2021-05-21 12:55:42 +01:00
|
|
|
//go:build aix || darwin || dragonfly || freebsd || linux || netbsd || openbsd || solaris
|
2021-06-15 17:42:41 +01:00
|
|
|
// +build aix darwin dragonfly freebsd linux netbsd openbsd solaris
|
2021-05-21 12:55:42 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
package dhcpd
|
|
|
|
|
|
|
|
import (
|
|
|
|
"bytes"
|
|
|
|
"fmt"
|
|
|
|
"net"
|
|
|
|
"sync"
|
|
|
|
"time"
|
|
|
|
|
2021-08-12 15:33:53 +01:00
|
|
|
"github.com/AdguardTeam/AdGuardHome/internal/aghnet"
|
2021-05-24 15:28:11 +01:00
|
|
|
"github.com/AdguardTeam/golibs/errors"
|
2020-07-03 16:20:01 +01:00
|
|
|
"github.com/AdguardTeam/golibs/log"
|
2021-08-09 14:03:37 +01:00
|
|
|
"github.com/AdguardTeam/golibs/netutil"
|
2020-07-03 16:20:01 +01:00
|
|
|
"github.com/insomniacslk/dhcp/dhcpv6"
|
|
|
|
"github.com/insomniacslk/dhcp/dhcpv6/server6"
|
|
|
|
"github.com/insomniacslk/dhcp/iana"
|
|
|
|
)
|
|
|
|
|
|
|
|
const valueIAID = "ADGH" // value for IANA.ID
|
|
|
|
|
2020-11-27 11:39:43 +00:00
|
|
|
// v6Server is a DHCPv6 server.
|
|
|
|
//
|
|
|
|
// TODO(a.garipov): Think about unifying this and v4Server.
|
2020-07-03 16:20:01 +01:00
|
|
|
type v6Server struct {
|
|
|
|
srv *server6.Server
|
|
|
|
leasesLock sync.Mutex
|
|
|
|
leases []*Lease
|
|
|
|
ipAddrs [256]byte
|
|
|
|
sid dhcpv6.Duid
|
|
|
|
|
2020-09-24 16:33:11 +01:00
|
|
|
ra raCtx // RA module
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
conf V6ServerConf
|
|
|
|
}
|
|
|
|
|
|
|
|
// WriteDiskConfig4 - write configuration
|
|
|
|
func (s *v6Server) WriteDiskConfig4(c *V4ServerConf) {
|
|
|
|
}
|
|
|
|
|
|
|
|
// WriteDiskConfig6 - write configuration
|
|
|
|
func (s *v6Server) WriteDiskConfig6(c *V6ServerConf) {
|
|
|
|
*c = s.conf
|
|
|
|
}
|
|
|
|
|
|
|
|
// Return TRUE if IP address is within range [start..0xff]
|
2020-11-06 09:15:08 +00:00
|
|
|
func ip6InRange(start, ip net.IP) bool {
|
2020-07-03 16:20:01 +01:00
|
|
|
if len(start) != 16 {
|
|
|
|
return false
|
|
|
|
}
|
2021-03-11 11:01:48 +00:00
|
|
|
//lint:ignore SA1021 TODO(e.burkov): Ignore this for now, think about
|
|
|
|
// using masks.
|
2020-07-03 16:20:01 +01:00
|
|
|
if !bytes.Equal(start[:15], ip[:15]) {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
return start[15] <= ip[15]
|
|
|
|
}
|
|
|
|
|
2021-06-16 14:48:46 +01:00
|
|
|
// ResetLeases resets leases.
|
|
|
|
func (s *v6Server) ResetLeases(leases []*Lease) (err error) {
|
|
|
|
defer func() { err = errors.Annotate(err, "dhcpv4: %w") }()
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
s.leases = nil
|
2021-06-16 14:48:46 +01:00
|
|
|
for _, l := range leases {
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
if l.Expiry.Unix() != leaseExpireStatic &&
|
|
|
|
!ip6InRange(s.conf.ipStart, l.IP) {
|
|
|
|
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: skipping a lease with IP %v: not within current IP range", l.IP)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
continue
|
|
|
|
}
|
|
|
|
|
|
|
|
s.addLease(l)
|
|
|
|
}
|
2021-06-16 14:48:46 +01:00
|
|
|
|
|
|
|
return nil
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
2021-06-16 14:48:46 +01:00
|
|
|
// GetLeases returns the list of current DHCP leases. It is safe for concurrent
|
|
|
|
// use.
|
|
|
|
func (s *v6Server) GetLeases(flags GetLeasesFlags) (leases []*Lease) {
|
2021-01-20 12:59:24 +00:00
|
|
|
// The function shouldn't return nil value because zero-length slice
|
|
|
|
// behaves differently in cases like marshalling. Our front-end also
|
|
|
|
// requires non-nil value in the response.
|
2021-06-16 14:48:46 +01:00
|
|
|
leases = []*Lease{}
|
2020-07-03 16:20:01 +01:00
|
|
|
s.leasesLock.Lock()
|
2021-06-16 14:48:46 +01:00
|
|
|
for _, l := range s.leases {
|
|
|
|
if l.Expiry.Unix() == leaseExpireStatic {
|
2020-07-03 16:20:01 +01:00
|
|
|
if (flags & LeasesStatic) != 0 {
|
2021-06-16 14:48:46 +01:00
|
|
|
leases = append(leases, l.Clone())
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if (flags & LeasesDynamic) != 0 {
|
2021-06-16 14:48:46 +01:00
|
|
|
leases = append(leases, l.Clone())
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
s.leasesLock.Unlock()
|
2021-06-16 14:48:46 +01:00
|
|
|
return leases
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
2021-03-18 14:07:13 +00:00
|
|
|
// getLeasesRef returns the actual leases slice. For internal use only.
|
|
|
|
func (s *v6Server) getLeasesRef() []*Lease {
|
2020-07-03 16:20:01 +01:00
|
|
|
return s.leases
|
|
|
|
}
|
|
|
|
|
|
|
|
// FindMACbyIP - find a MAC address by IP address in the currently active DHCP leases
|
|
|
|
func (s *v6Server) FindMACbyIP(ip net.IP) net.HardwareAddr {
|
|
|
|
now := time.Now().Unix()
|
|
|
|
|
|
|
|
s.leasesLock.Lock()
|
|
|
|
defer s.leasesLock.Unlock()
|
|
|
|
|
|
|
|
for _, l := range s.leases {
|
|
|
|
if l.IP.Equal(ip) {
|
|
|
|
unix := l.Expiry.Unix()
|
|
|
|
if unix > now || unix == leaseExpireStatic {
|
|
|
|
return l.HWAddr
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Remove (swap) lease by index
|
|
|
|
func (s *v6Server) leaseRemoveSwapByIndex(i int) {
|
|
|
|
s.ipAddrs[s.leases[i].IP[15]] = 0
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: removed lease %s", s.leases[i].HWAddr)
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
n := len(s.leases)
|
|
|
|
if i != n-1 {
|
|
|
|
s.leases[i] = s.leases[n-1] // swap with the last element
|
|
|
|
}
|
|
|
|
s.leases = s.leases[:n-1]
|
|
|
|
}
|
|
|
|
|
|
|
|
// Remove a dynamic lease with the same properties
|
|
|
|
// Return error if a static lease is found
|
2021-06-16 14:48:46 +01:00
|
|
|
func (s *v6Server) rmDynamicLease(lease *Lease) (err error) {
|
2020-07-03 16:20:01 +01:00
|
|
|
for i := 0; i < len(s.leases); i++ {
|
|
|
|
l := s.leases[i]
|
|
|
|
|
|
|
|
if bytes.Equal(l.HWAddr, lease.HWAddr) {
|
|
|
|
if l.Expiry.Unix() == leaseExpireStatic {
|
|
|
|
return fmt.Errorf("static lease already exists")
|
|
|
|
}
|
|
|
|
|
|
|
|
s.leaseRemoveSwapByIndex(i)
|
2020-08-25 11:38:52 +01:00
|
|
|
if i == len(s.leases) {
|
|
|
|
break
|
|
|
|
}
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
l = s.leases[i]
|
|
|
|
}
|
|
|
|
|
|
|
|
if net.IP.Equal(l.IP, lease.IP) {
|
|
|
|
if l.Expiry.Unix() == leaseExpireStatic {
|
|
|
|
return fmt.Errorf("static lease already exists")
|
|
|
|
}
|
|
|
|
|
|
|
|
s.leaseRemoveSwapByIndex(i)
|
|
|
|
}
|
|
|
|
}
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-03-31 10:36:57 +01:00
|
|
|
// AddStaticLease adds a static lease. It is safe for concurrent use.
|
2021-06-16 14:48:46 +01:00
|
|
|
func (s *v6Server) AddStaticLease(l *Lease) (err error) {
|
2021-05-24 15:28:11 +01:00
|
|
|
defer func() { err = errors.Annotate(err, "dhcpv6: %w") }()
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
if len(l.IP) != 16 {
|
|
|
|
return fmt.Errorf("invalid IP")
|
|
|
|
}
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2021-08-09 14:03:37 +01:00
|
|
|
err = netutil.ValidateMAC(l.HWAddr)
|
2021-03-31 10:36:57 +01:00
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("validating lease: %w", err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
l.Expiry = time.Unix(leaseExpireStatic, 0)
|
|
|
|
|
|
|
|
s.leasesLock.Lock()
|
2021-03-31 10:36:57 +01:00
|
|
|
err = s.rmDynamicLease(l)
|
2020-07-03 16:20:01 +01:00
|
|
|
if err != nil {
|
|
|
|
s.leasesLock.Unlock()
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return err
|
|
|
|
}
|
2021-06-16 14:48:46 +01:00
|
|
|
|
|
|
|
s.addLease(l)
|
2020-07-03 16:20:01 +01:00
|
|
|
s.conf.notify(LeaseChangedDBStore)
|
|
|
|
s.leasesLock.Unlock()
|
|
|
|
|
|
|
|
s.conf.notify(LeaseChangedAddedStatic)
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-03-31 10:36:57 +01:00
|
|
|
// RemoveStaticLease removes a static lease. It is safe for concurrent use.
|
2021-06-16 14:48:46 +01:00
|
|
|
func (s *v6Server) RemoveStaticLease(l *Lease) (err error) {
|
2021-05-24 15:28:11 +01:00
|
|
|
defer func() { err = errors.Annotate(err, "dhcpv6: %w") }()
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
if len(l.IP) != 16 {
|
|
|
|
return fmt.Errorf("invalid IP")
|
|
|
|
}
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2021-08-09 14:03:37 +01:00
|
|
|
err = netutil.ValidateMAC(l.HWAddr)
|
2021-03-31 10:36:57 +01:00
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("validating lease: %w", err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
s.leasesLock.Lock()
|
2021-03-31 10:36:57 +01:00
|
|
|
err = s.rmLease(l)
|
2020-07-03 16:20:01 +01:00
|
|
|
if err != nil {
|
|
|
|
s.leasesLock.Unlock()
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
s.conf.notify(LeaseChangedDBStore)
|
|
|
|
s.leasesLock.Unlock()
|
|
|
|
s.conf.notify(LeaseChangedRemovedStatic)
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Add a lease
|
|
|
|
func (s *v6Server) addLease(l *Lease) {
|
|
|
|
s.leases = append(s.leases, l)
|
|
|
|
s.ipAddrs[l.IP[15]] = 1
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: added lease %s <-> %s", l.IP, l.HWAddr)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
// Remove a lease with the same properties
|
2021-06-16 14:48:46 +01:00
|
|
|
func (s *v6Server) rmLease(lease *Lease) (err error) {
|
2020-07-03 16:20:01 +01:00
|
|
|
for i, l := range s.leases {
|
|
|
|
if net.IP.Equal(l.IP, lease.IP) {
|
|
|
|
if !bytes.Equal(l.HWAddr, lease.HWAddr) ||
|
|
|
|
l.Hostname != lease.Hostname {
|
2020-11-05 12:20:57 +00:00
|
|
|
return fmt.Errorf("lease not found")
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
s.leaseRemoveSwapByIndex(i)
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
}
|
2021-06-16 14:48:46 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return fmt.Errorf("lease not found")
|
|
|
|
}
|
|
|
|
|
|
|
|
// Find lease by MAC
|
|
|
|
func (s *v6Server) findLease(mac net.HardwareAddr) *Lease {
|
|
|
|
s.leasesLock.Lock()
|
|
|
|
defer s.leasesLock.Unlock()
|
|
|
|
|
|
|
|
for i := range s.leases {
|
|
|
|
if bytes.Equal(mac, s.leases[i].HWAddr) {
