This is the mail archive of the
mailing list for the glibc project.
Retry mechanism w/ DNS Format Error?
- From: Pekka Savola <pekkas at netcore dot fi>
- To: libc-alpha at sources dot redhat dot com
- Date: Tue, 4 Jan 2005 08:07:14 +0200 (EET)
- Subject: Retry mechanism w/ DNS Format Error?
I noticed an "interesting" problem after Bind had been updated from
9.2.4 to 9.3.0: as the bitstring label support was removed, the server
started returning "Format Error" error code for bitstring v6 reverse
queries which, for example, RHL9 makes.
Now, apparently the RHL9 resolver code cannot cope with FormErr code
quickly, but has to resort to timeouts. (I've been unable to verify
this on a newer glibc because it no longer creates the bitstring
queries, but I have looked at the code in CVS and unless I'm
mislooking, it might be affected.)
Please take a look at the following tcpdump log, where 220.127.116.11
is the only name server in resolv.conf.
08:01:37.601520 IP 18.104.22.168.33013 > 22.214.171.124.domain: 6437+ PTR? \[x20010708001000400207e9fffe7b0259/128].ip6.arpa. (44)
08:01:37.601938 IP 126.96.36.199.domain > 188.8.131.52.33013: 6437 FormErr- [0q] 0/0/0 (12)
08:01:42.605829 IP 184.108.40.206.33013 > 220.127.116.11.domain: 6437+ PTR? \[x20010708001000400207e9fffe7b0259/128].ip6.arpa. (44)
08:01:42.606267 IP 18.104.22.168.domain > 22.214.171.124.33013: 6437 FormErr- [0q] 0/0/0 (12)
08:01:47.616753 IP 126.96.36.199.33013 > 188.8.131.52.domain: 6438+ PTR? 184.108.40.206.b.7.e.f.f.f.9.e.220.127.116.11.0.4.0.0.0.1.0.0.18.104.22.168.22.214.171.124.ip6.int. (89)
08:01:47.617910 IP 126.96.36.199.domain > 188.8.131.52.33013: 6438 1/2/2 PTR haukka.ipv6.csc.fi. (203)
The problem here is the timeouts between queries. Apparently, 10
seconds gets wasted when each server is asked twice about a name that
has been deprecated and the server no longer wants to know how to
Would it make sense to have a different failure strategy? Could one
just skip to the next name or server _immediately_ (without the 2*5
sec timeout) upon receiving FormErr?
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings