Kea issueshttps://gitlab.isc.org/isc-projects/kea/-/issues2019-02-04T16:22:50Zhttps://gitlab.isc.org/isc-projects/kea/-/issues/21flex-id - Better printing of non-printable charaters. (FLEX_ID_EXPRESSION_EVA...2019-02-04T16:22:50ZGhost Userflex-id - Better printing of non-printable charaters. (FLEX_ID_EXPRESSION_EVALUATED)---
name: Bug report
about: flex-id
---
**Describe the bug**
when the result of the flex-id hook is a mac address the log file display the result bad.
**To Reproduce**
configure flex-id with the following config:
"identi...---
name: Bug report
about: flex-id
---
**Describe the bug**
when the result of the flex-id hook is a mac address the log file display the result bad.
**To Reproduce**
configure flex-id with the following config:
"identifier-expression": "substring(relay4[2].hex,0,18)"
this is the result:
INFO [kea-dhcp4.flex-id/7886] FLEX_ID_EXPRESSION_EVALUATED Expression evaluated for packet to "¨^Qü<98>íÉ" (size: 6)
**Expected behavior**
the mac address will be logged currectly
**Environment:**
kea 1-4-0_p1
centos 7Kea1.6Francis DupontFrancis Duponthttps://gitlab.isc.org/isc-projects/kea/-/issues/22stringop-truncation warnings2022-11-02T15:08:41ZFrancis Dupontstringop-truncation warningsG++ 8 has a new warning stringop truncation which is emitted when strncat or strncpy (only the second in kea) fails to terminate (i.e. append a null character) its result.
There are on Fedora 28 spurious warnings on local/unix socket ad...G++ 8 has a new warning stringop truncation which is emitted when strncat or strncpy (only the second in kea) fails to terminate (i.e. append a null character) its result.
There are on Fedora 28 spurious warnings on local/unix socket address or ifname because they are filled using strncpy.
I have a mixed feeling about this: IMHO the issue is not in Kea but in the system header files which should add a ```nonstring``` attribute but did not, so no action is a possible answer to this...backloghttps://gitlab.isc.org/isc-projects/kea/-/issues/23gitlab HOWTO2018-10-19T11:50:39ZFrancis Dupontgitlab HOWTOThis to discuss gitlab HOWTO. No Kea code expected!
The howto is documented [here](../wikis/gitlab-howto)This to discuss gitlab HOWTO. No Kea code expected!
The howto is documented [here](../wikis/gitlab-howto)Kea1.5-beta1Tomek MrugalskiTomek Mrugalskihttps://gitlab.isc.org/isc-projects/kea/-/issues/24script to install yang models2018-09-12T17:29:06ZFrancis Dupontscript to install yang models```pkg-config libsysrepo --variable=SR_REPOSITORY_LOC``` returns the sysrepo repository directory so we can:
- use it in configure to set a autoconf variable to it
- update the script in tools to do the same thing
- provide a scrip...```pkg-config libsysrepo --variable=SR_REPOSITORY_LOC``` returns the sysrepo repository directory so we can:
- use it in configure to set a autoconf variable to it
- update the script in tools to do the same thing
- provide a script in the `models` directory to install it. As it should be run once it is enough.
- update the documentation (i.e. `netconf.xml`)
- port this to kea-yangKea1.5-beta1Francis DupontFrancis Duponthttps://gitlab.isc.org/isc-projects/kea/-/issues/25move daemon code out of dhcpsrv library2018-09-10T09:33:46ZFrancis Dupontmove daemon code out of dhcpsrv library`daemon.{h,cc}` defines a few common things: get version, pid file, config file, ...
It should clearly be moved from the dhcpsrv library to somewhere else. A few proposals:
- move it the process library (make sense but add a dependenc...`daemon.{h,cc}` defines a few common things: get version, pid file, config file, ...
