Your message dated Wed, 16 Jan 2019 06:04:07 +0000
with message-id <e1gjej5-0002zv...@fasolo.debian.org>
and subject line Bug#919256: fixed in dnssec-trigger 0.17+repack-2
has caused the Debian Bug report #919256,
regarding dnssec-trigger: Failed to upgrade: installed dnssec-trigger package
post-installation script subprocess returned error exit status 1
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
919256: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=919256
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: dnssec-trigger
Version: 0.17+repack-1
Severity: serious
Setting up dnssec-trigger (0.17+repack-1) ...
Job for dnssec-triggerd.service failed because the control process exited with
error code.
See "systemctl status dnssec-triggerd.service" and "journalctl -xe" for details.
invoke-rc.d: initscript dnssec-triggerd, action "restart" failed.
# dnssec-triggerd.service - Reconfigure local DNSSEC resolver on connectivity
changes
Loaded: loaded (/lib/systemd/system/dnssec-triggerd.service; enabled; vendor
preset: enabled)
Active: activating (auto-restart) (Result: exit-code) since Mon 2019-01-14
07:20:18 CET; 16ms ago
Process: 29431 ExecStartPre=/usr/lib/dnssec-trigger/dnssec-trigger-script
--prepare (code=exited, status=0/SUCCESS)
Process: 29438 ExecStart=/usr/sbin/dnssec-triggerd -d (code=exited,
status=1/FAILURE)
Process: 29439 ExecStartPost=/usr/lib/dnssec-trigger/dnssec-trigger-script
--update_all (code=exited, status=0/SUCCESS)
Process: 29443 ExecStopPost=/usr/lib/dnssec-trigger/dnssec-trigger-script
--cleanup (code=exited, status=1/FAILURE)
Main PID: 29438 (code=exited, status=1/FAILURE)
dpkg: error processing package dnssec-trigger (--configure):
installed dnssec-trigger package post-installation script subprocess returned
error exit status 1
Processing triggers for libc-bin (2.28-5) ...
Errors were encountered while processing:
dnssec-trigger
I said "no" to the new dnssec-trigger.conf, but except comments the only
difference is the search domain setting:
$ diff /etc/dnssec-trigger/dnssec-trigger.conf
/etc/dnssec-trigger/dnssec-trigger.conf.dpkg-dist
28c28
< search: "deuxchevaux.org noone.org ethz.ch debian.org"
---
> # search: ""
51c51
< # check-updates:
---
> # check-updates: no
65a66
> # These relay incoming DNS traffic on the other port numbers to the usual DNS
76a78,86
>
> # Use VPN servers for all traffic
> # use-vpn-forwarders: no
>
> # Forward RFC 1918 private addresses to global forwarders
> # use-private-addresses: yes
>
> # Add domains provided by VPN connections into Unbound forward zones
> # add-wifi-provided-zones: no
The syslog shows again this:
Jan 14 07:18:59 c-cactus2 dnssec-triggerd[22039]: Jan 14 07:18:59
dnssec-triggerd[22039] error: Error in SSL_CTX use_certificate_file crypto
error:140AB18F:SSL routines:SSL_CTX_use_certificate:ee key too small
So maybe https://bugs.debian.org/898969 is not fully fixed yet?
-- System Information:
Debian Release: buster/sid
APT prefers unstable
APT policy: (990, 'unstable'), (980, 'unstable-debug'), (600, 'testing'),
(111, 'buildd-unstable'), (111, 'buildd-experimental'), (110, 'experimental'),
(105, 'experimental-debug')
Architecture: amd64 (x86_64)
Kernel: Linux 4.18.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages dnssec-trigger depends on:
ii gir1.2-nm-1.0 1.14.4-4
ii libc6 2.28-5
ii libgdk-pixbuf2.0-0 2.38.0+dfsg-7
ii libglib2.0-0 2.58.2-3
ii libgtk2.0-0 2.24.32-3
ii libldns2 1.7.0-3.1+b1
ii libssl1.1 1.1.1a-1
ii python3 3.7.1-3
ii python3-gi 3.30.4-1
ii python3-lockfile 1:0.12.2-2
ii sensible-utils 0.0.12
ii unbound 1.8.1-1+b1
dnssec-trigger recommends no packages.
dnssec-trigger suggests no packages.
