]>
git.ipfire.org Git - thirdparty/pdns.git/log
Otto Moerbeek [Mon, 24 Feb 2020 11:06:25 +0000 (12:06 +0100)]
Merge pull request #8850 from omoerbeek/reformat-fixes
Prepare for reformat-all
Otto Moerbeek [Fri, 21 Feb 2020 13:09:17 +0000 (14:09 +0100)]
Prepare for reformat-all
aerique [Fri, 21 Feb 2020 10:10:42 +0000 (11:10 +0100)]
Merge pull request #8839 from Habbie/auth-4.3.0-beta2-docs
changelog and secpoll for auth-4.3.0-beta2
Remi Gacogne [Fri, 21 Feb 2020 08:57:53 +0000 (09:57 +0100)]
Merge pull request #8634 from rgacogne/auth-circle-unit-tests
auth: Build and run the unit tests in Circle CI
Remi Gacogne [Fri, 21 Feb 2020 08:55:00 +0000 (09:55 +0100)]
Merge pull request #8812 from rgacogne/netmask-compare-masked
Keep a masked network in the Netmask class
Remi Gacogne [Fri, 21 Feb 2020 08:54:31 +0000 (09:54 +0100)]
Merge pull request #8848 from rgacogne/dnsdist-binds
dnsdist: Add get*BindCount() functions
Remi Gacogne [Thu, 20 Feb 2020 15:03:39 +0000 (16:03 +0100)]
dnsdist: Don't overwrite DoH frontends with 'setLocal()'
Remi Gacogne [Thu, 20 Feb 2020 15:02:33 +0000 (16:02 +0100)]
dnsdist: Add get*BindCount() functions
Allow getting the number of binds of each kind to be able to iterate
over them.
Remi Gacogne [Wed, 19 Feb 2020 14:54:56 +0000 (15:54 +0100)]
Merge pull request #8842 from rgacogne/ddist-downstream-name-temp
dnsdist: DownstreamState::getName() should return a ref, not a temp
Remi Gacogne [Wed, 19 Feb 2020 14:54:05 +0000 (15:54 +0100)]
Merge pull request #8845 from PowerDNS/luahpp-clean
rec, dnsdist: always clean lua.hpp
Peter van Dijk [Wed, 19 Feb 2020 11:31:08 +0000 (12:31 +0100)]
rec, dnsdist: always clean lua.hpp
Otto Moerbeek [Wed, 19 Feb 2020 10:33:25 +0000 (11:33 +0100)]
Merge pull request #8843 from omoerbeek/dnsdist-lua-context-destroy
dnsdist: Prevent referencing a Lua pol after the Lua ctx has been destroyed
Otto Moerbeek [Wed, 19 Feb 2020 10:28:12 +0000 (11:28 +0100)]
dnsdist: Prevent referencing a Lua pol after the Lua ctx has been destroyed
Remi Gacogne [Wed, 19 Feb 2020 09:46:05 +0000 (10:46 +0100)]
dnsdist: DownstreamState::getName() should return a ref, not a temp
Otto Moerbeek [Wed, 19 Feb 2020 08:45:27 +0000 (09:45 +0100)]
Merge pull request #8840 from omoerbeek/tests-fix-compile-warnings
Fix unsigned vs signed warnings spotted by clang on OpenBSD
Otto Moerbeek [Wed, 19 Feb 2020 08:45:04 +0000 (09:45 +0100)]
Merge pull request #8838 from omoerbeek/dnsdist-no-snmp
dnsdist: Fix compile errors without snmp support
Peter van Dijk [Tue, 18 Feb 2020 22:30:26 +0000 (23:30 +0100)]
changelog and secpoll for auth-4.3.0-beta2
Otto Moerbeek [Tue, 18 Feb 2020 16:26:24 +0000 (17:26 +0100)]
Fix unsigned vs signed warnings spotted by clang on OpenBSD
(which is more picky than others)
Otto Moerbeek [Tue, 18 Feb 2020 15:37:27 +0000 (16:37 +0100)]
Fix compile errors without snmp support
Otto Moerbeek [Tue, 18 Feb 2020 15:09:26 +0000 (16:09 +0100)]
Merge pull request #8631 from zeha/once
Replace include guard ifdef/define with pragma once
Remi Gacogne [Tue, 18 Feb 2020 13:37:11 +0000 (14:37 +0100)]
Merge pull request #8505 from rgacogne/dnsdist-lua-ffi
dnsdist: Implement LuaFFIRule, LuaFFIAction and LuaFFIResponseAction
Otto Moerbeek [Tue, 18 Feb 2020 10:48:48 +0000 (11:48 +0100)]
Merge pull request #8835 from omoerbeek/rec-prep-4.3.0-rc2
rec: Prep for rec-4.3.0-rc2
Otto Moerbeek [Tue, 18 Feb 2020 07:26:26 +0000 (08:26 +0100)]
Prep for rec-4.3.0-rc2
Remi Gacogne [Tue, 18 Feb 2020 09:37:54 +0000 (10:37 +0100)]
dnsdist: Add a comment about the lack of guard in dnsdist-lua-ffi-interface.h
Reported by LGTM.
Peter van Dijk [Mon, 17 Feb 2020 19:20:05 +0000 (20:20 +0100)]
Merge pull request #8833 from rgacogne/pgsql-circleci-trust
Allow all connections to the PG server in Circle CI
Remi Gacogne [Mon, 17 Feb 2020 14:11:29 +0000 (15:11 +0100)]
Allow all connections to the PG server in Circle CI
Otto Moerbeek [Mon, 17 Feb 2020 08:39:54 +0000 (09:39 +0100)]
Merge pull request #8830 from omoerbeek/rec-init-zone-prio
rec: Init zone's d_priority field.
Otto Moerbeek [Mon, 17 Feb 2020 08:38:10 +0000 (09:38 +0100)]
Init zone's d_priority field.
Peter van Dijk [Sat, 15 Feb 2020 22:01:00 +0000 (23:01 +0100)]
Merge pull request #8811 from Habbie/nsec-ttl
adjust NSEC TTLs to negative TTL
Peter van Dijk [Sat, 15 Feb 2020 21:50:34 +0000 (22:50 +0100)]
Merge pull request #8776 from mnordhoff/4.3-schema
auth: Add more SQL schema files to packages and tarballs
Peter van Dijk [Fri, 14 Feb 2020 19:52:08 +0000 (20:52 +0100)]
add upgrade notes for the new NSEC(3) TTLs
Peter van Dijk [Fri, 14 Feb 2020 19:45:31 +0000 (20:45 +0100)]
update DNSSEC TTL notes
Peter van Dijk [Tue, 11 Feb 2020 13:34:31 +0000 (14:34 +0100)]
adjust NSEC TTLs to negative TTL
Peter van Dijk [Fri, 14 Feb 2020 18:46:29 +0000 (19:46 +0100)]
Merge pull request #8828 from Habbie/qdcount-zero-debug
auth: log "No question section in packet" at Debug. Fixes #7970
Peter van Dijk [Fri, 14 Feb 2020 18:22:32 +0000 (19:22 +0100)]
Merge pull request #8096 from mind04/pdns-notify-db-queries
auth: do not update identical notified serials
Peter van Dijk [Fri, 14 Feb 2020 16:46:59 +0000 (17:46 +0100)]
Merge pull request #8826 from rgacogne/nsec-invalid-bitmap-len
Refuse NSEC records with a bitmap length > 32
Peter van Dijk [Fri, 14 Feb 2020 16:08:35 +0000 (17:08 +0100)]
auth: log "No question section in packet" at Debug. Fixes #7970
Matt Nordhoff [Wed, 12 Feb 2020 14:52:42 +0000 (14:52 +0000)]
Deduplicate EXTRA_DIST and dist_doc_DATA in modified Makefile.ams
Matt Nordhoff [Sun, 2 Feb 2020 20:40:10 +0000 (20:40 +0000)]
auth: Include bind schema files in debs
Matt Nordhoff [Sun, 2 Feb 2020 20:14:54 +0000 (20:14 +0000)]
auth: Include bind schema files in pdns RPM
Matt Nordhoff [Sun, 2 Feb 2020 16:36:34 +0000 (16:36 +0000)]
auth: List the 3.4.0+ SQL schema files wherever the older files are.
