* Re: bind: should be built without seccomp
[not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
@ 2021-01-30 1:14 ` ericonr
2021-01-30 1:14 ` [ISSUE] [CLOSED] " ericonr
2021-01-30 1:14 ` ericonr
3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30 1:14 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 168 bytes --]
New comment by ericonr on void-packages repository
https://github.com/void-linux/void-packages/issues/11436#issuecomment-770129029
Comment:
It no longer has seccomp.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [ISSUE] [CLOSED] bind: should be built without seccomp
[not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
2021-01-30 1:14 ` ericonr
@ 2021-01-30 1:14 ` ericonr
2021-01-30 1:14 ` ericonr
3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30 1:14 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 1205 bytes --]
Closed issue by lonwillett on void-packages repository
https://github.com/void-linux/void-packages/issues/11436
Description:
### System
* xuname: Void 5.0.10_1 x86_64-musl GenuineIntel/PV uptodate hold rrnFFFFFF
* package: bind-9.11.6_1
### Expected behavior
Works
### Actual behavior
I have had repeated issues with bind and seccomp. The latest...
Message:
2019-04-30T05:57:44.14997 kern.notice: [735346.896514] audit: type=1326 audit(1556603864.148:10): auid=4294967295 uid=800 gid=800 ses=4294967295 pid=17441 comm="named" exe="/usr/bin/named" sig=31 arch=c000003e syscall=302 compat=0 ip=0x7f7283c632c4 code=0x0
Then it fails to work correctly: some threads die, behaviour is erratic.
### Steps to reproduce the behavior
I admit that I have not figured out precisely what the problem is. Possbily related to using musl instead of glibc. However, the problems disappear when I build bind without seccomp support. And when I googled for similar things, I found:
https://gitlab.isc.org/isc-projects/bind9/issues/93
So it appears to me that there is no real reason to enable the seccomp support in bind. It will be disappearing anyway, and provides little improvement in security.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: bind: should be built without seccomp
[not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
` (2 preceding siblings ...)
2021-01-30 1:14 ` [ISSUE] [CLOSED] " ericonr
@ 2021-01-30 1:14 ` ericonr
3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30 1:14 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 202 bytes --]
New comment by ericonr on void-packages repository
https://github.com/void-linux/void-packages/issues/11436#issuecomment-770129029
Comment:
It no longer has seccomp. (though the build option remains)
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: bind: should be built without seccomp
[not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
@ 2019-05-04 11:54 ` voidlinux-github
2021-01-30 1:14 ` ericonr
` (2 subsequent siblings)
3 siblings, 0 replies; 4+ messages in thread
From: voidlinux-github @ 2019-05-04 11:54 UTC (permalink / raw)
To: ml
[-- Attachment #1: Type: text/plain, Size: 193 bytes --]
New comment by CameronNemo on void-packages repository
https://github.com/void-linux/void-packages/issues/11436#issuecomment-489320175
Comment:
Okay then. Perhaps we can ship AppArmor policy.
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2021-01-30 1:14 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
2021-01-30 1:14 ` ericonr
2021-01-30 1:14 ` [ISSUE] [CLOSED] " ericonr
2021-01-30 1:14 ` ericonr
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).