Report information
The Basics
Id:
45812
Status:
open
Priority:
Medium/Medium
Queue:
dhcp-public
People
Owner:
Nobody in particular
Requestors:
Philip Prindeville <philipp@redfish-solutions.com>
Cc:
AdminCc:
BugTracker
Version Fixed:
(no value)
Version Found:
(no value)
Versions Affected:
(no value)
Versions Planned:
(no value)
Priority:
(no value)
Severity:
(no value)
CVSS Score:
(no value)
CVE ID:
(no value)
Component:
(no value)
Area:
bug
Dates
Created:Fri, 18 Aug 2017 19:56:30 -0400
Updated:Sat, 19 Aug 2017 13:56:27 -0400
Closed:Not set

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History
  Fri, 18 Aug 2017 19:56:30 -0400 Philip Prindeville <philipp@redfish-solutions.com> - Ticket created
Date: Fri, 18 Aug 2017 17:56:25 -0600
From: "Philip Prindeville" <philipp@redfish-solutions.com>
Subject: Implementing RFC-6355
To: dhcp-bugs@isc.org

Hi. I was going through the sources of 4.3.5, in particular, how the DUID_LL is generated, and it seems wrong. Quoting the RFC, we have: 4. DUID-UUID Format The DUID-UUID is carried within Client Identifier or Server Identifier options. It has the following format: 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | DUID-Type (4) | UUID (128 bits) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | | | | | -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- Figure 1: DUID-UUID Format DUID-Type - DUID-UUID (4) - (16 bits) UUID - An [RFC4122] UUID (128 bits) but the code fragment: } else { putUShort(duid->buffer->data, DUID_LL); putUShort(duid->buffer->data + 2, ip->hw_address.hbuf[0]); memcpy(duid->buffer->data + 4, ip->hw_address.hbuf + 1, ip->hw_address.hlen - 1); } in client/dhclient.c circa line 3485 does something entirely different. The first putUShort() is correct, but the code should look like this: // typedef char uuid_t[16]; uuid_t *uuid; char digest[ISC_MD5_DIGESTLENGTH]; isc_md5_t ctx; isc_md5_init(&ctx); isc_md5_update(&ctx, NameSpace_OID, sizeof(NameSpace_OID)); isc_md5_update(&ctx, &ip->hw_address.buf[1], ip->hw_address.hlen - 1); // alternatively, you could also run the hash over the type // isc_md5_update(&ctx, ip->hw_address.buf, ip->hw_address.hlen); isc_md5_final(&ctx, digest); putUShort(duid->buffer->data, DUID_LL); // build UUID in-place uuid = (uuid_t *) &duid->buffer->data + 2; memcpy(uuid, digest, sizeof(uuid_t)); uuid[6] &= ~(0xf << 4); uuid[6] |= (3 << 4); // version 3, MD5 uuid[8] &= ~(0x7 << 5); uuid[8] |= (4 << 5); // DCE variant duid->len = 2 + sizeof(uuid_t); And NameSpace_OID (which comes from RFC-4122, section C) would look like: const uuid_t NameSpace_OID = { 0x6b, 0xa7, 0xb8, 0x12, 0x9d, 0xad, 0x11, 0xd1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; Unless I’m missing something obvious. But Section 4 of RFC-6355 seems pretty unequivocal about the DUID-UUID being 2 bytes of type (0x0004) followed by 16 bytes of UUID. That is not what is currently going on in the current code. Thanks, -Philip
Fri, 18 Aug 2017 20:00:51 -0400 Vicky Risk <vicky@isc.org> - Queue changed from #8 to dhcp-public
Fri, 18 Aug 2017 20:00:58 -0400 Vicky Risk <vicky@isc.org> - Area bug added
  Sat, 19 Aug 2017 04:48:54 -0400 Francis Dupont <Francis_Dupont@isc.org> - Correspondence added

On Fri Aug 18 23:56:30 2017, philipp@redfish-solutions.com wrote: > Hi. > > I was going through the sources of 4.3.5, in particular, how the > DUID_LL is generated, and it seems wrong. > > Quoting the RFC, we have: > > 4. DUID-UUID Format => DUID LL and DUID UUID are different formats. DUID LLT and LL are supported, UUID is not but you can use the raw value.
Sat, 19 Aug 2017 04:48:55 -0400 The RT System itself - Status changed from 'new' to 'open'
  Sat, 19 Aug 2017 13:56:24 -0400 Philip Prindeville <philipp@redfish-solutions.com> - Correspondence added
From: "Philip Prindeville" <philipp@redfish-solutions.com>
To: dhcp-public@isc.org
Date: Sat, 19 Aug 2017 11:53:54 -0600
Subject: Re: [ISC-Bugs #45812] Implementing RFC-6355

> On Aug 19, 2017, at 2:48 AM, Francis Dupont via RT <dhcp-public@isc.org> wrote: > > On Fri Aug 18 23:56:30 2017, philipp@redfish-solutions.com wrote: >> Hi. >> >> I was going through the sources of 4.3.5, in particular, how the >> DUID_LL is generated, and it seems wrong. >> >> Quoting the RFC, we have: >> >> 4. DUID-UUID Format > > => DUID LL and DUID UUID are different formats. DUID LLT and LL > are supported, UUID is not but you can use the raw value. > Salut Francis! Seigneur, ca fait quoi? Vignt ans ou plus? Tu vas bien? So, as I understand it then, there’s currently no support for RFC 6355? Because I see the “diid-uuid” string in common/tables.c mapping to DUID_UUID… I just don’t see DUID_UUID being used anywhere in the sources. Would you accept a fix for DUID-UUID based on an MD5 (or SHA1) hash of the MAC address? We have an application where we need to provision IPv6 leases for assigned addresses (of course) in real-time as boxes get rolled out in the field, and the operations teams are told by installers in the field radioing in MAC addresses as they pull boxes out of their van. -Philip