From owner-freebsd-stable@FreeBSD.ORG Mon Dec 9 11:22:42 2013 Return-Path: Delivered-To: stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B840BD90 for ; Mon, 9 Dec 2013 11:22:42 +0000 (UTC) Received: from mail.droso.net (koala.droso.dk [213.239.220.246]) (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 762F610F8 for ; Mon, 9 Dec 2013 11:22:41 +0000 (UTC) Received: by mail.droso.net (Postfix, from userid 1001) id CDC467DCF; Mon, 9 Dec 2013 12:22:33 +0100 (CET) Date: Mon, 9 Dec 2013 12:22:33 +0100 From: Erwin Lansing To: Greg Rivers Subject: Re: BIND chroot environment in 10-RELEASE...gone? Message-ID: <20131209112232.GR29825@droso.dk> References: <529D9CC5.8060709@rancid.berkeley.edu> <20131204095855.GY29825@droso.dk> <20131205083044.GN29825@droso.dk> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline In-Reply-To: X-Operating-System: FreeBSD/amd64 9.1-RELEASE User-Agent: Mutt/1.5.21 (2010-09-15) Cc: stable@freebsd.org, Michael Sinatra X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Dec 2013 11:22:42 -0000 On Thu, Dec 05, 2013 at 11:34:31AM -0600, Greg Rivers wrote: > On Thu, 5 Dec 2013, Erwin Lansing wrote: > > > > Thanks Greg, and thanks for the feedback. I did make sure that the > > chroot still is supported on existing 8 and 9 systems, so the move will > > be another part in the upgrade procedure to a new major release and > > lessen the pain a bit. Let me have another look into reintroducing the > > chroot bits in a less complicated way. It may not be exactly the same > > as before but hopefully can be done in a backwards compatible way. > > > > Thank you Erwin. Let me know if I can help in any way. > Sorry for the delay. I've spent too much time already on this. The problem is that there are several assumption to how the paths are formed in both the ports Makefile (and thus things like pkg-plist and used to generate the configuration files) and the rc script that sets up the chroot. Fixing one, breaks the other, so some more magic is required. I hacked up the original chroot code enough that it sets up the chroot, copies in the confiruation files, etc. but then ends up that the configuration files were generated on the assumption that is was a normal port prefix and thus expect things to be in /var/named/usr/local/etc/named/... which is of course a fine chroot, but not compatible with the pre-10 setup. I think a complete rewrite is needed to do this right, for which I don't have time over the next few days. The net/isc-dhcp*-server ports might have some inspiration, though not sure how transferrable it is to bind. I'd be happy to test and accept patches. Erwin -- Erwin Lansing http://droso.dk erwin@FreeBSD.org http:// www.FreeBSD.org