*/
#include "common_startup.hh"
#include "ws-auth.hh"
+#include "secpoll-auth.hh"
bool g_anyToTcp;
typedef Distributor<DNSPacket,DNSPacket,PacketHandler> DNSDistributor;
::arg().set("max-nsec3-iterations","Limit the number of NSEC3 hash iterations")="500"; // RFC5155 10.3
::arg().set("include-dir","Include *.conf files from this directory");
+ ::arg().set("security-poll-suffix","Domain name from which to query security update notifications")="secpoll.powerdns.com.";
}
void declareStats(void)
S.declare("servfail-packets","Number of times a server-failed packet was sent out");
S.declare("latency","Average number of microseconds needed to answer a question");
S.declare("timedout-packets","Number of packets which weren't answered within timeout set");
-
+ S.declare("security-status", "Security status based on regular polling");
S.declareRing("queries","UDP Queries Received");
S.declareRing("nxdomain-queries","Queries for non-existent records within existent domains");
S.declareRing("noerror-queries","Queries for existing records, but for type we don't have");
DNSPacket::s_udpTruncationThreshold = std::max(512, ::arg().asNum("udp-truncation-threshold"));
DNSPacket::s_doEDNSSubnetProcessing = ::arg().mustDo("edns-subnet-processing");
+
+ doSecPoll(true); // this must be BEFORE chroot
+
if(!::arg()["chroot"].empty()) {
if(::arg().mustDo("master") || ::arg().mustDo("slave"))
gethostbyname("a.root-servers.net"); // this forces all lookup libraries to be loaded
TN->go(); // tcp nameserver launch
pthread_create(&qtid,0,carbonDumpThread, 0); // runs even w/o carbon, might change @ runtime
+
// fork(); (this worked :-))
unsigned int max_rthreads= ::arg().asNum("receiver-threads", 1);
for(unsigned int n=0; n < max_rthreads; ++n)
pthread_create(&qtid,0,qthread, reinterpret_cast<void *>(n)); // receives packets
- void *p;
- pthread_join(qtid, &p);
+ for(;;) {
+ sleep(1800);
+ doSecPoll(false);
+ }
L<<Logger::Error<<"Mainthread exiting - should never happen"<<endl;
}
projects / thirdparty / pdns.git / commitdiff
