granicus.if.org Git

]> granicus.if.org Git - pdns/log

Bert Hubert [Sat, 2 Apr 2011 07:32:27 +0000 (07:32 +0000)]

fix Frank Altpeter's discovery that delegations don't work well in non-DNSSEC mode. See this as an incentive to run in DNSSEC mode ;)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2114 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 1 Apr 2011 21:45:51 +0000 (21:45 +0000)]

thank you powerdns posse for paying attention ;-)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2113 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 1 Apr 2011 21:13:33 +0000 (21:13 +0000)]

add regression test for 'query for a wildcard record of a different type', plus fix the bug that that test found

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2112 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 1 Apr 2011 20:54:50 +0000 (20:54 +0000)]

add regression tests for a wildcard query that matches the wildcard, plus an ANY wildcard query, plus fix bug that ANY did not match a wildcard in 3.0

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2111 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 31 Mar 2011 19:54:08 +0000 (19:54 +0000)]

Jan-Piet Mens discovered that SOA-EDIT was not listed in the domain metadata documentation. He also found that the domain metadata schema did not have room enough to store AXFR-MASTER-TSIG.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2110 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 31 Mar 2011 07:51:27 +0000 (07:51 +0000)]

fix crashes reported by Vasiliy G Tolstov and Frank Altpeter - turns out we were handing a copy of the database connection to the master/slave connection.. while we were still using it!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2109 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 30 Mar 2011 06:59:58 +0000 (06:59 +0000)]

add domain metadata documentation

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2108 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 30 Mar 2011 06:46:05 +0000 (06:46 +0000)]

catch Lua errors that only show up during the actual incoming AXFR-editing, and not just the ones that show up on script load. Spotted by Jan Piet Mens

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2107 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 30 Mar 2011 06:28:40 +0000 (06:28 +0000)]

update version to -rc1 - ZOMG!! not quite there yet, but getting close

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2106 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 28 Mar 2011 10:35:22 +0000 (10:35 +0000)]

add 'INCREMENT-WEEKS' SOA-EDIT policy

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2105 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Mar 2011 21:13:46 +0000 (21:13 +0000)]

document & implement the widening of the 'TYPE' field for the records table - NSEC3PARAM was longer than the old limit of 6.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2104 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Mar 2011 20:22:20 +0000 (20:22 +0000)]

add SOA serial number editing for when operating as a signing master (or signing filter). Set zone metadata 'SOA-EDIT' either to 'INCEPTION' or 'INCEPTION-WEEK', and it will set the SOA serial number to the full date of the RRSIG inceptions issued right now, or the week number since 01-01-1970 of that inception

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2103 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Mar 2011 20:10:42 +0000 (20:10 +0000)]

add some missing GPL repetitions

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2102 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Mar 2011 10:03:59 +0000 (10:03 +0000)]

fix reload on database error on incoming notification, mostly caused by idle databases, spotted by Frank Altpeter

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2101 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 25 Mar 2011 15:08:39 +0000 (15:08 +0000)]

catch database error in time and not on the floor

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2100 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 25 Mar 2011 11:09:33 +0000 (11:09 +0000)]

there was a slight chance for the ueberbackend to cache wrong data

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2099 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 25 Mar 2011 09:53:09 +0000 (09:53 +0000)]

catch DNS parsing errors in incoming AXFRs and don't crash on them.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2098 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 18:36:02 +0000 (18:36 +0000)]

Frank Altpeter discovered that PowerDNS(SEC) 3.0 in *non*-DNSSEC mode would not delegate domains correctly!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2097 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 13:56:03 +0000 (13:56 +0000)]

in the new escaping regime, incoming queries can contain \ characters, so don't reject those queries

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2096 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 13:54:40 +0000 (13:54 +0000)]

and use the newly defined insert-record-query-auth

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2095 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 13:53:57 +0000 (13:53 +0000)]

upgrade postgresql sql statements to new E'' escaping rules
teach all generic backends that do DNSSEC about insert-record-query-auth ("already")

