]>
git.ipfire.org Git - thirdparty/knot-dns.git/log
Daniel Salzman [Mon, 20 Apr 2026 10:28:31 +0000 (12:28 +0200)]
module: extend parameter checks in conf_deactivate_modules()
Daniel Salzman [Mon, 20 Apr 2026 10:27:37 +0000 (12:27 +0200)]
module: update conf_activate_modules() description
Daniel Salzman [Fri, 17 Apr 2026 10:48:18 +0000 (12:48 +0200)]
configure: fix undefined HAVE_KDIG_VALIDATION if disabled utilities or daemon
Libor Peltan [Thu, 16 Apr 2026 12:09:51 +0000 (14:09 +0200)]
Merge branch 'kdig-diskspace-warn' into 'master'
utils: report errors in writing the output to the user
See merge request knot/knot-dns!1862
Jan Hák [Wed, 15 Apr 2026 13:31:29 +0000 (15:31 +0200)]
fix: missing error message after explicit fflush call
Jan Doskočil [Fri, 13 Feb 2026 15:35:14 +0000 (16:35 +0100)]
utils: report errors in writing the output to the user
Notably in cases where output was truncated due to insufficient device
storage capacity.
Daniel Salzman [Thu, 16 Apr 2026 11:08:25 +0000 (13:08 +0200)]
libngtcp2: update embedded library to v1.22.1
Daniel Salzman [Thu, 16 Apr 2026 10:57:14 +0000 (12:57 +0200)]
Merge branch 'kdig_dnssec_valid' into 'master'
kdig DNSSEC validation
See merge request knot/knot-dns!1752
Daniel Salzman [Wed, 8 Apr 2026 12:25:24 +0000 (14:25 +0200)]
kdig: don't link with unused libknotd dependencies (urcu, hiredis, zscanner,...), version 2
This solution doesn't affect knotd performance by not placing each function
in its own section in the object file, but at the cost of a bigger kdig binary.
Also it requires ugly symbol redefinitions.
Daniel Salzman [Tue, 7 Apr 2026 12:49:00 +0000 (14:49 +0200)]
kdig: don't link with unused libknotd dependencies (urcu, hiredis, zscanner,...), version 1
By placing each function in its own section in the object file, the linker can
eliminate dead code (and unused calls of external dependencies). The resulting
kdig binary is smaller. Unfortunately, this solution slightly worsens knotd
performance.
Libor Peltan [Thu, 10 Apr 2025 11:01:17 +0000 (13:01 +0200)]
kdig/validation: fix empty-non-terminal wildcard match in NSEC zone...
...for example foo.not-star.phicoh.nl. matches empty-non-terminal wildcard
Libor Peltan [Tue, 11 Mar 2025 06:42:05 +0000 (07:42 +0100)]
tests: support for calling kdig and its validation
Libor Peltan [Fri, 21 Feb 2025 19:51:31 +0000 (20:51 +0100)]
kdig: implemented DNSSEC validation (+validate)
Libor Peltan [Sun, 9 Mar 2025 20:00:50 +0000 (21:00 +0100)]
dnssec validation: bugfix: dont remove any even redundant RRSIGs
Libor Peltan [Sun, 23 Feb 2025 18:23:40 +0000 (19:23 +0100)]
libknot: allow loading nsec3 params from NSEC3
Libor Peltan [Sun, 23 Feb 2025 13:05:53 +0000 (14:05 +0100)]
adjust: bugfix: prev pointers for non-binode contents
Daniel Salzman [Fri, 10 Apr 2026 12:14:11 +0000 (14:14 +0200)]
yparser: fix unix socket path guessing
Libor Peltan [Thu, 16 Apr 2026 09:18:54 +0000 (11:18 +0200)]
Merge branch 'lmdb_read_check' into 'master'
knot_lmdb: call mdb_reader_check() even for RO transactions
See merge request knot/knot-dns!1865
Daniel Salzman [Thu, 16 Apr 2026 05:53:30 +0000 (07:53 +0200)]
knot_lmdb: call mdb_reader_check() even for RO transactions
Daniel Salzman [Tue, 14 Apr 2026 10:40:04 +0000 (12:40 +0200)]
tests: mute warning 'strnlen' specified bound 108 exceeds source size 38
Daniel Salzman [Tue, 14 Apr 2026 09:58:35 +0000 (11:58 +0200)]
scripts/timers_dump.py: fix empty zone name for the root zone
Daniel Salzman [Tue, 14 Apr 2026 06:54:49 +0000 (08:54 +0200)]
knotd: fix library linking order (place malloc_LIBS last)
Otherwise, an alternative allocator may be linked but not necessarily used
as the effective malloc implementation.
Libor Peltan [Fri, 10 Apr 2026 09:51:39 +0000 (11:51 +0200)]
Merge branch 'events_mutex_fix' into 'master'
events: add missing mutex lock, code unification
See merge request knot/knot-dns!1864
Daniel Salzman [Fri, 10 Apr 2026 09:34:32 +0000 (11:34 +0200)]
events: add missing mutex lock, code unification
Daniel Salzman [Sat, 4 Apr 2026 14:37:26 +0000 (16:37 +0200)]
tests-extra: fix NOTIFY over TLS from Bind
Libor Peltan [Mon, 23 Mar 2026 10:47:05 +0000 (11:47 +0100)]
mod-onlinesign: fix computation of immediately successive name
Daniel Salzman [Wed, 1 Apr 2026 12:26:22 +0000 (14:26 +0200)]
Merge branch 'test_etc' into 'master'
tests: workaround for Bind9 bug #5824
See merge request knot/knot-dns!1863
Libor Peltan [Wed, 1 Apr 2026 12:18:33 +0000 (14:18 +0200)]
tests: workaround for Bind9 bug #5824
Jan Hák [Mon, 9 Feb 2026 13:57:44 +0000 (14:57 +0100)]
knotd: add module for EDNS error reporting, RFC 9567
Jan Hák [Fri, 27 Feb 2026 18:55:08 +0000 (19:55 +0100)]
kdig: add support for EDNS Report-Channel option
Jan Hák [Fri, 27 Feb 2026 18:51:37 +0000 (19:51 +0100)]
libknot: add EDNS Report-Channel option
Daniel Salzman [Tue, 31 Mar 2026 15:27:47 +0000 (17:27 +0200)]
Merge branch 'libknot_fixes_lpe' into 'master'
libknot fixes
See merge request knot/knot-dns!1861
Libor Peltan [Fri, 27 Mar 2026 10:33:10 +0000 (11:33 +0100)]
zonefile+ctl+redis: prevent malformed RRs in generic format
Libor Peltan [Tue, 31 Mar 2026 09:18:59 +0000 (11:18 +0200)]
ctl/zone-set: leak when RR parsing fails
Libor Peltan [Fri, 27 Mar 2026 15:45:53 +0000 (16:45 +0100)]
libknot: distinguish RR types that may have non/empty rdata remainder
Daniel Salzman [Mon, 30 Mar 2026 10:30:55 +0000 (12:30 +0200)]
ctl: don't canonicalize rdata if in generic format and forced
Daniel Salzman [Thu, 26 Mar 2026 13:03:44 +0000 (14:03 +0100)]
libknot/rrset-dump: check for valid data length prefix
Libor Peltan [Tue, 31 Mar 2026 10:30:19 +0000 (12:30 +0200)]
libknot/zonemd: ensure item length getters don't return overlimit values
Daniel Salzman [Thu, 26 Mar 2026 11:15:14 +0000 (12:15 +0100)]
libknot/nsec3: ensure item length getters don't return overlimit values
Daniel Salzman [Thu, 26 Mar 2026 10:34:33 +0000 (11:34 +0100)]
libknot/descriptor: add minimum rdata sizes where appropriate
Libor Peltan [Mon, 30 Mar 2026 14:44:37 +0000 (16:44 +0200)]
tests: extended RR lower-casing test
Libor Peltan [Mon, 30 Mar 2026 13:59:35 +0000 (15:59 +0200)]
zonefile-load + ctl/zone-set: canonicalize only generic...
