]>
granicus.if.org Git - pdns/log
Pieter Lexis [Mon, 14 Dec 2015 15:54:50 +0000 (16:54 +0100)]
Remove last remnants of disable-edns
Pieter Lexis [Mon, 14 Dec 2015 15:46:40 +0000 (16:46 +0100)]
document `dnssec` setting for recursor
Pieter Lexis [Fri, 11 Dec 2015 20:02:36 +0000 (21:02 +0100)]
docs: Expand opendbx-backend information
This is mostly ported from @nos3's website (thanks!)
Closes: #445
Pieter Lexis [Fri, 11 Dec 2015 19:19:34 +0000 (20:19 +0100)]
docs: document Autoserial. Closes #1211
Pieter Lexis [Fri, 11 Dec 2015 18:46:03 +0000 (19:46 +0100)]
docs: clarify TXT record content. Closes #1435
Pieter Lexis [Fri, 11 Dec 2015 17:25:50 +0000 (18:25 +0100)]
docs: add note about "storage format" in types.md
Pieter Lexis [Fri, 11 Dec 2015 17:13:42 +0000 (18:13 +0100)]
docs: add note on TTL for DNSSEC RRs. Closes #2195
Pieter Lexis [Fri, 11 Dec 2015 16:40:13 +0000 (17:40 +0100)]
Split the GSQL backend docs and update it
Closes: #2987 #2067
Pieter Lexis [Fri, 11 Dec 2015 13:13:43 +0000 (14:13 +0100)]
docs: Update recursor scripting
Closes #2559
Pieter Lexis [Fri, 11 Dec 2015 13:05:07 +0000 (14:05 +0100)]
Add initial auth 4.0.0 changelog
Pieter Lexis [Fri, 11 Dec 2015 12:42:24 +0000 (13:42 +0100)]
docs: Update the rrtypes we support
Pieter Lexis [Fri, 11 Dec 2015 11:48:40 +0000 (12:48 +0100)]
Document the ALIAS record, closes #2394
bert hubert [Mon, 14 Dec 2015 09:42:02 +0000 (10:42 +0100)]
implement delta() to show changes versus configuration, so you can store your 'just right' setup.
bert hubert [Sun, 13 Dec 2015 20:19:36 +0000 (21:19 +0100)]
add benchRule which benchmarks rules and AndRule which Ands rules together
bert hubert [Sun, 13 Dec 2015 10:21:38 +0000 (11:21 +0100)]
add PoolAction() to Lua
bert hubert [Sun, 13 Dec 2015 09:35:26 +0000 (10:35 +0100)]
how did we miss this? RegexRule in dnsdist for matching queries with regular expressions & doing things to them
bert hubert [Fri, 11 Dec 2015 22:27:42 +0000 (23:27 +0100)]
fix up so it compiles again, I think - may need more uncommitted infra
Peter van Dijk [Fri, 11 Dec 2015 20:55:33 +0000 (21:55 +0100)]
Merge pull request #3018 from Habbie/osx
minor osx portability nit
Peter van Dijk [Fri, 11 Dec 2015 13:30:09 +0000 (14:30 +0100)]
Merge pull request #3022 from mind04/dname
traling dot in DNAME content
bert hubert [Fri, 11 Dec 2015 12:18:38 +0000 (13:18 +0100)]
implement DS anchor configuration, thank you https://twitter.com/PowerDNS_Bert/status/
675241924803080192 - we default to the known root DS
bert hubert [Fri, 11 Dec 2015 12:17:54 +0000 (13:17 +0100)]
Merge branch 'master' of github.com:PowerDNS/pdns
bert hubert [Fri, 11 Dec 2015 10:37:38 +0000 (11:37 +0100)]
Merge pull request #3023 from rgacogne/emptyclientlinenosodium
Fix dnsdist console client sending empty lines
Remi Gacogne [Fri, 11 Dec 2015 10:10:43 +0000 (11:10 +0100)]
Fix dnsdist console client sending empty lines
There is no point for the console client to send empty lines to the
server. Just in case, fix the server to not abort the connection
when receiving such empty lines.
