Bug 117128 - security/ipsec-tools racoon.sh fails with /var on mfs
Summary: security/ipsec-tools racoon.sh fails with /var on mfs
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Beech Rintoul
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-10-12 01:00 UTC by John E. Hein
Modified: 2008-07-02 05:30 UTC (History)
1 user (show)

See Also:

Attachments
file.diff (889 bytes, patch)
2007-10-12 01:00 UTC, John E. Hein 		no flags Details | Diff
smime.p7s (3.31 KB, application/x-pkcs7-signature)
2007-10-15 15:25 UTC, VANHULLEBUS Yvan 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description John E. Hein 2007-10-12 01:00:10 UTC 
racoon won't start because ...

WARNING: /var/db/racoon is not a directory

If /var/db/racoon is missing, racoon fails to start since /var/db/racoon
is a "required_dir".  Fine...

If /var is an mfs (varmfs=YES or varmfs=AUTO when /var/run, etc. don't exist
- see /etc/rc.d/var), /var/db/racoon does not get created on boot & /var
population.  /var/db/racoon is not created my mtree using BSD.var.dist (as
it shouldn't be).  So even if you create /var/db/racoon manually, every
time you reboot, it will be gone.

I see no good way to create that directory early before the
required_dirs check in rc.subr.

/var/db/racoon holds a socket, by the way.

Fix: Maintainer was notified on May 25, but there was no response.  I had
forgotten about my local patch until now...

Have the racoon startup script [optionally] create its required dirs...
How-To-Repeat: 
Install security/ipsec-tools.
Run "env racoon_enable=YES /usr/local/etc/rc.d/racoon start".
tail /var/log/messages
... to see the "WARNING" and observe that racoon is not running.

Workaround: 'racoon forcestart', but that requires manual
intervention.
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2007-10-12 01:23:24 UTC 
State Changed
From-To: open->feedback

Awaiting maintainers feedback (via the GNATS Auto Assign Tool)
Comment 2 VANHULLEBUS Yvan 2007-10-15 15:25:10 UTC 
On Fri, Oct 12, 2007 at 12:23:23AM +0000, Edwin Groothuis wrote:
> Maintainer of security/ipsec-tools,
> 
> Please note that PR ports/117128 has just been submitted.
> 
> If it contains a patch for an upgrade, an enhancement or a bug fix
> you agree on, reply to this email stating that you approve the patch
> and a committer will take care of it.
> 
> The full text of the PR can be found at:
>     http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/117128


Patch is ok for me.



Yvan.

-- 
NETASQ
http://www.netasq.com
Comment 3 Mark Linimon freebsd_committer freebsd_triage 2008-03-03 07:23:16 UTC 
State Changed
From-To: feedback->open

Maintainer approved.
Comment 4 Beech Rintoul freebsd_committer freebsd_triage 2008-07-02 04:30:02 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->beech

I'll take it
Comment 5 dfilter service freebsd_committer freebsd_triage 2008-07-02 05:19:34 UTC 
beech       2008-07-02 04:19:30 UTC

  FreeBSD ports repository

  Modified files:
    security/ipsec-tools/files racoon.sh.in 
  Log:
  - Fix: Have the racoon startup script [optionally] create its required dirs.
  
  PR:             ports/117128
  Submitted by:   John Hein <jhein@timing.com>
  Approved by:    VANHULLEBUS Yvan <vanhu@netasq.com> (maintainer)
  
  Revision  Changes    Path
  1.5       +6 -1      ports/security/ipsec-tools/files/racoon.sh.in
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 6 Beech Rintoul freebsd_committer freebsd_triage 2008-07-02 05:19:48 UTC 
State Changed
From-To: open->closed

Committed, Thanks!