Actions
Bug #7667
closed
Calls to unbound-control are missing configuration path so they fail
Start date:
06/29/2017
Due date:
% Done:
100%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
Description
Calls to unbound-control inside do_as_unbound_user() in /etc/inc/unbound.inc do not pass the configuration file location. As a consequence, they assume the wrong location by default and fail.
For example, this happens using the same syntax as currently in the file:
: echo '/usr/local/sbin/unbound-control reload' | /usr/bin/su -m unbound
[1498753753] unbound-control[59930:0] warning: control-enable is 'no' in the config file.
error: Error setting up SSL_CTX client key and cert
34386209288:error:02001002:system library:fopen:No such file or directory:/builder/pfsense-234/tmp/FreeBSD-src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/usr/local/etc/unbound/unbound_control.pem','r')
34386209288:error:20074002:BIO routines:FILE_CTRL:system lib:/builder/pfsense-234/tmp/FreeBSD-src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34386209288:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:/builder/pfsense-234/tmp/FreeBSD-src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
Passing the configuration file allows it to work:
: echo '/usr/local/sbin/unbound-control -c /var/unbound/unbound.conf reload' | /usr/bin/su -m unbound ok
Updated by Jim Pingle over 7 years ago
- Status changed from Confirmed to Feedback
- % Done changed from 0 to 100
Applied in changeset 8a0aa42c197361ebb82387e5bdc8378e5440837f.
Actions