Remove hard-coded default for RHS

[nalind]

Don't fall back to using a default LHS or RHS when the configuration file can't be read. Original report from https://bugzilla.redhat.com/show_bug.cgi?id=1332493

[kaduk]

LGTM

[achernya]

Hm, this seems to break the tests

Can't initialize hesiod library.
FAIL: hestest.conf

@nalind Can you take a look at the failure?

[nalind]

Would it make more sense to continue setting a default LHS, erroring out if we can't read an RHS and also don't find one in the environment? Setting HES_DOMAIN during the tests should be enough for them.

[nalind]

Okay, giving that a try.

[nalind]

Okay, switching back to setting a default LHS if we fail to read the configuration file, and erroring out later if there isn't an acceptable RHS value set in the environment, and making sure that HES_DOMAIN is set to "athena.mit.edu" when we run hestest, seems to work.

[achernya]

Why ENOEXEC here?

[nalind]

It's copied from read_config_file(), though I have no idea why read_config_file() uses that particular error code. Would ENOENT make more sense?

[achernya]

EINVAL or ENOENT make more sense

[nalind]

Okay, I'm leaning toward EINVAL because at that point we may well have managed to read a configuration file, so ENOENT could be confusing.

[nalind]

Hmm, the more I think about this, the more I'm leaning toward going back to just returning an error when we fail to open the file, and setting HESIOD_CONFIG to point to the in-tree hesiod.conf.sample file when we run hestest. That seems to be enough for it here. Opinions?

[achernya]

I would be okay with pointing hestest at a config file. That seems most correct if you're improving the unconfigured state.

[nalind]

Okay, I'll switch this over to doing that.

[kaduk]

Yes, having the tests point to an explicit config file and not relying on default behavior seems like a fine plan.

[nalind]

Okay, the changes are ready.

[carnil]

This has been assigned CVE-2016-10152