systemd: use 44353 for DoH port

author Tomas Krizek <tomas.krizek@nic.cz>

Wed, 17 Apr 2019 13:13:28 +0000 (15:13 +0200)

committer Tomas Krizek <tomas.krizek@nic.cz>

Thu, 18 Apr 2019 15:09:57 +0000 (17:09 +0200)
author Tomas Krizek <tomas.krizek@nic.cz>
Wed, 17 Apr 2019 13:13:28 +0000 (15:13 +0200)
committer Tomas Krizek <tomas.krizek@nic.cz>
Thu, 18 Apr 2019 15:09:57 +0000 (17:09 +0200)
diff --git a/distro/arch/PKGBUILD b/distro/arch/PKGBUILD

index 94080fddd50c4ffe96406df9f70f4428c8e60b25..69052b3f4a78bec199ff18950324e4c437fb63d8 100644 (file)
--- a/distro/arch/PKGBUILD
+++ b/distro/arch/PKGBUILD
@@ -65,11 +65,6 @@ package() {
      install -d -m 0755 "${pkgdir}/usr/lib/systemd/system/multi-user.target.wants"
      ln -s ../kresd.target "${pkgdir}/usr/lib/systemd/system/multi-user.target.wants/kresd.target"
  
-    # mask kresd-doh.socket, kresd-webmgmt.socket by default (unmask if using http module)
-    install -d -m 0755 "${pkgdir}/etc/systemd/system"
-    ln -s /dev/null "${pkgdir}/etc/systemd/system/kresd-doh.socket"
-    ln -s /dev/null "${pkgdir}/etc/systemd/system/kresd-webmgmt.socket"
-
      # remove modules with missing dependencies
      rm "${pkgdir}/usr/lib/knot-resolver/kres_modules/etcd.lua"
  }
diff --git a/distro/deb/knot-resolver-module-http.links b/distro/deb/knot-resolver-module-http.links

index bf86610c2508cfc835193b33c2b42ab409e72252..4963c5cb946ecde4732e18a4c63bd59067958c1a 100644 (file)
--- a/distro/deb/knot-resolver-module-http.links
+++ b/distro/deb/knot-resolver-module-http.links
@@ -1,4 +1,3 @@
-dev/null etc/systemd/system/kresd-doh.socket
  usr/share/javascript/bootstrap/css/bootstrap-theme.min.css usr/lib/knot-resolver/kres_modules/http/bootstrap-theme.min.css
  usr/share/javascript/bootstrap/css/bootstrap.min.css usr/lib/knot-resolver/kres_modules/http/bootstrap.min.css
  usr/share/javascript/bootstrap/js/bootstrap.min.js usr/lib/knot-resolver/kres_modules/http/bootstrap.min.js
diff --git a/distro/rpm/knot-resolver.spec b/distro/rpm/knot-resolver.spec

index 36cc531483183b70df1a9d0a76fe4e01b480ad54..cc72adad4f67f20d96a101c2dd142e371eae733d 100644 (file)
--- a/distro/rpm/knot-resolver.spec
+++ b/distro/rpm/knot-resolver.spec
@@ -192,12 +192,6 @@ rm %{buildroot}%{_unitdir}/kresd-doh.socket
  rm %{buildroot}%{_unitdir}/kresd-webmgmt.socket
  %endif
  
-%if 0%{?fedora}
-# mask kresd-doh.socket by default
-install -d -m 0755 %{buildroot}%{_sysconfdir}/systemd/system
-ln -s /dev/null %{buildroot}%{_sysconfdir}/systemd/system/kresd-doh.socket
-%endif
-
  # rename doc directory for centos, opensuse
  %if "x%{?fedora}" == "x"
  install -m 755 -d %{buildroot}/%{_pkgdocdir}
@@ -302,7 +296,6 @@ getent passwd knot-resolver >/dev/null || useradd -r -g knot-resolver -d %{_sysc
  %if 0%{?fedora}
  %{_unitdir}/kresd@.service.d/module-http.conf
  %{_unitdir}/kresd-doh.socket
-%{_sysconfdir}/systemd/system/kresd-doh.socket
  %{_unitdir}/kresd-webmgmt.socket
  %endif
  %{_libdir}/knot-resolver/kres_modules/http
diff --git a/distro/tests/ansible-roles/knot_resolver/tasks/configure_doh_nosocket.yaml b/distro/tests/ansible-roles/knot_resolver/tasks/configure_doh_nosocket.yaml

