Bug #10413
closed
BIND plugins are not copied into chroot
100%
Description
BIND 9.13.5 introduced a new plugin system, and the filter-aaaa support was moved to a plugin, so we need to copy the plugins into the chroot to allow using this feature. Previously, "filter-aaaa-on-v4 yes;" was a built-in option to filter out AAAA records when queried via an IPv4 socket, but this filtering was out to a plugin. To perform the same functionality, you need to add a custom option to your views (since the filter plugins must be declared in views, if they are used):
plugin query "filter-aaaa.so" { filter-aaaa-on-v4 yes; };
Currently, this fails because the "filter-aaaa.so" file is not found. BIND expects there to be "named" directory in ${libdir} that contains plugins, which on our package computes out to "/usr/local/lib/named". However, the pfSense BIND package runs from the "/cf/named" chroot, so we need to copy those plugins into that chroot to allow their use.
Related issues
Updated by Jim Pingle about 5 years ago
- Status changed from New to Pull Request Review
Updated by Renato Botelho about 5 years ago
- Status changed from Pull Request Review to Feedback
- Assignee set to Renato Botelho
- % Done changed from 0 to 100
PR has been merged. Thanks!
Updated by Danilo Zrenjanin over 4 years ago
- Status changed from Feedback to Resolved
Tested on the latest release.
Bind version 9.16_6. Plugins are automatically copied into /cf/named/usr/local/lib/named
Ticket resolved.
Updated by Viktor Gurov about 3 years ago
- Related to Bug #12869: Bind DNS Package AAAA filtering Broken on new ZFS Installs added