[Dnsmasq-discuss] [PATCH] return responses without qname
Petr Menšík
pemensik at redhat.com
Mon Jul 20 15:04:16 BST 2020
Hi,
found out even latest dnsmasq is not able to forward reply, when it does
not contain qname in response body. I discovered it when testing
RHEL/CentOS 7, which has Unbound 1.6.6. If you send non-recursive query
to it, it responds with REFUSED. But no query name copied in response.
dig itself can handle it well. But dnsmasq does not forward such query back.
Steps to reproduce:
start unbound < 1.7.0, listening on localhost
start dnsmasq with:
bind-interfaces
listen-address=127.0.0.2
It can be tested with unbound configured on localhost. Then use:
dig @127.0.0.2 +norec localhost
It would always fail with timeout, because dnsmasq discards the reply. I
attached my attempt to fix the issue. It just provides null hash, which
is then supported by cache lookup.
Fedora bug: https://bugzilla.redhat.com/show_bug.cgi?id=1826691
Github link: https://github.com/InfrastructureServices/dnsmasq/pull/6
--
Petr Menšík
Software Engineer
Red Hat, http://www.redhat.com/
email: pemensik at redhat.com
PGP: DFCF908DB7C87E8E529925BC4931CA5B6C9FC5CB
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Forward-error-responses-without-qname.patch
Type: text/x-patch
Size: 2651 bytes
Desc: not available
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20200720/46e4c67e/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20200720/46e4c67e/attachment.sig>
More information about the Dnsmasq-discuss
mailing list