]>
git.ipfire.org Git - thirdparty/pdns.git/log
Remi Gacogne [Tue, 20 Jul 2021 08:55:50 +0000 (10:55 +0200)]
Merge pull request #10501 from rgacogne/ddist-per-thread-lua-ffi
dnsdist: Add support for Lua per-thread FFI rules and actions
Otto Moerbeek [Mon, 19 Jul 2021 10:10:30 +0000 (12:10 +0200)]
Merge pull request #10571 from Habbie/rec-warnings
rec: fix some compiler warnings
Otto Moerbeek [Mon, 19 Jul 2021 09:07:47 +0000 (11:07 +0200)]
Merge branch 'master' into rec-warnings
Peter van Dijk [Tue, 13 Jul 2021 17:32:25 +0000 (19:32 +0200)]
Merge pull request #10588 from jsoref/master-spelling-0.0.19
Upgrade check-spelling to v0.0.19
Peter van Dijk [Tue, 13 Jul 2021 11:05:28 +0000 (13:05 +0200)]
Merge pull request #10581 from Habbie/auth-4.5.0-secpoll-docs
auth-4.5.0: secpoll and docs
Josh Soref [Tue, 13 Jul 2021 07:30:54 +0000 (03:30 -0400)]
Upgrade check-spelling to v0.0.19
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
Peter van Dijk [Mon, 12 Jul 2021 13:02:42 +0000 (15:02 +0200)]
Merge pull request #10583 from Habbie/mibs-local-range
SNMP: allocate local-use ranges for traps and trapObjects
Peter van Dijk [Mon, 12 Jul 2021 12:18:15 +0000 (14:18 +0200)]
SNMP: allocate local-use ranges for traps and trapObjects
Peter van Dijk [Mon, 12 Jul 2021 10:43:35 +0000 (12:43 +0200)]
auth-4.5.0: secpoll and docs
Peter van Dijk [Mon, 12 Jul 2021 11:12:58 +0000 (13:12 +0200)]
Merge pull request #10487 from Habbie/docs-texlive
build docs using the texlive image
Peter van Dijk [Mon, 12 Jul 2021 10:00:45 +0000 (12:00 +0200)]
Merge pull request #10568 from Habbie/auth-bind-no-sqlite3
auth: allow building bindbackend without sqlite3
Remi Gacogne [Mon, 12 Jul 2021 08:10:18 +0000 (10:10 +0200)]
Merge pull request #10578 from natesales/natesales/fix-dnsdist-docs
fix: dnsdist docs quickstart typo
Nate Sales [Mon, 12 Jul 2021 01:47:09 +0000 (18:47 -0700)]
fix: dnsdist docs quickstart typo
Otto Moerbeek [Fri, 9 Jul 2021 14:42:39 +0000 (16:42 +0200)]
Merge pull request #10576 from omoerbeek/log-qtype-tostring
Zap a few redundant toString() method call for logging qtype names
Otto [Fri, 9 Jul 2021 13:14:47 +0000 (15:14 +0200)]
Zap a few redundant toString() method call for logging qtype names
Pieter Lexis [Fri, 9 Jul 2021 07:54:38 +0000 (09:54 +0200)]
Merge pull request #10496 from tacerus/master
Reference pdnsutil in "Running and Operating"
Remi Gacogne [Fri, 9 Jul 2021 07:54:03 +0000 (09:54 +0200)]
Merge pull request #10557 from rgacogne/ddist-doc-ebpf
dnsdist: Documentation fixes (typo, eBPF capabilities)
Remi Gacogne [Fri, 9 Jul 2021 07:51:28 +0000 (09:51 +0200)]
dnsdist: Document what is available from per-thread Lua FFI contexts
