Re: bind: should be built without seccomp

Github messages for voidlinux
 help / color / mirror / Atom feed

* Re: bind: should be built without seccomp
       [not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
  2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
@ 2021-01-30  1:14 ` ericonr
  2021-01-30  1:14 ` [ISSUE] [CLOSED] " ericonr
  2021-01-30  1:14 ` ericonr
  3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30  1:14 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 168 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/issues/11436#issuecomment-770129029

Comment:
It no longer has seccomp.

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [ISSUE] [CLOSED] bind: should be built without seccomp
       [not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
  2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
  2021-01-30  1:14 ` ericonr
@ 2021-01-30  1:14 ` ericonr
  2021-01-30  1:14 ` ericonr
  3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30  1:14 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1205 bytes --]

Closed issue by lonwillett on void-packages repository

https://github.com/void-linux/void-packages/issues/11436

Description:
### System

* xuname:  Void 5.0.10_1 x86_64-musl GenuineIntel/PV uptodate hold rrnFFFFFF
* package:  bind-9.11.6_1

### Expected behavior
Works
### Actual behavior
I have had repeated issues with bind and seccomp.  The latest...
Message:
2019-04-30T05:57:44.14997 kern.notice: [735346.896514] audit: type=1326 audit(1556603864.148:10): auid=4294967295 uid=800 gid=800 ses=4294967295 pid=17441 comm="named" exe="/usr/bin/named" sig=31 arch=c000003e syscall=302 compat=0 ip=0x7f7283c632c4 code=0x0
Then it fails to work correctly: some threads die, behaviour is erratic.
### Steps to reproduce the behavior
I admit that I have not figured out precisely what the problem is. Possbily related to using musl instead of glibc. However, the problems disappear when I build bind without seccomp support. And when I googled for similar things, I found:
  https://gitlab.isc.org/isc-projects/bind9/issues/93
So it appears to me that there is no real reason to enable the seccomp support in bind. It will be disappearing anyway, and provides little improvement in security.

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: bind: should be built without seccomp
       [not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
                   ` (2 preceding siblings ...)
  2021-01-30  1:14 ` [ISSUE] [CLOSED] " ericonr
@ 2021-01-30  1:14 ` ericonr
  3 siblings, 0 replies; 4+ messages in thread
From: ericonr @ 2021-01-30  1:14 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 202 bytes --]

New comment by ericonr on void-packages repository

https://github.com/void-linux/void-packages/issues/11436#issuecomment-770129029

Comment:
It no longer has seccomp. (though the build option remains)

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: bind: should be built without seccomp
       [not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
@ 2019-05-04 11:54 ` voidlinux-github
  2021-01-30  1:14 ` ericonr
                   ` (2 subsequent siblings)
  3 siblings, 0 replies; 4+ messages in thread
From: voidlinux-github @ 2019-05-04 11:54 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 193 bytes --]

New comment by CameronNemo on void-packages repository

https://github.com/void-linux/void-packages/issues/11436#issuecomment-489320175
Comment:
Okay then. Perhaps we can ship AppArmor policy.

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2021-01-30  1:14 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <gh-mailinglist-notifications-41a7ca26-5023-4802-975b-f1789d68868e-void-packages-11436@inbox.vuxu.org>
2019-05-04 11:54 ` bind: should be built without seccomp voidlinux-github
2021-01-30  1:14 ` ericonr
2021-01-30  1:14 ` [ISSUE] [CLOSED] " ericonr
2021-01-30  1:14 ` ericonr

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).