Do not keep keygen running, check certs each time
Rely on condition of unbound-keygen service. If it does stop after generating them, then it will recreate also after restart later. That might be the case if someone removes these certificates.
This commit is contained in:
parent
2c00b91a49
commit
9cab78fef5
@ -13,7 +13,6 @@ Type=oneshot
|
|||||||
Group=unbound
|
Group=unbound
|
||||||
ExecStart=/usr/sbin/unbound-control-setup -d /etc/unbound/
|
ExecStart=/usr/sbin/unbound-control-setup -d /etc/unbound/
|
||||||
ExecStart=/sbin/restorecon /etc/unbound/*
|
ExecStart=/sbin/restorecon /etc/unbound/*
|
||||||
RemainAfterExit=yes
|
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=multi-user.target
|
WantedBy=multi-user.target
|
||||||
|
@ -30,7 +30,7 @@
|
|||||||
Summary: Validating, recursive, and caching DNS(SEC) resolver
|
Summary: Validating, recursive, and caching DNS(SEC) resolver
|
||||||
Name: unbound
|
Name: unbound
|
||||||
Version: 1.16.0
|
Version: 1.16.0
|
||||||
Release: 1%{?extra_version:.%{extra_version}}%{?dist}
|
Release: 4%{?extra_version:.%{extra_version}}%{?dist}
|
||||||
License: BSD
|
License: BSD
|
||||||
Url: https://nlnetlabs.nl/projects/unbound/
|
Url: https://nlnetlabs.nl/projects/unbound/
|
||||||
Source: https://nlnetlabs.nl/downloads/%{name}/%{name}-%{version}%{?extra_version}.tar.gz
|
Source: https://nlnetlabs.nl/downloads/%{name}/%{name}-%{version}%{?extra_version}.tar.gz
|
||||||
@ -446,6 +446,9 @@ popd
|
|||||||
%attr(0644,root,root) %config %{_sysconfdir}/%{name}/root.key
|
%attr(0644,root,root) %config %{_sysconfdir}/%{name}/root.key
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Tue Jun 07 2022 Petr Menšík <pemensik@redhat.com> - 1.16.0-4
|
||||||
|
- Restart keygen service before every unbound start
|
||||||
|
|
||||||
* Sat Jun 04 2022 Petr Menšík <pemensik@redhat.com> - 1.16.0-1
|
* Sat Jun 04 2022 Petr Menšík <pemensik@redhat.com> - 1.16.0-1
|
||||||
- Update to 1.16.0
|
- Update to 1.16.0
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user