|
fi
|
|
# Configure the VLAN interface.
|
|
info_log "${1}: creating VLAN interface"
|
|
debug_log "/sbin/ip link add link $IFACE name ${1} type vlan id $VLAN"
|
|
if ! /sbin/ip link add link $IFACE name ${1} type vlan id $VLAN; then
|
|
info_log "${1}: failed to create VLAN interface"
|
|
((IF_UP == 1)) && /sbin/ip link set dev $IFACE down
|
|
return
|
|
fi
|
|
while read -r -d \| IFOPT; do
|
|
if [ -n "$IFOPT" ]; then
|
|
debug_log "/sbin/ip link set dev ${1} type vlan $IFOPT"
|
|
/sbin/ip link set dev ${1} type vlan $IFOPT
|
|
fi
|
|
done <<<"${IFOPTS[$i]/%|*([[:blank:]])}|" # The | on the end is required.
|
|
elif [ -z "${BONDNICS[$i]}" ] && [ -z "${BRNICS[$i]}" ]; then
|
|
# Only apply IFOPTS for a physical interface if it's not been handled
|
|
# by a higher level interface.
|
|
while read -r -d \| IFOPT; do
|
|
if [ -n "$IFOPT" ]; then
|
|
debug_log "/sbin/ip link set dev ${1} $IFOPT"
|
|
/sbin/ip link set dev ${1} $IFOPT
|
|
fi
|
|
done <<<"${IFOPTS[$i]/%|*([[:blank:]])}|" # The | on the end is required.
|
|
fi
|
|
# Set hardware address:
|
|
if [ -n "${HWADDR[$i]}" ]; then
|
|
debug_log "/sbin/ip link set dev ${1} address ${HWADDR[$i]}"
|
|
if ! /sbin/ip link set dev ${1} address ${HWADDR[$i]} 2>/dev/null; then
|
|
info_log "${1}: failed to set hardware address"
|
|
fi
|
|
fi
|
|
if [ -e /proc/sys/net/ipv6 ]; then # ipv6 networking is available
|
|
# Disable v6 IP auto configuration before trying to bring up the interface:
|
|
debug_log "${1}: disabling IPv6 autoconf"
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/autoconf
|
|
if [ "${USE_RA[$i]}" = "yes" ]; then
|
|
# Unconditionally accept router advertisements on this interface:
|
|
debug_log "${1}: accepting IPv6 RA"
|
|
echo "1" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
else
|
|
# Disable router advertisments on this interface until SLAAC is enabled:
|
|
debug_log "${1}: ignoring IPv6 RA"
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
fi
|
|
fi
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
IF_UP=0
|
|
if [ -e /proc/sys/net/ipv6 ] && [ "${USE_DHCP6[$i]}" != "yes" ] && [ "${USE_SLAAC[$i]}" = "yes" ]; then # configure via SLAAC
|
|
info_log "${1}: enabling SLAAC"
|
|
# Enable accepting of RA packets, unless explicitly configured not to:
|
|
if [ "${USE_RA[$i]}" = "no" ]; then
|
|
debug_log "${1}: ignoring IPv6 RA"
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
else
|
|
debug_log "${1}: accepting IPv6 RA"
|
|
echo "1" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
fi
|
|
# Set up SLAAC privacy enhancements if configured.
|
|
if [ "${SLAAC_PRIVIPGEN[$i]}" = "yes" ]; then
|
|
if [ -n "${SLAAC_SECRET[$i]}" ]; then
|
|
debug_log "${1}: seeding secret and enabling private IPv6 generation"
|
|
echo "${SLAAC_SECRET[$i]}" >/proc/sys/net/ipv6/conf/${1}/stable_secret
|
|
echo "2" >/proc/sys/net/ipv6/conf/${1}/addr_gen_mode
|
|
else
|
|
debug_log "${1}: using random secret and enabling private IPv6 generation"
|
|
echo -n >/proc/sys/net/ipv6/conf/${1}/stable_secret
|
|
echo "3" >/proc/sys/net/ipv6/conf/${1}/addr_gen_mode
|
|
fi
|
|
fi
|
|
if [ "${SLAAC_TEMPADDR[$i]}" = "yes" ]; then
|
|
debug_log "${1}: enabling SLAAC tempaddr"
|
|
echo "2" >/proc/sys/net/ipv6/conf/${1}/use_tempaddr
|
|
fi
|
|
# Enable auto configuration of interfaces:
|
|
echo "1" >/proc/sys/net/ipv6/conf/${1}/autoconf
|
|
# Bring the interface up:
|
|
debug_log "/sbin/ip link set dev ${1} up"
|
|
/sbin/ip link set dev ${1} up
|
|
echo "${1}: waiting for router announcement"
|
|
for ((j = ${SLAAC_TIMEOUT[$i]:=15} * 2; j--;)); do # by default, wait a max of 15 seconds for the interface to configure
|
|
/sbin/ip -6 address show dynamic dev ${1} 2>/dev/null | grep -Ewq 'inet6' && { IF_UP=1; break; }
|
|
sleep 0.5
|
|
done
|
|
if ((IF_UP != 1)); then
|
|
echo "${1}: timed out"
|
|
info_log "${1}: failed to auto configure after ${SLAAC_TIMEOUT[$i]} seconds"
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
fi
|
|
fi
|
|
# Slackware historically favours dynamic configuration over fixed IP to configure interfaces, so keep that tradition:
|
|
if [ "${USE_DHCP[$i]}" = "yes" ] || { [ -e /proc/sys/net/ipv6 ] && [ "${USE_DHCP6[$i]}" = "yes" ]; }; then # use dhcpcd
|
|
info_log "${1}: starting dhcpcd"
|
|
# Declare DHCP_OPTIONS array before adding new options to it:
|
|
local -a DHCP_OPTIONS=()
|
|
# Set DHCP_OPTIONS for this interface:
|
|
if [ -e /proc/sys/net/ipv6 ]; then
|
|
if [ "${USE_DHCP[$i]}" = "yes" ] && [ "${USE_DHCP6[$i]}" != "yes" ]; then # only try v4 dhcp
|
|
DHCP_OPTIONS+=("-4")
|
|
elif [ "${USE_DHCP[$i]}" != "yes" ] && [ "${USE_DHCP6[$i]}" = "yes" ]; then # only try v6 dhcp
|
|
DHCP_OPTIONS+=("-6")
|
|
fi
|
|
else
|
|
DHCP_OPTIONS+=("-4")
|
|
fi
|
|
[ -n "${DHCP_HOSTNAME[$i]}" ] && DHCP_OPTIONS+=("-h" "${DHCP_HOSTNAME[$i]}")
|
|
[ "${DHCP_KEEPRESOLV[$i]}" = "yes" ] && DHCP_OPTIONS+=("-C" "resolv.conf")
|
|
[ "${DHCP_KEEPNTP[$i]}" = "yes" ] && DHCP_OPTIONS+=("-C" "ntp.conf")
|
|
[ "${DHCP_KEEPGW[$i]}" = "yes" ] && DHCP_OPTIONS+=("-G")
|
|
[ "${DHCP_DEBUG[$i]}" = "yes" ] && DHCP_OPTIONS+=("-d")
