1 /* $OpenBSD: src/sbin/dhclient/options.c,v 1.37 2009/03/10 23:19:36 krw Exp $ */
3 /* DHCP options parsing and reassembly. */
6 * Copyright (c) 1995, 1996, 1997, 1998 The Internet Software Consortium.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted provided that the following conditions
13 * 1. Redistributions of source code must retain the above copyright
14 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in the
17 * documentation and/or other materials provided with the distribution.
18 * 3. Neither the name of The Internet Software Consortium nor the names
19 * of its contributors may be used to endorse or promote products derived
20 * from this software without specific prior written permission.
22 * THIS SOFTWARE IS PROVIDED BY THE INTERNET SOFTWARE CONSORTIUM AND
23 * CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
24 * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
25 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
26 * DISCLAIMED. IN NO EVENT SHALL THE INTERNET SOFTWARE CONSORTIUM OR
27 * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
28 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
29 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
30 * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
31 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
32 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
33 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
36 * This software has been written for the Internet Software Consortium
37 * by Ted Lemon <mellon@fugue.com> in cooperation with Vixie
38 * Enterprises. To learn more about the Internet Software Consortium,
39 * see ``http://www.vix.com/isc''. To learn more about Vixie
40 * Enterprises, see ``http://www.vix.com''.
47 int parse_option_buffer(struct option_data *, unsigned char *, int);
50 * Parse options out of the specified buffer, storing addresses of
51 * option values in options and setting client->options_valid if
52 * no errors are encountered.
55 parse_option_buffer(struct option_data *options, unsigned char *buffer,
58 unsigned char *s, *t, *end = buffer + length;
61 for (s = buffer; *s != DHO_END && s < end; ) {
64 /* Pad options don't have a length - just skip them. */
65 if (code == DHO_PAD) {
71 * All options other than DHO_PAD and DHO_END have a
72 * one-byte length field.
80 * If the option claims to extend beyond the end of the buffer
81 * then mark the options buffer bad.
83 if (s + len + 2 > end) {
84 warning("option %s (%d) larger than buffer.",
85 dhcp_options[code].name, len);
86 warning("rejecting bogus offer.");
90 * If we haven't seen this option before, just make
91 * space for it and copy it there.
93 if (!options[code].data) {
94 if (!(t = calloc(1, len + 1)))
95 error("Can't allocate storage for option %s.",
96 dhcp_options[code].name);
98 * Copy and NUL-terminate the option (in case
99 * it's an ASCII string).
101 memcpy(t, &s[2], len);
103 options[code].len = len;
104 options[code].data = t;
107 * If it's a repeat, concatenate it to whatever
108 * we last saw. This is really only required
109 * for clients, but what the heck...
111 t = calloc(1, len + options[code].len + 1);
113 error("Can't expand storage for option %s.",
114 dhcp_options[code].name);
115 memcpy(t, options[code].data, options[code].len);
116 memcpy(t + options[code].len, &s[2], len);
117 options[code].len += len;
118 t[options[code].len] = 0;
119 free(options[code].data);
120 options[code].data = t;
129 * Copy as many options as fit in buflen bytes of buf. Return the
130 * offset of the start of the last option copied. A caller can check
131 * to see if it's DHO_END to decide if all the options were copied.
134 cons_options(unsigned char *buf, const int buflen, struct option_data *options)
136 int ix, incr, length, bufix, code, lastopt = -1;
141 memcpy(buf, DHCP_OPTIONS_COOKIE, 4);
144 for (code = DHO_SUBNET_MASK; code < DHO_END; code++) {
145 if (!options[code].data)
148 length = options[code].len;
149 if (bufix + length + 2*((length+254)/255) >= buflen)
156 incr = length > 255 ? 255 : length;
160 memcpy(buf + bufix, options[code].data + ix, incr);
168 if (bufix < buflen) {
169 buf[bufix] = DHO_END;
177 * Format the specified option so that a human can easily read it.
