]> granicus.if.org Git - pdns/log
pdns
6 years agoMerge pull request #6542 from Habbie/auth-4.1.x-boost-L
Pieter Lexis [Tue, 1 May 2018 22:00:02 +0000 (00:00 +0200)]
Merge pull request #6542 from Habbie/auth-4.1.x-boost-L

move includes around to avoid boost L conflict

6 years agoMerge pull request #6543 from Habbie/backport-6155
Pieter Lexis [Tue, 1 May 2018 21:59:53 +0000 (23:59 +0200)]
Merge pull request #6543 from Habbie/backport-6155

backport: Update EDNS Option code list

6 years agoMerge pull request #6546 from Habbie/backport-6286
Pieter Lexis [Tue, 1 May 2018 21:59:23 +0000 (23:59 +0200)]
Merge pull request #6546 from Habbie/backport-6286

Backport: Debian Authoritative packaging fixes for 4.1

6 years agoMerge pull request #6547 from Habbie/backport-6062
Pieter Lexis [Tue, 1 May 2018 21:59:14 +0000 (23:59 +0200)]
Merge pull request #6547 from Habbie/backport-6062

Fix PIDDIR detection on CentOS 6

6 years agoMerge pull request #6548 from Habbie/backport-6487
Pieter Lexis [Tue, 1 May 2018 21:59:07 +0000 (23:59 +0200)]
Merge pull request #6548 from Habbie/backport-6487

auth: Link dnspcap2protobuf against librt when needed

6 years agoMerge pull request #6549 from Habbie/backport-6478
Pieter Lexis [Tue, 1 May 2018 21:59:00 +0000 (23:59 +0200)]
Merge pull request #6549 from Habbie/backport-6478

Fix a warning on botan >= 2.5.0

6 years agoMerge pull request #6551 from Habbie/backport-6464
Pieter Lexis [Tue, 1 May 2018 21:58:49 +0000 (23:58 +0200)]
Merge pull request #6551 from Habbie/backport-6464

auth: Allocate new statements after reconnecting to PostgreSQL

6 years agoMerge pull request #6552 from Habbie/auth-4.1.x-unbreak-build
Pieter Lexis [Tue, 1 May 2018 21:58:38 +0000 (23:58 +0200)]
Merge pull request #6552 from Habbie/auth-4.1.x-unbreak-build

Auth 4.1.x: unbreak build

6 years agoMerge pull request #6553 from Habbie/backport-6297
Pieter Lexis [Tue, 1 May 2018 21:58:25 +0000 (23:58 +0200)]
Merge pull request #6553 from Habbie/backport-6297

make check-zone error on rows that have content but shouldn't

6 years agoMerge pull request #6554 from Habbie/backport-6427
Pieter Lexis [Tue, 1 May 2018 21:58:09 +0000 (23:58 +0200)]
Merge pull request #6554 from Habbie/backport-6427

auth: avoid an isane amount of new backend connections during an AXFR

6 years agoMerge pull request #6555 from Habbie/backport-6396
Pieter Lexis [Tue, 1 May 2018 21:57:58 +0000 (23:57 +0200)]
Merge pull request #6555 from Habbie/backport-6396

report unparseable data in stoul invalid_argument exception

6 years agoimprove out of range reporting
Peter van Dijk [Mon, 26 Mar 2018 18:52:57 +0000 (20:52 +0200)]
improve out of range reporting

(cherry picked from commit cccfa59b37d7b4dbe4e2429e495b2196e4244dc3)

6 years agoreport unparseable data in stoul invalid_argument exception
Peter van Dijk [Mon, 26 Mar 2018 18:37:50 +0000 (20:37 +0200)]
report unparseable data in stoul invalid_argument exception

(cherry picked from commit 2f975181d5d660e25cc4cd41f1e30788da56df96)

6 years agoauth: avoid an isane amount of new backend connections during an AXFR
Kees Monshouwer [Fri, 30 Mar 2018 14:57:43 +0000 (16:57 +0200)]
auth: avoid an isane amount of new backend connections during an AXFR

(cherry picked from commit ea99d4743de9184c0d9b173df09388ec981fe98a)

6 years agoremove code instead of adding code, thanks @mind04
Peter van Dijk [Thu, 22 Feb 2018 11:09:42 +0000 (12:09 +0100)]
remove code instead of adding code, thanks @mind04

(cherry picked from commit 34da171993a23fd76d7aa313f409b18f63764d05)

6 years agomake check-zone error on records that have content but shouldn't.
Peter van Dijk [Thu, 22 Feb 2018 10:14:16 +0000 (11:14 +0100)]
make check-zone error on records that have content but shouldn't.

