Strange regression between 9.3 and 9.4

Mark Andrews Mark_Andrews at isc.org
Wed Jun 13 00:32:45 UTC 2007


	BIND 9.4.x implements empty zones.  There is a bug that
	causes them to disappear every alternate reload (fixed in 9.4.2).
	Named logs which empty zones it is creating.

#ifdef notyet
        /* RFC 1918 */
        { "10.IN-ADDR.ARPA", ISC_TRUE },
        { "16.172.IN-ADDR.ARPA", ISC_TRUE },
        { "17.172.IN-ADDR.ARPA", ISC_TRUE },
        { "18.172.IN-ADDR.ARPA", ISC_TRUE },
        { "19.172.IN-ADDR.ARPA", ISC_TRUE },
        { "20.172.IN-ADDR.ARPA", ISC_TRUE },
        { "21.172.IN-ADDR.ARPA", ISC_TRUE },
        { "22.172.IN-ADDR.ARPA", ISC_TRUE },
        { "23.172.IN-ADDR.ARPA", ISC_TRUE },
        { "24.172.IN-ADDR.ARPA", ISC_TRUE },
        { "25.172.IN-ADDR.ARPA", ISC_TRUE },
        { "26.172.IN-ADDR.ARPA", ISC_TRUE },
        { "27.172.IN-ADDR.ARPA", ISC_TRUE },
        { "28.172.IN-ADDR.ARPA", ISC_TRUE },
        { "29.172.IN-ADDR.ARPA", ISC_TRUE },
        { "30.172.IN-ADDR.ARPA", ISC_TRUE },
        { "31.172.IN-ADDR.ARPA", ISC_TRUE },
        { "168.192.IN-ADDR.ARPA", ISC_TRUE },
#endif

        /* RFC 3330 */
        { "127.IN-ADDR.ARPA", ISC_FALSE },      /* LOOPBACK */
        { "254.169.IN-ADDR.ARPA", ISC_FALSE },  /* LINK LOCAL */
        { "2.0.192.IN-ADDR.ARPA", ISC_FALSE },  /* TEST NET */
        { "255.255.255.255.IN-ADDR.ARPA", ISC_FALSE },  /* BROADCAST */

        /* Local IPv6 Unicast Addresses */
        { "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.AR
PA", ISC_FALSE },
        { "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.AR
PA", ISC_FALSE },
        /* LOCALLY ASSIGNED LOCAL ADDRES S SCOPE */
        { "D.F.IP6.ARPA", ISC_FALSE },
        { "8.E.F.IP6.ARPA", ISC_FALSE },        /* LINK LOCAL */
        { "9.E.F.IP6.ARPA", ISC_FALSE },        /* LINK LOCAL */
        { "A.E.F.IP6.ARPA", ISC_FALSE },        /* LINK LOCAL */
        { "B.E.F.IP6.ARPA", ISC_FALSE },        /* LINK LOCAL */

        { NULL, ISC_FALSE }

> Hi,
> 
> I've got report that reverse IPv6 lookups in 9.4.1 series are badly 
> broken. I have this configuration (only interesting parts are here):
> 
> Reverse IPv6 loopback zone declaration
> zone 
> "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" 
> IN {
>         type master;
>         file "named.ip6.local";
>         allow-update { none; };
> };
> 
> zone file:
> @       IN      SOA     dhcp-lab-102.englab.brq.redhat.com. 
> atkac.redhat.com.  (
>                                       1997022700 ; Serial
>                                       28800      ; Refresh
>                                       14400      ; Retry
>                                       3600000    ; Expire
>                                       86400 )    ; Minimum
>        IN      NS      dhcp-lab-102.englab.brq.redhat.com.
> 1      IN      PTR     localhost.

That really should be

zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa"
{
}

@       SOA     ....
@	NS	....
@	PTR	localhost.

Only :: and ::1 (::/127) are carved out of ::/96.  You are attempting to
carve out ::/124.

Named will detect when 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa and 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa are declared as zones and not create empty zones for them.
	
> when I try $dig @127.0.0.1 -x ::1 output is sometimes correct but often 
> looks like this:
> 
> ; <<>> DiG 9.4.1 <<>> @127.0.0.1 -x ::1
> ; (1 server found)
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42159
> ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa. 
> IN PTR
> 
> ;; AUTHORITY SECTION:
> 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa. 
> 86400 IN SOA 
> 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa. 
> . 0 28800 7200 604800 86400
> 
> ;; Query time: 0 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Tue Jun 12 18:16:29 2007
> ;; MSG SIZE  rcvd: 125
> 
> Is it known issue? It isn't reproducible on 9.3.4
> 
> Regards, Adam
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org


More information about the bind-workers mailing list