|
|
|
|
return s.leases[i]
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Find an expired lease and return its index or -1
|
|
|
|
func (s *v6Server) findExpiredLease() int {
|
|
|
|
now := time.Now().Unix()
|
|
|
|
for i, lease := range s.leases {
|
|
|
|
if lease.Expiry.Unix() != leaseExpireStatic &&
|
|
|
|
lease.Expiry.Unix() <= now {
|
|
|
|
return i
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return -1
|
|
|
|
}
|
|
|
|
|
|
|
|
// Get next free IP
|
|
|
|
func (s *v6Server) findFreeIP() net.IP {
|
|
|
|
for i := s.conf.ipStart[15]; ; i++ {
|
|
|
|
if s.ipAddrs[i] == 0 {
|
|
|
|
ip := make([]byte, 16)
|
|
|
|
copy(ip, s.conf.ipStart)
|
|
|
|
ip[15] = i
|
|
|
|
return ip
|
|
|
|
}
|
|
|
|
if i == 0xff {
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Reserve lease for MAC
|
|
|
|
func (s *v6Server) reserveLease(mac net.HardwareAddr) *Lease {
|
2021-03-31 10:36:57 +01:00
|
|
|
l := Lease{
|
|
|
|
HWAddr: make([]byte, len(mac)),
|
|
|
|
}
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
copy(l.HWAddr, mac)
|
|
|
|
|
|
|
|
s.leasesLock.Lock()
|
|
|
|
defer s.leasesLock.Unlock()
|
|
|
|
|
|
|
|
copy(l.IP, s.conf.ipStart)
|
|
|
|
l.IP = s.findFreeIP()
|
|
|
|
if l.IP == nil {
|
|
|
|
i := s.findExpiredLease()
|
|
|
|
if i < 0 {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
copy(s.leases[i].HWAddr, mac)
|
|
|
|
return s.leases[i]
|
|
|
|
}
|
|
|
|
|
|
|
|
s.addLease(&l)
|
|
|
|
return &l
|
|
|
|
}
|
|
|
|
|
|
|
|
func (s *v6Server) commitDynamicLease(l *Lease) {
|
|
|
|
l.Expiry = time.Now().Add(s.conf.leaseTime)
|
|
|
|
|
|
|
|
s.leasesLock.Lock()
|
|
|
|
s.conf.notify(LeaseChangedDBStore)
|
|
|
|
s.leasesLock.Unlock()
|
|
|
|
s.conf.notify(LeaseChangedAdded)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check Client ID
|
|
|
|
func (s *v6Server) checkCID(msg *dhcpv6.Message) error {
|
|
|
|
if msg.Options.ClientID() == nil {
|
2020-11-05 12:20:57 +00:00
|
|
|
return fmt.Errorf("dhcpv6: no ClientID option in request")
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
2021-05-21 16:30:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check ServerID policy
|
|
|
|
func (s *v6Server) checkSID(msg *dhcpv6.Message) error {
|
|
|
|
sid := msg.Options.ServerID()
|
|
|
|
|
|
|
|
switch msg.Type() {
|
|
|
|
case dhcpv6.MessageTypeSolicit,
|
|
|
|
dhcpv6.MessageTypeConfirm,
|
|
|
|
dhcpv6.MessageTypeRebind:
|
|
|
|
|
|
|
|
if sid != nil {
|
2020-11-05 12:20:57 +00:00
|
|
|
return fmt.Errorf("dhcpv6: drop packet: ServerID option in message %s", msg.Type().String())
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
case dhcpv6.MessageTypeRequest,
|
|
|
|
dhcpv6.MessageTypeRenew,
|
|
|
|
dhcpv6.MessageTypeRelease,
|
|
|
|
dhcpv6.MessageTypeDecline:
|
|
|
|
if sid == nil {
|
2020-11-05 12:20:57 +00:00
|
|
|
return fmt.Errorf("dhcpv6: drop packet: no ServerID option in message %s", msg.Type().String())
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
2021-05-21 16:30:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
if !sid.Equal(s.sid) {
|
2020-11-05 12:20:57 +00:00
|
|
|
return fmt.Errorf("dhcpv6: drop packet: mismatched ServerID option in message %s: %s",
|
2020-07-03 16:20:01 +01:00
|
|
|
msg.Type().String(), sid.String())
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// . IAAddress must be equal to the lease's IP
|
|
|
|
func (s *v6Server) checkIA(msg *dhcpv6.Message, lease *Lease) error {
|
|
|
|
switch msg.Type() {
