]>
granicus.if.org Git - pdns/log
Remi Gacogne [Tue, 16 Aug 2016 13:42:24 +0000 (15:42 +0200)]
auth: protobuf now uses CA::truncate(), link dnspcap2protobuf with iputils.cc
Remi Gacogne [Tue, 16 Aug 2016 13:15:33 +0000 (15:15 +0200)]
rec: Anonymize the protobuf ECS value as well
Pieter Lexis [Tue, 16 Aug 2016 07:13:07 +0000 (09:13 +0200)]
Merge pull request #4294 from rgacogne/rec-pie-flags
rec: Honor PIE flags
Peter van Dijk [Mon, 15 Aug 2016 19:40:17 +0000 (21:40 +0200)]
Merge pull request #4244 from rgacogne/dnsdist-check-cd
dnsdist: Add a `setCD` parameter to set cd=1 on health check queries
Peter van Dijk [Mon, 15 Aug 2016 19:37:46 +0000 (21:37 +0200)]
Merge pull request #4287 from rgacogne/auth-handle-bad-serial
auth: better handling of invalid serial
Peter van Dijk [Mon, 15 Aug 2016 19:31:53 +0000 (21:31 +0200)]
Merge pull request #4261 from mind04/ptr
strip trailing dot in PTR content
Peter van Dijk [Mon, 15 Aug 2016 19:30:36 +0000 (21:30 +0200)]
Merge pull request #4264 from rgacogne/rec-lua-rcode
rec: Set `dq.rcode` before calling postresolve
Peter van Dijk [Mon, 15 Aug 2016 19:29:45 +0000 (21:29 +0200)]
Merge pull request #4269 from j0ju/master
contrib: simple bash completion for pdnsutil
bert hubert [Mon, 15 Aug 2016 10:51:38 +0000 (12:51 +0200)]
Merge pull request #4309 from RobinGeuze/addShowTCPStats
Add showTCPStats function
bert hubert [Mon, 15 Aug 2016 10:46:30 +0000 (12:46 +0200)]
Merge pull request #4314 from ahupowerdns/overload-fix
Overload fix: make overload-queue-length work as intended again, add test for it. Closes #4311.
Pieter Lexis [Mon, 15 Aug 2016 09:09:39 +0000 (11:09 +0200)]
Merge pull request #4272 from rgacogne/pieterlexis-bind-backend-issues
Bind backend: update status message on reload, keep the existing zone on failure
Pieter Lexis [Mon, 15 Aug 2016 09:05:00 +0000 (11:05 +0200)]
Merge pull request #4268 from 42wim/doc
Small documentation fix
Pieter Lexis [Mon, 15 Aug 2016 09:04:51 +0000 (11:04 +0200)]
Merge pull request #4280 from arjenz/master
Fix broken link
Pieter Lexis [Mon, 15 Aug 2016 09:03:57 +0000 (11:03 +0200)]
Merge pull request #4310 from rgacogne/auth-libressl
Fix build with LibreSSL, for which OPENSSL_VERSION_NUMBER is irrelevant
bert hubert [Sun, 14 Aug 2016 18:30:56 +0000 (20:30 +0200)]
pipe timeout was equal to sleep(1) in the backend, leading to excessive brittleness.
bert hubert [Sat, 13 Aug 2016 15:07:15 +0000 (17:07 +0200)]
improve query logging somewhat for bind backend
bert hubert [Fri, 12 Aug 2016 22:27:44 +0000 (00:27 +0200)]
even longer timeout
bert hubert [Fri, 12 Aug 2016 20:41:17 +0000 (22:41 +0200)]
make test a bit more robust against travis or slow servers
bert hubert [Fri, 12 Aug 2016 19:56:22 +0000 (21:56 +0200)]
add a test for the overload limit in the distributor
bert hubert [Fri, 12 Aug 2016 18:42:53 +0000 (20:42 +0200)]
fix up regression test that got confused by our new counter.
bert hubert [Fri, 12 Aug 2016 17:56:09 +0000 (19:56 +0200)]
fix distributor overload behaviour, closes #4311. Also adds & documents metric overload-drops. Want to add a test too, not there yet.
Robin Geuze [Fri, 12 Aug 2016 09:06:33 +0000 (11:06 +0200)]
Add some documentation
Robin Geuze [Fri, 12 Aug 2016 08:19:29 +0000 (10:19 +0200)]
Add showTCPStats function
Remi Gacogne [Fri, 12 Aug 2016 07:52:08 +0000 (09:52 +0200)]
Fix build with LibreSSL, for which OPENSSL_VERSION_NUMBER is irrelevant
Peter van Dijk [Thu, 11 Aug 2016 12:39:32 +0000 (14:39 +0200)]
Merge pull request #4301 from Habbie/lua-ds-tostring
expose SMN toString to lua
Peter van Dijk [Thu, 11 Aug 2016 12:38:52 +0000 (14:38 +0200)]
Merge pull request #4300 from Habbie/luacopydnsname
allow newDN to take a DNSName in; document missing methods
Peter van Dijk [Thu, 11 Aug 2016 12:36:24 +0000 (14:36 +0200)]
Merge pull request #4293 from rubenk/remove-selinux-policy
Remove SELinux policy
Peter van Dijk [Thu, 11 Aug 2016 12:35:22 +0000 (14:35 +0200)]
Merge pull request #4302 from rgacogne/dnsdist-help
dnsdist: Add `help()` and `showVersion()`
Peter van Dijk [Thu, 11 Aug 2016 08:48:07 +0000 (10:48 +0200)]
add missing methods to documentation
Peter van Dijk [Mon, 8 Aug 2016 19:06:15 +0000 (21:06 +0200)]
allow newDN to take a DNSName in
Peter van Dijk [Mon, 8 Aug 2016 19:11:06 +0000 (21:11 +0200)]
expose SMN toString to lua
Remi Gacogne [Tue, 9 Aug 2016 14:07:26 +0000 (16:07 +0200)]
dnsdist: Add `help()` and `showVersion()`
Peter van Dijk [Wed, 10 Aug 2016 19:22:59 +0000 (21:22 +0200)]
Merge pull request #4303 from rgacogne/auth-ruby-json-travis
Use ruby-json 1.8.2 instead of 1.8.1 to build on travis
Remi Gacogne [Wed, 10 Aug 2016 08:26:28 +0000 (10:26 +0200)]
Use ruby-json 1.8.2 instead of 1.8.1 to build on travis
Since travis upgraded their trusty image, ruby has been updated to
2.3.1 and doesn't play well with ruby-json 1.8.1.
This should be fixed in 1.8.2 according to
https://github.com/flori/json/issues/229
Remi Gacogne [Sun, 7 Aug 2016 15:00:29 +0000 (17:00 +0200)]
rec: Honor PIE flags
Ruben Kerkhof [Sat, 6 Aug 2016 10:23:59 +0000 (12:23 +0200)]
Remove SELinux policy
I wrote new policy from scratch which has been upstreamed a while ago.
Remi Gacogne [Fri, 5 Aug 2016 08:52:04 +0000 (10:52 +0200)]
auth: Remove leftover ERANGE check when parsing serial
bert hubert [Thu, 4 Aug 2016 17:02:10 +0000 (19:02 +0200)]
Update index.md
Remi Gacogne [Thu, 4 Aug 2016 17:01:22 +0000 (19:01 +0200)]
auth: Handle out_of_range exception when parsing serial
Unsure if we can actually get a bad serial here, but we are checking
the number of parts so it looks like it might happen.
Remi Gacogne [Thu, 4 Aug 2016 17:00:07 +0000 (19:00 +0200)]
auth: Catch out_of_range exception when parsing serial
Arjen Zonneveld [Thu, 4 Aug 2016 08:33:34 +0000 (10:33 +0200)]
Fix broken link
Fix incorrect anchor to Hybrid BIND-mode operation.
