Report information
The Basics
Id:
34784
Status:
resolved
Worked:
15 minutes
Priority:
Medium/Medium
Queue:
dhcp-public
People
BugTracker
Version Fixed:
4.1-ESV-R9, 4.2.6, 4.3.0
Version Found:
(no value)
Versions Affected:
(no value)
Versions Planned:
(no value)
Priority:
(no value)
Severity:
S1 High
CVSS Score:
(no value)
CVE ID:
(no value)
Component:
(no value)
Area:
(no value)
Attachments
0001-Bind-v6-client-to-link-local-address.patch rt34784.diff
Dates
Created:Thu, 12 Sep 2013 11:56:23 -0400
Updated:Wed, 21 Mar 2018 14:22:13 -0400
Closed:Wed, 30 Oct 2013 17:04:59 -0400

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History
  Thu, 12 Sep 2013 11:56:23 -0400 Jiri Popelka <jpopelka@redhat.com> - Ticket created
Subject: more 'dhclient -6' instances steal each other packets
Date: Thu, 12 Sep 2013 17:56:06 +0200
To: dhcp-bugs@isc.org
From: Jiri Popelka <jpopelka@redhat.com>

Hi all, When there are more 'dhclient -6' instances running (one instance per network interface), always only one of them gets all the packets (even those destined for the other instances). The exact behavior depends on linux kernel version, either only the first or only the last started instance gets all the packets, but the problem remains. I think the problem is that DHCPv6 part of if_register_socket() binds to address from local_address6 variable but this variable has never been initialized so it's always 0. The solution could be to bind to link local address of interface. We also need to have separate socket for each interface, not one single for all - this was changed in 4.1.0a2. I don't know the internals, so the patch can be completely wrong but up to now it's seemed to fix the problem and not cause any others. I'll update it if I find something better. See also http://serverfault.com/questions/471076/ipv6-two-interfaces-with-dhclient I'm looking forward to hear from you soon. -- Jiri Popelka Red Hat, inc.
0001-Bind-v6-client-to-link-local-address.patch

Message body is not shown because sender requested not to inline it.

Thu, 19 Sep 2013 18:02:23 -0400 Cathy Almond <cathya@isc.org> - Severity S1 High added
Thu, 19 Sep 2013 18:05:07 -0400 Cathy Almond <cathya@isc.org> - Status changed from 'new' to 'open'
Fri, 20 Sep 2013 18:16:01 -0400 Shawn Routhier <sar@isc.org> - Reference to #17610: added
Sat, 21 Sep 2013 04:27:50 -0400 Francis Dupont <Francis_Dupont@isc.org> - Taken
  Sun, 22 Sep 2013 04:07:42 -0400 Francis Dupont <Francis_Dupont@isc.org> - Correspondence added

On Thu Sep 12 15:56:23 2013, jpopelka@redhat.com wrote: => a simple question: is the problem for multicast or unicast packets (it should work for multicast packets but for unicast packets it has no chance to work with a single global socket bound to *.port)? > When there are more 'dhclient -6' instances running > (one instance per network interface), > always only one of them gets all the packets > (even those destined for the other instances). > The exact behavior depends on linux kernel version, either only the > first or only the last started instance gets all the packets, > but the problem remains. => IMHO the correct behaviour should be to have bind() rejected but it implies SO_REUSEPORT to be implemented and SO_REUSEADDR fixed. I don't know if it will help here but at least it will align with the BSD (and IMHO correct) behaviour... > I think the problem is that DHCPv6 part of if_register_socket() binds to > address from local_address6 variable but this variable has never been > initialized so it's always 0. => local_address* is for agents (i.e., relays and servers). In fact this part of the code is essentially for agents. > I don't know the internals, so the patch can be completely wrong > but up to now it's seemed to fix the problem and not cause any others. > I'll update it if I find something better. => I am afraid it will break agents via the multicast receive. > See also > http://serverfault.com/questions/471076/ipv6-two-interfaces-with-dhclient => it will be tested too as the goal is to have something which supports any partition of clients over multiple interfaces.
  Mon, 23 Sep 2013 04:28:55 -0400 Jiri Popelka <jpopelka@redhat.com> - Correspondence added
CC: Pavel Simerda <psimerda@redhat.com>
Subject: Re: [ISC-Bugs #34784] more 'dhclient -6' instances steal each other packets
Date: Mon, 23 Sep 2013 10:28:39 +0200
To: dhcp-bugs@isc.org
From: Jiri Popelka <jpopelka@redhat.com>

First of all thank you for you reply ! On 09/22/2013 10:07 AM, Francis Dupont via RT wrote: > On Thu Sep 12 15:56:23 2013, jpopelka@redhat.com wrote: > > => a simple question: is the problem for multicast or > unicast packets (it should work for multicast packets > but for unicast packets it has no chance to work with > a single global socket bound to *.port)? Unicast I think - I've seen it with Reply in response to Renew/Rebind and on other machine (kernel) with Advertise. > => local_address* is for agents (i.e., relays and servers). > In fact this part of the code is essentially for agents. > >> I don't know the internals, so the patch can be completely wrong >> but up to now it's seemed to fix the problem and not cause any others. >> I'll update it if I find something better. > > => I am afraid it will break agents via the multicast receive. We already dropped it and have been using the following, i.e. binding to interface even for AF_INET6: +++ dhcp-4.2.5/common/socket.c @@ -245,7 +245,7 @@ if_register_socket(struct interface_info #if defined(SO_BINDTODEVICE) /* Bind this socket to this interface. */ - if ((local_family != AF_INET6) && (info->ifp != NULL) && + if (((do_multicast == 0)||(*do_multicast == 0)) && (info->ifp != NULL) && setsockopt(sock, SOL_SOCKET, SO_BINDTODEVICE, (char *)(info -> ifp), sizeof(*(info -> ifp))) < 0) { log_fatal("setsockopt: SO_BINDTODEVICE: %m"); regards, Jiri
  Mon, 23 Sep 2013 05:11:18 -0400 Francis Dupont <Francis_Dupont@isc.org> - Correspondence added