...as non-generic textual format is canonicalized already in
zscanner
Daniel Salzman [Sat, 28 Mar 2026 17:34:05 +0000 (18:34 +0100)]
libzscanner: add rdata lower casing support and generic format indication
Daniel Salzman [Sun, 29 Mar 2026 18:43:19 +0000 (20:43 +0200)]
libngtcp2: update embedded library to v1.22.0
Libor Peltan [Sat, 28 Mar 2026 06:07:00 +0000 (07:07 +0100)]
fixup but think again
Daniel Salzman [Fri, 27 Mar 2026 14:06:00 +0000 (15:06 +0100)]
Merge branch 'all_outdated_warning' into 'master'
All outdated warning
See merge request knot/knot-dns!1860
Libor Peltan [Thu, 26 Mar 2026 15:45:03 +0000 (16:45 +0100)]
zone/load/difference-no-serial: enforce serial policy already upon initial zonefile load
Libor Peltan [Thu, 26 Mar 2026 14:25:53 +0000 (15:25 +0100)]
refresh: warn when all primaries are outdated
Jan Hák [Thu, 26 Mar 2026 09:31:26 +0000 (10:31 +0100)]
redis: fix use-after-free pointer at 'diff_aof_rewrite'
Jan Hák [Thu, 26 Mar 2026 09:12:35 +0000 (10:12 +0100)]
redis: fix arity check at 'KNOT_BIN.AOF.DIFF'
Daniel Salzman [Thu, 26 Mar 2026 14:23:24 +0000 (15:23 +0100)]
Merge branch 'kxdpgun_link_rate' into 'master'
kxdpgun: change throughput statistics output
See merge request knot/knot-dns!1859
Hynek Šabacký [Wed, 25 Mar 2026 13:17:32 +0000 (14:17 +0100)]
kxdpgun: edit stats to print throughput in SI format
Hynek Šabacký [Wed, 25 Mar 2026 11:37:24 +0000 (12:37 +0100)]
kxdpgun: add reply link rate to stats output
Daniel Salzman [Mon, 23 Mar 2026 15:07:58 +0000 (16:07 +0100)]
Merge branch 'update_no_change_faster' into 'master'
update: improve terribly slow zone_update_no_change()
See merge request knot/knot-dns!1858
Daniel Salzman [Mon, 23 Mar 2026 07:25:57 +0000 (08:25 +0100)]
kxdpgun: add /copy to XDP mode if forced
Daniel Salzman [Wed, 18 Mar 2026 19:21:20 +0000 (20:21 +0100)]
xdp: allow configuring ZERO_COPY by 'xdp.zero-copy'
Disabling ZERO_COPY can help if there is a bug in the kernel/driver.
Daniel Salzman [Fri, 20 Mar 2026 19:30:01 +0000 (20:30 +0100)]
distro/deb: upgrade to Policy 4.7.3
https://salsa.debian.org/dns-team/knot-dns/-/commit/
a70430a37309e584f671e7ec6f0dcefe29ff1a95
https://salsa.debian.org/dns-team/knot-dns/-/commit/
eb57ca1bf562826a4f4813d719419f0f23a5ad67
Daniel Salzman [Fri, 20 Mar 2026 19:25:20 +0000 (20:25 +0100)]
distro/deb: declare in d/clean that doc/modules/ is a directory
https://salsa.debian.org/dns-team/knot-dns/-/commit/
304614ad4f5e629cfc51b4b364acf764ffeebe20
Daniel Salzman [Fri, 20 Mar 2026 19:06:28 +0000 (20:06 +0100)]
distro: unify files for Arch
Daniel Salzman [Mon, 20 Oct 2025 10:44:55 +0000 (12:44 +0200)]
distro/deb: introduce sysusers.d and tmpfiles.d
https://salsa.debian.org/dns-team/knot-dns/-/commit/
ffae9018ae1b879d470e91936d53ca1be2334415
Daniel Salzman [Fri, 20 Mar 2026 14:10:45 +0000 (15:10 +0100)]
conf: increase conf_lmdb_readers() return value by 3
A user was hitting the previous limit.
