[dns] Support DNS search lists

Update the DNS resolver to support DNS search lists (as provided by DHCP option 119, DHCPv6 option 24, or NDP option 31). Add validation code to ensure that parsing of DNS packets does not overrun the input, get stuck in infinite loops, or (worse) write beyond the end of allocated buffers. Signed-off-by: Michael Brown <mcb30@ipxe.org>
2026-01-01 00:07:27 +03:00 · 2014-01-31 18:16:42 +00:00
parent 3fa7a3b136
commit d4c0226a6c
9 changed files with 1457 additions and 333 deletions
--- a/src/net/ndp.c
+++ b/src/net/ndp.c
@@ -786,6 +786,16 @@ const struct setting ndp_dns6_setting __setting ( SETTING_IP_EXTRA, dns6 ) = {
 	.scope = &ndp_settings_scope,
 };

+/** DNS search list setting */
+const struct setting ndp_dnssl_setting __setting ( SETTING_IP_EXTRA, dnssl ) = {
+	.name = "dnssl",
+	.description = "DNS search list",
+	.tag = NDP_TAG ( NDP_OPT_DNSSL,
+			 offsetof ( struct ndp_dnssl_option, names ) ),
+	.type = &setting_type_dnssl,
+	.scope = &ndp_settings_scope,
+};
+
 /****************************************************************************
 *
 * IPv6 autoconfiguration