From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-3.4 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HTML_MESSAGE,MAILING_LIST_MULTI,RCVD_IN_DNSWL_MED, RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 5881 invoked from network); 24 Jun 2022 17:33:56 -0000 Received: from mother.openwall.net (195.42.179.200) by inbox.vuxu.org with ESMTPUTF8; 24 Jun 2022 17:33:56 -0000 Received: (qmail 26574 invoked by uid 550); 24 Jun 2022 17:33:54 -0000 Mailing-List: contact musl-help@lists.openwall.com; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-ID: Reply-To: musl@lists.openwall.com Received: (qmail 14097 invoked from network); 24 Jun 2022 17:14:34 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nielsen.com; s=dkim-gsuite-connect; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=PBxnDyzrQwPidFWRUHnMxUgHpMKLG+OBMebRg++vWD0=; b=SqHfLqSKqHOdLNkbdaJ3GjT5id/9GeH2tYlWl79QDhb4zrQKA3xyj16nyvG1PHMiUW h4MSqJMPjG48FfDRkTo7QvRkU6WQ4dqsIyXCkQ2PG/BWr6wkj4RAAUVRYK26ZaOpmAnZ BVKMAzcEjCZSBoZ+uTTTnCEbEAaPVtxNL8yp8= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=PBxnDyzrQwPidFWRUHnMxUgHpMKLG+OBMebRg++vWD0=; b=HgR6h/kiy3VPBWmdt4rhhKtIlWBIDCuW92tujUE2QoMpgktFlE/7dFtjS4qpH3LDrs rMtqd+ZxftEOOdtY42FEZF8oRuEGHU6oaxxjY0nfHNGBBQAqZ6Yn1Aku7aj8dVhT7db+ v1SuhNPuQmPASyOsNv/fTbTQU+LakonUGLc/SOJm2d+zd4g2JqEwb7m2o1jArKyJe3+q Zn8ykb9/KsmA+Vv4DQWfSZE5/K1rd7j6p9UhxQLj8r6SXj6JO5G5ZR9oRlxXuQpK7KrM XkozIAzVZhVl3nymVjroDWEVO6RSoKLaZ1Q7CtOsgknoMXlTg0LZySSKXWsQ4MAYz8mT LcLw== X-Gm-Message-State: AJIora+sTK7ofHJivKZsSpWBjdnJPVlMzx5b/8nkUbk9fTFY2ck3yBrc Pae5+b1xSqHgJjjeXY06SPoJLKcB4jkHIPJmCqbkWhQXss0rRg== X-Google-Smtp-Source: AGRyM1tW9mV9MoEs2WHxBhKSmBpDJWbeHNT7bVk1/5loALW+h3NS+j5UVaMYq7VZ64nkR619We74ZikI25Lv+RgiIJI= X-Received: by 2002:a17:906:7386:b0:715:7024:3df7 with SMTP id f6-20020a170906738600b0071570243df7mr14248433ejl.543.1656090862437; Fri, 24 Jun 2022 10:14:22 -0700 (PDT) MIME-Version: 1.0 References: <20220624145936.GP7074@brightrain.aerifal.cx> In-Reply-To: <20220624145936.GP7074@brightrain.aerifal.cx> From: Markus Geiger Date: Fri, 24 Jun 2022 19:14:10 +0200 Message-ID: To: musl@lists.openwall.com Content-Type: multipart/alternative; boundary="00000000000093049e05e234b30d" Subject: Re: [musl] [BUG] Non-FQDN domain resolving failure on musl-1.2.x --00000000000093049e05e234b30d Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Sorry: not Amazon DNS =E2=80=93 10.204.109.209 is a BIND server in our netw= ork we've setup to work with our global VPN/DNS. BUT the strange thing is that the domain lookup works with musl-1.1.24 while with some musl-1.2.x just quits with an error. a comparison with the docker runs and `sudo tcpdump -v -i docker0 udp port 53 or tcp port 53` did not bring up any diffs except the list of A records returned is in a different order (which i think is completely normal). the order of requests is the same tcpdump from working version: > bind-us-east-1a.XXXXXXXXXXXXXX.domain > 172.17.0.3.45501: 18685 9/13/8 slack.com. A 3.95.117.96, slack.com. A 34.231.24.224, slack.com. A 54.163.235.119, slack.com. A 54.147.59.169, slack.com. A 34.193.255.5, slack.com. A 34.204.109.226, slack.com. A 34.225.62.185, slack.com. A 34.203.97.10, slack.com. A 54.92.199.186 (510) tcpdump from non-working version: > bind-us-east-1a.XXXXXXXXXXXXXX.domain > 172.17.0.3.59951: 49211 9/13/8 slack.com. A 34.225.62.185, slack.com. A 54.163.235.119, slack.com. A 34.231.24.224, slack.com. A 54.147.59.169, slack.com. A 34.193.255.5, slack.com. A 