And clean up godbcbackend's Makefile.am.
Matt Nordhoff [Sun, 2 Feb 2020 15:29:07 +0000 (15:29 +0000)]
auth: Add enable-foreign-keys.mysql.sql to packages and Makefile.am
Matt Nordhoff [Sun, 2 Feb 2020 15:20:47 +0000 (15:20 +0000)]
auth: Add 4.3.0 schema files to Makefile.ams
Kees Monshouwer [Thu, 4 Jul 2019 07:30:29 +0000 (09:30 +0200)]
auth: do not update identical notified serials
Peter van Dijk [Fri, 14 Feb 2020 14:18:22 +0000 (15:18 +0100)]
Merge pull request #8094 from mind04/pdns-diff-config
auth: add full option to 'pdns_control show-config'
Otto Moerbeek [Fri, 14 Feb 2020 13:58:25 +0000 (14:58 +0100)]
Merge pull request #8823 from omoerbeek/rec-rpz-passthru
Rec: do continue rpz processing if the current policy is passthru
Remi Gacogne [Fri, 14 Feb 2020 13:40:33 +0000 (14:40 +0100)]
Refuse NSEC records with a bitmap length > 32
Peter van Dijk [Fri, 14 Feb 2020 12:53:17 +0000 (13:53 +0100)]
Merge pull request #8799 from Habbie/odbc-threading
auth CI: enable ODBC thread locking
Peter van Dijk [Fri, 14 Feb 2020 12:47:30 +0000 (13:47 +0100)]
Merge pull request #8815 from pieterlexis/yahttp-ipv6-address
YaHTTP: Support bracketed IPv6 addresses
Peter van Dijk [Fri, 14 Feb 2020 12:46:54 +0000 (13:46 +0100)]
Merge pull request #8779 from Habbie/empty-ixfr-soa-rrsig
IXFR: only sign SOA in empty response for +DO queries
Otto Moerbeek [Fri, 14 Feb 2020 12:46:21 +0000 (13:46 +0100)]
Rebased to handle NetmaskTree changes
Otto Moerbeek [Fri, 14 Feb 2020 10:48:15 +0000 (11:48 +0100)]
Fix compilation issue on older compilers
Otto Moerbeek [Fri, 14 Feb 2020 09:55:11 +0000 (10:55 +0100)]
Formatting
Otto Moerbeek [Fri, 14 Feb 2020 09:22:12 +0000 (10:22 +0100)]
Avoid copying policies around by passing a Policy& that gets modified
if a match is found.
Remi Gacogne [Thu, 13 Feb 2020 14:24:42 +0000 (15:24 +0100)]
rec: Lookup RPZ Client IP rules before qname ones
Remi Gacogne [Thu, 13 Feb 2020 14:23:57 +0000 (15:23 +0100)]
rec: Add more RPZ regression tests
Otto Moerbeek [Wed, 12 Feb 2020 16:04:39 +0000 (17:04 +0100)]
Test clientIP before name, fix one more cutoff condition.
Remi Gacogne [Wed, 12 Feb 2020 15:53:47 +0000 (16:53 +0100)]
rec: Add unit tests for the RPZ policy priorities and ordering
Otto Moerbeek [Wed, 12 Feb 2020 15:49:58 +0000 (16:49 +0100)]
Set the d_priority field in the policy objects of a zone.
Comments from racacogne:
Better name for currentPriority, more elegant loops with right cutoff.
