]>
granicus.if.org Git - pdns/log
Peter van Dijk [Sat, 18 May 2019 21:18:33 +0000 (23:18 +0200)]
minicurl enhancements
* support for adding headers to POST requests
* don't truncate POST data at the first NUL byte
* better error reporting for POST failures (like GET already has)
Peter van Dijk [Sat, 18 May 2019 21:18:06 +0000 (23:18 +0200)]
minicurl: correct comment
Peter van Dijk [Tue, 4 Jun 2019 11:47:33 +0000 (13:47 +0200)]
Merge pull request #7852 from Habbie/sqlite-wal
sqlite3: make journal mode configurable; default to WAL
Peter van Dijk [Tue, 4 Jun 2019 11:13:32 +0000 (13:13 +0200)]
Merge pull request #7867 from mnordhoff/patch-3
profile.rst: Remove GOST
Peter van Dijk [Tue, 4 Jun 2019 11:09:59 +0000 (13:09 +0200)]
Merge pull request #7870 from omoerbeek/stubquery-fix-arg
stubquery: Fix handling of optional type arg.
Peter van Dijk [Tue, 4 Jun 2019 11:05:27 +0000 (13:05 +0200)]
Merge pull request #7864 from rgacogne/coverity-201905
Fix warnings reported by Coverity
Remi Gacogne [Tue, 4 Jun 2019 10:23:01 +0000 (12:23 +0200)]
Merge pull request #7861 from neheb/lato
Check if -latomic is needed instead of hardcoding
Peter van Dijk [Tue, 4 Jun 2019 10:14:55 +0000 (12:14 +0200)]
Merge pull request #7859 from pieterlexis/auth-rm-disable-tcp
auth: Remove disable-tcp option
Peter van Dijk [Mon, 27 May 2019 20:46:26 +0000 (22:46 +0200)]
ignore __pycache__ dirs
Peter van Dijk [Mon, 27 May 2019 20:46:17 +0000 (22:46 +0200)]
ignore sqlite WAL files
Peter van Dijk [Mon, 27 May 2019 12:26:16 +0000 (14:26 +0200)]
sqlite3: make journal mode configurable; default to WAL
Peter van Dijk [Tue, 4 Jun 2019 09:57:23 +0000 (11:57 +0200)]
Merge pull request #7865 from rgacogne/auth-curl-global-init
auth: Initialize cURL before starting any thread
Otto Moerbeek [Tue, 4 Jun 2019 09:22:40 +0000 (11:22 +0200)]
stubquery: Fix handling of optional type arg.
Remi Gacogne [Tue, 4 Jun 2019 07:28:50 +0000 (09:28 +0200)]
Use sizeof when initializing NSECBitmapGenerator::res
Remi Gacogne [Mon, 3 Jun 2019 13:03:30 +0000 (15:03 +0200)]
Merge pull request #7853 from Marlinc/dnsdist-prometheus-histogram
dnsdist: Support Prometheus latency histograms
Pieter Lexis [Tue, 28 May 2019 12:17:44 +0000 (14:17 +0200)]
Make the TCPNameserver a unique pointer
Otto Moerbeek [Mon, 3 Jun 2019 11:37:37 +0000 (13:37 +0200)]
Merge pull request #7538 from omoerbeek/rec-dnstap
Rec dnstap
Matt Nordhoff [Sat, 1 Jun 2019 03:19:25 +0000 (03:19 +0000)]
profile.rst: Remove GOST
Marlin Cremers [Fri, 31 May 2019 14:21:18 +0000 (16:21 +0200)]
dnsdist: Add Prometheus latency histogram support
Remi Gacogne [Fri, 31 May 2019 13:08:46 +0000 (15:08 +0200)]
Merge pull request #7863 from Marlinc/patch-1
dnsdist: Move PoolAvailableRule to rules section
Remi Gacogne [Fri, 31 May 2019 08:16:00 +0000 (10:16 +0200)]
auth: Initialize cURL before starting any thread
If `curl_global_init()` was not called prior to any call to
`curl_easy_init()`, it will be automatically called.
