debvm-create: restrict networkd quirks to old releases

Reported-by: Jochen Sprickerhof <git@jochen.sprickerhof.de>
author: Helmut Grohne <helmut@subdivi.de> 2022-12-23 09:08:36 +0100
committer: Helmut Grohne <helmut@subdivi.de> 2022-12-23 09:08:36 +0100
commit: 50c37f591b854aa96e47f5ecb9cfcd2bf06eaa6d (patch)
tree: 65da1405c068d47aadc7c19786c3e85f947c0ae3
parent: fa29c199e7dfda1cc9c93f6948e8d9688c345d64 (diff)
download: debvm-50c37f591b854aa96e47f5ecb9cfcd2bf06eaa6d.tar.gz
1 files changed, 8 insertions, 1 deletions
diff --git a/debvm-create b/debvm-create
index e574ee1..e16c632 100755
--- a/debvm-create
+++ b/debvm-create
@@ -155,9 +155,16 @@ set -- \
 set -- '--customize-hook=chroot "$1" passwd --delete root' "$@"
 
 # dhcp on all network interfaces
+SYSD_NET_MATCH='Name=en*\n'
+test "$SUITE" = jessie && SYSD_NET_MATCH="${SYSD_NET_MATCH}Name=eth*\\n"
+SYSD_NET_NET='DHCP=yes\n'
+# This anchor is included by default since bullseye. Fails DNSSEC validation when missing.
+case "$SUITE" in jessie|stretch|buster)
+	SYSD_NET_NET="${SYSD_NET_NET}DNSSECNegativeTrustAnchors=home.arpa\n\n"
+;; esac
 set -- \
 	'--customize-hook=chroot "$1" systemctl enable systemd-networkd.service' \
-	"--customize-hook=printf '"'[Match]\nName=en*\nName=eth*\n[Network]\nDHCP=yes\nDNSSECNegativeTrustAnchors=home.arpa\n[DHCP]\nUseDomains=yes\n'"'"' > "$1/etc/systemd/network/20-wired.network"' \
+	"--customize-hook=printf \"[Match]\\n${SYSD_NET_MATCH}[Network]\\n$SYSD_NET_NET"'[DHCP]\nUseDomains=yes\n" > "$1/etc/systemd/network/20-wired.network"' \
 	"$@"
 
 # add ssh key for root
author	Helmut Grohne <helmut@subdivi.de>	2022-12-23 09:08:36 +0100
committer	Helmut Grohne <helmut@subdivi.de>	2022-12-23 09:08:36 +0100
commit	50c37f591b854aa96e47f5ecb9cfcd2bf06eaa6d (patch)
tree	65da1405c068d47aadc7c19786c3e85f947c0ae3
parent	fa29c199e7dfda1cc9c93f6948e8d9688c345d64 (diff)
download	debvm-50c37f591b854aa96e47f5ecb9cfcd2bf06eaa6d.tar.gz