]>
git.ipfire.org Git - thirdparty/pdns.git/log
Remi Gacogne [Mon, 2 Mar 2020 15:46:46 +0000 (16:46 +0100)]
dnsdist: Don't reuse Proxy Protocol-enabled TCP connections to backends
Remi Gacogne [Fri, 28 Feb 2020 14:24:19 +0000 (15:24 +0100)]
rec: Fix a typo in one of the comment, reported by Habbie (thx!)
Remi Gacogne [Thu, 27 Feb 2020 11:34:23 +0000 (12:34 +0100)]
rec: Enforce 'proxy-protocol-maximum-size'
Remi Gacogne [Wed, 26 Feb 2020 11:20:00 +0000 (12:20 +0100)]
rec: Add regression tests for the proxy protocol
Remi Gacogne [Tue, 25 Feb 2020 10:04:59 +0000 (11:04 +0100)]
dnsdist: Make the Proxy Protocol tests compatible with Python 2
Remi Gacogne [Mon, 24 Feb 2020 15:28:15 +0000 (16:28 +0100)]
dnsdist: Add setProxyProtocolValuesAction()
Remi Gacogne [Mon, 24 Feb 2020 14:40:22 +0000 (15:40 +0100)]
dnsdist: Add regression tests for the proxy protocol
Remi Gacogne [Fri, 21 Feb 2020 18:07:26 +0000 (19:07 +0100)]
dnsdist: Add a proxy protocol header to DoH queries as well
Remi Gacogne [Thu, 27 Feb 2020 13:37:30 +0000 (14:37 +0100)]
rec: Add documentation for the new settings and Lua bindings
Remi Gacogne [Wed, 26 Feb 2020 17:25:24 +0000 (18:25 +0100)]
rec: Export Proxy Protocol values to gettag hooks
Remi Gacogne [Thu, 20 Feb 2020 11:12:15 +0000 (12:12 +0100)]
rec: Drop truncated UDP dgrams. Only accept large packets w/ proxy
Remi Gacogne [Thu, 20 Feb 2020 11:11:34 +0000 (12:11 +0100)]
Add proxy protocol unit tests, fix some parsing issues
Remi Gacogne [Wed, 19 Feb 2020 14:15:38 +0000 (15:15 +0100)]
Implement support for 'LOCAL' proxy protocol command
Remi Gacogne [Thu, 20 Feb 2020 11:13:55 +0000 (12:13 +0100)]
dnsdist: Run the proxy protocol unit tests
Remi Gacogne [Thu, 27 Feb 2020 13:40:30 +0000 (14:40 +0100)]
rec: Add support for TLV values
Remi Gacogne [Thu, 27 Feb 2020 13:40:23 +0000 (14:40 +0100)]
dnsdist: Add TLV support
Remi Gacogne [Thu, 27 Feb 2020 13:40:14 +0000 (14:40 +0100)]
rec: Parse incoming proxy protocol
Remi Gacogne [Thu, 20 Feb 2020 14:13:00 +0000 (15:13 +0100)]
dnsdist: Initial implementation of outgoing proxy protocol
Peter van Dijk [Wed, 5 Feb 2020 12:47:52 +0000 (13:47 +0100)]
sdig stdin: attempt to decode proxy headers
Peter van Dijk [Wed, 5 Feb 2020 12:10:41 +0000 (13:10 +0100)]
sdig: add basic TCP support to stdin packet parsing
Peter van Dijk [Tue, 22 Oct 2019 17:58:50 +0000 (19:58 +0200)]
proxy protocol first steps
Peter van Dijk [Tue, 22 Oct 2019 17:01:49 +0000 (19:01 +0200)]
sdig manpage: fix typo
Remi Gacogne [Tue, 17 Mar 2020 10:51:33 +0000 (11:51 +0100)]
Merge pull request #8937 from rgacogne/ddist-fstrm-options
dnsdist: Make FrameStream IO parameters configurable
Remi Gacogne [Mon, 16 Mar 2020 10:24:06 +0000 (11:24 +0100)]
rec: Fix typos in the documentation of the FrameStream configuration
Remi Gacogne [Mon, 16 Mar 2020 10:23:11 +0000 (11:23 +0100)]
dnsdist: Make FrameStream IO parameters configurable
Peter van Dijk [Mon, 16 Mar 2020 09:04:41 +0000 (10:04 +0100)]
Merge pull request #8925 from RobinGeuze/fixNSEC3ForUnpublishedDNSKEYs
Fix it so NSEC and NSEC3 records if there are no published DNSKEY's
Peter van Dijk [Sun, 15 Mar 2020 21:16:39 +0000 (22:16 +0100)]
Merge pull request #8933 from yantarou/typo_fix
Fix typo
Jan Hilberath [Sun, 15 Mar 2020 10:51:09 +0000 (19:51 +0900)]
Fix typo
Robin Geuze [Sat, 14 Mar 2020 11:24:35 +0000 (12:24 +0100)]
Also only add CDS and CDNSKEY to the type map in case we have published DNSKEY's
Peter van Dijk [Fri, 13 Mar 2020 20:51:51 +0000 (21:51 +0100)]
Merge pull request #8929 from mind04/pdns-cache-clean
auth: make sure we look at 10% of all cached items during cleanup
Kees Monshouwer [Thu, 12 Mar 2020 18:17:19 +0000 (19:17 +0100)]
auth: make sure we look at 10% of all cached items during cleanup
Robin Geuze [Fri, 13 Mar 2020 12:09:10 +0000 (13:09 +0100)]
Fix it so NSEC and NSEC3 records will not include DNSKEY in the typemap if there are no published DNSKEY records
Remi Gacogne [Thu, 12 Mar 2020 09:31:41 +0000 (10:31 +0100)]
Merge pull request #8909 from rgacogne/ddist-bounded-load-weight
dnsdist: Implement bounded loads for the whashed and wrandom policies
Peter van Dijk [Mon, 9 Mar 2020 16:59:01 +0000 (17:59 +0100)]
Merge pull request #8908 from Habbie/auth-malloc-arena
auth docs: talk about glibc & MALLOC_ARENA_MAX
Remi Gacogne [Mon, 9 Mar 2020 10:32:54 +0000 (11:32 +0100)]
Merge pull request #8900 from rgacogne/openssl-libssl-detection
Detect {Libre,Open}SSL functions availability during configure
Remi Gacogne [Mon, 9 Mar 2020 09:07:40 +0000 (10:07 +0100)]
Merge pull request #8887 from rgacogne/remote-logger-keep-queueing-reconnect
Better handling of reconnections in Remote Logger (dnsdist, rec)
Remi Gacogne [Fri, 6 Mar 2020 16:26:50 +0000 (17:26 +0100)]
dnsdist: Make sure that the bounded-load factor is >= .0
Remi Gacogne [Fri, 6 Mar 2020 16:18:25 +0000 (17:18 +0100)]
dnsdist: Fix mistake in the bounded-load documentation of chashed
Remi Gacogne [Fri, 6 Mar 2020 11:00:46 +0000 (12:00 +0100)]
dnsdist: Implement bounded loads for the whashed and wrandom policies
Also make sure that the chashed implementation respects the weights,
and properly handle backends that are not available during the
bounds computation.
Remi Gacogne [Fri, 6 Mar 2020 14:17:45 +0000 (15:17 +0100)]
Remote Logger: Add comments and catch() advised by Otto during review
Also remove the now unused d_maxQueuedBytes field.
Remi Gacogne [Tue, 3 Mar 2020 11:24:34 +0000 (12:24 +0100)]
Better handling of reconnections in Remote Logger (dnsdist, rec)
- Do not lock while trying to reconnect ;
- Try to reconnect right away if the disconnection was detected in
the maintenance thread ;
- Keep queueing messages when the connection has been lost, until
the buffer gets full.