Fixes #6064

(cherry picked from commit decc573db598d941a562aca33fa58b9f03df6406)

6 years agoluabackend: do not assume module path
Peter van Dijk [Thu, 29 Mar 2018 12:40:16 +0000 (14:40 +0200)]
luabackend: do not assume module path

6 years agoluabackend: do not assume pdns_server path
Peter van Dijk [Thu, 29 Mar 2018 09:20:04 +0000 (11:20 +0200)]
luabackend: do not assume pdns_server path

6 years agoanother shot at zone2ldap.1
Peter van Dijk [Tue, 27 Feb 2018 19:55:33 +0000 (20:55 +0100)]
another shot at zone2ldap.1

6 years agodo dist zone2ldap.1 always
Peter van Dijk [Tue, 27 Feb 2018 18:56:06 +0000 (19:56 +0100)]
do dist zone2ldap.1 always

6 years agoonly build zone2ldap.1 when needed
Peter van Dijk [Tue, 27 Feb 2018 16:26:26 +0000 (17:26 +0100)]
only build zone2ldap.1 when needed

6 years agotest: add zone2json to debian packages
Peter van Dijk [Mon, 26 Feb 2018 20:53:32 +0000 (21:53 +0100)]
test: add zone2json to debian packages

6 years agoluabackend: do not assume binary paths
Peter van Dijk [Mon, 26 Feb 2018 15:02:59 +0000 (16:02 +0100)]
luabackend: do not assume binary paths

6 years agodisable ldap build for SLES12
Peter van Dijk [Tue, 1 May 2018 12:10:01 +0000 (14:10 +0200)]
disable ldap build for SLES12

6 years agoauth: Allocate new statements after reconnecting to PostgreSQL
Remi Gacogne [Tue, 10 Apr 2018 12:42:33 +0000 (14:42 +0200)]
auth: Allocate new statements after reconnecting to PostgreSQL

(cherry picked from commit db737018dab727d42873da36dd0b3d1cba3286f1)

6 years agoFix a warning on botan >= 2.5.0
Remi Gacogne [Thu, 12 Apr 2018 12:36:09 +0000 (14:36 +0200)]
Fix a warning on botan >= 2.5.0

(cherry picked from commit 7d9895fe11d5371f5d775d9f13a8b52f494021b1)

6 years agoauth: Link dnspcap2protobuf against librt when needed
Remi Gacogne [Fri, 13 Apr 2018 07:41:07 +0000 (09:41 +0200)]
auth: Link dnspcap2protobuf against librt when needed

(cherry picked from commit 4a4fcdcbfb3eaefd231a44ca56d21aa9ec7bb9d5)

6 years agoFix PIDDIR detection on CentOS 6
Pieter Lexis [Wed, 6 Dec 2017 14:02:30 +0000 (15:02 +0100)]
Fix PIDDIR detection on CentOS 6

Fixes #6051

(cherry picked from commit 548eab5a52718160f0077c67a2fffb5b257dca20)

6 years agodebian: fix ucf registration (same as Debian bug#816362)
Chris Hofstaedtler [Tue, 20 Feb 2018 09:54:06 +0000 (10:54 +0100)]
debian: fix ucf registration (same as Debian bug#816362)

(cherry picked from commit 597f3ff73b077c4e4d418e9733235c064ccf4551)

6 years agodebian: drop allow-recursion handling
Chris Hofstaedtler [Tue, 20 Feb 2018 09:48:41 +0000 (10:48 +0100)]
debian: drop allow-recursion handling

(cherry picked from commit 9896846b96c32924ecf07d9f165c8da7310627af)

6 years agoUpdate EDNS Option code list
Chris Hofstaedtler [Sun, 7 Jan 2018 23:41:05 +0000 (00:41 +0100)]
Update EDNS Option code list

(cherry picked from commit d442f33f7b36c5039dd0ae8968e70fb7f18f757a)

6 years agomove includes around to avoid boost L conflict
Peter van Dijk [Mon, 30 Apr 2018 15:44:01 +0000 (17:44 +0200)]
move includes around to avoid boost L conflict

6 years agoMerge pull request #6490 from Habbie/backport-6484
Pieter Lexis [Fri, 13 Apr 2018 12:52:57 +0000 (14:52 +0200)]
Merge pull request #6490 from Habbie/backport-6484

Backport: recheck serial when AXFR is done

6 years agog_log used to be L
Peter van Dijk [Fri, 13 Apr 2018 11:31:59 +0000 (13:31 +0200)]
g_log used to be L

6 years agorequeue serial check if NOTIFY comes in while incoming AXFR is ongoing
Peter van Dijk [Thu, 12 Apr 2018 18:33:41 +0000 (20:33 +0200)]
requeue serial check if NOTIFY comes in while incoming AXFR is ongoing

(cherry picked from commit 7d4ac70c97fffe7916ef8b8585dd9552c9a59517)

6 years agoimprove slave NOTIFY logging
Peter van Dijk [Thu, 12 Apr 2018 17:58:02 +0000 (19:58 +0200)]
improve slave NOTIFY logging

(cherry picked from commit 1793df78171989a93dde65506fff5d37b8223957)

6 years agoMerge pull request #6416 from Habbie/auth-4.1.x-mirror-dnsperf
Remi Gacogne [Fri, 30 Mar 2018 08:41:49 +0000 (10:41 +0200)]
Merge pull request #6416 from Habbie/auth-4.1.x-mirror-dnsperf

backport #6360: use mirror for dnsperf

6 years agobackport #6360: use mirror for dnsperf
Peter van Dijk [Fri, 16 Mar 2018 13:33:58 +0000 (14:33 +0100)]
backport #6360: use mirror for dnsperf

(cherry picked from commit 0e62797ed1cc33cbc44cbbc58d69da400cec85b1)

6 years agoMerge pull request #6337 from Habbie/alias-tcp-4.1.x
Pieter Lexis [Wed, 28 Mar 2018 13:38:49 +0000 (15:38 +0200)]
Merge pull request #6337 from Habbie/alias-tcp-4.1.x

Backport: add TCP support for ALIAS

6 years agoremove useless lines
Peter van Dijk [Mon, 26 Mar 2018 08:47:26 +0000 (10:47 +0200)]
remove useless lines

(cherry picked from commit 468403b0354bfda691bfeee0bf1419f549c728a0)

6 years agoRemove leftover logging invocation
Pieter Lexis [Wed, 21 Mar 2018 13:41:34 +0000 (14:41 +0100)]
Remove leftover logging invocation

(cherry picked from commit c92c0cbc214cd54f59ae28b759063bc100f1f290)

6 years agoadd TCP support for ALIAS. Closes #6328
Peter van Dijk [Fri, 9 Mar 2018 14:45:58 +0000 (15:45 +0100)]
add TCP support for ALIAS. Closes #6328

(cherry picked from commit c4e084f20f0cfd995e3f4aa75d534cf3b7ea89fd)

6 years agoremove recursor= leftovers
Peter van Dijk [Fri, 9 Mar 2018 13:34:12 +0000 (14:34 +0100)]
remove recursor= leftovers

(cherry picked from commit 7d338903e25cc9c3301a7bc9b323d1a739fc5107)

6 years agoMerge pull request #6314 from pieterlexis/auth-41-backport-6276
Pieter Lexis [Thu, 1 Mar 2018 08:39:07 +0000 (09:39 +0100)]
Merge pull request #6314 from pieterlexis/auth-41-backport-6276

Backport #6276 (auth 4.1.x): Prevent CNAME + other data with DNSUpdate

6 years agodyndns: Add tests for the CNAME-with-other-data issue
Pieter Lexis [Fri, 16 Feb 2018 16:16:54 +0000 (17:16 +0100)]
dyndns: Add tests for the CNAME-with-other-data issue

(cherry picked from commit e07c665fba49183eafafffc493c6c0e7c36fd4ab)

6 years agodnsupdate: Refuse updates for records with CNAMEs
Pieter Lexis [Fri, 16 Feb 2018 15:24:14 +0000 (16:24 +0100)]
dnsupdate: Refuse updates for records with CNAMEs

Also, refuse updates for CNAMES when other records exist and send
FORMERR to queries that add a CNAME and other data in the same update.

(cherry picked from commit 6f604952dcd8f4bbd9e884c9029039ef915cac24)

6 years agoMerge pull request #6261 from Habbie/auth-4.1.x-backports auth-4.1.1
Peter van Dijk [Fri, 16 Feb 2018 08:45:25 +0000 (09:45 +0100)]
Merge pull request #6261 from Habbie/auth-4.1.x-backports

backports for auth 4.1.1

6 years agoMerge pull request #6260 from Habbie/4.1.x-6029
Peter van Dijk [Fri, 16 Feb 2018 08:43:20 +0000 (09:43 +0100)]
Merge pull request #6260 from Habbie/4.1.x-6029

backport: forbid label compression in ALIAS wire format

6 years agoBackport #6077: Include unistd.h for chroot(2) et al.
Florian Obser [Fri, 8 Dec 2017 16:07:49 +0000 (17:07 +0100)]
Backport #6077: Include unistd.h for chroot(2) et al.

(cherry picked from commit 17d38f8d2c8ee7cd5964387812a20809c2ba3c37)

6 years agoBackport #6048
Grégory Oestreicher [Mon, 4 Dec 2017 23:56:08 +0000 (00:56 +0100)]
Backport #6048

LDAP: fix getDomainInfo() to set this as di.backend

(cherry picked from commit 0e9159f29550c9f7bc67940a89ee3626f3d462c2)

Remove unused variable.

(cherry picked from commit defa22801923b441cbc2b4c9e52ab65991b818d3)

6 years agoBackport bugfix from #6172: IXFR shouldn't remove RRs which aren't in deleted list
Leon Xu [Thu, 11 Jan 2018 09:49:25 +0000 (17:49 +0800)]
Backport bugfix from #6172: IXFR shouldn't remove RRs which aren't in deleted list

(cherry picked from commit 668624c8c617a40482a28b3c168701abed55aef0)

6 years agobackport #6134: auth: Always bind the results array after executing a statement
Remi Gacogne [Tue, 2 Jan 2018 16:03:47 +0000 (17:03 +0100)]
backport #6134: auth: Always bind the results array after executing a statement

We will reuse the same array most of the time, but it turns out that
calling mysql_stmt_next_result() followed by mysql_stmt_store_result()
invalidates the existing binding (the first one sets stmt->bind_result_done
to false, causing the second to reset the existing binding).

(cherry picked from commit 4fd90e75d47d6ec43d10c94ea260b08e50806442)

6 years agobackport #6129: auth: Init openssl and libsodium before chrooting in pdnsutil
Remi Gacogne [Mon, 1 Jan 2018 22:43:51 +0000 (23:43 +0100)]
backport #6129: auth: Init openssl and libsodium before chrooting in pdnsutil

(cherry picked from commit 7c3ee3dcfed2d0a9700d0cc8c064e031262e6279)

6 years agobackport #6122: ldapbackend: fix listing zones incl. AXFR
Chris Hofstaedtler [Thu, 28 Dec 2017 17:52:02 +0000 (18:52 +0100)]
backport #6122: ldapbackend: fix listing zones incl. AXFR

list() did not initialise m_qtype, but get() looks at it.

