git.ipfire.org Git - thirdparty/bind9.git/commit

author	Colin Vidal <colin@isc.org>
	Thu, 23 Jan 2025 15:38:35 +0000 (16:38 +0100)
committer	Colin Vidal <colin@isc.org>
	Mon, 27 Jan 2025 10:49:44 +0000 (11:49 +0100)
commit	78274ec2b17bb16ee5414aaaf7f91d30ff43daba
tree	3645bf4956f43e056eadf29413753e0f94e7b400	tree \| snapshot
parent	2bee113a467d0307460e08584f2fde3c501837b0	commit \| diff

fix EDE 22 time out detection

Extended DNS error 22 (No reachable authority) was previously detected
when `fctx_expired` fired. It turns out this function is used as a
"safety net" and the timeout detection should be caught earlier.

It was working though, because of another issue fixed by !9927. Since
this change, the recursive request timed out detection occurs before
`fctx_expired` so EDE 22 is not added to the response message anymore.

The fix of the problem is to add the EDE 22 code in two situations:

- When the dispatch code timed out (rctx_timedout) the resolver code
  checks various properties to figure out if it needs to make another
  fetch attempt. One of the paramters if the fetch expiration time. If
  it expires, the whole recursion is canceled, so it now adds the EDE 22
  code.

- If the fetch expiration time doesn't expires in the case above (and
  other parameters allows it) a new fetch attempt is made (fctx_query).
  But before the new request is actually made, the fetch expiration time
  is re-checked. It might then has elapsed, and the whole recursion is
  canceled. So it now also adds the EDE 22 code here as well.