Peter van Dijk [Fri, 6 Mar 2020 10:13:54 +0000 (11:13 +0100)]
also note new syntax
Peter van Dijk [Fri, 6 Mar 2020 10:03:18 +0000 (11:03 +0100)]
auth docs: talk about glibc & MALLOC_ARENA_MAX
Otto Moerbeek [Fri, 6 Mar 2020 06:16:11 +0000 (07:16 +0100)]
Merge pull request #8898 from omoerbeek/rec-shared-cache-only
Rec: share record cache between threads
Otto Moerbeek [Fri, 6 Mar 2020 06:10:29 +0000 (07:10 +0100)]
Merge pull request #8902 from Habbie/doc-6373
rec: note dnstap for auth communication in changelog
Remi Gacogne [Thu, 5 Mar 2020 22:04:50 +0000 (23:04 +0100)]
Merge pull request #8901 from rgacogne/ddist-docs-8683
dnsdist: Fix documentation for functions removed in 1.3.0
Remi Gacogne [Thu, 5 Mar 2020 22:04:34 +0000 (23:04 +0100)]
Merge pull request #8903 from rgacogne/ddist-7950-unused-lamba-capture
dnsdist: Fix 'unused lambda capture' warning without DoH or DoT
Remi Gacogne [Thu, 5 Mar 2020 22:04:21 +0000 (23:04 +0100)]
Merge pull request #8905 from rgacogne/ddist-dns-query-default
dnsdist: Change the default DoH path from / to /dns-query
Peter van Dijk [Thu, 5 Mar 2020 21:42:15 +0000 (22:42 +0100)]
Merge pull request #8907 from Habbie/backport-8714-to-auth-4.3.x
auth-4.3: Reduce the number of temporary memory allocations
Remi Gacogne [Mon, 17 Feb 2020 14:08:21 +0000 (15:08 +0100)]
Move the logic of validDNSName to DNSName::has8bitBytes()
(cherry picked from commit
bf7ef5b4ee0ce310db0a3761a8250f86a5fea20d )
Remi Gacogne [Thu, 30 Jan 2020 14:12:57 +0000 (15:12 +0100)]
auth: Skip the construction of a root DNSName when possible
(cherry picked from commit
020b94c9e00434a509b8f46af070afb2f2afa4b5 )
Remi Gacogne [Thu, 30 Jan 2020 14:10:42 +0000 (15:10 +0100)]
auth: Prevent temporary objects in the DNSBackend::get() overrides
(cherry picked from commit
2ea3d25e0c9eeefdb6d625bc314ad40a19022e23 )
Remi Gacogne [Fri, 17 Jan 2020 15:46:49 +0000 (16:46 +0100)]
auth: Reserve the needed space in the vector of keys
(cherry picked from commit
fb4c0e19ccaaed9b88426ca3183b33271be2ecd6 )
Remi Gacogne [Fri, 17 Jan 2020 14:15:16 +0000 (15:15 +0100)]
auth: Reduce the number of allocations in apiServerZones()
(cherry picked from commit
c8b929d9f1b17cb3ca73a309172d6929254bf91c )
Remi Gacogne [Tue, 14 Jan 2020 16:26:15 +0000 (17:26 +0100)]
auth: Reduce the number of memory allocations
(cherry picked from commit
9bbcf03a6ff139016686e97a387cc6787a3990ce )
Peter van Dijk [Thu, 5 Mar 2020 20:08:07 +0000 (21:08 +0100)]
Merge pull request #8714 from rgacogne/auth-less-allocs
auth: Reduce the number of temporary memory allocations
Remi Gacogne [Thu, 5 Mar 2020 14:28:56 +0000 (15:28 +0100)]
dnsdist: Change the default DoH path from / to /dns-query
Remi Gacogne [Thu, 5 Mar 2020 10:36:33 +0000 (11:36 +0100)]
dnsdist: Fix 'unused lambda capture' warning without DoH or DoT
Peter van Dijk [Thu, 5 Mar 2020 10:25:32 +0000 (11:25 +0100)]
rec: note dnstap for auth communication in changelog
Remi Gacogne [Thu, 5 Mar 2020 09:48:32 +0000 (10:48 +0100)]
dnsdist: Fix documentation for functions removed in 1.3.0
Remi Gacogne [Thu, 5 Mar 2020 09:30:03 +0000 (10:30 +0100)]
Merge pull request #8899 from rgacogne/ddist-key-log-file-unavailable
dnsdist: Document that the 'keyLogFile' option requires OpenSSL >= 1.1.1
Remi Gacogne [Thu, 5 Mar 2020 09:29:13 +0000 (10:29 +0100)]
Merge pull request #8897 from rgacogne/ddist-doc-raw
dnsdist: Fix the SpoofRawAction() example in the documentation
Remi Gacogne [Thu, 5 Mar 2020 09:22:17 +0000 (10:22 +0100)]
Detect {Libre,Open}SSL functions availability during configure
Instead of using version numbers, which is brittle, notably because
LibreSSL faked the OpenSSL version numbers at some point without
implementing all the newly introduced functions.
