]>
git.ipfire.org Git - thirdparty/pdns.git/log
phonedph1 [Thu, 15 Apr 2021 17:38:35 +0000 (11:38 -0600)]
Update validate.cc
(cherry picked from commit
c0d3ae95c47cd0cdc03432889e61d7de87b8cf14 )
phonedph1 [Thu, 15 Apr 2021 16:57:15 +0000 (10:57 -0600)]
rec: print the covering NSEC
It would be nice to log not only that a name is covered, but what entry actually covers it. This is useful in debugging crazy setups.
(cherry picked from commit
a651118120d441c1cf20daa9d495d2795ac0b5e8 )
Otto Moerbeek [Tue, 13 Apr 2021 06:17:38 +0000 (08:17 +0200)]
Merge pull request #10284 from omoerbeek/backport-10252-to-rec-4.5.x
Pieter Lexis [Wed, 31 Mar 2021 14:04:27 +0000 (16:04 +0200)]
Fix the package version _on_ prerelease tags
Closes #9842
(cherry picked from commit
121a191d5ecd24818053a39013608e424a36142a )
Otto Moerbeek [Fri, 9 Apr 2021 10:22:02 +0000 (12:22 +0200)]
Merge pull request #10280 from omoerbeek/backport-10268-to-rec-4.5.x
Otto Moerbeek [Fri, 9 Apr 2021 10:21:46 +0000 (12:21 +0200)]
Merge pull request #10279 from omoerbeek/backport-10264-to-rec-4.5.x
Otto Moerbeek [Fri, 9 Apr 2021 10:02:39 +0000 (12:02 +0200)]
Merge pull request #10278 from omoerbeek/backport-10232-to-rec-4.5.x
Otto Moerbeek [Fri, 9 Apr 2021 10:02:26 +0000 (12:02 +0200)]
Merge pull request #10277 from omoerbeek/backport-10223-to-rec-4.5.x
Otto Moerbeek [Wed, 7 Apr 2021 08:07:09 +0000 (10:07 +0200)]
Aslo test query_address for value and query_port for presence
(cherry picked from commit
11927be3eb2a9f1aa0f210dc7dd73c7c32209d01 )
Otto [Tue, 6 Apr 2021 13:19:58 +0000 (15:19 +0200)]
Log client IP in dnstap messages
Also make sure we log only if we actually sent a message, i.e.
we did not chain our request to an existing one.
(cherry picked from commit
82c0899caaf9b97a8bcec1b19d9387feec86c9e9 )
Otto [Tue, 6 Apr 2021 08:41:39 +0000 (10:41 +0200)]
Also disable PMTU for v6
(cherry picked from commit
db63b4b63158d95399fa9109b9802b195df515f8 )
Otto [Fri, 26 Mar 2021 15:37:46 +0000 (16:37 +0100)]
Clear d_from if we don't know where the update came from
(cherry picked from commit
ef726696aa4411d49f7d5400abb275c000718034 )
Remi Gacogne [Tue, 30 Mar 2021 07:20:41 +0000 (09:20 +0200)]
rec: Fix duplicated space in the SyncRes unit tests
Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
(cherry picked from commit
aabd93c4bafc01cb4df72cc527ba7745cfd6252f )
Remi Gacogne [Tue, 30 Mar 2021 07:20:34 +0000 (09:20 +0200)]
rec: Fix duplicated space in the SyncRes unit tests
Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
(cherry picked from commit
a5b7a31e157d5a5d41d1567c22e124b8cb1974f3 )
Remi Gacogne [Fri, 26 Mar 2021 14:57:31 +0000 (15:57 +0100)]
rec: Add unit tests for the "unpublished DNSKEY" case
(cherry picked from commit
fb6dfd69d95fa76f3e5be2aaf510f3b829ddbac8 )
Remi Gacogne [Fri, 26 Mar 2021 14:56:11 +0000 (15:56 +0100)]
rec: Don't override a Bogus state, handle NSEC3s for unpublished DNSKEY
(cherry picked from commit
e6333113aabaaba9d4a0895653bba7b8bad005d5 )
Remi Gacogne [Fri, 26 Mar 2021 08:48:09 +0000 (09:48 +0100)]
rec: Better handling of stranded DNSKeys
(cherry picked from commit
cf730c2e6f0b7cc63ab589038699987133eee94c )
Otto Moerbeek [Tue, 30 Mar 2021 05:38:53 +0000 (07:38 +0200)]
Merge pull request #10241 from omoerbeek/backport-10238-to-rec-4.5.x
Otto [Mon, 29 Mar 2021 13:27:43 +0000 (15:27 +0200)]
Safe tmp file handling, basic sanity check on size of data.
