]>
granicus.if.org Git - pdns/log
Peter van Dijk [Tue, 30 Jul 2019 14:28:26 +0000 (16:28 +0200)]
auth: changelogs and secpoll for 4.0.9, 4.1.11
Peter van Dijk [Tue, 30 Jul 2019 11:49:46 +0000 (13:49 +0200)]
Merge pull request #8143 from Habbie/advisory-2019-06
advisory 2019-06
Peter van Dijk [Tue, 30 Jul 2019 11:48:44 +0000 (13:48 +0200)]
advisory 2019-06
Remi Gacogne [Mon, 29 Jul 2019 08:08:39 +0000 (10:08 +0200)]
Merge pull request #8131 from dwfreed/dnsdist-flush-cout
dnsdist-console: flush cout after printing g_outputBuffer
Peter van Dijk [Mon, 29 Jul 2019 07:20:13 +0000 (09:20 +0200)]
Merge pull request #8135 from zeha/ipcrypt-license
ext/ipcrypt: Ship LICENSE in tarballs
Chris Hofstaedtler [Sun, 28 Jul 2019 20:38:41 +0000 (22:38 +0200)]
ext/ipcrypt: Ship LICENSE in tarballs
Peter van Dijk [Sat, 27 Jul 2019 21:36:54 +0000 (23:36 +0200)]
Merge pull request #8132 from jpmens/patch-12
YAML backend
JP Mens [Sat, 27 Jul 2019 18:37:41 +0000 (20:37 +0200)]
YAML backend
it appears this is called, or at least a.k.a., the YAML backend, so let's say that.
Also fixes some typos and formatting I noticed This page could use a lot of extra comprehension love, IMO.
Doug Freed [Sat, 27 Jul 2019 05:43:37 +0000 (05:43 +0000)]
dnsdist-console: flush cout after printing g_outputBuffer
cout may not be a tty, in which case it is block buffered by stdlib, so
flush it after printing g_outputBuffer.
Fixes #8130
Peter van Dijk [Thu, 25 Jul 2019 15:50:08 +0000 (17:50 +0200)]
Merge pull request #8097 from Habbie/notifiedserial-bigint
auth: use BIGINT for notified_serial in pg schema
Peter van Dijk [Thu, 18 Jul 2019 18:36:10 +0000 (20:36 +0200)]
make test-schema exit(1) on failure; catch setNotified exception
Peter van Dijk [Thu, 18 Jul 2019 15:35:35 +0000 (17:35 +0200)]
add notified_serial range test to pdnsutil test-schema
Peter van Dijk [Wed, 17 Jul 2019 20:07:00 +0000 (22:07 +0200)]
document gsql change_date removal and pgsql type change
Peter van Dijk [Wed, 17 Jul 2019 19:06:01 +0000 (21:06 +0200)]
use BIGINT for notified_serial in pg schema; fixes #6815
Peter van Dijk [Thu, 25 Jul 2019 08:36:48 +0000 (10:36 +0200)]
Merge pull request #8125 from Habbie/tcp-stat
auth: add metric for open TCP connections
Peter van Dijk [Wed, 24 Jul 2019 16:48:33 +0000 (18:48 +0200)]
auth: add metric for open TCP connections
Peter van Dijk [Wed, 24 Jul 2019 08:15:30 +0000 (10:15 +0200)]
Merge pull request #8120 from zeha/opencsw
README: remove OpenCSW advice
Chris Hofstaedtler [Wed, 24 Jul 2019 08:08:42 +0000 (10:08 +0200)]
README: remove OpenCSW advice
Remi Gacogne [Tue, 23 Jul 2019 08:21:23 +0000 (10:21 +0200)]
Merge pull request #8113 from rgacogne/ddist-tcp-outstanding
dnsdist: Double-check we only increment the outstanding counter once
Remi Gacogne [Mon, 22 Jul 2019 19:55:09 +0000 (21:55 +0200)]
Merge pull request #8116 from rgacogne/dnsdist-fix-regression-tests-py2
dnsdist: Fix a UnicodeDecodeError with py2 in the regression tests
Remi Gacogne [Mon, 22 Jul 2019 13:13:33 +0000 (15:13 +0200)]
dnsdist: Fix a UnicodeDecodeError with py2 in the regression tests
Remi Gacogne [Mon, 22 Jul 2019 12:39:48 +0000 (14:39 +0200)]
Merge pull request #8112 from rgacogne/dnsdist-doh-dangling-send-error
dnsdist: Prevent a dangling DOHUnit pointer when send() failed
Pieter Lexis [Mon, 22 Jul 2019 12:06:21 +0000 (14:06 +0200)]
Merge pull request #8081 from pieterlexis/configure-fail-on-no-systemctl
m4/systemd.m4: Fail when systemctl is not available
Pieter Lexis [Mon, 22 Jul 2019 12:05:28 +0000 (14:05 +0200)]
Merge pull request #7951 from pieterlexis/update-boost-m4
Update boost.m4
Remi Gacogne [Mon, 22 Jul 2019 08:38:51 +0000 (10:38 +0200)]
dnsdist: Prevent a dangling DOHUnit pointer when send() failed
Remi Gacogne [Mon, 22 Jul 2019 08:36:57 +0000 (10:36 +0200)]
dnsdist: Double-check we only increment the outstanding counter once
Remi Gacogne [Mon, 22 Jul 2019 07:24:15 +0000 (09:24 +0200)]
Merge pull request #8107 from phonedph1/patch-9
Update rules-actions.rst
Remi Gacogne [Mon, 22 Jul 2019 07:22:47 +0000 (09:22 +0200)]
Merge pull request #8109 from zeha/spelling
Fix some spelling errors found by lintian
Peter van Dijk [Sun, 21 Jul 2019 21:59:19 +0000 (23:59 +0200)]
Merge pull request #8111 from Habbie/docutils-no-0.15
avoid docutils 0.15: https://sourceforge.net/p/docutils/bugs/365/
Peter van Dijk [Sun, 21 Jul 2019 20:48:02 +0000 (22:48 +0200)]
avoid docutils 0.15: https://sourceforge.net/p/docutils/bugs/365/
Chris Hofstaedtler [Sun, 21 Jul 2019 15:14:21 +0000 (17:14 +0200)]
Fix some spelling errors found by lintian
phonedph1 [Sun, 21 Jul 2019 13:49:04 +0000 (07:49 -0600)]
Update pdns/dnsdistdist/docs/rules-actions.rst
Co-Authored-By: Matt Nordhoff <mnordhoff@mattnordhoff.com>
phonedph1 [Sun, 21 Jul 2019 00:27:50 +0000 (18:27 -0600)]
Update rules-actions.rst
s/cname/value/
Peter van Dijk [Sat, 20 Jul 2019 00:20:29 +0000 (02:20 +0200)]
Merge pull request #8105 from phonedph1/patch-8
Update dnsdist-web.cc
phonedph1 [Fri, 19 Jul 2019 23:38:46 +0000 (17:38 -0600)]
Update dnsdist-web.cc
Per isomer ;)
Peter van Dijk [Fri, 19 Jul 2019 22:09:19 +0000 (00:09 +0200)]
Merge pull request #7872 from Habbie/auth-lua-reuse-docs
LUA record documentation (version number, shared model)
Peter van Dijk [Thu, 18 Jul 2019 10:31:27 +0000 (12:31 +0200)]
Merge pull request #8093 from Habbie/nproxy-whatis
add whatis description to nproxy man page
Peter van Dijk [Wed, 17 Jul 2019 17:20:29 +0000 (19:20 +0200)]
clarify that states are per-thread
Peter van Dijk [Wed, 17 Jul 2019 16:59:13 +0000 (18:59 +0200)]
add whatis description to nproxy man page
Pieter Lexis [Wed, 17 Jul 2019 15:03:15 +0000 (17:03 +0200)]
Use the boost.m4 boost::context detection
Pieter Lexis [Wed, 17 Jul 2019 14:50:46 +0000 (16:50 +0200)]
Update boost.m4 to serial 30
Pieter Lexis [Wed, 17 Jul 2019 14:45:30 +0000 (16:45 +0200)]
Enable systemd in coverity builds
Peter van Dijk [Wed, 17 Jul 2019 12:56:51 +0000 (14:56 +0200)]
Merge pull request #8090 from Habbie/lgtm-fewer-features
Revert "enable a bunch of extra features during LGTM builds"
Peter van Dijk [Wed, 17 Jul 2019 12:53:30 +0000 (14:53 +0200)]
Revert "enable a bunch of extra features during LGTM builds"
This reverts commit
8763cf1ca8ba2c7266521272fedc2b130af71f75 .