|
|
|
|
case dhcpv6.MessageTypeRequest,
|
|
|
|
dhcpv6.MessageTypeConfirm,
|
|
|
|
dhcpv6.MessageTypeRenew,
|
|
|
|
dhcpv6.MessageTypeRebind:
|
|
|
|
|
|
|
|
oia := msg.Options.OneIANA()
|
|
|
|
if oia == nil {
|
|
|
|
return fmt.Errorf("no IANA option in %s", msg.Type().String())
|
|
|
|
}
|
|
|
|
|
|
|
|
oiaAddr := oia.Options.OneAddress()
|
|
|
|
if oiaAddr == nil {
|
|
|
|
return fmt.Errorf("no IANA.Addr option in %s", msg.Type().String())
|
|
|
|
}
|
|
|
|
|
|
|
|
if !oiaAddr.IPv6Addr.Equal(lease.IP) {
|
|
|
|
return fmt.Errorf("invalid IANA.Addr option in %s", msg.Type().String())
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Store lease in DB (if necessary) and return lease life time
|
|
|
|
func (s *v6Server) commitLease(msg *dhcpv6.Message, lease *Lease) time.Duration {
|
|
|
|
lifetime := s.conf.leaseTime
|
|
|
|
|
|
|
|
switch msg.Type() {
|
|
|
|
case dhcpv6.MessageTypeSolicit:
|
|
|
|
//
|
|
|
|
|
|
|
|
case dhcpv6.MessageTypeConfirm:
|
2020-11-06 09:15:08 +00:00
|
|
|
lifetime = time.Until(lease.Expiry)
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
case dhcpv6.MessageTypeRequest,
|
|
|
|
dhcpv6.MessageTypeRenew,
|
|
|
|
dhcpv6.MessageTypeRebind:
|
|
|
|
|
|
|
|
if lease.Expiry.Unix() != leaseExpireStatic {
|
|
|
|
s.commitDynamicLease(lease)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return lifetime
|
|
|
|
}
|
|
|
|
|
|
|
|
// Find a lease associated with MAC and prepare response
|
2020-11-06 09:15:08 +00:00
|
|
|
func (s *v6Server) process(msg *dhcpv6.Message, req, resp dhcpv6.DHCPv6) bool {
|
2020-07-03 16:20:01 +01:00
|
|
|
switch msg.Type() {
|
|
|
|
case dhcpv6.MessageTypeSolicit,
|
|
|
|
dhcpv6.MessageTypeRequest,
|
|
|
|
dhcpv6.MessageTypeConfirm,
|
|
|
|
dhcpv6.MessageTypeRenew,
|
|
|
|
dhcpv6.MessageTypeRebind:
|
|
|
|
// continue
|
|
|
|
|
|
|
|
default:
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
mac, err := dhcpv6.ExtractMAC(req)
|
|
|
|
if err != nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: dhcpv6.ExtractMAC: %s", err)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
lease := s.findLease(mac)
|
|
|
|
if lease == nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: no lease for: %s", mac)
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
switch msg.Type() {
|
|
|
|
|
|
|
|
case dhcpv6.MessageTypeSolicit:
|
|
|
|
lease = s.reserveLease(mac)
|
|
|
|
if lease == nil {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
default:
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
err = s.checkIA(msg, lease)
|
|
|
|
if err != nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: %s", err)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
lifetime := s.commitLease(msg, lease)
|
|
|
|
|
|
|
|
oia := &dhcpv6.OptIANA{
|
|
|
|
T1: lifetime / 2,
|
|
|
|
T2: time.Duration(float32(lifetime) / 1.5),
|
|
|
|
}
|
|
|
|
roia := msg.Options.OneIANA()
|
|
|
|
if roia != nil {
|
|
|
|
copy(oia.IaId[:], roia.IaId[:])
|
|
|
|
} else {
|
|
|
|
copy(oia.IaId[:], []byte(valueIAID))
|
|
|
|
}
|
|
|
|
oiaAddr := &dhcpv6.OptIAAddress{
|
|
|
|
IPv6Addr: lease.IP,
|
|
|
|
PreferredLifetime: lifetime,
|
|
|
|
ValidLifetime: lifetime,
|
|
|
|
}
|
|
|
|
oia.Options = dhcpv6.IdentityOptions{
|
|
|
|
Options: []dhcpv6.Option{oiaAddr},
|
|
|
|
}
|
|
|
|
resp.AddOption(oia)
|
|
|
|
|
|
|
|
if msg.IsOptionRequested(dhcpv6.OptionDNSRecursiveNameServer) {
|
|
|
|
resp.UpdateOption(dhcpv6.OptDNS(s.conf.dnsIPAddrs...))