Peter van Dijk [Wed, 3 Aug 2016 19:01:11 +0000 (21:01 +0200)]
Merge pull request #4274 from mind04/dhcid
report DHCID type
Peter van Dijk [Tue, 2 Aug 2016 20:37:39 +0000 (22:37 +0200)]
Merge pull request #4271 from Habbie/ucontext_t
fix type
Kees Monshouwer [Tue, 2 Aug 2016 19:09:46 +0000 (21:09 +0200)]
report DHCID type
Peter van Dijk [Tue, 2 Aug 2016 13:48:34 +0000 (15:48 +0200)]
fix type
Remi Gacogne [Tue, 2 Aug 2016 13:49:11 +0000 (15:49 +0200)]
auth: Keep the existing bind backend zone if reload fails
Pieter Lexis [Fri, 29 Jul 2016 11:26:29 +0000 (13:26 +0200)]
Add d_wasRejectedLastRelaod bool to BindDomainInfo
Before, we used d_loaded to show "[rejected]" in the `pdns_control
bind-reload-now` output. However, an already loaded zone that was
rejected later, it would not show "[rejected], it would not show
"[rejected]".
Pieter Lexis [Fri, 29 Jul 2016 11:00:55 +0000 (13:00 +0200)]
Auth: output current message on bind-reload-now
Also log the result of the parsing in the server
Joerg Jungermann [Tue, 2 Aug 2016 10:03:14 +0000 (12:03 +0200)]
contrib: simple bash completion for pdnsutil
Wim [Mon, 1 Aug 2016 21:19:02 +0000 (23:19 +0200)]
Fix some inconsistencies
Kees Monshouwer [Mon, 1 Aug 2016 20:53:50 +0000 (22:53 +0200)]
pdnsutil remove unnecessary check, the parse test above will catch trailing dots
Remi Gacogne [Mon, 1 Aug 2016 12:46:48 +0000 (14:46 +0200)]
rec: Set `dq.rcode` before calling postresolve
Remi Gacogne [Mon, 1 Aug 2016 07:18:37 +0000 (09:18 +0200)]
Merge pull request #4042 from rgacogne/dnsdist-tcp-fast-open
dnsdist: Add server-side TCP Fast Open support
Remi Gacogne [Mon, 1 Aug 2016 07:17:33 +0000 (09:17 +0200)]
Merge pull request #4067 from rgacogne/dnsdist-fix-ebpf-detection
dnsdist: Disable eBPF support when BPF_FUNC_tail_call is not found
Remi Gacogne [Mon, 1 Aug 2016 07:16:56 +0000 (09:16 +0200)]
Merge pull request #4079 from rgacogne/dnsdist-remotelog-no-protobuf
dnsdist: Return an error on RemoteLog{,Response}Action() w/o protobuf
Remi Gacogne [Mon, 1 Aug 2016 07:16:42 +0000 (09:16 +0200)]
Merge pull request #4198 from stutiredboy/master
newServer setting maxCheckFailures makes no sense
Remi Gacogne [Mon, 1 Aug 2016 07:15:51 +0000 (09:15 +0200)]
Merge pull request #4246 from rgacogne/dnsdist-api-array-pools
dnsdist: API now sends pools as a JSON array instead of a string
Kees Monshouwer [Sat, 30 Jul 2016 23:43:55 +0000 (01:43 +0200)]
strip trailing dot in PTR content
Pieter Lexis [Fri, 29 Jul 2016 14:28:18 +0000 (16:28 +0200)]
Merge pull request #4056 from zeha/openssl11
OpenSSL 1.1.0 support
Pieter Lexis [Fri, 29 Jul 2016 13:55:37 +0000 (15:55 +0200)]
More changelog fixes
Pieter Lexis [Fri, 29 Jul 2016 13:31:32 +0000 (15:31 +0200)]