The documentation states that:
> This may be lethal in multi-threaded cases, since
> curl_global_init is not thread-safe, and it may result in
> resource problems because there is no corresponding cleanup.
Rosen Penev [Tue, 28 May 2019 17:49:21 +0000 (10:49 -0700)]
Check if -latomic is needed instead of hardcoding
This avoids having a huge list of platforms which can change over time.
Remi Gacogne [Wed, 29 May 2019 15:07:56 +0000 (17:07 +0200)]
Merge pull request #7856 from neheb/op
Don't initialize and deinitialize with OpenSSL >= 1.1
Remi Gacogne [Wed, 29 May 2019 14:05:25 +0000 (16:05 +0200)]
Don't close the random device on EINTR
Remi Gacogne [Wed, 29 May 2019 14:00:35 +0000 (16:00 +0200)]
Handle short reads from our random device
Reported by Coverity (CID
1401626 ).
Marlin Cremers [Wed, 29 May 2019 14:32:06 +0000 (16:32 +0200)]
dnsdist: Move PoolAvailableRule to rules section
Pieter Lexis [Wed, 29 May 2019 14:04:54 +0000 (16:04 +0200)]
Merge pull request #7819 from pieterlexis/circleci-coverity
Do coverity builds once a day via circleci
Remi Gacogne [Wed, 29 May 2019 13:46:53 +0000 (15:46 +0200)]
auth: Use the correct type while reading from the control channel
Remi Gacogne [Wed, 29 May 2019 13:41:55 +0000 (15:41 +0200)]
auth: Check the result of safeGetBBDomainInfo in Bind2Backend::searchRecords()
There should be no way for it to fail here since we iterate on known
domains, but better safe than sorry.
Reported by Coverity (CID
1401684 ).
Remi Gacogne [Wed, 29 May 2019 13:39:13 +0000 (15:39 +0200)]
auth: Initialize DNSPacket::d_ednsRawPacketSizeLimit
That prevents it from being used uninitialized, for example after
DNSPakcet::noparse() has been used.
Reported by Coverity (CID
1401683 ).
Remi Gacogne [Wed, 29 May 2019 13:33:58 +0000 (15:33 +0200)]
auth: Use mkstemp() to generate a temporary file name
Reported by Coverity (CID
1401682 ).
Remi Gacogne [Wed, 29 May 2019 13:02:13 +0000 (15:02 +0200)]
ixfrutils: Check the return value of rename()
Reported by Coverity (CID
1401680 ).
Remi Gacogne [Wed, 29 May 2019 12:54:42 +0000 (14:54 +0200)]
tools: Don't de-reference the end iterator
Reported by Coverity (CID
1401654 ,
1401671 ,
1401678 ,
1401691 ).
Remi Gacogne [Wed, 29 May 2019 12:46:15 +0000 (14:46 +0200)]
dnsbulktest: Correctly set the default value for the 'www' param
Reported by Coverity (CID
1401667 ).
Remi Gacogne [Wed, 29 May 2019 12:44:35 +0000 (14:44 +0200)]
dnstcpbench: Initialize the members of BenchQuery
No impact except making Coverity happy (CID
1401666 ).
Remi Gacogne [Wed, 29 May 2019 12:42:46 +0000 (14:42 +0200)]
Check the result of the dynamic pointer cast in getSerialFromRecords()
Reported by Coverity (CID
1401665 ).
Remi Gacogne [Wed, 29 May 2019 12:34:48 +0000 (14:34 +0200)]
auth: Always initialize the BindBackend's transaction ID
Reported by Coverity (CID
1401661 ).
Remi Gacogne [Wed, 29 May 2019 12:25:25 +0000 (14:25 +0200)]
auth: Check the return of getNext() in LdapBackend::getDomainInfo()
Reported by Coverity (CID
1401649 ).
Remi Gacogne [Wed, 29 May 2019 12:19:27 +0000 (14:19 +0200)]
dumresp: Use the correct return type for recvfrom()
Otherwise we can't correctly process error codes.
Reported by Coverity (CID
1401645 ).
Remi Gacogne [Wed, 29 May 2019 10:26:04 +0000 (12:26 +0200)]
auth: Properly initialize a new BindBackend domain (kind, ctime)
Reported by Coverity (CID
1401635 ).
Remi Gacogne [Wed, 29 May 2019 09:48:47 +0000 (11:48 +0200)]
auth: Check that the domain exists in pdnsutil check-zone
Reported by Coverity (CID
1401633 ).
Remi Gacogne [Wed, 29 May 2019 09:45:12 +0000 (11:45 +0200)]
LMDB: Initialize d_cursor in the base ctor
It's always properly initialized in the derived classes so far,
but let's make sure it stays that way.
Also make sure we don't call mdb_cursor_close() on a nullptr
cursor after being moved.
Reported by Coverity (CID
1401632 ).
Remi Gacogne [Wed, 29 May 2019 09:35:35 +0000 (11:35 +0200)]
dnsbulktest: Explicitely check that find() returned 0
std::string::find() will return 0 if the line starts with '.', but
it was not obvious from the existing code whether we tested for 0
or a string::npos since we treated the return value as a boolean.
Reported by Coverity (CID
1401631 ).
Remi Gacogne [Wed, 29 May 2019 09:31:51 +0000 (11:31 +0200)]
pcap: Check that we don't read uninitialized memory while parsing
Reported by Coverity (CID
1401629 ).
Remi Gacogne [Wed, 29 May 2019 08:03:36 +0000 (10:03 +0200)]
auth: Check that we could get the zone info in LMDBBackend::replaceRRSet()
Reported by Coverity (CID
1401628 ).
Remi Gacogne [Wed, 29 May 2019 08:03:05 +0000 (10:03 +0200)]
auth: Initialize the 'res' array of NSECBitmapGenerator
Otherwise coverity wrongly complains that it might be read before
being initialized (CID
1401607 ).
Rosen Penev [Tue, 28 May 2019 00:41:07 +0000 (17:41 -0700)]
Don't initialize and deinitialize with OpenSSL >= 1.1
Will not compile without deprecated APIs enabled.
Otto Moerbeek [Tue, 28 May 2019 14:41:20 +0000 (16:41 +0200)]
Merge pull request #7489 from zeha/webserver-auth
Recursor: allow basic auth for some statistics APIs
Otto Moerbeek [Tue, 28 May 2019 14:40:30 +0000 (16:40 +0200)]
Merge pull request #7843 from rgacogne/rec-speedups
rec: Small speedups in the recursion 'slow' path
Peter van Dijk [Tue, 28 May 2019 13:37:19 +0000 (15:37 +0200)]
Merge pull request #7844 from Habbie/auth-regress-docker-daemons
auth: document how to get mysql or postgres from docker
Peter van Dijk [Tue, 28 May 2019 13:36:11 +0000 (15:36 +0200)]
Merge pull request #7854 from Habbie/gsql-stou
auth gsql getAllDomains: ignore stou errors
Remi Gacogne [Tue, 28 May 2019 12:45:20 +0000 (14:45 +0200)]
Merge pull request #7858 from rgacogne/dnsdist-get-sni-override
dnsdist: Add missing overrides for ::getServerNameIndication()
Pieter Lexis [Tue, 28 May 2019 12:17:19 +0000 (14:17 +0200)]
Remove disable-tcp option
Remi Gacogne [Tue, 28 May 2019 09:51:46 +0000 (11:51 +0200)]
Merge pull request #7857 from neheb/arc
Add latomic to ARC platform
Remi Gacogne [Tue, 28 May 2019 09:36:40 +0000 (11:36 +0200)]
dnsdist: Add missing overrides for ::getServerNameIndication()
Remi Gacogne [Tue, 28 May 2019 08:38:35 +0000 (10:38 +0200)]
Merge pull request #7849 from rgacogne/dnsdist-docs-must-resolve
dnsdist: Fix the documentation of the 'mustResolve' parameter
Rosen Penev [Tue, 28 May 2019 00:44:36 +0000 (17:44 -0700)]
Add latomic to ARC platform
Will fail otherwise with linking errors.
