204 lines
5.2 KiB
Bash
204 lines
5.2 KiB
Bash
#!/bin/sh
|
||
#
|
||
# $FreeBSD$
|
||
#
|
||
|
||
# PROVIDE: named
|
||
# REQUIRE: FILESYSTEMS defaultroute ldconfig
|
||
# BEFORE: NETWORKING
|
||
# KEYWORD: shutdown
|
||
|
||
. /etc/rc.subr
|
||
|
||
name=named
|
||
rcvar=named_enable
|
||
|
||
load_rc_config $name
|
||
|
||
extra_commands=reload
|
||
|
||
start_precmd=named_prestart
|
||
start_postcmd=named_poststart
|
||
reload_cmd=named_reload
|
||
stop_cmd=named_stop
|
||
|
||
named_enable=${named_enable:-"NO"} # Run named, the DNS server (or NO).
|
||
named_program=${named_program:-"%%PREFIX%%/sbin/named"} # Path to named, if you want a different one.
|
||
named_conf=${named_conf:-"%%BIND_DESTETC%%/named.conf"} # Path to the configuration file
|
||
named_flags=${named_flags:-""} # Use this for flags OTHER than -u and -c
|
||
named_uid=${named_uid:-"bind"} # User to run named as
|
||
named_wait=${named_wait:-"NO"} # Wait for working name service before exiting
|
||
named_wait_host=${named_wait_host:-"localhost"} # Hostname to check if named_wait is enabled
|
||
named_auto_forward=${named_auto_forward:-"NO"} # Set up forwarders from /etc/resolv.conf
|
||
named_auto_forward_only=${named_auto_forward_only:-"NO"} # Do "forward only" instead of "forward first"
|
||
named_confdir="${named_conf%/*}" # Not a configuration directive but makes rclint happy.
|
||
|
||
named_poststart()
|
||
{
|
||
if checkyesno named_wait; then
|
||
until ${command%/sbin/named}/bin/host $named_wait_host >/dev/null 2>&1; do
|
||
echo " Waiting for nameserver to resolve $named_wait_host"
|
||
sleep 1
|
||
done
|
||
fi
|
||
}
|
||
|
||
named_reload()
|
||
{
|
||
# This is a one line function, but ${command} is not defined early
|
||
# enough to be there when the reload_cmd variable is defined up there.
|
||
${command%/named}/rndc reload
|
||
}
|
||
|
||
find_pidfile()
|
||
{
|
||
if get_pidfile_from_conf pid-file $named_conf; then
|
||
pidfile="$_pidfile_from_conf"
|
||
else
|
||
pidfile="/var/run/named/pid"
|
||
fi
|
||
}
|
||
|
||
named_stop()
|
||
{
|
||
find_pidfile
|
||
|
||
# This duplicates an undesirably large amount of code from the stop
|
||
# routine in rc.subr in order to use rndc to shut down the process,
|
||
# and to give it a second chance in case rndc fails.
|
||
rc_pid=$(check_pidfile $pidfile $command)
|
||
if [ -z "$rc_pid" ]; then
|
||
[ -n "$rc_fast" ] && return 0
|
||
_run_rc_notrunning
|
||
return 1
|
||
fi
|
||
echo 'Stopping named.'
|
||
if ${command%/named}/rndc stop 2>/dev/null; then
|
||
wait_for_pids $rc_pid
|
||
else
|
||
echo -n 'rndc failed, trying kill: '
|
||
kill -TERM $rc_pid
|
||
wait_for_pids $rc_pid
|
||
fi
|
||
}
|
||
|
||
create_file()
|
||
{
|
||
if [ -e "$1" ]; then
|
||
unlink $1
|
||
fi
|
||
install -o root -g wheel -m 0644 /dev/null $1
|
||
}
|
||
|
||
named_prestart()
|
||
{
|
||
find_pidfile
|
||
|
||
if [ -n "$named_pidfile" ]; then
|
||
warn 'named_pidfile: now determined from the conf file'
|
||
fi
|
||
|
||
piddir=`/usr/bin/dirname ${pidfile}`
|
||
if [ ! -d ${piddir} ]; then
|
||
install -d -o ${named_uid} -g ${named_uid} ${piddir}
|
||
fi
|
||
|
||
command_args="-u ${named_uid:=root} -c $named_conf $command_args"
|
||
|
||
local line nsip firstns
|
||
|
||
# Create an rndc.key file for the user if none exists
|
||
#
|
||
confgen_command="${command%/named}/rndc-confgen -a -b256 -u $named_uid \
|
||
-c ${named_confdir}/rndc.key"
|
||
if [ -s "${named_confdir}/rndc.conf" ]; then
|
||
unset confgen_command
|
||
fi
|
||
if [ -s "${named_confdir}/rndc.key" ]; then
|
||
case `stat -f%Su ${named_confdir}/rndc.key` in
|
||
root|$named_uid) ;;
|
||
*) $confgen_command ;;
|
||
esac
|
||
else
|
||
$confgen_command
|
||
fi
|
||
|
||
local checkconf
|
||
|
||
checkconf="${command%/named}/named-checkconf"
|
||
|
||
# Create a forwarder configuration based on /etc/resolv.conf
|
||
if checkyesno named_auto_forward; then
|
||
if [ ! -s /etc/resolv.conf ]; then
|
||
warn "named_auto_forward enabled, but no /etc/resolv.conf"
|
||
|
||
# Empty the file in case it is included in named.conf
|
||
[ -s "${named_confdir}/auto_forward.conf" ] &&
|
||
create_file ${named_confdir}/auto_forward.conf
|
||
|
||
$checkconf $named_conf ||
|
||
err 3 'named-checkconf for $named_conf failed'
|
||
return
|
||
fi
|
||
|
||
create_file /var/run/naf-resolv.conf
|
||
create_file /var/run/auto_forward.conf
|
||
|
||
echo ' forwarders {' > /var/run/auto_forward.conf
|
||
|
||
while read line; do
|
||
case "$line" in
|
||
'nameserver '*|'nameserver '*)
|
||
nsip=${line##nameserver[ ]}
|
||
|
||
if [ -z "$firstns" ]; then
|
||
if [ ! "$nsip" = '127.0.0.1' ]; then
|
||
echo 'nameserver 127.0.0.1'
|
||
echo " ${nsip};" >> /var/run/auto_forward.conf
|
||
fi
|
||
|
||
firstns=1
|
||
else
|
||
[ "$nsip" = '127.0.0.1' ] && continue
|
||
echo " ${nsip};" >> /var/run/auto_forward.conf
|
||
fi
|
||
;;
|
||
esac
|
||
|
||
echo $line
|
||
done < /etc/resolv.conf > /var/run/naf-resolv.conf
|
||
|
||
echo ' };' >> /var/run/auto_forward.conf
|
||
echo '' >> /var/run/auto_forward.conf
|
||
if checkyesno named_auto_forward_only; then
|
||
echo " forward only;" >> /var/run/auto_forward.conf
|
||
else
|
||
echo " forward first;" >> /var/run/auto_forward.conf
|
||
fi
|
||
|
||
if cmp -s /etc/resolv.conf /var/run/naf-resolv.conf; then
|
||
unlink /var/run/naf-resolv.conf
|
||
else
|
||
[ -e /etc/resolv.conf ] && unlink /etc/resolv.conf
|
||
mv /var/run/naf-resolv.conf /etc/resolv.conf
|
||
fi
|
||
|
||
if cmp -s ${named_confdir}/auto_forward.conf \
|
||
/var/run/auto_forward.conf; then
|
||
unlink /var/run/auto_forward.conf
|
||
else
|
||
[ -e "${named_confdir}/auto_forward.conf" ] &&
|
||
unlink ${named_confdir}/auto_forward.conf
|
||
mv /var/run/auto_forward.conf \
|
||
${named_confdir}/auto_forward.conf
|
||
fi
|
||
else
|
||
# Empty the file in case it is included in named.conf
|
||
[ -s "${named_confdir}/auto_forward.conf" ] &&
|
||
create_file ${named_confdir}/auto_forward.conf
|
||
fi
|
||
|
||
$checkconf $named_conf || err 3 'named-checkconf for $named_conf failed'
|
||
}
|
||
|
||
run_rc_command "$1"
|