[gelöst]bind9 update Probleme von 1:9.18.24-1 auf 1:9.18.28-1

[oln]

Moin,
heute mogen habe ich ein Update von bind9 und noch ein paar abhängigkeiten gemacht.
Danach startet bind9 nicht mehr und endet mit einem coredump.
Habt ihre auch diese Probleme?
In den Logs ist nichts zu finden außer folgendem:

Code: Alles auswählen

 The job identifier is 1490 and the job result is done.
Jul 26 10:04:19 neptun.example.com systemd[1]: named.service: Start request repeated too quickly.
Jul 26 10:04:19 neptun.example.com systemd[1]: named.service: Failed with result 'core-dump'.
░░ Subject: Unit failed
░░ Defined-By: systemd
░░ Support: https://www.debian.org/support
░░
░░ The unit named.service has entered the 'failed' state with result 'core-dump'.
Jul 26 10:04:19 neptun.example.com systemd[1]: Failed to start named.service - BIND Domain Name Server.
░░ Subject: A start job for unit named.service has failed
░░ Defined-By: systemd
░░ Support: https://www.debian.org/support

Ich habe jetzt das update rückgängig gemacht und der bind9 läuft wieder.
Wo kann ich suchen?
Edit: Das fand ich noch im syslog:

Code: Alles auswählen

2024-07-26T07:45:50.346887+02:00 neptun named[1724260]: ----------------------------------------------------
2024-07-26T07:45:50.346968+02:00 neptun named[1724260]: BIND 9 is maintained by Internet Systems Consortium,
2024-07-26T07:45:50.347041+02:00 neptun named[1724260]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
2024-07-26T07:45:50.347136+02:00 neptun named[1724260]: corporation.  Support and training for BIND 9 are
2024-07-26T07:45:50.347232+02:00 neptun named[1724260]: available at https://www.isc.org/support
2024-07-26T07:45:50.347313+02:00 neptun named[1724260]: ----------------------------------------------------
2024-07-26T07:45:50.347385+02:00 neptun named[1724260]: adjusted limit on open files from 524288 to 1048576
2024-07-26T07:45:50.347457+02:00 neptun named[1724260]: found 12 CPUs, using 12 worker threads
2024-07-26T07:45:50.347540+02:00 neptun named[1724260]: using 12 UDP listeners per interface
2024-07-26T07:45:50.370533+02:00 neptun named[1724260]: DNSSEC algorithms: RSASHA1 NSEC3RSASHA1 RSASHA256 RSASHA512 ECDSAP256SHA256 ECDSAP384SHA384 ED25519 ED448
2024-07-26T07:45:50.370737+02:00 neptun named[1724260]: DS algorithms: SHA-1 SHA-256 SHA-384
2024-07-26T07:45:50.370816+02:00 neptun named[1724260]: HMAC algorithms: HMAC-MD5 HMAC-SHA1 HMAC-SHA224 HMAC-SHA256 HMAC-SHA384 HMAC-SHA512
2024-07-26T07:45:50.370866+02:00 neptun named[1724260]: TKEY mode 2 support (Diffie-Hellman): yes
2024-07-26T07:45:50.370915+02:00 neptun named[1724260]: TKEY mode 3 support (GSS-API): yes
2024-07-26T07:45:50.373723+02:00 neptun named[1724260]: loading configuration from '/etc/bind/named.conf'
2024-07-26T07:45:50.374433+02:00 neptun named[1724260]: reading built-in trust anchors from file '/etc/bind/bind.keys'
2024-07-26T07:45:50.377116+02:00 neptun named[1724260]: looking for GeoIP2 databases in '/usr/share/GeoIP'
2024-07-26T07:45:50.377320+02:00 neptun named[1724260]: using default UDP/IPv4 port range: [32768, 60999]
2024-07-26T07:45:50.378385+02:00 neptun named[1724260]: listening on IPv4 interface br0, 192.168.1.225#53
2024-07-26T07:45:50.385255+02:00 neptun named[1724260]: generating session key for dynamic DNS
2024-07-26T07:45:50.385514+02:00 neptun named[1724260]: sizing zone task pool based on 7 zones
2024-07-26T07:45:50.386147+02:00 neptun named[1724260]: Loading 'AD DNS Zone' using driver dlopen
2024-07-26T07:45:50.491175+02:00 neptun named[1724260]: munmap_chunk(): invalid pointer
2024-07-26T07:45:51.521080+02:00 neptun systemd[1]: named.service: Main process exited, code=dumped, status=6/ABRT
2024-07-26T07:45:51.521356+02:00 neptun systemd[1]: named.service: Failed with result 'core-dump'.
2024-07-26T07:45:51.521458+02:00 neptun systemd[1]: Failed to start named.service - BIND Domain Name Server.
2024-07-26T07:45:51.802491+02:00 neptun systemd[1]: named.service: Scheduled restart job, restart counter is at 5.
2024-07-26T07:45:51.802973+02:00 neptun systemd[1]: Stopped named.service - BIND Domain Name Server.
2024-07-26T07:45:51.803119+02:00 neptun systemd[1]: named.service: Start request repeated too quickly.
2024-07-26T07:45:51.803272+02:00 neptun systemd[1]: named.service: Failed with result 'core-dump'.
2024-07-26T07:45:51.803422+02:00 neptun systemd[1]: Failed to start named.service - BIND Domain Name Server.
2024-07-26T07:47:47.314562+02:00 neptun samba[889]: [2024/07/26 07:47:47.313639,  0] ../../source4/dsdb/dns/dns_update.c:85(dnsupdate_nameupdate_done)
2024-07-26T07:47:47.315123+02:00 neptun samba[889]:   dnsupdate_nameupdate_done: Failed DNS update with exit code 110

[oln]

Ok es betrifft mich mit einem SAMBA-AD und DNS über DLZ.
Siehe 1074378

[phimeas]

Hi,

die Lösung findet sich hier: https://lists.samba.org/archive/samba/2 ... 49371.html
Es scheint eine bereits seit längerem bekannte Inkompatiblität zwischen Samba AD DC mit DLZ DNS und dem gestern auf bookworm aktualisierten Paket bind9-1:9.18.28-1~deb12u1zu bestehen. Du kannst mittels

Code: Alles auswählen

systemctl edit named.service

eine Environment-Variable

Code: Alles auswählen

[Service]
Environment="LDB_MODULES_DISABLE_DEEPBIND=1"

oben in der Datei (Kommentare dort beherzigen) setzen. Danach startet bind9 wieder (worked for me )

HTH,

Gruß

Christian

[oln]

Gepachte Version ist draußen und behebt das Problem.