This is the mail archive of the glibc-bugs@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

[Bug network/13928] New: TTL value associated with a CNAME record is overridden by its alias

From: "siddhesh at redhat dot com" <sourceware-bugzilla at sourceware dot org>
To: glibc-bugs at sources dot redhat dot com
Date: Thu, 29 Mar 2012 08:49:39 +0000
Subject: [Bug network/13928] New: TTL value associated with a CNAME record is overridden by its alias
Auto-submitted: auto-generated

http://sourceware.org/bugzilla/show_bug.cgi?id=13928

             Bug #: 13928
           Summary: TTL value associated with a CNAME record is overridden
                    by its alias
           Product: glibc
           Version: unspecified
            Status: NEW
          Severity: normal
          Priority: P2
         Component: network
        AssignedTo: unassigned@sourceware.org
        ReportedBy: siddhesh@redhat.com
    Classification: Unclassified


If the result of a DNS query is a CNAME and its aliases down to an A or AAAA
record, the TTL of the result is taken as that of the A or AAAA record the
query finally resolves to.

There doesn't seem to be anything specific in the DNS RFC that talks about
this, but the obvious approach ought to be to have the minimum of the TTL
values in the entire chain of resolutions (CNAME -> CNAME -> ... -> A|AAAA) as
the TTL for the DNS entry.

This behaviour affects how long nscd caches a DNS entry before it looks to
reload it. In a case such as the one below, nscd may end up waiting for 20
minutes before it reloads its cache, when ideally it should have waited for
just 15 seconds for bad.foo.net and 60 seconds for cad.foo.net.

Steps To Reproduce:

1) Set up a bind server with the following zone file:

$TTL     1200
$ORIGIN foo.net.
@  1D  IN        SOA ns1.foo.net.       hostmaster.foo.net. (
                              2002022401 ; serial
                              3H ; refresh
                              15 ; retry
                              1w ; expire
                              3h ; minimum
                             )
       IN  NS     ns1.foo.net. ; in the domain
; server host definitions
ns1    IN  A      192.168.0.1  ;name server definition     

; non server domain hosts
ad   IN  A      1.0.0.1
;ad   IN  AAAA      ::8
cad 60  IN  CNAME  ad
bad 15  IN  CNAME  cad

2) Start nscd
3) getent hosts bad.foo.net
4) Modify the A record entry to 1.0.0.2
5) Wait for up to 30 seconds (15 seconds of the TTL and the 15 second minimum
wait in nscd for extra buffer time)
5) getenthosts bad.foo.net

Actual Results:

1.0.0.1        ad.foo.net bad.foo.net cad.foo.net

Expected Result:

1.0.0.2        ad.foo.net bad.foo.net cad.foo.net

-- 
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

Follow-Ups:
- [Bug network/13928] TTL value associated with a CNAME record is overridden by its alias
  - From: siddhesh at redhat dot com

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]