Issue #92: Incorrect DNS zones are not unloaded correctly (e.g. with invalid NS records) - bind-dyndb-ldap

bind-dyndb-ldap

#92 Incorrect DNS zones are not unloaded correctly (e.g. with invalid NS records)

Closed: Fixed None Opened 11 years ago by pspacek.

Steps to reproduce:

Add zone with invalid NS record to LDAP

{{{ ldapadd -v -Y GSSAPI < addbad.ldif }}}

Named will log

update_zone (psearch) failed for 'idnsname=e.test,cn=dns,dc=e,dc=org Zones can be outdated, run rndc reload: bad zone
e.test/IN: NS 'xxx.e.test' has no address records (A or AAAA)
zone e.test/IN: not loaded due to errors.
Now delete the invalid zone from LDAP

{{{ ldapdelete -v -Y GSSAPI "idnsName=e.test,cn=dns,dc=e,dc=org" }}}

Named will log

update_zone (psearch) failed for 'idnsName=e.test,cn=dns,dc=e,dc=org'. Zones can be outdated, run rndc reload: not found
Problem: Zone is still served and returns SERVFAIL

{{{ $ dig @127.0.0.1 e.test. }}}

;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 63732

pspacek commented 11 years ago

attachment
addbad.ldif

pspacek commented 11 years ago

Fixed by 7edccd6

pspacek commented 10 years ago

It was fixed in version 2.0 back in 2012.

Metadata Update from @pspacek:
- Issue assigned to pspacek
- Issue set to the milestone: 3.0 IPA

7 years ago

Metadata

Assignee

pspacek

Tags

None

Blocking

None

Depending on

None

Priority

major

Milestone

3.0 IPA

rhbz

blockedby

None

blocking

None

fixedby

7edccd62fd9c03ba1431a2a4595072938a58d986

fixedin

2.0

proposedmilestone

None

type

defect

component

ldap driver

version

None

keywords

nihsyndrome

None

bind-dyndb-ldap

Source Code

Documentation

#92 Incorrect DNS zones are not unloaded correctly (e.g. with invalid NS records) Closed: Fixed None Opened 11 years ago by pspacek.

Metadata

#92 Incorrect DNS zones are not unloaded correctly (e.g. with invalid NS records)

Closed: Fixed None Opened 11 years ago by pspacek.