From: Andrew Zaborowski <andrew.zaborowski@intel.com>
To: ell@lists.01.org
Subject: [PATCH 07/15] dhcp-server: Ensure broadcast address is not selected
Date: Mon, 02 Aug 2021 16:04:16 +0200 [thread overview]
Message-ID: <20210802140424.170150-7-andrew.zaborowski@intel.com> (raw)
In-Reply-To: <20210802140424.170150-1-andrew.zaborowski@intel.com>
[-- Attachment #1: Type: text/plain, Size: 2671 bytes --]
In find_free_or_expired_ip, get_lease and check_requested_ip we'd allow
addresses up to and including server->end_ip meaning that in some
situations the broadcast address might have been allowed as a valid
client address. find_free_or_expired_ip would check that the address
didn't end in .255 but that is only correct for a 24-bit netmask. Now
set start_ip to be at least one address above the subnet address and
end_ip to be at lesat one address below the broadcast address.
---
ell/dhcp-server.c | 34 +++++++++++++++++++++++-----------
1 file changed, 23 insertions(+), 11 deletions(-)
diff --git a/ell/dhcp-server.c b/ell/dhcp-server.c
index bdf43d7..a4e7002 100644
--- a/ell/dhcp-server.c
+++ b/ell/dhcp-server.c
@@ -971,8 +971,8 @@ LIB_EXPORT bool l_dhcp_server_start(struct l_dhcp_server *server)
*/
if (!server->start_ip) {
server->start_ip = ntohl(server->address) + 1;
- server->end_ip = ntohl(server->address) |
- (~ntohl(server->netmask));
+ server->end_ip = (ntohl(server->address) |
+ (~ntohl(server->netmask))) - 1;
} else {
if ((server->start_ip ^ ntohl(server->address)) &
ntohl(server->netmask))
@@ -981,17 +981,29 @@ LIB_EXPORT bool l_dhcp_server_start(struct l_dhcp_server *server)
if ((server->end_ip ^ ntohl(server->address)) &
ntohl(server->netmask))
return false;
- }
- /*
- * We skip over IPs ending in 0 or 255 when selecting a free address
- * later on but make sure end_ip is not 0xffffffff so we can use
- * "<= server->end_ip" safely in the loop condition.
- */
- if ((server->end_ip & 0xff) == 255)
- server->end_ip--;
+ /*
+ * Directly ensure the [start_ip, end_ip] range doesn't
+ * include the subnet address or the broadcast address so that
+ * we have fewer checks to make when selecting a free address
+ * from that range. Additionally this ensures end_ip is not
+ * 0xffffffff so we can use the condition "<= server->end_ip"
+ * safely on uint32_t values.
+ * In find_free_or_expired_ip we skip over IPs ending in .0 or
+ * .255 even for netmasks other than 24-bit just to avoid
+ * generating addresses that could look suspicious even if
+ * they're legal. We don't exclude these addresses when
+ * explicitly requested by the client, i.e. in
+ * check_requested_ip.
+ */
+ if ((server->start_ip & (~ntohl(server->netmask))) == 0)
+ server->start_ip++;
+
+ if ((server->end_ip | ntohl(server->netmask)) == 0xffffffff)
+ server->end_ip--;
+ }
- if (server->start_ip > server->end_ip)
+ if (server->start_ip >= server->end_ip)
return false;
if (!server->ifname) {
--
2.30.2
next prev parent reply other threads:[~2021-08-02 14:04 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-08-02 14:04 [PATCH 01/15] dhcp-server: Add "authoritative" mode Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 02/15] dhcp-server: Handle DHCPDECLINE for active leases Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 03/15] dhcp-server: Respect client's broadcast flag Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 04/15] dhcp-server: Look up leases by client identifier option Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 05/15] dhcp-server: Copy client identifier from the client message Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 06/15] dhcp-server: Save lease mac before calling add_lease Andrew Zaborowski
2021-08-02 14:04 ` Andrew Zaborowski [this message]
2021-08-02 14:04 ` [PATCH 08/15] dhcp-server: Reuse leases in find_free_or_expired_ip Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 09/15] dhcp-server: Refactor lease lookup Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 10/15] dhcp-server: Allow reactivating expired leases Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 11/15] dhcp: Support RFC4039 Rapid Commit Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 12/15] dhcp-server: " Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 13/15] dhcp-server: Rapid commit enable/disable setter Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 14/15] unit: Stricter checks in unit-dhcp Andrew Zaborowski
2021-08-02 14:04 ` [PATCH 15/15] unit: Test DHCP rapid commit Andrew Zaborowski
2021-08-02 18:15 ` [PATCH 01/15] dhcp-server: Add "authoritative" mode Denis Kenzior
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210802140424.170150-7-andrew.zaborowski@intel.com \
--to=andrew.zaborowski@intel.com \
--cc=ell@lists.01.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).