Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Backport][ipa-4-8] Fix design bug in named ipa-ext.conf #4776

Closed
wants to merge 2 commits into from
Closed

[Backport][ipa-4-8] Fix design bug in named ipa-ext.conf #4776

wants to merge 2 commits into from

Conversation

abbra
Copy link
Contributor

@abbra abbra commented Jun 8, 2020

This PR was opened automatically because PR #4715 was pushed to master and backport to ipa-4-8 is required.

Carbenium and others added 2 commits June 8, 2020 15:53
@Carbenium @abbra
Split named custom config to allow changes in options stanza
131fcfc 
Upgrade path to add additional include to named.conf is not handled.

Remove bindkeys-file directive from named config
The ISC DVL service was shut down (https://www.isc.org/bind-keys/).
BIND versions since April 2017 (i.e. 9.9.10, 9.10.5, 9.11.1 and later)
include a hard-coded copy of the root KSK which gets updates automatically
according to RFC 5011.

Move dnssec-enable directive to custom named config

Move comment named config being managed by FreeIPA to the top

Move settings which could be changed by administrators to
ipa-options-ext.conf. Settings defined there are sole responsibility of the
administrator. We do not check if they might collide with our settings in
named.conf.

Fixes: https://pagure.io/freeipa/issue/8287
Co-authored-by: Peter Keresztes Schmidt <carbenium@outlook.com>
@tiran @abbra
Include named config files in backup
c6c2280 
Signed-off-by: Christian Heimes <cheimes@redhat.com>
@abbra
Copy link
Contributor Author

abbra commented Jun 8, 2020

PR was ACKed automatically because this is backport of PR #4715. Wait for CI to finish before pushing. In case of questions or problems contact @tiran who is author of the original PR.

@abbra abbra added the ack Pull Request approved, can be merged label Jun 8, 2020
@abbra
Copy link
Contributor Author

abbra commented Jun 8, 2020

ipa-4-8:

  • 539d469 Split named custom config to allow changes in options stanza
  • 782ee11 Include named config files in backup

@abbra abbra added the pushed Pull Request has already been pushed label Jun 8, 2020
@abbra abbra closed this Jun 8, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
ack Pull Request approved, can be merged pushed Pull Request has already been pushed
Projects
None yet
Milestone
No milestone
3 participants
@abbra @Carbenium @tiran