(cherry picked from commit 1ed4e23928bff126ae7adfe9da2476a7319ad3f5)

6 years agobackport #6103: auth: fix out of bounds exception in CAA processing, fixes #6089
Peter van Dijk [Mon, 18 Dec 2017 13:21:13 +0000 (14:21 +0100)]
backport #6103: auth: fix out of bounds exception in CAA processing, fixes #6089

(cherry picked from commit a94e55806c018f568ffd45ad75400b6b69bd18ae)

6 years agoBackport #6041: Add the missing <sys/time.h> include to mplexer.hh for struct timeval
Remi Gacogne [Mon, 4 Dec 2017 08:41:49 +0000 (09:41 +0100)]
Backport #6041: Add the missing <sys/time.h> include to mplexer.hh for struct timeval

(cherry picked from commit f1d51ff73fe0cf9d370e51a2aef7ba38c990e17f)

6 years agoforbid label compression in ALIAS wire format
Peter van Dijk [Thu, 30 Nov 2017 18:20:41 +0000 (19:20 +0100)]
forbid label compression in ALIAS wire format

fixes #6028

(cherry picked from commit 85c6d90e8776d08c7edfb916c272d5a7c0b04d2c)

6 years agoMerge pull request #6142 from Habbie/auth-4.1.x-travis
Remi Gacogne [Fri, 5 Jan 2018 09:12:57 +0000 (10:12 +0100)]
Merge pull request #6142 from Habbie/auth-4.1.x-travis

auth 4.1.x: limit travis builds to auth only

6 years agolimit builds to auth only
Peter van Dijk [Thu, 4 Jan 2018 14:46:29 +0000 (15:46 +0100)]
limit builds to auth only

7 years agoMerge pull request #6016 from aerique:feature/update-auth-4.1.0-changelog. auth-4.1.0
aerique [Thu, 30 Nov 2017 09:33:09 +0000 (10:33 +0100)]
Merge pull request #6016 from aerique:feature/update-auth-4.1.0-changelog.

Update changelog and secpoll for 4.1.0.

7 years agoMerge pull request #6006 from rgacogne/nixu-5.3.4
aerique [Tue, 28 Nov 2017 20:21:28 +0000 (21:21 +0100)]
Merge pull request #6006 from rgacogne/nixu-5.3.4

rec: Sanitize values received from the API before writing them to the conf

7 years agoMerge pull request #6011 from ahupowerdns/quote-server-id
aerique [Tue, 28 Nov 2017 15:53:22 +0000 (16:53 +0100)]
Merge pull request #6011 from ahupowerdns/quote-server-id

quote server-id to hosts with - or . in their name get reported again

7 years agoMerge pull request #6015 from Habbie/id.server
aerique [Tue, 28 Nov 2017 15:53:08 +0000 (16:53 +0100)]
Merge pull request #6015 from Habbie/id.server

it's id.server, not server.id

7 years agonit
Peter van Dijk [Tue, 28 Nov 2017 13:18:44 +0000 (14:18 +0100)]
nit

7 years agoMerge pull request #6000 from rgacogne/rec-authzone-validation
Pieter Lexis [Tue, 28 Nov 2017 12:33:18 +0000 (13:33 +0100)]
Merge pull request #6000 from rgacogne/rec-authzone-validation

rec: Skip validation (including cached entries) for auth zones

7 years agoMerge pull request #6001 from zeha/secpoll-servfail
Pieter Lexis [Tue, 28 Nov 2017 12:33:03 +0000 (13:33 +0100)]
Merge pull request #6001 from zeha/secpoll-servfail

recursor secpoll: improve message on timeout

7 years agoMerge pull request #6009 from rgacogne/rec-zone-part-signer
Pieter Lexis [Tue, 28 Nov 2017 12:32:39 +0000 (13:32 +0100)]
Merge pull request #6009 from rgacogne/rec-zone-part-signer

rec: When validating DNSKeys, the zone should be part of the signer

7 years agoMerge pull request #6008 from rgacogne/ecdsa-error-leak
Pieter Lexis [Tue, 28 Nov 2017 12:32:26 +0000 (13:32 +0100)]
Merge pull request #6008 from rgacogne/ecdsa-error-leak

rec:  Don't leak when the loading a public ECDSA key fails

7 years agoMerge pull request #6007 from rgacogne/auth-web-readonly-ops
aerique [Tue, 28 Nov 2017 12:26:56 +0000 (13:26 +0100)]
Merge pull request #6007 from rgacogne/auth-web-readonly-ops

auth: Deny cache flush, zone retrieve and notify if the API is RO

7 years agofix tab & {}
bert hubert [Tue, 28 Nov 2017 10:44:51 +0000 (11:44 +0100)]
fix tab & {}

