From owner-freebsd-ports-bugs@FreeBSD.ORG  Mon Apr 20 10:00:16 2009
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 67819106567B
	for <freebsd-ports-bugs@hub.freebsd.org>;
	Mon, 20 Apr 2009 10:00:16 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 430DD8FC21
	for <freebsd-ports-bugs@hub.freebsd.org>;
	Mon, 20 Apr 2009 10:00:16 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n3KA0G0X038526
	for <freebsd-ports-bugs@freefall.freebsd.org>;
	Mon, 20 Apr 2009 10:00:16 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n3KA0GcV038525;
	Mon, 20 Apr 2009 10:00:16 GMT (envelope-from gnats)
Resent-Date: Mon, 20 Apr 2009 10:00:16 GMT
Resent-Message-Id: <200904201000.n3KA0GcV038525@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-ports-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
	Michael Scheidell <scheidell@secnap.net>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3EC8F1065670
	for <freebsd-gnats-submit@FreeBSD.org>;
	Mon, 20 Apr 2009 09:52:16 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [IPv6:2001:4f8:fff6::21])
	by mx1.freebsd.org (Postfix) with ESMTP id 2D52F8FC16
	for <freebsd-gnats-submit@FreeBSD.org>;
	Mon, 20 Apr 2009 09:52:16 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.14.3/8.14.3) with ESMTP id n3K9qFqR032383
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 20 Apr 2009 09:52:15 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.14.3/8.14.3/Submit) id n3K9qFvn032382;
	Mon, 20 Apr 2009 09:52:15 GMT (envelope-from nobody)
Message-Id: <200904200952.n3K9qFvn032382@www.freebsd.org>
Date: Mon, 20 Apr 2009 09:52:15 GMT
From: Michael Scheidell <scheidell@secnap.net>
To: freebsd-gnats-submit@FreeBSD.org
X-Send-Pr-Version: www-3.1
Cc: 
Subject: ports/133868: security/clamav add reload to rs. script to load
	third party sig updates
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Apr 2009 10:00:16 -0000


>Number:         133868
>Category:       ports
>Synopsis:       security/clamav add reload to rs. script to load third party sig updates
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Mon Apr 20 10:00:15 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator:     Michael Scheidell
>Release:        6.4/7.1
>Organization:
SECNAP Network Security
>Environment:
na
>Description:
as of clamav .94.1, the clamdscan program will accept the --reload option and send a reload to the clamd socket.

this is needed to load third party signatures, such as sanesecurity sigs, or user generated signatures.

comparing this to restart to load sigs:
a restart has to stop the clamd socket, this blocking or rejecting email during the process, and may take 60 to 120 seconds or more on a busy system.

--reload doesn't stop any current clamd/ clamdscan processes and is much quicker and less likely to cause email rejects or delays.

>How-To-Repeat:
load new sigs,

do ../rc.d/clamav-clamd reload
(illegal option)
do ../rc.d/clamav-clamd restart
watch mail and /var/log/clamav/clamd.logs.

type:
clamdscan --reload

tail mail and clamd.logs.. you will see no mail loss or delay and you will see sigs reloaded.

>Fix:
need to bump the portversion only if its important for new full package to be rebuild.  but don't bump portversion because it is not all that necessarily.  if user didn't miss functionality, then they didn't need it.

suggest rather that this be added to next clamav (minor) update.

maybe those two sitting in pr.

diff -bBru /tmp/clamav/ ./
diff -bBru /tmp/clamav/files/clamav-clamd.in ./files/clamav-clamd.in
--- /tmp/clamav/files/clamav-clamd.in   2009-03-27 07:52:22.000000000 -0400
+++ ./files/clamav-clamd.in     2009-04-18 07:25:00.000000000 -0400
@@ -41,4 +41,12 @@
        fi
 }
 
+extra_commands="reload"
+reload_cmd=clamd_reload
+
+clamd_reload()
+{
+  %%PREFIX%%/bin/clamdscan --reload
+}
+
 run_rc_command "$1"
 

>Release-Note:
>Audit-Trail:
>Unformatted: