Opened 10 years ago
Closed 10 years ago
#43881 closed defect (fixed)
unbound: port fails to create/update ${prefix}/etc/unbound/root.key
| Reported by: | dbevans (David B. Evans) | Owned by: | nerdling (Jeremy Lavergne) |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | Cc: | deric@…, cooljeanius (Eric Gallager) | |
| Port: | unbound |
Description
File ${prefix}/etc/unbound/root.key is necessary for proper DNSSEC functionality both for the unbound daemon and for other ports that might use its libraries (e.g. gnutls, see #42728). Normally the file is created or updated if necessary with the command
unbound-anchor -a "${prefix}/etc/unbound/root.key"
This should probably be done in post-activate to create a default copy, and in the Start section of
${prefix}/etc/LaunchDaemons/org.macports.unbound/unbound.wrapper
to possibly update the file before starting the daemon.
See 'man unbound-anchor' for details and suggested usage.
Change History (4)
comment:1 Changed 10 years ago by cooljeanius (Eric Gallager)
comment:3 Changed 10 years ago by nerdling (Jeremy Lavergne)
| Status: | new → assigned |
|---|
comment:4 Changed 10 years ago by nerdling (Jeremy Lavergne)
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Updated in r120660.
Unbound is configured to look for and update the key at ${prefix}/var/run/unbound/root.key.
Note: See
TracTickets for help on using
tickets.
Or at least in the meantime have unbound tell the user about this via
port notes unbound