+++ This bug was initially created as a clone of Bug #1142150 +++ Description of problem: bind hangs after reload/GSSAPI Error: The referenced context has expired (Success) After a while (about once in a week) the bind daemon is in the state hang/zombie. The bind daemon seems to be present and accept requests from the clients, but is not answering any dns requests. Only killing the process with kill -9 can stop the daemon. After starting bind again, it works fine, until the problem occurs again. Version-Release number of selected component (if applicable): bind-9.9.4-14.el7.x86_64 How reproducible: Everytime Logrotates runs. Steps to Reproduce: 1. Configure IPA server with DNS 2. Wait till logrotate starts rotating. Additional info: It is related to https://fedorahosted.org/bind-dyndb-ldap/ticket/131
It is too late for 6.6. Moving to 6.7.
There is nothing private in this bug. Publicizing.
patch added to Bug #1142150 reproducer added in Bug #1142150 comment #7
Created attachment 966145 [details] SRPM with bind-dyndb-ldap plugin for testing of this bug
Steps to reproduce for QA: 1. install bind 2. build the attachment 966145 [details] for your architecture 3. install the bind-dyndb-ldap package built from attachment 966145 [details] 4. Add the following section to /etc/named.conf: dynamic-db "my_db_name" { library "ldap.so"; arg "uri ldap://ldap.example.com"; arg "base cn=dns, dc=example, dc=com"; arg "auth_method none"; }; 5. export KRB5_KTNAME=/etc/named.keytab 6. run 'named -u named -fg' as root 7. named will start 8. run 'rndc reload' from another console and watch the error on output: [root@localhost ~]# rndc reload rndc: 'reload' failed: out of memory 9. press CTRL+C in the terminal you've started named or run 'rndc halt' Actual result in 9.: Named will freeze and the only way to stop it is to kill -9 it. Expected result in 9. (and with attached patch): Named will exit just normally.
================================== Verified in version: bind-9.8.2-0.36.rc1.el6.x86_64 PASSED ================================== === 1. console === # named -u named -fg ... 04-Mar-2015 11:25:15.231 running === 2. console === # rndc reload server reload successful # rndc halt # === 1. console === 04-Mar-2015 11:27:05.015 exiting # echo $? 0 Named exited normally. ====================================== Reproduced in version: bind-9.8.2-0.30.rc1.el6_6.1.x86_64 FAIL ====================================== === 1. console === # named -u named -fg ... 04-Mar-2015 11:14:31.432 running === 2. console === # rndc reload rndc: 'reload' failed: out of memory # rndc halt # === 1. console === Named freezed.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2015-1250.html