2017-03-08 04:58:39 +01:00
|
|
|
From 15c7f9a6e7678238ef06f5d805984addb6f8bcdb Mon Sep 17 00:00:00 2001
|
|
|
|
|
From: Martin Wilck <mwilck@suse.com>
|
|
|
|
|
Date: Thu, 15 Dec 2016 10:17:05 +0100
|
|
|
|
|
Subject: [PATCH] network: don't use dhcp-authoritative on static networks
|
|
|
|
|
|
|
|
|
|
"Static" DHCP networks are those where no dynamic DHCP range is
|
|
|
|
|
defined, only a list of host entries is used to serve permanent
|
|
|
|
|
IP addresses. On such networks, we don't want dnsmasq to reply
|
|
|
|
|
to other requests than those statically defined. But
|
|
|
|
|
"dhcp-authoritative" will cause dnsmasq to do just that.
|
|
|
|
|
Therefore we can't use "dhcp-authoritative" for static networks.
|
|
|
|
|
|
|
|
|
|
Fixes: 4ac20b3ae "network: add dnsmasq option 'dhcp-authoritative'"
|
|
|
|
|
Signed-off-by: Martin Wilck <mwilck@suse.com>
|
|
|
|
|
---
|
|
|
|
|
src/network/bridge_driver.c | 9 ++++++++-
|
|
|
|
|
tests/networkxml2confdata/dhcp6host-routed-network.conf | 1 -
|
|
|
|
|
2 files changed, 8 insertions(+), 2 deletions(-)
|
|
|
|
|
|
Accepting request 567780 from home:jfehlig:branches:Virtualization
- Update to libvirt 4.0.0
- Many incremental improvements and bug fixes, see
http://libvirt.org/news.html
- Dropped patches:
2d07f1f0-fix-storage-crash.patch,
69ed99c7-dom0-persistent.patch,
8599aedd-libvirt-guests-dom0-filter.patch,
0f33025a-virt-aa-helper-handle-more-disk-images.patch,
b475a91b-add-virStringFilterChars-string-utility.patch,
faec1958-lxc-set-hostname-based-on-container-name.patch,
2089ab21-netserver-close-clients-before-stopping-all-drivers.patch,
fix-virt-aa-helper-profile.patch,
suse-apparmor-signal.patch
- Patches added to fix upstream bugs:
72adaf2f-revert-qemu-monitor-error-report.patch,
71d56a39-nodedev-fix-parse-PCI-address.patch
- CVE-2018-5748, CVE-2017-5715, bsc#1071651
OBS-URL: https://build.opensuse.org/request/show/567780
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=661
2018-01-19 20:16:17 +01:00
|
|
|
Index: libvirt-4.0.0/src/network/bridge_driver.c
|
2017-03-16 15:56:18 +01:00
|
|
|
===================================================================
|
Accepting request 567780 from home:jfehlig:branches:Virtualization
- Update to libvirt 4.0.0
- Many incremental improvements and bug fixes, see
http://libvirt.org/news.html
- Dropped patches:
2d07f1f0-fix-storage-crash.patch,
69ed99c7-dom0-persistent.patch,
8599aedd-libvirt-guests-dom0-filter.patch,
0f33025a-virt-aa-helper-handle-more-disk-images.patch,
b475a91b-add-virStringFilterChars-string-utility.patch,
faec1958-lxc-set-hostname-based-on-container-name.patch,
2089ab21-netserver-close-clients-before-stopping-all-drivers.patch,
fix-virt-aa-helper-profile.patch,
suse-apparmor-signal.patch
- Patches added to fix upstream bugs:
72adaf2f-revert-qemu-monitor-error-report.patch,
71d56a39-nodedev-fix-parse-PCI-address.patch
- CVE-2018-5748, CVE-2017-5715, bsc#1071651
OBS-URL: https://build.opensuse.org/request/show/567780
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=661
2018-01-19 20:16:17 +01:00
|
|
|
--- libvirt-4.0.0.orig/src/network/bridge_driver.c
|
|
|
|
|
+++ libvirt-4.0.0/src/network/bridge_driver.c
|
2017-09-15 19:11:37 +02:00
|
|
|
@@ -1393,7 +1393,14 @@ networkDnsmasqConfContents(virNetworkObj
|
2017-03-08 04:58:39 +01:00
|
|
|
if (VIR_SOCKET_ADDR_IS_FAMILY(&ipdef->address, AF_INET)) {
|
|
|
|
|
if (ipdef->nranges || ipdef->nhosts) {
|
|
|
|
|
virBufferAddLit(&configbuf, "dhcp-no-override\n");
|
|
|
|
|
- virBufferAddLit(&configbuf, "dhcp-authoritative\n");
|
|
|
|
|
+ /*
|
|
|
|
|
+ * Use "dhcp-authoritative" only for dynamic DHCP.
