Path: blob/a-new-beginning/SharedDependencies/Sources/libslirp/bootp.c
2 views
/* SPDX-License-Identifier: MIT */1/*2* QEMU BOOTP/DHCP server3*4* Copyright (c) 2004 Fabrice Bellard5*6* Permission is hereby granted, free of charge, to any person obtaining a copy7* of this software and associated documentation files (the "Software"), to deal8* in the Software without restriction, including without limitation the rights9* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell10* copies of the Software, and to permit persons to whom the Software is11* furnished to do so, subject to the following conditions:12*13* The above copyright notice and this permission notice shall be included in14* all copies or substantial portions of the Software.15*16* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR17* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,18* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL19* THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER20* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,21* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN22* THE SOFTWARE.23*/24#include "slirp.h"2526#if defined(_WIN32)27/* Windows ntohl() returns an u_long value.28* Add a type cast to match the format strings. */29#define ntohl(n) ((uint32_t)ntohl(n))30#endif3132/* XXX: only DHCP is supported */3334#define LEASE_TIME (24 * 3600)3536#define UEFI_HTTP_VENDOR_CLASS_ID "HTTPClient"3738static const uint8_t rfc1533_cookie[] = { RFC1533_COOKIE };3940#define DPRINTF(...) DEBUG_RAW_CALL(__VA_ARGS__)4142static BOOTPClient *get_new_addr(Slirp *slirp, struct in_addr *paddr,43const uint8_t *macaddr)44{45BOOTPClient *bc;46int i;4748for (i = 0; i < NB_BOOTP_CLIENTS; i++) {49bc = &slirp->bootp_clients[i];50if (!bc->allocated || !memcmp(macaddr, bc->macaddr, 6))51goto found;52}53return NULL;54found:55bc = &slirp->bootp_clients[i];56bc->allocated = 1;57paddr->s_addr = slirp->vdhcp_startaddr.s_addr + htonl(i);58return bc;59}6061static BOOTPClient *request_addr(Slirp *slirp, const struct in_addr *paddr,62const uint8_t *macaddr)63{64uint32_t req_addr = ntohl(paddr->s_addr);65uint32_t dhcp_addr = ntohl(slirp->vdhcp_startaddr.s_addr);66BOOTPClient *bc;6768if (req_addr >= dhcp_addr && req_addr < (dhcp_addr + NB_BOOTP_CLIENTS)) {69bc = &slirp->bootp_clients[req_addr - dhcp_addr];70if (!bc->allocated || !memcmp(macaddr, bc->macaddr, 6)) {71bc->allocated = 1;72return bc;73}74}75return NULL;76}7778static BOOTPClient *find_addr(Slirp *slirp, struct in_addr *paddr,79const uint8_t *macaddr)80{81BOOTPClient *bc;82int i;8384for (i = 0; i < NB_BOOTP_CLIENTS; i++) {85if (!memcmp(macaddr, slirp->bootp_clients[i].macaddr, 6))86goto found;87}88return NULL;89found:90bc = &slirp->bootp_clients[i];91bc->allocated = 1;92paddr->s_addr = slirp->vdhcp_startaddr.s_addr + htonl(i);93return bc;94}9596static void dhcp_decode(const struct bootp_t *bp,97const uint8_t *bp_end,98int *pmsg_type,99struct in_addr *preq_addr)100{101const uint8_t *p;102int len, tag;103104*pmsg_type = 0;105preq_addr->s_addr = htonl(0L);106107p = bp->bp_vend;108if (memcmp(p, rfc1533_cookie, 4) != 0)109return;110p += 4;111while (p < bp_end) {112tag = p[0];113if (tag == RFC1533_PAD) {114p++;115} else if (tag == RFC1533_END) {116break;117} else {118p++;119if (p >= bp_end)120break;121len = *p++;122if (p + len > bp_end) {123break;124}125DPRINTF("dhcp: tag=%d