bash – Page 2 – Ryan Schulze

Fixing Ubuntu 17.04 DNS problems

April 20, 2017February 1, 2018Ryanbash, ubuntu

I recently upgraded my Ubuntu box to 17.04.

Much to my surprise DNS starting behaving strangely, so I checked my DNS server … worked fine if I queried it directly, so I checked if DHCP was giving out the wrong DNS IP … nope, that was fine too. I checked /etc/nsswitch.conf , and that looked fine too so I checked what was ending up in /etc/resolv.conf and was surprised that it contains nameserver 127.0.0.53 instead of the “real” DNS server.

After a bit of research I found out that Ubuntu switched over to using systemd-resolved, which shoves itself between user land and the DNS servers and (at least in Ubuntu 17.04) has problems with servers that support DNSSEC. Very frustrating when you know everything is OK and worked in the past, just systemd messing with stuff and breaking it.

My workaround was to turn of DNSSEC validation. Not pretty but better than no DNS at all, until Ubuntu get’s their problems sorted out.

mkdir /etc/systemd/resolved.conf.d
printf "[Resolve]\nDNSSEC=no\n" >> /etc/systemd/resolved.conf.d/no-dnssec.conf
dpkg-reconfigure resolvconf
# Say 'yes' to 'prepare /etc/resolve.conf for dynamic updates'

mkdir /etc/systemd/resolved.conf.d

printf "[Resolve]\nDNSSEC=no\n" >> /etc/systemd/resolved.conf.d/no-dnssec.conf

dpkg-reconfigure resolvconf

# Say 'yes' to 'prepare /etc/resolve.conf for dynamic updates'

How to fetch IP ranges/entries from SPF records in bash

March 3, 2017March 29, 2017Ryanbash, SPF

Recently I needed to fetch IP ranges from SPF records. After looking at different python/ruby/perl modules I came to the conclusion that a fancy module (sometimes with wonky dependencies) was overkill just to parse a simple SPF record. So I threw together a simple bash script that is mainly just fetching the SPF record with dig and grep:

dig txt "${fqdn}"|grep -oE 'v=spf[0-9] [^"]+'

1	dig txt "${fqdn}"\|grep -oE 'v=spf[0-9] [^"]+'

It iterates through the options (it currently recognizes a, mx, ip4, ip6, include, and redirect), and then sorts the output by ipv4, then ipv6.

fetch_spf.sh ryanschulze.net
138.201.86.179
138.201.86.184
192.249.58.230
2a01:4f8:172:2270:1::102
2604:180::ef4b:4638

fetch_spf.sh ryanschulze.net

138.201.86.179

138.201.86.184

192.249.58.230

2a01:4f8:172:2270:1::102

2604:180::ef4b:4638

Download URL: fetch_spf.sh

How to compare package version strings in bash

November 18, 2016November 18, 2016Ryanbash

This is a little function I use to compare package version strings. Sometimes they can get complex with multiple different delimiters or strings in them. I cheated a bit by using sort –version-sort for the actual comparison. If you are looking for a pure bash version to compare simpler strings (e.g. compare 1.2.4 with 1.10.2), I’d suggest this stackoverflow posting.

The function takes three parameters (the version strings and the comparison you want to apply) and uses the return code to signal if the result was valid or not. This gives the function a somewhat natural feel, for example compare_version 3.2.0-113.155 “<” 3.2.0-130.145 would return true. Aside from < and > you can also use a few words like bigger/smaller, older/newer or higher/lower for comparing the strings.

compare_version() {
  local versionOne="${1}"
  local comparision="${2}"
  local versionTwo="${3}"
  local result=
  local sortOpt=
  local returncode=1

  if [[ "${versionOne}" == "${versionTwo}" ]] ; then
    return 3
  fi

  case ${comparision} in
    lower|smaller|older|lt|"<" ) sortOpt= ;;
    higher|bigger|newer|bt|">" ) sortOpt='r' ;;
    * ) return 2 ;;
  esac

  result=($(printf "%s\n" "${versionOne}" "${versionTwo}" | sort -${sortOpt}V ))
  if [[ "${versionOne}" == "${result[0]}" ]] ; then
    returncode=0
  fi

  return ${returncode}
} # end of function compare_version

compare_version() {

local versionOne="${1}"

local comparision="${2}"

local versionTwo="${3}"

local result=

local sortOpt=

local returncode=1

if [[ "${versionOne}" == "${versionTwo}" ]] ; then

return 3

case ${comparision} in

lower|smaller|older|lt|"<" ) sortOpt= ;;

higher|bigger|newer|bt|">" ) sortOpt='r' ;;