7 years agoquote server-id. This stops us from breaking serving chaos txt id.server if your...
bert hubert [Tue, 28 Nov 2017 09:50:24 +0000 (10:50 +0100)]
quote server-id. This stops us from breaking serving chaos txt id.server if your server has a dash or a dot or an underscore in its name.

7 years agoMerge pull request #5997 from rgacogne/rec-additional-val
Peter van Dijk [Tue, 28 Nov 2017 09:28:17 +0000 (10:28 +0100)]
Merge pull request #5997 from rgacogne/rec-additional-val

rec: Store additional records as non-auth, even on AA=1 answers

7 years agoMerge pull request #6004 from pieterlexis/rm-old-soa-edit
Peter van Dijk [Tue, 28 Nov 2017 08:54:22 +0000 (09:54 +0100)]
Merge pull request #6004 from pieterlexis/rm-old-soa-edit

Remove deprecated SOA-EDIT values

7 years agoMerge pull request #5617 from Habbie/ednsflags
Peter van Dijk [Tue, 28 Nov 2017 08:52:49 +0000 (09:52 +0100)]
Merge pull request #5617 from Habbie/ednsflags

fix reading of ednsflags in recursor testing

7 years agodoc: Fix a typo in PowerDNS Advisory 2017-04
Remi Gacogne [Tue, 28 Nov 2017 08:15:45 +0000 (09:15 +0100)]
doc: Fix a typo in PowerDNS Advisory 2017-04

7 years agorec: Sanitize values received from the API before writing them to the conf
Remi Gacogne [Mon, 17 Jul 2017 17:21:01 +0000 (19:21 +0200)]
rec: Sanitize values received from the API before writing them to the conf

7 years agoauth: Deny cache flush, zone retrieve and notify if the API is RO
Remi Gacogne [Tue, 22 Aug 2017 09:48:07 +0000 (11:48 +0200)]
auth: Deny cache flush, zone retrieve and notify if the API is RO

7 years agoFix a memory leak when loading an RSA key with an invalid modulus
Remi Gacogne [Wed, 11 Oct 2017 13:28:04 +0000 (15:28 +0200)]
Fix a memory leak when loading an RSA key with an invalid modulus

7 years agoDon't leak when the loading a public ECDSA key fails
Remi Gacogne [Thu, 13 Jul 2017 14:22:30 +0000 (16:22 +0200)]
Don't leak when the loading a public ECDSA key fails

7 years agorec: When validating DNSKeys, the zone should be part of the signer
Remi Gacogne [Thu, 17 Aug 2017 16:05:54 +0000 (18:05 +0200)]
rec: When validating DNSKeys, the zone should be part of the signer

7 years agodo not demand a DO reply to a non-DO query
Peter van Dijk [Wed, 16 Aug 2017 12:08:13 +0000 (14:08 +0200)]
do not demand a DO reply to a non-DO query

7 years agoRemove deprecated SOA-EDIT values
Pieter Lexis [Mon, 27 Nov 2017 12:24:51 +0000 (13:24 +0100)]
Remove deprecated SOA-EDIT values

7 years agoMerge pull request #5916 from pieterlexis/rm-wiki
Pieter Lexis [Mon, 27 Nov 2017 16:58:49 +0000 (17:58 +0100)]
Merge pull request #5916 from pieterlexis/rm-wiki

Documentation additions so we can rid of the wiki

7 years agoMerge pull request #5990 from jannyg/patch-2
Pieter Lexis [Mon, 27 Nov 2017 16:58:32 +0000 (17:58 +0100)]
Merge pull request #5990 from jannyg/patch-2