Remi Gacogne [Wed, 12 Feb 2020 14:54:38 +0000 (15:54 +0100)]
rec: Add regression tests for the ordering of RPZ policies
Otto Moerbeek [Wed, 12 Feb 2020 14:35:12 +0000 (15:35 +0100)]
Continue evaluation of RPZ rules after passthru, taking
into account RPZ priorities.
Remi Gacogne [Fri, 14 Feb 2020 09:00:55 +0000 (10:00 +0100)]
dnsdist: Fix issues reported by Charles-Henri during code review
Chris Hofstaedtler [Fri, 13 Dec 2019 10:00:31 +0000 (11:00 +0100)]
Replace include guard ifdef/define with pragma once
Peter van Dijk [Mon, 10 Feb 2020 09:26:15 +0000 (10:26 +0100)]
travis: enable ODBC thread locking
Peter van Dijk [Mon, 10 Feb 2020 09:26:09 +0000 (10:26 +0100)]
circleci: enable ODBC thread locking
Peter van Dijk [Wed, 12 Feb 2020 21:00:28 +0000 (22:00 +0100)]
Merge pull request #8614 from zeha/api-rm-unimplemented-check
Remove not implemented zone check API from spec
Peter van Dijk [Wed, 12 Feb 2020 20:16:30 +0000 (21:16 +0100)]
Merge pull request #8766 from zeha/chrish
Update my name in old changelogs
Peter van Dijk [Wed, 12 Feb 2020 20:06:24 +0000 (21:06 +0100)]
Merge pull request #8793 from rgacogne/auth-reserve-caches
auth: Prepare the caches' buckets in advance
Peter van Dijk [Wed, 12 Feb 2020 19:03:43 +0000 (20:03 +0100)]
docs security-policy: fix typo in my email address
Pieter Lexis [Wed, 12 Feb 2020 14:29:01 +0000 (15:29 +0100)]
YaHTTP: Send correct Host header for IPv6 address
Pieter Lexis [Wed, 12 Feb 2020 14:27:18 +0000 (15:27 +0100)]
YaHTTP: Parse addresses with IPv6 literals
A URL like http://[::1]:81 are parsed correctly now.
Remi Gacogne [Wed, 12 Feb 2020 09:09:24 +0000 (10:09 +0100)]
Merge pull request #8760 from rgacogne/ddist-doh-exact-match
dnsdist: Don't accept sub-paths of configured DoH URLs
Remi Gacogne [Wed, 12 Feb 2020 09:09:04 +0000 (10:09 +0100)]
Update pdns/dnsdistdist/docs/upgrade_guide.rst
Co-Authored-By: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Remi Gacogne [Tue, 11 Feb 2020 14:29:24 +0000 (15:29 +0100)]
Add a couple tests on Netmask comparison
Remi Gacogne [Tue, 11 Feb 2020 13:28:07 +0000 (14:28 +0100)]
Keep a masked network in the Netmask class
Remi Gacogne [Tue, 11 Feb 2020 11:52:37 +0000 (12:52 +0100)]
Compare netmasks on their masked version (highly inefficient version)
Remi Gacogne [Wed, 12 Feb 2020 08:43:49 +0000 (09:43 +0100)]
Merge pull request #8355 from stephanbosch/netmask-tree
Rework NetmaskTree for better CPU and memory efficiency.
Stephan Bosch [Wed, 9 Oct 2019 00:06:33 +0000 (02:06 +0200)]
iputils.hh: NetmaskTree: Make the node_type key value const.
This prevents changing the key used by the tree, which would otherwise provide
an opportunity to corrupt the tree.
Stephan Bosch [Mon, 30 Sep 2019 13:10:42 +0000 (15:10 +0200)]
iputils.hh: NetmaskTree: Make the iterator reference a normal reference rather than a pointer.
This is possible now that the iterator type is no longer dictated by the
internal std::set. This changes the NetmaskTree::iterator API, but it makes it
more standard, less cumbersome, and less confusing.
Stephan Bosch [Mon, 30 Sep 2019 12:33:43 +0000 (14:33 +0200)]
iputils.hh: NetmaskTree: Make TreeNode::node a normal field rather than a pointer.
It no longer needs to be allocated separately.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Drop the internal std::set.
It is now superfluous.
Otto Moerbeek [Tue, 11 Feb 2020 16:08:28 +0000 (17:08 +0100)]
Merge pull request #8777 from omoerbeek/rec-wip-qname-vs-ds
rec: QNAME minimization sometimes uses 1 label too many
Remi Gacogne [Tue, 11 Feb 2020 15:40:31 +0000 (16:40 +0100)]
dnsdist: Document that we no longer start as root by default
Remi Gacogne [Tue, 11 Feb 2020 15:40:11 +0000 (16:40 +0100)]
dnsdist: Document that DoH paths are now exact matches.
Otto Moerbeek [Tue, 11 Feb 2020 14:58:35 +0000 (15:58 +0100)]
Typos
Peter van Dijk [Tue, 11 Feb 2020 12:22:44 +0000 (13:22 +0100)]
builder: also touch /var/lib/rpm/* before build-specs
Otto Moerbeek [Tue, 11 Feb 2020 11:33:09 +0000 (12:33 +0100)]
Merge pull request #8778 from Habbie/recursor-rpz-refresh
rec RPZ dumpFile/seedFile: store/get SOA refresh on dump/load
Otto Moerbeek [Tue, 11 Feb 2020 11:30:29 +0000 (12:30 +0100)]
Warn at refresh=0
Remi Gacogne [Wed, 29 Jan 2020 16:59:02 +0000 (17:59 +0100)]
dnsdist: Add LuaRule(), the non-FFI equivalent of LuaFFIRule()
Remi Gacogne [Thu, 23 Jan 2020 13:20:33 +0000 (14:20 +0100)]
dnsdist: Add Lua bindings and documentation for the Lua FFI policies
Remi Gacogne [Wed, 22 Jan 2020 17:59:40 +0000 (18:59 +0100)]
dnsdist: Speed up the consistent hashing policies with large weights
Using a sorted vector provides a much faster lookup time than a
std::set when the number of points on the circle (weight of the
backend) is huge.
A boost::flat_set is almost as fast as a sorted vector but the
insertion time is quite bad.
Remi Gacogne [Mon, 6 Jan 2020 15:59:24 +0000 (16:59 +0100)]
dnsdist: Clean up FFI types
Remi Gacogne [Fri, 3 Jan 2020 17:06:54 +0000 (18:06 +0100)]
dnsdist: Add direct Lua FFI interface for masking the remote addr
Remi Gacogne [Fri, 3 Jan 2020 17:05:57 +0000 (18:05 +0100)]
dnsdist: Skip the creation of temp objects in KVS lookups from Lua
Remi Gacogne [Fri, 3 Jan 2020 17:04:33 +0000 (18:04 +0100)]
dnsdist: Speed-up of the leastOutstanding policy
Remi Gacogne [Fri, 3 Jan 2020 17:03:31 +0000 (18:03 +0100)]
dnsdist: Add Lua Netmask bindings
Remi Gacogne [Thu, 2 Jan 2020 16:09:44 +0000 (17:09 +0100)]
dnsdist: Implement fast-{c,w}hashed FFI policies
Remi Gacogne [Thu, 26 Dec 2019 15:37:29 +0000 (16:37 +0100)]
dnsdist: Bench LB policies
Remi Gacogne [Thu, 26 Dec 2019 15:37:13 +0000 (16:37 +0100)]
dnsdist: Add Lua bindings for DNSName::hash()
Remi Gacogne [Mon, 16 Dec 2019 17:57:31 +0000 (18:57 +0100)]
dnsdist: Add unit tests for Lua LB policies as well