]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 85f0855) | patch
Implement RFC 8020 8367/head
authorPieter Lexis <pieter.lexis@powerdns.com>
Tue, 1 Oct 2019 10:25:58 +0000 (12:25 +0200)
committerPieter Lexis <pieter.lexis@powerdns.com>
Mon, 21 Oct 2019 08:57:26 +0000 (10:57 +0200)
commit157647ec045d5c666d2cef37fa4593d37542ab72
tree642455553ef18b2c54acf21a3e1058986f7fb345tree
parent85f0855527cac792aa9ac9154388a5040679350dcommit | diff
Implement RFC 8020

This commit implements the "NXDOMAIN: There Really Is Nothing Underneath".
When enabled (the default), the SyncRes will check the negative cache if
there exists a higher denied name and uses that data to send an NXDOMAIN
to the client. In essence, it is a more aggressive version of
root-nx-trust (which could be removed in the future).

There are several advantages:

 * We potentially send fewer queries to the internet
 * The record cache is not "polluted" with useless NXDOMAINs
pdns/pdns_recursor.cc diff | blob | blame | history
pdns/recursordist/docs/settings.rst diff | blob | blame | history
pdns/recursordist/test-syncres_cc.cc diff | blob | blame | history
pdns/recursordist/test-syncres_cc2.cc diff | blob | blame | history
pdns/syncres.cc diff | blob | blame | history
pdns/syncres.hh diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.