Open
Description
Describe the bug
Gatus doesn't show the correct IP in conditions when dns-resolver overshadows existing domain name, although healthcheck is performed on the correct one.
What do you see?
Gatus returns incorrect IP:
✓ ~ [STATUS] == 200
X ~ [IP] (142.250.200.110) == any(:1, 127.0.0.1)
What do you expect to see?
Gatus should return the correct IP when using dns-resolver:
✓ ~ [STATUS] == 200
✓ ~ [IP] (127.0.0.1) == any(:1, 127.0.0.1)
List the steps that must be taken to reproduce this issue
-
Create a dns server that overshadows domain
google.comwith custom IPs (for example, usingCoreDNS):Corefile.:54 { bind lo hosts { 127.0.0.1 google.com ::1 google.com fallthrough } log }drill -p 54 A google.com;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 22162 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; google.com. IN A ;; ANSWER SECTION: google.com. 3600 IN A 127.0.0.1 ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 0 msec ;; SERVER: ::1 ;; WHEN: Tue Nov 19 09:57:36 2024 ;; MSG SIZE rcvd: 44drill -p 54 AAAA google.com;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 7552 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; google.com. IN AAAA ;; ANSWER SECTION: google.com. 3600 IN AAAA ::1 ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 187 msec ;; SERVER: 127.0.0.1 ;; WHEN: Tue Nov 19 10:01:17 2024 ;; MSG SIZE rcvd: 56 -
Create the following healthcheck:
endpoints: - name: test url: "https://google.com" client: dns-resolver: "tcp://127.0.0.1:54" interval: 30s conditions: - "[STATUS] == 200" - "[IP] == any(::1, 127.0.0.1)"
-
Observe that healthcheck fails with the incorrect
IP:✓ ~ [STATUS] == 200 X ~ [IP] (142.250.200.110) == any(:1, 127.0.0.1)142.250.200.110here is the actual Google IP, resolved from global system DNS. -
Observe that Gatus process connects correctly to
127.0.0.1(5848is a main gatusPID) :strace -f -e trace=network -s 10000 -p 5848 2>&1 | grep 'connect' | grep '443'[pid 5848] connect(7, {sa_family=AF_INET, sin_port=htons(443), sin_addr=inet_addr("127.0.0.1")}, 16) = -1 EINPROGRESS (Operation in progress) [pid 5824] connect(7, {sa_family=AF_INET, sin_port=htons(443), sin_addr=inet_addr("127.0.0.1")}, 16) = -1 EINPROGRESS (Operation in progress) ...
Version
v5.13.1
Additional information
No response
Metadata
Metadata
Assignees
Labels
Projects
Milestone
Relationships
Participants
Activity
TwiN commentedon Nov 20, 2024
Hmm.. This is because the IP from the
[IP]placeholder is only retrieved if the placeholder is present in one of the conditions, and when it is present, it retrieves it usingnet.LookupIP, which completely bypasses theclient.dns-resolverconfiguration.gatus/config/endpoint/endpoint.go
Lines 267 to 269 in 0113175
gatus/config/endpoint/endpoint.go
Lines 309 to 316 in 0113175
From a UX perspective, I completely understand why you'd expect
client.dns-resolverto be used for the DNS lookups though, so you bring a good point.It shouldn't be too difficult to implement, given that the code for the resolver already exists, and that under the hood,
net.LookupIPmakes a call toDefaultResolver.LookupIPAddr.gatus/client/config.go
Lines 240 to 260 in 0113175
We'd have to extract the piece of code that creates the resolver, and then we can reuse it to create a dialer that would work for both the HTTP client and the function used for resolving the IP.