]>
granicus.if.org Git - pdns/log
Remi Gacogne [Mon, 19 Mar 2018 13:37:34 +0000 (14:37 +0100)]
Merge pull request #6350 from rgacogne/dnsdist-lua-inspection-perfs
dnsdist: Speed up the processing of large ring buffers
Peter van Dijk [Fri, 16 Mar 2018 15:58:15 +0000 (16:58 +0100)]
Merge pull request #6354 from Habbie/zpt-eof-crash
rather than crash, sheepishly report no file/linenum
Peter van Dijk [Fri, 16 Mar 2018 14:48:54 +0000 (15:48 +0100)]
Merge pull request #6360 from Habbie/mirror-dnsperf
use mirror for dnsperf
Peter van Dijk [Fri, 16 Mar 2018 13:33:58 +0000 (14:33 +0100)]
use mirror for dnsperf
Peter van Dijk [Thu, 15 Mar 2018 17:47:43 +0000 (18:47 +0100)]
Merge pull request #6356 from chbruyand/update-dnsdistconf-lua
dnsdist: Update deprecated syntax used in dist configuration file
Peter van Dijk [Thu, 15 Mar 2018 16:51:18 +0000 (17:51 +0100)]
rather than crash, sheepishly report no file/linenum
Before this commit, you could crash pdnsutil edit-zone this way:
1) run pdnsutil edit-zone example.org
2) add a line saying: IN TXT ("
3) exit editor
I suspect other consumers of the zone file parser could also crash this way.
After this commit, we don't crash but we fail to report the line number.
There is room for more improvement here.
Remi Gacogne [Thu, 15 Mar 2018 14:27:44 +0000 (15:27 +0100)]
dnsdist: Move StatNode's counters to uint64_t
Remi Gacogne [Thu, 15 Mar 2018 13:59:47 +0000 (14:59 +0100)]
dnsdist: Fix StatNode stats update
Remi Gacogne [Thu, 15 Mar 2018 11:09:48 +0000 (12:09 +0100)]
dnsdist: Restore StatNode's children (optionnally) for dnsscope
Remi Gacogne [Thu, 15 Mar 2018 09:49:25 +0000 (10:49 +0100)]
dnsdist: Use a reserve()'d unordered_map for exceed* functions
bert hubert [Thu, 15 Mar 2018 09:38:21 +0000 (10:38 +0100)]
Merge pull request #6326 from rgacogne/calidns-ecs
calidns: Add the --ecs parameter to add random ECS values to queries
Charles-Henri Bruyand [Thu, 15 Mar 2018 09:18:49 +0000 (10:18 +0100)]
dnsdist: Update deprecated syntax used in dist configuration file
Pieter Lexis [Thu, 15 Mar 2018 08:23:48 +0000 (09:23 +0100)]
Merge pull request #6345 from pieterlexis/secpoll-update
Update secpoll
Remi Gacogne [Wed, 14 Mar 2018 17:28:25 +0000 (18:28 +0100)]
dnsdist: Don't copy data around in the exceed* functions
Remi Gacogne [Wed, 14 Mar 2018 17:27:33 +0000 (18:27 +0100)]
dnsdist: Don't copy labels into a deque when inserting in StatNode
Remi Gacogne [Wed, 14 Mar 2018 17:24:30 +0000 (18:24 +0100)]
dnsdist: Don't keep track of the remote in StatNode
We don't use them (they are not even available from Lua) and it
becomes very painful when you have a lot of different remotes in
the ring buffers.