Remi Gacogne [Wed, 17 Jul 2019 12:02:11 +0000 (14:02 +0200)]
Merge pull request #7927 from rgacogne/dnsdist-doh-timeout
dnsdist: Proper HTTP response for timeouts over DoH
Otto Moerbeek [Wed, 17 Jul 2019 12:01:50 +0000 (14:01 +0200)]
Merge pull request #8089 from omoerbeek/fix_rfc1982_less_than
Fix the rfc1982LessThan template, it only works properly if the cast …
Remi Gacogne [Wed, 17 Jul 2019 08:57:48 +0000 (10:57 +0200)]
Merge pull request #8088 from rgacogne/dnsdist-fix-unbound-wire-regression
dnsdist: Fix local variable 'wire' referenced before assignment
Otto Moerbeek [Wed, 17 Jul 2019 08:57:44 +0000 (10:57 +0200)]
Add static assert to ensure T is unsigned.
Otto Moerbeek [Wed, 17 Jul 2019 08:37:19 +0000 (10:37 +0200)]
Fix the rfc1982LessThan template, it only works properly if the cast is done to a same-sized type.
If we use it for uint8_t or uint64_t it breaks currenty. Add unit tests while there.
Remi Gacogne [Wed, 17 Jul 2019 08:24:55 +0000 (10:24 +0200)]
dnsdist: Drop the response if the IDState has been reused under our feet
Remi Gacogne [Wed, 17 Jul 2019 08:24:10 +0000 (10:24 +0200)]
dnsdist: Fix the DoH (https) response information in verbose mode
Remi Gacogne [Wed, 17 Jul 2019 07:58:33 +0000 (09:58 +0200)]
Merge pull request #8087 from rgacogne/mplexer-test-debug
Don't fail the test right away if we don't have the right number of FDs ready
Remi Gacogne [Wed, 17 Jul 2019 07:57:14 +0000 (09:57 +0200)]
dnsdist: Fix local variable 'wire' referenced before assignment
Peter van Dijk [Tue, 16 Jul 2019 15:04:48 +0000 (17:04 +0200)]
Merge pull request #8071 from cmouse/tsig-key
packethandler: Compare TSIG key name using DNSName
Remi Gacogne [Tue, 16 Jul 2019 13:37:25 +0000 (15:37 +0200)]
dnsdist: Add comments about the use of IDStates and origFD
Remi Gacogne [Tue, 16 Jul 2019 12:05:12 +0000 (14:05 +0200)]
Don't fail the test right away if we don't have the right number of FDs ready
This way we can at least check that the callbacks are called later.
Also, since it looks like the read pipe is always reported as ready,
let's try to write first to see if it blocks.
Pieter Lexis [Tue, 16 Jul 2019 09:40:30 +0000 (11:40 +0200)]
Merge pull request #8034 from pieterlexis/rec-debian-sysv
Ensure Debian SysV users get set{g,u}id
Pieter Lexis [Mon, 15 Jul 2019 18:15:24 +0000 (20:15 +0200)]
m4/systemd.m4: Fail when systemctl is not available
We use systemctl to determine the version as to find out what features
to enable in the unit file.
