]>
git.ipfire.org Git - thirdparty/pdns.git/log
Remi Gacogne [Wed, 21 Jun 2017 09:39:19 +0000 (10:39 +0100)]
Merge pull request #5383 from RobinGeuze/fixStatsCasing
dnsdist: Change dnsdist stats functions to always return lowercase names
Pieter Lexis [Wed, 21 Jun 2017 08:57:24 +0000 (10:57 +0200)]
Merge pull request #5428 from gertvdijk/rec-docs-show-ntas
rec_control documentation fix: `show-ntas` -> `get-ntas`
Pieter Lexis [Wed, 21 Jun 2017 08:57:07 +0000 (10:57 +0200)]
Merge pull request #5429 from gertvdijk/rec-docs-dont-query
rec: Document behaviour of dont-query with forward-zones.
Pieter Lexis [Wed, 21 Jun 2017 08:52:32 +0000 (10:52 +0200)]
Merge pull request #5413 from Habbie/rpm-missing-schema
add 3.4.0_to_4.1.0_schema.mysql.sql to backend-mysql rpm
Peter van Dijk [Wed, 21 Jun 2017 08:45:14 +0000 (10:45 +0200)]
Merge pull request #5427 from mind04/decaf
hello decaf signers (
ED25519 and ED448)
Remi Gacogne [Wed, 21 Jun 2017 07:34:01 +0000 (08:34 +0100)]
Merge pull request #5434 from PowerDNS/rules-docs
Document that rules are not for creating by the thousands
bert hubert [Tue, 20 Jun 2017 20:58:17 +0000 (22:58 +0200)]
Document that rules are not for creating by the thousands
This addresses #5433, which featured a user attempting to create 30k rules.
Kees Monshouwer [Mon, 19 Jun 2017 09:09:47 +0000 (11:09 +0200)]
add ED448 to signers unit test
Peter van Dijk [Sat, 17 Jun 2017 17:01:52 +0000 (19:01 +0200)]
initial stab at signer testing; has one 8080 test vector for now
Kees Monshouwer [Sat, 17 Jun 2017 15:31:41 +0000 (17:31 +0200)]
hello decaf signers (
ED25519 and ED448)
Testing algorithm 15: 'Decaf
ED25519 ' ->'Decaf
ED25519 ' -> 'Decaf
ED25519 ' Signature & verify ok, signature 68usec, verify 93usec
Testing algorithm 16: 'Decaf ED448' ->'Decaf ED448' -> 'Decaf ED448' Signature & verify ok, signature 163usec, verify 252usec
Gert van Dijk [Mon, 19 Jun 2017 21:08:25 +0000 (23:08 +0200)]
rec: Document behaviour of dont-query with forward-zones.
In testing, it appears to me that setting a zone in forward-zones to query
for an address limited by dont-query is not stopped by it.
Gert van Dijk [Mon, 19 Jun 2017 20:49:46 +0000 (22:49 +0200)]
rec_control doc fix: show-ntas -> get-ntas
The documented rec_control command show-ntas does not appear to be correct.
Peter van Dijk [Mon, 19 Jun 2017 15:21:55 +0000 (17:21 +0200)]
Merge pull request #5386 from rgacogne/dnsdist-action-truncate
dnsdist: Make a `truncate` action available to DynBlock and Lua
Peter van Dijk [Mon, 19 Jun 2017 15:19:37 +0000 (17:19 +0200)]
Merge pull request #5369 from rgacogne/dnsdist-recordstypecount-max
dnsdist: Fix RecordsTypeCountRule's handling of the # of records in a section
Peter van Dijk [Mon, 19 Jun 2017 15:17:25 +0000 (17:17 +0200)]
Merge pull request #5371 from DanAnkers/patch-1
[documentation] [geoipbackend] Add notes about "services" and CNAME handling
Peter van Dijk [Mon, 19 Jun 2017 15:14:45 +0000 (17:14 +0200)]
Merge pull request #5362 from rgacogne/rec-asan-stack-switch-api-3
rec: Add support for the new ASAN fiber switch API
Peter van Dijk [Mon, 19 Jun 2017 15:09:10 +0000 (17:09 +0200)]
Merge pull request #5414 from rgacogne/more-nm-unit-tests
Add more tests to the Netmask unit tests
Peter van Dijk [Mon, 19 Jun 2017 15:08:35 +0000 (17:08 +0200)]