It should clearly be moved from the dhcpsrv library to somewhere else. A few proposals:
- move it the process library (make sense but add a dependency to old server code)
- move it to config (or similar) library
- move it to its own library
IMHO the last option is the best one but some can have a concern with an increasing number of libraries.Kea1.5-beta1Tomek MrugalskiTomek Mrugalskihttps://gitlab.isc.org/isc-projects/kea/-/issues/26HttpClient add timeout to connect2018-11-07T10:17:11ZMarcin SiodelskiHttpClient add timeout to connectThe HttpClient class kicks in a timer for detecting transaction timeout after the connection has been already established. A recent testing reveals an issue that some firewall setups may cause long delays in asynchronous connects which w...The HttpClient class kicks in a timer for detecting transaction timeout after the connection has been already established. A recent testing reveals an issue that some firewall setups may cause long delays in asynchronous connects which will never be interrupted by timeout. As a result there is no log indicating that's the connection can't be established and subsequent connections won't be attempted. This issue has been found during HA and mostly affects this feature right now.Kea1.5-beta1Marcin SiodelskiMarcin Siodelskihttps://gitlab.isc.org/isc-projects/kea/-/issues/27CqlHostDataSource::del4 () and del6() fail when given a non-existent host res...2018-11-28T09:21:55ZThomas MarkwalderCqlHostDataSource::del4 () and del6() fail when given a non-existent host reservationNeither function checks for the case of host not found, and causes the server to SIGABRT. They should both be modified to simply return true if the host does not exist. This is in keeping with our philosophy that attempting to delete an...Neither function checks for the case of host not found, and causes the server to SIGABRT. They should both be modified to simply return true if the host does not exist. This is in keeping with our philosophy that attempting to delete an object that does not exist equates to a successful delete.
There are apparently no unit tests for this scenario and there most certainly should be. We need to verify that MySQL and PostgreSQL behave properly and have unit tests for this.Kea1.5-beta2Marcin SiodelskiMarcin Siodelskihttps://gitlab.isc.org/isc-projects/kea/-/issues/28Config backend: implement basic class hierarchy2019-01-19T20:41:55ZMarcin SiodelskiConfig backend: implement basic class hierarchyThis ticket is created while the design is still in progress and is mostly meant to create a PoC for the class config backend class hierarchy. It will be later turned into the actual/final implementation when the design is ready and appr...This ticket is created while the design is still in progress and is mostly meant to create a PoC for the class config backend class hierarchy. It will be later turned into the actual/final implementation when the design is ready and approved.Kea1.5-beta1Marcin SiodelskiMarcin Siodelskihttps://gitlab.isc.org/isc-projects/kea/-/issues/29cryptolink random generator2018-11-07T04:29:27ZFrancis Dupontcryptolink random generatorAdd in the cryptolink library support for random generation (cf trac 3474).Add in the cryptolink library support for random generation (cf trac 3474).Kea1.5-beta1https://gitlab.isc.org/isc-projects/kea/-/issues/30Implement control socket for DDNS2019-01-11T16:33:25ZGhost UserImplement control socket for DDNSAfter the design (#3540) is done, we should implement control socket in DDNS server.
D2, our DHCP-DDNS update daemon, does not support control channel. CA does support it and has a section for D2 communication, tries to open a socket et...After the design (#3540) is done, we should implement control socket in DDNS server.
D2, our DHCP-DDNS update daemon, does not support control channel. CA does support it and has a section for D2 communication, tries to open a socket etc, but fails ultimately, because D2 is not able to listen on that socket.
The absolute minimum required are the following commands:
version-get
build-report
shutdown
Since it is unclear whether we'll be able to squeeze this into 1.3, adding this with low priority.Kea1.6https://gitlab.isc.org/isc-projects/kea/-/issues/31Modify CfgMgr to read subnets from different sources2019-09-02T07:12:00ZGhost UserModify CfgMgr to read subnets from different sourcesRight now CfgMgr reads subnet configuration only from the configuration file. After #3581 and #3582, it will be possible to read it from databases as well.
It is not yet decided whether this will be done every time during packet process...Right now CfgMgr reads subnet configuration only from the configuration file. After #3581 and #3582, it will be possible to read it from databases as well.
It is not yet decided whether this will be done every time during packet processing (faster startup, slower processing) or during reconfiguration (slower startup, faster processing). The decision will be made as part of the #3579 ticket.Kea1.5-beta1Marcin SiodelskiMarcin Siodelskihttps://gitlab.isc.org/isc-projects/kea/-/issues/32Extend DHCP configuration to point to the config backend2018-10-08T13:05:34ZGhost UserExtend DHCP configuration to point to the config backendWe need at least two configuration parameters: *config-database* and *server-tag* for DHCP servers.
