From: W.C.A. Wijngaards Date: Wed, 17 Jun 2026 13:20:22 +0000 (+0200) Subject: - Fix that unbound-control auth_zone_reload stops the X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=c9715724ecb894b3e105596a6f2b8bf2f2f5ebde;p=thirdparty%2Funbound.git - Fix that unbound-control auth_zone_reload stops the server answering from the zone after a failure to read. Thanks to Qifan Zhang, Palo Alto Networks, for the report. --- diff --git a/daemon/remote.c b/daemon/remote.c index aa05e85e1..eeea93833 100644 --- a/daemon/remote.c +++ b/daemon/remote.c @@ -3225,6 +3225,9 @@ do_auth_zone_reload(RES* ssl, struct worker* worker, char* arg) return; } if(!auth_zone_read_zonefile(z, worker->env.cfg)) { + /* The old tree was already cleared. Do not answer from the + * failed load. */ + z->zone_expired = 1; auth_zone_clear_data(z); lock_rw_unlock(&z->lock); if(xfr) { diff --git a/doc/Changelog b/doc/Changelog index 37762f6ee..dced5c76c 100644 --- a/doc/Changelog +++ b/doc/Changelog @@ -11,6 +11,9 @@ not create an empty node and does not cause an infinite loop. Thanks to Qifan Zhang, Palo Alto Networks, for the report. + - Fix that unbound-control auth_zone_reload stops the + server answering from the zone after a failure to read. + Thanks to Qifan Zhang, Palo Alto Networks, for the report. 16 June 2026: Wouter - Fix to disallow $INCLUDE for secondary zones. Start up