Bug 851123
Summary: | chroot messed during service named configtest | ||||||
---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | albert <superber> | ||||
Component: | bind | Assignee: | Tomáš Hozza <thozza> | ||||
Status: | CLOSED ERRATA | QA Contact: | qe-baseos-daemons | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | 6.3 | CC: | ffotorel, hhorak, thozza | ||||
Target Milestone: | rc | Keywords: | Patch | ||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | bind-9.8.2-0.26.rc1.el6 | Doc Type: | Bug Fix | ||||
Doc Text: |
Cause:
Previously initscript command configtest did not check if bind was already running, but rather blidly mounted/unmounted the filesystem into chroot.
Consequence:
As a result, the named chroot root was damaged by executing initscript command configtest while named was running in a chroot.
Fix:
The initscript was fixed not to mount/unmount the chroot filesystem on execution of configtest command, if the named is running in a chroot.
Result:
As a result the chroot filesystem is not damaged.
|
Story Points: | --- | ||||
Clone Of: | Environment: | ||||||
Last Closed: | 2014-10-14 04:34:28 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
albert
2012-08-23 10:08:38 UTC
Right you are, thanks for the report. We can extend initscript a little to avoid this issue. Created attachment 731878 [details]
Don't mount/umount files/dirs if named is running
This request was evaluated by Red Hat Product Management for inclusion in the current release of Red Hat Enterprise Linux. Because the affected component is not scheduled to be updated in the current release, Red Hat is unable to address this request at this time. Red Hat invites you to ask your support representative to propose this request, if appropriate, in the next release of Red Hat Enterprise Linux. Just for reference. ========================== REPRODUCTION STEPS ========================== - Install RHEL6 with bind-9.8.2-0.23.rc1.el6_5.1.x86_64: -------------- [root@bind ~]# rpm -qa bind bind-9.8.2-0.23.rc1.el6_5.1.x86_64 -------------- - Configure bind in chroot. ------------------- ===>>> /etc/sysconfig/named ROOTDIR=/var/named/chroot [root@bind ~]# yum install bind-chroot [root@bind ~]# service named start [root@bind ~]# mount [...] /etc/named on /var/named/chroot/etc/named type none (rw,bind) /var/named on /var/named/chroot/var/named type none (rw,bind) /etc/named.conf on /var/named/chroot/etc/named.conf type none (rw,bind) /etc/named.rfc1912.zones on /var/named/chroot/etc/named.rfc1912.zones type none (rw,bind) /etc/rndc.key on /var/named/chroot/etc/rndc.key type none (rw,bind) /usr/lib64/bind on /var/named/chroot/usr/lib64/bind type none (rw,bind) /etc/named.iscdlv.key on /var/named/chroot/etc/named.iscdlv.key type none (rw,bind) /etc/named.root.key on /var/named/chroot/etc/named.root.key type none (rw,bind) ------------------- - Edit /etc/named.conf to make a change. ------------------- [root@bind ~]# vi /etc/named.conf ------------------- - Run "service named configtest". ------------------- [root@bind ~]# service named configtest zone example.lab/IN: loaded serial 2014061115 zone localhost.localdomain/IN: loaded serial 0 zone localhost/IN: loaded serial 0 zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0 zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0 zone 0.in-addr.arpa/IN: loaded serial 0 umount: /var/named/chroot/var/named: device is busy. (In some cases useful info about processes that use the device is found by lsof(8) or fuser(1)) ------------------- - Subsequent "rndc reload" commands fail: -------------------------- [root@bind ~]# rndc reload rndc: 'reload' failed: file not found [root@bind ~]# mount [...] /etc/named on /var/named/chroot/etc/named type none (rw,bind) /var/named on /var/named/chroot/var/named type none (rw,bind) /usr/lib64/bind on /var/named/chroot/usr/lib64/bind type none (rw,bind) -------------------------- Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2014-1373.html |