<refpurpose>Resolve domain names, IPV4 and IPv6 addresses, DNS resource records, and services</refpurpose>
<refname>resolvconf</refname>
<refpurpose>Resolve domain names, IPV4 and IPv6 addresses, DNS resource records, and services; introspect and reconfigure the DNS resolver</refpurpose>
</refnamediv>
<refsynopsisdiv>
@@ -134,6 +135,18 @@
<command> --revert</command>
</cmdsynopsis>
<cmdsynopsis>
<command>resolvconf</command>
<argchoice="opt"rep="repeat">OPTIONS</arg>
<command> -a <replaceable>INTERFACE</replaceable> < <replaceable>FILE</replaceable></command>
Would you consider supporting -l [interface]? The information and logic to support it is easily available, and so it wouldn't be cumbersome to support. This is used by wg-quick(8) to (optionally) save the active runtime configuration when deleting the interface.
I think providing the API for 3rd party tools to hook into is priority, and I figure that's mostly -a and -d. OTOH -l is mostly user-facing, and we do have "systemd-resolve --status" covering that already (and without the skewedness because resolved's and resolvconf's concept don't match 100%).
That said, I think we can totally add support for that later on, if people want that (and apparently they do, as you have just shown). But I think it's just the cherry on top, and not not necessary to make the basic functionality work.
Or to say this differently: a PR adding support for that on top of this once it's merged would be very welcome!
Indeed the other program supports many things too, but the point of having resolvconf in the first place is to maintain compatibility with scripts, just like shutdown and the rest. wg-quick(8) won't be growing support for a cornucopia of different DNS management invocations, preferring instead to use a single API (resolvconf). It's just a shell script after all.
Hmm, that script uses -m 0 -x btw, which isn't in the debian implementation. It appears the script only works with openresolv.
What confuses me a bit is this line in that script:
resolvconf -a "tun.$INTERFACE" -m 0 -x
The interface argument is reversed: According to the manpages you are supposed to specified the interface first, and the protocol second. i.e. it should be $INTERFACE.tun and not tun.$INTERFACE. (Oh, and I think it would be more expressive if you'd use "wguard or so instead of "tun" as protocol ID).
I figure if you want to be compatible with Debian's, openresolv's and FreeBSD's implementation you'd have to rewrite your command line to use this syntax:
IF_METRIC=0 IF_EXCLUSIVE=1 resolvconf -a $INTERFACE.wireguard < …
That line also does the right thing with the implementation provided by this PR, as it also honours the IF_EXCLUSIVE command line arguments.
And I fear that the "-l" thing you can't use if you care about general Debian compatibility.
Actually those arguments are silently ignored, which is why, I assume, they're also ignored on systemd. This allows us to keep compat on both.
We're then doing the tun. prefix hack do that the interface is ordered on top, as Debian's uses a fixed order based on interface prefix. This simulates the -m 0 behavior, though we're out on -x. I hadn't seen those environment variables before and I wonder if they're new. I'll take a look and add those in, since they importantly won't do harm on other implementations.
The take away is that since Debian turns unknown instructions into no-ops, we can support multiple ones at the same time.
Actually those arguments are silently ignored, which is why, I assume, they're also ignored on systemd.
are they? i just checked out the resolvconf upstream git repo, and if i run the command there with -x it will say "resolvconf: Error: Command not recognized" and refuse operation. I don't think -x and -m works on the Debian resolvconv. Hence if you want to communicate the metric or exclusive mode to resolvconf where it's supported then you have to go the env var way
We're then doing the tun. prefix hack do that the interface is ordered on top, as Debian's uses a fixed order based on interface prefix.
Uh, but that's against the documentation, and I am pretty sure will break various backend implementations that actually care that the interface name you specify is valid. I mean, the original resolvconf exists precisely to allow multiple backends, no? If you use it on top of classic bind, then the interface name needs to be parsable properly, as one exaple.
The compat implementation of this PR also expects that the interface name is valid. It will generate an error if it isn't.
The compat implementation of this PR also expects that the interface name is valid. It will generate an error if it isn't.
Ahh, okay, that could be problematic, then, unless what you're saying about IF_EXCLUSIVE is actually true in current versions, in which case, I wouldn't need the tun. prefix hack. I can't find that, though:
<listitem><para>These switches are not supported and the command will fail if used.</para></listitem>
</varlistentry>
</variablelist>
<para>See <citerefentry><refentrytitle>resolvconf</refentrytitle><manvolnum>8</manvolnum></citerefentry> for details on this command line options.</para>
We'll probably need to make this optional, since people install systemd into their root file system and might not want to overwrite their installed resolvconf. But this can be done later.
That doesn't make much sense to cross from rootsbindir to bindir. resolvconf is in /sbin on Ubuntu/Debian, sp the second argument has to use rootsbindir. We can either say "who cares" and live with the fact that we'll have a dangling symlink until /usr is mounted, or move systemd-resolve to /bin. I don't care either way, maybe people who use split-usr can chime in?
@mbiebl, @martinpitt, does /sbin/resolvconf need to be usable before /usr is mounted?
@keszybz on the systems that boot with systemd, our initramfs insures that /usr is mounted. So no. But there are things that use resolvconf state in the initramfs and hope that it will be transfered into the root filesystem, post initramfs. I have not yet checked, but it would be extra nice if there is e.g. path&service unit combos that process /run/resolvconf/interface/$IFACE files on boot. I didn't read all of the pull request, to check if this is done or not.
ProTip!
Use n and p to navigate between commits in a pull request.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.
I think this also needs an entry in the synopsis.