openwrt
coredns: separate the server from wgsd to general purpose package
📦 Package Details
Maintainer: @vooon
Description:
- Add coredns package 1.13.2
- Make wgsd-coredns package transitional to coredns with wgsd plugin enabled
- Make coredns plugin list configurable, disable heavy plugins by default and add wgsd plugin
- Place the service into ujail
- Alternative solution to #26879
🧪 Run Testing Details
- OpenWrt Version: master
- OpenWrt Target/Subtarget: x86_64 glibc
- OpenWrt Device: x86_64 VM
✅ Formalities
- [x] I have reviewed the CONTRIBUTING.md file for detailed contributing guidelines.
@BKPepe i think this one solution better, but i don't know how to make a transition package because wgsd-coredns should not only +coredns but also make CONFIG_COREDNS_PLUGIN_WGSD=y.
Out of curiosity I've implemented wgsd on the Ucode, it much smaller and i also added support for AmneziaWG. https://github.com/vooon/wgsd-ucode
CC: @GeorgeSapkin @BKPepe @1715173329
The changes from the initial patch:
- Made
wgsd-corednstransitional package tocoredns, so old configs transition clearly - Jailed the service. CoreDNS do not write files, but depending on your config you may need to access some extra files, e.g. zones, dnssec keys, so
ro_mountallow user to grant access to extra files/dirs.
@vooon: It is a nice PR :) Hope it will be reviewed...
There is a new version with CVE fixes:
- https://github.com/coredns/coredns/releases
@vooon: Thanks for the description update!
It is the moment to contact OpenWrt team?
@1715173329 @GeorgeSapkin there a little change since last review - i've added netbox plugin, which i'm thinking to use.
Can you reword the commit subject to something like:
coredns: separate the server from wgsd
so it passes formalities and CI can build the package?
@GeorgeSapkin done.
I've updated version to 1.13.2 and also added fanout plugin.