Root hints not checked

iij.psg.com:/etc/unbound# grep root.ca unbound.conf
        root-hints: "root.ca"
iij.psg.com:/etc/unbound# ls -la .
total 40
drwxr-xr-x 2 unbound unbound 512 Apr 11 03:33 ./
drwxr-xr-x 21 root wheel 2560 Apr 11 03:32 ../
-rw-r--r-- 1 unbound unbound 2958 Apr 11 03:20 root.ca
-rw-r--r-- 1 unbound unbound 12705 Apr 11 03:33 unbound.conf
-rw-r--r-- 1 root unbound 12718 Apr 11 03:32 unbound.conf~
-rw-r--r-- 1 unbound unbound 6 Apr 11 03:31 unbound.pid
iij.psg.com:/etc/unbound# unbound-checkconf
[1207884891] unbound-checkconf[27371:0] fatal error: file with
root-hints: "root.ca" not in chrootdir /etc/unbound

same if it is defined as /etc/unbound/root.ca

and i am not running chrooted anyway

randy

Hi Randy,

You are correct. The problem is the check-conf is failing, unbound
itself is happy with both definitions "root.ca" or "/etc/unbound/root.ca".

chroot is enabled by default. you can turn it off with
  chroot: ""
in the config file.

I think my fix will be that:
in the config file you specify files are /my_chroot/bla or as "bla",
with the first being relative to the chroot obviously and the last
relative to the working directory.

Thanks for the report.

Best regards,
~ Wouter

Randy Bush wrote:

hi wouter,

You are correct. The problem is the check-conf is failing, unbound
itself is happy with both definitions "root.ca" or "/etc/unbound/root.ca".

yes, unbound is happy. on two small servers now, more when i have time.
i am trying to get our big nameserver guy to play.

chroot is enabled by default. you can turn it off with
    chroot: ""
in the config file.

I think my fix will be that:
in the config file you specify files are /my_chroot/bla or as "bla",
with the first being relative to the chroot obviously and the last
relative to the working directory.

uh, most places
   foo/bar would be relative to chroot
   /foo/bar would be absolute

randy