|
|
|
|
|
+ * In a static-only network, it would cause dnsmasq
|
|
|
|
|
+ * to reply to requests from other hosts than those
|
|
|
|
|
+ * statically defined.
|
|
|
|
|
+ */
|
|
|
|
|
+ if (ipdef->nranges || !ipdef->nhosts)
|
|
|
|
|
+ virBufferAddLit(&configbuf, "dhcp-authoritative\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ipdef->tftproot) {
|
Accepting request 567780 from home:jfehlig:branches:Virtualization
- Update to libvirt 4.0.0
- Many incremental improvements and bug fixes, see
http://libvirt.org/news.html
- Dropped patches:
2d07f1f0-fix-storage-crash.patch,
69ed99c7-dom0-persistent.patch,
8599aedd-libvirt-guests-dom0-filter.patch,
0f33025a-virt-aa-helper-handle-more-disk-images.patch,
b475a91b-add-virStringFilterChars-string-utility.patch,
faec1958-lxc-set-hostname-based-on-container-name.patch,
2089ab21-netserver-close-clients-before-stopping-all-drivers.patch,
fix-virt-aa-helper-profile.patch,
suse-apparmor-signal.patch
- Patches added to fix upstream bugs:
72adaf2f-revert-qemu-monitor-error-report.patch,
71d56a39-nodedev-fix-parse-PCI-address.patch
- CVE-2018-5748, CVE-2017-5715, bsc#1071651
OBS-URL: https://build.opensuse.org/request/show/567780
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=661
2018-01-19 20:16:17 +01:00
|
|
|
Index: libvirt-4.0.0/tests/networkxml2confdata/dhcp6host-routed-network.conf
|
2017-03-16 15:56:18 +01:00
|
|
|
===================================================================
|
Accepting request 567780 from home:jfehlig:branches:Virtualization
- Update to libvirt 4.0.0
- Many incremental improvements and bug fixes, see
http://libvirt.org/news.html
- Dropped patches:
2d07f1f0-fix-storage-crash.patch,
69ed99c7-dom0-persistent.patch,
8599aedd-libvirt-guests-dom0-filter.patch,
0f33025a-virt-aa-helper-handle-more-disk-images.patch,
b475a91b-add-virStringFilterChars-string-utility.patch,
faec1958-lxc-set-hostname-based-on-container-name.patch,
2089ab21-netserver-close-clients-before-stopping-all-drivers.patch,
fix-virt-aa-helper-profile.patch,
suse-apparmor-signal.patch
- Patches added to fix upstream bugs:
72adaf2f-revert-qemu-monitor-error-report.patch,
71d56a39-nodedev-fix-parse-PCI-address.patch
- CVE-2018-5748, CVE-2017-5715, bsc#1071651
OBS-URL: https://build.opensuse.org/request/show/567780
OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=661
2018-01-19 20:16:17 +01:00
|
|
|
--- libvirt-4.0.0.orig/tests/networkxml2confdata/dhcp6host-routed-network.conf
|
|
|
|
|
+++ libvirt-4.0.0/tests/networkxml2confdata/dhcp6host-routed-network.conf
|
2017-03-08 04:58:39 +01:00
|
|
|
@@ -10,7 +10,6 @@ bind-dynamic
|
|
|
|
|
interface=virbr1
|
|
|
|
|
dhcp-range=192.168.122.1,static
|
|
|
|
|
dhcp-no-override
|
|
|
|
|
-dhcp-authoritative
|
|
|
|
|
dhcp-range=2001:db8:ac10:fd01::1,static,64
|
|
|
|
|
dhcp-hostsfile=/var/lib/libvirt/dnsmasq/local.hostsfile
|
|
|
|
|
addn-hosts=/var/lib/libvirt/dnsmasq/local.addnhosts
|