Pieter Lexis [Wed, 14 Mar 2018 16:07:18 +0000 (17:07 +0100)]
Merge pull request #6338 from cmouse/lua
build lua2 backend packages
Pieter Lexis [Wed, 14 Mar 2018 14:48:28 +0000 (15:48 +0100)]
Update secpoll
Aki Tuomi [Mon, 12 Mar 2018 17:35:25 +0000 (19:35 +0200)]
build lua2 backend packages
Peter van Dijk [Mon, 12 Mar 2018 19:12:27 +0000 (20:12 +0100)]
Merge pull request #6335 from Habbie/jessie-unbound
note that libunbound also needs to come from backports
Peter van Dijk [Mon, 12 Mar 2018 16:47:02 +0000 (17:47 +0100)]
Merge pull request #6334 from Habbie/
deb892718
add latest deb9 auth to secpoll
Peter van Dijk [Mon, 12 Mar 2018 12:36:50 +0000 (13:36 +0100)]
note that libunbound also needs to come from backports
Peter van Dijk [Mon, 12 Mar 2018 11:31:42 +0000 (12:31 +0100)]
add latest deb9 auth to secpoll
Remi Gacogne [Mon, 12 Mar 2018 09:02:46 +0000 (10:02 +0100)]
Merge pull request #6330 from Habbie/tkey-py3
make tkey.py work on Python 3
Peter van Dijk [Fri, 9 Mar 2018 12:51:49 +0000 (13:51 +0100)]
make tkey.py work on Python 3
Remi Gacogne [Thu, 8 Mar 2018 14:26:07 +0000 (15:26 +0100)]
calidns: Add the --ecs parameter to add random ECS values to queries
Peter van Dijk [Thu, 8 Mar 2018 08:55:16 +0000 (09:55 +0100)]
Merge pull request #6157 from cmouse/lua
Lua2 backend
Pieter Lexis [Wed, 7 Mar 2018 12:37:20 +0000 (13:37 +0100)]
Merge pull request #5361 from oridistor/master
See #3602, made requests always return to sender, for usage in multi …
Pieter Lexis [Wed, 7 Mar 2018 09:28:40 +0000 (10:28 +0100)]
Merge pull request #6324 from pieterlexis/waitForMultiData-unused-var-fix
Fix unused variable compiler warning
Pieter Lexis [Wed, 7 Mar 2018 09:28:22 +0000 (10:28 +0100)]
Merge pull request #6325 from zeha/auth-api-409
Auth API: return status 409 if domain already exists (+test cleanup
Remi Gacogne [Tue, 6 Mar 2018 15:56:08 +0000 (15:56 +0000)]
Merge pull request #6289 from zeha/dnsdist-stats
dnsdist: unify global stats accounting
Remi Gacogne [Tue, 6 Mar 2018 15:53:55 +0000 (15:53 +0000)]
Merge pull request #6322 from zeha/dnsdist-tests
dnsdist tests: make py3k compatible and pick py3k if available
Remi Gacogne [Tue, 6 Mar 2018 15:53:30 +0000 (15:53 +0000)]
Merge pull request #6323 from zeha/dnsdist-remotelogger-checkconfig
dnsdist: create RemoteLoggers in client mode, but avoid connecting
Aki Tuomi [Tue, 23 Jan 2018 11:54:25 +0000 (13:54 +0200)]
travis: Run tests for lua2
Aki Tuomi [Sun, 7 Jan 2018 17:39:47 +0000 (19:39 +0200)]
lua2backend: Add new backend
This is API version 1 of lua2 backend.
It provides improved interface for Lua script to act as backends.
Configuration
- `lua2-filename` - path to script
- `lua2-query-logging` - log lua queries and results
- `lua2-api' - API version (default 2)
Aki Tuomi [Sun, 7 Jan 2018 18:53:06 +0000 (20:53 +0200)]
pdns: Include lua-auth and it's dependencies in pdnsutil
Needed by lua2 backend
Aki Tuomi [Fri, 26 Jan 2018 12:51:34 +0000 (14:51 +0200)]
lua-base4: Add QType methods
Aki Tuomi [Tue, 23 Jan 2018 11:52:19 +0000 (13:52 +0200)]
lua-base4: Expose more DNSName methods
These are needed to implement lua2 backend
Aki Tuomi [Sun, 7 Jan 2018 16:45:58 +0000 (18:45 +0200)]
lua-base4: Add newDRR for making DNSResourceRecords
Chris Hofstaedtler [Tue, 6 Mar 2018 07:49:25 +0000 (08:49 +0100)]
Remove latency tracking for TCP again, for now
Chris Hofstaedtler [Tue, 6 Mar 2018 07:45:25 +0000 (08:45 +0100)]
api tests: pick python3 if available
Chris Hofstaedtler [Tue, 6 Mar 2018 07:41:19 +0000 (08:41 +0100)]
Auth API: return status 409 if domain already exists #4482
Chris Hofstaedtler [Tue, 6 Mar 2018 07:40:53 +0000 (08:40 +0100)]
api tests: fix up for py3k and other cleanup
Pieter Lexis [Mon, 5 Mar 2018 15:25:35 +0000 (16:25 +0100)]
Fix unused variable compiler warning
Chris Hofstaedtler [Mon, 5 Mar 2018 13:15:00 +0000 (14:15 +0100)]
Document protobufServer behaviour change
Chris Hofstaedtler [Mon, 5 Mar 2018 11:34:00 +0000 (12:34 +0100)]
dnsdist tests: make py3k compatible and pick py3k if available
Chris Hofstaedtler [Mon, 5 Mar 2018 13:10:32 +0000 (14:10 +0100)]
dnsdist: create RemoteLoggers in client mode, but avoid connecting
Fixes a nullptr deref under --check-config.
Chris Hofstaedtler [Mon, 5 Mar 2018 11:21:57 +0000 (12:21 +0100)]
TeeAction: make getStats() order deterministic
bert hubert [Mon, 5 Mar 2018 08:37:38 +0000 (08:37 +0000)]
Merge pull request #6304 from Habbie/unbreak
unbreak various things
Peter van Dijk [Sun, 4 Mar 2018 21:24:23 +0000 (22:24 +0100)]
make travis happy about new json sorting?
Peter van Dijk [Tue, 27 Feb 2018 21:11:12 +0000 (22:11 +0100)]
test: fix comments-in-forward-zones-file sorting?
Peter van Dijk [Tue, 27 Feb 2018 19:55:33 +0000 (20:55 +0100)]
another shot at zone2ldap.1
Peter van Dijk [Tue, 27 Feb 2018 18:56:06 +0000 (19:56 +0100)]
do dist zone2ldap.1 always
Peter van Dijk [Tue, 27 Feb 2018 16:33:43 +0000 (17:33 +0100)]
don't try to package ixfrdist.service on trusty
Peter van Dijk [Tue, 27 Feb 2018 16:26:26 +0000 (17:26 +0100)]
only build zone2ldap.1 when needed
Peter van Dijk [Tue, 27 Feb 2018 16:25:01 +0000 (17:25 +0100)]
package ixfrdist for sles
Peter van Dijk [Mon, 26 Feb 2018 20:53:32 +0000 (21:53 +0100)]
test: add zone2json to debian packages
Peter van Dijk [Mon, 26 Feb 2018 18:56:27 +0000 (19:56 +0100)]
test: remove ldap backend for SLES build some more
Peter van Dijk [Mon, 26 Feb 2018 18:44:22 +0000 (19:44 +0100)]
test: remove ldap backend for SLES build
Peter van Dijk [Mon, 26 Feb 2018 15:47:30 +0000 (16:47 +0100)]
again do not try to make /usr/bin/pdns_notify
Peter van Dijk [Mon, 26 Feb 2018 15:09:59 +0000 (16:09 +0100)]
do not try to make /usr/bin/pdns_notify
Peter van Dijk [Mon, 26 Feb 2018 15:02:59 +0000 (16:02 +0100)]
luabackend: do not assume binary paths
Peter van Dijk [Mon, 26 Feb 2018 13:49:37 +0000 (14:49 +0100)]
luabackend: do not _tostring t tables and userdata
Remi Gacogne [Fri, 2 Mar 2018 09:49:52 +0000 (09:49 +0000)]
Merge pull request #6320 from rgacogne/rec-cache-a-aaaa
rec: Fix ECS-specific NS AAAA not being returned from the cache
Remi Gacogne [Thu, 1 Mar 2018 20:09:36 +0000 (20:09 +0000)]
rec: Fix ECS-specific NS AAAA not being returned from the cache
Reported by Andreas Jakum (thanks!).