Reported by @gryphius as a follow-up on #3015.
bert hubert [Fri, 11 Dec 2015 08:58:44 +0000 (09:58 +0100)]
Merge pull request #3017 from rgacogne/consoleempty-nosodium
Fix zero-sized response in dnsdist client without libsodium. Also disables setLocal() at runtime.
Kees Monshouwer [Fri, 11 Dec 2015 08:39:43 +0000 (09:39 +0100)]
traling dot in DNAME content
Remi Gacogne [Thu, 10 Dec 2015 16:18:30 +0000 (17:18 +0100)]
Warn that addLocal() and setLocal() can't be used at runtime
Peter van Dijk [Thu, 10 Dec 2015 15:33:03 +0000 (16:33 +0100)]
minor osx portability nit
Remi Gacogne [Thu, 10 Dec 2015 15:17:54 +0000 (16:17 +0100)]
Fix zero-sized response in dnsdist client without libsodium
Without libsodium support, we do actually get zero-sized response
(no padding).
Reported by @gryphius in issue #3015.
bert hubert [Thu, 10 Dec 2015 13:24:22 +0000 (14:24 +0100)]
log if a domain demands DNSSEC processing or not
bert hubert [Thu, 10 Dec 2015 12:57:59 +0000 (13:57 +0100)]
love the unit tests.
bert hubert [Thu, 10 Dec 2015 11:55:09 +0000 (12:55 +0100)]
new function: addDomainSpoof("domain", "ipv4", "ipv6"). Also, DNSActions can now modify packet length.
bert hubert [Thu, 10 Dec 2015 06:35:00 +0000 (07:35 +0100)]
so, it turns out only the hashing/dnssec parts of powerdns need 'toDNSString()' lowercase. Gave them a helper, made toDNSString() not touch case again.
bert hubert [Wed, 9 Dec 2015 18:08:37 +0000 (19:08 +0100)]
Revert "toDNSString inexplicably did a toLower() on what it wrote it, potentially causing 0x20 issues. Now, I assume some code needed this. This commit will find that code."
This reverts commit
6d04b73457106e0fbbce7846ea808cd4f4ab7c3b .
bert hubert [Wed, 9 Dec 2015 14:03:53 +0000 (15:03 +0100)]
Merge pull request #3011 from rgacogne/dnsdist-fix-crypto-doc
Make the string parameter to testCrypto() optional
Pieter Lexis [Wed, 9 Dec 2015 13:54:14 +0000 (14:54 +0100)]
Merge pull request #3004 from zeha/api-cache-flush
API: make cache flushing a public, documented operation
Pieter Lexis [Wed, 9 Dec 2015 13:54:01 +0000 (14:54 +0100)]
Merge pull request #2997 from zeha/apirecursortest
API: Reenable Recursor tests
bert hubert [Wed, 9 Dec 2015 12:57:39 +0000 (13:57 +0100)]
implement fixupCase(true) or fixupCase(false) so you can make your 0x20 violating code work on today's internet. Enjoy.
bert hubert [Wed, 9 Dec 2015 12:56:50 +0000 (13:56 +0100)]
toDNSString inexplicably did a toLower() on what it wrote it, potentially causing 0x20 issues. Now, I assume some code needed this. This commit will find that code.
bert hubert [Wed, 9 Dec 2015 12:30:32 +0000 (13:30 +0100)]
for recursor, if client added an EDNS record, add it to the response too
bert hubert [Wed, 9 Dec 2015 12:30:02 +0000 (13:30 +0100)]
I can't imagine how this worked - DNSName() as name for an OPT record. Should be "."
bert hubert [Wed, 9 Dec 2015 12:28:35 +0000 (13:28 +0100)]
add makeOpt infrastructure so we can make DNSRecords with OPT pseudo record in there, ready for insertion
bert hubert [Wed, 9 Dec 2015 12:25:50 +0000 (13:25 +0100)]
speedup, use 'tie' for comparisons in recursor packet cache
Christian Hofstaedtler [Sun, 6 Dec 2015 23:47:54 +0000 (00:47 +0100)]
API: make cache flushing a public, documented operation
Note that this changes the URL, and only allows for exact flushing now.