See the https://gitlab.isc.org/isc-projects/kea/wikis/designs/configuration-in-db-design.
We need at least two configuration parameters: *config-database* and *server-tag* for DHCP servers.
See the https://gitlab.isc.org/isc-projects/kea/wikis/designs/configuration-in-db-design.
Kea1.5-beta1Thomas MarkwalderThomas Markwalderhttps://gitlab.isc.org/isc-projects/kea/-/issues/33CB: Add support for 'reload-subnets' command2019-02-19T12:25:11ZGhost UserCB: Add support for 'reload-subnets' commandOnce all other configuration scaling tickets are done (#3579-#3584), a command that triggers the server to reload subnet configuration would be useful.Once all other configuration scaling tickets are done (#3579-#3584), a command that triggers the server to reload subnet configuration would be useful.Kea1.6Marcin SiodelskiMarcin Siodelskihttps://gitlab.isc.org/isc-projects/kea/-/issues/34SQL database backends with SSL2022-01-06T12:43:47ZGhost UserSQL database backends with SSLCf GitHub PR 15 https://github.com/isc-projects/kea/pull/15 (MySQL SSL support)
Extended to PostgreSQL which supports a similar feature.Cf GitHub PR 15 https://github.com/isc-projects/kea/pull/15 (MySQL SSL support)
Extended to PostgreSQL which supports a similar feature.kea2.1.2Francis DupontFrancis Duponthttps://gitlab.isc.org/isc-projects/kea/-/issues/35local d2 (dhcp-ddns) client config2019-10-30T15:37:54ZGhost Userlocal d2 (dhcp-ddns) client configCurrently the d2 (dhcp-ddns) config is global. The idea allows to make it locally, e.g.., in subnet and client class scopes. Cf Migration #5224.Currently the d2 (dhcp-ddns) config is global. The idea allows to make it locally, e.g.., in subnet and client class scopes. Cf Migration #5224.kea1.7.1Thomas MarkwalderThomas Markwalderhttps://gitlab.isc.org/isc-projects/kea/-/issues/36define "same subnet"2020-08-29T09:25:33ZGhost Userdefine "same subnet"Define what is "same subnet" i.e. what makes two similar subnets allowed or forbidden.
Obviously same subnet ID should be forbidden.
Same subnet text representation (i.e., `192.168.0.0/24`) is more arguable.
Note this is a design/discus...Define what is "same subnet" i.e. what makes two similar subnets allowed or forbidden.
Obviously same subnet ID should be forbidden.
Same subnet text representation (i.e., `192.168.0.0/24`) is more arguable.
Note this is a design/discussion ticket (no branch, no code, no doc).outstandingFrancis DupontFrancis Duponthttps://gitlab.isc.org/isc-projects/kea/-/issues/37revamp subnet sanity checks2022-11-02T15:08:41ZGhost Userrevamp subnet sanity checksOn one side decides what should be checked:
- interface in shared network
- "same subnet" (cf #5423)
- malformed prefix
etc
And apply this to documentation and code in:
- plain subnet configuration
- in shared network subnet config...On one side decides what should be checked:
- interface in shared network
- "same subnet" (cf #5423)
- malformed prefix
etc
And apply this to documentation and code in:
- plain subnet configuration
- in shared network subnet configuration
- subnet REST API
Should be done after #5423 (definition of "same subnet") and client-class in pools.backloghttps://gitlab.isc.org/isc-projects/kea/-/issues/38Updating DNS entry on host reservation changing2022-11-02T15:08:42ZGhost UserUpdating DNS entry on host reservation changingI sent this questions to kea-users@lists.isc.org two days ago, but nothing happens and I can't see my message in thread list. So, I decided to create a new ticket.
My previous message:
I'm trying to bond Kea with BIND. When a new lease ...I sent this questions to kea-users@lists.isc.org two days ago, but nothing happens and I can't see my message in thread list. So, I decided to create a new ticket.
