]>
granicus.if.org Git - pdns/log
Pieter Lexis [Wed, 2 Sep 2015 12:14:02 +0000 (14:14 +0200)]
Prevent XSS by escaping user input
Additionally, escape "'s so no attributes can be inserted into webpages.
Thanks to Pierre Jaury and Damien Cauquil at Sysdream for pointing this
out.
bert hubert [Fri, 25 Sep 2015 21:30:30 +0000 (23:30 +0200)]
split up auth latency stats between v4 and v6 since you need to be able to see them separately. Also add 4 and 6 versions of timeouts.
bert hubert [Fri, 25 Sep 2015 07:54:18 +0000 (09:54 +0200)]
implement & document keeping track of authoritative latency distribution in the pdns_recursor, inspired by Allan Eising. Update to metronome forthcoming.
bert hubert [Thu, 24 Sep 2015 08:31:24 +0000 (10:31 +0200)]
improve logging somewhat for #2758 and #2760.
bert hubert [Mon, 21 Sep 2015 20:20:47 +0000 (22:20 +0200)]
clarify qa-latency a bit
Pieter Lexis [Mon, 21 Sep 2015 18:17:46 +0000 (20:17 +0200)]
Update pdns.conf-dist to reflect
191f2e478b42a
bert hubert [Thu, 17 Sep 2015 14:52:10 +0000 (16:52 +0200)]
make pdns_control and rec_control mention the 'help' command to query pdns for possible commands. Close #2686.
bert hubert [Thu, 17 Sep 2015 14:33:04 +0000 (16:33 +0200)]
implement pid-file configuration switch, defaults to on & document it. Close #2671.
Pieter Lexis [Wed, 16 Sep 2015 11:33:01 +0000 (13:33 +0200)]
Merge pull request #2750 from cmouse/cid-
1324500
Initialize d_fnum, fixes cid#
1324500
Pieter Lexis [Wed, 16 Sep 2015 11:32:20 +0000 (13:32 +0200)]
Merge pull request #2752 from pieterlexis/run-geoip-tests
Run geoip tests
Pieter Lexis [Wed, 16 Sep 2015 09:20:36 +0000 (11:20 +0200)]
Merge remote-tracking branch 'origin/pr/2751' into run-geoip-tests
Aki Tuomi [Wed, 16 Sep 2015 09:16:30 +0000 (12:16 +0300)]
Fix geoip test suite
Aki Tuomi [Wed, 16 Sep 2015 09:01:08 +0000 (12:01 +0300)]
Initialize d_fnum, fixes cid#
1324500
Pieter Lexis [Mon, 14 Sep 2015 08:40:58 +0000 (10:40 +0200)]
Compile the GeoIP backend in travis and run tests
Install a newer boost (also needed for geosql later)
Pieter Lexis [Tue, 15 Sep 2015 09:40:53 +0000 (11:40 +0200)]
Merge pull request #2646 from pieterlexis/SunOS
SunOS additions and fixes
Pieter Lexis [Tue, 15 Sep 2015 07:23:47 +0000 (09:23 +0200)]
Merge pull request #2736 from cmouse/geoip-direct-result
Return result directly if available in GeoIPBackend
Peter van Dijk [Tue, 15 Sep 2015 06:34:26 +0000 (08:34 +0200)]
Merge pull request #2742 from cmouse/gpgsql-truth
Handle booleans correctly in gPGSql
Peter van Dijk [Tue, 15 Sep 2015 06:33:44 +0000 (08:33 +0200)]
Merge pull request #2743 from cmouse/gsql-next-result-set
Support multiple results set in gMySQL and gPGSql
Pieter Lexis [Mon, 14 Sep 2015 12:12:28 +0000 (14:12 +0200)]
Merge pull request #2679 from pieterlexis/issue-2432-check-zone-TLSA-wildcard-empty-non-terminal
pdnssec: Check if addresses exist for TLSA hosts
Aki Tuomi [Mon, 14 Sep 2015 11:35:51 +0000 (14:35 +0300)]
Escape portal identifier
Aki Tuomi [Sat, 12 Sep 2015 20:47:02 +0000 (23:47 +0300)]
Support refcursor(s) in gPgSQL
Allows stored procedures to use refcursor
or set of refcursors in order to return values.
Aki Tuomi [Sat, 12 Sep 2015 17:38:26 +0000 (20:38 +0300)]
Implement multi result set support in gMySQL
Peter van Dijk [Mon, 14 Sep 2015 10:16:47 +0000 (12:16 +0200)]
Merge pull request #2744 from cmouse/goracle-improve-errors
Improve error logging in goracle
Pieter Lexis [Mon, 14 Sep 2015 10:03:29 +0000 (12:03 +0200)]
Merge pull request #2738 from cmouse/geoip-rectify
Rectify records in GeoIPBackend
Pieter Lexis [Thu, 28 May 2015 20:20:15 +0000 (22:20 +0200)]
pdnssec: Check if records exist for TLSA hosts
When a record _443._tcp.www.example.com.|TLSA exists and no record for
www.example.com., we emit a warning. Similarly, when
*.example.com. _does_ exist, we emit a warning, as
www.example.com. becomes an empty non-terminal at that point.
Aki Tuomi [Mon, 14 Sep 2015 08:39:05 +0000 (11:39 +0300)]
Update test suite
Now tests direct and indirect response.
Aki Tuomi [Mon, 14 Sep 2015 08:37:09 +0000 (11:37 +0300)]
Set scopemask for result during reply
Aki Tuomi [Sat, 12 Sep 2015 21:44:33 +0000 (00:44 +0300)]
Improve error logging in goracle
Aki Tuomi [Sat, 12 Sep 2015 20:48:56 +0000 (23:48 +0300)]
Handle booleans correctly in gPGSql
Pieter Lexis [Fri, 11 Sep 2015 13:14:52 +0000 (15:14 +0200)]
Merge pull request #2740 from pieterlexis/pkg-randombackend
Package the random backend in the main server package
Pieter Lexis [Fri, 11 Sep 2015 13:14:44 +0000 (15:14 +0200)]
Merge pull request #2739 from mind04/mbedtls210
Update included mbed TLS to version 2.1.0 (GPL)
Kees Monshouwer [Fri, 11 Sep 2015 10:01:02 +0000 (12:01 +0200)]
Update mbed TLS to version 2.1.0 (GPL)
Pieter Lexis [Fri, 11 Sep 2015 10:43:46 +0000 (12:43 +0200)]
Package the random backend in the main server package
Aki Tuomi [Fri, 11 Sep 2015 09:17:12 +0000 (12:17 +0300)]
Rectify records
Aki Tuomi [Fri, 11 Sep 2015 08:18:14 +0000 (11:18 +0300)]
Return result directly if available
Pieter Lexis [Thu, 10 Sep 2015 13:46:25 +0000 (15:46 +0200)]
Merge pull request #2734 from pieterlexis/sdig-in-pkg
Add sdig to pdns-tools
bert hubert [Thu, 10 Sep 2015 11:24:47 +0000 (13:24 +0200)]
small BOOST_FOREACH cleanup, mostly to test my new development setup.
Pieter Lexis [Wed, 9 Sep 2015 16:08:38 +0000 (18:08 +0200)]
Add sdig to pdns-tools
bert hubert [Wed, 9 Sep 2015 09:29:39 +0000 (11:29 +0200)]
make sure our case insensitive hash uses dns_tolower and not tolower which might conceivably do all kinds of locale things which could be slow
bert hubert [Wed, 9 Sep 2015 09:17:45 +0000 (11:17 +0200)]
make our question hash for query distribution case insensitive. add tests that check this is the case. add rudimentary test that checks if our hash is reasonably flat.
Pieter Lexis [Wed, 9 Sep 2015 08:41:03 +0000 (10:41 +0200)]
Merge pull request #2733 from pieterlexis/deb-pkg-cleanup
Fix the installation of the auth deb package
Peter van Dijk [Tue, 8 Sep 2015 08:34:01 +0000 (10:34 +0200)]
Merge pull request #2678 from pieterlexis/dnsdist-uptime-start
dnsdist: initialize the uptime variable on startup
Peter van Dijk [Tue, 8 Sep 2015 08:33:43 +0000 (10:33 +0200)]
Merge pull request #2684 from rubenk/recursor-docs-for-stats
recursor: some minor tweaks to stats.md
Pieter Lexis [Tue, 21 Jul 2015 07:46:11 +0000 (09:46 +0200)]
Auth: Don't call `hostname` on Solaris/SunOS
Pieter Lexis [Mon, 20 Jul 2015 09:44:30 +0000 (11:44 +0200)]
Recursor: Don't use `hostname -f` on Solaris/SunOS
Pieter Lexis [Mon, 20 Jul 2015 09:11:27 +0000 (11:11 +0200)]
Add Sun service files
Thanks to Annatar for these.
Pieter Lexis [Mon, 7 Sep 2015 08:52:19 +0000 (10:52 +0200)]
Fix the installation of the auth deb package
The post-install script expects the main config to be in
/usr/share/pdns-server and fails if it isn't there.
bert hubert [Sun, 6 Sep 2015 08:05:44 +0000 (10:05 +0200)]
Merge pull request #2732 from ahupowerdns/iptrunc
Iptrunc
bert hubert [Sat, 5 Sep 2015 17:40:24 +0000 (19:40 +0200)]
improve error message if attempting to bind to an address we can't bind to for outgoing queries
Ruben Kerkhof [Mon, 10 Aug 2015 18:56:23 +0000 (20:56 +0200)]
recursor: some minor tweaks to stats.md
Pieter Lexis [Fri, 4 Sep 2015 15:01:21 +0000 (17:01 +0200)]
Merge pull request #2729 from pieterlexis/auth-zones-test
Recursor: add an extensive test for auth-zones
bert hubert [Fri, 4 Sep 2015 13:45:57 +0000 (15:45 +0200)]
hook up TCAction() for use in addAction(). Add global MaxQPSLimit(), not just per IP(range). Document these and big up our https://repo.powerdns.com service
Pieter Lexis [Fri, 4 Sep 2015 13:33:20 +0000 (15:33 +0200)]
Always grab the debuginfo rpms
Peter van Dijk [Fri, 4 Sep 2015 12:19:14 +0000 (14:19 +0200)]
Merge pull request #2711 from cmouse/gsql-check-return-columns
Ensure queries result correct number of columns
bert hubert [Fri, 4 Sep 2015 11:30:44 +0000 (13:30 +0200)]
hook up truncation for MaxQPSIPRule so we can group ipv6 by /64 etc
bert hubert [Fri, 4 Sep 2015 11:29:14 +0000 (13:29 +0200)]
clean up a bit, plus optimize /32 and /128 cases
bert hubert [Fri, 4 Sep 2015 09:45:20 +0000 (11:45 +0200)]
implement ComboAddress::truncate() - 24 leaves the first 3 octets for IPv4. 0 leaves nothing.
Pieter Lexis [Fri, 4 Sep 2015 08:28:31 +0000 (10:28 +0200)]
Recursor: add an extensive test for auth-zones
Pieter Lexis [Thu, 3 Sep 2015 10:07:55 +0000 (12:07 +0200)]
make the generated CentOS 7 config saner
Pieter Lexis [Thu, 3 Sep 2015 08:52:58 +0000 (10:52 +0200)]
pdns_server is installed to sbin, not bin
bert hubert [Thu, 3 Sep 2015 06:34:15 +0000 (08:34 +0200)]
Merge pull request #2722 from cmouse/use-distance-in-dnsname
Use std::distance in dnsname, fix #2721
Pieter Lexis [Wed, 2 Sep 2015 14:42:56 +0000 (16:42 +0200)]
Also update our main security page on 2015-02
Pieter Lexis [Wed, 2 Sep 2015 14:01:13 +0000 (16:01 +0200)]
Correct the name of Ashish Shukla
bert hubert [Wed, 2 Sep 2015 13:18:31 +0000 (15:18 +0200)]
Merge pull request #2725 from pieterlexis/3.4.6-sec-announce
PowerDNS Security Advisory 2015-02
bert hubert [Wed, 2 Sep 2015 09:14:02 +0000 (11:14 +0200)]
add a dropAction() creator for Lua
Pieter Lexis [Tue, 1 Sep 2015 09:15:05 +0000 (11:15 +0200)]
Update secpoll.zone for Advisory 2015-02
Pieter Lexis [Fri, 28 Aug 2015 14:02:26 +0000 (16:02 +0200)]
Add the security advisory for Auth 3.4.6
bert hubert [Tue, 1 Sep 2015 14:24:39 +0000 (16:24 +0200)]
cleanup rule/action infrastructure to be generic in dnsdist
bert hubert [Tue, 1 Sep 2015 13:36:30 +0000 (15:36 +0200)]
add a TCP flag to addLocal so you can selectively disable TCP/IP (default is on)
Pieter Lexis [Tue, 1 Sep 2015 13:08:46 +0000 (15:08 +0200)]
Merge pull request #2723 from pieterlexis/issue-2690
Fix --loglevel set to > 32K, closes #2690
Pieter Lexis [Tue, 1 Sep 2015 11:53:04 +0000 (13:53 +0200)]
Fix --loglevel set to > 32K, closes #2690
Pieter Lexis [Tue, 1 Sep 2015 09:14:10 +0000 (11:14 +0200)]
Merge pull request #2715 from zeha/secpoll-debian
secpoll: Add current and prospective Debian/Ubuntu 3.4.6 builds
Aki Tuomi [Tue, 1 Sep 2015 08:47:30 +0000 (11:47 +0300)]
Use std::distance in dnsname, fix #2721
Pieter Lexis [Mon, 31 Aug 2015 11:33:35 +0000 (13:33 +0200)]
Merge pull request #2718 from pieterlexis/issue-2717-doc-title
Some documentation fixes
Pieter Lexis [Mon, 31 Aug 2015 07:24:39 +0000 (09:24 +0200)]
Update .travis.yml so travis can build the docs
Pieter Lexis [Mon, 31 Aug 2015 07:20:31 +0000 (09:20 +0200)]
Update the docs on docs (yo!)