Remi Gacogne [Wed, 4 Mar 2020 16:45:33 +0000 (17:45 +0100)]
dnsdist: Document that the 'keyLogFile' option requires OpenSSL >= 1.1.1
Also add a warning if the option is enabled on a too old version of
OpenSSL.
Remi Gacogne [Wed, 4 Mar 2020 14:09:09 +0000 (15:09 +0100)]
dnsdist: Include the "Netmask" class reference in the documentation
Remi Gacogne [Wed, 4 Mar 2020 14:08:46 +0000 (15:08 +0100)]
dnsdist: Fix 'Inline literal start-string without end-string' in the netmask doc
Remi Gacogne [Wed, 4 Mar 2020 14:08:05 +0000 (15:08 +0100)]
dnsdist: Fix the SpoofRawAction() example in the documentation
Otto Moerbeek [Wed, 4 Mar 2020 13:09:55 +0000 (14:09 +0100)]
Merge commit '
a264db6bd2fbf06596a7c182ac9670b0b4490960 ' into rec-shared-cache-only
Otto Moerbeek [Wed, 4 Mar 2020 13:07:02 +0000 (14:07 +0100)]
Merge pull request #8895 from omoerbeek/rec-fix-backslashes2
rec: second attempt: use ``...`` for literals.
Otto Moerbeek [Wed, 4 Mar 2020 10:46:40 +0000 (11:46 +0100)]
Second attempt: use ``...`` for literals.
Otto Moerbeek [Tue, 4 Feb 2020 09:31:00 +0000 (10:31 +0100)]
Fix merge botch
Otto Moerbeek [Mon, 16 Dec 2019 14:54:25 +0000 (15:54 +0100)]
Typos and ws
Otto Moerbeek [Mon, 16 Dec 2019 09:02:33 +0000 (10:02 +0100)]
Run tests with different shard settings
Otto Moerbeek [Fri, 13 Dec 2019 11:56:02 +0000 (12:56 +0100)]
Contention stats plus variable # of shards
Otto Moerbeek [Fri, 13 Dec 2019 10:37:57 +0000 (11:37 +0100)]
Collect some stats
Otto Moerbeek [Wed, 11 Dec 2019 13:01:59 +0000 (14:01 +0100)]
Better way for pruning if cleaning dead entries wasn't enough
Otto Moerbeek [Tue, 10 Dec 2019 07:23:41 +0000 (08:23 +0100)]
Do a 2nd run with hot cache
Otto Moerbeek [Mon, 9 Dec 2019 10:55:51 +0000 (11:55 +0100)]
Run more variations of rec bulk test and also do two runs: one to
warm the record cache and a second to use it
Otto Moerbeek [Fri, 6 Dec 2019 13:49:36 +0000 (14:49 +0100)]
Also invalidate cachecache on prune
Otto Moerbeek [Fri, 6 Dec 2019 10:39:38 +0000 (11:39 +0100)]
Show recursor log on failure
Otto Moerbeek [Wed, 4 Dec 2019 16:00:25 +0000 (17:00 +0100)]
get total size beforehand
Otto Moerbeek [Wed, 4 Dec 2019 14:35:40 +0000 (15:35 +0100)]
wip2
Otto Moerbeek [Mon, 2 Dec 2019 15:04:26 +0000 (16:04 +0100)]
wip
Otto Moerbeek [Wed, 4 Mar 2020 09:15:14 +0000 (10:15 +0100)]
Merge pull request #8893 from omoerbeek/rec-docs-backslashes
In .rts a \ is \\.
