Report information
The Basics
Id:
45804
Status:
resolved
Priority:
Low/Low
Queue:
bind9-public
People
BugTracker
Version Fixed:
9.10.7, 9.11.3, 9.12.0
Version Found:
(no value)
Versions Affected:
(no value)
Versions Planned:
(no value)
Priority:
P2 Normal
Severity:
S3 Low
CVSS Score:
(no value)
CVE ID:
(no value)
Component:
BIND Utilities
Area:
bug
Attachments
delv-bogus-queries.pcap
Dates
Created:Thu, 17 Aug 2017 06:49:28 -0400
Updated:Mon, 21 Aug 2017 03:27:24 -0400
Closed:Mon, 21 Aug 2017 03:27:24 -0400

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History
  Thu, 17 Aug 2017 06:49:28 -0400 Michał Kępień <michal@isc.org> - Ticket created
Date: Thu, 17 Aug 2017 10:49:28 +0000
To: bind9-public@isc.org
From: michal@isc.org
Subject: delv may send bogus queries when -4/-6 is used

When -4 or -6 is specified on the command line along with an explicit server address belonging to the disabled address family, delv will send out bogus queries in an attempt to resolve the provided server "name". To reproduce, put the following in /etc/resolv.conf: search foo.bar nameserver 127.0.0.1 and then run: $ delv -4 @::1 isc.org This will result in queries for "::1.foo.bar." and "::1." being sent to 127.0.0.1, as proved by the attached PCAP file. Depending on host configuration, this issue might result in test traffic being leaked when the digdelv system test is run.
Subject: delv-bogus-queries.pcap
delv-bogus-queries.pcap

Message body not shown because it is not plain text.

  Thu, 17 Aug 2017 06:53:32 -0400 Michał Kępień <michal@isc.org> - Correspondence added

rt45804 contains the suggested fix, please review. Tweaks to the printed error message are welcome.
Thu, 17 Aug 2017 06:53:33 -0400 Michał Kępień <michal@isc.org> - Status changed from 'open' to 'review'
Thu, 17 Aug 2017 06:53:33 -0400 Michał Kępień <michal@isc.org> - Untaken
  Sun, 20 Aug 2017 17:25:07 -0400 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

Pushed another test, and switched it to use fatal() instead of a logged error. If you're okay with those changes, then this is okay to commit.
Sun, 20 Aug 2017 17:25:08 -0400 Evan Hunt <Evan_Hunt@isc.org> - Given to Michał Kępień <michal@isc.org>
  Mon, 21 Aug 2017 03:10:35 -0400 Michał Kępień <michal@isc.org> - Correspondence added

I silenced grep output in the test you added, but apart from that I am okay with your changes. Thank you for reviewing.
  Mon, 21 Aug 2017 03:27:23 -0400 Michał Kępień <michal@isc.org> - Correspondence added

4684. [bug] delv could send bogus DNS queries when an explicit server address was specified on the command line along with -4/-6. [RT #45804] 9.10.7, 9.11.3, 9.12.0
Mon, 21 Aug 2017 03:27:24 -0400 Michał Kępień <michal@isc.org> - Status changed from 'review' to 'resolved'
Mon, 21 Aug 2017 03:27:24 -0400 Michał Kępień <michal@isc.org> - Version Fixed 9.10.7, 9.11.3, 9.12.0 added