First draft of chroot implementation for Debian

- RHEL chroot code has been moved into a bind::chroot::package class

- Debian family (and probably other families) can use the
  `bind::chroot::manual` class to enable chroot for bind using the method
  described here: https://wiki.debian.org/Bind9#Bind_Chroot
This commit is contained in:
Cédric Defortis
2017-08-16 11:19:48 +02:00
committed by Cedric DEFORTIS
parent bcaafc05e1
commit 44bb1b0e0e
14 changed files with 194 additions and 76 deletions
+1
View File
@@ -1,6 +1,7 @@
---
bind::defaults::supported: false
bind::defaults::chroot_supported: false
bind::defaults::chroot_class: ''
bind::defaults::random_device: '/dev/random'
bind::forwarders: ''
+1
View File
@@ -0,0 +1 @@
bind::defaults::chroot_supported: true
+1
View File
@@ -0,0 +1 @@
bind::defaults::chroot_supported: true
+3 -1
View File
@@ -12,5 +12,7 @@ bind::defaults::logdir: '/var/log/bind'
bind::defaults::default_zones_include: '/etc/bind/named.conf.default-zones'
bind::defaults::isc_bind_keys: '/etc/bind/bind.keys'
bind::defaults::chroot_dir: '/var/bind9/chroot'
bind::defaults::chroot_class: bind::chroot::manual
bind::updater::keydir: '/etc/bind/keys'
bind::defaults::bind_chroot_dir: '/var/lib/named/chroot'
+4 -3
View File
@@ -14,8 +14,9 @@ bind::defaults::default_zones_include: '/etc/named.default-zones.conf'
bind::defaults::default_zones_source: 'puppet:///modules/bind/RedHat/named.default-zones.conf'
bind::defaults::isc_bind_keys: '/etc/named.iscdlv.key'
bind::defaults::bind_chroot_package: 'bind-chroot'
bind::defaults::bind_chroot_service: 'named-chroot'
bind::defaults::bind_chroot_dir: '/var/named/chroot'
# XXX bind::defaults::chroot_package: 'bind-chroot'
# XXX bind::defaults::chroot_service: 'named-chroot'
# XXX bind::defaults::chroot_dir: '/var/named/chroot'
bind::defaults::chroot_class: bind::chroot::package
bind::updater::keydir: '/etc/named/keys'