* ) return 2 ;;

esac

result=($(printf "%s\n" "${versionOne}" "${versionTwo}" | sort -${sortOpt}V ))

if [[ "${versionOne}" == "${result[0]}" ]] ; then

returncode=0

return ${returncode}

} # end of function compare_version

List of return codes and meanings:

0: Comparison is true
1: Comparison is false
2: Did not recognize the comparison
3: Both version strings are identical

0: Comparison is true

1: Comparison is false

2: Did not recognize the comparison

3: Both version strings are identical

How to easily switch between ansible versions

July 14, 2016October 20, 2016Ryanansible, bash

Lately I’ve run into issues with different versions of ansible (1.9 handling async better, 2.x having more modules and handling IPv6 better) and having to test playbooks and roles against different versions to make sure they work. TO make life easier I put this little function in my .bashrc to switch back and forth between ansible versions. It checks out the specified version from github if it needs to, and switches over to it (just for that terminal, not the system). Usage is straight forward ansible_switch <branch> , i.e. ansible_switch 2.1 (or whatever branch you want, here is a list of all branches).

It is currently limited to stable branches, but you can change line 6 from stable- to whatever you want (or remove the prefix completely). If you have a github account you also may want to change from https to ssh by using the git@github.com:ansible/ansible.git checkout URL.

ansible_switch() {
	local version=${1:-}
	local srcpath="${PWD}"
	test -d ~/git || mkdir ~/git ; cd ~/git
	if [[ ! -d ansible_${version} ]] ; then
		git clone -b stable-${version} --recursive https://github.com/ansible/ansible.git ansible_${version}
	fi
	git pull ansible_${version}
	export MANPATH="${MANPATH//$HOME\/git\/ansible_?.?\/docs\/man:/}"
	export PYTHONPATH="${PYTHONPATH//$HOME\/git\/ansible_?.?\/lib:/}"
	export PATH="${PATH//$HOME\/git\/ansible_?.?\/bin:/}"
	source ansible_${version}/hacking/env-setup
	cd "${srcpath}"
}

ansible_switch() {

local version=${1:-}

local srcpath="${PWD}"

test -d ~/git || mkdir ~/git ; cd ~/git

if [[ ! -d ansible_${version} ]] ; then

git clone -b stable-${version} --recursive https://github.com/ansible/ansible.git ansible_${version}

git pull ansible_${version}

export MANPATH="${MANPATH//$HOME\/git\/ansible_?.?\/docs\/man:/}"

export PYTHONPATH="${PYTHONPATH//$HOME\/git\/ansible_?.?\/lib:/}"

export PATH="${PATH//$HOME\/git\/ansible_?.?\/bin:/}"

source ansible_${version}/hacking/env-setup

cd "${srcpath}"

}

A script to diff files/directories on two different servers

February 6, 2016February 6, 2016Ryanbash, linux, scripting

Ok, short one today. This is a straightforward script that simplifies comparing directories on different servers. There is no magic in it, it just rsyncs the directories to a local temp directory and runs diff against them (then deletes the directory afterwards). Mainly intended for config files, I wouldn’t recommend trying to diff gigabytes of binaries with it.

#!/bin/bash 

set -o nounset

if [[ -z ${1:-} || -z ${2:-} || -z ${3:-} ]] ; then
	echo "Usage: ${0##*/} <file|directory> <server1> <server2>"
	echo
	echo "e.g. ./${0##*/} '/etc/pam.d/' 10.0.0.1 10.0.0.2"
	echo
	exit 0
fi

Dir="${1}"
IP1="${2}"
IP2="${3}"

tmpdir=$(mktemp -d)
trap 'rm -rf "${tmpdir}"' INT TERM EXIT

for ip in ${IP1} ${IP2}
do
	rsync -az "${ip}:${Dir}" "${tmpdir}/${ip}"
done
diff -BZEburN "${tmpdir}/${IP1}" "${tmpdir}/${IP2}" | colordiff --difftype=diffu

#!/bin/bash

set -o nounset

if [[ -z ${1:-} || -z ${2:-} || -z ${3:-} ]] ; then

echo "Usage: ${0##*/} <file|directory> <server1> <server2>"

echo

echo "e.g. ./${0##*/} '/etc/pam.d/' 10.0.0.1 10.0.0.2"

echo

exit 0

Dir="${1}"

IP1="${2}"

IP2="${3}"

tmpdir=$(mktemp -d)

trap 'rm -rf "${tmpdir}"' INT TERM EXIT

for ip in ${IP1} ${IP2}

rsync -az "${ip}:${Dir}" "${tmpdir}/${ip}"

done

diff -BZEburN "${tmpdir}/${IP1}" "${tmpdir}/${IP2}" | colordiff --difftype=diffu