180 pretty_print_option(unsigned int code, unsigned char *data, int len,
181 int emit_commas, int emit_quotes)
183 static char optbuf[32768]; /* XXX */
184 int hunksize = 0, numhunk = -1, numelem = 0;
185 char fmtbuf[32], *op = optbuf;
186 int i, j, k, opleft = sizeof(optbuf);
187 unsigned char *dp = data;
191 /* Code should be between 0 and 255. */
193 error("pretty_print_option: bad code %d", code);
200 /* Figure out the size of the data. */
201 for (i = 0; dhcp_options[code].format[i]; i++) {
203 warning("%s: Excess information in format string: %s",
204 dhcp_options[code].name,
205 &(dhcp_options[code].format[i]));
209 fmtbuf[i] = dhcp_options[code].format[i];
210 switch (dhcp_options[code].format[i]) {
217 for (k = 0; k < len; k++)
218 if (!isascii(data[k]) ||
254 warning("%s: garbage in format string: %s",
255 dhcp_options[code].name,
256 &(dhcp_options[code].format[i]));
261 /* Check for too few bytes... */
262 if (hunksize > len) {
263 warning("%s: expecting at least %d bytes; got %d",
264 dhcp_options[code].name, hunksize, len);
267 /* Check for too many bytes... */
268 if (numhunk == -1 && hunksize < len)
269 warning("%s: %d extra bytes",
270 dhcp_options[code].name, len - hunksize);
272 /* If this is an array, compute its size. */
274 numhunk = len / hunksize;
275 /* See if we got an exact number of hunks. */
276 if (numhunk > 0 && numhunk * hunksize < len)
277 warning("%s: %d extra bytes at end of array",
278 dhcp_options[code].name, len - numhunk * hunksize);
280 /* A one-hunk array prints the same as a single hunk. */
284 /* Cycle through the array (or hunk) printing the data. */
285 for (i = 0; i < numhunk; i++) {
286 for (j = 0; j < numelem; j++) {
295 for (; dp < data + len; dp++) {
298 if (dp + 1 != data + len ||
307 } else if (*dp == '"' ||
328 foo.s_addr = htonl(getULong(dp));
329 opcount = strlcpy(op, inet_ntoa(foo), opleft);
330 if (opcount >= opleft)
336 opcount = snprintf(op, opleft, "%ld",
338 if (opcount >= opleft || opcount == -1)
344 opcount = snprintf(op, opleft, "%ld",
345 (unsigned long)getULong(dp));
346 if (opcount >= opleft || opcount == -1)
352 opcount = snprintf(op, opleft, "%d",
354 if (opcount >= opleft || opcount == -1)
360 opcount = snprintf(op, opleft, "%d",
362 if (opcount >= opleft || opcount == -1)
368 opcount = snprintf(op, opleft, "%d",
370 if (opcount >= opleft || opcount == -1)
375 opcount = snprintf(op, opleft, "%d", *dp++);
376 if (opcount >= opleft || opcount == -1)
381 opcount = snprintf(op, opleft, "%x", *dp++);
382 if (opcount >= opleft || opcount == -1)
387 opcount = strlcpy(op,
388 *dp++ ? "true" : "false", opleft);
389 if (opcount >= opleft)
394 warning("Unexpected format code %c", fmtbuf[j]);
401 if (j + 1 < numelem && comma != ':') {
406 if (i + 1 < numhunk) {
416 warning("dhcp option too large");
421 do_packet(int len, unsigned int from_port, struct iaddr from,
422 struct hardware *hfrom)
424 struct dhcp_packet *packet = &client->packet;
425 struct option_data options[256];
426 struct iaddrlist *ap;
427 void (*handler)(struct iaddr, struct option_data *);
429 int i, options_valid = 1;
431 if (packet->hlen > sizeof(packet->chaddr)) {
432 note("Discarding packet with invalid hlen.");
437 * Silently drop the packet if the client hardware address in the
438 * packet is not the hardware address of the interface being managed.
440 if ((ifi->hw_address.hlen != packet->hlen) ||
441 (memcmp(ifi->hw_address.haddr, packet->chaddr, packet->hlen)))
444 memset(options, 0, sizeof(options));
446 if (memcmp(&packet->options, DHCP_OPTIONS_COOKIE, 4) == 0) {
447 /* Parse the BOOTP/DHCP options field. */
448 options_valid = parse_option_buffer(options,
449 &packet->options[4], sizeof(packet->options) - 4);
451 /* Only DHCP packets have overload areas for options. */
453 options[DHO_DHCP_MESSAGE_TYPE].data &&
454 options[DHO_DHCP_OPTION_OVERLOAD].data) {
455 if (options[DHO_DHCP_OPTION_OVERLOAD].data[0] & 1)
456 options_valid = parse_option_buffer(options,
457 (unsigned char *)packet->file,
458 sizeof(packet->file));
460 options[DHO_DHCP_OPTION_OVERLOAD].data[0] & 2)
461 options_valid = parse_option_buffer(options,
462 (unsigned char *)packet->sname,
463 sizeof(packet->sname));
470 if (options[DHO_DHCP_MESSAGE_TYPE].data) {
471 /* Always try a DHCP packet, even if a bad option was seen. */
472 switch (options[DHO_DHCP_MESSAGE_TYPE].data[0]) {
488 } else if (options_valid && packet->op == BOOTREPLY) {
493 if (handler && client->xid == client->packet.xid) {
494 if (hfrom->hlen == 6)
495 note("%s from %s (%s)", type, piaddr(from),
496 ether_ntoa((struct ether_addr *)hfrom->haddr));
498 note("%s from %s", type, piaddr(from));
502 for (ap = config->reject_list; ap && handler; ap = ap->next)
503 if (addr_eq(from, ap->addr)) {
504 note("%s from %s rejected.", type, piaddr(from));
509 (*handler)(from, options);
511 for (i = 0; i < 256; i++)
512 if (options[i].len && options[i].data)
513 free(options[i].data);