DHCPv6 not updating nameservers and search domains since replacing isc-dhcp-client with WIDE dhcp6c
Closed, ResolvedPublicBUG
Actions

Assigned To

Authored By

	jjakob
	Jun 12 2020, 10:02 AM

Description

Before the switch to WIDE dhcp6c , adding and deleting nameservers and search domains from the lease was done by isc-dhcp-client dhclient-script. This has custom hooks (make_resolv_conf and a post script) that do the necessary updating of nameservers via vyos-hostsd.
Since switching to WIDE dhcp6c for T421 these scripts aren't ran any more. WIDE dhcp6c does support running scripts, but after comparing the two, they aren't compatible, so it isn't a simple case of running the existing isc-dhcp scripts with wide.

most notably from 'man dhcp6c':

Configuration Script
When receives a reply message, it will invoke a supplementary configuration script specified in the dhcp6c.conf5 file. The daemon will provide the script with configuration parameters as environment variables, which include:

REASON
The reason why the script is invoked. As of this writing, the value is always "NBI" and thus meaningless.
new_domain_name_servers
A list of available DNS servers, each of which is an IPv6 numeric address and is separated by a white space character.
new_domain_name
A list of DNS names, which provides DNS name search path.
new_ntp_servers
A list of available NTP servers, each of which is an IPv6 numeric address and is separated by a white space character.
new_sip_servers
A list of available SIP server addresses, each of which is an IPv6 numeric address and is separated by a white space character.
new_sip_name
A list of SIP server domain names.
new_nis_servers
A list of available NIS server addresses, each of which is an IPv6 numeric address and is separated by a white space character.
new_nis_name
A list of NIS domain names.
new_nisp_servers
A list of available NIS+ server addresses, each of which is an IPv6 numeric address and is separated by a white space character.
new_nisp_name
A list of NIS+ domain names.
new_bcmcs_servers
A list of available BCMCS server addresses, each of which is an IPv6 numeric address and is separated by a white space character.
new_bcmcs_name
A list of BCMCS server domain names.

So the critical differences are:

REASON is never set to the real reason (isc-dhcp does set it)
new_domain_name_servers is used for v6, whereas isc-dhcp uses it for v4 and has a separate new_dhcp6_name_servers variable for v6
new_domain_name is the equivalent of isc-dhcp new_dhcp6_domain_search

So to fix this with wide-dhcp6, we'd need to make a completely new script that does the same things the existing pre/post hooks for dhclient-script do, but suitable for wide.

(if anyone wants to start working on this, note there is a pending vyos-1x PR for the whole vyos-hostsd/dhclient hooks so please wait until it's merged)

Details

Difficulty level: Normal (likely a few hours)
Version: -
Why the issue appeared?: Design mistake
Is it a breaking change?: Perfectly compatible
Issue type: Bug (incorrect behavior)

Related Objects
Search...

Status	Subtype	Assigned	Task
Open		None	T2464 DNS bugs (parent task)
Resolved	BUG	Viacheslav	T1751 DNS server addresses from DHCPv6 are not added to resolv.conf
Resolved	BUG	c-po	T2590 DHCPv6 not updating nameservers and search domains since replacing isc-dhcp-client with WIDE dhcp6c

Event Timeline

jjakob created this task.Jun 12 2020, 10:02 AM

jjakob triaged this task as High priority.

jjakob created this object in space S1 VyOS Public.

jjakob mentioned this in T421: Add Pv6 prefix delegation support.Jun 12 2020, 10:07 AM

syncer changed the subtype of this task from "Task" to "Bug".Jun 12 2020, 5:09 PM

jack9603301 subscribed.Jun 13 2020, 4:22 AM

pasik subscribed.Jun 14 2020, 8:30 PM

jjakob added a parent task: T1751: DNS server addresses from DHCPv6 are not added to resolv.conf.Jun 22 2020, 9:43 AM

jjakob mentioned this in T1751: DNS server addresses from DHCPv6 are not added to resolv.conf.Jun 22 2020, 9:47 AM

erkin set Issue type to Bug (incorrect behavior).Aug 30 2021, 5:31 AM

erkin removed a subscriber: Active contributors.

syncer edited projects, added VyOS 1.3 Equuleus (1.3.0); removed VyOS 1.3 Equuleus.Nov 6 2021, 11:24 AM

syncer edited projects, added VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).Aug 29 2022, 7:05 AM

syncer assigned this task to c-po.Jul 11 2023, 10:03 PM

syncer edited projects, added VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.3).Jul 12 2023, 9:41 PM

syncer edited projects, added VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus (1.3.4).Aug 25 2023, 9:30 PM

syncer edited projects, added VyOS 1.3 Equuleus (1.3.6); removed VyOS 1.3 Equuleus (1.3.5).Dec 17 2023, 11:37 PM

syncer edited projects, added VyOS 1.3 Equuleus (1.3.7); removed VyOS 1.3 Equuleus (1.3.6).Feb 10 2024, 9:17 AM

We need to implement https://manpages.debian.org/testing/wide-dhcpv6-client/dhcp6c.conf.5.en.html#script like in ipv4 dhcp client

vyos@vyos# cat /tmp/foo.sh
#!/bin/bash
FOO=$(printenv)
logger ${REASON} - ${FOO}

results in Mar 28 20:51:04 root[13452]: NBI - new_domain_name=vyos.net. new_domain_name_servers=2001:db8::8888 2001:db8::4444 PWD=/ REASON=NBI SHLVL=0 _=/usr/bin/printenv

for

interface eth0.201 {
    request domain-name-servers;
    request domain-name;
    send ia-na 0; # non-temporary address
    script "/tmp/foo.sh";
};

NOTE: REASON is always NBI and thus meaningless

After the fix

[email protected]# cat /etc/resolv.conf
### Autogenerated by VyOS ###
### Do not edit, your changes will get overwritten ###


# dhcpv6-eth0.201
nameserver 2001:db8::8888
nameserver 2001:db8::4444

domain mybll.net

# system
search mybll.net
# dhcpv6-eth0.201
search vyos.net.

c-po added projects: VyOS 1.5 Circinus, VyOS 1.4 Sagitta (1.4.0-epa3).Apr 1 2024, 12:03 PM

c-po changed Difficulty level from Unknown (require assessment) to Normal (likely a few hours).

c-po changed Why the issue appeared? from Will be filled on close to Design mistake.

c-po changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.

https://github.com/vyos/vyos-1x/pull/3224

c-po moved this task from Need Triage to Finished on the VyOS 1.5 Circinus board.Apr 1 2024, 12:11 PM

c-po moved this task from Need Triage to Finished on the VyOS 1.4 Sagitta (1.4.0-epa3) board.Apr 1 2024, 2:38 PM

1.3 equuleus https://github.com/vyos/vyos-1x/pull/3250

c-po moved this task from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.7) board.Apr 4 2024, 7:24 PM

dmbaturin closed this task as Resolved.Apr 5 2024, 6:07 AM

dmbaturin removed a project: VyOS 1.5 Circinus.May 10 2024, 7:41 PM

DHCPv6 not updating nameservers and search domains since replacing isc-dhcp-client with WIDE dhcp6cClosed, ResolvedPublicBUGActions

Description

Details

Related ObjectsSearch...

Event Timeline

DHCPv6 not updating nameservers and search domains since replacing isc-dhcp-client with WIDE dhcp6c
Closed, ResolvedPublicBUG
Actions

Related Objects
Search...