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2094 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 10:22:38 +0000 (10:22 +0000)]

also add godbc stuff to tar

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2093 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 10:12:18 +0000 (10:12 +0000)]

we need this to compile - empty files though

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2092 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 24 Mar 2011 09:42:26 +0000 (09:42 +0000)]

revert accidental auto-build adjusted configure.ac

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2091 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 23 Mar 2011 21:18:37 +0000 (21:18 +0000)]

godbc patch broke odbc

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2090 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 23 Mar 2011 20:54:16 +0000 (20:54 +0000)]

rejigged the label escaping rules. It goes like this now. Within PowerDNS, all labels are now passed around as RFC4343 escaped strings. This means that the (un)escaping happens at the packet edge.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2089 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 23:13:35 +0000 (23:13 +0000)]

it appears this is needed

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2088 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 20:14:14 +0000 (20:14 +0000)]

fix up 'generic ODBC backend' compilation - but no guarantees. Code found in ticket 309, contributed by 'anonymous'.
"not sayin' that it does anything useful, but it compiles (on Linux), with unixodbc 2.2.14p2-1."

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2087 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 19:43:18 +0000 (19:43 +0000)]

move sqlite3 to sqlite3_prepare_v2 which should bring improved error reporting. Closes ticket 189.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2086 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 19:42:12 +0000 (19:42 +0000)]

fix up various small things, plus remove ugly debugging prints from AXFR handler, replaced with nice log message

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2085 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 14:13:27 +0000 (14:13 +0000)]

after many years ;-) merge the fix so MySQL stored procedures can be called. Closes ticket 231. Please test ;-)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2084 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 13:49:44 +0000 (13:49 +0000)]

improve gsqlite3backend error message as suggested by ticket 190.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2083 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 10:30:56 +0000 (10:30 +0000)]

start database list request in AXFR at the latest possible moment so as not to have an open SQL transaction if there are problems with keys

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2082 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 09:51:23 +0000 (09:51 +0000)]

allow queries for domains with spaces in them

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2081 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 09:21:33 +0000 (09:21 +0000)]

make sure that not only we can retrieve unknown records over AXFR, but that all backends can serve them too

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2080 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 09:20:47 +0000 (09:20 +0000)]

rename some confusing variables

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2079 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 08:41:47 +0000 (08:41 +0000)]

everybody pay attention - SOMEONE CONTRIBUTED DOCUMENTATION!! Jan-Piet Mens documented the feature of incoming AXFR editing that he invented. Thanks!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2078 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 22 Mar 2011 08:27:01 +0000 (08:27 +0000)]

implement RFC1982 serial number arithmetic in zone slaving engine (already!) problem spotted by Jan-Piet Mens

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2077 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 21 Mar 2011 21:58:44 +0000 (21:58 +0000)]

add warnings about trailing dots in domain names in powerdns record storage, plus fix up broken links and email addresses.
Closes ticket 343, thanks!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2076 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 21 Mar 2011 20:52:31 +0000 (20:52 +0000)]

it is 2011

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2075 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 21 Mar 2011 20:46:41 +0000 (20:46 +0000)]

fix up ssqlite internal 'escape' function - which was not used.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2074 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Mar 2011 08:39:46 +0000 (08:39 +0000)]

Ralf van der Enden contributed a patch that fixes our Lua detection on FreeBSD, Thanks!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2073 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Mar 2011 08:30:57 +0000 (08:30 +0000)]

make sure dnsresource records are default initialized fully, possibly solving serialization issues

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2072 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Mar 2011 07:46:14 +0000 (07:46 +0000)]

Brielle Bruns nagged us about this spelling error which reported a 'succesful' connection ;-)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2071 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Mar 2011 16:02:48 +0000 (16:02 +0000)]

instead of partially stealing lua autoconf from mysqlproxy, steal *all* of it

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2070 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Mar 2011 11:12:47 +0000 (11:12 +0000)]

would sometimes *add* data from the query-cache to a response instead of replacing it

