[Pdns-dev] PowerDNSSEC Progress: packages & production use
Christof Meerwald
cmeerw at cmeerw.org
Tue Jan 11 23:07:01 CET 2011
On Tue, 11 Jan 2011 22:52:10 +0100, bert hubert wrote:
> On Tue, Jan 11, 2011 at 10:48:49PM +0100, Christof Meerwald wrote:
>> Just tried to use it (source checkout from svn revision 1867) with the
>> bind backend and nsec3 and it immediately crashes when trying to make
>> a DNSSEC request.
> Thanks for this report. Which other backend do you use to house the DNSKEYs?
> Can you show the relevant bits of your configuration?
The other backend is gsqlite3.
Nothing exciting in the config:
pdns.conf:
launch=gsqlite3,bind
master=yes
disable-axfr=no
daemon=no
bind-config=/home/cmeerw/pdns/named.conf
version-string=powerdns
gsqlite3-database=/home/cmeerw/pdns/pdns.sqlite3
gsqlite3-dnssec
named.conf:
zone "cmeerw.priv.at" {
type master;
file "/home/cmeerw/pdns/db.cmeerw.priv.at";
};
db.cmeerw.priv.at:
@ IN SOA ns.cmeerw.net. domain.cmeerw.net. (
2010080601 ; Serial Number: YYYYYMMDDxx
1h ; Refresh time
900 ; Retry Time
21d ; Expire Time
1h ; Minimum TTL
)
IN NS ns.cmeerw.net.
IN NS ns2.cmeerw.net.
Have set up the db and done:
pdnssec secure-zone cmeerw.priv.at
pdnssec set-nsec3 cmeerw.priv.at
pdnssec rectify-zone cmeerw.priv.at
>> Traced it down so far to (iter == ttdindex.end()) in bindbackend2.cc,
>> line 864.
>
> Not this line?
> if(iter->nsec3hash == lqname) {
Well, yes that's the line - but it fails there because "iter ==
ttdindex.end()".
Christof
--
http://cmeerw.org sip:cmeerw at cmeerw.org
mailto:cmeerw at cmeerw.org xmpp:cmeerw at cmeerw.org
More information about the Pdns-dev
mailing list