DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Packages and Ports

OpenBSD Packages and Ports Installation and upgrading of packages and ports on OpenBSD.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 25th January 2024
Feamane Feamane is offline
Port Guard
 
Join Date: Feb 2022
Posts: 23
Default Starting BIND 9.10.3 on OpenBSD 5.9/ SPARC

Hello,

OK, here is the second problem I can't figure out. I'm trying to use this IPX as a DNS slave for my split namespace. But rc can't start it and I'm struggling to find out why. If I do named-checkconf it doesn't show any errors. I do rcctl with -df but it just says "failed". I added the -d 3 option to named but the log files are just showing the generic named splash announcements and no error information. If I run named manually as indicated below it runs just fine! So is it some kind of permissions/ownership problem? I tried comparing to stock settings after package installation but not finding a discrepancy.

How the heck do I force rcctl/named to be more verbose and give up their secret? I'm sure it's some simple error on my part but I need more than just "failed" to figure it out. Is there some way to run the _rc_rm_runfile check separately with verbose/debug options?

The same config as master is running fine on a SPARCclassic/OpenBSD 5.9 box. And the whole setup was working when they had Debian on them.

Thanks,
DJ


rcctl -df start isc_named1
BIND 9.10.3-P3 <id:bdaecad>
.
Domain name service in Slave mode .
doing _rc_parse_conf
doing _rc_quirks
isc_named1_flags empty, using default >-t /var/named -c named1_slave.conf -u _bind -U 3 -4 -d 3<
doing _rc_read_runfile
doing rc_check
isc_named1
doing rc_start
doing _rc_rm_runfile
(failed)

rcctl -df start isc_named2
BIND 9.10.3-P3 <id:bdaecad>
.
Domain name service in Slave mode .
doing _rc_parse_conf
doing _rc_quirks
isc_named2_flags empty, using default >-t /var/named -c named2_slave.conf -u _bind -U 3 -4 -d 3<
doing _rc_read_runfile
doing rc_check
isc_named2
doing rc_start
doing _rc_rm_runfile
(failed)

named-checkconf -p -z -t /var/named named1_slave.conf

named-checkconf -p -z -t /var/named named2_slave.conf

/usr/local/sbin/named -t /var/named -c named1_slave.conf -u _bind -U 3 -4 -S 1930 -g

/usr/local/sbin/named -t /var/named -c named2_slave.conf -u _bind -U 3 -4 -S 1930 -g
Reply With Quote
  #2   (View Single Post)  
Old 26th January 2024
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 8,078
Default

Just a guess on my part, but I believe you could run each individual rc.subr(8) script with ksh's xtrace enabled: # ksh -x /etc/rc.d/isc_named1 start
Reply With Quote
  #3   (View Single Post)  
Old 26th January 2024
Feamane Feamane is offline
Port Guard
 
Join Date: Feb 2022
Posts: 23
Default

OK, that looked promising, but I've been going through the output and so far not seeing any smoking guns. Not sure what all that means, but the items I can identify like directories look correct. The only thing that looks like a complaint is the "-o start != start" bit, but I have no clue what it means.

Anybody see any red flags here?

Thanks,
DJ

sun4:/etc> ksh -x /etc/rc.d/isc_named1 start
+ daemon=/usr/local/sbin/named
+ [ -e /usr/local/sbin/named ]
+ /usr/local/sbin/named -v
BIND 9.10.3-P3 <id:bdaecad>
+ echo .
.
+ [ -e /var/named/_master ]
+ echo -n Domain name service in Slave mode
Domain name service in Slave mode + daemon_flags=-t /var/named -c named1_slave.conf -u _bind -U 3 -4 -d 3
+ echo .
.
+ . /etc/rc.d/rc.subr
+ _rc_actions=start stop restart reload check
+ readonly _rc_actions
+ [ -n ]
+ [ -n /usr/local/sbin/named ]
+ unset _RC_DEBUG _RC_FORCE
+ getopts df c
+ shift 0
+ basename /etc/rc.d/isc_named1
+ _name=isc_named1
+ _RC_RUNDIR=/var/run/rc.d
+ _RC_RUNFILE=/var/run/rc.d/isc_named1
+ _rc_do _rc_parse_conf
+ eval _rcflags=${isc_named1_flags}
+ _rcflags=
+ eval _rcuser=${isc_named1_user}
+ _rcuser=
+ eval _rctimeout=${isc_named1_timeout}
+ _rctimeout=
+ getcap -f /etc/login.conf isc_named1
+ > /dev/null
+ 2>&1
+ daemon_class=daemon
+ [ -z ]
+ daemon_user=root
+ [ -z ]
+ daemon_timeout=30
+ [ -n -o start != start ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ readonly daemon_class
+ unset _rcflags _rcuser _rctimeout
+ pexp=/usr/local/sbin/named -t /var/named -c named1_slave.conf -u _bind -U 3 -4 -d 3
+ rcexec=su -l -c daemon -s /bin/sh root -c
+ rc_reload=YES
+ rc_stop=YES
+ rc_cmd start
isc_named1(failed)
Reply With Quote
  #4   (View Single Post)  
Old 26th January 2024
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,179
Default

It is quite strange that a manual start works, but not with the rc system,

Does named run chrooted? The package README will tell you and point out the gotcha's of running in a chroot
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #5   (View Single Post)  
Old 26th January 2024
Feamane Feamane is offline
Port Guard
 
Join Date: Feb 2022
Posts: 23
Default

Yes it does, that's what the "-t /var/named" option indicates. Since it runs via manual start but not with rc it sure is my hunch it's some permission/ownership issue, I just wish I could grab it by the collar and shake it until it tells me what it doesn't like!

I'll try the README and hope it has a checklist for me to go through.

Thanks,
DJ
Reply With Quote
  #6   (View Single Post)  
Old 26th January 2024
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,179
Default

Does the named logfile show anything. Does it exist?
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #7   (View Single Post)  
Old 26th January 2024
Feamane Feamane is offline
Port Guard
 
Join Date: Feb 2022
Posts: 23
Default

It exists, but even with adding the "-d 3" option nothing is being written to it. I thought it was a good sign that it created the log file, I didn't have to touch it. And all it writes to daemon and messages is the bind banner, then crickets.

Thanks,
DJ
Reply With Quote
  #8   (View Single Post)  
Old 26th January 2024
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,179
Default

I haven't used bind for decades, but is debug level 3 the highest? Cannot you crank it up?

https://kb.isc.org/docs/aa-01526 has logging suggestions They may not all exist in your named version dating back to OpenBSD 5.9.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #9   (View Single Post)  
Old 26th January 2024
Feamane Feamane is offline
Port Guard
 
Join Date: Feb 2022
Posts: 23
Default

It goes higher, but the way I read it after that it just goes into the minutiae of DNS transactions. If it was going to tell me anything useful about my problem you'd think debug 3 would be enough. I will go through the linked info for clues.

Thanks,
DJ
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenBSD on Sparc pass NFS "root device" to bsd Feamane OpenBSD General 11 4th February 2024 10:07 PM
Install GNOME on OpenBSD 6.2 on a Sun Ultra 45 (Sparc) Workstation? jmar83 OpenBSD Packages and Ports 20 23rd October 2023 09:22 AM
OpenBSD 5.x Sparc Install problem jalapeno OpenBSD Installation and Upgrading 5 20th October 2023 05:17 PM
Misc. BSD/UNIX High prices of Sun SPARC boxes forces OpenSolaris-fork Illumos to drop SPARC support J65nko News 2 10th May 2021 11:01 PM
Sparc assembly anyone? Randux Programming 4 24th June 2011 07:10 AM


All times are GMT. The time now is 02:55 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick