From: Bruno Wolff III <bruno@wolff.to>
To: "Jason A. Donenfeld" <Jason@zx2c4.com>
Cc: WireGuard mailing list <WireGuard@lists.zx2c4.com>
Subject: Re: [WireGuard] Comments on wgserver.service
Date: Wed, 6 Jul 2016 10:19:11 -0500 [thread overview]
Message-ID: <20160706151911.GA11926@wolff.to> (raw)
In-Reply-To: <CAHmME9qs42O4KQtsuZDdPGPKEkyxGhHEGxB3crkrgrAaLDKh3w@mail.gmail.com>
On Wed, Jul 06, 2016 at 16:33:02 +0200,
"Jason A. Donenfeld" <Jason@zx2c4.com> wrote:
>
>Thanks for your feedback on this. That's a good idea to call ip-link
>del first. I get that the - will make the error non-fatal, but will it
>also suppress writing the error message into journald?
I don't think so. I see 'Cannot find device "wg0"' that looks like it
comes from that command. It doesn't show up in systemctl status output
though.
>Please feel free to make wgserver.service into a more robust unit file
>and send patches (git-send-email), or make a few different unit files
>show casing different types of configurations. I'm not a huge systemd
>guy, so I just sort of threw that together haphazardly. It'd be nice
>also to see this integrated into systemd-networkd and the .network
>units. Are you involved with upstream at all? Interested in taking
>this integration work on?
After I hear back about the systemd bug, I'll submit a simple change
for robustness.
Some of the other stuff seems situational and I'm not sure makes for
great examples. If I figure out a standard way to make sure dns is
available, I'll include something for that, since that would be
reasonable to do by default. But that is beyond my current systemd
knowledge.
I don't know systemd well at all. Based on your example and some reading,
I know significantly more today than I did yesterday morning. I do some
stuff for Fedora and once in a while I'll do a bisect to try to narrow
down a problem I'm having with a kernel on my hardware. I'm not a kernel
developer at all.
Wireguard caught my eye because of the timing. I was looking at trying to
set up an ipsec tunnel in preperation for having my work desktop switching
to a non-routable IP address. Working with wireguard looked easier than
trying to figure out ipsec, even with having to build wireguard from source.
Potentially I could get involved with packing wg on Fedora, but there isn't
much point until the kernel part is upstream.
next prev parent reply other threads:[~2016-07-06 15:19 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-07-06 12:04 [WireGuard] Comments on wgserver.service Bruno Wolff III
2016-07-06 14:33 ` Jason A. Donenfeld
2016-07-06 15:19 ` Bruno Wolff III [this message]
2016-07-06 15:22 ` Jason A. Donenfeld
2016-07-06 15:47 ` Bruno Wolff III
2016-07-06 15:58 ` Jason A. Donenfeld
2016-07-06 15:28 ` Daniel Kahn Gillmor
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20160706151911.GA11926@wolff.to \
--to=bruno@wolff.to \
--cc=Jason@zx2c4.com \
--cc=WireGuard@lists.zx2c4.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox