With the patch described in #8079 applied and a /etc/named/ipa-ext.conf file containing an options section e.g.
options
options { allow-recursion { any; }; };
named fails to start with following error message: /etc/named/ipa-ext.conf:17: 'options' redefined near 'options'
/etc/named/ipa-ext.conf:17: 'options' redefined near 'options'
4.8.6 Fedora 31
I'm able to confirm the issue. named.conf cannot have multiple options blocks. The patch 6c27104 is broken by design. I guess the documented override in ipa-ext.conf was not tested.
named.conf
ipa-ext.conf
Proposed fix: Define two override files, one for options and one for general config stanzas like ACLs.
Metadata Update from @cheimes: - Issue priority set to: important - Issue set to the milestone: FreeIPA 4.8.7
Just an idea (maybe a bad one):
Since we have now the possibility to include custom configuration from a file which is not managed by FreeIPA, we could treat the whole named.conf file as a template and recreate it during upgrades. This would make the upgrade code in ipaserver/install/bindinstance.py and ipaserver/install/server/upgarde.py a whole lot simpler.
ipaserver/install/bindinstance.py
ipaserver/install/server/upgarde.py
Created a PR with my idea at https://github.com/freeipa/freeipa/pull/4589
Another report, https://pagure.io/freeipa/issue/8327
master:
ipa-4-8:
Metadata Update from @abbra: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Updates are missing
Metadata Update from @cheimes: - Issue status updated to: Open (was: Closed)
Fixed in https://pagure.io/freeipa/issue/8363
Metadata Update from @cheimes: - Issue close_status updated to: fixed - Issue set to the milestone: None (was: FreeIPA 4.8.7) - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.