(cherry picked from commit
852d4e70c09dd9b41d9aa2a988a666b0cb749d97 )
Otto [Mon, 29 Mar 2021 10:07:14 +0000 (12:07 +0200)]
Move the opening of the file to write a bit down
(cherry picked from commit
5ef38b0c7b61e819773765d87b0fe6061cd0be7a )
Otto [Mon, 29 Mar 2021 10:05:55 +0000 (12:05 +0200)]
namespace filesystem = boost::filesystem
(cherry picked from commit
dec872ee807caa32eab6f75e36db4feb16f2f6ea )
Otto [Mon, 29 Mar 2021 09:49:34 +0000 (11:49 +0200)]
Zap tmp files; use random suffix and fix leak by using smart pointer.
(cherry picked from commit
e672ad6db7e9d0a98569656a4c0701121715b842 )
Otto [Mon, 29 Mar 2021 08:40:37 +0000 (10:40 +0200)]
More fail-safe handling of NOD files
(cherry picked from commit
7b4cc738ffaaec7173f39fc140799f2200d93e61 )
Peter van Dijk [Fri, 26 Mar 2021 11:29:48 +0000 (12:29 +0100)]
Merge pull request #10206 from pieterlexis/API-search-rrtype-on-comment
Remi Gacogne [Fri, 26 Mar 2021 10:58:08 +0000 (11:58 +0100)]
Merge pull request #10207 from rgacogne/ddist-max-concurrent-connections
Remi Gacogne [Wed, 24 Mar 2021 14:16:44 +0000 (15:16 +0100)]
dnsdist: Clarify the meaning of 'tcpMaxConcurrentConnections'
Remi Gacogne [Wed, 24 Mar 2021 14:15:17 +0000 (15:15 +0100)]
dnsdist: Remove trailing whitespace in the documentation
Remi Gacogne [Wed, 24 Mar 2021 10:27:15 +0000 (11:27 +0100)]
dnsdist: Add regression tests for the number of conns per frontend
Remi Gacogne [Tue, 23 Mar 2021 17:58:54 +0000 (18:58 +0100)]
dnsdist: Add a parameter to limit the number of TCP conns per frontend
Remi Gacogne [Mon, 22 Mar 2021 17:45:01 +0000 (18:45 +0100)]
dnsdist: Add setMaxCachedTCPConnectionsPerDownstream()
Remi Gacogne [Mon, 22 Mar 2021 16:12:46 +0000 (17:12 +0100)]
dnsdist: Add 'max concurrent connections' counters
Pieter Lexis [Mon, 22 Mar 2021 17:31:31 +0000 (18:31 +0100)]
API: return RRType when finding a comment
Otto Moerbeek [Fri, 26 Mar 2021 09:15:45 +0000 (10:15 +0100)]
Merge pull request #10213 from omoerbeek/rec-prep-4.5.0-beta1
Remi Gacogne [Fri, 26 Mar 2021 07:33:19 +0000 (08:33 +0100)]
Merge pull request #10218 from rgacogne/ddist-disable-renego
Remi Gacogne [Thu, 25 Mar 2021 18:17:24 +0000 (19:17 +0100)]
dnsdist: Disable client-initiated renegotiation with LibreSSL
Remi Gacogne [Thu, 25 Mar 2021 15:57:44 +0000 (16:57 +0100)]
dnsdist: Disable TLS renegotiation by default
Remi Gacogne [Thu, 25 Mar 2021 09:00:38 +0000 (10:00 +0100)]
Merge pull request #10214 from rgacogne/ddist-certificate-reloading
Remi Gacogne [Wed, 24 Mar 2021 15:38:24 +0000 (16:38 +0100)]
dnsdist: Unify certificate reloading syntaxes
Otto Moerbeek [Wed, 24 Mar 2021 15:28:16 +0000 (16:28 +0100)]
Apply suggestions from code reviewCo-authored-by: Remi Gacogne <rgacogne+github@valombre.net>
Otto Moerbeek [Wed, 24 Mar 2021 14:40:30 +0000 (15:40 +0100)]
Merge pull request #10212 from omoerbeek/rec-docs-mt-metrics
Remi Gacogne [Wed, 24 Mar 2021 14:02:34 +0000 (15:02 +0100)]
Merge pull request #10201 from rgacogne/ddist-connect-timeout
Otto [Wed, 24 Mar 2021 13:59:31 +0000 (14:59 +0100)]
Fix typos and incoorporate suggestions.
Otto [Mon, 15 Mar 2021 13:25:57 +0000 (14:25 +0100)]
A few updates and corrections of docs related to metrics and threads.
