etc/knot-resolver/config.yml
-lib/systemd/system/knot-resolver.service
+usr/lib/systemd/system/knot-resolver.service
--- /dev/null
+debian/tmp/usr/share/man/man8/kresctl.8*
DESTDIR="${PWD}/debian/tmp" ninja -v -C build_deb install
dh_auto_install --buildsystem=pybuild --sourcedirectory manager
install -m 644 -D $(CURDIR)/manager/etc/knot-resolver/config.yml $(CURDIR)/debian/tmp/etc/knot-resolver/config.yml
- install -m 644 -D $(CURDIR)/manager/knot-resolver.service $(CURDIR)/debian/tmp/lib/systemd/system/knot-resolver.service
override_dh_auto_test:
meson test -C build_deb
pushd manager
%py3_install
install -m 644 -D etc/knot-resolver/config.yml %{buildroot}%{_sysconfdir}/knot-resolver/config.yml
-install -m 644 -D knot-resolver.service %{buildroot}%{_unitdir}/knot-resolver.service
popd
%pre
%{_libdir}/knot-resolver/kres_modules/watchdog.lua
%{_libdir}/knot-resolver/kres_modules/workarounds.lua
%{_mandir}/man8/kresd.8.gz
+%{_mandir}/man8/kresctl.8.gz
%files devel
%{_includedir}/libkres
--- /dev/null
+.TH "kresctl" "8" "@date@" "CZ.NIC" "Knot Resolver @version@"
+.\"
+.\" kresctl.8 -- Knot Resolver control tool manpage
+.\"
+.\" Copyright (c) 2022, CZ.NIC. All rights reserved.
+.\"
+.\" SPDX-License-Identifier: GPL-3.0-or-later
+.\"
+.\"
+.SH "NAME"
+.B kresctl
+\- Control Knot Resolver @version@, the full caching DNSSEC-enabled resolver
+.SH "SYNOPSIS"
+.B kresctl
+.RB [ \-s | \-\-socket
+.IR API_SOCKET ]
+.IR <command>
+.IR <args>
+.SH "DESCRIPTION"
+.B \fIkresctl\fR is a control tool for Knot Resolver, a DNSSEC-enabled full caching resolver.
+.P
+
+\fBkresctl\fR may be used to control and inspect the configuration of running
+Knot Resolver via its HTTP API.
+
+Full documentation is available at
+\fIhttps://knot-resolver.readthedocs.io\fR or in package documentation
+(available as knot-resolver-doc package in most distributions.
+.SH OPTIONS
+The available options are:
+.TP
+.B \-s\fI <api_socket>\fR, \fB\-\-socket \fI<api_socket>
+
+Specify how to connect to a running Knot Resolver. Accepts path to Unix-domain
+socket or \fIhost:port\fR. Defaults to \fI/var/run/knot-resolver/manager.sock\fR
+
+Some commands do not require communication with the running resolver. In such
+cases, the value of this option is ignored and the command may succeed even
+if the socket is invalid.
+.B \-h, --help
+Print help message and exit.
+.SH COMMANDS
+.TP
+.B config [-d|--delete] [--stdin] \fIjson_ptr\fR \fI[new_value]\fR
+Get or modify resolver's runtime configuration.
+
+\fIjson_ptr\fR follows \fBRFC 6901\fR and specifies, which part of the configuration
+will the tool operate on. This argument is required. When not given any additional
+options or arguments, prints the current configured value. Equivalent to GET method
+in the underlying HTTP API.
+
+When \fB-d\fR or \fB--delete\fR is provided, \fBkresctl\fB tries to remove
+the runtime configuration subtree. The operation fails if it renders the
+configuration invalid. Equivalent to the DELETE method in the HTTP API.
+
+When \fB--stdin\fR or \fInew_value\fR are provided, the new value (from the
+argument or from reading stdin) is put into the configuration at the given
+\fIjson_ptr\fR. The operation fails if it renders the configuration invalid.
+Equivalent to PUT method in the underlying HTTP API.
+.TP
+.B stop
+Gracefully stops the running resolver.
+.SH "SEE ALSO"
+\fBkresd(8)\fR, @man_seealso_systemd@\fIhttps://knot-resolver.readthedocs.io/en/v@version@/\fR
+.SH "AUTHORS"
+.B kresd
+developers are mentioned in the AUTHORS file in the distribution.
