[Pkg-nagios-devel] Bug#689321: nagios-plugins-contrib: check_zone_rrsig_expiration breaks on DNSSEC

Casper Gielen (Unix Administrator University Tilburg) C.Gielen at uvt.nl
Mon Oct 1 15:22:15 UTC 2012

Package: nagios-plugins-contrib
Version: 4.20120702
Severity: normal

Dear Maintainer,
check_zone_rrsig_expiration requires the package 'libnet-dns-sec-perl' but this package is not Recommended.

Without this package installed check_zone_rrsig_expiration breaks on RRSIGs. This makes the check completely unusable.
RRSIGs are part of DNSSEC. Zones that do not use DNSSEC/RRSIGs check out fine but that is pointless.

Example without libnet-dns-sec-perl:
# /usr/lib/nagios/plugins/check_zone_rrsig_expiration -Z uvt.nl
***  WARNING!!!  The program has attempted to call the method
***  "sigexpiration" for the following RR object:
***  uvt.nl.    3600    IN      RRSIG   \# 154 0033080200000e105074f41250627c9f3bd103757674026e6c00069f6eb332395178ac6e4ad7fcb7951d334aaf70ecefbd1c7ae04fda7e9f7988c8545b81cf8f333ef6b0572cdd8993836b340ac6fe5f4ccc58c778bd05c8bb767306ac3186d1ba70b2e2f84a7d421596aecb659525b125d475bd10fc56c63de0325334abc75875e8121e4a4eef17861caa01de76fd71870fa2538c159e36d2af
***  This object does not have a method "sigexpiration".  THIS IS A BUG
***  IN THE CALLING SOFTWARE, which has incorrectly assumed that
***  the object would be of a particular type.  The calling
***  software should check the type of each RR object before
***  calling any of its methods.
***  Net::DNS has returned undef to the caller.

 at /usr/lib/nagios/plugins/check_zone_rrsig_expiration line 209
Use of uninitialized value $exp in pattern match (m//) at /usr/lib/nagios/plugins/check_zone_rrsig_expiration line 210.
Use of uninitialized value $exp in concatenation (.) or string at /usr/lib/nagios/plugins/check_zone_rrsig_expiration line 210.
bad exp time '' at /usr/lib/nagios/plugins/check_zone_rrsig_expiration line 210.

Example with libnet-dns-sec-perl:
root at primeape:~# /usr/lib/nagios/plugins/check_zone_rrsig_expiration -Z uvt.nl
ZONE OK: No RRSIGs expiring in the next 3 days; (0.22s) |time=0.219757s;;;0.000000

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=nl_NL.UTF-8, LC_CTYPE=nl_NL.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to nl_NL.UTF-8)
Shell: /bin/sh linked to /bin/bash

nagios-plugins-contrib depends on no packages.

Versions of packages nagios-plugins-contrib recommends:
ii  freeipmi-tools                    1.1.5-3
ii  libc6                             2.13-35
ii  libdate-manip-perl                6.32-1
ii  libio-socket-ssl-perl             1.76-1
ii  libipc-run-perl                   0.91-1
ii  liblocale-gettext-perl            1.05-7+b1
ii  liblwp-useragent-determined-perl  1.06-1
ii  libmail-imapclient-perl           3.31-2
ii  libmemcached10                    1.0.8-1
ii  libnagios-plugin-perl             0.36-1
ii  libnet-dns-perl                   0.66-2+b2
ii  libnet-smtp-tls-perl              0.12-1
ii  libnet-snmp-perl                  6.0.1-2
ii  libnet-ssleay-perl                1.48-1+b1
ii  libreadonly-perl                  1.03-4
ii  libyaml-syck-perl                 1.20-1
ii  lsof                              4.86+dfsg-1
ii  openssl                           1.0.1c-4
ii  python                            2.7.3-2
ii  ruby                              4.9
ii  ruby1.8 [ruby-interpreter]
ii  ruby1.9.1 [ruby-interpreter]
ii  snmp                              5.4.3~dfsg-2.5

Versions of packages nagios-plugins-contrib suggests:
pn  backuppc          <none>
pn  cciss-vol-status  <none>
ii  expect            5.45-2
pn  mpt-status        <none>
ii  perl-doc          5.14.2-12

-- no debconf information

More information about the Pkg-nagios-devel mailing list