len=%d\n", tag, len);126127switch (tag) {128case RFC2132_MSG_TYPE:129if (len >= 1)130*pmsg_type = p[0];131break;132case RFC2132_REQ_ADDR:133if (len >= 4) {134memcpy(&(preq_addr->s_addr), p, 4);135}136break;137default:138break;139}140p += len;141}142}143if (*pmsg_type == DHCPREQUEST && preq_addr->s_addr == htonl(0L) &&144bp->bp_ciaddr.s_addr) {145memcpy(&(preq_addr->s_addr), &bp->bp_ciaddr, 4);146}147}148149static void bootp_reply(Slirp *slirp,150const struct bootp_t *bp,151const uint8_t *bp_end)152{153BOOTPClient *bc = NULL;154struct mbuf *m;155struct bootp_t *rbp;156struct sockaddr_in saddr, daddr;157struct in_addr preq_addr;158int dhcp_msg_type, val;159uint8_t *q;160uint8_t *end;161uint8_t client_ethaddr[ETH_ALEN];162163/* extract exact DHCP msg type */164dhcp_decode(bp, bp_end, &dhcp_msg_type, &preq_addr);165DPRINTF("bootp packet op=%d msgtype=%d", bp->bp_op, dhcp_msg_type);166if (preq_addr.s_addr != htonl(0L))167DPRINTF(" req_addr=%08" PRIx32 "\n", ntohl(preq_addr.s_addr));168else {169DPRINTF("\n");170}171172if (dhcp_msg_type == 0)173dhcp_msg_type = DHCPREQUEST; /* Force reply for old BOOTP clients */174175if (dhcp_msg_type != DHCPDISCOVER && dhcp_msg_type != DHCPREQUEST)176return;177178/* Get client's hardware address from bootp request */179memcpy(client_ethaddr, bp->bp_hwaddr, ETH_ALEN);180181m = m_get(slirp);182if (!m) {183return;184}185m->m_data += IF_MAXLINKHDR;186m_inc(m, sizeof(struct bootp_t) + DHCP_OPT_LEN);187rbp = (struct bootp_t *)m->m_data;188m->m_data += sizeof(struct udpiphdr);189memset(rbp, 0, sizeof(struct bootp_t) + DHCP_OPT_LEN);190191if (dhcp_msg_type == DHCPDISCOVER) {192if (preq_addr.s_addr != htonl(0L)) {193bc = request_addr(slirp, &preq_addr, client_ethaddr);194if (bc) {195daddr.sin_addr = preq_addr;196}197}198if (!bc) {199new_addr:200bc = get_new_addr(slirp, &daddr.sin_addr, client_ethaddr);201if (!bc) {202DPRINTF("no address left\n");203return;204}205}206memcpy(bc->macaddr, client_ethaddr, ETH_ALEN);207} else if (preq_addr.s_addr != htonl(0L)) {208bc = request_addr(slirp, &preq_addr, client_ethaddr);209if (bc) {210daddr.sin_addr = preq_addr;211memcpy(bc->macaddr, client_ethaddr, ETH_ALEN);212} else {213/* DHCPNAKs should be sent to broadcast */214daddr.sin_addr.s_addr = 0xffffffff;215}216} else {217bc = find_addr(slirp, &daddr.sin_addr, bp->bp_hwaddr);218if (!bc) {219/* if never assigned, behaves as if it was already220assigned (windows fix because it remembers its address) */221goto new_addr;222}223}224225/* Update ARP table for this IP address */226arp_table_add(slirp, daddr.sin_addr.s_addr, client_ethaddr);227228saddr.sin_addr = slirp->vhost_addr;229saddr.sin_port = htons(BOOTP_SERVER);230231daddr.sin_port = htons(BOOTP_CLIENT);232233rbp->bp_op = BOOTP_REPLY;234rbp->bp_xid = bp->bp_xid;235rbp->bp_htype = 1;236rbp->bp_hlen = 6;237memcpy(rbp->bp_hwaddr, bp->bp_hwaddr, ETH_ALEN);238239rbp->bp_yiaddr = daddr.sin_addr; /* Client IP address */240rbp->bp_siaddr = saddr.sin_addr; /* Server IP address */241242q = rbp->bp_vend;243end = rbp->bp_vend + DHCP_OPT_LEN;244memcpy(q, rfc1533_cookie, 4);245q += 4;246247if (bc) {248DPRINTF("%s addr=%08" PRIx32 "\n",249(dhcp_msg_type == DHCPDISCOVER) ? "offered" : "ack'ed",250ntohl(daddr.sin_addr.s_addr));251252if (dhcp_msg_type == DHCPDISCOVER) {253*q++ = RFC2132_MSG_TYPE;254*q++ = 1;255*q++ = DHCPOFFER;256} else /* DHCPREQUEST */ {257*q++ = RFC2132_MSG_TYPE;258*q++ = 