From owner-svn-src-all@FreeBSD.ORG Mon Sep 23 17:56:05 2013 Return-Path: Delivered-To: svn-src-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id D73681AF; Mon, 23 Sep 2013 17:56:05 +0000 (UTC) (envelope-from des@des.no) Received: from smtp.des.no (smtp.des.no [194.63.250.102]) by mx1.freebsd.org (Postfix) with ESMTP id 92CCB2E20; Mon, 23 Sep 2013 17:56:05 +0000 (UTC) Received: from nine.des.no (smtp.des.no [194.63.250.102]) by smtp-int.des.no (Postfix) with ESMTP id B148F6F54; Mon, 23 Sep 2013 17:56:04 +0000 (UTC) Received: by nine.des.no (Postfix, from userid 1001) id 9C384732; Mon, 23 Sep 2013 19:55:36 +0200 (CEST) From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= To: Bryan Drewery Subject: Re: svn commit: r255809 - in head: etc etc/defaults etc/rc.d share/man/man5 share/man/man8 tools/build/mk usr.sbin/unbound usr.sbin/unbound/local-setup References: <201309230436.r8N4apZZ019707@svn.freebsd.org> <52404344.2080002@FreeBSD.org> <86r4cfwpby.fsf@nine.des.no> Date: Mon, 23 Sep 2013 19:55:36 +0200 In-Reply-To: <86r4cfwpby.fsf@nine.des.no> ("Dag-Erling =?utf-8?Q?Sm=C3=B8r?= =?utf-8?Q?grav=22's?= message of "Mon, 23 Sep 2013 17:05:37 +0200") Message-ID: <86ioxrjucn.fsf@nine.des.no> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Sep 2013 17:56:05 -0000 Dag-Erling Sm=C3=B8rgrav writes: > Bryan Drewery writes: > > Why not add a link now in etc/Makefile? This would be surprising to not > > find unbound.conf in /etc/ > Yep, I'm going to do that, but I need to figure out how not to break > installworld for people who already have /etc/unbound (since it's > currently in BSD.root.mtree). To elaborate: my original plan was to have the configuration in /etc/unbound and things like the root anchor and unbound-control keys (which I still haven't hooked up) in /var/unbound, which is why /var/unbound was originally 0750 (it is now 0755). Unfortunately, this doesn't work, because all of this needs to be inside the chroot, and unbound refuses to start unless it is. The only alternative is to not chroot it, which is a questionable decision, to put it mildly. So there's no escaping placing everything either in /etc/unbound or in /var/unbound. I'm not sure which poison I prefer. I also need to change the rcorder so unbound starts much earlier. I should probably just have NETWORKING require local_unbound require netif, and then try to figure out whether local_unbound requires resolv or the other way around, since local_unbound plays reindeer games with resolvconf on first start. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no