-- Configuration Files:
/etc/dnssec-trigger/dnssec-trigger.conf changed:
search: "deuxchevaux.org noone.org ethz.ch debian.org"
url: "http://ster.nlnetlabs.nl/hotspot.txt OK"
url: "http://fedoraproject.org/static/hotspot.txt OK"
tcp80: 185.49.140.67
tcp80: 2a04:b900::10:0:0:67
ssl443: 185.49.140.67
7E:CF:B4:BE:B9:9A:56:0D:F7:3B:40:51:A4:78:E6:A6:FD:66:0F:10:58:DC:A8:2E:C0:43:D4:77:5A:71:8A:CF
ssl443: 2a04:b900::10:0:0:67
7E:CF:B4:BE:B9:9A:56:0D:F7:3B:40:51:A4:78:E6:A6:FD:66:0F:10:58:DC:A8:2E:C0:43:D4:77:5A:71:8A:CF
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: dnssec-trigger
Source-Version: 0.17+repack-2
We believe that the bug you reported is fixed in the latest version of
dnssec-trigger, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 919...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Diane Trout <di...@ghic.org> (supplier of updated dnssec-trigger package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 15 Jan 2019 21:47:08 -0800
Source: dnssec-trigger
Binary: dnssec-trigger
Architecture: source
Version: 0.17+repack-2
Distribution: unstable
Urgency: medium
Maintainer: dnssec-trigger packagers <dnssec-trig...@packages.debian.org>
Changed-By: Diane Trout <di...@ghic.org>
Description:
dnssec-trigger - reconfiguration tool to make DNSSEC work
Closes: 919256
Changes:
dnssec-trigger (0.17+repack-2) unstable; urgency=medium
.
* Test that we only create files in /etc/dnssec-trigger
* Rename run-dhcp-test to test-install-paths
* Use keydir macro to fix installation location of configuration files
* fix dont-delete-unknown-names.patch
* Fix url, we shouldn't point to the edit page for a bug forward
* Add add-null-to-end-of-string-list.patch (Closes: 919256)
Checksums-Sha1:
dc58631fe9cd09fd616f6c6e429e1fe3ca337a7b 2330 dnssec-trigger_0.17+repack-2.dsc
9282a781298e436fa505327a33daafd75ce00ea4 14976
dnssec-trigger_0.17+repack-2.debian.tar.xz
bcb3e488f7c24af91cdc7b3ee5f5241b8774dc73 11578
dnssec-trigger_0.17+repack-2_source.buildinfo
Checksums-Sha256:
8e656c100570ab5e993bfb47fe7e3d83dea360ea35bcf2a3883520add72f573a 2330
dnssec-trigger_0.17+repack-2.dsc
251a535f193aa8a7dada57dda083d0ee8ac6040c75ace0faa94467117c920a58 14976
dnssec-trigger_0.17+repack-2.debian.tar.xz
7c7d26f11b4cd79657b665130f221e70a8f0e35ce70d67e409c31ff397eefca1 11578
dnssec-trigger_0.17+repack-2_source.buildinfo
Files:
8601704b1fb49b5fa2b77fe62b670fea 2330 net optional
dnssec-trigger_0.17+repack-2.dsc
b9c19fcd08f13182d66278e46cb2e7e2 14976 net optional
dnssec-trigger_0.17+repack-2.debian.tar.xz
ecfb798712d68649f39c4886a3520a96 11578 net optional
dnssec-trigger_0.17+repack-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=PHnD
-----END PGP SIGNATURE-----
--- End Message ---