1;259*q++ = DHCPACK;260}261262if (slirp->bootp_filename) {263g_assert(strlen(slirp->bootp_filename) < sizeof(rbp->bp_file));264strcpy(rbp->bp_file, slirp->bootp_filename);265}266267*q++ = RFC2132_SRV_ID;268*q++ = 4;269memcpy(q, &saddr.sin_addr, 4);270q += 4;271272*q++ = RFC1533_NETMASK;273*q++ = 4;274memcpy(q, &slirp->vnetwork_mask, 4);275q += 4;276277if (!slirp->restricted) {278*q++ = RFC1533_GATEWAY;279*q++ = 4;280memcpy(q, &saddr.sin_addr, 4);281q += 4;282283*q++ = RFC1533_DNS;284*q++ = 4;285memcpy(q, &slirp->vnameserver_addr, 4);286q += 4;287}288289*q++ = RFC2132_LEASE_TIME;290*q++ = 4;291val = htonl(LEASE_TIME);292memcpy(q, &val, 4);293q += 4;294295if (*slirp->client_hostname) {296val = strlen(slirp->client_hostname);297if (q + val + 2 >= end) {298g_warning("DHCP packet size exceeded, "299"omitting host name option.");300} else {301*q++ = RFC1533_HOSTNAME;302*q++ = val;303memcpy(q, slirp->client_hostname, val);304q += val;305}306}307308if (slirp->vdomainname) {309val = strlen(slirp->vdomainname);310if (q + val + 2 >= end) {311g_warning("DHCP packet size exceeded, "312"omitting domain name option.");313} else {314*q++ = RFC1533_DOMAINNAME;315*q++ = val;316memcpy(q, slirp->vdomainname, val);317q += val;318}319}320321if (slirp->tftp_server_name) {322val = strlen(slirp->tftp_server_name);323if (q + val + 2 >= end) {324g_warning("DHCP packet size exceeded, "325"omitting tftp-server-name option.");326} else {327*q++ = RFC2132_TFTP_SERVER_NAME;328*q++ = val;329memcpy(q, slirp->tftp_server_name, val);330q += val;331}332}333334if (slirp->vdnssearch) {335val = slirp->vdnssearch_len;336if (q + val >= end) {337g_warning("DHCP packet size exceeded, "338"omitting domain-search option.");339} else {340memcpy(q, slirp->vdnssearch, val);341q += val;342}343}344345/* this allows to support UEFI HTTP boot: according to the UEFI346specification, DHCP server must send vendor class identifier option347set to "HTTPClient" string, when responding to DHCP requests as part348of the UEFI HTTP boot349350we assume that, if the bootfile parameter was configured as an http351URL, the user intends to perform UEFI HTTP boot, so send this option352automatically */353if (slirp->bootp_filename && g_str_has_prefix(slirp->bootp_filename, "http://")) {354val = strlen(UEFI_HTTP_VENDOR_CLASS_ID);355if (q + val + 2 >= end) {356g_warning("DHCP packet size exceeded, "357"omitting vendor class id option.");358} else {359*q++ = RFC2132_VENDOR_CLASS_ID;360*q++ = val;361memcpy(q, UEFI_HTTP_VENDOR_CLASS_ID, val);362q += val;363}364}365} else {366static const char nak_msg[] = "requested address not available";367368DPRINTF("nak'ed addr=%08" PRIx32 "\n", ntohl(preq_addr.s_addr));369370*q++ = RFC2132_MSG_TYPE;371*q++ = 1;372*q++ = DHCPNAK;373374*q++ = RFC2132_MESSAGE;375*q++ = sizeof(nak_msg) - 1;376memcpy(q, nak_msg, sizeof(nak_msg) - 1);377q += sizeof(nak_msg) - 1;378}379assert(q < end);380*q++ = RFC1533_END;381382daddr.sin_addr.s_addr = 0xffffffffu;383384assert(q <= end);385386m->m_len = sizeof(struct bootp_t) + (end - rbp->bp_vend) - sizeof(struct ip) - sizeof(struct udphdr);387udp_output(NULL, m, &saddr, &daddr, IPTOS_LOWDELAY);388}389390void bootp_input(struct mbuf *m)391{392struct bootp_t *bp = mtod_check(m, sizeof(struct bootp_t));393394if (!m->slirp->disable_dhcp && bp && bp->bp_op == BOOTP_REQUEST) {395bootp_reply(m->slirp, bp, m_end(m));396}397}398399400