From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH] Stop unbound-dhcp-leases-bridge from continually
 restarting unbound
Date: Sat, 27 Apr 2024 10:35:28 +0200
Message-ID: <AAF744F1-6507-4406-8F2D-2423DE2444BC@ipfire.org>
In-Reply-To: <0c8b13c4-ed78-498b-8250-2d2a98f2cea0@howitts.co.uk>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============8390314327840992578=="
List-Id: <development.lists.ipfire.org>

--===============8390314327840992578==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hello Nick,

> On 26 Apr 2024, at 17:48, Nick Howitt <nick(a)howitts.co.uk> wrote:
>=20
>=20
>=20
> On 26/04/2024 16:12, Michael Tremer wrote:
>> Hello Nick,
>>=20
>>=20
>>> On 25 Apr 2024, at 13:43, Nick Howitt <nick(a)howitts.co.uk> wrote:
>>>=20
>>> Please can I bump this again to request a review of my patch submitted on=
 28th March? Thanks, Nick.
>>>=20
>> It is a little bit difficult to test your proposed changes if testers have=
 to copy and paste them out of an email.
> Confused. I was told I had to submit the diff in an email with [PATCH] in t=
he title and not to attach a file. Please can you tell me how I should be ope=
rating?

No worries, we are going to sort this out.

So the first email in the thread was a correct patch. It was just the patch i=
n the format that Git uses and it was properly parsed by Patchwork. Later in =
the same thread, the patch was just copied and pasted which was impossible fo=
r Patchwork to pick up. There is nothing wrong with using bits of code in the=
 conversation, but it would have been nice to have the final version submitte=
d once again.

>> I have just submitted a patch set to this list that breaks down all the ch=
anges that you proposed and I cleaned up the code so that we can use the file=
cmp function without any extra steps. We can simply jump out of the write fun=
ction and return False to prevent Unbound being reloaded.
> I thought you didn't want me to use filecmp and pushed me to use your file =
compare routine.

Yeah, I would have preferred that too, but I thought using the module might b=
e quicker now.

>> We will also avoid replacing the file all the time as that causes lots of =
unnecessary disk I/O. I am not saying it makes a significant difference, but =
flash has a limited write count that we are still wasting.
> OK, but my changes were no worse than before, either doing a delete or rena=
me whereas before it always did a rename. The "unnecessary I/O" was already t=
here.
>>=20
>> Please review and you if you are happy, please add the appropriate Git tag.
> Sorry but I don't know what you mean by "adding the appropriate Git tag". I=
 am only using Git locally and have no repo access.

  https://www.ipfire.org/docs/devel/git/tags

> How can I pull your changes? Otherwise I'll need to patch my set up manuall=
y.

You can apply the patch to your local repository using =E2=80=9Cgit am=E2=80=
=9D:

  https://git-scm.com/docs/git-am

> I also have another problem. I have temporarily had to remove my IPF gatewa=
y for a business reason and don't know when I'll be able to add it back in. I=
'll have to see if I can insert it in my LAN somehow. At the same time it is =
also running Jon's mods which I'll have to undo.
>=20
> With respect to Jon's mods, I've asked a couple of times on bugzilla, but i=
s there any point in his routine maintaining /etc/unbound/dhcp-leases.conf. A=
s far as I see the file is only read once when unbound starts, so it only has=
 to be valid when unbound starts and not at any other point in time. To this =
effect he can remove the file maintenance and I attached a modified copy unbo=
und-dhcp-leases-bridge to his repo which generates a new dhcp-leases.conf and=
 exits, removing all the daemonising bit and the inode watcher. This file can=
 be run as part of the unbound init routine just before the line that actuall=
y starts or reloads unbound. It also has the advantage of cutting down a load=
 of disk I/O, which is important as you've just pointed out.

I don=E2=80=99t think that we can fully remove the daemon part, because I don=
=E2=80=99t think that there is a way to get a script (shell or otherwise) fas=
t enough to perform the job. I also think that we benefit a lot from keeping =
some state in memory, whereas the script will have to parse the old file firs=
t, generate a new file and then compare the result. That will take a long tim=
e.

Do we needed the leases file generated at startup? Yes, I think so, too. DNS =
is quite essential for the network and for local services to be able to start=
. So it has to come up very early. If it comes up with proper configuration w=
e avoid any other problems where hosts might resolve names too early and get =
a different result compared to a couple of seconds later when the zone is ful=
ly initialised.

So all in all, I think the route I would most likely look at is changing the =
daemon to open a socket. We write minimal scripts which are called by dhcpd t=
hat simply pipe their data into the socket which the daemon will then parse. =
With all available leases in memory already, we can check if a lease has chan=
ged or if it has been renewed without any further changes. If nothing has cha=
nged, we don=E2=80=99t need to do anything. In case of a change, we will have=
 to write the file again and have Unbound reload, or we even call unbound-con=
trol and make the one change without a reload. Doing that in the daemon shoul=
d give us more flexibility and we avoid any performance penalties as the daem=
on could run multiple commands concurrently which dhcpd can=E2=80=99t do.

> Also on his patches, I had a significantly faster way of determining the do=
main name (in bash) and he and I were looking for your feedback on if we'd be=
 allowed to use it.

Anything is allowed. It just has to be fast. And for that, I believe, calling=
 any other binary will be a problem.

-Michael

>=20
> Regards,
>=20
> Nick
>>=20
>> Best,
>> -Michael
>>=20
>>=20
>>> On 10/04/2024 12:04, Nick Howitt wrote:
>>>=20
>>>> Bump
>>>>=20
>>>> On 28/03/2024 17:25, Nick Howitt wrote:
>>>>=20
>>>>> Next version.=20
>>>>>=20
>>>>> On 28/03/2024 10:41, Michael Tremer wrote:
>>>>>=20
>>>>>> Hello,=20
>>>>>>=20
>>>>>>=20
>>>>>>> On 27 Mar 2024, at 15:28, Nick Howitt <nick(a)howitts.co.uk> wrote:=20
>>>>>>>=20
>>>>>>>=20
>>>>>>>=20
>>>>>>> On 26/03/2024 11:10, Michael Tremer wrote:
>>>>>>>=20
>>>>>>>>=20
>>>>>>>>=20
>>>>>>>>> On 25 Mar 2024, at 13:11, Nick Howitt <nick(a)howitts.co.uk> wrote:=
=20
>>>>>>>>>=20
>>>>>>>>>=20
>>>>>>>>>=20
>>>>>>>>> On 25/03/2024 11:31, Michael Tremer wrote:
>>>>>>>>>=20
>>>>>>>>>> Hello,=20
>>>>>>>>>> I don=E2=80=99t think that the risk is very high, but I would acco=
unt for this problem.=20
>>>>>>>>>> With my proposed changes from my previous email this should not be=
 a large problem at all. When opening /etc/unbound/dhcp-leases.conf with mode=
 =E2=80=9Cr+=E2=80=9D you can catch the Exception and skip the comparison and=
 open the file again with =E2=80=9Cw=E2=80=9D.
>>>>>>>>>>=20
>>>>>>>>>>> On 25 Mar 2024, at 10:10, Nick Howitt <nick(a)howitts.co.uk> wrot=
e:=20
>>>>>>>>>>>=20
>>>>>>>>>>> If there is a risk that the /etc/unbound/dhcp-leases.conf does no=
t exist, for example on a clean install (I don't know), the filecmp.cmp line =
needs to be wrapped in a try...except to stop it blowing up:=20
>>>>>>>>>>>=20
>>>>>>>>>>> try:=20
>>>>>>>>>>> RequireUnboundReload =3D not filecmp.cmp(f.name, self.path, shall=
ow=3DFalse)=20
>>>>>>>>>>> except:=20
>>>>>>>>>>> RequireUnboundReload =3D True
>>>>>>>>>>>=20
>>>>>>>>>> I generally don=E2=80=99t like blanco exception catches. You will =
never know about the daemons that you are hiding.
>>>>>>>>>>=20
>>>>>>>>>>> This will force the file to be to be generated, even if it is onl=
y copying in a blank temp file, and unbound will restart. It will only ever h=
appen once.=20
>>>>>>>>>>>=20
>>>>>>>>>>>=20
>>>>>>>>>>> On 24/03/2024 15:49, Nick Howitt wrote:
>>>>>>>>>>>=20
>>>>>>>>>>>> Hi all,=20
>>>>>>>>>>>> **** This is a repost of an email incorrectly submitted. ****=20
>>>>>>>>>>>> Please bear with me as I am new to IPFire and not at all used to=