)
install_man(man_kresd)
+man_kresctl = configure_file(
+ input: 'kresctl.8.in',
+ output: 'kresctl.8',
+ configuration: man_config,
+)
+install_man(man_kresctl)
# html and info documentation
if get_option('doc') == 'enabled'
sources: 'etc/knot-resolver/config.yml',
install_dir: etc_dir,
)
-
- # systemd service
- if systemd_files == 'enabled'
- install_data(
- sources: 'knot-resolver.service',
- install_dir: systemd_unit_dir,
- )
- endif
endif
\ No newline at end of file
tox = { cmd = "tox", help = "Run tests in tox" }
integration = {cmd = "python tests/integration/runner.py", help = "Run integration tests" }
configure-vscode = {cmd = "scripts/configure-vscode", help = "Create VSCode configuration for debugging, virtual envs etc" }
+man = {cmd = "scripts/man", help = "Display manpage from sources" }
[tool.black]
# fail even on unbound variables
set -o nounset
+
+
+function build_kresd {
+ echo
+ echo Building Knot Resolver
+ echo ----------------------
+ echo -e "${blue}In case of an compilation error, run this command to try to fix it:${reset}"
+ echo -e "\t${blue}rm -r $(realpath .install_kresd) $(realpath .build_kresd)${reset}"
+ echo
+ pushd ..
+ mkdir -p manager/.build_kresd manager/.install_kresd
+ meson manager/.build_kresd --prefix=$(realpath manager/.install_kresd) --default-library=static --buildtype=debug
+ ninja -C manager/.build_kresd
+ ninja install -C manager/.build_kresd
+ export PATH="$(realpath manager/.install_kresd)/sbin:$PATH"
+ popd
+}
--- /dev/null
+#!/bin/bash
+
+# ensure consistent behaviour
+src_dir="$(dirname "$(realpath "$0")")"
+source $src_dir/_env.sh
+
+build_kresd
+
+man -l .install_kresd/share/man/man8/$1*
\ No newline at end of file
src_dir="$(dirname "$(realpath "$0")")"
source $src_dir/_env.sh
-echo
-echo Building Knot Resolver
-echo ----------------------
-echo -e "${blue}In case of an compilation error, run this command to try to fix it:${reset}"
-echo -e "\t${blue}rm -r $(realpath .install_kresd) $(realpath .build_kresd)${reset}"
-echo
-cd ..
-mkdir -p manager/.build_kresd manager/.install_kresd
-meson manager/.build_kresd --prefix=$(realpath manager/.install_kresd) --default-library=static --buildtype=debug -Dmanager=enabled
-ninja -C manager/.build_kresd
-ninja install -C manager/.build_kresd
-export PATH="$(realpath manager/.install_kresd)/sbin:$PATH"
-cd manager
+build_kresd
echo
echo Building Knot Resolver Manager native extensions
{% else -%}
Depends: unsupported-distro-this-package-does-not-exist-and-the-test-should-fail
{%- endif %}
+
+
+Tests: manpage.sh
+Tests-Directory: manager/tests/packaging
+{% if distro.match('fedora') or distro.match('rocky') or distro.match('opensuse') -%}
+Depends: man
+{%- endif %}
--- /dev/null
+#!/bin/sh
+
+set -e
+
+man -w kresd
+man -w kresd.systemd
+man -w kresctl
[Unit]
Description=Knot Resolver Manager
+Documentation=man:knot-resolver.systemd(7)
+Wants=network-online.target
+After=network-online.target
+Before=nss-lookup.target
+Wants=nss-lookup.target
[Service]
Type=notify
ExecStart=/usr/bin/env python3 -m knot_resolver_manager --config=/etc/knot-resolver/config.yml
KillSignal=SIGINT
WorkingDirectory=/var/run/knot-resolver/
+User=@user@
+Group=@group@
+CapabilityBoundingSet=CAP_NET_BIND_SERVICE CAP_SETPCAP
+AmbientCapabilities=CAP_NET_BIND_SERVICE CAP_SETPCAP
# See systemd.service(5) for explanation, why we should replace this with a blocking request
# ExecReload=/usr/bin/env kill -HUP $MAINPID
sources: 'kresd.target',
install_dir: systemd_unit_dir,
)
+ manager_service = configure_file(
+ input: 'knot-resolver.service.in',
+ output: 'knot-resolver.service',
+ configuration: systemd_config,
+ install_dir: systemd_unit_dir,
+ )
## man page
kresd_systemd_man = configure_file(
projects / thirdparty / knot-resolver.git / commitdiff
