nmap broken with resolver setting 'options inet6'.

To: submit@bugs.debian.org
Cc: debian-ipv6@lists.debian.org
Subject: nmap broken with resolver setting 'options inet6'.
From: Mats Erik Andersson <mats.andersson@gisladisker.se>
Date: Thu, 3 Jun 2010 01:38:30 +0200
Message-id: <20100602233830.GA10779@mea.homelinux.org>

Package: nmap
Version: 5.00-3
Severity: important

In an environment with IPv4 as well as IPv6 active, and with
/etc/resolv.conf containing the statement "options inet6",
the present Nmap is broken when it comes to resolving IPv4
host addresses.

This is a typical symptom that Nmap is coded using
gethostbyname(3)/gethostbyaddr(3), instead of
getaddrinfo(3)/getnameinfo(3). It is a well known task
to reimplement this for easier future maintenance.

The error is evident in this condensed information:

  The host 'humbug' has an IPv4 address in 192.168.0.0/24
  as well as an IPv6 address in 2001:470:x:x:x::/80.

  $ nmap -v -PS humbug -p 80
  ....
  Scanning 32.1.4.112 [1 port]
  ....

The problem is that "options inet6" will make gethostbyaddr(3)
will return a hostent list consisting of IPv6 addresses, which
Nmap is not prepared to evaluate during an IPv4 scan.


-- 
Mats Erik Andersson, fil. dr

2459 41E9 C420 3F6D F68B  2E88 F768 4541 F25B 5D41

Subscriber to: debian-mentors, debian-devel-games, debian-perl,
               debian-ipv6, debian-qa

Reply to:

Follow-Ups:
- Re: Bug#584301: nmap broken with resolver setting 'options inet6'.
  - From: Fyodor <fyodor@insecure.org>
- Re: nmap broken with resolver setting 'options inet6'.
  - From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>

Next by Date: uscan fails with 'options inet6'
Next by thread: Re: Bug#584301: nmap broken with resolver setting 'options inet6'.
Index(es):
- Date
- Thread