]>
git.ipfire.org Git - thirdparty/pdns.git/log
bert hubert [Mon, 6 Mar 2017 13:44:37 +0000 (14:44 +0100)]
Close #1844: we report 1200 qps as 1.1e3 qps in auth webserver.
bert hubert [Mon, 6 Mar 2017 13:12:17 +0000 (14:12 +0100)]
Merge pull request #4752 from mind04/norec
Remove recursion from auth
Remi Gacogne [Mon, 6 Mar 2017 11:04:24 +0000 (12:04 +0100)]
Merge pull request #4958 from paddg/patch-5
Tuning unit file for medium sized setups
Pieter Lexis [Mon, 6 Mar 2017 11:02:12 +0000 (12:02 +0100)]
Merge pull request #4966 from pari-/master
rec: enhance documentation
Pieter Lexis [Mon, 6 Mar 2017 11:02:05 +0000 (12:02 +0100)]
Merge pull request #5087 from Habbie/escape
escape markdown formatting chars
Pieter Lexis [Mon, 6 Mar 2017 11:01:55 +0000 (12:01 +0100)]
Merge pull request #5096 from pieterlexis/docs-howto-modernize
Docs: modernize the 'database' howto somewhat
Pieter Lexis [Mon, 6 Mar 2017 11:01:41 +0000 (12:01 +0100)]
Merge pull request #5100 from rgacogne/auth-docs-packet-cache-ttl
auth: Document that the cache respect the answer's TTL
Remi Gacogne [Mon, 6 Mar 2017 08:35:01 +0000 (09:35 +0100)]
Merge pull request #5089 from pieterlexis/dnsdist-api-404
dnsdist: Send a 404 on unknown API path
Remi Gacogne [Mon, 6 Mar 2017 08:32:21 +0000 (09:32 +0100)]
Merge pull request #5070 from pieterlexis/dnsdist-addAction-accept-DNSName
dnsdist addAction: Also DNSName(s)
bert hubert [Fri, 3 Mar 2017 15:15:11 +0000 (16:15 +0100)]
Merge pull request #5094 from ahupowerdns/rfc2308
make our zone parser adhere to RFC2308 wrt implicit TTLs and add test. Adds note to release notes, plus some documentation to nobackend regression tests.
Pieter Lexis [Fri, 3 Mar 2017 14:30:58 +0000 (15:30 +0100)]
More sles dnsdist builder things
Pieter Lexis [Fri, 3 Mar 2017 13:36:25 +0000 (14:36 +0100)]
Merge pull request #5104 from pieterlexis/sles-dnsdist-pkg
Add SLES support to dnsdist build-script
Peter van Dijk [Fri, 3 Mar 2017 13:30:16 +0000 (14:30 +0100)]
Merge pull request #5098 from shantikulkarni/patch-1
SOA object is required for all reverse zones
bert hubert [Fri, 3 Mar 2017 12:52:08 +0000 (13:52 +0100)]
document the breaking change in zonefile parsing for the release notes.
bert hubert [Tue, 28 Feb 2017 16:22:16 +0000 (17:22 +0100)]
make our zone parser adhere to RFC2308 wrt implicit TTLs and add test
bert hubert [Wed, 1 Mar 2017 11:56:32 +0000 (12:56 +0100)]
make rfc2308 test less fragile by using jq
bert hubert [Tue, 28 Feb 2017 16:26:11 +0000 (17:26 +0100)]
and a README to help the user get up to speed with these tests
bert hubert [Tue, 28 Feb 2017 16:22:16 +0000 (17:22 +0100)]
make our zone parser adhere to RFC2308 wrt implicit TTLs and add test
Pieter Lexis [Fri, 3 Mar 2017 10:16:07 +0000 (11:16 +0100)]
Add SLES support to dnsdist build-script
Patrick Ringl [Thu, 2 Mar 2017 23:50:16 +0000 (00:50 +0100)]
rec: enhance documentation by adding/correcting 'Available
since'-tags for the diversity of available options
Remi Gacogne [Thu, 2 Mar 2017 14:36:44 +0000 (15:36 +0100)]
auth: Document that the cache respect the answer's TTL
Pieter Lexis [Wed, 22 Feb 2017 17:04:22 +0000 (18:04 +0100)]
dnsdist addAction: Also DNSName(s)
Peter van Dijk [Mon, 27 Feb 2017 19:29:05 +0000 (20:29 +0100)]
escape markdown formatting chars
shantikulkarni [Thu, 2 Mar 2017 03:16:09 +0000 (21:16 -0600)]
SOA object is required for all reverse zones
As of 4.0.3, an reverse lookups in LDAP strict mode will not work without there being an object with an SOA entry for the reverse lookup zone. This requirement is a change from 3.3.3. (Issue #5086)
Remi Gacogne [Wed, 1 Mar 2017 18:51:45 +0000 (19:51 +0100)]
Merge pull request #5097 from baloo/baloo/bugfixes/pysnmp
dnsdist: pysnmp4.3.4 fix compatibility problems with pyasn1
Arthur Gautier [Wed, 1 Mar 2017 17:48:21 +0000 (17:48 +0000)]
dnsdist: pysnmp4.3.3 fix compatibility problems with pyasn1
Signed-off-by: Arthur Gautier <baloo@gandi.net>
Arthur Gautier [Wed, 1 Mar 2017 17:47:59 +0000 (17:47 +0000)]
Revert "Fix pysnmp test error."
This reverts commit
9f512fd73afe7c2bceb8e42d7ff7eba527300408 .
Pieter Lexis [Wed, 1 Mar 2017 15:39:24 +0000 (16:39 +0100)]
Docs: modernize the 'database' howto somewhat
bert hubert [Tue, 28 Feb 2017 14:54:24 +0000 (15:54 +0100)]
Merge pull request #5092 from Habbie/unknown-types-jdnssec
map CDS and CDNSKEY to TYPExxx for jdnssec-verifyzone
Pieter Lexis [Mon, 27 Feb 2017 20:10:18 +0000 (21:10 +0100)]
dnsdist: Send a 404 on unknown API path
Before, a 401 would be sent for unknown API paths due to the strict
checking.
Peter van Dijk [Tue, 28 Feb 2017 09:30:04 +0000 (10:30 +0100)]
map CDS and CDNSKEY to TYPExxx for jdnssec-verifyzone
bert hubert [Tue, 28 Feb 2017 09:23:05 +0000 (10:23 +0100)]
correct RPZ attribution
Remi Gacogne [Tue, 28 Feb 2017 07:57:03 +0000 (08:57 +0100)]
Merge pull request #5090 from baloo/baloo/bugfixes/pysnmp-fix
dnsdist: Fix pysnmp test error.
Arthur Gautier [Tue, 28 Feb 2017 00:21:14 +0000 (00:21 +0000)]
Fix pysnmp test error.
Should be reverted once https://github.com/etingof/pysnmp/issues/40 is
fixed and released (and pysnmp bumped to the newest version).
Signed-off-by: Arthur Gautier <baloo@gandi.net>
Pieter Lexis [Mon, 27 Feb 2017 14:29:41 +0000 (15:29 +0100)]
Merge pull request #5043 from cmouse/mydns
mydnsbackend: Add getAllDomains
Pieter Lexis [Mon, 27 Feb 2017 14:29:29 +0000 (15:29 +0100)]
Merge pull request #5063 from ahupowerdns/recwcardcname
Implement CNAME wildcards in recursor authoritative component
Pieter Lexis [Mon, 27 Feb 2017 14:29:17 +0000 (15:29 +0100)]
Merge pull request #5064 from pieterlexis/issue-554-generated-source
Indicate that dnslabeltext.cc is generated
Pieter Lexis [Mon, 27 Feb 2017 14:28:59 +0000 (15:28 +0100)]
Merge pull request #5078 from pieterlexis/issue-4939-error-on-non-existing-lua-conf
Throw an error when lua-conf-file can't be loaded
bert hubert [Fri, 24 Feb 2017 16:30:59 +0000 (17:30 +0100)]
Merge pull request #5085 from rgacogne/calidns-ipv6
calidns: Use the correct socket family (IPv4 / IPv6)
bert hubert [Fri, 24 Feb 2017 16:19:39 +0000 (17:19 +0100)]
add actual wildcard cname to test zone
Remi Gacogne [Fri, 24 Feb 2017 15:42:55 +0000 (16:42 +0100)]
calidns: Use the correct socket family (IPv4 / IPv6)
bert hubert [Fri, 24 Feb 2017 15:29:00 +0000 (16:29 +0100)]
add a regression test for wildcard cnames recursor auth
Remi Gacogne [Fri, 24 Feb 2017 14:52:49 +0000 (15:52 +0100)]
Merge pull request #4920 from plzz/chopoff
Register DNSName::chopOff in lua
bert hubert [Tue, 21 Feb 2017 12:19:08 +0000 (13:19 +0100)]
With this commit, the recursor authoritative server can deal with CNAME wildcards. This closes #2818.
Jussi Peltola [Fri, 24 Feb 2017 03:22:43 +0000 (05:22 +0200)]
Document return value of chopOff
bert hubert [Thu, 23 Feb 2017 19:26:45 +0000 (20:26 +0100)]
Merge pull request #4549 from zeha/dnsrr
Remove d_place from DNSResourceRecord
bert hubert [Thu, 23 Feb 2017 15:25:40 +0000 (16:25 +0100)]
FindNS lookup should actually look at an UeberBackend. This solves mind04's concerns. It also makes the code compile again.
bert hubert [Thu, 23 Feb 2017 12:30:37 +0000 (13:30 +0100)]
Merge branch 'master' into dnsrr
Pieter Lexis [Thu, 23 Feb 2017 10:08:16 +0000 (11:08 +0100)]
Throw an error when lua-conf-file can't be loaded
This ensures we cannot start up if the file is unreadable.
Closes #4939
Pieter Lexis [Tue, 21 Feb 2017 17:55:43 +0000 (18:55 +0100)]
Merge pull request #5003 from rgacogne/tsig-tests
Refactoring of the TSIG handling
Pieter Lexis [Tue, 21 Feb 2017 17:27:22 +0000 (18:27 +0100)]
Indicate that dnslabeltext.cc is generated
Closes #554
bert hubert [Tue, 21 Feb 2017 14:37:23 +0000 (15:37 +0100)]
Merge pull request #4988 from rgacogne/rec-incoming-ecs
rec: Add `use-incoming-edns-subnet` to process and pass along ECS
Pieter Lexis [Tue, 21 Feb 2017 13:06:57 +0000 (14:06 +0100)]
Document minimal version for metadata through the API
Pieter Lexis [Tue, 21 Feb 2017 09:00:31 +0000 (10:00 +0100)]
Merge pull request #4712 from cmouse/patch-1
Update version number for Lua updatePolicy
Pieter Lexis [Tue, 21 Feb 2017 08:59:30 +0000 (09:59 +0100)]
Merge pull request #4922 from Habbie/ldap-ptr-fix
fix ldap-strict autoptr feature, including a test
Pieter Lexis [Tue, 21 Feb 2017 08:59:13 +0000 (09:59 +0100)]
Merge pull request #4950 from rgacogne/suffix-match-node-merge
Refactor SuffixMatchNode using a SuffixMatchTree
Pieter Lexis [Tue, 21 Feb 2017 08:58:59 +0000 (09:58 +0100)]
Merge pull request #4953 from pieterlexis/issue-349-602-slave-checking-backoff
Auth: Incremental backoff for failed slave checks
Pieter Lexis [Tue, 21 Feb 2017 08:58:24 +0000 (09:58 +0100)]
Merge pull request #4990 from rgacogne/rec-snmp-clean
rec: Add SNMP support
Pieter Lexis [Tue, 21 Feb 2017 08:58:06 +0000 (09:58 +0100)]
Merge pull request #4989 from rgacogne/dnsdist-snmp-clean
dnsdist: Add SNMP support
Pieter Lexis [Tue, 21 Feb 2017 08:57:50 +0000 (09:57 +0100)]
Merge pull request #5036 from rgacogne/dnsdist-delay-cache-hit
dnsdist: Apply delay to cache hits, locally generated responses
Pieter Lexis [Tue, 21 Feb 2017 08:57:31 +0000 (09:57 +0100)]
Merge pull request #5037 from rgacogne/dnsdist-dont-cache-servfail
dnsdist: Don't cache ServFail / Refused if the TTL is set to 0
Pieter Lexis [Tue, 21 Feb 2017 08:57:15 +0000 (09:57 +0100)]
Merge pull request #5056 from rgacogne/dnsdist-no-shadow
dnsdist: Don't shadow variables
Pieter Lexis [Tue, 21 Feb 2017 08:56:55 +0000 (09:56 +0100)]
Merge pull request #5058 from rgacogne/rec-fast-rpz-update
Rec: Store the RPZ policies in an unordered_map instead of a map
Remi Gacogne [Tue, 21 Feb 2017 08:46:40 +0000 (09:46 +0100)]
dnsdist: Set TasksMax to 8192, recent distros default to more than 4k
Remi Gacogne [Thu, 9 Feb 2017 14:01:41 +0000 (15:01 +0100)]
rec: Add `use-incoming-edns-subnet` to process and pass along ECS
If set, the recusor will process and pass along a received EDNS
Client Subnet to authoritative servers.
The ECS information will only be sent for netmasks and domains listed
in `edns-subnet-whitelist`, and will be truncated if the received scope
exceeds `ecs-ipv4-bits` for IPv4 or `ecs-ipv6-bits` for IPv6.
An incoming ECS source prefix-length of 0 can also be used to
request that no ECS value be sent to the authoritative servers,
in accordance with RFC7871.
Remi Gacogne [Thu, 9 Feb 2017 13:50:11 +0000 (14:50 +0100)]
Correctly parse ECS with a source prefix-length value of 0
It means there is no address there, but the family and source
prefix-length values are still relevant. rfc7871 explicitly says
that the family SHOULD be set to the transport over which the query
is sent if source prefix-length is 0.
It also states that a source prefix-length means the client is
asking that no ECS value be sent.
bert hubert [Mon, 20 Feb 2017 14:52:10 +0000 (15:52 +0100)]
Merge pull request #5042 from rgacogne/state-holder-allocate-and-copy-before-lock
StateHolder: Allocate (and copy if needed) before taking the lock
Remi Gacogne [Mon, 20 Feb 2017 14:45:22 +0000 (15:45 +0100)]
Rec: Store the RPZ policies in an unordered_map instead of a map
This speeds up the loading of huge zones a bit (~20%) while also nicely
improving the lookup speed.
Also adds a `zoneSizeHint` parameter to `rpzFile()` and `rpzMaster()` to be
able to reserve space before loading the zone, to prevent reallocation
and rehashing when possible.
Pieter Lexis [Mon, 20 Feb 2017 12:31:04 +0000 (13:31 +0100)]
Merge pull request #4982 from rgacogne/rec-gettag-data
rec: Allow returning the `DNSQuestion`'s `data` table from `gettag()`
Pieter Lexis [Mon, 20 Feb 2017 12:30:39 +0000 (13:30 +0100)]
Merge pull request #4997 from cmouse/fix-remotebackend-params
Fix remotebackend params
Pieter Lexis [Mon, 20 Feb 2017 12:29:56 +0000 (13:29 +0100)]
Merge pull request #5006 from peterthomassen/master
docs: improve documentation of MySQL foreign keys
Pieter Lexis [Mon, 20 Feb 2017 12:29:46 +0000 (13:29 +0100)]
Merge pull request #5038 from pieterlexis/API-allow-X-metadata
API: Allow setting extra domain metadata
Pieter Lexis [Mon, 20 Feb 2017 12:29:32 +0000 (13:29 +0100)]
Merge pull request #5041 from pieterlexis/boost-m4-update
Add GCC 6.3 to boost.m4
Pieter Lexis [Mon, 20 Feb 2017 12:29:13 +0000 (13:29 +0100)]
Merge pull request #5049 from rgacogne/ox-coverity-fixes
Minor fixes based on Coverity's report
Pieter Lexis [Mon, 20 Feb 2017 12:28:46 +0000 (13:28 +0100)]
Merge pull request #5051 from Habbie/odbc-query-logging
fix godbc query logging
Peter Thomassen [Mon, 20 Feb 2017 10:26:05 +0000 (11:26 +0100)]
docs: improve documentation of MySQL foreign keys
So far, the docs mentioned the foreign key for the records table only.
However, if foreign keys are used, they also make sense for the
domainmetadata, cryptokeys, and comments tables.
Corresponding SQL is already in an .sql file in the repository. This
commit replaces the incomplete information with these statements.
Remi Gacogne [Mon, 20 Feb 2017 10:22:34 +0000 (11:22 +0100)]
dnsdist: Don't shadow variables
Fix shadowed variables reported by `-Wshadow`.
Remi Gacogne [Mon, 20 Feb 2017 10:21:55 +0000 (11:21 +0100)]
LuaWrapper: Don't shadow variables
Fix shadowed variables reported by `-Wshadow`.