Fixes #3003.
Christian Hofstaedtler [Wed, 9 Dec 2015 10:31:55 +0000 (11:31 +0100)]
Replace dnsnameFromJson() with apiNameToDNSName(stringFromJson())
To reuse the name checking code for strings that didn't come
from json. Also makes it clearer that the checking logic is
an API only thing, and other json consumers may use their own
policy on dots, etc.
bert hubert [Wed, 9 Dec 2015 11:13:58 +0000 (12:13 +0100)]
split out console code from dnsdist.cc, plus move some generic stuff to misc.cc
bert hubert [Wed, 9 Dec 2015 10:08:17 +0000 (11:08 +0100)]
further changelog updates
bert hubert [Wed, 9 Dec 2015 08:40:07 +0000 (09:40 +0100)]
Beginning of 4.0.0 release notes
bert hubert [Wed, 9 Dec 2015 07:04:54 +0000 (08:04 +0100)]
Merge pull request #2888 from aj-gh/ignored-packet-count
Add counter for ignored packets to recursor statistics.
bert hubert [Wed, 9 Dec 2015 06:45:40 +0000 (07:45 +0100)]
**BREAKING** dnsdist console communications control break: we now support 32 bit message lengths. Restart daemon for this to work.
bert hubert [Wed, 9 Dec 2015 06:44:33 +0000 (07:44 +0100)]
spruce up grepq() a little bit with answer count for "No Error" answers
Andreas Jakum [Fri, 13 Nov 2015 15:04:38 +0000 (16:04 +0100)]
Add counter for ignored packets to recursor statistics (+docs).
Turns out recursor can be kept rather busy dealing with packets that will not show up anywhere.
bert hubert [Tue, 8 Dec 2015 18:22:02 +0000 (19:22 +0100)]
Merge branch 'adp': better infrastructure for metering traffic, prettier grepq
Remi Gacogne [Tue, 8 Dec 2015 17:19:34 +0000 (18:19 +0100)]
Make the string parameter to testCrypto() optional.
The documentation does not mention it and I don't think it makes
sense to require one.
Document the fact that makeKey() does return setKey('plaintext')
without libsodium support.
Reported by Charles-Henri Bruyand.
bert hubert [Tue, 8 Dec 2015 15:52:18 +0000 (16:52 +0100)]
fix up bandwidth exceeded limits, move dnsheader (12 bytes) into ringbuffer, add it to grepq output, make that somewhat pretty, plus fix up TCP reporting to the response rings
Pieter Lexis [Tue, 8 Dec 2015 12:25:55 +0000 (13:25 +0100)]
Merge pull request #3007 from ndonegan/patch-1
remotebackend Documentation Update
bert hubert [Tue, 8 Dec 2015 10:05:23 +0000 (11:05 +0100)]
fix up dns ring measurements for BW and NXDOMAIN to not inflate rates erroneously
bert hubert [Tue, 8 Dec 2015 08:55:45 +0000 (09:55 +0100)]
make grepq look at the the n newest queries, not the n oldest queries
bert hubert [Mon, 7 Dec 2015 22:05:26 +0000 (23:05 +0100)]
implement grepq() for dnsdist
bert hubert [Mon, 7 Dec 2015 22:04:38 +0000 (23:04 +0100)]
trim some dependencies for dnsdistdist benefit
bert hubert [Mon, 7 Dec 2015 22:04:19 +0000 (23:04 +0100)]
make sure we insert query size on query ring too
Christian Hofstaedtler [Fri, 4 Dec 2015 20:27:36 +0000 (21:27 +0100)]
API: Reenable Recursor tests
And fix a memory/rapidjson issue.