Remi Gacogne [Fri, 9 Jul 2021 07:40:17 +0000 (09:40 +0200)]
dnsdist: Constify some members for Lua FFI rule
Remi Gacogne [Fri, 9 Jul 2021 07:38:33 +0000 (09:38 +0200)]
dnsdist: Constify some members for Lua FFI action and rule
Remi Gacogne [Wed, 7 Jul 2021 10:09:09 +0000 (12:09 +0200)]
Merge pull request #10527 from rgacogne/ddist-log-reload
dnsdist: Implement 'reload()' to rotate Log(Response)Action's log file
Remi Gacogne [Wed, 7 Jul 2021 10:08:50 +0000 (12:08 +0200)]
Merge pull request #10537 from rgacogne/ddist-exact-protocol-in-dq
dnsdist: Carry the exact incoming protocol (Do53, DNSCrypt, DoT, DoH) in DQ
Remi Gacogne [Wed, 7 Jul 2021 10:07:55 +0000 (12:07 +0200)]
Merge pull request #10550 from rgacogne/ddist-doh-load-new-certs-keys
dnsdist: Add the missing DOHFronted::loadNewCertificatesAndKeys()
Remi Gacogne [Wed, 7 Jul 2021 10:07:33 +0000 (12:07 +0200)]
Merge pull request #10560 from rgacogne/ddist-pool-metrics
dnsdist: Implement a web endpoint to get metrics for only one pool
Remi Gacogne [Wed, 7 Jul 2021 10:04:24 +0000 (12:04 +0200)]
dnsdist: Document how raising LimitMEMLOCK might be needed for eBPF
Peter van Dijk [Tue, 6 Jul 2021 13:23:13 +0000 (15:23 +0200)]
rec: move ifdef-dependent vars to inside the ifdef
Peter van Dijk [Tue, 6 Jul 2021 12:46:45 +0000 (14:46 +0200)]
rec: silence spurious compiler warning about possibly uninited var
Peter van Dijk [Tue, 6 Jul 2021 11:16:19 +0000 (13:16 +0200)]
auth: allow building bindbackend without sqlite3
I broke this in #10549
reported by Ralf van der Enden
Peter van Dijk [Tue, 6 Jul 2021 08:11:44 +0000 (10:11 +0200)]
Merge pull request #10563 from Habbie/auth-4.5.0-rc2-secpoll-docs
auth-4.5.0-rc2: docs and secpoll
Otto Moerbeek [Mon, 5 Jul 2021 13:49:09 +0000 (15:49 +0200)]
Merge pull request #10555 from rgacogne/rec-unscrew-missing-aa
rec: Work around clueless servers sending AA=0 answers
Otto Moerbeek [Mon, 5 Jul 2021 10:04:20 +0000 (12:04 +0200)]
Merge pull request #10556 from pieterlexis/10548-tls-in-rec-pkgs
Rec: Enable DoT in packages
Peter van Dijk [Mon, 5 Jul 2021 09:43:04 +0000 (11:43 +0200)]
auth-4.5.0-rc2: docs and secpoll
Otto Moerbeek [Mon, 5 Jul 2021 08:10:40 +0000 (10:10 +0200)]
Merge pull request #10491 from chbruyand/key-values-metadata
rec: Add bindings to set arbitrary key-value metadata in logged messages
Peter van Dijk [Mon, 5 Jul 2021 07:37:02 +0000 (09:37 +0200)]
Merge pull request #10545 from Habbie/nsec3-debugging
rec, nsec3dig: NSEC(3) debugging improvements
Remi Gacogne [Fri, 2 Jul 2021 14:48:19 +0000 (16:48 +0200)]
dnsdist: Implement a web endpoint to get metrics for only one pool
Remi Gacogne [Fri, 2 Jul 2021 13:15:46 +0000 (15:15 +0200)]