Peter van Dijk [Tue, 16 Jul 2019 09:29:53 +0000 (11:29 +0200)]
Merge pull request #8080 from mnordhoff/patch-4
Clarify XPF support in Auth changelog
Remi Gacogne [Tue, 16 Jul 2019 08:01:03 +0000 (10:01 +0200)]
Merge pull request #8079 from rgacogne/ddist-tcp-fastopen-retries
dnsdist: Fix unlimited retries when TCP Fast Open is enabled
Remi Gacogne [Tue, 16 Jul 2019 07:59:14 +0000 (09:59 +0200)]
dnsdist: Fix timeout handling when reusing an IDS from DoH
Remi Gacogne [Tue, 16 Jul 2019 07:46:30 +0000 (09:46 +0200)]
Merge pull request #7933 from rgacogne/dnsdist-doh-http-stats
dnsdist: Add more stats about DoH HTTP responses
Remi Gacogne [Tue, 16 Jul 2019 07:33:53 +0000 (09:33 +0200)]
Merge pull request #8078 from rgacogne/ddist-tcp-answer-exception
dnsdist: Catch exceptions thrown when handling a TCP response
Aki Tuomi [Fri, 12 Jul 2019 09:34:45 +0000 (12:34 +0300)]
packethandler: Compare TSIG key name using DNSName
Fixes #8070
Peter van Dijk [Mon, 15 Jul 2019 19:26:17 +0000 (21:26 +0200)]
Merge pull request #8077 from Habbie/lgtm-more-features
enable a bunch of extra features during LGTM builds
Matt Nordhoff [Mon, 15 Jul 2019 14:27:36 +0000 (14:27 +0000)]
Clarify XPF support in Auth changelog
Reported by @spheron1.
Remi Gacogne [Mon, 15 Jul 2019 13:07:10 +0000 (15:07 +0200)]
dnsdist: Fix unlimited retries when TCP Fast Open is enabled
Using the same flag to indicate whether a connection was reused
after being pulled from the pool AND to know if the TFO flag should
be passed to sendmsg() led to an unlimited number of reconnection
attemps when TFO was enabled and the backend closed the connection
right after a write (sendmsg() succeeds then read() returns 0 right
away).
Remi Gacogne [Mon, 15 Jul 2019 13:59:09 +0000 (15:59 +0200)]
dnsdist: Check that we only retry 'retries' times even with TFO
Pieter Lexis [Mon, 15 Jul 2019 13:32:03 +0000 (15:32 +0200)]
Merge pull request #8069 from omoerbeek/rec-changelog-4.2.0
Changelog and secpoll for upcoming rec-4.2.0 release
Remi Gacogne [Mon, 15 Jul 2019 12:46:41 +0000 (14:46 +0200)]
Merge pull request #8042 from rgacogne/ddist-dnscrypt-certs
dnsdist: Accept more than one certificate in `addDNSCryptBind()`
Remi Gacogne [Mon, 15 Jul 2019 11:02:41 +0000 (13:02 +0200)]
dnsdist: Add a regression test for invalid DNS answer from the backend
Pieter Lexis [Mon, 15 Jul 2019 08:37:57 +0000 (10:37 +0200)]
Merge pull request #8075 from Habbie/raspbian-buster
builder: add raspbian-buster target
Remi Gacogne [Mon, 15 Jul 2019 08:28:01 +0000 (10:28 +0200)]
dnsdist: Catch exceptions thrown when handling a TCP response
We need to handle it gracefully if a function called from
handleResponse() throws, most likely because the answer received
from the backend was not valid.
Peter van Dijk [Sat, 13 Jul 2019 21:37:28 +0000 (23:37 +0200)]
enable a bunch of extra features during LGTM builds
Otto Moerbeek [Sun, 14 Jul 2019 18:11:21 +0000 (20:11 +0200)]
Killed stray newlines
Otto Moerbeek [Fri, 12 Jul 2019 14:53:28 +0000 (16:53 +0200)]
Add 8074
Remi Gacogne [Fri, 12 Jul 2019 13:59:51 +0000 (15:59 +0200)]
Merge pull request #8067 from rgacogne/circular_buffer_nodebug
Make sure we always compile with BOOST_CB_ENABLE_DEBUG set to 0
Peter van Dijk [Fri, 12 Jul 2019 12:52:22 +0000 (14:52 +0200)]
builder: add raspbian-buster target
Otto Moerbeek [Fri, 12 Jul 2019 09:25:38 +0000 (11:25 +0200)]
State the effects of the new support policy.