|
|
# The -L option used to be hard coded into the dhcpcd command line in -current. It was added to assist ARM users
|
|
# get networking up and running. Previous versions of Slackware did not have -L hard coded - the code here keeps
|
|
# the 14.2 behaviour, but can be altered to make the use of -L default as in -current. To change the behaviour,
|
|
# alter the test below to be: [ "${DHCP_NOIPV4LL[$i]}" != "no" ].
|
|
# Note: ARM users should make use of the DHCP_NOIPV4LL[x]="yes" parameter in rc.inet1.conf - this is the correct
|
|
# way to get the behaviour they seek.
|
|
[ "${DHCP_NOIPV4LL[$i]}" = "yes" ] && DHCP_OPTIONS+=("-L")
|
|
echo "${1}: polling for DHCP server"
|
|
# 15 seconds should be a reasonable default DHCP timeout. 30 was too much.
|
|
debug_log "/sbin/dhcpcd -t ${DHCP_TIMEOUT[$i]:-15} ${DHCP_OPTIONS[*]} ${1}"
|
|
if /sbin/dhcpcd -t "${DHCP_TIMEOUT[$i]:-15}" "${DHCP_OPTIONS[@]}" ${1}; then
|
|
# Enable accepting of RA packets if explicitly told to:
|
|
if [ -e /proc/sys/net/ipv6 ] && [ "${USE_RA[$i]}" = "yes" ]; then
|
|
debug_log "${1}: unconditionally accepting IPv6 RA"
|
|
echo "1" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
fi
|
|
IF_UP=1
|
|
else
|
|
info_log "${1}: failed to obtain DHCP lease"
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
fi
|
|
fi
|
|
if [ -e /proc/sys/net/ipv6 ] && [ -n "${IP6ADDRS[$i]}" ]; then # add v6 IPs
|
|
info_log "${1}: setting IPv6 addresses"
|
|
# IPv6's Duplicate Address Detection (DAD) causes a race condition when bringing up interfaces, as
|
|
# described here: https://www.agwa.name/blog/post/beware_the_ipv6_dad_race_condition
|
|
# Disable DAD while bringing up the interface - but note that this means the loss of detection of a
|
|
# duplicate address. It's a trade off, unfortunately.
|
|
debug_log "${1}: disabling IPv6 DAD"
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/accept_dad
|
|
for V6IP in ${IP6ADDRS[$i]}; do
|
|
IP="${V6IP%/*}"
|
|
PREFIX="${V6IP#*/}"
|
|
if [ -z "$PREFIX" ] || [ "$IP" == "$PREFIX" ]; then
|
|
info_log "${1}: no prefix length set for IP $IP - assuming 64"
|
|
PREFIX="64"
|
|
fi
|
|
debug_log "/sbin/ip -6 address add $IP/$PREFIX dev ${1}"
|
|
if /sbin/ip -6 address add $IP/$PREFIX dev ${1} && /sbin/ip link set dev ${1} up; then
|
|
# Enable accepting of RA packets if explicitly told to.
|
|
if [ "${USE_RA[$i]}" = "yes" ]; then
|
|
debug_log "${1}: unconditionally accepting IPv6 RA"
|
|
echo "1" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
fi
|
|
IF_UP=1
|
|
else
|
|
info_log "${1}: failed to set IP $IP"
|
|
if ((IF_UP != 1)); then # a v4 address was configured, don't flush it
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
fi
|
|
fi
|
|
done
|
|
# Reset accept_dad back to default now all the IPs are configured:
|
|
debug_log "${1}: resetting IPv6 DAD to default"
|
|
cat /proc/sys/net/ipv6/conf/default/accept_dad >/proc/sys/net/ipv6/conf/${1}/accept_dad
|
|
fi
|
|
if [ -n "${IPADDRS[$i]}" ] || [ -n "${IPADDR[$i]}" ]; then # add v4 IPs
|
|
info_log "${1}: setting IPv4 addresses"
|
|
# Only use IPADDR if no dynamic configuration was done.
|
|
if [ "${USE_DHCP[$i]}" == "yes" ] || [ "${USE_DHCP6[$i]}" == "yes" ] || [ "${USE_SLAAC[$i]}" == "yes" ]; then
|
|
V4IPS="${IPADDRS[$i]}"
|
|
else
|
|
V4IPS="${IPADDRS[$i]} ${IPADDR[$i]}${NETMASK[$i]:+/${NETMASK[$i]}}"
|
|
fi
|
|
for V4IP in $V4IPS; do
|
|
IP="${V4IP%/*}"
|
|
NM="${V4IP#*/}"
|
|
if [ -z "$NM" ] || [ "$IP" == "$NM" ]; then
|
|
info_log "${1}: no netmask set for IP $IP - assuming 24 (aka, 255.255.255.0)"
|
|
NM="24"
|
|
fi
|
|
debug_log "/sbin/ip -4 address add $IP/$NM broadcast + dev ${1}"
|
|
if /sbin/ip -4 address add $IP/$NM broadcast + dev ${1} && /sbin/ip link set dev ${1} up; then
|
|
IF_UP=1
|
|
else
|
|
info_log "${1}: failed to set IP $IP"
|
|
if ((IF_UP != 1)); then # if at least one address was configured, don't flush the device
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
fi
|
|
fi
|
|
done
|
|
fi
|
|
if ((IF_UP == 1)) && [ -n "${IPALIASES[$i]}" ]; then # Only apply IPALIASES onto an up interface
|
|
info_log "${1}: setting extra IPv4 addresses"
|
|
NUM=0
|
|
for EXTRAIP in ${IPALIASES[$i]}; do
|
|
IP="${EXTRAIP%/*}"
|
|
NM="${EXTRAIP#*/}"
|
|
if [ -z "$NM" ] || [ "$IP" == "$NM" ]; then
|
|
info_log "${1}: no netmask set for alias IP $IP - assuming 24 (aka, 255.255.255.0)"
|
|
NM="24"
|
|
fi
|
|
debug_log "/sbin/ip -4 address add $IP/$NM broadcast + dev ${1} label ${1}:$NUM"
|
|
if /sbin/ip -4 address add $IP/$NM broadcast + dev ${1} label ${1}:$NUM; then
|
|
NUM=$((NUM + 1))
|
|
else
|
|
info_log "${1}: failed to add alias IP $IP"
|
|
fi
|
|
done
|
|
fi
|
|
if ((IF_UP == 1)); then
|
|
# Force an MTU (possibly overriding that set by DHCP or RA):
|
|
if [ -n "${MTU[$i]}" ]; then
|
|
info_log "${1}: setting custom MTU"
|
|
debug_log "/sbin/ip link set dev ${1} mtu ${MTU[$i]}"
|
|
if ! /sbin/ip link set dev ${1} mtu ${MTU[$i]}; then
|
|
info_log "${1}: failed to set MTU"
|
|
fi
|
|
fi
|
|
# Set promiscuous mode on the interface:
|
|
if [ "${PROMISCUOUS[$i]}" = "yes" ]; then
|
|
info_log "${1}: setting promiscuous mode"
|
|
debug_log "/sbin/ip link set dev ${1} promisc on"
|
|
if ! /sbin/ip link set dev ${1} promisc on; then
|
|
info_log "${1}: failed to set promiscuous mode"
|
|
fi
|
|
fi
|
|
fi
|
|
else
|
|
debug_log "${1}: skipping configuration - already up"
|
|
fi
|
|
else
|
|
debug_log "${1}: skipping configuration - does not exist (yet)"
|
|
fi
|
|
}
|
|
|
|
# Function to take down a network interface:
|
|
if_down() {
|
|
# Determine position 'i' of this interface in the IFNAME array:
|
|
i=0
|
|
while [ $i -lt $MAXNICS ]; do
|
|
[ "${IFNAME[$i]}" = "${1}" ] && break
|
|
i=$((i+1))
|
|
done
|
|
if [ $i -ge $MAXNICS ]; then
|
|
info_log "${1}: skipping - you might need to increase MAXNICS"
|
|
return
|
|
fi
|
|
info_log "${1}: de-configuring interface"
|
|
if [ -e /sys/class/net/${1} ]; then
|
|
if [ "${USE_DHCP[$i]}" = "yes" ] || [ "${USE_DHCP6[$i]}" = "yes" ]; then # take down dhcpcd
|
|
info_log "${1}: stopping dhcpcd"
|
|
# When using -k, dhcpcd requires some command line options to match those used to invoke it:
|
|
if [ "${USE_DHCP[$i]}" = "yes" ] && [ "${USE_DHCP6[$i]}" != "yes" ]; then # only v4 dhcp
|
|
DHCP_OPTIONS=( -4 )
|
|
elif [ "${USE_DHCP[$i]}" != "yes" ] && [ "${USE_DHCP6[$i]}" = "yes" ]; then # only v6 dhcp
|
|
DHCP_OPTIONS=( -6 )
|
|
fi
|
|
debug_log "/sbin/dhcpcd ${DHCP_OPTIONS[*]} -k -d ${1}"
|
|
/sbin/dhcpcd "${DHCP_OPTIONS[*]}" -k -d ${1} 2>/dev/null || info_log "${1}: failed to stop dhcpcd"
|
|
fi
|
|
# Disable v6 IP auto configuration and RA before trying to clear the IP from the interface:
|
|
if [ -e /proc/sys/net/ipv6 ]; then
|
|
debug_log "${1}: disabling IPv6 autoconf and RA"
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/autoconf
|
|
echo "0" >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
fi
|
|
sleep 0.5 # allow time for DHCP/RA to unconfigure the interface
|
|
# Flush any remaining IPs:
|
|
debug_log "/sbin/ip address flush dev ${1}"
|
|
/sbin/ip address flush dev ${1}
|
|
# Bring the interface down:
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
# Reset everything back to defaults:
|
|
if [ -e /proc/sys/net/ipv6 ]; then
|
|
debug_log "${1}: resetting IPv6 configuration to defaults"
|
|
cat /proc/sys/net/ipv6/conf/default/autoconf >/proc/sys/net/ipv6/conf/${1}/autoconf
|
|
cat /proc/sys/net/ipv6/conf/default/accept_ra >/proc/sys/net/ipv6/conf/${1}/accept_ra
|
|
cat /proc/sys/net/ipv6/conf/default/use_tempaddr >/proc/sys/net/ipv6/conf/${1}/use_tempaddr
|
|
cat /proc/sys/net/ipv6/conf/default/addr_gen_mode >/proc/sys/net/ipv6/conf/${1}/addr_gen_mode
