Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1438668
Description of problem: DNS forwarder address added during installation shouldn't add IP-Address 0.0.0.0 Version-Release number of selected component (if applicable): ipa-server-4.5.0-4.el7.x86_64 How reproducible: Always Steps to Reproduce: 1. Install IPA-server with integrated DNS 2. On the below steps enter the forwarder IP-address as 0.0.0.0 Do you want to configure these servers as DNS forwarders? [yes]: All DNS servers from /etc/resolv.conf were added. You can enter additional addresses now: Enter an IP address for a DNS forwarder, or press Enter to skip: 0.0.0.0 3. On the below steps enter the forwarder IP-address 255.255.255.255 All DNS servers from /etc/resolv.conf were added. You can enter additional addresses now: Enter an IP address for a DNS forwarder, or press Enter to skip: 255.255.255.255 Actual results: 2. Enter an IP address for a DNS forwarder, or press Enter to skip: 0.0.0.0 DNS forwarder 0.0.0.0 added. You may add another. Enter an IP address for a DNS forwarder, or press Enter to skip: Checking DNS forwarders, please wait ... ipa : ERROR DNS server 0.0.0.0: query '. SOA': The DNS operation timed out after 10.0005121231 seconds ipa.ipapython.install.cli.install_tool(CompatServerMasterInstall): ERROR DNS server 0.0.0.0: query '. SOA': The DNS operation timed out after 10.0005121231 seconds ipa.ipapython.install.cli.install_tool(CompatServerMasterInstall): ERROR The ipa-server-install command failed. See /var/log/ipaserver-install.log for more information 3. Do you want to configure these servers as DNS forwarders? [yes]: All DNS servers from /etc/resolv.conf were added. You can enter additional addresses now: Enter an IP address for a DNS forwarder, or press Enter to skip: 255.255.255.255 Error: Invalid IP Address 255.255.255.255: cannot use IANA reserved IP address 255.255.255.255 <==== DNS forwarder 255.255.255.255 not added. Expected results: We can see that 255.255.255.255 is not allowed as a valid DNS forwarder address, in the similar case 0.0.0.0 shouldn't be allowed as well because 0.0.0.0 will never be used as forwarder address. Although the step of DNS quering for 0.0.0.0 is correct since its been added, it shouldn't be allowed to be added in the first place and should be rejected with invalid error message. Additional info:
Metadata Update from @jcholast: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1438668
Metadata Update from @jcholast: - Issue set to the milestone: None - Issue tagged with: tracker
Metadata Update from @jcholast: - Issue assigned to jcholast
master:
Metadata Update from @pvoborni: - Issue priority set to: critical - Issue set to the milestone: FreeIPA 4.7
Sorry 4.7 is wrong milestone. It has been fixed, so the only missing thing is backport the version bump to 4.5.1
Metadata Update from @pvoborni: - Issue set to the milestone: FreeIPA 4.5.1 (was: FreeIPA 4.7)
ipa-4-5:
Metadata Update from @mbasti: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
ipa-4-6:
Login to comment on this ticket.