If the data is correct is yet to be seen.
bert hubert [Mon, 7 Dec 2015 13:57:06 +0000 (14:57 +0100)]
Merge pull request #3005 from rgacogne/dnsdist-luajit
Add support for using LuaJIT in dnsdist
bert hubert [Mon, 7 Dec 2015 11:00:27 +0000 (12:00 +0100)]
reenable in-tree dnsdist building
Niall Donegan [Mon, 7 Dec 2015 10:48:25 +0000 (10:48 +0000)]
Update backend-remote.md
Niall Donegan [Mon, 7 Dec 2015 10:47:56 +0000 (10:47 +0000)]
Update backend-remote.md
Niall Donegan [Mon, 7 Dec 2015 10:42:41 +0000 (10:42 +0000)]
Update backend-remote.md
Niall Donegan [Mon, 7 Dec 2015 10:40:50 +0000 (10:40 +0000)]
Update backend-remote.md
Niall Donegan [Mon, 7 Dec 2015 10:38:58 +0000 (10:38 +0000)]
Documentation Update
Making it clearer that ZeroMQ backend uses the same JSON format as the pipe and unix backends.
Remi Gacogne [Mon, 7 Dec 2015 10:28:26 +0000 (11:28 +0100)]
Add support for using LuaJIT in dnsdist
LuaJIT support can be enabled with --with-luajit during configure.
bert hubert [Mon, 7 Dec 2015 09:44:52 +0000 (10:44 +0100)]
let topClients() default to top-10
bert hubert [Mon, 7 Dec 2015 09:34:42 +0000 (10:34 +0100)]
Merge pull request #2927 from rgacogne/dnsdist-ecs
add EDNS Client Subnet to dnsdist queries. And adds loads of tests, cleanups, improvements etc.
Peter van Dijk [Mon, 7 Dec 2015 08:51:17 +0000 (09:51 +0100)]
Merge pull request #2919 from zeha/api-dnsname-dot
API: dot correctness
Remi Gacogne [Fri, 4 Dec 2015 14:09:08 +0000 (15:09 +0100)]
Add more tests for dnsdist ECS support.
Add regression tests for rewriting the ECS value with
larger / smaller values.
Add one unit test for rewriting response.
Remi Gacogne [Thu, 3 Dec 2015 08:28:22 +0000 (09:28 +0100)]
Add EDNS Client Subnet to queries, unit tests and regression tests.
The main idea is to be able to add EDNS Client Subnet information
to queries to that the downstream servers know who the real client
is. This is easy if the query already has EDNS, since we just have
to add an ECS option to the existing pseudo-RR OPT. Note that if the
query has an existing ECS option, we just leave it as it is unless
setECSOverride has been set to true.
If the original query has no ENDS support, we can easily add the
pseudo-RR OPT with an ECS option, but we need to remove EDNS from
the response, otherwise the client might choke on it. This is not too
hard it the pseudo-RR is the last one, but otherwise removing it
could cause issue with name compression (offsets), therefore we
completely rewrite the response in that case.
This implementation tries hard not to parse the query, and not
to allocate too much objects to parse the response. The huge downside
is that we do not reuse as much parsing code as we probably could.
Unit tests have been added, they are not enabled unless
--enable-unit-tests is set.
Regression tests have been added in regression-tests.dnsdist.
Unit and regression tests are enabled in travis.
bert hubert [Mon, 7 Dec 2015 06:51:59 +0000 (07:51 +0100)]
implement getNameWithAddr() for downstreams for pretty log messages
bert hubert [Mon, 7 Dec 2015 06:51:24 +0000 (07:51 +0100)]
further rings speedup
bert hubert [Mon, 7 Dec 2015 06:40:04 +0000 (07:40 +0100)]
some ring statistics speedups
bert hubert [Sun, 6 Dec 2015 18:38:42 +0000 (19:38 +0100)]
log when adding a dynamic block
Peter van Dijk [Sun, 6 Dec 2015 15:07:57 +0000 (16:07 +0100)]
Merge pull request #2996 from zeha/jsoninterface
Rename setting json-interface to api
Christian Hofstaedtler [Fri, 4 Dec 2015 21:39:09 +0000 (22:39 +0100)]
API: Update and add more examples
Fixes #2511.