Adds description of add-record

7 years agorecursor secpoll: improve message on timeout
Chris Hofstaedtler [Mon, 27 Nov 2017 16:48:45 +0000 (17:48 +0100)]
recursor secpoll: improve message on timeout

7 years agoFix secpoll
Pieter Lexis [Mon, 27 Nov 2017 16:01:41 +0000 (17:01 +0100)]
Fix secpoll

7 years agoFix changelog syntax
Pieter Lexis [Mon, 27 Nov 2017 15:48:04 +0000 (16:48 +0100)]
Fix changelog syntax

7 years agoMerge pull request #5999 from aerique/advisories-2017
aerique [Mon, 27 Nov 2017 15:35:39 +0000 (16:35 +0100)]
Merge pull request #5999 from aerique/advisories-2017

Add advisories 2017-03, 2017-04, 2017-05, 2017-06 and 2017-07.

7 years agorec: Skip validation (including cached entries) for auth zones
Remi Gacogne [Fri, 24 Nov 2017 16:48:19 +0000 (17:48 +0100)]
rec: Skip validation (including cached entries) for auth zones

7 years agoUpdate security advisory links in secpoll
Pieter Lexis [Mon, 27 Nov 2017 11:56:06 +0000 (12:56 +0100)]
Update security advisory links in secpoll

7 years agoread ednsflags instead of flags
Peter van Dijk [Wed, 16 Aug 2017 11:44:54 +0000 (13:44 +0200)]
read ednsflags instead of flags

7 years agorec: Store additional records as non-auth, even on AA=1 answers
Remi Gacogne [Mon, 27 Nov 2017 10:21:21 +0000 (11:21 +0100)]
rec: Store additional records as non-auth, even on AA=1 answers

We used to store additional records in AA=1 answers as auth. In addition
to being wrong, it also broke DNSSEC validation if the record was stored
as Indeterminate because while we take care of not validating additional
records when processing an answer, we have no way of knowing in which
section a record was originally located when we retrieve it from the cache.
When an answer becomes too big to fit in the requester UDP payload,
rfc4035 allows the sender to keep records in the additional section
while omitting the corresponding RRSIGs, without setting the TC bit.

7 years agoAdd release date, security advisories to the changelogs
Remi Gacogne [Mon, 27 Nov 2017 07:15:46 +0000 (08:15 +0100)]
Add release date, security advisories to the changelogs

7 years agoAdded description of add-record
Jan-Arve Nygård [Fri, 24 Nov 2017 12:47:04 +0000 (13:47 +0100)]
Added description of add-record

Added description of add-record with options to man-pages

7 years agoUpdate secpoll
Remi Gacogne [Fri, 24 Nov 2017 10:10:28 +0000 (11:10 +0100)]
Update secpoll

7 years agoAdd advisories 2017-03, 2017-04, 2017-05, 2017-06 and 2017-07
Remi Gacogne [Tue, 24 Oct 2017 09:02:57 +0000 (11:02 +0200)]
Add advisories 2017-03, 2017-04, 2017-05, 2017-06 and 2017-07

7 years agomake notify.cc compile again
bert hubert [Thu, 23 Nov 2017 12:54:49 +0000 (13:54 +0100)]
make notify.cc compile again

7 years agoMerge pull request #5953 from pieterlexis/auth-405-rec-407-changelog
aerique [Thu, 23 Nov 2017 11:24:15 +0000 (12:24 +0100)]
Merge pull request #5953 from pieterlexis/auth-405-rec-407-changelog

Add Authoritative Server 4.0.5 and Recursor 4.0.7 changelogs + secpoll

7 years agoclarify that dnsdist latency averages are in microseconds
bert hubert [Wed, 22 Nov 2017 13:24:39 +0000 (14:24 +0100)]
clarify that dnsdist latency averages are in microseconds

7 years agoMerge pull request #5970 from 42wim/burst
Remi Gacogne [Wed, 22 Nov 2017 11:38:55 +0000 (12:38 +0100)]
Merge pull request #5970 from 42wim/burst

dnsdist: Add burst option to MaxQPSIPRule