Update changelog with one more entry
Peter van Dijk [Fri, 29 Jul 2016 13:29:21 +0000 (15:29 +0200)]
Merge pull request #4252 from rgacogne/auth-bind-include-length
auth: Don't include bind files if length <= 2 or > sizeof(filename)
Pieter Lexis [Fri, 29 Jul 2016 13:26:15 +0000 (15:26 +0200)]
Merge pull request #4241 from pieterlexis/401-changelog
4.0.1 changelog, docs and secpoll
Pieter Lexis [Thu, 28 Jul 2016 09:02:40 +0000 (11:02 +0200)]
Add 4.0.1 to secpoll
Pieter Lexis [Thu, 28 Jul 2016 08:56:56 +0000 (10:56 +0200)]
Add some docs on new ComboAddress features in Lua
Pieter Lexis [Thu, 28 Jul 2016 08:53:01 +0000 (10:53 +0200)]
Add Upgrade Notes for the recursor
Pieter Lexis [Thu, 28 Jul 2016 08:51:40 +0000 (10:51 +0200)]
Add auth 4.0.1 changelog
Pieter Lexis [Thu, 28 Jul 2016 08:51:24 +0000 (10:51 +0200)]
Add recursor 4.0.1 changelog entries
Christian Hofstaedtler [Mon, 27 Jun 2016 19:45:23 +0000 (19:45 +0000)]
opensslsigners: use libcrypto access functions
Christian Hofstaedtler [Mon, 27 Jun 2016 13:50:31 +0000 (13:50 +0000)]
opensslsigners: remove thread/locking setup, not needed in openssl 1.1 anymore
Christian Hofstaedtler [Mon, 27 Jun 2016 13:50:05 +0000 (13:50 +0000)]
dns_random: Use CRYPTO_ctr128_encrypt when available
As AES_ctr128_encrypt is removed in OpenSSL 1.1.0.
Pieter Lexis [Mon, 27 Jun 2016 18:41:52 +0000 (20:41 +0200)]
Add PDNS_CHECK_LIBCRYPTO based on AX_CHECK_OPENSSL
This detects libcrypto for OpenSSL 0.9.8, 1.0 and 1.1.
Furthermore, curve detection appeared broken on Arch Linux, this is fixed
with the addition of PDNS_CHECK_LIBCRYPTO_ECDSA, without breaking on Debian
Jessie, Ubuntu Trusty, Wily and Xenial and CentOS 5 through 7.
Pieter Lexis [Fri, 29 Jul 2016 12:38:49 +0000 (14:38 +0200)]
Merge pull request #4255 from pieterlexis/stl-error-on-broken-soa
Auth: catch runtime_error when parsing a broken MNAME
Pieter Lexis [Fri, 29 Jul 2016 12:38:39 +0000 (14:38 +0200)]
Merge pull request #4207 from pieterlexis/multiple-DS-per-name
Change DS config items to dsmap_t
Pieter Lexis [Thu, 21 Jul 2016 14:43:47 +0000 (16:43 +0200)]
Change dsmap_t to a set to prevent duplicates
Pieter Lexis [Tue, 19 Jul 2016 13:38:27 +0000 (15:38 +0200)]
Change DS config items to dsmap_t
Ensure that addTA() appends the DS.
Christian Hofstaedtler [Fri, 1 Jul 2016 12:17:08 +0000 (14:17 +0200)]
test-algorithms: check public key can be reloaded
Christian Hofstaedtler [Fri, 1 Jul 2016 09:57:35 +0000 (11:57 +0200)]
opensslsigners: mark member overrides
Fixes warnings from clang.
Pieter Lexis [Fri, 29 Jul 2016 10:21:25 +0000 (12:21 +0200)]
Auth: PDNSException for bad SOA MNAME or RNAME
This prevents blowing up the bind backend on startup when one zone
contains a bad SOA record.