Pieter Lexis [Thu, 1 Mar 2018 08:41:19 +0000 (09:41 +0100)]
Merge pull request #6306 from rgacogne/rec-update-ecs-index-only-when-needed
rec: Only update the ECS cache index when needed
Remi Gacogne [Thu, 1 Mar 2018 08:03:17 +0000 (08:03 +0000)]
Merge pull request #6311 from pieterlexis/6305-dnsdist-exit-on-wrong-option
dnsdist: Exit with code 1 on invalid parameter
Remi Gacogne [Thu, 1 Mar 2018 08:02:54 +0000 (08:02 +0000)]
Merge pull request #6313 from rgacogne/rec-auth-zone-cache-miss
rec: Count a lookup into an internal auth zone as a cache miss
Remi Gacogne [Wed, 28 Feb 2018 14:46:10 +0000 (14:46 +0000)]
rec: Add the auth-zone-queries metric counting queries to hosted zones
Remi Gacogne [Wed, 28 Feb 2018 14:09:47 +0000 (14:09 +0000)]
rec: Initialize SyncRes::d_authzonequeries
Remi Gacogne [Wed, 28 Feb 2018 10:26:03 +0000 (10:26 +0000)]
rec: Count a lookup into an internal auth zone as a cache miss
We only considered a query a cache miss if we had to do at least
one outgoing query, but having to look up into one of the internally
hosted zone (auth-zones) should count as a cache miss too.
Peter van Dijk [Tue, 27 Feb 2018 14:19:32 +0000 (15:19 +0100)]
Merge pull request #6276 from pieterlexis/issue-6270-dnsupdate-cname
dnsupdate: Reject updates if they would lead to CNAME+Other data
Pieter Lexis [Tue, 27 Feb 2018 14:12:47 +0000 (15:12 +0100)]
Merge pull request #6243 from mind04/rectify2
Auth: fix rectify (ordername) for non dnssec zones
Pieter Lexis [Tue, 27 Feb 2018 14:12:16 +0000 (15:12 +0100)]
Merge pull request #6278 from cmouse/pkcs11
pkcs11signers: Fix yubikey NEO to work
Pieter Lexis [Tue, 27 Feb 2018 14:12:01 +0000 (15:12 +0100)]
Merge pull request #6297 from Habbie/check-zone-unknown-type-content
make check-zone error on rows that have content but shouldn't
Pieter Lexis [Tue, 27 Feb 2018 14:11:38 +0000 (15:11 +0100)]
Merge pull request #6296 from kaosdrachen/feature-recursor.d
Add a default include-dir for recursor as per auth
Pieter Lexis [Tue, 27 Feb 2018 14:10:56 +0000 (15:10 +0100)]
Merge pull request #6310 from Habbie/ship-ixfrdist-service
ship ixfrdist.service in tools deb
Pieter Lexis [Tue, 27 Feb 2018 14:09:40 +0000 (15:09 +0100)]
dnsdist: Exit with code 1 on invalid parameter
Closes #6305 for master
Peter van Dijk [Tue, 27 Feb 2018 10:40:58 +0000 (11:40 +0100)]
ship ixfrdist.service in tools deb
Remi Gacogne [Tue, 27 Feb 2018 09:55:16 +0000 (09:55 +0000)]
Merge pull request #6309 from jpmens/patch-10
fix typo
JP Mens [Tue, 27 Feb 2018 08:51:05 +0000 (09:51 +0100)]
fix typo
Remi Gacogne [Mon, 26 Feb 2018 14:13:00 +0000 (14:13 +0000)]
rec: Only update the ECS cache index when needed
We don't need to update the ECS index when replacing an existing
entry, except if the entry has expired, because then we might have
removed it from the ECS index.