 this style of development, so any guidance would be appreciated.=20
>>>>>>>>>>>> There is a bug, https://bugzilla.ipfire.org/show_bug.cgi?id=3D13=
254, where unbound-dhcp-leases-bridge restarts unbound a lot when it is total=
ly unnecessary. It appears to be because when a lease is renewed, the script =
gets triggered, created a new /etc/unbound/dhcp-leases.conf then restarts Unb=
ound to read the file. Generally this seems to be unnecessary as, with a rene=
wed lease, the old and new /etc/unbound/dhcp-leases.conf files are the same. =
With 5 leases in that file (one for a machine not active) I am getting 3-4 re=
starts an hour of Unbound when I have a min/max lease time of 60/120min.=20
>>>>>>>>>>>> Looking at the code, it is fairly easy to fix. The current code =
creates a temp file then copies it into place then restarts unbound. All I am=
 doing is doing a file comparison before the copy and skipping the restart if=
 the files are the same.=20
>>>>>>>>>>>> There were a couple of gotchas because setting the file attribut=
es and copying the file were done inside the "with" block for generating the =
temporary file. This meant a file comparison always returned False as the tem=
p file was still open and so never the same is the old file.=20
>>>>>>>>>>>> I moved those two statements outside the "with". This forced me =
to change the fchmod to chmod.=20
>>>>>>>>>>>> It could be argued that the file copy should not be done if the =
files are not different, but it would take an extra "if" and you'd have to re=
member to delete the temp file. If required, I can make that change.=20
>>>>>>>>>>>> Also, one small thing I noticed once is that the old and new dhc=
p-leases.conf files could occasionally contain the same leases but in a diffe=
rent order. I have been unable to reproduce, but to sidestep it, instead of s=
tepping through the leases variable directly, I sort it and step through that=
. It should make the resulting file completely deterministic and make the fil=
e comparison more effective.=20
>>>>>>>>>>>> My patch is:=20
>>>>>>>>>>>> From 73873d4944944a2f02317a73074a6894726f36f7 Mon Sep 17 00:00:0=
0 2001=20
>>>>>>>>>>>> From: Nick Howitt <nick(a)howitts.co.uk>=20
>>>>>>>>>>>> Date: Sun, 24 Mar 2024 15:17:19 +0000=20
>>>>>>>>>>>> Subject: [PATCH] Stop unbound-dhcp-leases-bridge from restarting=
 unbound every=20
>>>>>>>>>>>> time it write dhcp-leases.conf as it is very often unchanged and=
 does not=20
>>>>>>>>>>>> require a restart.=20
>>>>>>>>>>>> ---=20
>>>>>>>>>>>> config/unbound/unbound-dhcp-leases-bridge | 28 +++++++++++++++--=
------=20
>>>>>>>>>>>> 1 file changed, 19 insertions(+), 9 deletions(-)=20
>>>>>>>>>>>> diff --git a/config/unbound/unbound-dhcp-leases-bridge b/config/=
unbound/unbound-dhcp-leases-bridge=20
>>>>>>>>>>>> index e9f022aff..d22772066 100644=20
>>>>>>>>>>>> --- a/config/unbound/unbound-dhcp-leases-bridge=20
>>>>>>>>>>>> +++ b/config/unbound/unbound-dhcp-leases-bridge=20
>>>>>>>>>>>> @@ -22,6 +22,7 @@=20
>>>>>>>>>>>> import argparse=20
>>>>>>>>>>>> import datetime=20
>>>>>>>>>>>> import daemon=20
>>>>>>>>>>>> +import filecmp=20
>>>>>>>>>>>> import functools=20
>>>>>>>>>>>> import ipaddress=20
>>>>>>>>>>>> import logging=20
>>>>>>>>>>>> @@ -516,26 +517,35 @@ class UnboundConfigWriter(object):=20
>>>>>>>>>>>> def update_dhcp_leases(self, leases):=20
>>>>>>>>>>>> # Write out all leases=20
>>>>>>>>>>>> - self.write_dhcp_leases(leases)=20
>>>>>>>>>>>> + if self.write_dhcp_leases(leases):=20
>>>>>>>>>>>> - log.debug("Reloading Unbound...")=20
>>>>>>>>>>>> + log.debug("Reloading Unbound...")=20
>>>>>>>>>>>> - # Reload the configuration without dropping the cache=20
>>>>>>>>>>>> - self._control("reload_keep_cache")=20