Pieter Lexis [Fri, 29 Jul 2016 08:52:51 +0000 (10:52 +0200)]
Merge pull request #4242 from rgacogne/fix-protobuf-todebugstring-4240
Fix `DNSProtoBufMessage::toDebugString()` without protobuf support
Pieter Lexis [Fri, 29 Jul 2016 08:45:33 +0000 (10:45 +0200)]
Merge pull request #4245 from mind04/nsec
direct nsec nxdomain
Pieter Lexis [Fri, 29 Jul 2016 08:45:26 +0000 (10:45 +0200)]
Merge pull request #4250 from mind04/tologstring
use toLogString() for ringAccount
Kees Monshouwer [Thu, 28 Jul 2016 21:23:56 +0000 (23:23 +0200)]
use toLogString() for ringAccount
Peter van Dijk [Thu, 28 Jul 2016 17:56:13 +0000 (19:56 +0200)]
Merge pull request #4247 from pieterlexis/fail-on-missing-components
Autoconf improvements
Pieter Lexis [Thu, 28 Jul 2016 15:17:26 +0000 (17:17 +0200)]
Merge pull request #4222 from aj-gh/fix-doc-timedout-packets
Correct wrong statistics counter name in docs
Pieter Lexis [Thu, 28 Jul 2016 15:17:19 +0000 (17:17 +0200)]
Merge pull request #4243 from pieterlexis/toString-in-current-queries
Recursor: Fix a possible crash
Pieter Lexis [Thu, 28 Jul 2016 14:37:06 +0000 (16:37 +0200)]
dnsdist: we don't use boost::foreach anymore
Pieter Lexis [Thu, 28 Jul 2016 14:33:06 +0000 (16:33 +0200)]
Auth: Fail configure on missing boost components
Prevents issues like #4239
Kees Monshouwer [Thu, 28 Jul 2016 14:03:21 +0000 (16:03 +0200)]
test response for non existent direct nsec queries
Remi Gacogne [Thu, 28 Jul 2016 13:50:08 +0000 (15:50 +0200)]
dnsdist: API now sends pools as a JSON array instead of a string
Kees Monshouwer [Thu, 28 Jul 2016 13:17:39 +0000 (15:17 +0200)]
don't send covering nsec records for direct nsec queries
Remi Gacogne [Thu, 28 Jul 2016 13:07:58 +0000 (15:07 +0200)]
dnsdist: Add a `setCD` parameter to set cd=1 on health check queries
Pieter Lexis [Thu, 28 Jul 2016 12:21:10 +0000 (14:21 +0200)]
Recursor: Fix a possible crash
When the parser creates empty DNSNames (for whatever reason) and
`rec_control current-queries` is run, the process would abort because it
tried to print an empty DNSName.
Pieter Lexis [Thu, 28 Jul 2016 10:38:31 +0000 (12:38 +0200)]
Merge pull request #4214 from rgacogne/auth-supermaster-proxy-ecs
auth: Trust EDNS Client Subnet from a trusted notification proxy
Pieter Lexis [Thu, 28 Jul 2016 09:49:39 +0000 (11:49 +0200)]
Merge pull request #4210 from pieterlexis/rec-secpoll-validate
Validate DNSSEC for secpoll.powerdns.com
Remi Gacogne [Thu, 28 Jul 2016 09:08:43 +0000 (11:08 +0200)]
Fix `DNSProtoBufMessage::toDebugString()` without protobuf support
Fixes #4240.
Pieter Lexis [Thu, 28 Jul 2016 08:15:25 +0000 (10:15 +0200)]
Merge pull request #4183 from hnsk/pdnsutil-always-diff
pdnsutil: Remove checking of ctime and always diff the changes.
Pieter Lexis [Thu, 28 Jul 2016 08:01:22 +0000 (10:01 +0200)]
Merge pull request #4206 from rgacogne/auth-psql-deallocate-4201
auth: Don't try to deallocate empty PG statements
Pieter Lexis [Thu, 28 Jul 2016 08:00:47 +0000 (10:00 +0200)]
Merge pull request #4126 from rgacogne/auth-carbon-freebsd
auth: Wait for the connection to the carbon server to be established
Pieter Lexis [Thu, 28 Jul 2016 07:59:21 +0000 (09:59 +0200)]
Merge pull request #4142 from mind04/fd-usage
add used filedescriptor statistics to auth