From nobody Fri Mar 03 14:02:15 2023 X-Original-To: dev-commits-src-all@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4PSqRN5btFz3vxpK; Fri, 3 Mar 2023 14:02:24 +0000 (UTC) (envelope-from freebsd@gndrsh.dnsmgr.net) Received: from gndrsh.dnsmgr.net (br1.CN84in.dnsmgr.net [69.59.192.140]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4PSqRN33C4z4Q3g; Fri, 3 Mar 2023 14:02:24 +0000 (UTC) (envelope-from freebsd@gndrsh.dnsmgr.net) Authentication-Results: mx1.freebsd.org; none Received: from gndrsh.dnsmgr.net (localhost [127.0.0.1]) by gndrsh.dnsmgr.net (8.13.3/8.13.3) with ESMTP id 323E2GMZ066413; Fri, 3 Mar 2023 06:02:16 -0800 (PST) (envelope-from freebsd@gndrsh.dnsmgr.net) Received: (from freebsd@localhost) by gndrsh.dnsmgr.net (8.13.3/8.13.3/Submit) id 323E2FEN066412; Fri, 3 Mar 2023 06:02:15 -0800 (PST) (envelope-from freebsd) From: "Rodney W. Grimes" Message-Id: <202303031402.323E2FEN066412@gndrsh.dnsmgr.net> Subject: Re: git: 1d577bedbae8 - main - unbound: Fix config file path In-Reply-To: <86r0u6rvrl.fsf@ltc.des.no> To: =?UTF-8?Q?Dag-Erling_Sm=C3=B8rgrav?= Date: Fri, 3 Mar 2023 06:02:15 -0800 (PST) CC: "Rodney W. Grimes" , Cy Schubert , rgrimes@freebsd.org, Juraj Lutter , src-committers@freebsd.org, dev-commits-src-all@freebsd.org, dev-commits-src-main@freebsd.org Reply-To: rgrimes@freebsd.org X-Mailer: ELM [version 2.4ME+ PL121h (25)] List-Id: Commit messages for all branches of the src repository List-Archive: https://lists.freebsd.org/archives/dev-commits-src-all List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-src-all@freebsd.org X-BeenThere: dev-commits-src-all@freebsd.org MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII X-Rspamd-Queue-Id: 4PSqRN33C4z4Q3g X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:13868, ipnet:69.59.192.0/19, country:US] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-ThisMailContainsUnwantedMimeParts: N [ Charset UTF-8 unsupported, converting... ] > "Rodney W. Grimes" writes: > > I've read a few of the linux how to's on running unbound chrooted and > > it leads me to belive that /etc/unbound/unbound.conf is the correct > > value of the path to the config file. > > > > I'll also spend some ENOTIME idle cycles looking closer at what has > > happened here. My gut says that if unbound is running chroot to > > /var/unbound then the config file should live in > > /var/unbound/etc/unbound/unbound.conf > > No. Unbound knows it's chrooted, knows _where_ it's chrooted, and > adjusts config paths accordingly, cf. e4c53d3bf00a. We disagree then, rather strongly, about this issue. It should not know it is chrooted, and it especially should NOT adjust paths based on that fact. That is a POLA, and it is also hard coding POLICY into an executable. Almost certainly any path mangling done because it is chroot is going to break if I chroot it to some place very different. > > Also note that the local-unbound configuration is not meant to be > user-serviceable. That, again IMHO, is a rather SIC stance to take for a caching DNS server, especially one as flexable as unbound. > > DES > -- > Dag-Erling Sm?rgrav - des@FreeBSD.org > > -- Rod Grimes rgrimes@freebsd.org