>>>>>>>>>>>> + # Reload the configuration without dropping the cache=20
>>>>>>>>>>>> + self._control("reload_keep_cache")=20
>>>>>>>>>>>> +=20
>>>>>>>>>>>> + else:=20
>>>>>>>>>>>> +=20
>>>>>>>>>>>> + log.debug("Not reloading Unbound. Leases not changed.")=20
>>>>>>>>>>>> def write_dhcp_leases(self, leases):=20
>>>>>>>>>>>> log.debug("Writing DHCP leases...")=20
>>>>>>>>>>>> with tempfile.NamedTemporaryFile(mode=3D"w", delete=3DFalse) as =
f:=20
>>>>>>>>>>>> - for l in leases:=20
>>>>>>>>>>>> + for l in sorted(leases):=20
>>>>>>>>>>>> for rr in l.rrset:=20
>>>>>>>>>>>> f.write("local-data: \"%s\"\n" % " ".join(rr))=20
>>>>>>>>>>>> - # Make file readable for everyone=20
>>>>>>>>>>>> - os.fchmod(f.fileno(), stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|s=
tat.S_IROTH)=20
>>>>>>>>>>>> + filecmp.clear_cache()=20
>>>>>>>>>>>> + RequireUnboundReload =3D not filecmp.cmp(f.name, self.path, sh=
allow=3DFalse)=20
>>>>>>>>>>>> +=20
>>>>>>>>>>>> + # Make file readable for everyone=20
>>>>>>>>>>>> + os.chmod(f.name, stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|stat.S=
_IROTH)=20
>>>>>>>>>>>> +=20
>>>>>>>>>>>> + # Move the file to its destination=20
>>>>>>>>>>>> + os.rename(f.name, self.path)=20
>>>>>>>>>>>> - # Move the file to its destination=20
>>>>>>>>>>>> - os.rename(f.name, self.path)=20
>>>>>>>>>>>> + return RequireUnboundReload=20
>>>>>>>>>>>> def _control(self, *args):=20
>>>>>>>>>>>> command =3D ["unbound-control"]
>>>>>>>>>>>>=20
>>>>>>>>> Resubmitting the patch.=20
>>>>>>>>>=20
>>>>>>>>> Following my previous reply, I would like to stick with filecmp as =
I am using it with "shallow=3DFalse" to avoid doing the comparison just with =
stat() calls. Note that I also flush the filecmp cache before using the comma=
nd so it is running with the latest file data. Talking about file descriptors=
, atomic file replacement etc., scares me.
>>>>>>>>>=20
>>>>>>>> File descriptors are great. They avoid race-conditions and all sorts=
 of things.
>>>>>>>>=20
>>>>>>> But I have never used them so I don't intend to go that way. Too much=
 for me to get my brain round and a limited ability to test.
>>>>>>>=20
>>>>>> Well, I pretty much gave you the entire solution=E2=80=A6 There was no=
thing left to do apart from copying and pasting the snippets.=20
>>>>>>=20
>>>>>>=20
>>>>> Ok I've tried to use your version but struggled to get it going. If I u=
sed it as was and called compare(file1_name, file2_name) it failed as "compar=
e" was not defined.=20
>>>>> I could call it using self.compare but then it failed with "TypeError: =
UnboundConfigWriter.compare() takes 2 positional arguments but 3 were given".=
 I changed the function to compare(self, f1, f2).=20
>>>>> Then it failed with "AttributeError: 'str' object has no attribute 'see=
k'", so I changed it again to accept file names then open the files before do=
ing the seeks.=20
>>>>> I really hope it is OK as I am out of my depth when defining functions =
with "self" as an argument. Please can you check it? If it is not OK, can I r=
evert to filecmp?=20
>>>>>=20
>>>>> I have made one futher change, the sorted(leases) line was not working =
and not sorting the object ever, and I saw lines changing places in the resul=
ting leases file. I have changed it to "sorted(leases, key=3Dlambda x: x.ipad=
dr)". It definitely sorts this time.=20
>>>>>=20
>>>>>=20
>>>>>>>> I don=E2=80=99t think that module is the best choice really if you h=
ave to hack around and flush the cache. Why would it even cache things in the=
 first place? I don=E2=80=99t see where the cache helps.
>>>>>>>>=20
>>>>>>> From the filecmp.clear_cache documentation:=20
>>>>>>>=20
>>>>>>> Clear the filecmp cache. This may be useful if a file is compared so =