Christian Hofstaedtler [Fri, 4 Dec 2015 19:28:16 +0000 (20:28 +0100)]
API: dot correctness
From and to API consumers we'll now always require/send names (and
content) with dots. To the backend, we'll always require/send without
dots. Some API tests now check the data written to the sqlite DB, too.
Incoming names are now checked against a restricted list of chars,
fixing #1437. The double dot case is taken care of by DNSName (and
we'll no longer report an ISE if DNSName parsing fails - we make
sure to parse all names in a try/except).
Cleanup leftovers from pre-DNSName times.
Turn auth api tests back on in travis.
Christian Hofstaedtler [Fri, 4 Dec 2015 19:28:46 +0000 (20:28 +0100)]
Add PacketCache::purgeExact
Christian Hofstaedtler [Fri, 4 Dec 2015 19:28:43 +0000 (20:28 +0100)]
API: copy-edit the spec
Remove links to old documentation, fix some wordings.
Christian Hofstaedtler [Fri, 4 Dec 2015 19:28:37 +0000 (20:28 +0100)]
API docs: fix section headers
bert hubert [Sat, 5 Dec 2015 22:10:13 +0000 (23:10 +0100)]
when installing new overlapping dynamic block, record old number of blocks and keep that. More pleasing to the eye.
bert hubert [Sat, 5 Dec 2015 22:09:55 +0000 (23:09 +0100)]
show some more block/drop kinds in webpage
bert hubert [Sat, 5 Dec 2015 21:25:49 +0000 (22:25 +0100)]
also show dynblock number of blocks in showDynBlocks()
bert hubert [Sat, 5 Dec 2015 21:23:06 +0000 (22:23 +0100)]
revamp dynamic block syntax, you now insert blocks per x seconds, and we display remaining seconds count, plus number of things blocked
bert hubert [Sat, 5 Dec 2015 21:22:32 +0000 (22:22 +0100)]
netmask src rule did not show itself correctly in dnsdist output
bert hubert [Sat, 5 Dec 2015 19:54:43 +0000 (20:54 +0100)]
resolve conflict, add reporting of acl/locals
bert hubert [Sat, 5 Dec 2015 19:51:27 +0000 (20:51 +0100)]
Merge branch 'master' of github.com:PowerDNS/pdns
bert hubert [Sat, 5 Dec 2015 19:50:25 +0000 (20:50 +0100)]
fill out acl and local to index.html
bert hubert [Sat, 5 Dec 2015 19:50:03 +0000 (20:50 +0100)]
report acl and local addresses over web-api
bert hubert [Sat, 5 Dec 2015 19:49:48 +0000 (20:49 +0100)]
Merge pull request #2999 from zeha/dnsdistrad
Improve dnsdist html a tiny bit more
Christian Hofstaedtler [Sat, 5 Dec 2015 19:45:52 +0000 (19:45 +0000)]
Improve dnsdist html a tiny bit more
bert hubert [Sat, 5 Dec 2015 15:28:24 +0000 (16:28 +0100)]
make webserver display acl-drops - vital debugging hint. Plus GPL reminder.
bert hubert [Sat, 5 Dec 2015 15:23:30 +0000 (16:23 +0100)]
cleanup dnsdist javascript & html, plus make it look a lot prettier
bert hubert [Sat, 5 Dec 2015 12:38:29 +0000 (13:38 +0100)]
Merge pull request #2998 from ahupowerdns/various
adds topBandwidth, starts process of abstracting out operations on rings
bert hubert [Sat, 5 Dec 2015 10:18:35 +0000 (11:18 +0100)]
fix up dnsdist javascript to the new /api/v1/ URLs
Christian Hofstaedtler [Fri, 4 Dec 2015 20:06:56 +0000 (21:06 +0100)]
Rename setting json-interface to api
Plus:
* Mark settings as available since 4.0, as before they were
called experimental-...
* Sync setting descriptions between auth and recursor.