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2069 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Mar 2011 09:13:27 +0000 (09:13 +0000)]

properly detect Lua on most platforms. Trick stolen from MySQL.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2068 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Mar 2011 19:11:15 +0000 (19:11 +0000)]

add error checking for the Lua incoming AXFR filter script. jp_mens, pls update your blog ;-)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2067 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Mar 2011 15:08:00 +0000 (15:08 +0000)]

allow Lua to load modules in powerdns auth

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2066 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Mar 2011 08:35:09 +0000 (08:35 +0000)]

implement incoming AXFR editing with Lua scripts. Useful when operating as a 'signer' to add a record
about when the zone was last signed, but can also be used to fiddle with the SOA serial number.
To enable for zone with domain_id=5: insert into domainmetadata (domain_id, kind, content) values (5, 'LUA-AXFR-SCRIPT', './powerdns-example-script.lua');
Use absolute paths pls.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2065 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Mar 2011 08:31:52 +0000 (08:31 +0000)]

make sure we build the manpages for the recursor

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2064 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Mar 2011 12:57:00 +0000 (12:57 +0000)]

teach built-in authoritative server in the powerdns recursor to understand wildcards

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2062 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Mar 2011 12:33:51 +0000 (12:33 +0000)]

document hash-zone-records for NSEC3

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2061 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 12 Mar 2011 21:17:07 +0000 (21:17 +0000)]

fix up unaligned access on UltraSPARC in recursor. Analysis provided by Jan Gyselinck.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2060 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 4 Mar 2011 20:43:28 +0000 (20:43 +0000)]

remove our old DNSResourceRecord serializer, replace it with the boost one, plus serialize vectors of DNSResourceRecords now, allowing the querycache to store answers with multiple records, which should be a big speedup!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2059 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 3 Mar 2011 12:12:24 +0000 (12:12 +0000)]

move zone freshness checking on incoming notification away from the main query threads and into the slave communicator loop, improving responsiveness when being mass-notified of changes.
Spotted by Richard Poole.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2058 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 3 Mar 2011 12:09:08 +0000 (12:09 +0000)]

documentation commit

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2057 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 1 Mar 2011 15:11:08 +0000 (15:11 +0000)]

fix up botan18 vector transition for ordered key output

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2056 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Feb 2011 09:33:39 +0000 (09:33 +0000)]

fix up the ECDSA from the crypto++ too for the new BIND field ordering

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2055 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sun, 27 Feb 2011 09:11:43 +0000 (09:11 +0000)]

make sure we export private keys in "bind order", it appears tools are depending on the exact ordering used by BIND (...)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2054 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 25 Feb 2011 20:54:32 +0000 (20:54 +0000)]

backends supporting DNSSEC must return all records of one (name,type) tuple consecutively. This commit solves the issue
where multiple signatures were seen for a single such tuple.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2053 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:08:29 +0000 (20:08 +0000)]

don't send do=1 SOA requests for slaving purposes for non-presigned slave zones

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2052 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:06:02 +0000 (20:06 +0000)]

some further comment improvements (spent most of the day debugging, took hours to find the bug, this is what I did in the meantime ;-))

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2051 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:05:02 +0000 (20:05 +0000)]

improve some comments

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2050 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:04:34 +0000 (20:04 +0000)]

improve some generic sql error messages and comments

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2049 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:03:13 +0000 (20:03 +0000)]

sqlite3 can host slave zones too, zone2sql didn't know that

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2048 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 20:02:42 +0000 (20:02 +0000)]

add gsqlite3-pragma-synchronous for benchmarketing purposes, plus make sqlite3 more paranoid about closing its connection

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2047 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Sat, 19 Feb 2011 14:57:44 +0000 (14:57 +0000)]

add port numbers where relevant to SOA notification output, plus prevent filedescriptor leak on AXFR error

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2046 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 22:12:48 +0000 (22:12 +0000)]

make sure we AXFR from the correct master port after a notification, and not port 53 only

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2045 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 18:59:03 +0000 (18:59 +0000)]

add the commit methods to dnsseckeeper

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2044 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 16:27:15 +0000 (16:27 +0000)]

for bulk signing: pdnssec secure-zone can now accept multiple zones in one go, in one database transaction

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2043 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 16:19:19 +0000 (16:19 +0000)]

don't wait a full second for notifications to come in

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2042 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 16:18:01 +0000 (16:18 +0000)]

siles some logging on loading BIND zones

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2041 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Fri, 18 Feb 2011 13:55:06 +0000 (13:55 +0000)]

it helps tremendously if you actually close your incoming AXFR socket!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2040 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 21:53:05 +0000 (21:53 +0000)]

further indices needed for high dnssec performance

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2039 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 20:54:30 +0000 (20:54 +0000)]

oops, cryptokeys table lacked an index

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2038 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 13:00:15 +0000 (13:00 +0000)]

phase out boost::bimap so we can depend on 1.34 again

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2037 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 10:21:16 +0000 (10:21 +0000)]