>>>>>>> quickly after it is modified that it is within the mtime resolution=20
>>>>>>> of the underlying filesystem.=20
>>>>>>>=20
>>>>>>> Now this makes me believe that the clear_cache is only relevant when =
using shallow=3DTrue, which I'm not and I don't know how to check the underly=
ing code. It is used to make sure the stat() info is updated, but we are not =
using the stat() info. I guess we could as easily add a one second sleep inst=
ead as that is way longer than the mtime resolution.
>>>>>>>=20
>>>>>> The function is here and it is rather simple: https://github.com/pytho=
n/cpython/blob/3.12/Lib/filecmp.py#L30=20
>>>>>>=20
>>>>>> It will always stat() both files and compares three items in case shal=
low is False: The type of the file, the size and mtime. If the file is not a =
regular file, the function will exist rather early. So in our case, that is a=
ll work the function is doing for thing. It boils down to something very simi=
lar to what I suggested to use to compare the files.=20
>>>>>>=20
>>>>>> On top of that, there is a cache which will always be used but will ne=
ver return a match for us because the temporary file at least will always hav=
e another mtime.=20
>>>>>>=20
>>>>>> You could clear the cache after every call, but I would rather not hav=
e our code messy and care about implementation details of some Python module.=
=20
>>>>>>=20
>>>>>>=20
>>>>>>> The module is chosen because all the references I read about comparin=
g files preferred this one-liner for comparing files, although other methods =
were given and there were lots of discussions about large files (GB+) because=
 if you chomp them it may be much quicker to say they are not the same when y=
ou find the first block that does not match. Having said this, I don't know h=
ow filecmp works, but we only have a small file. At the same time, I am not a=
 regular programmer so simple one-liners are good for me.
>>>>>>>=20
>>>>>> You would always want to read both files block for block and compare t=
he blocks. There is no way to implement this significantly faster.=20
>>>>>>=20
>>>>>>=20
>>>>>>>>> I have modified the earlier try/except I proposed to catch only Fil=
eNotFoundError, and I have changed CamelCase to snake_case.=20
>>>>>>>>>=20
>>>>>>>>> ---=20
>>>>>>>>> config/unbound/unbound-dhcp-leases-bridge | 31 ++++++++++++++++----=
---=20
>>>>>>>>> 1 file changed, 22 insertions(+), 9 deletions(-)=20
>>>>>>>>>=20
>>>>>>>>> diff --git a/config/unbound/unbound-dhcp-leases-bridge b/config/unb=
ound/unbound-dhcp-leases-bridge=20
>>>>>>>>> index e9f022aff..a9ec8e1e2 100644=20
>>>>>>>>> --- a/config/unbound/unbound-dhcp-leases-bridge=20
>>>>>>>>> +++ b/config/unbound/unbound-dhcp-leases-bridge=20
>>>>>>>>> @@ -22,6 +22,7 @@=20
>>>>>>>>> import argparse=20
>>>>>>>>> import datetime=20
>>>>>>>>> import daemon=20
>>>>>>>>> +import filecmp=20
>>>>>>>>> import functools=20
>>>>>>>>> import ipaddress=20
>>>>>>>>> import logging=20
>>>>>>>>> @@ -516,26 +517,38 @@ class UnboundConfigWriter(object):=20
>>>>>>>>>=20
>>>>>>>>> def update_dhcp_leases(self, leases):=20
>>>>>>>>> # Write out all leases=20
>>>>>>>>> - self.write_dhcp_leases(leases)=20
>>>>>>>>> + if self.write_dhcp_leases(leases):=20
>>>>>>>>>=20
>>>>>>>>> - log.debug("Reloading Unbound...")=20
>>>>>>>>> + log.debug("Reloading Unbound...")=20
>>>>>>>>>=20
>>>>>>>>> - # Reload the configuration without dropping the cache=20
>>>>>>>>> - self._control("reload_keep_cache")=20
>>>>>>>>> + # Reload the configuration without dropping the cache=20
>>>>>>>>> + self._control("reload_keep_cache")=20
>>>>>>>>> +=20
>>>>>>>>> + else:=20
>>>>>>>>> +=20
>>>>>>>>> + log.debug("Not reloading Unbound. Leases not changed.")=20
>>>>>>>>>=20
>>>>>>>>> def write_dhcp_leases(self, leases):=20
>>>>>>>>> log.debug("Writing DHCP leases...")=20
>>>>>>>>>=20
>>>>>>>>> with tempfile.NamedTemporaryFile(mode=3D"w", delete=3DFalse) as f: =

>>>>>>>>> - for l in leases:=20
>>>>>>>>> + for l in sorted(leases):=20
>>>>>>>>> for rr in l.rrset:=20
>>>>>>>>> f.write("local-data: \"%s\"\n" % " ".join(rr))=20
>>>>>>>>>=20
>>>>>>>>> - # Make file readable for everyone=20
>>>>>>>>> - os.fchmod(f.fileno(), stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|stat=
.S_IROTH)=20
>>>>>>>>> + filecmp.clear_cache()=20
>>>>>>>>> + try:=20
>>>>>>>>> + require_unbound_reload =3D not filecmp.cmp(f.name, self.path, sha=
llow=3DFalse)=20
>>>>>>>>> + except FileNotFoundError:=20
>>>>>>>>> + require_unbound_reload =3D True
>>>>>>>>>=20
>>>>>>>> If you want to go this route, you will have to flush the temporary f=
ile first. Otherwise you might have some data left in the buffer that has not=
 been written (because the file is still open). You will then compare incompl=
ete output. This would not become a problem if you used the file descriptors.
>>>>>>>>=20
>>>>>>> The temp file is closed at the point of doing the filecmp, and the fi=
lecmp cache has been flushed. How do I flush the temporary file further. Read=
ing up, is it just having the last statement in the with block as f.flush() w=
ith the same indent as "for l in sorted(leases):"
>>>>>>>=20
>>>>>> If you have left the with block you will already have flushed the buff=
ers and closed the file. It looks like I misread the indentation in the patch=
 then.=20
>>>>>>=20
>>>>>>=20
>>>>>>>> Catching FileNotFound would work for me.
>>>>>>>>=20
>>>>>>> Good
>>>>>>>=20
>>>>>>>>=20
>>>>>>>>> +=20
>>>>>>>>> + # Make file readable for everyone=20
>>>>>>>>> + os.chmod(f.name, stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|stat.S_IR=
OTH)=20
>>>>>>>>> +=20
>>>>>>>>> + # Move the file to its destination=20
>>>>>>>>> + os.rename(f.name, self.path)=20
>>>>>>>>>=20
>>>>>>>>> - # Move the file to its destination=20
>>>>>>>>> - os.rename(f.name, self.path)=20
>>>>>>>>> + return require_unbound_reload=20
>>>>>>>>>=20
>>>>>>>>> def _control(self, *args):=20
>>>>>>>>> command =3D ["unbound-control"]=20
>>>>>>>>> --=20
>>>>>>>>> 2.43.0=20
>>>>>>>>>=20
>>>>>>>>>=20
>>>>>>>>> Nick
>>>>>>>>>=20
>>>>>>=20
>>>>>>=20
>>>>> ---=20
>>>>> config/unbound/unbound-dhcp-leases-bridge | 50 +++++++++++++++++++---- =

>>>>> 1 file changed, 41 insertions(+), 9 deletions(-)=20
>>>>>=20
>>>>> diff --git a/config/unbound/unbound-dhcp-leases-bridge b/config/unbound=
/unbound-dhcp-leases-bridge=20
>>>>> index e9f022aff..80d9523ea 100644=20
>>>>> --- a/config/unbound/unbound-dhcp-leases-bridge=20
>>>>> +++ b/config/unbound/unbound-dhcp-leases-bridge=20
>>>>> @@ -516,26 +516,37 @@ class UnboundConfigWriter(object):=20
>>>>>=20
>>>>> def update_dhcp_leases(self, leases):=20
>>>>> # Write out all leases=20
>>>>> - self.write_dhcp_leases(leases)=20
>>>>> + if self.write_dhcp_leases(leases):=20
>>>>>=20
>>>>> - log.debug("Reloading Unbound...")=20
>>>>> + log.debug("Reloading Unbound...")=20
>>>>>=20
>>>>> - # Reload the configuration without dropping the cache=20
>>>>> - self._control("reload_keep_cache")=20
>>>>> + # Reload the configuration without dropping the cache=20
>>>>> + self._control("reload_keep_cache")=20
>>>>> +=20
>>>>> + else:=20
>>>>> +=20
>>>>> + log.debug("Not reloading Unbound. Leases not changed.")=20
>>>>>=20
>>>>> def write_dhcp_leases(self, leases):=20
>>>>> log.debug("Writing DHCP leases...")=20
>>>>>=20
>>>>> with tempfile.NamedTemporaryFile(mode=3D"w", delete=3DFalse) as f:=20
>>>>> - for l in leases:=20
>>>>> + for l in sorted(leases, key=3Dlambda x: x.ipaddr):=20
>>>>> for rr in l.rrset:=20
>>>>> f.write("local-data: \"%s\"\n" % " ".join(rr))=20
>>>>>=20
>>>>> - # Make file readable for everyone=20
>>>>> - os.fchmod(f.fileno(), stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|stat.S_I=
ROTH)=20
>>>>> + try:=20
>>>>> + require_unbound_reload =3D not self.compare(f.name, self.path)=20
>>>>> + except FileNotFoundError:=20
>>>>> + require_unbound_reload =3D True=20
>>>>> +=20
>>>>> + # Make file readable for everyone=20
>>>>> + os.chmod(f.name, stat.S_IRUSR|stat.S_IWUSR|stat.S_IRGRP|stat.S_IROTH)=
=20
>>>>> +=20
>>>>> + # Move the file to its destination=20
>>>>> + os.rename(f.name, self.path)=20
>>>>>=20
>>>>> - # Move the file to its destination=20
>>>>> - os.rename(f.name, self.path)=20
>>>>> + return require_unbound_reload=20
>>>>>=20
>>>>> def _control(self, *args):=20
>>>>> command =3D ["unbound-control"]=20
>>>>> @@ -551,6 +562,27 @@ class UnboundConfigWriter(object):=20
>>>>>=20
>>>>> raise e=20
>>>>>=20
>>>>> + def compare(self, if1, if2):=20
>>>>> + buffersize =3D 16 * 1024=20
>>>>> +=20
>>>>> + f1 =3D open(if1, "r")=20
>>>>> + f2 =3D open(if2, "r")=20
>>>>> +=20
>>>>> + # Reset file handles=20
>>>>> + f1.seek(0)=20
>>>>> + f2.seek(0)=20
>>>>> +=20
>>>>> + while True:=20
>>>>> + b1 =3D f1.read(buffersize)=20
>>>>> + b2 =3D f2.read(buffersize)=20
>>>>> +=20
>>>>> + if not b1 =3D=3D b2:=20
>>>>> + return False=20
>>>>> +=20
>>>>> + elif not b1 or not b2:=20
>>>>> + break=20
>>>>> +=20
>>>>> + return True=20
>>>>>=20
>>>>> if __name__ =3D=3D "__main__":=20
>>>>> parser =3D argparse.ArgumentParser(description=3D"Bridge for DHCP Lease=
s and Unbound DNS")
>>>>>=20
>>>>=20
>>>=20
>>=20
>=20


--===============8390314327840992578==--