[nsd-users] SIGSEGV in rbtree_find_less_equal
Chris LaVallee
clavallee at edg.io
Wed Oct 2 14:57:50 UTC 2024
Hi,
I found a reproducible seg fault with a DNSSEC signed zone and overlapping config. I'm running NSD 4.10.1. Here's how to reproduce.
2 zones in nsd.conf:
zone:
name: "foo.com."
zonefile: "/zones/foo.com.zone.signed"
zone:
name: "bar.foo.com."
zonefile: "/zones/bar.foo.com.zone"
Zone files:
foo.com.zone.signed is DNSSEC signed with a record for a.bar (A record or anything)
bar.foo.com.zone doesn't exist (but it's in nsd.conf shown above)
Steps:
1) Startup NSD
2) touch foo.com.zone.signed
3) reload NSD
nsd.log will say:
[2024-10-02 07:19:58.691] nsd[962739]: info: control cmd: reload
[2024-10-02 07:19:58.845] nsd[962752]: error: handle_reload_cmd: reload closed cmd channel
[2024-10-02 07:19:58.845] nsd[962752]: warning: Reload process 962740 failed, continuing with old database
core dump says SIGSEGV in rbtree_find_less_equal
Chris LaVallee
Edgio (formally EdgeCast Networks)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20241002/548fce00/attachment.htm>
More information about the nsd-users
mailing list