← Back to team overview

freeipa team mailing list archive

[Bug 1874568] Re: Working config in eoan, bind9 fails after upgrade to fossa

 

So I think bind9 should've added a Breaks: bind-dyndb-ldap, but we can
still add that.

The only short-term solution is to downgrade bind9, not sure if the eoan
packages actually work on focal still, but at least they install. First
you need to have an entry for eoan main in /etc/apt/sources.list and run
apt update:

echo 'deb http://archive.ubuntu.com/ubuntu/ eoan-updates main restricted' >> /etc/apt/sources.list
apt update

and then downgrade bind9:

apt install bind9=1:9.11.5.P4+dfsg-5.1ubuntu2.1
bind9utils=1:9.11.5.P4+dfsg-5.1ubuntu2.1
libbind9-161=1:9.11.5.P4+dfsg-5.1ubuntu2.1
libisccc161=1:9.11.5.P4+dfsg-5.1ubuntu2.1
libisccfg163=1:9.11.5.P4+dfsg-5.1ubuntu2.1
liblwres161=1:9.11.5.P4+dfsg-5.1ubuntu2.1


** Changed in: bind (Ubuntu)
       Status: New => Confirmed

-- 
You received this bug notification because you are a member of FreeIPA,
which is subscribed to bind-dyndb-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/1874568

Title:
  Working config in eoan, bind9 fails after upgrade to fossa

Status in bind package in Ubuntu:
  Confirmed
Status in bind-dyndb-ldap package in Ubuntu:
  Confirmed

Bug description:
  Configuration was working in Eoan.  Just upgraded to Fossa.
  Bind9(named) will not start.  Syslog show the following:

  Apr 23 16:55:58 ltserver2 named[1611]: starting BIND 9.16.1-Ubuntu (Stable Release) <id:d497c32>
  Apr 23 16:55:58 ltserver2 named[1611]: running on Linux x86_64 5.4.0-26-generic #30-Ubuntu SMP Mon Apr 20 16:58:30 UTC 2020
  Apr 23 16:55:58 ltserver2 named[1611]: built with '--build=x86_64-linux-gnu' '--prefix=/usr' '--includedir=/usr/include' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc' '--localstatedir=/var' '--disable-silent-rules' '--libdir=/usr/lib/x86_64-linux-gnu' '--runstatedir=/run' '--disable-maintainer-mode' '--disable-dependency-tracking' '--libdir=/usr/lib/x86_64-linux-gnu' '--sysconfdir=/etc/bind' '--with-python=python3' '--localstatedir=/' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-gost=no' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-libidn2' '--with-json-c' '--with-lmdb=/usr' '--with-gnu-ld' '--with-maxminddb' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' '--disable-native-pkcs11' 'build_alias=x86_64-linux-gnu' 'CFLAGS=-g -O2 -fdebug-prefix-map=/build/bind9-OLooom/bind9-9.16.1=. -fstack-protector-strong -Wformat -Werror=format-security -fno-strict-aliasing -fno-delete-null-pointer-checks -DNO_VERSION_DATE -DDIG_SIGCHASE' 'LDFLAGS=-Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,now' 'CPPFLAGS=-Wdate-time -D_FORTIFY_SOURCE=2'
  Apr 23 16:55:58 ltserver2 named[1611]: running as: named -f -u bind
  Apr 23 16:55:58 ltserver2 named[1611]: compiled by GCC 9.3.0
  Apr 23 16:55:58 ltserver2 named[1611]: compiled with OpenSSL version: OpenSSL 1.1.1f  31 Mar 2020
  Apr 23 16:55:58 ltserver2 named[1611]: linked to OpenSSL version: OpenSSL 1.1.1f  31 Mar 2020
  Apr 23 16:55:58 ltserver2 named[1611]: compiled with libxml2 version: 2.9.10
  Apr 23 16:55:58 ltserver2 named[1611]: linked to libxml2 version: 20910
  Apr 23 16:55:58 ltserver2 named[1611]: compiled with json-c version: 0.13.1
  Apr 23 16:55:58 ltserver2 named[1611]: linked to json-c version: 0.13.1
  Apr 23 16:55:58 ltserver2 named[1611]: compiled with zlib version: 1.2.11
  Apr 23 16:55:58 ltserver2 named[1611]: linked to zlib version: 1.2.11
  Apr 23 16:55:58 ltserver2 named[1611]: ----------------------------------------------------
  Apr 23 16:55:58 ltserver2 named[1611]: BIND 9 is maintained by Internet Systems Consortium,
  Apr 23 16:55:58 ltserver2 named[1611]: Inc. (ISC), a non-profit 501(c)(3) public-benefit 
  Apr 23 16:55:58 ltserver2 named[1611]: corporation.  Support and training for BIND 9 are 
  Apr 23 16:55:58 ltserver2 named[1611]: available at https://www.isc.org/support
  Apr 23 16:55:58 ltserver2 named[1611]: ----------------------------------------------------
  Apr 23 16:55:58 ltserver2 named[1611]: adjusted limit on open files from 524288 to 1048576
  Apr 23 16:55:58 ltserver2 named[1611]: found 2 CPUs, using 2 worker threads
  Apr 23 16:55:58 ltserver2 named[1611]: using 2 UDP listeners per interface
  Apr 23 16:55:58 ltserver2 named[1611]: using up to 21000 sockets
  Apr 23 16:55:58 ltserver2 named[1611]: loading configuration from '/etc/bind/named.conf'
  Apr 23 16:55:58 ltserver2 named[1611]: reading built-in trust anchors from file '/etc/bind/bind.keys'
  Apr 23 16:55:58 ltserver2 named[1611]: looking for GeoIP2 databases in '/usr/share/GeoIP'
  Apr 23 16:55:58 ltserver2 named[1611]: using default UDP/IPv4 port range: [32768, 60999]
  Apr 23 16:55:58 ltserver2 named[1611]: using default UDP/IPv6 port range: [32768, 60999]
  Apr 23 16:55:58 ltserver2 named[1611]: listening on IPv4 interface enp3s0, <LocalIPAddress>#53
  Apr 23 16:55:58 ltserver2 named[1611]: IPv6 socket API is incomplete; explicitly binding to each IPv6 address separately
  Apr 23 16:55:58 ltserver2 named[1611]: listening on IPv6 interface lo, ::1#53
  Apr 23 16:55:58 ltserver2 named[1611]: listening on IPv6 interface enp3s0, <IP6Address>%2#53
  Apr 23 16:55:58 ltserver2 named[1611]: unable to set effective uid to 0: Operation not permitted
  Apr 23 16:55:58 ltserver2 named[1611]: generating session key for dynamic DNS
  Apr 23 16:55:58 ltserver2 named[1611]: unable to set effective uid to 0: Operation not permitted
  Apr 23 16:55:58 ltserver2 named[1611]: sizing zone task pool based on 0 zones
  Apr 23 16:55:58 ltserver2 named[1611]: none:100: 'max-cache-size 90%' - setting to 3513MB (out of 3903MB)
  Apr 23 16:55:58 ltserver2 named[1611]: set up managed keys zone for view _default, file 'managed-keys.bind'
  Apr 23 16:55:58 ltserver2 named[1611]: loading DynDB instance 'MY_FULLY_Qualified_LOCAL_DNS_NAME' driver '/usr/lib/bind/ldap.so'
  Apr 23 16:55:58 ltserver2 named[1611]: failed to dynamically load instance 'MY_FULLY_Qualified_LOCAL_DNS_NAME' driver '/usr/lib/bind/ldap.so': /usr/lib/bind/ldap.so: undefined symbol: cfg_parse_buffer2 (failure)
  Apr 23 16:55:58 ltserver2 named[1611]: dynamic database 'dns.schapker.athome' configuration failed: failure
  Apr 23 16:55:58 ltserver2 named[1611]: loading configuration: failure
  Apr 23 16:55:58 ltserver2 named[1611]: exiting (due to fatal error)
  Apr 23 16:55:58 ltserver2 systemd[1]: named.service: Main process exited, code=exited, status=1/FAILURE
  Apr 23 16:55:58 ltserver2 systemd[1]: named.service: Failed with result 'exit-code'.

  (I have attempted to remove personal identifiable information above.
  That's shouldn't hamper diagnosis of this issue)

  Based on the error, I presume some code is missing somewhere.

  I believe "/usr/lib/bind/ldap.so" comes from bind-dyndb-ldap package.
  I'm not "new" to Linux, but I do not regularly create bugs, so I'm not
  certain what else may be necessary.

  This is kind of an issue for me as now I do not have a working DNS
  server since the upgrade.  Any assistance would be greatly
  appreciated!

  These are the "bind9" packages I have installed:
  bind9-dnsutils/focal,now 1:9.16.1-0ubuntu2 amd64 [installed,automatic]
  bind9-dyndb-ldap/focal,now 11.2-1build2 amd64 [installed]
  bind9-host/focal,now 1:9.16.1-0ubuntu2 amd64 [installed,automatic]
  bind9-libs/focal,now 1:9.16.1-0ubuntu2 amd64 [installed,automatic]
  bind9-utils/focal,now 1:9.16.1-0ubuntu2 amd64 [installed,automatic]
  bind9/focal,now 1:9.16.1-0ubuntu2 amd64 [installed,automatic]

  (fresh upgrade from Eoan to Focal, with no known deviations from Focal
  packages)

  Larry Schapker

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/bind/+bug/1874568/+subscriptions


References