Daniel Salzman [Fri, 20 Mar 2026 10:30:58 +0000 (11:30 +0100)]
stats: refactor server statistics
Daniel Salzman [Thu, 19 Mar 2026 08:01:20 +0000 (09:01 +0100)]
src: use ATOMIC_*_SOFT() where appropriate
Daniel Salzman [Thu, 19 Mar 2026 08:07:04 +0000 (09:07 +0100)]
atomic: add ATOMIC_*_SOFT alternatives for appropriate cases (statistic counters)
Daniel Salzman [Thu, 19 Mar 2026 07:59:55 +0000 (08:59 +0100)]
atomic: make ATOMIC_* commands with highest memory order by default
Add ATOMIC_*_SOFT alternatives for appropriate cases (statistic counters).
Daniel Salzman [Wed, 18 Mar 2026 19:29:18 +0000 (20:29 +0100)]
atomic: add ATOMIC_CMPXCHG()
Daniel Salzman [Tue, 17 Mar 2026 21:25:52 +0000 (22:25 +0100)]
atomic: remove GCC __atomic support, which isn't used anywhere
Daniel Salzman [Thu, 19 Mar 2026 09:42:55 +0000 (10:42 +0100)]
Merge branch 'kxdpgun-json-stream' into 'master'
kxdpgun: tweak --json output
See merge request knot/knot-dns!1854
Hynek Šabacký [Tue, 3 Mar 2026 14:38:22 +0000 (15:38 +0100)]
kxdpgun + json: edit to comply with JSON lines
Vladimír Čunát [Tue, 3 Mar 2026 07:43:21 +0000 (08:43 +0100)]
kxdpgun: tweak --json output
It was producing a large []-list of JSONs from the [schema].
But the intention was to use a *stream* of newline-delimited
JSON objects, each matching the [schema]. We output that now.
[schema]: https://github.com/DNS-OARC/dns-metrics
Daniel Salzman [Wed, 18 Mar 2026 17:13:16 +0000 (18:13 +0100)]
Merge branch 'bind9_offline_ksk3' into 'master'
Bind9 offline ksk3
See merge request knot/knot-dns!1857
Libor Peltan [Wed, 18 Mar 2026 09:06:12 +0000 (10:06 +0100)]
tests: Bind9 in OfflineKSK: detection if available and new enough
Libor Peltan [Thu, 25 Apr 2024 13:49:43 +0000 (15:49 +0200)]
tests: offlineKSK interoperability with Bind9
Libor Peltan [Thu, 25 Apr 2024 09:00:36 +0000 (11:00 +0200)]
tests-extra: facility for calling server.key_gen/set() also for Bind
Libor Peltan [Tue, 23 Apr 2024 15:00:22 +0000 (17:00 +0200)]
keymgr/offlineKSK: allow timestamps in YMDhms format
Libor Peltan [Tue, 17 Mar 2026 14:31:52 +0000 (15:31 +0100)]
Merge branch 'mod_fixes' into 'master'
Module fixes
See merge request knot/knot-dns!1856
Daniel Salzman [Tue, 17 Mar 2026 13:08:42 +0000 (14:08 +0100)]
modules: add missing checks from hook registrations
Daniel Salzman [Tue, 17 Mar 2026 12:17:51 +0000 (13:17 +0100)]
modules: unload module context if any when closing/error
Libor Peltan [Mon, 16 Mar 2026 14:24:29 +0000 (15:24 +0100)]
zone/evsched/worker_pool: remove assigned task before freeing zone...
...so that the potentially assigned task doesn't dangle leading to freed memory
access which could happen if a zone is allocated and module init fails
it is deallocated but the assigned event LOAD task remains
Libor Peltan [Mon, 16 Mar 2026 10:31:23 +0000 (11:31 +0100)]
update: improve terribly slow zone_update_no_change()
Libor Peltan [Fri, 13 Mar 2026 14:34:19 +0000 (15:34 +0100)]
Merge branch 'pkcs11-fixes' into 'master'
dnssec: add a mutex to prevent race condition when registering a PKCS#11 module
See merge request knot/knot-dns!1855
Daniel Salzman [Wed, 11 Mar 2026 20:09:48 +0000 (21:09 +0100)]
dnssec: add a mutex to prevent race condition when registering a PKCS#11 module
Daniel Salzman [Wed, 11 Mar 2026 14:18:57 +0000 (15:18 +0100)]
geoip: improve error check if missing record owner in config file
Daniel Salzman [Wed, 11 Mar 2026 14:18:27 +0000 (15:18 +0100)]
geoip: fix crash if missing record owner in config file
Jan Doskočil [Tue, 9 Dec 2025 15:24:24 +0000 (16:24 +0100)]
dnstap: responses-with-queries as part of dt_message_fill
Jan Doskočil [Wed, 7 Jan 2026 12:03:39 +0000 (13:03 +0100)]
contrib/lists: add WALK_LIST_RESUME
Daniel Salzman [Sun, 8 Mar 2026 18:34:20 +0000 (19:34 +0100)]
fdset: add include <stdint.h>
Daniel Salzman [Thu, 26 Feb 2026 09:08:15 +0000 (10:08 +0100)]
tcp-handler: tiny code cleanup
Daniel Salzman [Thu, 26 Feb 2026 08:55:46 +0000 (09:55 +0100)]
udp-handler: unify with tcp-handler
Daniel Salzman [Mon, 23 Feb 2026 09:26:09 +0000 (10:26 +0100)]
fdset: support optional number of contexts per one descriptor
Daniel Salzman [Sun, 8 Mar 2026 07:09:06 +0000 (08:09 +0100)]
redis: fix possibly misaligned input rdata where needed
Daniel Salzman [Fri, 6 Mar 2026 14:15:14 +0000 (15:15 +0100)]
rrl: remove redundant CLOCK_MONOTONIC_COARSE check/definition
Jan Doskočil [Wed, 7 Jan 2026 11:28:39 +0000 (12:28 +0100)]
contrib/time: add fallbacks for CLOCK_MONOTONIC_COARSE and CLOCK_REALTIME_COARSE
Daniel Salzman [Fri, 6 Mar 2026 14:00:30 +0000 (15:00 +0100)]
Merge branch 'redis_alias_script'
Jan Hák [Thu, 8 Jan 2026 13:33:07 +0000 (14:33 +0100)]
scripts: add script to resolve ALIASes in Redis backed zone
Daniel Salzman [Fri, 6 Mar 2026 10:33:13 +0000 (11:33 +0100)]
redis: fix dumping of empty update
Daniel Salzman [Sat, 24 Jan 2026 12:34:43 +0000 (13:34 +0100)]
redis: remove empty diff formed by add/rem canceling
Jan Hák [Thu, 22 Jan 2026 12:36:24 +0000 (13:36 +0100)]
redis: fix listing of empty database
Jan Hák [Mon, 19 Jan 2026 13:59:38 +0000 (14:59 +0100)]
redis: add flag to merge rdataset into existing one in binary API
Daniel Salzman [Mon, 19 Jan 2026 16:23:09 +0000 (17:23 +0100)]
libs: add ALIAS record support