|
|
|
|
}
|
|
|
|
|
|
|
|
fqdn := msg.GetOneOption(dhcpv6.OptionFQDN)
|
|
|
|
if fqdn != nil {
|
|
|
|
resp.AddOption(fqdn)
|
|
|
|
}
|
|
|
|
|
|
|
|
resp.AddOption(&dhcpv6.OptStatusCode{
|
|
|
|
StatusCode: iana.StatusSuccess,
|
|
|
|
StatusMessage: "success",
|
|
|
|
})
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
|
|
|
|
// 1.
|
|
|
|
// fe80::* (client) --(Solicit + ClientID+IANA())-> ff02::1:2
|
|
|
|
// server -(Advertise + ClientID+ServerID+IANA(IAAddress)> fe80::*
|
|
|
|
// fe80::* --(Request + ClientID+ServerID+IANA(IAAddress))-> ff02::1:2
|
|
|
|
// server -(Reply + ClientID+ServerID+IANA(IAAddress)+DNS)> fe80::*
|
|
|
|
//
|
|
|
|
// 2.
|
|
|
|
// fe80::* --(Confirm|Renew|Rebind + ClientID+IANA(IAAddress))-> ff02::1:2
|
|
|
|
// server -(Reply + ClientID+ServerID+IANA(IAAddress)+DNS)> fe80::*
|
|
|
|
//
|
|
|
|
// 3.
|
|
|
|
// fe80::* --(Release + ClientID+ServerID+IANA(IAAddress))-> ff02::1:2
|
|
|
|
func (s *v6Server) packetHandler(conn net.PacketConn, peer net.Addr, req dhcpv6.DHCPv6) {
|
|
|
|
msg, err := req.GetInnerMessage()
|
|
|
|
if err != nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Error("dhcpv6: %s", err)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: received: %s", req.Summary())
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
err = s.checkCID(msg)
|
|
|
|
if err != nil {
|
|
|
|
log.Debug("%s", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
err = s.checkSID(msg)
|
|
|
|
if err != nil {
|
|
|
|
log.Debug("%s", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
var resp dhcpv6.DHCPv6
|
|
|
|
|
|
|
|
switch msg.Type() {
|
|
|
|
case dhcpv6.MessageTypeSolicit:
|
|
|
|
if msg.GetOneOption(dhcpv6.OptionRapidCommit) == nil {
|
|
|
|
resp, err = dhcpv6.NewAdvertiseFromSolicit(msg)
|
2021-05-21 16:30:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
break
|
|
|
|
}
|
|
|
|
|
2021-05-21 16:30:57 +01:00
|
|
|
resp, err = dhcpv6.NewReplyFromMessage(msg)
|
2020-07-03 16:20:01 +01:00
|
|
|
case dhcpv6.MessageTypeRequest,
|
|
|
|
dhcpv6.MessageTypeConfirm,
|
|
|
|
dhcpv6.MessageTypeRenew,
|
|
|
|
dhcpv6.MessageTypeRebind,
|
|
|
|
dhcpv6.MessageTypeRelease,
|
|
|
|
dhcpv6.MessageTypeInformationRequest:
|
|
|
|
resp, err = dhcpv6.NewReplyFromMessage(msg)
|
|
|
|
default:
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Error("dhcpv6: message type %d not supported", msg.Type())
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return
|
|
|
|
}
|
|
|
|
if err != nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Error("dhcpv6: %s", err)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
resp.AddOption(dhcpv6.OptServerID(s.sid))
|
|
|
|
|
|
|
|
_ = s.process(msg, req, resp)
|
|
|
|
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: sending: %s", resp.Summary())
|
2020-07-03 16:20:01 +01:00
|
|
|
|
|
|
|
_, err = conn.WriteTo(resp.ToBytes(), peer)
|
|
|
|
if err != nil {
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Error("dhcpv6: conn.Write to %s failed: %s", peer, err)
|
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-09-24 16:33:11 +01:00
|
|
|
// initialize RA module
|
|
|
|
func (s *v6Server) initRA(iface *net.Interface) error {
|
|
|
|
// choose the source IP address - should be link-local-unicast
|
|
|
|
s.ra.ipAddr = s.conf.dnsIPAddrs[0]
|
|
|
|
for _, ip := range s.conf.dnsIPAddrs {
|
|
|
|
if ip.IsLinkLocalUnicast() {
|
|
|
|
s.ra.ipAddr = ip
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-02-11 17:49:03 +00:00
|
|
|
s.ra.raAllowSLAAC = s.conf.RAAllowSLAAC
|
|
|
|
s.ra.raSLAACOnly = s.conf.RASLAACOnly
|
2020-09-24 16:33:11 +01:00
|
|
|
s.ra.dnsIPAddr = s.ra.ipAddr
|
|
|
|
s.ra.prefixIPAddr = s.conf.ipStart
|
|
|
|
s.ra.ifaceName = s.conf.InterfaceName
|
|
|
|
s.ra.iface = iface
|
|
|
|
s.ra.packetSendPeriod = 1 * time.Second
|
|
|
|
return s.ra.Init()
|
|
|
|
}
|
|
|
|
|
2020-11-09 16:27:04 +00:00
|
|
|
// Start starts the IPv6 DHCP server.
|
2021-03-31 10:36:57 +01:00
|
|
|
func (s *v6Server) Start() (err error) {
|
2021-05-24 15:28:11 +01:00
|
|
|
defer func() { err = errors.Annotate(err, "dhcpv6: %w") }()
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
if !s.conf.Enabled {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2020-11-09 16:27:04 +00:00
|
|
|
ifaceName := s.conf.InterfaceName
|
|
|
|
iface, err := net.InterfaceByName(ifaceName)
|
|
|
|
if err != nil {
|
2021-03-31 10:36:57 +01:00
|
|
|
return fmt.Errorf("finding interface %s by name: %w", ifaceName, err)
|
2020-11-09 16:27:04 +00:00
|
|
|
}
|
|
|
|
|
2020-11-27 11:39:43 +00:00
|
|
|
log.Debug("dhcpv6: starting...")
|
2020-11-09 16:27:04 +00:00
|
|
|
|
2021-08-12 15:33:53 +01:00
|
|
|
dnsIPAddrs, err := aghnet.IfaceDNSIPAddrs(
|
|
|
|
iface,
|
|
|
|
aghnet.IPVersion6,
|
|
|
|
defaultMaxAttempts,
|
|
|
|
defaultBackoff,
|
|
|
|
)
|
2020-07-03 16:20:01 +01:00
|
|
|
if err != nil {
|
2021-03-31 10:36:57 +01:00
|
|
|
return fmt.Errorf("interface %s: %w", ifaceName, err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
2020-12-02 11:42:59 +00:00
|
|
|
if len(dnsIPAddrs) == 0 {
|
|
|
|
// No available IP addresses which may appear later.
