Bug #15825
open
KEA server ignores DHCPREQUEST containing an invalid FQDN
0%
Description
The soon to be deprecated ISC DHCP server issues a warning regarding malformed FQDN names in the DHCP request:
Nov 5 17:31:54 dhcpd 5567 DHCPDISCOVER from 00:1c:e8:01:6b:44 via em0.66
Nov 5 17:31:55 dhcpd 5567 DHCPOFFER on 192.168.66.129 to 00:1c:e8:01:6b:44 via em0.66
Nov 5 17:31:55 dhcpd 5567 label length exceeds 63 in fqdn option
Nov 5 17:31:55 dhcpd 5567 DHCPREQUEST for 192.168.66.129 (192.168.66.1) from 00:1c:e8:01:6b:44 via em0.66
Nov 5 17:31:55 dhcpd 5567 DHCPACK on 192.168.66.129 to 00:1c:e8:01:6b:44 via em0.66
The newer KEA DHCP server rejects such DHCP requests and the offending unit keeps looping trying to get a lease:
Nov 5 17:22:14 kea-dhcp4 85441 INFO [kea-dhcp4.leases.0x12ba1fc17400] DHCP4_LEASE_ADVERT [hwtype=1 00:1c:e8:01:6b:44 ], cid=[no info], tid=0x22334458: lease 192.168.66.129 will be advertised
Nov 5 17:23:53 kea-dhcp4 85441 INFO [kea-dhcp4.dhcpsrv.0x12ba1fc17400] EVAL_RESULT Expression pool_opt1_0 evaluated to 1
Nov 5 17:23:53 kea-dhcp4 85441 INFO [kea-dhcp4.leases.0x12ba1fc17400] DHCP4_LEASE_ADVERT [hwtype=1 00:1c:e8:01:6b:44 ], cid=[no info], tid=0x22334458: lease 192.168.66.130 will be advertised
Nov 5 17:26:34 kea-dhcp4 85441 INFO [kea-dhcp4.dhcpsrv.0x12ba1fc17400] EVAL_RESULT Expression pool_opt1_0 evaluated to 1
Nov 5 17:26:34 kea-dhcp4 85441 INFO [kea-dhcp4.leases.0x12ba1fc17400] DHCP4_LEASE_ADVERT [hwtype=1 00:1c:e8:01:6b:44 ], cid=[no info], tid=0x22334458: lease 192.168.66.131 will be advertised
Nov 5 17:29:14 kea-dhcp4 85441 INFO [kea-dhcp4.dhcpsrv.0x12ba1fc17400] EVAL_RESULT Expression pool_opt1_0 evaluated to 1
Nov 5 17:29:14 kea-dhcp4 85441 INFO [kea-dhcp4.leases.0x12ba1fc17400] DHCP4_LEASE_ADVERT [hwtype=1 00:1c:e8:01:6b:44 ], cid=[no info], tid=0x22334458: lease 192.168.66.132 will be advertised
I believe the KEA server error code is DHCP4_CLIENT_HOSTNAME_MALFORMED although I have no way of setting the debug log level at 50 or 55.
In this case, the unit is some firmware contained in a Cummins generator and there is no chance of updating the darn thing ;-(. Attached is a PCAP capture and PDF dump of the four DHCP psackets.
Is there a setting preventing such mundane rejects ?
Files
| CumminsGenerator.pcap (1.45 KB) CumminsGenerator.pcap | Packet capture of the DHCP transaction | ||
| CuminsGenerator.pdf (147 KB) CuminsGenerator.pdf | WireShark dump of the DHCP transaction | ||
| Unexpected_token.jpg (110 KB) Unexpected_token.jpg | |||
| packetcapture-igb2.67-20250809115544.pcap (4.17 KB) packetcapture-igb2.67-20250809115544.pcap | |||
| GeneratorLease.jpg (17.6 KB) GeneratorLease.jpg |
Updated by 
Updated by 
Updated by 
Updated by 
