[Bug 335143] New: bind9 did not support ldap as zone database backend
https://bugzilla.novell.com/show_bug.cgi?id=335143#c953 Summary: bind9 did not support ldap as zone database backend Product: openSUSE 10.3 Version: Final Platform: i686 OS/Version: openSUSE 10.3 Status: NEW Severity: Critical Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: st-schaefer@fsproductions.de QAContact: qa@suse.de CC: jw@novell.com Found By: Integration Test DNS Server bind9 did not support ldap as zone database backend in opensuse 10.3 My Configuration: # Zone practical-net.loc zone "practical-net.loc" in { type master; database "ldap ldap://127.0.0.1/ou=practical-net.loc,ou=forward,ou=zone.master,ou=DNS-Server,dc=practical-net,dc=loc?????!bindname=uid=Admin%2cou=DNS-Server%2cdc=practical-net%2cdc=loc,!x-bindpw=secret 172800"; allow-update { key DHCP_UPDATER; }; }; zone "220.168.192.in-addr.arpa" in { type master; database "ldap ldap://127.0.0.1/ou=220.168.192.in-addr.arpa,ou=reverse,ou=zone.master,ou=DNS-Server,dc=practical-net,dc=loc?????!bindname=uid=Admin%2cou=DNS-Server%2cdc=practical-net%2cdc=loc,!x-bindpw=secret 172800"; allow-update { key DHCP_UPDATER; }; }; Logfile extract: Oct 19 11:14:04 invis5 named[5062]: automatic empty zone: 8.E.F.IP6.ARPA Oct 19 11:14:04 invis5 named[5062]: automatic empty zone: 9.E.F.IP6.ARPA Oct 19 11:14:04 invis5 named[5062]: automatic empty zone: A.E.F.IP6.ARPA Oct 19 11:14:04 invis5 named[5062]: automatic empty zone: B.E.F.IP6.ARPA Oct 19 11:14:04 invis5 named[5062]: command channel listening on 127.0.0.1#953 Oct 19 11:14:04 invis5 named[5062]: command channel listening on ::1#953 Oct 19 11:14:04 invis5 named[5062]: unsupported database type 'ldap' Oct 19 11:14:04 invis5 named[5062]: zone 220.168.192.in-addr.arpa/IN: loading zone: creating database: not found Oct 19 11:14:04 invis5 named[5062]: unsupported database type 'ldap' Oct 19 11:14:04 invis5 named[5062]: zone practical-net.loc/IN: loading zone: creating database: not found The LDAP Server is working fine and the schema dnszone.schema is loaded. till opensuse 10.2 the same configuration worked fine. Stefan -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 Cyril Hrubis <chrubis@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.provo.novell.com |ug@novell.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143#c1 Uwe Gansert <ug@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |WONTFIX --- Comment #1 from Uwe Gansert <ug@novell.com> 2007-10-19 06:52:07 MST --- yes, that was backend was dropped for multiple reasons most of them concerned to maintenance problems of that sdb. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143#c2 --- Comment #2 from Juergen Weigert <jw@novell.com> 2007-10-19 06:59:05 MST --- Uwe, could we offer any alternatives or migration paths here? This issue appears to be critical to Stefans setup. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143#c3 --- Comment #3 from Uwe Gansert <ug@novell.com> 2007-10-19 07:04:42 MST --- there is a script to dump the ldap server into zones files which is worth a try: /usr/share/bind/ldapdump -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143#c4 Stefan Schäfer <st-schaefer@fsproductions.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |st-schaefer@fsproductions.de --- Comment #4 from Stefan Schäfer <st-schaefer@fsproductions.de> 2007-10-19 07:19:44 MST --- I can't believe, that kicking off the ldap-backend support is your solution to fix the problems with it. I used this for years without any problems. Is the ldap code still included in the opensuse 10.3 bind sourcecode? Stefan -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143#c5 --- Comment #5 from Uwe Gansert <ug@novell.com> 2007-10-19 07:25:49 MST --- the ldap code is no longer in the package but I left the stuff commented out in the spec file. It should not be a problem to rebuild the package with LDAP support. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 User manfred.knops@3ds.com added comment https://bugzilla.novell.com/show_bug.cgi?id=335143#c6 Manfred Knops <manfred.knops@3ds.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |manfred.knops@3ds.com --- Comment #6 from Manfred Knops <manfred.knops@3ds.com> 2008-12-01 02:55:43 MST --- Hello, we also use bind with ldap on machines with SuSE 9.3. Today I would install bind with ldap on a machine with openSuSE 10.3. During this installation I found this bug. Now I have two questions. 