]>
git.ipfire.org Git - thirdparty/pdns.git/log
Peter van Dijk [Wed, 12 Feb 2020 20:16:30 +0000 (21:16 +0100)]
Merge pull request #8766 from zeha/chrish
Update my name in old changelogs
Peter van Dijk [Wed, 12 Feb 2020 20:06:24 +0000 (21:06 +0100)]
Merge pull request #8793 from rgacogne/auth-reserve-caches
auth: Prepare the caches' buckets in advance
Peter van Dijk [Wed, 12 Feb 2020 19:03:43 +0000 (20:03 +0100)]
docs security-policy: fix typo in my email address
Remi Gacogne [Wed, 12 Feb 2020 09:09:24 +0000 (10:09 +0100)]
Merge pull request #8760 from rgacogne/ddist-doh-exact-match
dnsdist: Don't accept sub-paths of configured DoH URLs
Remi Gacogne [Wed, 12 Feb 2020 09:09:04 +0000 (10:09 +0100)]
Update pdns/dnsdistdist/docs/upgrade_guide.rst
Co-Authored-By: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Remi Gacogne [Wed, 12 Feb 2020 08:43:49 +0000 (09:43 +0100)]
Merge pull request #8355 from stephanbosch/netmask-tree
Rework NetmaskTree for better CPU and memory efficiency.
Stephan Bosch [Wed, 9 Oct 2019 00:06:33 +0000 (02:06 +0200)]
iputils.hh: NetmaskTree: Make the node_type key value const.
This prevents changing the key used by the tree, which would otherwise provide
an opportunity to corrupt the tree.
Stephan Bosch [Mon, 30 Sep 2019 13:10:42 +0000 (15:10 +0200)]
iputils.hh: NetmaskTree: Make the iterator reference a normal reference rather than a pointer.
This is possible now that the iterator type is no longer dictated by the
internal std::set. This changes the NetmaskTree::iterator API, but it makes it
more standard, less cumbersome, and less confusing.
Stephan Bosch [Mon, 30 Sep 2019 12:33:43 +0000 (14:33 +0200)]
iputils.hh: NetmaskTree: Make TreeNode::node a normal field rather than a pointer.
It no longer needs to be allocated separately.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Drop the internal std::set.
It is now superfluous.
Otto Moerbeek [Tue, 11 Feb 2020 16:08:28 +0000 (17:08 +0100)]
Merge pull request #8777 from omoerbeek/rec-wip-qname-vs-ds
rec: QNAME minimization sometimes uses 1 label too many
Remi Gacogne [Tue, 11 Feb 2020 15:40:31 +0000 (16:40 +0100)]
dnsdist: Document that we no longer start as root by default
Remi Gacogne [Tue, 11 Feb 2020 15:40:11 +0000 (16:40 +0100)]
dnsdist: Document that DoH paths are now exact matches.
Otto Moerbeek [Tue, 11 Feb 2020 14:58:35 +0000 (15:58 +0100)]
Typos
Peter van Dijk [Tue, 11 Feb 2020 12:22:44 +0000 (13:22 +0100)]
builder: also touch /var/lib/rpm/* before build-specs
Otto Moerbeek [Tue, 11 Feb 2020 11:33:09 +0000 (12:33 +0100)]
Merge pull request #8778 from Habbie/recursor-rpz-refresh
rec RPZ dumpFile/seedFile: store/get SOA refresh on dump/load
Otto Moerbeek [Tue, 11 Feb 2020 11:30:29 +0000 (12:30 +0100)]
Warn at refresh=0
Peter van Dijk [Tue, 11 Feb 2020 10:33:32 +0000 (11:33 +0100)]
Merge pull request #8807 from Habbie/docker-ovl-rpm
builder: touch /var/lib/rpm/* in every docker layer that uses rpmdb
Peter van Dijk [Tue, 11 Feb 2020 10:06:03 +0000 (11:06 +0100)]
builder: touch /var/lib/rpm/* in every docker layer that uses rpmdb
references:
https://github.com/pombredanne/dnf-plugin-ovl
https://bugzilla.redhat.com/show_bug.cgi?id=
1213602
Peter van Dijk [Tue, 11 Feb 2020 05:56:30 +0000 (06:56 +0100)]
Merge pull request #8804 from rgacogne/ddist-install-config-file
dnsdist: Fix configuration file installation / chmod
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Add iterator class and use it for begin() and end() methods.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Keep track of the left-most node in the tree.
Needed to provide a begin() iterator in constant time.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Copy the tree using tree traversal.
Before, it used the internal std::set.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree::TreeNode: Implement tree traversal methods.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Make tree cleanup mandatory.