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2020-11-09 16:27:04 +00:00
|
|
|
s.conf.dnsIPAddrs = dnsIPAddrs
|
|
|
|
|
2020-09-24 16:33:11 +01:00
|
|
|
err = s.initRA(iface)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
// don't initialize DHCPv6 server if we must force the clients to use SLAAC
|
2021-02-11 17:49:03 +00:00
|
|
|
if s.conf.RASLAACOnly {
|
2021-03-31 10:36:57 +01:00
|
|
|
log.Debug("not starting dhcpv6 server due to ra_slaac_only=true")
|
|
|
|
|
2020-09-24 16:33:11 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2020-11-27 11:39:43 +00:00
|
|
|
log.Debug("dhcpv6: listening...")
|
2020-09-24 16:33:11 +01:00
|
|
|
|
2021-08-09 14:03:37 +01:00
|
|
|
err = netutil.ValidateMAC(iface.HardwareAddr)
|
2021-03-31 10:36:57 +01:00
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("validating interface %s: %w", iface.Name, err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
2021-03-31 10:36:57 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
s.sid = dhcpv6.Duid{
|
|
|
|
Type: dhcpv6.DUID_LLT,
|
|
|
|
HwType: iana.HWTypeEthernet,
|
|
|
|
LinkLayerAddr: iface.HardwareAddr,
|
|
|
|
Time: dhcpv6.GetTime(),
|
|
|
|
}
|
|
|
|
|
|
|
|
laddr := &net.UDPAddr{
|
|
|
|
IP: net.ParseIP("::"),
|
|
|
|
Port: dhcpv6.DefaultServerPort,
|
|
|
|
}
|
|
|
|
s.srv, err = server6.NewServer(iface.Name, laddr, s.packetHandler, server6.WithDebugLogger())
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
go func() {
|
|
|
|
err = s.srv.Serve()
|
2021-03-31 10:36:57 +01:00
|
|
|
log.Error("dhcpv6: srv.Serve: %s", err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}()
|
2020-09-24 16:33:11 +01:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Stop - stop server
|
2021-06-16 14:48:46 +01:00
|
|
|
func (s *v6Server) Stop() (err error) {
|
|
|
|
err = s.ra.Close()
|
2020-12-07 12:38:05 +00:00
|
|
|
if err != nil {
|
2021-06-16 14:48:46 +01:00
|
|
|
return fmt.Errorf("closing ra ctx: %w", err)
|
2020-12-07 12:38:05 +00:00
|
|
|
}
|
2020-09-24 16:33:11 +01:00
|
|
|
|
|
|
|
// DHCPv6 server may not be initialized if ra_slaac_only=true
|
2020-07-03 16:20:01 +01:00
|
|
|
if s.srv == nil {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2021-05-21 16:30:57 +01:00
|
|
|
log.Debug("dhcpv6: stopping")
|
2020-12-07 12:38:05 +00:00
|
|
|
err = s.srv.Close()
|
2020-07-03 16:20:01 +01:00
|
|
|
if err != nil {
|
2021-06-16 14:48:46 +01:00
|
|
|
return fmt.Errorf("closing dhcpv6 srv: %w", err)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
2020-12-07 12:38:05 +00:00
|
|
|
|
2020-07-03 16:20:01 +01:00
|
|
|
// now server.Serve() will return
|
|
|
|
s.srv = nil
|
2021-06-16 14:48:46 +01:00
|
|
|
|
|
|
|
return nil
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
// Create DHCPv6 server
|
|
|
|
func v6Create(conf V6ServerConf) (DHCPServer, error) {
|
|
|
|
s := &v6Server{}
|
|
|
|
s.conf = conf
|
|
|
|
|
|
|
|
if !conf.Enabled {
|
|
|
|
return s, nil
|
|
|
|
}
|
|
|
|
|
2021-01-20 14:27:53 +00:00
|
|
|
s.conf.ipStart = conf.RangeStart
|
2020-09-24 16:33:11 +01:00
|
|
|
if s.conf.ipStart == nil || s.conf.ipStart.To16() == nil {
|
2020-11-05 12:20:57 +00:00
|
|
|
return s, fmt.Errorf("dhcpv6: invalid range-start IP: %s", conf.RangeStart)
|
2020-07-03 16:20:01 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
if conf.LeaseDuration == 0 {
|
|
|
|
s.conf.leaseTime = time.Hour * 24
|
|
|
|
s.conf.LeaseDuration = uint32(s.conf.leaseTime.Seconds())
|
|
|
|
} else {
|
|
|
|
s.conf.leaseTime = time.Second * time.Duration(conf.LeaseDuration)
|
|
|
|
}
|
|
|
|
|
|
|
|
return s, nil
|
|
|
|
}
|