Pieter Lexis [Mon, 31 Aug 2015 07:16:51 +0000 (09:16 +0200)]
Use the mkdocs 0.12+ pages layout in mkdocs.yml
Pieter Lexis [Mon, 31 Aug 2015 07:13:19 +0000 (09:13 +0200)]
Don't title the docs 'None', closes #2717
For some reason, mkdocs insists that the title of the homepage is
'None', even though we set it in the config.
Christian Hofstaedtler [Sat, 29 Aug 2015 13:26:39 +0000 (15:26 +0200)]
secpoll: Add current and prospective Debian/Ubuntu 3.4.6 builds
bert hubert [Sat, 29 Aug 2015 11:28:34 +0000 (13:28 +0200)]
and update the SOA of secpoll zone
bert hubert [Sat, 29 Aug 2015 11:26:33 +0000 (13:26 +0200)]
Merge branch 'master' of github.com:PowerDNS/pdns
Pieter Lexis [Fri, 28 Aug 2015 16:27:34 +0000 (18:27 +0200)]
Merge pull request #2714 from pieterlexis/sec-notice-3.4.5
Small documentation fixes
Pieter Lexis [Fri, 28 Aug 2015 16:17:06 +0000 (18:17 +0200)]
fix a broken link
Pieter Lexis [Fri, 28 Aug 2015 16:16:52 +0000 (18:16 +0200)]
Add a notification to advisory 2015-01 to the changelog
Pieter Lexis [Fri, 28 Aug 2015 14:22:54 +0000 (16:22 +0200)]
Merge pull request #2708 from pieterlexis/rel-notes-3.4.6
Add auth 3.4.6 changelog
Pieter Lexis [Fri, 28 Aug 2015 14:03:47 +0000 (16:03 +0200)]
Update secpoll for 3.4.6
Pieter Lexis [Thu, 27 Aug 2015 08:01:53 +0000 (10:01 +0200)]
Add auth 3.4.6 changelog
Aki Tuomi [Fri, 28 Aug 2015 07:20:59 +0000 (10:20 +0300)]
Fix gOracle queries
Aki Tuomi [Fri, 28 Aug 2015 07:20:26 +0000 (10:20 +0300)]
Fix gPgSQL queries
Aki Tuomi [Fri, 28 Aug 2015 07:19:27 +0000 (10:19 +0300)]
Fix gSQLite3 queries
Aki Tuomi [Fri, 28 Aug 2015 07:18:13 +0000 (10:18 +0300)]
Fix gMySQL queries
Aki Tuomi [Thu, 27 Aug 2015 17:45:50 +0000 (20:45 +0300)]
Ensure queries result correct number of columns
Peter van Dijk [Fri, 28 Aug 2015 05:39:44 +0000 (07:39 +0200)]
Merge pull request #2713 from synapse451/patch-1
Update responsestats.cc
synapse451 [Fri, 28 Aug 2015 04:20:35 +0000 (21:20 -0700)]
Update responsestats.cc
bert hubert [Thu, 27 Aug 2015 15:12:58 +0000 (17:12 +0200)]
add a NoRecurseRule, intended to strip queries of RD-bit over certain QPS rate (that part isn't there yet)
bert hubert [Thu, 27 Aug 2015 15:12:23 +0000 (17:12 +0200)]
since DNSName now accepts things w/o trialing . as domain names, suddenly dnsdist parsed all netmasks as domain names. Now try mask first and if that fails, try domain name.
bert hubert [Thu, 27 Aug 2015 14:23:20 +0000 (16:23 +0200)]
Merge pull request #2710 from ahupowerdns/dnsdistclean
Dnsdistclean
bert hubert [Wed, 26 Aug 2015 13:31:22 +0000 (15:31 +0200)]
fix .gitignore
bert hubert [Wed, 26 Aug 2015 12:38:42 +0000 (14:38 +0200)]
teach blockFilter to TCP code, but ignore truncation requests coming from it
bert hubert [Wed, 26 Aug 2015 12:38:24 +0000 (14:38 +0200)]
should fix up make dist