Merge pull request #5417 from lifeforms/docs-recursor-fix
howtos: avoid unrestricted recursive resolution in 4.0.x ALIAS example
Peter van Dijk [Sat, 17 Jun 2017 15:11:13 +0000 (17:11 +0200)]
Merge pull request #5422 from mind04/
ed25519
do not hash the message in the
ed25519 signer
Kees Monshouwer [Fri, 16 Jun 2017 20:29:13 +0000 (22:29 +0200)]
do not hash the message in the
ed25519 signer
https://www.rfc-editor.org/errata_search.php?rfc=8080
This is a Native zone
Metadata items: None
Zone has NSEC semantics
keys:
ID = 1 (CSK), flags = 257, tag = 3613, algo = 15, bits = 256 Active (
ED25519 )
CSK DNSKEY = example.com. IN DNSKEY 257 3 15 l02Woi0iS8Aa25FQkUd9RMzZHJpBoRQwAQEX1SxZJA4= ; (
ED25519 )
DS = example.com. IN DS 3613 15 1
b2c63605467c4a40942b47a953e9c0d38f81083a ; ( SHA1 digest )
DS = example.com. IN DS 3613 15 2
3aa5ab37efce57f737fc1627013fee07bdf241bd10f3b1964ab55c78e79a304b ; ( SHA256 digest )
DS = example.com. IN DS 3613 15 4 89389da437fca8372e67359dfc0dd4428fa2615df6e31bc5501677dd068514fea5c4efaf82188530a8a1645d9d3ef884 ; ( SHA-384 digest )
DNSKEY and DS match
Walter Hop [Thu, 15 Jun 2017 16:47:44 +0000 (18:47 +0200)]
howtos: avoid unrestricted recursive resolution in 4.0.x ALIAS example
Remi Gacogne [Thu, 15 Jun 2017 14:36:52 +0000 (16:36 +0200)]
Add more tests to the Netmask unit tests
Additional tests:
* getBits()
* isIpv4()
* isIPv6()
* getNetwork()
* getMaskedNetwork()
* check that Netmasks constructed from ComboAddresses with different
ports match
Peter van Dijk [Thu, 15 Jun 2017 12:44:06 +0000 (14:44 +0200)]
Merge pull request #5367 from pieterlexis/pdnsutil-and-sql-statements-in-doc
Docs: add pdnsutil examples to domain metadata
Peter van Dijk [Thu, 15 Jun 2017 12:38:54 +0000 (14:38 +0200)]
Merge pull request #5363 from mind04/axfr-rectify
add root zone to rectify-axfr test
Peter van Dijk [Thu, 15 Jun 2017 12:35:42 +0000 (14:35 +0200)]
Merge pull request #5379 from pieterlexis/smimea
Add the SMIMEA RRType (RFC 8162)
Peter van Dijk [Thu, 15 Jun 2017 12:34:52 +0000 (14:34 +0200)]
Merge pull request #5372 from rgacogne/rec-edns-cache-bees
rec: Don't take the initial ECS source for a scope one if EDNS is off
Peter van Dijk [Thu, 15 Jun 2017 12:32:57 +0000 (14:32 +0200)]
Merge pull request #5387 from Gibheer/master
allow control socket to listen on IPv6
Peter van Dijk [Thu, 15 Jun 2017 12:32:32 +0000 (14:32 +0200)]
Merge pull request #5389 from zeha/api-cname
API: Auth: forbid mixing CNAME and other RRsets
Peter van Dijk [Thu, 15 Jun 2017 12:30:11 +0000 (14:30 +0200)]
Merge pull request #5412 from lifeforms/docs-recursor-fix
howtos: add ALIAS recursor note for 4.0.x compatibility
Peter van Dijk [Thu, 15 Jun 2017 11:59:17 +0000 (13:59 +0200)]
add 3.4.0_to_4.1.0_schema.mysql.sql to backend-mysql rpm
Walter Hop [Thu, 15 Jun 2017 11:14:57 +0000 (13:14 +0200)]
howtos: add ALIAS recursor note for 4.0.x compatibility
Remi Gacogne [Thu, 15 Jun 2017 08:13:36 +0000 (09:13 +0100)]
Merge pull request #5408 from ahupowerdns/netmask-port
when making a netmask from a comboaddress, we neglected to zero the port
bert hubert [Thu, 15 Jun 2017 01:14:01 +0000 (03:14 +0200)]
when making a netmask from a comboaddress, we neglected to zero the port. This could lead to a proliferation of netmasks.
