Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1283943
Description of problem: IPA DNS Zone/DNS Forward Zone details missing after upgrade from RHEL 7.0 to RHEL 7.2 Version-Release number of selected component (if applicable): ipa-server-dns-4.2.0-15.el7.x86_64 Red Hat Enterprise Linux Server release 7.2 (Maipo) How reproducible: Always Steps to Reproduce: 1. Setup RHEL7.0 host with IPA master 2. Add DNS ZONE, DNS Zone forwarder using ipa dnszone-add. 3. Also create similar entries through UI. 4. Add RHEl7.2 repos and run yum update 5. Verify the Server UI for created DNS zone, DNS ZONE forwarder entries. 6. Verify the same details using commandline #ipa dnsforwardzone-show #ipa dnszone-show Actual results: 1. After step5, the DNS ZONE, DNS Zone forwarder entries created before upgrade to RHEL 7.2 are not displayed at the server UI. 2. After step6, DNS Zone and DNS Zone forwarder entries are not returned. ipa: ERROR: example.com.: DNS zone not found ipa: ERROR: abcd.com.: DNS forward zone not found Expected results: DNS Zone and DNS Zone forwarder entries should be visible after the upgrade using their respective commands. #ipa dnsforwardzone-show #ipa dnszone-show Additional info: 1. respectivie ldif file containing DNS zone details is present under /var/lib/ipa/backup. 2. Following error message was displayed at /var/log/messages DNS ZONE: ------------- [root@bender yum.repos.d]# cat /var/log/messages | grep example Nov 20 01:23:30 bender named[14565]: zone example.com/IN: NS 'example.com.example.com' has no address records (A or AAAA) Nov 20 01:23:30 bender named[14565]: zone example.com/IN: not loaded due to errors. Nov 20 01:23:30 bender named[14565]: update_zone (psearch) failed for 'idnsname=example.com,cn=dns,dc=testrelm,dc=test'. Zones can be outdated, run `rndc reload`: bad zone Nov 20 01:23:30 bender named[14565]: SOA serial number incrementation failed in zone 'idnsname=example.com,cn=dns,dc=testrelm,dc=test': zone not loaded Nov 20 01:23:30 bender named[14565]: zone example.com/IN: reloaded serial 1448000610 Nov 20 01:23:30 bender named[14565]: zone example.com/IN: sending notifies (serial 1448000610) Nov 20 01:23:35 bender named[14565]: zone example.com/IN: sending notifies (serial 1448000612) Nov 20 01:53:44 bender named[14565]: zone example.com/IN: shutting down Nov 20 02:44:03 bender named[14565]: update_record (psearch) failed, dn 'idnsname=example.com,idnsname=example.com,cn=dns,dc=testrelm,dc=test' change type 0x0. Records can be outdated, run `rndc reload`: not found Nov 20 02:44:03 bender named[14565]: update_record (psearch) failed, dn 'idnsname=_kerberos,idnsname=example.com,cn=dns,dc=testrelm,dc=test' change type 0x0. Records can be outdated, run `rndc reload`: not found DNS Forward ZONE: -------------------- [root@bender backup]# cat /var/log/messages | grep abcd Nov 20 01:57:27 bender named[14565]: zone abcd.com/IN: NS 'abcd.com.abcd.com' has no address records (A or AAAA) Nov 20 01:57:27 bender named[14565]: zone abcd.com/IN: not loaded due to errors. Nov 20 01:57:27 bender named[14565]: update_zone (psearch) failed for 'idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test'. Zones can be outdated, run `rndc reload`: bad zone Nov 20 01:57:27 bender named[14565]: SOA serial number incrementation failed in zone 'idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test': zone not loaded Nov 20 01:57:27 bender named[14565]: zone abcd.com/IN: reloaded serial 1448002642 Nov 20 01:57:27 bender named[14565]: zone abcd.com/IN: sending notifies (serial 1448002642) Nov 20 01:57:32 bender named[14565]: zone abcd.com/IN: sending notifies (serial 1448002648) Nov 20 01:57:47 bender named[14565]: zone abcd.com/IN: sending notifies (serial 1448002667) Nov 20 01:57:47 bender named[14565]: LDAP error: No such object: Range Check error: while modifying(replace) entry 'idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test' Nov 20 01:57:47 bender named[14565]: SOA serial number incrementation failed in zone 'idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test': failure Nov 20 01:57:47 bender named[14565]: update_record (psearch) failed, dn 'idnsname=_kerberos,idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test' change type 0x2. Records can be outdated, run `rndc reload`: failure Nov 20 01:57:47 bender named[14565]: zone abcd.com/IN: shutting down Nov 20 01:58:37 bender named[14565]: update_record (psearch) failed, dn 'idnsname=abcd.com,idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test' change type 0x1. Records can be outdated, run `rndc reload`: not found Nov 20 01:59:53 bender named[14565]: zone abcd.com/IN: loaded serial 1448002717 Nov 20 01:59:53 bender named[14565]: zone abcd.com/IN: sending notifies (serial 1448002793) Nov 20 01:59:58 bender named[14565]: zone abcd.com/IN: sending notifies (serial 1448002793) Nov 20 02:05:05 bender named[14565]: zone abcd.com/IN: shutting down Nov 20 02:44:03 bender named[14565]: update_record (psearch) failed, dn 'idnsname=abcd.com,idnsname=abcd.com.,cn=dns,dc=testrelm,dc=test' change type 0x0. Records can be outdated, run `rndc reload`: not found [root@bender backup]#
ipaupgrade.log
2015-11-20T07:50:03Z DEBUG Executing upgrade plugin: update_master_to_dnsforwardzones 2015-11-20T07:50:03Z DEBUG raw: update_master_to_dnsforwardzones 2015-11-20T07:50:03Z DEBUG Updating forward zones 2015-11-20T07:50:03Z DEBUG raw: dnsforwardzone_find(None, version=u'2.156') 2015-11-20T07:50:03Z DEBUG dnsforwardzone_find(None, all=False, raw=False, version=u'2.156', pkey_only=False) 2015-11-20T07:50:03Z DEBUG raw: dnszone_find(None, sizelimit=0, all=True, raw=True, version=u'2.156') 2015-11-20T07:50:03Z DEBUG dnszone_find(None, sizelimit=0, forward_only=False, all=True, raw=True, version=u'2.156', pkey_only=False) 2015-11-20T07:50:03Z INFO Zones with specified forwarders with policy different than none will be transformed to forward zones. 2015-11-20T07:50:03Z INFO Original zones will be saved in LDIF format in /var/lib/ipa/backup/dns-forward-zones-backup-2015-11-20-02-50-03.ldif file 2015-11-20T07:50:03Z DEBUG raw: dnsrecord_find(u'example.com', None, sizelimit=0, all=True, raw=True, version=u'2.156') 2015-11-20T07:50:03Z DEBUG dnsrecord_find(<DNS name example.com.>, None, sizelimit=0, structured=False, all=True, raw=True, version=u'2.156', pkey_only=False) 2015-11-20T07:50:03Z DEBUG raw: dnsrecord_find(u'abcd.com.', None, sizelimit=0, all=True, raw=True, version=u'2.156') 2015-11-20T07:50:03Z DEBUG dnsrecord_find(<DNS name abcd.com.>, None, sizelimit=0, structured=False, all=True, raw=True, version=u'2.156', pkey_only=False) 2015-11-20T07:50:03Z DEBUG raw: dnszone_del([u'example.com'], version=u'2.156') 2015-11-20T07:50:03Z DEBUG dnszone_del((<DNS name example.com.>,), continue=False, version=u'2.156') 2015-11-20T07:50:03Z DEBUG raw: permission_del((u'Manage DNS zone example.com.',), force=True, version=u'2.156') 2015-11-20T07:50:03Z DEBUG permission_del((u'Manage DNS zone example.com.',), continue=False, force=True, version=u'2.156') 2015-11-20T07:50:03Z ERROR Transform to forwardzone terminated: removing zone example.com failed (no context.ldap2_62078096 in thread 'MainThread') 2015-11-20T07:50:03Z ERROR Traceback (most recent call last): File "/usr/lib/python2.7/site-packages/ipaserver/install/plugins/dns.py", line 293, in execute self.api.Command['dnszone_del'](zone['idnsname']) File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 443, in __call__ ret = self.run(*args, **options) File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 760, in run return self.execute(*args, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/dns.py", line 2755, in execute result = super(dnszone_del, self).execute(*keys, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py", line 1626, in execute delete_entry(pkey) File "/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py", line 1611, in delete_entry result = callback(self, ldap, dn, *nkeys, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/dns.py", line 2762, in post_callback super(dnszone_del, self).post_callback(ldap, dn, *keys, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/dns.py", line 2136, in post_callback self.obj._remove_permission(keys[-1]) File "/usr/lib/python2.7/site-packages/ipalib/plugins/dns.py", line 2075, in _remove_permission api.Command['permission_del'](permission_name, force=True) File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 443, in __call__ ret = self.run(*args, **options) File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 760, in run return self.execute(*args, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py", line 1626, in execute delete_entry(pkey) File "/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py", line 1579, in delete_entry dn = callback(self, ldap, dn, *nkeys, **options) File "/usr/lib/python2.7/site-packages/ipalib/plugins/permission.py", line 1050, in pre_callback entry = ldap.get_entry(dn, attrs_list=self.obj.default_attributes) File "/usr/lib/python2.7/site-packages/ipapython/ipaldap.py", line 1411, in get_entry size_limit=size_limit File "/usr/lib/python2.7/site-packages/ipaserver/plugins/ldap2.py", line 188, in find_entries time_limit = _get_limits()['time'] File "/usr/lib/python2.7/site-packages/ipaserver/plugins/ldap2.py", line 181, in _get_limits config = self.get_ipa_config() File "/usr/lib/python2.7/site-packages/ipaserver/plugins/ldap2.py", line 215, in get_ipa_config time_limit=2, size_limit=10 File "/usr/lib/python2.7/site-packages/ipaserver/plugins/ldap2.py", line 195, in find_entries search_refs=search_refs, paged_search=paged_search) File "/usr/lib/python2.7/site-packages/ipapython/ipaldap.py", line 1319, in find_entries id = self.conn.search_ext( File "/usr/lib/python2.7/site-packages/ipalib/backend.py", line 97, in __get_conn self.id, threading.currentThread().getName()) AttributeError: no context.ldap2_62078096 in thread 'MainThread'
ipa-4-2:
master:
Metadata Update from @mbasti: - Issue assigned to mbasti - Issue set to the milestone: FreeIPA 4.2.4
Login to comment on this ticket.