Bug 1207540

Summary: Plugin will crash if idnsForwardZone object is in the wrong place
Product: Red Hat Enterprise Linux 7 Reporter: Martin Kosek <mkosek>
Component: bind-dyndb-ldapAssignee: Petr Spacek <pspacek>
Status: CLOSED ERRATA QA Contact: Namita Soman <nsoman>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 7.0CC: ksiddiqu, pspacek
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: bind-dyndb-ldap-7.99-1.GIT158e95e.el7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-11-19 10:21:20 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Martin Kosek 2015-03-31 07:00:47 UTC 
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/bind-dyndb-ldap/ticket/148

== Problem ==
Plugin crashes.

== Steps to Reproduce ==
* Create LDAP object with DN `idnsName=test, idnsName=test, cn=dns`
* Add objectClass `idnsForwardZone` to it
Comment 1 Petr Spacek 2015-06-08 14:57:57 UTC 
Fixed upstream: 9d2160ead48d64b6943cb4f0e7ec0feddd82dbc5
Comment 4 Kaleem 2015-09-08 17:44:10 UTC 
Verified.

IPA Version:
============
[root@dhcp207-20 ~]# rpm -q ipa-server
ipa-server-4.2.0-8.el7.x86_64
[root@dhcp207-20 ~]# 

Console output:
===============
[root@dhcp207-20 ~]# ipa dnszone-add ipa.example.;ipa dnsrecord-add ipa.example. test --txt-rec="ignorethis"
  Zone name: ipa.example.
  Active zone: TRUE
  Authoritative nameserver: dhcp207-20.testrelm.test.
  Administrator e-mail address: hostmaster
  SOA serial: 1441733474
  SOA refresh: 3600
  SOA retry: 900
  SOA expire: 1209600
  SOA minimum: 3600
  BIND update policy: grant TESTRELM.TEST krb5-self * A; grant TESTRELM.TEST krb5-self * AAAA; grant TESTRELM.TEST krb5-self * SSHFP;
  Dynamic update: FALSE
  Allow query: any;
  Allow transfer: none;
  Record name: test
  TXT record: ignorethis
[root@dhcp207-20 ~]# 
[root@dhcp207-20 ~]# cat c.ldif 
dn: idnsname=test,idnsname=ipa.example.,cn=dns,dc=testrelm,dc=test 
changetype: modify
add: idnsZoneActive
idnsZoneActive: TRUE
-
delete: objectClass
objectClass: idnsrecord
-
add: objectClass
objectClass: idnsRecord
objectClass: idnsForwardZone
-
[root@dhcp207-20 ~]# ldapmodify -Y GSSAPI -f c.ldif 
SASL/GSSAPI authentication started
SASL username: admin
SASL SSF: 56
SASL data security layer installed.
modifying entry "idnsname=test,idnsname=ipa.example.,cn=dns,dc=testrelm,dc=test "
[root@dhcp207-20 ~]#

[root@dhcp207-20 ~]# ldapsearch -Y GSSAPI -b "idnsname=test,idnsname=ipa.example.,cn=dns,dc=testrelm,dc=test"
SASL/GSSAPI authentication started
SASL username: admin
SASL SSF: 56
SASL data security layer installed.
# extended LDIF
#
# LDAPv3
# base <idnsname=test,idnsname=ipa.example.,cn=dns,dc=testrelm,dc=test> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# test, ipa.example., dns, testrelm.test
dn: idnsname=test,idnsname=ipa.example.,cn=dns,dc=testrelm,dc=test
objectClass: top
objectClass: idnsRecord
objectClass: idnsForwardZone
tXTRecord: ignorethis
idnsName: test
idnsZoneActive: TRUE

# search result
search: 4
result: 0 Success

# numResponses: 2
# numEntries: 1
[root@dhcp207-20 ~]#
Comment 5 Kaleem 2015-09-08 17:46:20 UTC 
[root@dhcp207-20 ~]# rpm -q ipa-server bind bind-dyndb-ldap
ipa-server-4.2.0-8.el7.x86_64
bind-9.9.4-29.el7.x86_64
bind-dyndb-ldap-8.0-1.el7.x86_64
[root@dhcp207-20 ~]#
Comment 6 Petr Spacek 2015-09-10 14:22:35 UTC 
This bug is kind of obscure and does not require detailed documentation for end users.
Comment 8 errata-xmlrpc 2015-11-19 10:21:20 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2015-2301.html