[Bug 716745] New: yast2 failed to get DNS server up
https://bugzilla.novell.com/show_bug.cgi?id=716745 https://bugzilla.novell.com/show_bug.cgi?id=716745#c0 Summary: yast2 failed to get DNS server up Classification: openSUSE Product: openSUSE 12.1 Version: Milestone 5 Platform: x86-64 OS/Version: SuSE Other Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: melchiaros@aol.com QAContact: jsrain@suse.com Found By: --- Blocker: --- Created an attachment (id=449865) --> (http://bugzilla.novell.com/attachment.cgi?id=449865) the logs User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:6.0) Gecko/20100101 Firefox/6.0 I´ve tried to get up a nameserver with yast2. It failed with an error message on finishing that tells that there are problems to start name. The message is a bit cryptic to me, so have a look at the screenshot I attach. The configuration was: 1.forwared settings : 157.157.120.177 2.DNS-Zones as default by yast2 (which may be the problem) -> example.com and the long lines of 0.0.0.... .ip6.arpa 3.Open Port in firewall 4.On:Start Now and when booting. Reproducible: Always Steps to Reproduce: 1.See above 2. 3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c1
--- Comment #1 from melchiaros melchiaros
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c2
--- Comment #2 from melchiaros melchiaros
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c
zj jia
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c3
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c4
melchiaros melchiaros
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c5
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c7
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c8
--- Comment #8 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c9
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c10
Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c11
--- Comment #11 from Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c12
--- Comment #12 from Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c13
--- Comment #13 from Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c
Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c14
--- Comment #14 from Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c16
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c17
Philippe Condé
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c18
--- Comment #18 from Alberto Molina Serna
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c19
Alberto Molina Serna
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c20
--- Comment #20 from Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c21
--- Comment #21 from Alberto Molina Serna
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c22
--- Comment #22 from Alberto Molina Serna
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c23
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c24
--- Comment #24 from Philippe Condé
Graham found out that init=/sbin/sysvinit solves that for him, so it seems to be systemd related. Can you confirm that for you?
I added the option init=/sbin/sysvinit in yast and rebooted but the error remains in /var/log/messages "Nov 18 14:46:41 hpprol named[3322]: starting BIND 9.8.1 -t /var/lib/named -u named Nov 18 14:46:41 hpprol named[3322]: built with '--prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--localstatedir=/var' '--libdir=/usr/lib64' '--includedir=/usr/include/bind' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--with-openssl' '--enable-threads' '--with-libtool' '--enable-runidn' '--with-libxml2' '--with-dlz-mysql' '--with-dlz-ldap' 'CFLAGS=-fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -g -DNO_VERSION_DATE -fno-strict-aliasing' 'LDFLAGS=-L/usr/lib64' Nov 18 14:46:41 hpprol named[3322]: adjusted limit on open files from 8192 to 1048576 Nov 18 14:46:41 hpprol named[3322]: found 4 CPUs, using 4 worker threads Nov 18 14:46:41 hpprol named[3322]: using up to 4096 sockets Nov 18 14:46:41 hpprol named[3322]: initializing DST: openssl failure Nov 18 14:46:41 hpprol named[3322]: exiting (due to fatal error) " Trying manual start of bind via Yast gives the same error Regards Philippe -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c25
--- Comment #25 from Alberto Molina
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c26
--- Comment #26 from Graham Anderson
Graham found out that init=/sbin/sysvinit solves that for him, so it seems to be systemd related. Can you confirm that for you?
I will reboot the name server later this weekend with systemd enabled to establish if the problem re-occurs. It probably won't be before Sunday though. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c27
--- Comment #27 from Graham Anderson
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c28
qvacfcajdjw@mailinator.com M8R-2yr72d@mailinator.com
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c29
Marcel Hoogeveen
Hi,
I've found the problem: it's nothing to do with systemd, it's AppArmour.
Modify the AppArmour profile for /usr/sbin/named to have "mrwlpx" permissions on /var/lib/named/lib/** (and if running x86_64, /var/lib/named/lib64/**).
Please note that "mrwlpx" is perhaps too permissive, I doubt it needs write access to the libraries.
Needless to say, disabling AppArmour also works.
Did a upgrade from 11.3 to 11.4 to 12.1 today. Confirm this solution. Running systemv as systemd does not boot at all. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c30
--- Comment #30 from Philippe Condé
Hi,
I've found the problem: it's nothing to do with systemd, it's AppArmour.
Modify the AppArmour profile for /usr/sbin/named to have "mrwlpx" permissions on /var/lib/named/lib/** (and if running x86_64, /var/lib/named/lib64/**).
Updated via Yast the apparmor profile for named and after reboot named started without problem and seems running correctly Thanks Philippe -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c31
--- Comment #31 from Alberto Molina
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c34
Uwe Gansert
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c35
--- Comment #35 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=716745
https://bugzilla.novell.com/show_bug.cgi?id=716745#c36
--- Comment #36 from Swamp Workflow Management
participants (1)
-
bugzilla_noreply@novell.com