dnsdist: Fix a typo in the out-of-order documentation
Remi Gacogne [Fri, 2 Jul 2021 13:15:14 +0000 (15:15 +0200)]
dnsdist: Fix the documentation for setDropEmptyQueries()
Remi Gacogne [Fri, 2 Jul 2021 13:14:55 +0000 (15:14 +0200)]
dnsdist: Document that some capabilities are needed for eBPF
Remi Gacogne [Fri, 2 Jul 2021 13:12:53 +0000 (15:12 +0200)]
dnsdist: Add a UDP vs TCP packet cache unit test
Remi Gacogne [Fri, 2 Jul 2021 13:11:40 +0000 (15:11 +0200)]
dnsdist: Make the protocol const, simplify the TCP/UDP check
Charles-Henri Bruyand [Fri, 2 Jul 2021 12:39:02 +0000 (14:39 +0200)]
Fix versionadded in documentation
Peter van Dijk [Fri, 2 Jul 2021 11:32:25 +0000 (13:32 +0200)]
Merge pull request #10553 from Habbie/rec-dot-nits
rec: assorted improvements
Remi Gacogne [Fri, 2 Jul 2021 09:48:14 +0000 (11:48 +0200)]
rec: Add a unit test checking that DNSSEC validation is done for AA=0 answers
Remi Gacogne [Fri, 2 Jul 2021 08:30:43 +0000 (10:30 +0200)]
rec: Work around clueless servers sending AA=0 answers
Otto Moerbeek [Fri, 2 Jul 2021 08:29:44 +0000 (10:29 +0200)]
Merge pull request #10539 from omoerbeek/rec-prep-4.5.3
rec: Prep rec-4.5.4
Peter van Dijk [Thu, 1 Jul 2021 21:05:56 +0000 (23:05 +0200)]
rec docs: fix warnings
Peter van Dijk [Thu, 1 Jul 2021 20:36:50 +0000 (22:36 +0200)]
remove DNS_OVER_TLS guard around applying the dot-to-port-853 setting
before this commit: pointing a forward at port 853, without DoT support, causes Recursor to attempt to do UDP over port 853 to the upstream. This rarely works.
after this commit: much swifter failure with an error log message saying `45.55.10.200:853 requested but not available`
Peter van Dijk [Thu, 1 Jul 2021 20:33:48 +0000 (22:33 +0200)]
emit error when dot-to-auth-names is set without DoT support
Peter van Dijk [Thu, 1 Jul 2021 20:30:43 +0000 (22:30 +0200)]
toTimestampStringMilli is only called from inside this file, make it static
Peter van Dijk [Thu, 1 Jul 2021 17:30:53 +0000 (19:30 +0200)]
Merge pull request #10549 from Habbie/bind-cache-nsec3param
auth bindbackend: NSEC(3) setting consistency, reload improvements
Peter van Dijk [Thu, 1 Jul 2021 10:45:10 +0000 (12:45 +0200)]
bindbackend: purge caches on zone reload
Peter van Dijk [Thu, 1 Jul 2021 10:15:25 +0000 (12:15 +0200)]
pdnsutil: add reload notes for bindbackend
Peter van Dijk [Sat, 8 May 2021 19:18:20 +0000 (21:18 +0200)]
auth bindbackend: store nsec3 settings at zone load
This keeps, inside the bindbackend, the nsec(3) settings consistent
with the 'rectification' applied on zone load. This avoids crashes
when nsec3 is enabled or disabled without reloading the zone in the
bindbackend.
reported by Matt Nordhoff
Peter van Dijk [Thu, 1 Jul 2021 12:14:18 +0000 (14:14 +0200)]
Merge pull request #10535 from RobinGeuze/fixUeberBackendAddCacheBug
auth: make UeberBackend::addCache pick the correct ttl
Peter van Dijk [Thu, 1 Jul 2021 12:11:23 +0000 (14:11 +0200)]
Merge pull request #10530 from ZaphodB/ZaphodB-patch-1
docs: query-local-address6 has been removed in #10251 as well
Remi Gacogne [Thu, 1 Jul 2021 11:54:29 +0000 (13:54 +0200)]
dnsdist: Add the missing DOHFronted::loadNewCertificatesAndKeys()
Remi Gacogne [Thu, 1 Jul 2021 10:03:01 +0000 (12:03 +0200)]
dnsdist: Warn if we could not re-open the LogResponseAction file
Remi Gacogne [Thu, 1 Jul 2021 09:43:05 +0000 (11:43 +0200)]
dnsdist: Warn if we could not re-open the LogAction file
Remi Gacogne [Thu, 1 Jul 2021 07:51:44 +0000 (09:51 +0200)]
Merge pull request #10544 from rgacogne/ddist-carbon-tests-slow
dnsdist: Add some leeway for the carbon data to reach the test receiver
Remi Gacogne [Thu, 1 Jul 2021 07:50:55 +0000 (09:50 +0200)]
Merge pull request #10547 from rgacogne/ddist-test-nostale-ttl
dnsdist: Use a 2s TTL in testCacheNoStale to prevent failures
Pieter Lexis [Thu, 1 Jul 2021 07:45:30 +0000 (09:45 +0200)]
Rec: Enable DoT in packages
Closes #10548
Remi Gacogne [Wed, 30 Jun 2021 16:41:01 +0000 (18:41 +0200)]
dnsdist: Use a 2s TTL in testCacheNoStale to prevent failures
With the previous 1s TTL, the entry was only valid for the current
second, but we might have been very near the end of that second
already when inserting. With a 2s TTL (which was apparently intended
anyway) we have a full second before the entry expires.
Remi Gacogne [Wed, 30 Jun 2021 16:26:02 +0000 (18:26 +0200)]
dnsdist: Make the Lua FFI per-thread counters atomic
We should not actually need that since the rules and actions are
either created sequentially at configuration time or via the console
at runtime, which requires holding the global Lua lock.
Still we don't care about performance when creating these objects
so let's just use an atomic counter instead.
Remi Gacogne [Wed, 30 Jun 2021 16:16:36 +0000 (18:16 +0200)]
dnsdist: Only try to execute a faulty Lua FFI per-thread code once
Charles-Henri Bruyand [Wed, 30 Jun 2021 10:03:30 +0000 (12:03 +0200)]
document the two new ffi functions
Charles-Henri Bruyand [Tue, 29 Jun 2021 14:52:29 +0000 (16:52 +0200)]
remove redundant condition
Charles-Henri Bruyand [Tue, 29 Jun 2021 14:46:31 +0000 (16:46 +0200)]
turn off clang-format for RecursorLua4::postPrepareContext
Charles-Henri Bruyand [Tue, 29 Jun 2021 14:45:56 +0000 (16:45 +0200)]
move meta content instead of copying
Charles-Henri Bruyand [Fri, 18 Jun 2021 09:30:54 +0000 (11:30 +0200)]
also copy metas to responses + unit tests
Charles-Henri Bruyand [Mon, 14 Jun 2021 11:52:40 +0000 (13:52 +0200)]
revert locally bad sort
Charles-Henri Bruyand [Thu, 10 Jun 2021 16:22:20 +0000 (18:22 +0200)]
fix dnsdist compilation
Charles-Henri Bruyand [Thu, 10 Jun 2021 15:54:54 +0000 (17:54 +0200)]
rec: code format lua-recursor4-ffi.hh lua-recursor4.cc lua-recursor4.hh
and also properly sort .not-formated file
Charles-Henri Bruyand [Thu, 10 Jun 2021 15:22:59 +0000 (17:22 +0200)]
recursor: lua ffi, add support for setting arbitrary key-value metadata
Peter van Dijk [Wed, 30 Jun 2021 14:32:01 +0000 (16:32 +0200)]
Merge pull request #10528 from Habbie/auth-upgrade-4.2-api-rectify
auth 4.2 upgrade docs: note default-api-rectify change
Peter van Dijk [Wed, 30 Jun 2021 13:42:20 +0000 (15:42 +0200)]
nsec3dig: add type bitmap counts to proven names output
Otto Moerbeek [Wed, 30 Jun 2021 13:37:04 +0000 (15:37 +0200)]
Merge pull request #10122 from omoerbeek/rec-cumulative-histograms
Rec: cumulative and Prometheus friendly histograms
Peter van Dijk [Wed, 30 Jun 2021 13:04:11 +0000 (15:04 +0200)]
rec: add some comments about minimally covering NSEC(3)s
Remi Gacogne [Wed, 30 Jun 2021 12:48:29 +0000 (14:48 +0200)]
dnsdist: Add some leeway for the carbon data to reach the test receiver
It seems to fail quite frequently these days, and that gives us two
whole more seconds before timing out, which hopefully should be
enough in most cases.