|
|
echo -n >/proc/sys/net/ipv6/conf/${1}/stable_secret
|
|
fi
|
|
# If the interface is a bridge, then destroy it now:
|
|
[ -n "${BRNICS[$i]}" ] && br_close $i
|
|
# If the interface is a bond, then destroy it now.
|
|
[ -n "${BONDNICS[$i]}" ] && bond_destroy $i
|
|
# Take down VLAN interface, if configured.
|
|
if echo "${1}" | grep -Fq .; then
|
|
info_log "${1}: destroying VLAN interface"
|
|
debug_log "/sbin/ip link set dev ${1} down"
|
|
/sbin/ip link set dev ${1} down
|
|
debug_log "/sbin/ip link delete ${1}"
|
|
/sbin/ip link delete ${1}
|
|
if ! /sbin/ip address show scope global dev ${1%.*} 2>/dev/null | grep -Ewq '(inet|inet6)'; then
|
|
debug_log "/sbin/ip link set dev ${1%.*} down"
|
|
/sbin/ip link set dev ${1%.*} down
|
|
fi
|
|
fi
|
|
# Kill wireless daemons if any:
|
|
if [ -x /etc/rc.d/rc.wireless ]; then
|
|
. /etc/rc.d/rc.wireless ${1} stop
|
|
fi
|
|
fi
|
|
}
|
|
|
|
#####################
|
|
# GATEWAY FUNCTIONS #
|
|
#####################
|
|
|
|
# Function to bring up the gateway if there is not yet a default route:
|
|
gateway_up() {
|
|
info_log "Configuring gateways"
|
|
# Bring up the IPv4 gateway:
|
|
if [ -n "$GATEWAY" ]; then
|
|
if ! /sbin/ip -4 route show | grep -wq default; then
|
|
debug_log "/sbin/ip -4 route add default via ${GATEWAY}"
|
|
/sbin/ip -4 route add default via ${GATEWAY}
|
|
fi
|
|
fi
|
|
# Bring up the IPv6 gateway:
|
|
if [ -n "$GATEWAY6" ]; then
|
|
if ! /sbin/ip -6 route show | grep -wq default; then
|
|
debug_log "/sbin/ip -6 route add default via ${GATEWAY6}"
|
|
/sbin/ip -6 route add default via ${GATEWAY6}
|
|
fi
|
|
fi
|
|
}
|
|
|
|
# Function to take down an existing default gateway:
|
|
gateway_down() {
|
|
info_log "De-configuring gateways"
|
|
if /sbin/ip -4 route show | grep -wq default ; then
|
|
debug_log "/sbin/ip -4 route del default"
|
|
/sbin/ip -4 route del default
|
|
fi
|
|
if /sbin/ip -6 route show | grep -wq default ; then
|
|
debug_log "/sbin/ip -6 route del default"
|
|
/sbin/ip -6 route del default
|
|
fi
|
|
}
|
|
|
|
# Function to start the network:
|
|
start() {
|
|
echo "Starting the network interfaces..."
|
|
lo_up
|
|
virtif_create
|
|
for i in "${IFNAME[@]}" ; do
|
|
if_up $i
|
|
done
|
|
gateway_up
|
|
}
|
|
|
|
# Function to stop the network:
|
|
stop() {
|
|
echo "Stopping the network interfaces..."
|
|
gateway_down
|
|
for (( i = MAXNICS - 1; i >= 0; i-- )); do
|
|
if_down ${IFNAME[$i]}
|
|
done
|
|
virtif_destroy
|
|
lo_down
|
|
}
|
|
|
|
|
|
############
|
|
### MAIN ###
|
|
############
|
|
|
|
# extglob is required for some functionallity.
|
|
shopt -s extglob
|
|
|
|
case "${1}" in
|
|
start|up) # "start" (or "up") brings up all configured interfaces:
|
|
start
|
|
;;
|
|
stop|down) # "stop" (or "down") takes down all configured interfaces:
|
|
stop
|
|
;;
|
|
restart) # "restart" restarts the network:
|
|
stop
|
|
start
|
|
;;
|
|
lo_start|lo_up) # Start the loopback interface:
|
|
lo_up
|
|
;;
|
|
lo_stop|lo_down) # Stop the loopback interface:
|
|
lo_down
|
|
;;
|
|
*_start|*_up) # Example: "eth1_start" (or "eth1_up") will start the specified interface 'eth1'
|
|
INTERFACE=$(echo ${1} | /bin/cut -d '_' -f 1)
|
|
if_up $INTERFACE
|
|
gateway_up
|
|
;;
|
|
*_stop|*_down) # Example: "eth0_stop" (or "eth0_down") will stop the specified interface 'eth0'
|
|
INTERFACE=$(echo ${1} | /bin/cut -d '_' -f 1)
|
|
if_down $INTERFACE
|
|
;;
|
|
*_restart) # Example: "wlan0_restart" will take 'wlan0' down and up again
|
|
INTERFACE=$(echo ${1} | /bin/cut -d '_' -f 1)
|
|
if_down $INTERFACE
|
|
sleep 1
|
|
if_up $INTERFACE
|
|
gateway_up
|
|
;;
|
|
*) # The default is to bring up all configured interfaces:
|
|
start
|
|
esac
|
|
|
|
# End of /etc/rc.d/rc.inet1
|