git: de3faa85d8f9 - main - local-unbound-setup: Set so-sndbuf to 0
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Wed, 08 Oct 2025 16:46:36 UTC
The branch main has been updated by des:
URL: https://cgit.FreeBSD.org/src/commit/?id=de3faa85d8f99d260cbfa6242dd8e4ece693e4f8
commit de3faa85d8f99d260cbfa6242dd8e4ece693e4f8
Author: Dag-Erling Smørgrav <des@FreeBSD.org>
AuthorDate: 2025-10-08 16:45:02 +0000
Commit: Dag-Erling Smørgrav <des@FreeBSD.org>
CommitDate: 2025-10-08 16:45:18 +0000
local-unbound-setup: Set so-sndbuf to 0
Without this setting, Unbound 1.24.0 and newer will attempt to set the
socket buffer size to 4 MB to mitigate issues that mostly affect servers
with large numbers of clients on local networks, which is not a scenario
local-unbound is intended for. This is not only a waste of resources,
it can also fail, resulting in a warning message on daemon startup.
Fixes: b2efd602aea8 ("unbound: Vendor import 1.24.0")
Reviewed by: jlduran, cy
Differential Revision: https://reviews.freebsd.org/D52977
---
usr.sbin/unbound/setup/local-unbound-setup.sh | 1 +
1 file changed, 1 insertion(+)
diff --git a/usr.sbin/unbound/setup/local-unbound-setup.sh b/usr.sbin/unbound/setup/local-unbound-setup.sh
index d57d74952fc7..25cfef48b6f0 100755
--- a/usr.sbin/unbound/setup/local-unbound-setup.sh
+++ b/usr.sbin/unbound/setup/local-unbound-setup.sh
@@ -261,6 +261,7 @@ gen_unbound_conf() {
if [ "${use_tls}" = "yes" ] ; then
echo " tls-cert-bundle: /etc/ssl/cert.pem"
fi
+ echo " so-sndbuf: 0"
echo ""
if [ -f "${forward_conf}" ] ; then
echo "include: ${forward_conf}"