Remi Gacogne [Wed, 24 Mar 2021 12:45:38 +0000 (13:45 +0100)]
dnsdist: Revert the backend's default TCP read and write timeouts
Remi Gacogne [Wed, 24 Mar 2021 12:37:36 +0000 (13:37 +0100)]
Merge pull request #10204 from rgacogne/ddist-tuning-defaults
Otto [Wed, 24 Mar 2021 11:22:25 +0000 (12:22 +0100)]
Changelog and secpoll
Otto Moerbeek [Wed, 24 Mar 2021 11:17:10 +0000 (12:17 +0100)]
Merge pull request #9995 from omoerbeek/rec-fastopen-connect
Otto [Tue, 23 Mar 2021 15:10:37 +0000 (16:10 +0100)]
Avoid flooding log on each connect by testing if fast-open-connect succeeds once on startup,
Otto [Mon, 15 Mar 2021 11:08:54 +0000 (12:08 +0100)]
change in writenWithTimeout should not be needed anymore as sdig now
Otto [Wed, 3 Mar 2021 12:51:45 +0000 (13:51 +0100)]
As suggested by @rgacogne and verified by myself v6 actually does have TFO.
Otto [Wed, 3 Mar 2021 12:36:43 +0000 (13:36 +0100)]
Zap unused leftover var after rebase
Otto [Tue, 26 Jan 2021 09:26:07 +0000 (10:26 +0100)]
My initial diagnosis of google causing disable of TFO was wrong,
Otto [Fri, 22 Jan 2021 13:57:06 +0000 (14:57 +0100)]
Upgrade guide note
Otto [Fri, 22 Jan 2021 12:39:30 +0000 (13:39 +0100)]
Spelling execptions
Otto Moerbeek [Fri, 22 Jan 2021 12:36:26 +0000 (13:36 +0100)]
rfc refCo-authored-by: Pieter Lexis <pieter@plexis.eu>
Otto [Fri, 22 Jan 2021 12:28:53 +0000 (13:28 +0100)]
Settings docs plus some background info.
Otto [Fri, 22 Jan 2021 11:34:03 +0000 (12:34 +0100)]
Use separate settings for tcp-fast-open (passive) and tcp-fast-open-connect (active)
Otto [Fri, 22 Jan 2021 11:25:42 +0000 (12:25 +0100)]
Warn if fastopen-connect is requested but could not be enabled and adapt
Otto [Wed, 20 Jan 2021 12:28:02 +0000 (13:28 +0100)]
Use a timeout with tcp connect to we get the EINPROGRESS handling.
Otto Moerbeek [Wed, 20 Jan 2021 10:04:50 +0000 (11:04 +0100)]
sdig now works with fastopen
Otto [Tue, 19 Jan 2021 15:48:43 +0000 (16:48 +0100)]
Start supporting fastopen for outgoing TCP connections.
Otto [Wed, 24 Mar 2021 09:57:03 +0000 (10:57 +0100)]
update EOL statement
Otto Moerbeek [Wed, 24 Mar 2021 09:17:11 +0000 (10:17 +0100)]
Merge pull request #10210 from omoerbeek/rec-fix-skip-v6-test
Otto [Wed, 24 Mar 2021 09:11:33 +0000 (10:11 +0100)]
Mention padding in upgrade guide
Otto [Wed, 24 Mar 2021 08:01:27 +0000 (09:01 +0100)]
Setup env properly to skip v6 test.
Remi Gacogne [Tue, 23 Mar 2021 15:37:42 +0000 (16:37 +0100)]
Merge pull request #10208 from rgacogne/ddist-doh-id
Otto Moerbeek [Tue, 23 Mar 2021 14:43:01 +0000 (15:43 +0100)]
Merge pull request #8918 from rgacogne/rec-edns-padding-plus-tests
Remi Gacogne [Tue, 23 Mar 2021 14:22:09 +0000 (15:22 +0100)]
dnsdist: Fix the handling of DoH queries with a non-zero ID
rfc8484 states that clients "SHOULD use a DNS ID of 0 in every DNS
request", not MUST, so it does indeed happen.
The issue was introduced in
341d2553b74c579df9d9843959f3ca6f5c3dc954
when we moved to a safer PacketBuffer.
Otto Moerbeek [Tue, 23 Mar 2021 11:48:02 +0000 (12:48 +0100)]
Merge pull request #10057 from rgacogne/rec-no-zone-cut-computation
Otto Moerbeek [Mon, 22 Mar 2021 20:12:58 +0000 (21:12 +0100)]
Merge pull request #10182 from omoerbeek/rec-better-prime
Otto [Mon, 22 Mar 2021 19:01:00 +0000 (20:01 +0100)]
Reformat
Peter van Dijk [Mon, 22 Mar 2021 18:59:02 +0000 (19:59 +0100)]
Merge pull request #10164 from Habbie/amazon-linux-extras-epel
Peter van Dijk [Mon, 22 Mar 2021 14:17:38 +0000 (15:17 +0100)]
Merge pull request #10200 from Habbie/sdig-dumpluaraw
Remi Gacogne [Mon, 22 Mar 2021 13:49:19 +0000 (14:49 +0100)]
dnsdist: Fix tests with an invalid entries / shards ratio
Remi Gacogne [Mon, 22 Mar 2021 13:48:13 +0000 (14:48 +0100)]
dnsdist: Check that we have more cache entries than shards
Peter van Dijk [Mon, 22 Mar 2021 13:07:39 +0000 (14:07 +0100)]
Merge pull request #10195 from omoerbeek/rec-prep-4.3.7
Peter van Dijk [Mon, 22 Mar 2021 12:24:24 +0000 (13:24 +0100)]
fix typo
Peter van Dijk [Mon, 22 Mar 2021 12:21:15 +0000 (13:21 +0100)]
fix formatting after merge of #10099
Remi Gacogne [Mon, 22 Mar 2021 11:04:52 +0000 (12:04 +0100)]
dnsdist: Enable sharding by default, greater pipe buffer sizes
Peter van Dijk [Mon, 22 Mar 2021 10:29:10 +0000 (11:29 +0100)]
Merge pull request #10099 from RobinGeuze/lmdbTransactionErrors
Peter van Dijk [Mon, 22 Mar 2021 10:27:08 +0000 (11:27 +0100)]
Merge pull request #10129 from Habbie/auth-docs-10127
Peter van Dijk [Mon, 22 Mar 2021 10:24:00 +0000 (11:24 +0100)]
Merge pull request #10175 from jsoref/patterns
Peter van Dijk [Fri, 19 Mar 2021 14:47:54 +0000 (15:47 +0100)]
sdig, pdnsutil: add dnsdist spoofAction string generators
Peter van Dijk [Fri, 19 Mar 2021 19:20:19 +0000 (20:20 +0100)]
Merge pull request #10202 from kaistian/docs-fix
Kai Stian Olstad [Fri, 19 Mar 2021 19:16:30 +0000 (20:16 +0100)]
docs: Changed to correct zone in sqlite backend example
Remi Gacogne [Fri, 19 Mar 2021 15:14:56 +0000 (16:14 +0100)]
dnsdist: Fix the TCP connect timeout, add metrics
Remi Gacogne [Fri, 19 Mar 2021 16:45:17 +0000 (17:45 +0100)]
Merge pull request #10156 from rgacogne/ddist-conn-reuse
Otto Moerbeek [Fri, 19 Mar 2021 15:39:20 +0000 (16:39 +0100)]
Apply suggestions from code reviewCo-authored-by: Remi Gacogne <rgacogne+github@valombre.net>
Otto [Fri, 19 Mar 2021 15:33:06 +0000 (16:33 +0100)]
Add a unit test and also make the test priming correspond to the new real priming.
Remi Gacogne [Fri, 19 Mar 2021 14:13:08 +0000 (15:13 +0100)]
Merge pull request #10184 from rgacogne/ddist-tcp-listen-overflows
Otto [Fri, 19 Mar 2021 10:21:09 +0000 (11:21 +0100)]
Prep for rec 4.3.7
Otto Moerbeek [Thu, 18 Mar 2021 20:25:57 +0000 (21:25 +0100)]
Merge pull request #10185 from omoerbeek/rec-ageing-pc
Peter van Dijk [Tue, 2 Mar 2021 08:52:17 +0000 (09:52 +0100)]
auth upgrade docs: note removal of do-ipv6-additional-processing
Peter van Dijk [Thu, 18 Mar 2021 14:49:08 +0000 (15:49 +0100)]
amazonlinux-2: do not build ixfrdist
Otto [Wed, 17 Mar 2021 15:00:16 +0000 (16:00 +0100)]
Make sure we take the right minimum for the PC TTL data in the SERVFAIL case.
Peter van Dijk [Thu, 18 Mar 2021 11:28:50 +0000 (12:28 +0100)]
Merge pull request #10186 from mind04/pdns-lmdb-coverity
auth: fix coverity CID
1450843
Peter van Dijk [Thu, 18 Mar 2021 11:25:33 +0000 (12:25 +0100)]
Merge pull request #10187 from Habbie/circleci-upstream-docker-images
Kees Monshouwer [Wed, 17 Mar 2021 22:10:33 +0000 (23:10 +0100)]
auth: fix coverity CID
1450843
Peter van Dijk [Thu, 18 Mar 2021 08:19:33 +0000 (09:19 +0100)]
circleci: use upstream docker images instead of the circleci forks
Remi Gacogne [Wed, 17 Mar 2021 10:19:27 +0000 (11:19 +0100)]
dnsdist: Add a metric for TCP listen queue full events
projects / thirdparty / pdns.git / log