Remi Gacogne [Wed, 14 Jun 2017 14:15:53 +0000 (15:15 +0100)]
Merge pull request #5402 from rgacogne/rec-disable-use-incoming-ecs
rec: Disable use-incoming-edns-subnet by default
Remi Gacogne [Wed, 14 Jun 2017 14:15:34 +0000 (15:15 +0100)]
Merge pull request #5404 from rgacogne/rec-snmp-master-socket-switch
rec: snmp-master-socket is a parameter, not a switch
Remi Gacogne [Wed, 14 Jun 2017 12:36:14 +0000 (14:36 +0200)]
rec: snmp-master-socket is a parameter, not a switch
Remi Gacogne [Wed, 14 Jun 2017 12:26:18 +0000 (14:26 +0200)]
rec: Disable use-incoming-edns-subnet by default
Remi Gacogne [Wed, 14 Jun 2017 07:38:44 +0000 (08:38 +0100)]
Merge pull request #5399 from ahupowerdns/ecs-packet-cache
with this, EDNS Client Subnet becomes compatible with the packet cache
Remi Gacogne [Wed, 14 Jun 2017 07:31:51 +0000 (08:31 +0100)]
Merge pull request #5397 from ahupowerdns/no-lua-ecs
also set d_requestor without Lua: the ECS logic needs it
bert hubert [Wed, 14 Jun 2017 06:35:53 +0000 (08:35 +0200)]
with this, EDNS Client Subnet becomes compatible with the packet cache, using the existing variable answer facility.
bert hubert [Tue, 13 Jun 2017 22:41:27 +0000 (00:41 +0200)]
also set d_requestor without Lua: the ECS logic needs it
Remi Gacogne [Thu, 1 Jun 2017 15:20:58 +0000 (17:20 +0200)]
rec: Add support for the new ASAN fiber switch API
Pieter Lexis [Tue, 13 Jun 2017 11:35:18 +0000 (13:35 +0200)]
Merge pull request #5394 from pieterlexis/rec-405-release
Update docs and secpoll for Recursor 4.0.5
Pieter Lexis [Tue, 13 Jun 2017 11:35:01 +0000 (13:35 +0200)]
Merge pull request #5395 from Habbie/auth-404-rc1-docs
Update docs and secpoll for auth 4.0.4 rc1
Peter van Dijk [Tue, 13 Jun 2017 10:33:42 +0000 (12:33 +0200)]
Merge pull request #4965 from DrRemorse/forward-notify
Feature request: PowerDNS Forward-Notify Patch
Peter van Dijk [Tue, 13 Jun 2017 10:06:51 +0000 (12:06 +0200)]
Update docs and secpoll for auth 4.0.4 rc1
Pieter Lexis [Tue, 13 Jun 2017 09:47:03 +0000 (11:47 +0200)]
Update docs and secpoll for Recursor 4.0.5
Peter van Dijk [Mon, 12 Jun 2017 20:58:53 +0000 (22:58 +0200)]
Merge pull request #5377 from mind04/case
NSEC fixes
Peter van Dijk [Mon, 12 Jun 2017 19:56:11 +0000 (21:56 +0200)]
Merge pull request #5373 from mind04/dnssec-axfr
Dnssec axfr
Kees Monshouwer [Sun, 4 Jun 2017 11:31:54 +0000 (13:31 +0200)]
auth: make sure Lua axfrfilter() does not insert out of zone data
Kees Monshouwer [Sun, 4 Jun 2017 11:29:48 +0000 (13:29 +0200)]
auth: some small rectify improvements
Kees Monshouwer [Sun, 4 Jun 2017 11:27:07 +0000 (13:27 +0200)]
auth: make sure upcase qnames do not confuse rectify
Kees Monshouwer [Mon, 12 Jun 2017 19:21:03 +0000 (21:21 +0200)]
auth: make sure all qnames entering pdns via axfr are properly lowered
Kees Monshouwer [Sun, 4 Jun 2017 11:12:13 +0000 (13:12 +0200)]
add makeUsRelative() to DNSName class
Kees Monshouwer [Sun, 4 Jun 2017 22:47:05 +0000 (00:47 +0200)]
auth: test to make sure ordername is always lower case
Peter van Dijk [Mon, 12 Jun 2017 19:07:44 +0000 (21:07 +0200)]
Merge pull request #5384 from mind04/feedrecord-dnsname
auth: feedRecord() string->DNSName and...
