From 50c37f591b854aa96e47f5ecb9cfcd2bf06eaa6d Mon Sep 17 00:00:00 2001
From: Helmut Grohne <helmut@subdivi.de>
Date: Fri, 23 Dec 2022 09:08:36 +0100
Subject: debvm-create: restrict networkd quirks to old releases

Reported-by: Jochen Sprickerhof <git@jochen.sprickerhof.de>
---
 debvm-create | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'debvm-create')

diff --git a/debvm-create b/debvm-create
index e574ee1..e16c632 100755
--- a/debvm-create
+++ b/debvm-create
@@ -155,9 +155,16 @@ set -- \
 set -- '--customize-hook=chroot "$1" passwd --delete root' "$@"
 
 # dhcp on all network interfaces
+SYSD_NET_MATCH='Name=en*\n'
+test "$SUITE" = jessie && SYSD_NET_MATCH="${SYSD_NET_MATCH}Name=eth*\\n"
+SYSD_NET_NET='DHCP=yes\n'
+# This anchor is included by default since bullseye. Fails DNSSEC validation when missing.
+case "$SUITE" in jessie|stretch|buster)
+	SYSD_NET_NET="${SYSD_NET_NET}DNSSECNegativeTrustAnchors=home.arpa\n\n"
+;; esac
 set -- \
 	'--customize-hook=chroot "$1" systemctl enable systemd-networkd.service' \
-	"--customize-hook=printf '"'[Match]\nName=en*\nName=eth*\n[Network]\nDHCP=yes\nDNSSECNegativeTrustAnchors=home.arpa\n[DHCP]\nUseDomains=yes\n'"'"' > "$1/etc/systemd/network/20-wired.network"' \
+	"--customize-hook=printf \"[Match]\\n${SYSD_NET_MATCH}[Network]\\n$SYSD_NET_NET"'[DHCP]\nUseDomains=yes\n" > "$1/etc/systemd/network/20-wired.network"' \
 	"$@"
 
 # add ssh key for root
-- 
cgit v1.2.3