summaryrefslogtreecommitdiffstats
path: root/systemd (follow)
Commit message (Collapse)AuthorAgeFilesLines
* manager, systemd: increase startup timeout for manager (again)Vladimír Čunát2024-03-251-1/+1
| | | | During the previous increase I didn't realize the comment added now.
* doc: various fixesOto Šťáva2024-03-151-2/+2
| | | | Fix cross-references, heading levels, etc.
* Update links to documentationOto Šťáva2024-01-121-1/+1
| | | | | | | | | | | | | | | | Replaces all mentions of `knot-resolver.readthedocs.io` with `www.knot-resolver.cz/documentation/latest`. Some of the links used to point to the `latest` documentation, which meant the latest `master` commit, but the current system does not really allow us to do this, so instead we link to the latest stable (which is what `www.knot-resolver.cz/documentation/latest` basically is). We also cannot reliably get the documentation for a particular version in the code, so it all just points to `latest` as well. This may change in the future, although I do not yet have a good approach in mind (particularly, I don't want to bother our admins with nginx configuration updates for each newly released version).
* systemd unit: log via syslog API instead of stdoutVladimír Čunát2023-11-261-0/+1
| | | | It's promised in docs already. The extra metadata can be useful.
* systemctl reload: use --config instead of --socketVladimír Čunát2023-09-251-1/+1
| | | | | | This will allow it to work even when socket is elsewhere. The service depended on fixed config file location already, through ExecStart.
* docs: references fixesAleš Mrázek2023-08-081-1/+1
|
* manager: use .yaml suffix for config filesAleš Mrázek2023-07-231-1/+1
|
* deprecate legacy systemd unitsVladimír Čunát2023-07-111-8/+14
| | | | | | - separate meson option, disabled by default - deb,rpm: don't install these legacy units - deb,rpm: use the new knot-resolver.service on all the places
* systemd/knot-resolver.service.in: generalize pathsVladimír Čunát2023-05-292-3/+4
| | | | | | | | | I can't see why not. Also avoid unnecessary /usr/bin/env kresd doesn't work well without `ninja install` anyway. bindir: maybe we should install the python binaries into sbin instead. We're also being slightly inconsistent - allowing to override some directories by meson but not respecting it for the python stuff.
* manager: update systemd service file with knot-resolver script and kresctl ↵Vasek Sraier2023-05-291-3/+2
| | | | reload
* Merge branch 'master' into managerVasek Sraier2023-01-101-1/+1
|\
| * Copyright notices: remove years and replace e-mailOto Šťáva2022-12-141-1/+1
| |
* | packaging: kresctl man page, manager's unit fileVasek Sraier2022-12-032-0/+29
|/
* spellingJosh Soref2021-11-191-2/+2
| | | | Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
* systemd: add interaction with nss-lookup.targetVladimír Čunát2021-10-201-0/+2
| | | | | | The point is to allow other services wait for DNS availability. Of course, kresd may not be the DNS provider for this machine, but it seems reasonable to still do this by default.
* doh2: replace references to obsolete DoH in docs, tests and example configsPetr Špaček2020-10-291-1/+1
|
* systemd: control socket cleanup on exitPetr Špaček2020-10-261-0/+1
| | | | | Obviously this is is racy and cannot be relied upon. Caller still has to handle connection errors.
* meson: fix sysusers/tmpfiles installationTomas Krizek2020-10-121-2/+11
| | | | | | Target name must be unique in meson, but the installed files share the same name. To get around this, use a temporary target name and rename it when installing the file to its proper location.
* systemd/tmpfiles: change owner back to knot-resolverTomas Krizek2020-10-121-3/+3
| | | | | Since 5.1.3, we no longer drop capabilities as root, thus the tmpfiles no longer need to be owned by root.
* systemd: generate sysusers fileTomas Krizek2020-10-122-0/+13
|
* systemd/tmpfiles: change directory owner to rootTomas Krizek2020-04-141-3/+3
| | | | | | | | | | | | Change the owner of kresd files to root:knot-resolver. This improves behaviour for Fedora, where kresd can run under root (e.g. in Docker). Otherwise, running kresd as root on Fedora would fail because of dropped capabilities and attempting to access /var/lib/knot-resolver, which was owned by knot-resolver. This change makes it possible for both root (user) and knot-resolver (group) to have the same permissions on these directories despite dropped capabilities.
* treewide: machine readable license for all the restPetr Špaček2020-02-258-1/+10
| | | | | These files did not have GNU GPL v3 boilderplate in them so I've added machine readable tag with appropriate license.
* systemd/kres-cache-gc: use correct cache directoryTomas Krizek2020-01-281-1/+1
| | | | | | | In 5.0.0, the cache directory has been moved and the previous path is incorrect. Fixes #543
* systemd: explicitly add kresd@ to system-kresd.sliceVladimír Čunát2020-01-271-0/+1
| | | | | | By some magic (unknown so far) the service was ending up in the slice anyway, but it seems much better to put it there explicitly. Closely related to !925.
* systemd: update man kresd.systemdTomas Krizek2020-01-211-16/+15
|
* systemd: use tmpfiles to create cache dirTomas Krizek2020-01-212-0/+2
|
* lua: add distro-preconfigTomas Krizek2020-01-212-7/+2
| | | | | | | | The preconfig is used to set distro-specific values to avoid messing with user config, in partciular: - binding to control sockets under systemd - setting default cache location
* systemd: remove files for socket-activationTomas Krizek2020-01-2122-598/+15
|
* treewide: use --noninteractive instead of --forksVladimír Čunát2020-01-171-1/+1
|
* doc: fix typosLukáš Ježek2020-01-151-1/+1
|
* doc: add section about usage without systemdTomas Krizek2020-01-151-0/+3
| | | | | | - mention process management - describe privileges and capabilities which have to be configured - move garbage collector to this section, as is it enabled by default
* doc: restructure into smaller sectionsTomas Krizek2020-01-151-3/+7
|
* doc: move Cache and Multiple instance chapters into Performance sectionPetr Špaček2020-01-151-0/+90
| | | | | It logically belongs here and it will make high-level structure less crowded.
* daemon/main: decrease suggested nofile hard limit to 512kTomas Krizek2020-01-072-2/+2
| | | | | | | 512k (or more) seems to be hard limit valued used by multiple distros (fedora, arch, ubuntu, debian). Closes #476
* systemd: add env variable SYSTEMD_INSTANCETomas Krizek2019-12-062-0/+2
|
* systemd/nosocket: use capabilitiesTomas Krizek2019-12-031-0/+4
|
* systemd: add proper User/GroupTomas Krizek2019-11-273-2/+5
| | | | | | | The Group= settings was ommited and default group of User= was implicitly used. Now the group set at build time is respected. GC didn't respect the user/group set at build time at all.
* modules/watchdog: use abort() for restartsVladimír Čunát2019-10-231-1/+0
| | | | | Motivation: core-dump might be very useful, and in this case there are even very useful pointers on the C stack.
* systemd/kresd: fix dependency on network-online.targetTomas Krizek2019-10-232-0/+4
| | | | | | | The missing Wants= and After= directives for network-online.target made it possible for kresd to start before network interfaces were properly initialized and configured with IP addresses, leading to a failure to bind to addresses.
* watchdog rewritePetr Špaček2019-10-081-0/+1
| | | | | The watchdog module now can be loaded without systemd, has customisable callbacks, and can do real DNS queries and check their results.
* systemd: file-descriptor count limit 1MiVladimír Čunát2019-10-082-0/+2
|
* systemd/kres-cache-gc: make service more robustTomas Krizek2019-07-102-2/+8
|
* systemd: add kres-cache-gc.serviceTomas Krizek2019-07-106-0/+44
|
* systemd: kill kresd@* service if unresponsive when stoppingTomas Krizek2019-07-022-0/+2
|
* modules/sd_watchdog: new module for systemd watchdog supportTomas Krizek2019-06-242-0/+2
|
* meson: properly detect libsystemd dependencyTomas Krizek2019-06-241-1/+1
|
* systemd: add note about locahost defaultsTomas Krizek2019-05-221-4/+18
|
* systemd: omit unneeded IP from ListenStream/DatagramTomas Krizek2019-05-224-15/+13
|
* doc/net: nitpicks and system-kresd.slice restartTomas Krizek2019-04-181-0/+4
|
* doc: unify documented DoH port usage to 443Tomas Krizek2019-04-182-3/+3
|
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-18 08:39:42 +0100