Opened 4 years ago

Last modified 7 months ago

#3091 new defect

kea6 assign reserved address (ff:/8, fe80::/10, ::1)

Reported by: wlodekwencel Owned by:
Priority: low Milestone: Outstanding Tasks
Component: dhcp6 Version:
Keywords: address kea Cc:
CVSS Scoring: Parent Tickets:
Sensitive: no Defect Severity: N/A
Sub-Project: DHCP Feature Depending on Ticket:
Estimated Difficulty: 0 Add Hours to Ticket: 0
Total Hours: 0 Internal?: no

Description (last modified by tomek)

Kea6 assigned addresses:
ff02::1
::1

According to RFC 3315, Section 11:

A server MUST NOT assign an address that is otherwise reserved for
some other purpose.

address ff02::1 assigned when Kea configured with:
subnet: ff02::/64
pool: ff02::1-ff02::ff

address ::1 assigned when Kea configured with:
subnet: ::/64
pool: ::1-::ff

There should be some subnet/pool testing while configuration process to eliminate reserved addresses.

wireshark capture attached.

Subtickets

Attachments (1)

address2 (68.3 KB) - added by wlodekwencel 4 years ago.

Download all attachments as: .zip

Change History (10)

Changed 4 years ago by wlodekwencel

comment:1 Changed 4 years ago by wlodekwencel

  • Milestone changed from New Tasks to DHCP-QA Defects

comment:2 Changed 4 years ago by tomek

  • Component changed from Unclassified to dhcp6

comment:3 Changed 2 years ago by tomek

  • Milestone changed from DHCP-QA Defects to DHCP Outstanding Tasks

comment:4 Changed 2 years ago by tomek

  • Milestone changed from DHCP Outstanding Tasks to Outstanding Tasks

Milestone renamed

comment:5 Changed 15 months ago by tomek

  • Description modified (diff)

We can implement checks for multicast addresses and reject them. We could implement *a warning* if fe80::/10 is being configured and explain that assigning link-local addresses using DHCPv6 is a bad idea.

I don't want to add checks against ::1, though. People may do some experiments with DHCP on loopback. If you really think it's something bad, we can add a warning, but we should not prevent it.

comment:6 Changed 15 months ago by tomek

  • Summary changed from kea6 assign reserved address. to kea6 assign reserved address (ff:/8, fe80::/10, ::1)

comment:7 Changed 15 months ago by tomek

  • Milestone changed from Outstanding Tasks to Kea1.2
  • Priority changed from medium to low

comment:8 Changed 8 months ago by tomek

  • Milestone changed from Kea1.2 to Kea1.2-final

Code freeze for 1.2-beta. Moving all remaining open tickets to 1.2-final.

comment:9 Changed 7 months ago by tomek

  • Milestone changed from Kea1.2-final to Outstanding Tasks

As discussed on 2017-04-13 call, moving to outstanding.

Note: See TracTickets for help on using tickets.