Otto Moerbeek [Wed, 4 Mar 2020 09:03:37 +0000 (10:03 +0100)]
In .rts a \ is \\.
Fixes #8858.
Remi Gacogne [Wed, 4 Mar 2020 09:01:16 +0000 (10:01 +0100)]
Merge pull request #8891 from rgacogne/ci-fuzz
Enable CI Fuzz: run our fuzz targets each time a pull request is submitted
Remi Gacogne [Tue, 3 Mar 2020 21:39:42 +0000 (22:39 +0100)]
Enable CI Fuzz: run our fuzz targets each time a pull request is submitted
Peter van Dijk [Tue, 3 Mar 2020 21:03:18 +0000 (22:03 +0100)]
Merge pull request #8888 from Habbie/auth-4.3.x-backports
auth 4.3.x: two backports
Remi Gacogne [Tue, 3 Mar 2020 19:15:04 +0000 (20:15 +0100)]
Merge pull request #8882 from qvr/ssl_ctx_set_timeout
dnsdist: add sessionTimeout setting for TLS session lifetime
Remi Gacogne [Tue, 3 Mar 2020 19:14:25 +0000 (20:14 +0100)]
Merge pull request #8886 from rgacogne/rec-fix-ttl-cache-recursorcache-forward
rec: Ignore off-by-one TTL in the cache-recursorcache-forward test
Otto Moerbeek [Tue, 3 Mar 2020 15:39:20 +0000 (16:39 +0100)]
Merge pull request #8889 from omoerbeek/seczone-tidy
EOL rec-4.0.x and tidy a few entries.
Otto Moerbeek [Tue, 3 Mar 2020 14:57:11 +0000 (15:57 +0100)]
EOL rec-4.0.x and tidy a few entries.
Peter van Dijk [Tue, 3 Mar 2020 13:52:08 +0000 (14:52 +0100)]
Merge pull request #8851 from nbkowalewski/master
sdig man page: fix markup in synopsis, add usage hints, examples
Otto Moerbeek [Mon, 24 Feb 2020 14:58:08 +0000 (15:58 +0100)]
It's 2020
(backport of #8857)
(cherry picked from commit
9fce9d6c21253da0fbeed5163d148be4a0bad1f6 )
Peter van Dijk [Fri, 28 Feb 2020 10:53:30 +0000 (11:53 +0100)]
travis: skip odbc testing, we have it in circleci, closes #8796
(backport of #8877)
(cherry picked from commit
0d756465537c613b48c9b3bc3aa85d1b13090543 )
Remi Gacogne [Tue, 3 Mar 2020 11:01:50 +0000 (12:01 +0100)]
Merge pull request #8883 from rgacogne/remote-logger-full
Add 'queue full' metrics for our remote logger, log at debug only
Otto Moerbeek [Tue, 3 Mar 2020 09:36:47 +0000 (10:36 +0100)]
Formatting
Matti Hiljanen [Tue, 3 Mar 2020 09:22:03 +0000 (11:22 +0200)]
dnsdist: document sessionTimeout
Otto Moerbeek [Tue, 3 Mar 2020 09:17:00 +0000 (10:17 +0100)]
Merge pull request #8884 from omoerbeek/prep-rec-4.3.0
rec: prep for rec-4.3.0
Remi Gacogne [Mon, 2 Mar 2020 16:25:00 +0000 (17:25 +0100)]
rec: Ignore off-by-one TTL in the cache-recursorcache-forward test
Sometimes just a bit more than 3s went by, and that's fine.