mykola/freebsd-ports
1
0
Fork 0
forked from Lainports/freebsd-ports
Code Pull requests Activity
freebsd-ports/dns/dnsmasq/files/dnsmasq.in
Matthias Andree f7c8a6233b net/chrony: dns/dnsmasq: change rcfile ordering 
Make sure that these services start in proper order, and sooner
such that chrony can synchronize time before other services need it.

Note that there is a circular dependency or bootstrapping problem
here in that the system time needs to be halfway correct if you
require your time servers to be looked up through DNS with DNSSEC
enabled because crypto usually needs correct clocks for expiration
checks on signatures to work so the name service needs a correct time,
and looking up the time server needs a working name service.

So be sure you can bootstrap with a skewed time.

Reported by:	Lexi Winter
PR:		282566

I am not MFHing this, it's too intrusive.
2024-12-08 16:19:40 +01:00

109 lines
2.9 KiB
Bash
Raw Blame History

#!/bin/sh
# PROVIDE: dnsmasq
# REQUIRE: NETWORKING ldconfig ntpdate
# BEFORE: DAEMON chrony named
# KEYWORD: shutdown
#
# Start before named so as not to break named_wait if named is
# enabled and /etc/resolv.conf points to ourselves (dnsmasq).
#
#
# Please add the following line to /etc/rc.conf.local or /etc/rc.conf to
# enable the dnsmasq service(s):
#
# dnsmasq_enable (bool): Set to "NO" by default.
# Set it to "YES" to enable dnsmasq at boot.
#
# Further settings you can change in /etc/rc.conf if desired:
#
# dnsmasq_conf (path): Set to %%PREFIX%%/etc/dnsmasq.conf by default.
# Set it to another configuration file if you want.
#
# dnsmasq_flags (string): Empty by default. Set it to additional command
# line arguments if desired.
#
# dnsmasq_restart (bool): Set to "YES" by default.
# If "YES", a "reload" action will trigger a "restart"
# if the configuration file has changed, to work
# around a dnsmasq(8) limitation.
#
#
# Additional actions supported by this script:
#
# reload Reload database files by sending SIGHUP and SIGUSR2.
# However, if dnsmasq_restart is true (see above) and the
# configuration file has changed since this rc script has
# started dnsmasq, restart it instead.
#
# logstats Dump statistics information to where dnsmasq is configured to
# log (syslog by default). This sends SIGUSR1 to dnsmasq.
#
. /etc/rc.subr
name=dnsmasq
rcvar=dnsmasq_enable
command="%%PREFIX%%/sbin/${name}"
pidfile="/var/run/${name}.pid"
# timestamp (below) is used to check if "reload" should be a "restart" instead
timestamp="/var/run/${name}.stamp"
load_rc_config "${name}"
: ${dnsmasq_enable="NO"}
: ${dnsmasq_conf="%%PREFIX%%/etc/${name}.conf"}
: ${dnsmasq_restart="YES"}
command_args="-x $pidfile -C $dnsmasq_conf"
required_files="${dnsmasq_conf}"
extra_commands="reload logstats checkconfig"
reload_precmd="reload_pre"
reload_postcmd="reload_post"
restart_precmd="checkconfig"
start_postcmd="timestampconf"
stop_precmd="stop_pre"
logstats_cmd="logstats"
checkconfig_cmd="checkconfig"
reload_pre() {
if [ "$dnsmasq_conf" -nt "${timestamp}" ] ; then
if checkyesno dnsmasq_restart ; then
info "restart: $dnsmasq_conf changed"
exec "$0" restart
else
warn "restart required, $dnsmasq_conf changed"
fi
fi
}
reload_post() {
kill -USR2 ${rc_pid}
}
logstats() {
kill -USR1 ${rc_pid}
}
timestampconf() {
touch -r "${dnsmasq_conf}" "${timestamp}"
}
rmtimestamp() {
rm -f "${timestamp}"
}
stop_pre() {
checkconfig || return
rmtimestamp
}
checkconfig() {
echo "Performing sanity check on ${name} configuration."
${command} ${command_args} --test
}
run_rc_command "$1"
View git blame Copy permalink