Otto [Wed, 30 Jun 2021 09:41:10 +0000 (11:41 +0200)]
Typo fix
Otto [Wed, 30 Jun 2021 07:52:35 +0000 (09:52 +0200)]
Prep rec-4.5.4
Otto [Wed, 30 Jun 2021 08:14:11 +0000 (10:14 +0200)]
Mention the cumul stats are Prometheus-only by default
Remi Gacogne [Tue, 29 Jun 2021 15:35:31 +0000 (17:35 +0200)]
dnsdist: Set the protobuf transport protocol to TCP for DoH
We don't support the exact transport yet.
Remi Gacogne [Tue, 29 Jun 2021 14:47:59 +0000 (16:47 +0200)]
rec: Support more dnstap transport types (DoT)
Remi Gacogne [Tue, 29 Jun 2021 14:47:21 +0000 (16:47 +0200)]
dnsdist: Support more dnstap transport types (DoT, DoH)
Remi Gacogne [Tue, 29 Jun 2021 13:43:08 +0000 (15:43 +0200)]
Update dnstap.proto
Remi Gacogne [Tue, 29 Jun 2021 13:38:39 +0000 (15:38 +0200)]
dnsdist: Add regression tests for DNSQuestion.getProtocol()
Remi Gacogne [Tue, 29 Jun 2021 12:35:16 +0000 (14:35 +0200)]
dnsdist: Expose the protocol to Lua
Remi Gacogne [Tue, 29 Jun 2021 09:46:28 +0000 (11:46 +0200)]
dnsdist: Pass the exact protocol around via the IDState
Remi Gacogne [Mon, 28 Jun 2021 13:34:19 +0000 (15:34 +0200)]
dnsdist: Test that DoH answers are stored as received over UDP in the cache
Remi Gacogne [Mon, 28 Jun 2021 13:34:02 +0000 (15:34 +0200)]
dnsdist: Carry the exact protocol (Do53, DNSCrypt, DoT, DoH) in DQ
Otto [Tue, 29 Jun 2021 09:03:27 +0000 (11:03 +0200)]
Disable cumul stats by default except for API plus some other
assorted review comments.
Otto Moerbeek [Tue, 29 Jun 2021 08:46:37 +0000 (10:46 +0200)]
Apply suggestions from code review
Co-authored-by: Remi Gacogne <github@coredump.fr>
Otto [Tue, 29 Jun 2021 08:29:54 +0000 (10:29 +0200)]
For Prometheus output, ad HELP and TYPE
Otto [Tue, 29 Jun 2021 07:10:04 +0000 (09:10 +0200)]
Docs
Otto [Wed, 16 Jun 2021 07:27:01 +0000 (09:27 +0200)]
rename cumulative counters to be better aligned with existing names
Otto [Tue, 8 Jun 2021 11:45:33 +0000 (13:45 +0200)]
Use %g for formatting. It strips trailing zeroes (unlike %f) and will switch to
scientific notation for very small or large values. Also correct units for
sum and count.
Otto [Tue, 8 Jun 2021 10:34:24 +0000 (12:34 +0200)]
Align with Prometheus way of doing things and simplify
template a bit.
Otto [Tue, 8 Jun 2021 08:35:40 +0000 (10:35 +0200)]
Finish rebase
Otto [Fri, 26 Feb 2021 09:44:01 +0000 (10:44 +0100)]
Use 1-2-5 histogram buckets and count packet cache hits.
Otto [Fri, 26 Feb 2021 09:43:21 +0000 (10:43 +0100)]
Simple way to get a repeated 1-2-5 sequence of histograms