Date: Sat, 17 Apr 2021 09:02:53 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 255148] [patch] dns/bind911: %%ETCDIR%%/master should be owned by (bind,bind,) Message-ID: <bug-255148-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D255148 Bug ID: 255148 Summary: [patch] dns/bind911: %%ETCDIR%%/master should be owned by (bind,bind,) Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: mat@FreeBSD.org Reporter: freebsd@oldach.net Assignee: mat@FreeBSD.org Flags: maintainer-feedback?(mat@FreeBSD.org) When running DNSSEC auto validation, named requires write access to %%ETCDIR%%/master in order to create -signed, .jbk, and .jnl files. Per pkg-plist however, this directory is owned by root:wheel, unlike %%ETCDIR%%/dynamic, %%ETCDIR%%/slave, and %%ETCDIR%%/working which are explicitly owned by (bind,bind,). This breaks auto validation. Worse, the (root,wheel,) ownership of %%ETCDIR%%/master is restored upon ev= ery update unfortunately. Therefore I suggest to align all created subdirectories: diff --git a/dns/bind911/pkg-plist b/dns/bind911/pkg-plist index 86422256566d..de6b48f6175c 100644 --- a/dns/bind911/pkg-plist +++ b/dns/bind911/pkg-plist @@ -397,6 +397,6 @@ sbin/rndc sbin/rndc-confgen sbin/tsig-keygen @dir(bind,bind,) %%ETCDIR%%/dynamic -@dir %%ETCDIR%%/master +@dir(bind,bind,) %%ETCDIR%%/master @dir(bind,bind,) %%ETCDIR%%/slave @dir(bind,bind,) %%ETCDIR%%/working dns/bind916 is not affected as it does not create a %%ETCDIR%%/master direc= tory but just %%ETCDIR%%/dynamic, %%ETCDIR%%/slave, and %%ETCDIR%%/working. I ha= ve no idea why it's different though. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-255148-7788>