[Bug 213599] ports-mgmt/pkg regression: pkg audit -F unable to fetch vuln.xml in a jail

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Tue Oct 18 20:13:23 UTC 2016 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=213599

            Bug ID: 213599
           Summary: ports-mgmt/pkg regression: pkg audit -F unable to
                    fetch vuln.xml in a jail
           Product: Ports & Packages
           Version: Latest
          Hardware: i386
                OS: Any
            Status: New
          Keywords: regression
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: pkg at FreeBSD.org
          Reporter: skh1002 at hotmail.com
          Assignee: pkg at FreeBSD.org
          Keywords: regression
             Flags: maintainer-feedback?(pkg at FreeBSD.org)

On a fully patched FreeBSD 10.3 system with a few jails (also up-to-date),
pkg-1.8.7_3 works as expected. After updating to pkg-1.9.1, it is no longer
possible to update the vulnerability list with 'pkg audit -F' if this command
is issued from a jail. Running it from the host system works as expected.
Force-reinstalling pkg-1.8.7_3 fixes the issue.

This is what happens on the host system:
$ uname -a 
FreeBSD BSD-Server.local 10.3-RELEASE-p7 FreeBSD 10.3-RELEASE-p7 #0: Thu Aug 11
18:38:15 UTC 2016    
root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC  amd64

$ freebsd-version
10.3-RELEASE-p10

$ pkg -v
1.9.1

$ sudo pkg audit -F
Fetching vuln.xml.bz2: 100%  646 KiB 661.1kB/s    00:01    
0 problem(s) in the installed packages found.

This is what happens within a jail:
# uname -a
FreeBSD Test-web.local 10.3-RELEASE-p7 FreeBSD 10.3-RELEASE-p7 #0: Thu Aug 11
18:38:15 UTC 2016    
root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC  amd64

# freebsd-version
10.3-RELEASE-p10

# pkg -v
1.9.1

# pkg audit -F
pkg: http://vuxml.freebsd.org/freebsd/vuln.xml.bz2: No address record
pkg: cannot fetch vulnxml file

# pkg add -f /var/ports/packages/All/pkg-1.8.7_3.txz
[Test-web.local] Installing pkg-1.8.7_3...
package pkg is already installed, forced install
[Test-web.local] Extracting pkg-1.8.7_3: 100%

# pkg -v
1.8.7


# pkg audit -F
[Test-web.local] Fetching vuln.xml.bz2: 100%  646 KiB 661.1kB/s    00:01    
0 problem(s) in the installed packages found.

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-pkg mailing list