CC: Tony Finch <dot@dotat.at>
MIME-Version: 1.0
In-Reply-To: <rt-3.8.6-35151-1407118456-823.36330-5-0@isc.org>
X-Spam-Status: No, score=-2.5 required=5.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,RP_MATCHES_RCVD autolearn=ham autolearn_force=no version=3.4.0
X-Cam-Antivirus: no malware found
References: <RT-Ticket-36330@isc.org> <alpine.LSU.2.00.1406191110370.3035@hermes-1.csi.cam.ac.uk> <E1XAgke-0002LU-Ff@hermes-1.csi.cam.ac.uk> <rt-3.8.6-35138-1406299544-1900.36330-4-0@isc.org> <20140804021407.52C9E1B76D77@rock.dv.isc.org> <rt-3.8.6-35151-1407118456-823.36330-5-0@isc.org>
Message-ID: <alpine.LSU.2.00.1408061727480.13901@hermes-1.csi.cam.ac.uk>
Content-Type: TEXT/PLAIN; charset="utf-8"
X-X-Sender: fanf2@hermes-1.csi.cam.ac.uk
X-RT-Original-Encoding: utf-8
Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) by bugs.isc.org (Postfix) with ESMTP id 70C8B2D20571 for <bind9-bugs@bugs.isc.org>; Wed,  6 Aug 2014 16:36:50 +0000 (UTC)
Received: from ppsw-41.csi.cam.ac.uk (ppsw-41-v6.csi.cam.ac.uk [IPv6:2001:630:212:8::e:f41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx.pao1.isc.org (Postfix) with ESMTPS id 957C6349314 for <bind9-bugs@isc.org>; Wed,  6 Aug 2014 16:36:48 +0000 (UTC)
Received: from hermes-1.csi.cam.ac.uk ([131.111.8.51]:33042) by ppsw-41.csi.cam.ac.uk (smtp.hermes.cam.ac.uk [131.111.8.157]:25) with esmtpa (EXTERNAL:fanf2) id 1XF4Cj-0008Sa-Ri (Exim 4.82_3-c0e5623) (return-path <fanf2@hermes.cam.ac.uk>); Wed, 06 Aug 2014 17:36:45 +0100
Received: from fanf2 by hermes-1.csi.cam.ac.uk (hermes.cam.ac.uk) with local id 1XF4Cj-00006q-Ho (Exim 4.72) (return-path <fanf2@hermes.cam.ac.uk>); Wed, 06 Aug 2014 17:36:45 +0100
Delivered-To: bind9-bugs@bugs.isc.org
User-Agent: Alpine 2.00 (LSU 1167 2008-08-23)
Subject: Re: [ISC-Bugs #36330] [PATCH 3/3] use a larger starting EDNS UDP size, and add some debug logging
Return-Path: <fanf2@hermes.cam.ac.uk>
X-Original-To: bind9-bugs@bugs.isc.org
Date: Wed, 6 Aug 2014 17:36:45 +0100
Sender: Tony Finch <fanf2@hermes.cam.ac.uk>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mx.pao1.isc.org
To: Mark Andrews via RT <bind9-bugs@isc.org>
X-Cam-Scannerinfo: http://www.cam.ac.uk/cs/email/scanner/
From: Tony Finch <dot@dotat.at>
RT-Message-ID: <rt-3.8.6-35151-1407343010-1645.36330-0-0@isc.org>
Content-Length: 956

Mark Andrews via RT <bind9-bugs@isc.org> wrote:
>
> This one will break lookups from behind a firewall that only passes DNS
> queries <= 512 bytes.

OK I totally didn't understand the way the adb metrics were being used :-)

Ace, many thanks for your fix. I have given it a try and my dumb smoke
test passes. However most of that is to do with fixes on the authority
servers! But soy. and foo. still fail with an oldish 9.11 and work with
the new one.


$ time dig axfr . | sed -E '/^([0-9a-z-]+)[.][      ].*/!d;s//\1/' | sort -u | while read d; do dig dnskey $d. | grep 'status: SERVFAIL' && echo $d; done
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 50379
xn--l1acc

real    2m22.193s
user    0m4.048s
sys     0m3.096s


Tony.
-- 
f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
Lundy, Fastnet, Irish Sea, Shannon: West or northwest 4 or 5, occasionally 6
at first, becoming variable or southwest 3 or 4. Slight or moderate. Showers.
Good.