On Mon Sep 23 08:28:55 2013, jpopelka@redhat.com wrote: > > => a simple question: is the problem for multicast or > > unicast packets (it should work for multicast packets > > but for unicast packets it has no chance to work with > > a single global socket bound to *.port)? => as this is about clients it should be unicast only. BTW the code was written for a relay or a server or an unique client (and for Unixes including BSDs and Linux). > > => I am afraid it will break agents via the multicast receive. > > We already dropped it and have been using the following, i.e. binding to > interface even for AF_INET6: => SO_BINDTODEVICE is system specific so can't be a critical part of the solution. BTW I can say the same about SO_REUSEPORT as when it is implemented SO_REUSEADDR still detects multiple clients trying to bind() to *,port... But as we have to support BSDs and Linuxes I am afraid the only solution is to bind() to the (?) link-local address.
Fri, 27 Sep 2013 12:48:23 -0400 Francis Dupont <Francis_Dupont@isc.org> - Queue changed from #8 to #9
Fri, 27 Sep 2013 12:48:27 -0400 Francis Dupont <Francis_Dupont@isc.org> - Given to Nobody in particular
  Fri, 27 Sep 2013 12:51:05 -0400 Francis Dupont <Francis_Dupont@isc.org> - Correspondence added

It is fixed now (by binding client sockets to link-local addresses). You could ask the reviewer for a test distrib if you'd like to check yourself... (just answer this message)
Fri, 18 Oct 2013 00:41:37 -0400 Shawn Routhier <sar@isc.org> - Given to Francis Dupont <Francis_Dupont@isc.org>
Mon, 21 Oct 2013 18:27:20 -0400 Shawn Routhier <sar@isc.org> - Version Fixed 4.1-ESV-R9, 4.2.6, 4.3.0 added
  Mon, 21 Oct 2013 18:27:20 -0400 Shawn Routhier <sar@isc.org> - Correspondence added

Thank you for the report and patch.  We have
chosen to continue using the current style of
sockets but have updated the code to use
link local addresses for clients.

This patch has been committed to:
master => 4.3.0 first
4.2 => 4.2.6 first
4.1-ESV => 4.1-ESV-R9 first

If you'd like I can send you a copy of the patch
for your testing.

Mon, 21 Oct 2013 18:27:21 -0400 Shawn Routhier <sar@isc.org> - Status changed from 'open' to 'resolved'
Mon, 21 Oct 2013 18:27:21 -0400 Shawn Routhier <sar@isc.org> - Dependency by #32392: added
Mon, 21 Oct 2013 18:27:21 -0400 Shawn Routhier <sar@isc.org> - Dependency by #32393: added
  Tue, 22 Oct 2013 05:47:15 -0400 Jiri Popelka <jpopelka@redhat.com> - Correspondence added
Subject: Re: [ISC-Bugs #34784] more 'dhclient -6' instances steal each other packets
Date: Tue, 22 Oct 2013 11:46:59 +0200
To: dhcp-review@isc.org
From: Jiri Popelka <jpopelka@redhat.com>

On 10/22/2013 12:27 AM, Shawn Routhier via RT wrote: > If you'd like I can send you a copy of the patch > for your testing. That would be nice, thank you ! -- Jiri
Tue, 22 Oct 2013 05:47:15 -0400 The RT System itself - Status changed from 'resolved' to 'open'
  Wed, 23 Oct 2013 20:08:22 -0400 Shawn Routhier <sar@isc.org> - Correspondence added

I'm attempting to send you a file of the patch.
If you don't get one, or it's garbled please respond
and I'll send it a different way.  

thanks,

Shawn

Subject: rt34784.diff
rt34784.diff

Message body not shown because it is not plain text.

  Wed, 23 Oct 2013 20:10:34 -0400 Shawn Routhier <sar@isc.org> - Correspondence added

I should probably add, the diff is to the current head
of our development tree.  In this case I don't think
there are any differences between it and 4.2.x and
the differences between it and 4.1.x are hopefully easily
understandable.

regards,
Shawn
Wed, 30 Oct 2013 17:04:59 -0400 Shawn Routhier <sar@isc.org> - Status changed from 'open' to 'resolved'
Wed, 11 Dec 2013 08:12:46 -0500 Cathy Almond <cathya@isc.org> - Reference by #35016: added
Wed, 21 Jun 2017 15:40:09 -0400 Brian Conry <bconry@isc.org> - Queue changed from #9 to #8
Wed, 21 Mar 2018 14:22:13 -0400 Thomas Markwalder <tmark@isc.org> - Queue changed from #8 to dhcp-public