Remi Gacogne [Mon, 26 Feb 2018 10:21:44 +0000 (11:21 +0100)]
Merge pull request #6300 from ahupowerdns/ecs-expire-fix
Fix ECS-based cache entry refresh code
Remi Gacogne [Mon, 26 Feb 2018 10:13:59 +0000 (11:13 +0100)]
Merge pull request #6301 from zeha/rapidjson-cleanup
Remove leftover -I ext/rapidjson
Pieter Lexis [Mon, 26 Feb 2018 06:50:33 +0000 (07:50 +0100)]
Merge pull request #6302 from rgacogne/axfr-timeout-length
ixfrdist: Also respect the AXFR timeout for the chunk's length
Remi Gacogne [Sun, 25 Feb 2018 15:41:36 +0000 (16:41 +0100)]
ixfrdist: Also respect the AXFR timeout for the chunk's length
We used to apply the default timeout of 10s to retrieve the chunk's
length even if we were passed a different one.
Chris Hofstaedtler [Fri, 23 Feb 2018 10:44:49 +0000 (11:44 +0100)]
Remove leftover -I ext/rapidjson
Remi Gacogne [Fri, 23 Feb 2018 10:00:27 +0000 (11:00 +0100)]
Merge pull request #6299 from rgacogne/dnsdist-doc-MaxQPSRule
dnsdist: Fix the documentation for MaxQPSRule()
Pieter Lexis [Fri, 23 Feb 2018 08:15:18 +0000 (09:15 +0100)]
Merge pull request #6291 from pieterlexis/ixfrdist-read-properly
ixfrdist: Read only the amount of bytes we need
Pieter Lexis [Fri, 23 Feb 2018 08:14:56 +0000 (09:14 +0100)]
Merge pull request #6290 from pieterlexis/rec-axfr-timeout
rec: Implement settable AXFR timeout for RPZ
bert hubert [Wed, 31 Jan 2018 15:59:03 +0000 (16:59 +0100)]
Fix ECS-based cache entry refresh code
This would lead to us not refreshing ECS-varying answers in the cache, and therefore an even more depressed cache rate.
Thanks to @liordot who found the issue & provided a fix in #6241.
Aki Tuomi [Tue, 20 Feb 2018 06:19:37 +0000 (08:19 +0200)]
pkcs11signers: Use OpenSSL to parse EC parameters if available
This allows more than just two EC key types to be supported.
Aki Tuomi [Tue, 20 Feb 2018 06:19:33 +0000 (08:19 +0200)]
pdnsutil: Check that hsm was provided a sub-command
Fixes signal 11 crash due to null pointer comparison
Aki Tuomi [Tue, 20 Feb 2018 06:19:30 +0000 (08:19 +0200)]
pkcs11signers: Support separate public key label
At least Yubikey NEO has separate private and public key labels
so support providing both when necessary.
Aki Tuomi [Tue, 20 Feb 2018 06:19:16 +0000 (08:19 +0200)]
pkcs11signers: Get actual slot IDs from PKCS#11 device
Some devices have slots that do not start from 0, so we ask
for the slot IDs from the device and iterate those instead of
just guessing the slot ID.
Peter van Dijk [Thu, 22 Feb 2018 14:30:01 +0000 (15:30 +0100)]
add missing !
Remi Gacogne [Thu, 22 Feb 2018 13:08:20 +0000 (14:08 +0100)]
dnsdist: Fix the documentation for MaxQPSRule()
Contrary to MaxQPSIPRule(), MaxQPSRule() matches the traffic below
the QPS limit, not above.
Pieter Lexis [Thu, 22 Feb 2018 11:56:03 +0000 (12:56 +0100)]
Merge remote-tracking branch 'origin/master' into rec-axfr-timeout
Pieter Lexis [Thu, 22 Feb 2018 11:28:24 +0000 (12:28 +0100)]
Merge pull request #6100 from pieterlexis/ipv4-ipv6-equiv
auth: make outgoing-query-address{,6} behaviour equivalent
Pieter Lexis [Thu, 22 Feb 2018 11:27:28 +0000 (12:27 +0100)]
Merge pull request #6128 from cmouse/geoip
GeoIPbackend improvements