Peter van Dijk [Mon, 27 May 2019 20:33:29 +0000 (22:33 +0200)]
auth gsql getAllDomains: ignore stou errors
Fixes #4475
Fixes #4450
Peter van Dijk [Mon, 27 May 2019 13:40:05 +0000 (15:40 +0200)]
Merge pull request #7460 from mind04/updated-masters
auth: speedup getUpdatedMasters() for the gsql backends
Otto Moerbeek [Mon, 27 May 2019 13:11:42 +0000 (15:11 +0200)]
Merge pull request #7548 from omoerbeek/syncRes-getAddrs-loop-unroll
Eliminate the loop in SyncRes::getAddrs()
Remi Gacogne [Mon, 27 May 2019 12:48:18 +0000 (14:48 +0200)]
rec: Make sure we don't leak a socket in UDPClientSocks::makeClientSocket()
Peter van Dijk [Mon, 27 May 2019 12:43:12 +0000 (14:43 +0200)]
Merge pull request #7851 from Habbie/builder-no-modules
builder: error out when no valid modules are specified
Otto Moerbeek [Mon, 27 May 2019 12:40:24 +0000 (14:40 +0200)]
Add some notes explaining why some validations are not relevant in the dnstap case.
Otto Moerbeek [Mon, 27 May 2019 12:33:17 +0000 (14:33 +0200)]
Merge remote-tracking branch 'origin/master' into rec-dnstap
Otto Moerbeek [Mon, 27 May 2019 11:54:35 +0000 (13:54 +0200)]
Use for (const auto &i : collection) style loops
Peter van Dijk [Mon, 27 May 2019 11:11:59 +0000 (13:11 +0200)]
builder: error out when no valid modules are specified
Remi Gacogne [Mon, 27 May 2019 08:36:40 +0000 (10:36 +0200)]
dnsdist: Fix the documentation of the 'mustResolve' parameter
Pieter Lexis [Mon, 27 May 2019 08:02:24 +0000 (10:02 +0200)]
Merge pull request #7836 from pieterlexis/NOD-in-circleci
rec: Enable NOD in circle-ci
Pieter Lexis [Mon, 27 May 2019 08:02:03 +0000 (10:02 +0200)]
Merge pull request #7847 from pieterlexis/auth-docs-udp-trunc-fix
Mention that udp-truncation-threshold changed in 4.2.0
Pieter Lexis [Fri, 24 May 2019 13:17:22 +0000 (15:17 +0200)]
Mention that udp-truncation-threshold changed in 4.2.0
Otto Moerbeek [Fri, 24 May 2019 08:35:58 +0000 (10:35 +0200)]
Merge pull request #7841 from Habbie/rec-tc-trace
recursor: log UDP TC bits during trace
Peter van Dijk [Thu, 23 May 2019 23:44:17 +0000 (01:44 +0200)]
Merge pull request #7831 from rgacogne/auth-update-cname-ent
auth: Allow updates to override existing ENT records
Peter van Dijk [Thu, 23 May 2019 23:34:02 +0000 (01:34 +0200)]
auth: document how to get mysql or postgres from docker
aerique [Thu, 23 May 2019 13:21:52 +0000 (15:21 +0200)]
Merge pull request #7842 from aerique/feature/changelog-and-secpoll-for-rec-4.2.0-rc1
Update changelog and secpoll for rec-4.2.0-rc1 release.
Remi Gacogne [Thu, 23 May 2019 10:43:05 +0000 (12:43 +0200)]
rec: Don't reset errno in asyncresolve()
Remi Gacogne [Thu, 23 May 2019 10:41:32 +0000 (12:41 +0200)]
rec: Remove useless accounting of FDs in the UDPClientSocks class
Remi Gacogne [Wed, 22 May 2019 15:53:48 +0000 (17:53 +0200)]
rec: Speed-up the shuffling of NS entries
Peter van Dijk [Wed, 22 May 2019 14:11:44 +0000 (16:11 +0200)]
log UDP TC bit during trace
Peter van Dijk [Wed, 22 May 2019 14:11:33 +0000 (16:11 +0200)]
do not skip TCP TC logging when not throttling
Chris Hofstaedtler [Fri, 15 Feb 2019 21:22:20 +0000 (22:22 +0100)]
recuweb: remove api-key from interface, can just use basic auth
Chris Hofstaedtler [Fri, 15 Feb 2019 21:19:27 +0000 (22:19 +0100)]
recursor webserver: allow accessing some API endpoints using password
Fixes #5942.