Remi Gacogne [Mon, 20 Feb 2017 10:20:57 +0000 (11:20 +0100)]
YaHTTP: Don't shadow variables
Merged upstream in
2fb4d972176d25e0de4875141e3f28a4b12bba6b .
Peter van Dijk [Fri, 17 Feb 2017 15:36:25 +0000 (16:36 +0100)]
fix godbc query logging
Pieter Lexis [Fri, 17 Feb 2017 14:35:07 +0000 (15:35 +0100)]
Merge pull request #5050 from pieterlexis/update-copyright-year
Update copyright for several files
Pieter Lexis [Fri, 17 Feb 2017 14:34:41 +0000 (15:34 +0100)]
Merge pull request #4798 from pieterlexis/limit-max-cache-ttl-minimum
rec: put 15 seconds lower bound on max-cache-ttl
Pieter Lexis [Wed, 15 Feb 2017 09:40:23 +0000 (10:40 +0100)]
API: Allow setting extra domain metadata
This allows setting domain metadata starting with "X-".
Pieter Lexis [Fri, 17 Feb 2017 11:41:30 +0000 (12:41 +0100)]
Update copyright statements missed in #4163
Pieter Lexis [Fri, 17 Feb 2017 10:00:38 +0000 (11:00 +0100)]
Merge pull request #4912 from pieterlexis/issue-4848-chroot-systemd
Refuse to start with chroot set in a systemd env
Pieter Lexis [Fri, 17 Feb 2017 09:58:13 +0000 (10:58 +0100)]
Merge pull request #4960 from zeha/default-settings
recursor: use explicit yes for default-enabled settings
Remi Gacogne [Thu, 16 Feb 2017 12:59:54 +0000 (13:59 +0100)]
Fix coverity nits
Remi Gacogne [Thu, 16 Feb 2017 12:59:28 +0000 (13:59 +0100)]
Catch exceptions in destructors
Peter van Dijk [Thu, 16 Feb 2017 14:52:01 +0000 (15:52 +0100)]
Merge pull request #4873 from mind04/
ed25519
update
Ed25519 algorithm number and mnemonic and hook up algorithm 15 in the recursor
Aki Tuomi [Thu, 16 Feb 2017 13:20:15 +0000 (15:20 +0200)]
mydnsbackend: Add getAllDomains
Pieter Lexis [Thu, 16 Feb 2017 13:08:40 +0000 (14:08 +0100)]
Update copyright year in publicly visible output and files
Remi Gacogne [Tue, 14 Feb 2017 17:46:38 +0000 (18:46 +0100)]
StateHolder: Allocate (and copy if needed) before taking the lock
Pieter Lexis [Thu, 16 Feb 2017 08:56:42 +0000 (09:56 +0100)]
Add GCC 6.3 to boost.m4
bert hubert [Wed, 15 Feb 2017 13:00:00 +0000 (14:00 +0100)]
Merge pull request #4998 from cmouse/patch-2
Update PULL_REQUEST_TEMPLATE.md
bert hubert [Wed, 15 Feb 2017 12:58:48 +0000 (13:58 +0100)]
Merge pull request #5004 from rgacogne/rec-lowercase-qname-nit
rec: Use `DNSName::makeLowerCase()` instead of converting to string and back
Remi Gacogne [Wed, 15 Feb 2017 08:30:00 +0000 (09:30 +0100)]
dnsdist: Don't cache ServFail / Refused if the TTL is set to 0
Remi Gacogne [Wed, 15 Feb 2017 08:27:03 +0000 (09:27 +0100)]
dnsdist: Apply delay to cache hits, locally generated responses
Pieter Lexis [Fri, 27 Jan 2017 15:57:41 +0000 (16:57 +0100)]
Auth: Incremental backoff for failed slave checks
Closes #349
Closes #602
Pieter Lexis [Mon, 16 Jan 2017 11:37:13 +0000 (12:37 +0100)]
Refuse to start with chroot set in a systemd env
Closes #4848
Remi Gacogne [Sun, 12 Feb 2017 22:45:39 +0000 (23:45 +0100)]
Refactoring of the TSIG handling
* Merge all the TSIG checks into `validateTSIG()` to remove
code duplication and make it easier to audit
* Add unit tests