[Bug 1895418] Re: systemd-resolved default config for Caching is still "yes"
Launchpad Bug Tracker
1895418 at bugs.launchpad.net
Tue Nov 3 23:38:39 UTC 2020
This bug was fixed in the package systemd - 245.4-4ubuntu3.3
---------------
systemd (245.4-4ubuntu3.3) focal; urgency=medium
[ Rafael David Tinoco ]
* d/p/lp1861941-dont-generate-disk-byuuid-for-bcache-uuid.patch:
Reworded and reintroduced patch to fully explain delta is NOT a fix to
LP: #1861941 if the bcache-tools patch exists, but should be kept anyway
as the change makes sense for a better experience to end user.
(LP: #1861941)
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=f8f64b3b58a04a83b1c426818b9affc41e0bff6c
[ Dan Streetman ]
* d/p/lp1882596-man-fix-some-manvolnum.patch:
- fix some man section references (LP: #1882596)
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=3959ec95eff78d38ec4409807f151572afe83fe9
* d/p/lp1895418-correct-resolved-conf-cache-default.patch:
- fix resolved.conf default Cache= value (LP: #1895418)
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=ebe274a2b01658ee39b372d7033c35209510b028
* d/p/lp1897744-resolve-enable-RES_TRUSTAD-towards-the-127.0.0.53-st.patch:
- add resolv.conf 'trust-ad' option (LP: #1897744)
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=f6acc8c620b80adab7b048352d85e722b5ba8214
* d/t/*:
- Update tests to fix false negatives (LP: #1892358)
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=cee6c31a6caec7888270c9fa8757105ab950ed0c
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=a1c1a2bb0ff27faf84fe94583631dfd0f1f4ed8f
https://git.launchpad.net/~ubuntu-core-dev/ubuntu/+source/systemd/commit/?id=9417ce996766c133c2a33d4102ce1494f3166774
-- Dan Streetman <ddstreet at canonical.com> Thu, 08 Oct 2020 16:14:56
-0400
** Changed in: systemd (Ubuntu Focal)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1895418
Title:
systemd-resolved default config for Caching is still "yes"
Status in systemd package in Ubuntu:
Fix Released
Status in systemd source package in Focal:
Fix Released
Status in systemd source package in Groovy:
Fix Released
Bug description:
[impact]
/etc/systemd/resolved.conf file indicates the default value for
'Cache=' is 'yes', but the actual default is 'no-negative'
[test case]
$ grep Cache /etc/systemd/resolved.conf
#Cache=yes
With the version of the package from -proposed it'll be "#Cache=no-
negative".
[regression potential]
any regression would likely result in a mismatch between the commented
default value of the Cache parameter and the actual build-time default
value, or possibly a problem while systemd-resolved is parsing the
resolved.conf file.
[scope]
this is needed only in focal.
this was changed already in groovy as indicated in comment 1.
bionic and earlier still use 'yes' as the default value of Cache=,
which matches the resolved.conf file.
[original description]
Back in December, the default for systemd-resolved caching in Ubuntu
systemd was changed to "no-negative" from the upstream default "yes"
[0]
In this change, the default value in the resolved.conf file was
missed. As the defaults in this file are commented, the effective
default is still "no-negative", however when viewing the config file,
the commented default "yes" is at odds with the man page
resolved.conf(5), which correctly states the default as "no-negative".
This was an issue for me as I set DNSSEC to "yes", and expected
Caching to also be "yes". Running DNSSEC with the default "no-
negative" Caching is detrimental to performance resolving unsigned
zones, as the non-existence of DNSSEC RRs must be looked up every
time.
The issue with the intersection of DNSSEC and Caching is for upstream,
but the least that needs to be done here is updating the resolved.conf
template with "Caching=no-negative" to match the man page and
behaviour, and perhaps even adding a note to the "DNSSEC=" section of
resolved.conf(5) that Caching should be enabled. Now that I'm looking
at that man page, the default for DNSSEC is also listed as "allow-
downgrade", whereas the default for Ubuntu is "no".
[0] https://git.launchpad.net/~ubuntu-core-
dev/ubuntu/+source/systemd/commit/?id=b42658843a9496d6b6bb68ac159f2a9f0a8ba9db&h
=ubuntu-focal
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1895418/+subscriptions
More information about the foundations-bugs
mailing list