Chris Hofstaedtler [Fri, 15 Feb 2019 21:06:24 +0000 (22:06 +0100)]
Webserver: simplify access to apikey/password
aerique [Tue, 21 May 2019 11:27:03 +0000 (13:27 +0200)]
Merge pull request #7837 from aerique/feature/changelog-and-secpoll-for-rec-4.1.13
Update secpoll and changelog for rec-4.1.13 release.
Pieter Lexis [Mon, 20 May 2019 13:53:39 +0000 (15:53 +0200)]
Merge pull request #7835 from ahupowerdns/mysql-view-warning
add warning about MySQL views
Remi Gacogne [Mon, 20 May 2019 12:27:06 +0000 (14:27 +0200)]
Merge pull request #7622 from shane-kerr/dnsdist-lua-actions-std-string
Change all occurrences of string to std::string
Remi Gacogne [Mon, 20 May 2019 12:25:59 +0000 (14:25 +0200)]
Merge pull request #7825 from rgacogne/dnsdist-snirule
dnsdist: Implement SNIRule for DoT and DoH
bert hubert [Mon, 20 May 2019 09:49:25 +0000 (11:49 +0200)]
add warning about MySQL views
Remi Gacogne [Mon, 20 May 2019 08:21:13 +0000 (10:21 +0200)]
dnsdist: Document that SNIRule will not work with h2o <= 2.3.0-beta
Remi Gacogne [Wed, 15 May 2019 16:15:22 +0000 (18:15 +0200)]
dnsdist: Extract TLS SNI for DoH if support is present
Remi Gacogne [Wed, 15 May 2019 15:11:44 +0000 (17:11 +0200)]
dnsdist: Expose SNI to the Lua DNSQuestion object as well
Remi Gacogne [Wed, 15 May 2019 15:04:09 +0000 (17:04 +0200)]
dnsdist: Implement SNIRule for DoT
Remi Gacogne [Mon, 20 May 2019 09:01:59 +0000 (11:01 +0200)]
Merge pull request #7830 from rgacogne/dnsdist-missing-completions
dnsdist: Add missing completion options and fix some typos
Remi Gacogne [Mon, 20 May 2019 08:03:41 +0000 (10:03 +0200)]
Merge pull request #7833 from Habbie/dnsdist-duplicate-ednsoptioncode-table
remove second, incomplete copy of Lua EDNSOptionCode table
Peter van Dijk [Sat, 18 May 2019 23:05:14 +0000 (01:05 +0200)]
remove second, incomplete copy of Lua EDNSOptionCode table
Remi Gacogne [Fri, 17 May 2019 13:38:00 +0000 (15:38 +0200)]
auth: Use QType::ENT instead of 0
Remi Gacogne [Fri, 17 May 2019 13:37:36 +0000 (15:37 +0200)]
auth: Allow updates to override existing ENT records
Remi Gacogne [Fri, 17 May 2019 13:09:50 +0000 (15:09 +0200)]
auth: Check that an ENT is properly removed by an UPDATE
Remi Gacogne [Fri, 17 May 2019 12:19:21 +0000 (14:19 +0200)]
Merge pull request #7823 from rgacogne/dnsdist-coverity
dnsdist: Fix minor issues reported by Coverity
Remi Gacogne [Fri, 17 May 2019 12:18:07 +0000 (14:18 +0200)]
Merge pull request #7824 from rgacogne/dnsdist-http-rules
dnsdist: Add documentation, completion and tests for our DoH HTTP rules
Remi Gacogne [Fri, 17 May 2019 10:22:48 +0000 (12:22 +0200)]
dnsdist: Add missing completion options and fix some typos