Potentially leaving branches full of unassigned nodes unnecessarily complicates
tree algorithms. Disabling tree cleanup was not used anywhere, except for a unit
test. Note that, after this change, individual branch nodes can still be
unassigned, but not the whole branch. So, when e.g. the left sub-branch of a
node exists, algorithms can rely on the fact that there is at least one assigned
node in there.
Stephan Bosch [Wed, 9 Oct 2019 20:49:21 +0000 (22:49 +0200)]
iputils.hh: NetmaskTree: Always normalize key netmasks.
This makes address bits below the network mask all zero, which is consistent
with the tree's behavior.
This change addresses one sensitivity to this behavioral change in the recursor
cache.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Reduce the number of tree nodes.
Before, it created a tree node for every network bit in the netmask. Now, it
only creates a tree node when necessary (only for values and branches).
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Initialize TreeNode::node immediately.
Later commit relies on this.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Use for loops instead of while loops.
Makes using `continue' easier in later commit.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Restructure the tree with separate branches for for IPv4 and IPv6
This simplifies the code considerably.
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Rename field "root" to "d_root"
Stephan Bosch [Mon, 30 Sep 2019 08:30:25 +0000 (10:30 +0200)]
iputils.hh: NetmaskTree: Use ComboAddress::getBit() and Netmask::getBit()
Stephan Bosch [Wed, 9 Oct 2019 01:49:33 +0000 (03:49 +0200)]
iputils.hh: NetmaskTree: Make cleanup_tree() method private.
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
iputils.hh: Netmask: Prevent the construction of a 128-bit IPv4 netmask.
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
iputils.hh: Netmask: Add getBit()
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
iputils.hh: Netmask: Add getAddressBits()
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
iputils.hh: ComboAddress: Add getBit()
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
iputils.hh: ComboAddress: Add getBits()
Stephan Bosch [Wed, 9 Oct 2019 00:23:30 +0000 (02:23 +0200)]
iputils.hh: Netmask: Add getSuper()
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
test-iputils_hh.cc: Add tests for NetmaskTree copy, swap and iterator operations.
Stephan Bosch [Wed, 9 Oct 2019 00:34:15 +0000 (02:34 +0200)]
iputils.hh: Netmask: Add getNormalized()
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
test-iputils_hh.cc: Test 0.0.0.0 address at serveral network bit ranges.
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
test-iputils_hh.cc: Better verify the NetmaskTree container size during tests.
Stephan Bosch [Wed, 9 Oct 2019 01:34:13 +0000 (03:34 +0200)]
iputils.hh: Consistently use nullptr rather than NULL.
Stephan Bosch [Wed, 9 Oct 2019 20:36:12 +0000 (22:36 +0200)]
iputils.hh: Fix erroneous comments.
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
Reformat test-iputils_hh.cc.
Remove a few empty lines.
Stephan Bosch [Mon, 30 Sep 2019 08:30:24 +0000 (10:30 +0200)]
Reformat iputils.hh
Mainly removed whitespace at end of line and fixed several indenting mishaps.
Peter van Dijk [Mon, 10 Feb 2020 18:23:08 +0000 (19:23 +0100)]
Merge pull request #8803 from rgacogne/dnsname-centos-6
Fix "error: 'strlen' was not declared in this scope" on CentOS 6
Remi Gacogne [Mon, 10 Feb 2020 17:12:47 +0000 (18:12 +0100)]
dnsdist: Fix configuration file installation / chmod
Introduced in
c98c0ef694de0c536e6d71af8c58a16f6635ea35
Remi Gacogne [Mon, 10 Feb 2020 17:10:01 +0000 (18:10 +0100)]
Fix "error: 'strlen' was not declared in this scope" on CentOS 6
Peter van Dijk [Mon, 10 Feb 2020 16:33:18 +0000 (17:33 +0100)]
Merge pull request #8800 from Habbie/dnsdist-docs-tables
dnsdist docs: refer to new tables. Fixes #8798
Remi Gacogne [Mon, 10 Feb 2020 14:36:47 +0000 (15:36 +0100)]
Merge pull request #8783 from rgacogne/cpu-steal-iowait
Add 'IO wait' and 'steal' metrics on Linux
Otto Moerbeek [Mon, 10 Feb 2020 14:17:09 +0000 (15:17 +0100)]
Tweaks for minimum time
Otto Moerbeek [Mon, 10 Feb 2020 13:31:41 +0000 (14:31 +0100)]
Introduce an explicit refreshFromConf arg to RPZIXFRTracker.
Always load and store the rpz refresh value from and to the zone.
That we we can easily decide which value to use: if an explicit
refreshFromConf value is set, use that one, otherwise use the one
in the rpz zone.
Remi Gacogne [Mon, 10 Feb 2020 10:53:24 +0000 (11:53 +0100)]
Document that IO wait and steal metrics are in units of USER_HZ.
Remi Gacogne [Mon, 10 Feb 2020 10:26:33 +0000 (11:26 +0100)]
Merge pull request #8801 from rgacogne/ddist-setwebapikey
dnsdist: Fix a typo 'apikey' -> 'apiKey' in setWebserverConfig() doc
Remi Gacogne [Mon, 10 Feb 2020 10:25:16 +0000 (11:25 +0100)]
dnsdist: Fix a typo 'apikey' -> 'apiKey' in setWebserverConfig() doc
Peter van Dijk [Mon, 10 Feb 2020 09:40:39 +0000 (10:40 +0100)]
dnsdist docs: refer to new tables. Fixes #8798
Remi Gacogne [Mon, 10 Feb 2020 09:17:39 +0000 (10:17 +0100)]
Merge pull request #8792 from rgacogne/dnsname-strlen
DNSName: Don't call strlen() when the length is already known
Remi Gacogne [Fri, 7 Feb 2020 14:32:57 +0000 (15:32 +0100)]
Merge pull request #8737 from Habbie/circleci-pager
avoid 'git show -s' from starting a pager in CircleCI
Remi Gacogne [Thu, 30 Jan 2020 14:11:53 +0000 (15:11 +0100)]
DNSName: Don't call strlen() when the length is already known
Remi Gacogne [Fri, 7 Feb 2020 14:29:39 +0000 (15:29 +0100)]
Merge pull request #8795 from omoerbeek/rec-lua-docs-policytag
rec: Remove duplicate *PolicyTags docs
Remi Gacogne [Fri, 7 Feb 2020 14:28:42 +0000 (15:28 +0100)]
Merge pull request #8171 from rgacogne/dnsdist-soa-in-negative
dnsdist: Add SetNegativeAndSOAAction() and its Lua binding
Otto Moerbeek [Fri, 7 Feb 2020 12:08:42 +0000 (13:08 +0100)]
Remove duplicate *PolicyTags docs
Remi Gacogne [Fri, 7 Feb 2020 11:15:36 +0000 (12:15 +0100)]
Merge pull request #7820 from pieterlexis/systemd-no-setuid
dnsdist: don't start as root within a systemd environment
Remi Gacogne [Fri, 7 Feb 2020 11:06:07 +0000 (12:06 +0100)]
dnsdist: Add the ability to set flags in SetNegativeAndSOAAction()
Otto Moerbeek [Fri, 7 Feb 2020 10:48:22 +0000 (11:48 +0100)]
Merge pull request #8794 from atopuzov/tsig-typo-fix
Fix typo in tsig documentation
Aleksandar Topuzović [Fri, 7 Feb 2020 10:44:28 +0000 (10:44 +0000)]
Fix typo in tsig documentation
Remi Gacogne [Fri, 7 Feb 2020 10:29:19 +0000 (11:29 +0100)]
dnsdist: Don't add EDNS to raw answers
Remi Gacogne [Tue, 6 Aug 2019 15:44:56 +0000 (17:44 +0200)]
dnsdist: Add SetNegativeAndSOAAction() and its Lua binding
Remi Gacogne [Fri, 7 Feb 2020 10:09:29 +0000 (11:09 +0100)]
Merge pull request #8115 from rgacogne/dnsdist-ecs-before-tsig
dnsdist: Fix ECS addition when the OPT record is not the last one
Remi Gacogne [Fri, 7 Feb 2020 09:38:52 +0000 (10:38 +0100)]
Merge pull request #8787 from rgacogne/ddist-tls-key-log-file
dnsdist: Fix key logging for DNS over TLS
Remi Gacogne [Fri, 7 Feb 2020 09:23:20 +0000 (10:23 +0100)]
Merge pull request #8722 from rgacogne/ddist-lua-raw-content-rebased
dnsdist: Add spoofRawAction() to craft answers from raw bytes
Remi Gacogne [Fri, 7 Feb 2020 09:14:54 +0000 (10:14 +0100)]
Merge pull request #8762 from rgacogne/ddist-doh-cache-control
dnsdist: Implement Cache-Control headers in DoH
Remi Gacogne [Fri, 7 Feb 2020 09:13:27 +0000 (10:13 +0100)]
Merge pull request #8772 from rgacogne/dnsdist-prometheus-backend-status
dnsdist: Add backend status to prometheus metrics
Remi Gacogne [Fri, 7 Feb 2020 09:13:18 +0000 (10:13 +0100)]
Merge pull request #8782 from rgacogne/ddist-tag-response
dnsdist: Add getTag()/setTag() Lua bindings for a DNSResponse
Remi Gacogne [Thu, 6 Feb 2020 16:26:49 +0000 (17:26 +0100)]
auth: Prepare the caches' buckets in advance
Peter van Dijk [Thu, 6 Feb 2020 15:55:02 +0000 (16:55 +0100)]
Merge pull request #8788 from RobinGeuze/fixDefaultCDSCDNSKEYAxfr
Make sure the default-publish-cds and default-publish-cdnskey options are respected for AXFR
Robin Geuze [Thu, 6 Feb 2020 11:30:38 +0000 (12:30 +0100)]
Add AXFR to the default-publish-cds tests
Robin Geuze [Thu, 6 Feb 2020 09:31:18 +0000 (10:31 +0100)]
Make sure the default-publish-cds and default-publish-cdnskey options are respected for AXFR
Remi Gacogne [Thu, 6 Feb 2020 09:07:18 +0000 (10:07 +0100)]
dnsdist: Flush the TLS key material to the file right away
This feature is used to debug TLS flows, we don't really care about
the performance in that case and we want to have access to the keys
as soon as possible, without waiting for a buffer to be flushed.