Christian Hofstaedtler [Sun, 11 Jun 2017 20:37:37 +0000 (22:37 +0200)]
API: Auth: forbid mixing CNAME and other RRsets
Fixes #5305.
Gibheer [Fri, 9 Jun 2017 07:48:55 +0000 (09:48 +0200)]
allow listening on IPv6
In IPv6 only environments it is not possible to listen on IPv6 addresses
for the control port.
This change takes a look at the provided IP and changes the connection type
to the correct address family.
Remi Gacogne [Thu, 8 Jun 2017 11:01:17 +0000 (13:01 +0200)]
dnsdist: Make a `truncate` action available to DynBlock and Lua
Robin Geuze [Tue, 6 Jun 2017 18:27:19 +0000 (20:27 +0200)]
Change dnsdist stats functions to always return lowercase names
Pieter Lexis [Mon, 5 Jun 2017 11:48:24 +0000 (13:48 +0200)]
Add the SMIMEA RRType (RFC 8162)
Remi Gacogne [Tue, 6 Jun 2017 06:32:17 +0000 (07:32 +0100)]
Merge pull request #5374 from mind04/tools
auth: build all tools in travis and fix speedtest build
Kees Monshouwer [Mon, 5 Jun 2017 22:21:15 +0000 (00:21 +0200)]
auth: reanimate opendbx backend
Kees Monshouwer [Mon, 5 Jun 2017 20:48:38 +0000 (22:48 +0200)]
auth: fix override in ldap backend
Kees Monshouwer [Mon, 5 Jun 2017 20:13:16 +0000 (22:13 +0200)]
auth: fix override in lua backend
Kees Monshouwer [Mon, 5 Jun 2017 20:04:38 +0000 (22:04 +0200)]
auth: fix possible uninitalized variable in ldapbackend
Kees Monshouwer [Mon, 5 Jun 2017 19:39:43 +0000 (21:39 +0200)]
auth: use override in backends to prevent future mistakes
Kees Monshouwer [Mon, 5 Jun 2017 18:38:08 +0000 (20:38 +0200)]
auth: feedRecord() ordename is now a DNSName
Kees Monshouwer [Sat, 3 Jun 2017 14:25:02 +0000 (16:25 +0200)]
auth: ignore NSEC3PARAM in an unsigned zone
Kees Monshouwer [Thu, 1 Jun 2017 23:08:27 +0000 (01:08 +0200)]
auth: keep slave dnssec status in sync with the master
Remi Gacogne [Fri, 2 Jun 2017 17:11:54 +0000 (19:11 +0200)]
rec: Log the content of ImmediateServFailException in getRootNS()
Daniel Ankers [Fri, 2 Jun 2017 16:16:24 +0000 (17:16 +0100)]
Add notes about "services" and CNAME handling
The "services" section returns either resource records or CNAMEs depending on what is configured in the "records" section.
Add some documentation around this.
