Closed d-rez closed 3 months ago
Thanks. I confirmed the issue and am looking into it.
I did a bit of analysis and I think the problem is that in /unbound.sh
the line chown _unbound:_unbound /opt/unbound/etc/unbound/unbound.log && \
should be removed, because the file does not exist and is not needed.
It results in the root.key
not being created and then in unbound failing to start
@iyzana thanks for that. I haven't tried removing that line yet, but I pushed an update a moment ago that appears to fix this. I'm not closing this issue yet until confirmation that everything is working for others as well.
Thanks for the quick fix. My instances seem to be working as expected again.
I'm not sure how you're deploying to docker hub, but the pushed images are working now and the chown for unbound.log is removed from them, even though it is still present in this git repository.
But the change adding the new 1.18.0 features (from https://github.com/MatthewVance/unbound-docker/commit/84088be699f699b889f473120c6c01ecad611d82 in the main repo) is now also gone, from the docker images as well as in this repo.
Can confirm as well. IP address is now assigned as expected. THX.
I'm not sure how you're deploying to docker hub, but the pushed images are working now and the chown for unbound.log is removed from them, even though it is still present in this git repository.
But the change adding the new 1.18.0 features (from MatthewVance/unbound-docker@84088be in the main repo) is now also gone, from the docker images as well as in this repo.
The missing chown for unbound.log in the built image is odd and something I need to correct in the code because the built images should 100% match the code. I built the images using a copy of the repo I had on a Raspberry Pi. I copied the source from the 1.17.1 directory on the Pi, made the version updates, and then built the images. I then did the same steps on another computer that is setup with Git. Unexpectedly, there was a minor difference (the chown step) between the unbound.sh script on my Pi and my other computer. Those should have been in sync. The lesson learned for me is to scp the files from my Pi to my computer with Git to ensure a 100% match (or better yet switch over to GitHub Actions to build the images from the code in the repo).
I removed the 1.18.0 features for now. I'm planning to bring them back in later.
I can also confirm the :latest
is now fixed by f7b72d62a6bc96325510e4fd18d30f40e92c408c and seems to work as expected :)
root@node_name:/opt/unbound# unbound -V
Version 1.19.2
Thanks!
Describe the bug As of the most recent docker version bump from yesterday, [mvance/unbound-rpi:latest] container fails to start with
task non-zero error (1)
. Issue started with the most recent docker containerlatest
tag update.Tested 1.19.2, 1.19.1, 1.19.0, 1.18.0 - none of these work. Same error. Log errors below after redirecting to STDERR:
The old 1.17.1 works fine.
To Reproduce Steps to reproduce the behavior:
remote-control: control-enable: no
[1710134927] unbound[1:0] error: unable to open var/root.key for reading: No such file or directory [1710134927] unbound[1:0] error: error reading auto-trust-anchor-file: var/root.key [1710134927] unbound[1:0] error: validator: error in trustanchors config [1710134927] unbound[1:0] error: validator: could not apply configuration settings. [1710134927] unbound[1:0] fatal error: failed to setup modules [1710134927] unbound[1:0] error: module init for module validator failed