Remi Gacogne [Thu, 6 Feb 2020 09:06:39 +0000 (10:06 +0100)]
dnsdist: Fix key logging for DNS over TLS
Peter van Dijk [Thu, 6 Feb 2020 08:23:06 +0000 (09:23 +0100)]
Merge pull request #8784 from Habbie/api-stats-no-rings
auth api: add includerings option to statistics endpoint
Peter van Dijk [Wed, 5 Feb 2020 16:19:05 +0000 (17:19 +0100)]
auth api: add includerings option to statistics endpoint
Peter van Dijk [Wed, 5 Feb 2020 10:31:38 +0000 (11:31 +0100)]
Merge pull request #8775 from mnordhoff/docs-4.3-schemas
docs: Add 4.2 SQL schema links
Remi Gacogne [Mon, 3 Feb 2020 10:51:54 +0000 (11:51 +0100)]
auth: Add steal and IO wait metrics
Remi Gacogne [Mon, 3 Feb 2020 10:51:35 +0000 (11:51 +0100)]
rec: Add steal and IO wait metrics
Remi Gacogne [Mon, 3 Feb 2020 10:50:38 +0000 (11:50 +0100)]
dnsdist: Add steal, iowait and UDP errors metrics
This commit also moves the prometheus metrics code to a separate
header.
Remi Gacogne [Mon, 3 Feb 2020 10:05:23 +0000 (11:05 +0100)]
Add functions to retrieve 'IO wait' and 'steal' metrics on Linux
Remi Gacogne [Wed, 5 Feb 2020 09:07:08 +0000 (10:07 +0100)]
dnsdist: Add getTag()/setTag() Lua bindings for a DNSResponse
LuaWrapper doesn't support inheritance, so even though DNSResponse
inherits from the DNSQuestion object the bindings are not inherited.
Peter van Dijk [Wed, 5 Feb 2020 08:42:36 +0000 (09:42 +0100)]
Merge pull request #8774 from spirillen/patch-1
Updated version number
Peter van Dijk [Wed, 5 Feb 2020 08:39:43 +0000 (09:39 +0100)]
Merge pull request #8780 from Habbie/remove-opendbx
opendbx: remove last file that was accidentally left in
Peter van Dijk [Wed, 5 Feb 2020 08:27:23 +0000 (09:27 +0100)]
Merge pull request #8781 from omoerbeek/security-emails
Update security email addresses
Otto Moerbeek [Tue, 4 Feb 2020 14:38:23 +0000 (15:38 +0100)]
Update security email addresses
Peter van Dijk [Tue, 4 Feb 2020 09:00:14 +0000 (10:00 +0100)]
opendbx: remove last file that was accidentally left in
Peter van Dijk [Mon, 3 Feb 2020 19:09:07 +0000 (20:09 +0100)]
rec RPZ dumpFile/seedFile: store/get SOA refresh on dump/load
Otto Moerbeek [Mon, 3 Feb 2020 11:15:25 +0000 (12:15 +0100)]
WIP for researching #8697
aerique [Mon, 3 Feb 2020 10:09:56 +0000 (11:09 +0100)]
Merge pull request #8770 from omoerbeek/rec-prep-rec-4.3.0-rc1
Prep rec-4.3.0-rc1
Otto Moerbeek [Mon, 3 Feb 2020 09:36:42 +0000 (10:36 +0100)]
tweaks
aerique [Mon, 3 Feb 2020 09:33:45 +0000 (10:33 +0100)]
Merge pull request #8771 from aerique/feature/repo-script-for-rec-43
Add support for rec-43.