Remi Gacogne [Fri, 2 Jun 2017 12:52:14 +0000 (14:52 +0200)]
dnsdist: Fix RecordsTypeCountRule's handling of the # of records in a section
Remi Gacogne [Fri, 2 Jun 2017 11:52:00 +0000 (13:52 +0200)]
rec: Don't take the initial ECS source for a scope one if EDNS is off
Pieter Lexis [Fri, 2 Jun 2017 09:55:11 +0000 (11:55 +0200)]
Docs: add pdnsutil examples to domain metadata
Pieter Lexis [Fri, 2 Jun 2017 09:06:01 +0000 (11:06 +0200)]
Merge pull request #5339 from pieterlexis/calidns-additions
calidns: add --increment and --want-recursion flags
Pieter Lexis [Thu, 1 Jun 2017 15:15:35 +0000 (17:15 +0200)]
calidns: fix spelling for initial and fix a nit
Pieter Lexis [Thu, 1 Jun 2017 14:24:29 +0000 (16:24 +0200)]
Merge pull request #4955 from klaus3000/upgradingto40
add prepared statements and CAA records to the upgrade info
Pieter Lexis [Thu, 1 Jun 2017 14:15:02 +0000 (16:15 +0200)]
Merge pull request #5233 from mind04/prepared
some sql improvements
Pieter Lexis [Thu, 1 Jun 2017 14:02:00 +0000 (16:02 +0200)]
Merge pull request #5316 from mind04/axfr-filter
auth: add option to set a global lua-axfr-script value
Pieter Lexis [Thu, 1 Jun 2017 14:00:26 +0000 (16:00 +0200)]
Merge pull request #5359 from rgacogne/dnsdist-no-useless-moves
dnsdist: Get rid of std::move() calls preventing copy elision
Pieter Lexis [Thu, 1 Jun 2017 13:09:13 +0000 (15:09 +0200)]
Changelog: fix render issue
Pieter Lexis [Thu, 1 Jun 2017 12:57:25 +0000 (14:57 +0200)]
Merge pull request #5360 from pieterlexis/rec-405-rc2-changelog
Add the Recursor 4.0.5 rc 2 changelog
Pieter Lexis [Thu, 1 Jun 2017 11:54:48 +0000 (13:54 +0200)]
Add the Recursor 4.0.5 rc 2 changelog
Also, order the items somewhat and add additional information
Remi Gacogne [Thu, 1 Jun 2017 09:53:52 +0000 (10:53 +0100)]
Merge pull request #5358 from rgacogne/dnsdist-nmg-addmasks-typo
dnsdist: Fix a typo in the documentation of NetmaskGroup:addMasks()
Remi Gacogne [Thu, 1 Jun 2017 09:11:40 +0000 (11:11 +0200)]
dnsdist: Get rid of std::move() calls preventing copy elision
Remi Gacogne [Thu, 1 Jun 2017 08:53:25 +0000 (10:53 +0200)]
dnsdist: Fix a typo in the documentation of NetmaskGroup:addMasks()
bert hubert [Mon, 29 May 2017 17:06:38 +0000 (19:06 +0200)]
Merge pull request #5349 from ahupowerdns/luajit-namespace
LuaJIT 2.1: Lua fallback functionality no longer uses Lua namespace
bert hubert [Mon, 29 May 2017 15:55:01 +0000 (17:55 +0200)]
Merge pull request #5344 from rgacogne/dnsdist-bin-itf
dnsdist: Add an optional interface parameter to addLocal()/setLocal()
bert hubert [Mon, 29 May 2017 15:51:52 +0000 (17:51 +0200)]
Merge pull request #5351 from rgacogne/rec-const-mt
rec: Mark MT methods as const whenever possible
Remi Gacogne [Mon, 29 May 2017 12:58:08 +0000 (14:58 +0200)]
dnsdist: Move {add,set}Local() additional parameters to a table
Remi Gacogne [Thu, 25 May 2017 20:43:23 +0000 (21:43 +0100)]
dnsdist: Add an optional interface parameter to addLocal()/setLocal()
Remi Gacogne [Mon, 29 May 2017 08:17:58 +0000 (10:17 +0200)]
rec: Mark MT methods as const whenever possible
Remi Gacogne [Mon, 29 May 2017 08:08:49 +0000 (09:08 +0100)]
Merge pull request #5350 from ahupowerdns/xenial-gcc-bug
work around a g++ bug in Ubuntu Xenial, closing #5347.
bert hubert [Sun, 28 May 2017 20:16:48 +0000 (22:16 +0200)]
work around a g++ bug in Ubuntu Xenial, closing #5347.
bert hubert [Sun, 28 May 2017 08:47:34 +0000 (10:47 +0200)]
typo in the fix, sorry!
bert hubert [Sun, 28 May 2017 08:33:57 +0000 (10:33 +0200)]
we guess which versions of Lua need help with luaL_setfuncs, and then supply our own. If we guess wrong however, we trample on the Lua namespace.
With this commit, we don't do the trampling, which should close #5348. We can improve on the fix by using the native luaL_setfuncs for LuaJIT 2.1 beta too.
Kees Monshouwer [Fri, 26 May 2017 20:33:46 +0000 (22:33 +0200)]
auth: build all tools in travis and fix speedtest build
Ralph Covelli [Fri, 26 May 2017 03:14:35 +0000 (04:14 +0100)]
LoadArgsIntoSet() -> loadArgsIntoSet()
Ralph Covelli [Fri, 26 May 2017 02:47:41 +0000 (03:47 +0100)]
small docs fix