34.204.109.226, slack.com. A 54.92.199.186, slack.com. A 3.95.117.96, slack.com. A 34.203.97.10 (510) Complete log: 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49211+ A? slack.com. (27) 18:56:19.990087 IP (tos 0x0, ttl 64, id 10210, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:20.154990 IP (tos 0x0, ttl 250, id 17825, offset 0, flags [none], proto UDP (17), length 538) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49211 9/13/8 slack.com. A 34.225.62.185, slack.com. A 54.163.235.119, slack.com. A 34.231.24.224, slack.com. A 54.147.59.169, slack.com. A 34.193.255.5, slack.com. A 34.204.109.226, slack.com. A 54.92.199.186, slack.com. A 3.95.117.96, slack.com. A 34.203.97.10 (510) 18:56:20.241377 IP (tos 0x0, ttl 250, id 17846, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:20.241501 IP (tos 0x0, ttl 64, id 10233, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:20.401765 IP (tos 0x0, ttl 250, id 17879, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:20.401831 IP (tos 0x0, ttl 64, id 10247, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:20.563915 IP (tos 0x0, ttl 250, id 17906, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:20.563946 IP (tos 0x0, ttl 64, id 10300, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:20.801072 IP (tos 0x0, ttl 250, id 17915, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:20.801187 IP (tos 0x0, ttl 64, id 10392, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:20.961903 IP (tos 0x0, ttl 250, id 17948, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:22.492127 IP (tos 0x0, ttl 64, id 10410, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:22.745884 IP (tos 0x0, ttl 250, id 18135, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:22.745930 IP (tos 0x0, ttl 64, id 10492, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:22.906904 IP (tos 0x0, ttl 250, id 18171, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:22.906941 IP (tos 0x0, ttl 64, id 10548, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:23.067742 IP (tos 0x0, ttl 250, id 18209, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:23.067773 IP (tos 0x0, ttl 64, id 10559, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:23.228046 IP (tos 0x0, ttl 250, id 18244, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:23.228083 IP (tos 0x0, ttl 64, id 10598, offset 0, flags [DF], proto UDP (17), length 55) 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27) 18:56:23.388598 IP (tos 0x0, ttl 250, id 18274, offset 0, flags [none], proto UDP (17), length 55) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27) 18:56:24.998168 IP (tos 0x0, ttl 64, id 10759, offset 0, flags [none], proto UDP (17), length 55) 172.17.0.3.55720 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 2282+ ANY? slack.com. (27) 18:56:25.199844 IP (tos 0x0, ttl 250, id 18505, offset 0, flags [none], proto UDP (17), length 538) bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.55720: 2282 9/13/8 slack.com. A 34.231.24.224, slack.com. A 34.193.255.5, slack.co= m. A 54.163.235.119, slack.com. A 54.92.199.186, slack.com. A 54.147.59.169, slack.com. A 3.95.117.96, slack.com. A 34.225.62.185, slack.com. A 34.204.109.226, slack.com. A 34.203.97.10 (510) Thanks for looking into! Greetings, Markus --00000000000093049e05e234b30d Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Sorry: not Amazon DNS =E2=80=93=C2= =A010.204.109.209 is a BIND server in our network we've setup to work w= ith our global VPN/DNS.