Remi Gacogne [Fri, 12 Jul 2019 08:35:50 +0000 (10:35 +0200)]
BOOST_CB_ENABLE_DEBUG is overridden before 1.62, set BOOST_CB_DISABLE_DEBUG instead
Otto Moerbeek [Fri, 12 Jul 2019 08:35:30 +0000 (10:35 +0200)]
Change security status of rec 4.2.0 prereleases
Otto Moerbeek [Fri, 12 Jul 2019 08:15:40 +0000 (10:15 +0200)]
Changelog and secpoll for upcoming rec-4.2.0 release
Peter van Dijk [Thu, 11 Jul 2019 23:50:12 +0000 (01:50 +0200)]
Merge pull request #8053 from Habbie/pdnsutil-dead-code
pdnsutil: remove unused humanTime function
Remi Gacogne [Thu, 11 Jul 2019 15:09:05 +0000 (17:09 +0200)]
Make sure we always compile with BOOST_CB_ENABLE_DEBUG set to 0
Peter van Dijk [Thu, 11 Jul 2019 10:52:00 +0000 (12:52 +0200)]
Merge pull request #8066 from franklouwers/master
Auth-documentation: Fix typo
Frank Louwers [Thu, 11 Jul 2019 10:25:30 +0000 (12:25 +0200)]
Update index.rst
Peter van Dijk [Thu, 11 Jul 2019 09:35:56 +0000 (11:35 +0200)]
Merge pull request #8065 from miesi/master
pdns/devpollmplexer: remove unused syncres.hh include
Thomas Mieslinger [Thu, 11 Jul 2019 09:34:00 +0000 (02:34 -0700)]
pdns/devpollmplexer: remove unused syncres.hh include
Peter van Dijk [Wed, 10 Jul 2019 13:37:59 +0000 (15:37 +0200)]
Merge pull request #8054 from mzealey/ueberbackend-fix-short-circuit
Fix SERVFAIL when backend returns empty DNSName
Peter van Dijk [Wed, 10 Jul 2019 11:33:00 +0000 (13:33 +0200)]
Merge pull request #8051 from Habbie/ixfrdist-chunksize
ixfrdist: limit XFR chunk size to 16k
Mark Zealey [Wed, 10 Jul 2019 11:17:32 +0000 (14:17 +0300)]
Fix SERVFAIL when backend returns empty DNSName
According to the documentation on UeberBackend::getAuth(), a backend
returning an empty DNSName should signal that no matching parent zone
exists in this backend. However commit
ae14c1f36a raises an exception if
isPartOf() is called on an empty DNSName so we need to switch the order
of the logic to prevent a SERVFAIL as a result.
Peter van Dijk [Wed, 10 Jul 2019 10:36:56 +0000 (12:36 +0200)]
pdnsutil: remove unused humanTime function
Peter van Dijk [Wed, 10 Jul 2019 09:54:11 +0000 (11:54 +0200)]
Merge pull request #8049 from Habbie/ixfrdist-circle
ixfrdist: test in CircleCI; remove useless error
Peter van Dijk [Wed, 10 Jul 2019 08:01:25 +0000 (10:01 +0200)]
ixfrdist: limit XFR chunk size to 16k
Peter van Dijk [Tue, 9 Jul 2019 14:19:53 +0000 (16:19 +0200)]
test ixfrdist in CircleCI
Peter van Dijk [Wed, 10 Jul 2019 07:57:01 +0000 (09:57 +0200)]
Merge pull request #8028 from Habbie/compress-16k
limit compression pointers to 14 bits
Peter van Dijk [Tue, 9 Jul 2019 17:44:08 +0000 (19:44 +0200)]
stop running xfrserver twice in ixfrdist testing
Peter van Dijk [Tue, 9 Jul 2019 14:08:32 +0000 (16:08 +0200)]
Merge pull request #8043 from rgacogne/circle-flags
Add -Werror=format-security and -D_GLIBCXX_ASSERTIONS on CircleCI
Remi Gacogne [Tue, 9 Jul 2019 10:44:17 +0000 (12:44 +0200)]
Add -Wformat=2 since -Wformat is required for -Wformat-security
Otto Moerbeek [Tue, 9 Jul 2019 09:33:01 +0000 (11:33 +0200)]
Merge pull request #8047 from omoerbeek/fix-another-fixedNow
Another time sensistive test fixed with a fixedNow construct.