My previous message:
I'm trying to bond Kea with BIND. When a new lease is created or expired it works well. In this cases I get correct records in "forward" and "reverse" DNS zones. But, when I'm changing an IP-address in host reservation entry in MySQL database, a new address is allocated to the customer and new correct entries appear in DNS. However, an old entry for previous IP-address still remains in "reverse" DNS zone. Thus, now I have a "ghost" entry in my DNS.
I would manually remove the lease BEFORE changing the reservation entry. I guess it should work. But maybe there is a routine solution for this issue?backloghttps://gitlab.isc.org/isc-projects/kea/-/issues/39shared-network option takes precedence before option defined in client class2022-11-02T15:08:43ZGhost Usershared-network option takes precedence before option defined in client classWhen kea6 is configured with shared-network that contain option, and subnet (within that shared-network) which has assigned class with the same option defined - Kea ignores option defined in class.
Example configuration:
```
{
"Dhcp...When kea6 is configured with shared-network that contain option, and subnet (within that shared-network) which has assigned class with the same option defined - Kea ignores option defined in class.
Example configuration:
```
{
"Dhcp6":
{
"renew-timer":1000,
"rebind-timer":2000,
"preferred-lifetime":3000,
"valid-lifetime":4000,
"client-classes":[
{
"name":"Client_Class_1",
"test":"substring(option[1].hex,8,2)==0xf2f1",
"option-data":[
{
"csv-format":true,
"code":23,
"data":"2001:db8::888",
"name":"dns-servers",
"space":"dhcp6"
}
]
}
],
"interfaces-config":
{
"interfaces":["eth2"]
},
"lease-database":
{
"type":"memfile"
},
"shared-networks":[
{
"name":"name-abc",
"interface":"eth2",
"option-data":[
{
"csv-format":true,
"code":23,
"data":"2001:db8::1",
"name":"dns-servers",
"space":"dhcp6"
}
],
"subnet6":[
{
"subnet":"2001:db8:a::/64",
"client-class":"Client_Class_1",
"pools":[
{
"pool":"2001:db8:a::1-2001:db8:a::10"
}
]
}
]
}
]
}
}
```
Packet is evaluated correctly, option 23 has value that is configured on shared-network level, not what is in the class.
```
DEBUG [kea-dhcp6.eval/18704] EVAL_DEBUG_EQUAL Popping 0xF2F1 and 0xF2F1 pushing result 'true'
INFO [kea-dhcp6.dhcp6/18704] EVAL_RESULT Expression Client_Class_1 evaluated to 1
```
but message is created incorreclty:
```
DHCP6_RESPONSE_DATA responding with packet type 2 data is localAddr=[ff02::1:2]:547 remoteAddr=[fe80::800:27ff:fe00:1]:546
msgtype=2(ADVERTISE), transid=0xeda107
type=00001, len=00010: 00:03:00:01:66:55:44:33:f2:f1
type=00002, len=00014: 00:01:00:01:21:81:be:d4:08:00:27:19:b8:2a
type=00003(IA_NA), len=00040: iaid=39866, t1=1000, t2=2000,
options:
type=00005(IAADDR), len=00024: address=2001:db8:a::1, preferred-lft=3000, valid-lft=4000
type=00023, len=00016: 2001:db8::1
```
Entire logs and network capture attached.
Number of subnets within shared-network, or number of shared-networks makes no difference - bug occur.
When client has reservation with option X it correctly overrides option configured on shared-network level.backloghttps://gitlab.isc.org/isc-projects/kea/-/issues/40check what happens on empty hostname options2019-01-17T14:36:47ZGhost Usercheck what happens on empty hostname optionsCf ISC DHCP 43786 ticket where a specific handling was added to handle empty host-name (code 12) DHCPv4 options sent by not compliant (but existing in the real world) clients. Verify Kea code and if there is not yet a unit test about it ...Cf ISC DHCP 43786 ticket where a specific handling was added to handle empty host-name (code 12) DHCPv4 options sent by not compliant (but existing in the real world) clients. Verify Kea code and if there is not yet a unit test about it create a new one.Kea1.6Thomas MarkwalderThomas Markwalder