index 725362565b58edd1cf9fc4c6ab6f630ce3cc5741..758fa7be3f8e479afca81f20be2a3879ae97c499 100644 (file)
--- a/distro/tests/ansible-roles/knot_resolver/tasks/configure_doh_nosocket.yaml
+++ b/distro/tests/ansible-roles/knot_resolver/tasks/configure_doh_nosocket.yaml
@@ -3,7 +3,7 @@
    blockinfile:
      marker: -- {mark} ANSIBLE MANAGED BLOCK
      block: |
-      net.listen('127.0.0.1', 443, { kind = 'doh' })
+      net.listen('127.0.0.1', 44353, { kind = 'doh' })
        modules.load('http')
      path: /etc/knot-resolver/kresd.conf
      insertbefore: BOF
diff --git a/distro/tests/ansible-roles/knot_resolver/tasks/test_doh.yaml b/distro/tests/ansible-roles/knot_resolver/tasks/test_doh.yaml

index fca095e7f246e0ad6fc2841af738656252e8bf2b..90a0b96c79e634e353ef71820db1b4b1f18eb991 100644 (file)
--- a/distro/tests/ansible-roles/knot_resolver/tasks/test_doh.yaml
+++ b/distro/tests/ansible-roles/knot_resolver/tasks/test_doh.yaml
@@ -1,7 +1,7 @@
  ---
  - name: doh_test query localhost. A
    get_url:
-    url: https://127.0.0.1:443/doh?dns=1Y0BAAABAAAAAAAACWxvY2FsaG9zdAAAAQAB
+    url: https://127.0.0.1:44353/doh?dns=1Y0BAAABAAAAAAAACWxvY2FsaG9zdAAAAQAB
      sha256sum: e5c2710e6ecb78c089ab608ad5861b87be0d1c623c4d58b4eee3b21c06aa2008
      dest: /tmp/doh_test
      validate_certs: false
diff --git a/systemd/kresd-doh.socket b/systemd/kresd-doh.socket

index ec0dde5db9a90009308868491918e27977f135f7..c4d0e020462311c1a4f7e6eacba7c1fba79633bc 100644 (file)
--- a/systemd/kresd-doh.socket
+++ b/systemd/kresd-doh.socket
@@ -8,8 +8,8 @@ Before=sockets.target
  FreeBind=true
  BindIPv6Only=both
  FileDescriptorName=doh
-ListenStream=[::1]:443
-ListenStream=127.0.0.1:443
+ListenStream=[::1]:44353
+ListenStream=127.0.0.1:44353
  Service=kresd@1.service
  Slice=system-kresd.slice
author	Tomas Krizek <tomas.krizek@nic.cz>
	Wed, 17 Apr 2019 13:13:28 +0000 (15:13 +0200)
committer	Tomas Krizek <tomas.krizek@nic.cz>
	Thu, 18 Apr 2019 15:09:57 +0000 (17:09 +0200)
distro/arch/PKGBUILD		patch \| blob \| blame \| history
distro/deb/knot-resolver-module-http.links		patch \| blob \| blame \| history
distro/rpm/knot-resolver.spec		patch \| blob \| blame \| history
distro/tests/ansible-roles/knot_resolver/tasks/configure_doh_nosocket.yaml		patch \| blob \| blame \| history
distro/tests/ansible-roles/knot_resolver/tasks/test_doh.yaml		patch \| blob \| blame \| history
systemd/kresd-doh.socket		patch \| blob \| blame \| history