1. Uwe, you wrote that it should be possible to rebuild the package with LDAP support. 1.1 I download ftp://ftp.uni-freiburg.de/pub/opensuse/update/10.3/rpm/src/bind-9.4.1.P1-12.5.src.rpm. 1.2 I made rpmbuild --rebuild bind-9.4.1.P1-12.5.src.rpm. 1.3 I got following packages: adams:/usr/src/packages/RPMS/x86_64 # ls -l insgesamt 10272 -rw-r--r-- 1 root root 256475 1. Dez 10:20 bind-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 25161 1. Dez 10:20 bind-chrootenv-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 3405503 1. Dez 10:20 bind-debuginfo-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 3711958 1. Dez 10:21 bind-devel-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 1604824 1. Dez 10:21 bind-doc-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 1106836 1. Dez 10:21 bind-libs-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 174991 1. Dez 10:21 bind-lwresd-9.4.1.P1-12.5.x86_64.rpm -rw-r--r-- 1 root root 184848 1. Dez 10:21 bind-utils-9.4.1.P1-12.5.x86_64.rpm adams:/usr/src/packages/RPMS/x86_64 # 1.4 I made rpm -Uvh bind-9.4.1.P1-12.5.x86_64.rpm But I got the same error like before. Dec 1 10:23:14 adams named[31395]: unsupported database type 'ldap' So what sould I do to rebuild this package with LDAP support like you wrote? 2. Uwe, you wrote about a script called ldapdump. 2.1 I found this script and made tests. adams:/etc/named.d # /usr/share/bind/ldapdump -s 127.0.0.1 -l localhost -p 389 -D cn=TOPSECRET,dc=abaqus,dc=de -w TOPSECRET -b dc=abaqus,dc=de -e ou=dns,dc=abaqus,dc=de -z ldapServer = localhost ldapPort = 389 ldapBaseDN = dc=abaqus,dc=de named dir = /var/lib/named named run = 1 DNS DN = ou=dns,dc=abaqus,dc=de ********** CHECKPOINT : get named.conf zones $VAR1 = {}; ********** CHECKPOINT : drop static zone entries in dynamic zones ********** CHECKPOINT : drop all static zones ********** CHECKPOINT : drop all dynamic zones that are not in LDAP ********** CHECKPOINT : create Zones that are new in LDAP ********** CHECKPOINT : add the new entries for dynamic zones now 2.2 The files in /etc/named.d are the same like before. So what should be the result of this script? Regards Manfred Knops -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 User ug@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=335143#c7 --- Comment #7 from Uwe Gansert <ug@novell.com> 2008-12-01 03:10:02 MST --- Created an attachment (id=256872) --> (https://bugzilla.novell.com/attachment.cgi?id=256872) ldap patch you need to apply the patch I have attached. It's still in the spec file but in comments. Uncomment it and download the ldap-sdb from http://bind9-ldap.bayour.com/ too. The source has to be activated in the spec file too (it' also in comments). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 User st-schaefer@fsproductions.de added comment https://bugzilla.novell.com/show_bug.cgi?id=335143#c8 --- Comment #8 from Stefan Schäfer <st-schaefer@fsproductions.de> 2008-12-01 09:14:00 MST --- Hello Manfred, you can use my bind-packages directly from the openSuSE buildservice: http://download.opensuse.org/repositories/home:/flacco/openSUSE_11.0/ I've build these packages with the bind-ldap-patch stable Release 1.0. I use the packages on several Servers without any problems. Stefan -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 User manfred.knops@3ds.com added comment https://bugzilla.novell.com/show_bug.cgi?id=335143#c9 --- Comment #9 from Manfred Knops <manfred.knops@3ds.com> 2008-12-02 00:40:10 MST --- Hello, @Stefan: thanks for this package. One question before I will test the package.
From your point of view. Can I install it under openSUSE 10.3?
@Uwe: my knowledge about linux isn't so global. I tried to understand what you mean, last night. Sorry, I didn't understand. But I will learn. So please can you explain me what to do step by step? Regards Manfred -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=335143 User st-schaefer@fsproductions.de added comment https://bugzilla.novell.com/show_bug.cgi?id=335143#c10 --- Comment #10 from Stefan Schäfer <st-schaefer@fsproductions.de> 2008-12-02 01:23:33 MST --- @Manfred there are also packages for 10.3. Have a look at http://download.opensuse.org/repositories/home:/flacco/openSUSE_10.3/ Stefan -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com