TSIG-verify first answer chunk ('envelope') of incoming AXFR. I don't understand the RFC on how to verify subsequent
envelopes.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2036 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 09:59:21 +0000 (09:59 +0000)]

add ability to do TSIG signed AXFR requests by setting AXFR-MASTER-TSIG domainmetadata setting to a TSIG keyname
Does not yet verify responses!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2035 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 08:57:26 +0000 (08:57 +0000)]

move around code so TSIG generation/verification is divorced from DNSPacket, readying it for use in signing notifications & verifying AXFR answers

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2034 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Thu, 17 Feb 2011 07:28:33 +0000 (07:28 +0000)]

Evan H discovered our documentation what out of whack with the source wrt to specifying the TSIG algorithm. The source has been adjusted.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2033 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 22:53:58 +0000 (22:53 +0000)]

and another case of not closing a db connection properly in pdnssec - harmless warning

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2032 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 22:31:37 +0000 (22:31 +0000)]

the zone2sql code was _so_ scary I didn't dare touch it for half a decade. Revamped it completely.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2031 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 21:17:18 +0000 (21:17 +0000)]

Jose Arthur Benetasso Villanova discovered pdnssec did not do a proper database connection teardown after rectify-zone, leading to a message in the postgresql log.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2030 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 16:38:56 +0000 (16:38 +0000)]

neglected to 0 the NSEC3PARAM field from the actual NSEC3 setting (I wonder why the RFC requires this)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2029 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 16:17:43 +0000 (16:17 +0000)]

jan piet mens discovered we neglected to put the NSEC3PARAM in outgoing AXFR.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2028 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Wed, 16 Feb 2011 12:09:16 +0000 (12:09 +0000)]

forgot to copy d_havetsig properly, leading to odd behaviour

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2027 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 22:01:54 +0000 (22:01 +0000)]

spruce up docs a bit

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2026 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 21:51:03 +0000 (21:51 +0000)]

document TSIG, plus remove trailing dot from TSIG key name

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2025 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 21:06:26 +0000 (21:06 +0000)]

this giant commit implements TSIG access control and outbound TSIG authorized & signed AXFRs.
We also clean up some very old slightly dead code from dnspacket.cc, plus rename some variables so the are no longer incor
Next up, use TSIG for slaving from remotes. And document all this ;-)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2024 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 20:44:22 +0000 (20:44 +0000)]

silence a lot of signingpipe debugging

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2023 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 20:09:52 +0000 (20:09 +0000)]

further cleanups (next commits remove some methods from DNSPacket)

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2022 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 20:09:01 +0000 (20:09 +0000)]

some cleanups, plus NotAuth RCODE

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2021 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Tue, 15 Feb 2011 20:02:56 +0000 (20:02 +0000)]

commit of docs so as not to skew the diffstat

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2020 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 15:34:32 +0000 (15:34 +0000)]

fix up 4.4 billion query statistics wraparound. And congratulations to the people that ran into this problem! Closes ticket 327.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2019 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 14:57:11 +0000 (14:57 +0000)]

fix up printing of %eth0 scope in ComboAddress::toStringWithPort

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2018 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 14:20:04 +0000 (14:20 +0000)]

teach generic SQL backends about the ALSO-NOTIFY domain metadata in the domainmetadata table!

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2017 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 14:10:07 +0000 (14:10 +0000)]

make master notification sender do its utmost to gather IPv6 addresses too. We sorta didn't try.

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2016 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 12:50:05 +0000 (12:50 +0000)]

make sure we don't trip over disconnects on the controlsocket

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2014 d19b8d6e-7fed-0310-83ef-9ca221ded41b

commit | commitdiff | tree

Bert Hubert [Mon, 14 Feb 2011 12:22:44 +0000 (12:22 +0000)]

silence some debugging

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@2013 d19b8d6e-7fed-0310-83ef-9ca221ded41b

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom