[Bug 270912] dns/unbound issues with ASLR + upstream servers with TLS enabled

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 270912] dns/unbound issues with ASLR"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 19 Apr 2023 08:09:11 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270912

Wout Decré <wout@canodus.be> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|dns/unbound issues with     |dns/unbound issues with
                   |ASLR                        |ASLR + upstream servers
                   |                            |with TLS enabled

--- Comment #1 from Wout Decré <wout@canodus.be> ---
Except for the timeouts on the upstream servers, it does not crash the Unbound
server. It is able to recover but it keeps happening every so often.

Workarounds:

# elfctl -e +noaslr /usr/local/sbin/unbound

or

# sysctl kern.elf64.aslr.enable=0

or

Disable TLS support for the upstream servers.

-- 
You are receiving this mail because:
You are the assignee for the bug.