BUT the strange=C2=A0thing= is that the domain lookup works with musl-1.1.24 while with some musl-1.2.= x just quits with an error.

a comparison=C2=A0with= the docker runs and `sudo tcpdump -v -i docker0 udp port 53 or tcp port 53= ` did not bring up any diffs except the list of A records returned is in a = different order (which i think is completely=C2=A0normal). the order of req= uests is the same

tcpdump from working version:
>=C2=A0 =C2=A0bind-us-east-1a.XXXXXXXXXXXXXX.domain > 172.17.= 0.3.45501: 18685 9/13/8 slack.com. A 3.95.= 117.96, slack.com. A 34.231.24.224, slack.com. A 54.163.235.119, slack.com. A 54.147.59.169, slac= k.com. A 34.193.255.5, slack.com. A 34= .204.109.226, slack.com. A 34.225.62.185, = slack.com. A 34.203.97.10, slack.com. A 54.92.199.186 (510)

tcpdump from non-working version:
>=C2=A0 =C2=A0bind-us-e= ast-1a.XXXXXXXXXXXXXX.domain > 172.17.0.3.59951: 49211 9/13/8 slack.com. A 34.225.62.185, slack.com. A 54.163.235.119, slack.co= m. A 34.231.24.224, slack.com. A 54.14= 7.59.169, slack.com. A 34.193.255.5, slack.com. A 34.204.109.226, slack.com. A 54.92.199.186, sla= ck.com. A 3.95.117.96, slack.com. A 34= .203.97.10 (510)

Complete log:

= =C2=A0 =C2=A0 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXX= XXx.domain: 49211+ A? slack.com. (27)
1= 8:56:19.990087 IP (tos 0x0, ttl 64, id 10210, offset 0, flags [DF], proto U= DP (17), length 55)
=C2=A0 =C2=A0 172.17.0.3.59951 > bind-us-east-1a.= XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27)
18:56:20.154990 IP (tos 0x0, ttl 250, id 17825, of= fset 0, flags [none], proto UDP (17), length 538)
=C2=A0 =C2=A0 bind-us-= east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49211 9/13= /8 slack.com. A 34.225.62.185, slack.com. A 54.163.235.119, slack.com. A 34.231.24.224, slack.com= . A 54.147.59.169, slack.com. A 34.193= .255.5, slack.com. A 34.204.109.226, slack.com. A 54.92.199.186, slack.com. A 3.95.117.96, slack.= com. A 34.203.97.10 (510)
18:56:20.241377 IP (tos 0x0, ttl 250, id 1= 7846, offset 0, flags [none], proto UDP (17), length 55)
=C2=A0 =C2=A0 b= ind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 493= 34 ServFail 0/0/0 (27)
18:56:20.241501 IP (tos 0x0, ttl 64, id 10233, of= fset 0, flags [DF], proto UDP (17), length 55)
=C2=A0 =C2=A0 172.17.0.3.= 59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? = slack.com. (27)
18:56:20.401765 IP (tos= 0x0, ttl 250, id 17879, offset 0, flags [none], proto UDP (17), length 55)=
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 17= 2.17.0.3.59951: 49334 ServFail 0/0/0 (27)
18:56:20.401831 IP (tos 0x0, t= tl 64, id 10247, offset 0, flags [DF], proto UDP (17), length 55)
=C2=A0= =C2=A0 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.do= main: 49334+ AAAA? slack.com. (27)
18:5= 6:20.563915 IP (tos 0x0, ttl 250, id 17906, offset 0, flags [none], proto U= DP (17), length 55)
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXX= XXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27)
18:56:20.56= 3946 IP (tos 0x0, ttl 64, id 10300, offset 0, flags [DF], proto UDP (17), l= ength 55)
=C2=A0 =C2=A0 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXX= XXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.co= m. (27)
18:56:20.801072 IP (tos 0x0, ttl 250, id 17915, offset 0, fl= ags [none], proto UDP (17), length 55)
=C2=A0 =C2=A0 bind-us-east-1a.XXX= XXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 = (27)
18:56:20.801187 IP (tos 0x0, ttl 64, id 10392, offset 0, flags [DF]= , proto UDP (17), length 55)
=C2=A0 =C2=A0 172.17.0.3.59951 > bind-us= -east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27)
18:56:20.961903 IP (tos 0x0, ttl 250, id = 17948, offset 0, flags [none], proto UDP (17), length 55)
=C2=A0 =C2=A0 = bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49= 334 ServFail 0/0/0 (27)
18:56:22.492127 IP (tos 0x0, ttl 64, id 10410, o= ffset 0, flags [DF], proto UDP (17), length 55)
=C2=A0 =C2=A0 172.17.0.3= .59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA?= slack.com. (27)
18:56:22.745884 IP (to= s 0x0, ttl 250, id 18135, offset 0, flags [none], proto UDP (17), length 55= )
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 1= 72.17.0.3.59951: 49334 ServFail 0/0/0 (27)
18:56:22.745930 IP (tos 0x0, = ttl 64, id 10492, offset 0, flags [DF], proto UDP (17), length 55)
=C2= =A0 =C2=A0 172.17.0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx= .domain: 49334+ AAAA? slack.com. (27)
1= 8:56:22.906904 IP (tos 0x0, ttl 250, id 18171, offset 0, flags [none], prot= o UDP (17), length 55)
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXX= XXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0/0 (27)
18:56:22= .906941 IP (tos 0x0, ttl 64, id 10548, offset 0, flags [DF], proto UDP (17)= , length 55)
=C2=A0 =C2=A0 172.17.0.3.59951 > bind-us-east-1a.XXXXXXX= XXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack= .com. (27)
18:56:23.067742 IP (tos 0x0, ttl 250, id 18209, offset 0,= flags [none], proto UDP (17), length 55)
=C2=A0 =C2=A0 bind-us-east-1a.= XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951: 49334 ServFail 0/0= /0 (27)
18:56:23.067773 IP (tos 0x0, ttl 64, id 10559, offset 0, flags [= DF], proto UDP (17), length 55)
=C2=A0 =C2=A0 172.17.0.3.59951 > bind= -us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ AAAA? slack.com. (27)
18:56:23.228046 IP (tos 0x0, ttl 250, = id 18244, offset 0, flags [none], proto UDP (17), length 55)
=C2=A0 =C2= =A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain > 172.17.0.3.59951= : 49334 ServFail 0/0/0 (27)
18:56:23.228083 IP (tos 0x0, ttl 64, id 1059= 8, offset 0, flags [DF], proto UDP (17), length 55)
=C2=A0 =C2=A0 172.17= .0.3.59951 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain: 49334+ A= AAA? slack.com. (27)
18:56:23.388598 IP= (tos 0x0, ttl 250, id 18274, offset 0, flags [none], proto UDP (17), lengt= h 55)
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXXXXXx.domain &g= t; 172.17.0.3.59951: 49334 ServFail 0/0/0 (27)
18:56:24.998168 IP (tos 0= x0, ttl 64, id 10759, offset 0, flags [none], proto UDP (17), length 55)=C2=A0 =C2=A0 172.17.0.3.55720 > bind-us-east-1a.XXXXXXXXXXXXXXXXXXXXXX= XXXx.domain: 2282+ ANY? slack.com. (27)18:56:25.199844 IP (tos 0x0, ttl 250, id 18505, offset 0, flags [none], pr= oto UDP (17), length 538)
=C2=A0 =C2=A0 bind-us-east-1a.XXXXXXXXXXXXXXXX= XXXXXXXXXx.domain > 172.17.0.3.55720: 2282 9/13/8 slack.com. A 34.231.24.224, slack.c= om. A 34.193.255.5, slack.com. A 54.16= 3.235.119, slack.com. A 54.92.199.186, slack.com. A 54.147.59.169, slack.com. A 3.95.117.96, slac= k.com. A 34.225.62.185, slack.com. A 3= 4.204.109.226, slack.com. A 34.203.97.10 (= 510)

Thanks for looking into!

Gr= eetings,
Markus

--00000000000093049e05e234b30d--