Bug#959996: src:systemd: d/rules disables resolved DNSSEC on "stable Debian", but checks for stretch

наб nabijaczleweli at gmail.com
Fri May 8 05:12:16 BST 2020


Package: src:systemd
Version: 245.5-2
Severity: normal

Dear Maintainer,

Around line 88, d/rules says this (also present on Salsa @ b9498a5):

-- >8 --
# resolved's DNSSEC support is still not mature enough, don't enable it by
# default on stable Debian or any Ubuntu releases
CONFFLAGS += $(shell grep -qE 'stretch|ubuntu' /etc/os-release && echo -Ddefault-dnssec=no)
-- >8 --

I don't know if DNSSEC support matured and this isn't needed anymore
anyway, but going by the comment this was probably overlooked
at some point; but now I looked at it, and here we are.

Best,
наб


-- System Information:
Debian Release: 10.3
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.19.0-8-amd64 (SMP w/24 CPU cores)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_FIRMWARE_WORKAROUND, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20200508/93a0b04d/attachment.sig>


More information about the Pkg-systemd-maintainers mailing list