Package: avahi-daemon
Version: 0.6.31-2
Severity: important
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
libnss-mdns breaks DNS lookups on networks that use a subdomain of
the 'local' zone.
After removing libnss-mdns:
$ dig +short jenkins.myorg.local
realserver.myorg.local
192.168.0.1
myorg.local has a SOA record, as expected:
$ dig +short -t soa myorg.local
ns0.myorg.local. foo.myorg.com. 3000120542 60 15 3628800 60
But avahi-check-dns.sh fails to detect that this domain is in use:
$ sh -x /usr/lib/avahi/avahi-daemon-check-dns.sh
+ PATH=/bin:/usr/bin:/sbin:/usr/sbin
+ RUNDIR=/var/run/avahi-daemon/
+ DISABLE_TAG=/var/run/avahi-daemon//disabled-for-unicast-local
+ NS_CACHE=/var/run/avahi-daemon//checked_nameservers
+ AVAHI_DAEMON_DETECT_LOCAL=1
+ test -f /etc/default/avahi-daemon
+ . /etc/default/avahi-daemon
+ AVAHI_DAEMON_DETECT_LOCAL=1
+ [ 1 != 1 ]
+ dns_reachable
+ grep -q nameserver /etc/resolv.conf
+
+ egrep -q nameserver 127.0.0.1|::1 /etc/resolv.conf
+
+ grep addr:
+ LC_ALL=C ifconfig
+ ADDRS= inet addr:10.0.2.15 Bcast:10.0.2.255
Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:fe63:5ef5/64 Scope:Link
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
+ egrep -v :127|Scope:Host|Scope:Link
+ echo inet addr:10.0.2.15 Bcast:10.0.2.255
Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:fe63:5ef5/64 Scope:Link
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
+ ADDRS= inet addr:10.0.2.15 Bcast:10.0.2.255
Mask:255.255.255.0
+ grep ^0.0.0.0
+ route -n
+ ROUTES=0.0.0.0 10.0.2.2 0.0.0.0 UG 0 0
0 eth0
+ [ -z inet addr:10.0.2.15 Bcast:10.0.2.255
Mask:255.255.255.0 -o -z 0.0.0.0 10.0.2.2 0.0.0.0 UG
0 0 0 eth0 ]
+ return 0
+ dns_needs_check
+ TMP_CACHE=/var/run/avahi-daemon//checked_nameservers.5710
+ RET=0
+ ensure_rundir
+ [ ! -d /var/run/avahi-daemon/ ]
+ sort
+ grep nameserver
+ cat /etc/resolv.conf
+ [ -e /var/run/avahi-daemon//checked_nameservers ]
+ mv /var/run/avahi-daemon//checked_nameservers.5710
/var/run/avahi-daemon//checked_nameservers
+ return 0
+ dns_has_local
+ [ -n ]
+ LC_ALL=C host -t soa local.
+ OUT=Host local. not found: 3(NXDOMAIN)
+ [ 1 -eq 0 ]
+ rm -f /var/run/avahi-daemon//checked_nameservers
+ return 1
+ enable_avahi
+ [ -e /var/run/avahi-daemon//disabled-for-unicast-local ]
+ exit 0
I guess because there is no SOA RR for 'local':
$ host -t soa local
Host local not found: 3(NXDOMAIN)
Now, on some systems of this network it seems possible to detect that
.local is in use:
$ hostname -f
host1.myorg.local
But others are configured differently:
$ hostname -f
host2
This seems to be caused by host2 not having an alias for
'host2.myorg.local' in /etc/hosts.
host(1) can be used on both systems to discover that .local is being
used, however:
$ host host2
host2.myorg.local has address 10.0.0.213
In addition, both systems have 'search myorg.local' in /etc/resolv.conf, so
looking for 'domain' or 'search' entries in that file may be another way
to detect that avahi should disable itself.
- -- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (540, 'testing'), (530, 'unstable'), (520, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.10-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages avahi-daemon depends on:
ii adduser 3.113+nmu3
ii bind9-host [host] 1:9.8.4.dfsg.P1-6+nmu3
ii dbus 1.6.16-1
ii libavahi-common3 0.6.31-2
ii libavahi-core7 0.6.31-2
ii libc6 2.17-93
ii libcap2 1:2.22-1.2
ii libdaemon0 0.14-2
ii libdbus-1-3 1.6.16-1
ii libexpat1 2.1.0-4
ii lsb-base 4.1+Debian12
Versions of packages avahi-daemon recommends:
ii libnss-mdns 0.10-4
Versions of packages avahi-daemon suggests:
pn avahi-autoipd <none>
- -- no debconf information
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
iEYEARECAAYFAlJwEyAACgkQshl/216gEHjgwwCdELKmcNzM7Pdw3/wGpkXxnszX
r7cAoLXEskvaBU6OuMjU8istBmNM/th/
=mXeC
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
