W.C.A. Wijngaards
cccf5e73c0
- Fixup compile without cachedb.
2024-04-10 11:33:52 +02:00
W.C.A. Wijngaards
d98c7b9ae3
- Implement cachedb-check-when-serve-expired: yes option, default
...
is enabled. When serve expired is enabled with cachedb, it first
checks cachedb before serving the expired response.
2024-04-10 11:21:28 +02:00
Yorgos Thessalonikefs
fb4a7d65d7
- Fix #369 : dnstap showing extra responses; for client responses
...
right from the cache when replying with expired data or
prefetching.
2024-04-03 15:18:13 +02:00
W.C.A. Wijngaards
6d1e61173b
- Fix #1034 : DoT forward-zone via unbound-control.
2024-03-28 09:58:03 +01:00
W.C.A. Wijngaards
6f82b5be4a
- Fix that the server does not chown the pidfile.
2024-03-27 14:52:25 +01:00
W.C.A. Wijngaards
192f1b0e2b
- Fix that when the server truncates the pidfile, it does not follow
...
symbolic links.
2024-03-27 14:07:54 +01:00
W.C.A. Wijngaards
2993437eaa
- Fix that addrinfo is not kept around but copied and freed, so that
...
log-destaddr uses a copy of the information, much like NSD does.
2024-03-15 13:39:49 +01:00
W.C.A. Wijngaards
ec0b510f1c
- Fix for #1022 : Fix ede prohibited in access control refused answers.
2024-03-05 13:39:29 +01:00
Willem Toorop
e1229e375f
Mention REFUSED has the TC bit set with unmatched allow_cookie acl in the manpage ( #1010 )
...
* Mention REFUSED with TC with unmatched allow_cookie acl in manpage
Also moved the part about bypassing ip-ratelimit to the ip-ratelimit
description as it will be bypassed with a valid DNS-Cookie regardless of the
allow_cookie acl.
* Apply suggestions from code review
* Update doc/unbound.conf.5.in
* DNS-Cookies should bypass ip-ratelimit setting
2024-02-20 15:29:34 +01:00
dyunwei
eb7eb5ce68
Fix NLnetLabs#981: dump_cache truncates large records.
2024-01-09 14:17:31 +08:00
W.C.A. Wijngaards
b9b488b6d3
- Remove unneeded newlines and improve indentation in remote control
...
code.
2024-01-04 17:06:15 +01:00
k-akashi
4b9cd8e81d
Add DoH and DoT to dnstap message
2023-12-27 07:26:21 +09:00
W.C.A. Wijngaards
3d1bc143af
- Fix #969 : [FR] distinguish Do53, DoT and DoH in the logs.
2023-12-05 10:05:51 +01:00
Wouter Wijngaards
c4e0354876
Merge pull request #971 from dukeartem/master
...
fix 'WARNING: Message has 41 extra bytes at end'
2023-12-05 09:09:23 +01:00
Artem
389e820878
fix 'WARNING: Message has 41 extra bytes at end'
2023-12-05 09:43:15 +03:00
W.C.A. Wijngaards
35d0a8a843
- Fix to print detailed errors when an SSL IO routine fails via
...
SSL_get_error.
2023-10-19 11:17:32 +02:00
George Thessalonikefs
07149f576a
- Better fix for infinite loop when reading multiple lines of input on
...
a broken remote control socket, by treating a zero byte line the
same as transmission end. Addesses #947 and #948 .
2023-10-13 14:58:16 +02:00
Wouter Wijngaards
5c6c57ed89
Merge pull request #944 from NLnetLabs/disable-edns-do
...
Disable EDNS DO
2023-10-12 14:04:29 +02:00
George Thessalonikefs
516f90abdb
- Fix infinite loop when reading multiple lines of input on a broken
...
remote control socket. Addesses #947 and #948 .
2023-10-10 15:17:48 +02:00
W.C.A. Wijngaards
39df4f0923
- disable-edns-do, queriers receive no EDNS in response if the
...
disable-edns-do option is enabled and they set the DO flag. And unit test
for that.
2023-10-04 13:54:05 +02:00
George Thessalonikefs
13d4504dfc
- Merge #881 : Generalise the proxy protocol code.
2023-10-03 14:51:50 +02:00
George Thessalonikefs
bab5ad623c
- For #762 : Introduce stat counters for downstream DNS Cookies per
...
thread and total: num.queries_cookie_valid, num.queries_cookie_client,
num.queries.cookie_invalid.
2023-08-08 15:19:56 +02:00
George Thessalonikefs
49e4258102
- For #762 : Interaction between DNS Cookies and source IP ratelimiting
...
by allowing Cookies to bypass the ratelimit, but still allowing
ratelimit to valid DNS Cookie clients via the new
ip-ratelimit-cookie option.
2023-08-08 10:14:03 +02:00
George Thessalonikefs
4ccb613396
Merge branch 'master' into features/downstream-cookies
2023-08-05 20:37:48 +02:00
George Thessalonikefs
fbc0256825
- For #762 : Cleaner manpage text and uniform use of the term DNS
...
Cookies.
2023-08-05 20:00:37 +02:00
George Thessalonikefs
b6e2f4dbf8
- For #762 : Formatting.
2023-08-04 19:03:23 +02:00
George Thessalonikefs
d4145772b5
- Move a cache reply callback in worker.c closer to the cache reply
...
generation.
2023-08-02 12:33:52 +02:00
George Thessalonikefs
2cc9563cf8
- Fix to use the now cached EDE, if any, for CD_bit queries.
2023-08-01 15:23:25 +02:00
George Thessalonikefs
6819c1e444
- Merge #759 from Tom Carpay: Add EDE (RFC8914) caching.
2023-07-30 11:48:04 +02:00
George Thessalonikefs
50ea4a1072
Address review comments for #759 :
...
- Decrease allocations for "" EDE strings when loading the cachedump.
- Check for existence of EDE code before attaching.
2023-07-28 12:56:13 +02:00
George Thessalonikefs
5b7faca7db
For #909 : Numeric truncation when parsing TYPEXX and CLASSXX representation
...
- Fix return values.
- Formatting nits.
2023-07-20 11:42:05 +02:00
headshog
0b131d5a31
parse sldns_get_rr_class_by_name and sldns_get_rr_type_by_name return value 0
2023-07-19 18:09:03 +03:00
George Thessalonikefs
90b434c260
- For #759 : add support for cached EDEs to cachedump
2023-07-19 17:06:10 +02:00
George Thessalonikefs
f5a2a58ce3
Review for #759 :
...
- Fix SEGFAULT in load_cache control command.
- Change reason_bogus_str to an explicit NULL-terminated string.
- Fix potential memory leak when discarding a message for referrals and
0 TTL answers.
- Fix reason_bogus initialization in localzone answers.
- reply_info creation in validator is always regional.
2023-07-17 17:26:31 +02:00
George Thessalonikefs
15b8d8b96a
Merge branch 'master' into features/ede-caching
2023-07-13 11:25:59 +02:00
George Thessalonikefs
a952ac17be
Merge branch 'tilan7663-subnet_cache_prefetch' into subnet_cache_prefetch
2023-07-07 16:50:58 +02:00
George Thessalonikefs
40e47bf767
- For #664 : easier code flow for subnetcache prefetching.
...
- For #664 : add testcase.
2023-07-06 22:22:21 +02:00
George Thessalonikefs
41dac805f5
- Merge #892 : Add cachedb hit stat. Introduces 'num.query.cachedb' as
...
a new statistical counter.
2023-06-27 12:46:26 +02:00
George Thessalonikefs
0f1ea7e490
- Properly handle all return values of worker_check_request during
...
early EDE code.
- Do not check the incoming request more than once.
2023-06-14 11:40:59 +02:00
Yorgos Thessalonikefs
9412b9c2ca
Review comment for daemon/stats.c
...
Co-authored-by: Wouter Wijngaards <wcawijngaards@users.noreply.github.com>
2023-06-02 12:39:23 +02:00
George Thessalonikefs
4f52be4db9
- Introduce num.query.cachedb to track cache hits for the external cache.
2023-05-30 17:49:50 +02:00
W.C.A. Wijngaards
2a2598dbf2
- Fix #888 : [FR] Use kernel timestamps for dnstap.
2023-05-16 08:50:38 +02:00
George Thessalonikefs
20184483df
Merge branch 'eqvinox-nat64'
2023-05-01 18:24:05 +02:00
W.C.A. Wijngaards
70c2b587fc
- Fix RPZ IP responses with trigger rpz-drop on cache entries, that
...
they are dropped.
2023-05-01 09:26:17 +02:00
George Thessalonikefs
e1ec3cf893
Merge branch 'nat64' of https://github.com/eqvinox/unbound into eqvinox-nat64
2023-04-26 15:14:39 +02:00
Vadim Fedorenko
263096d1f6
stats: add query max wait time metric
...
Add new statistic value to know the size of the queue in microseconds.
Signed-off-by: Vadim Fedorenko <vadfed@meta.com>
2023-04-26 03:27:25 -07:00
Vadim Fedorenko
e577ab105e
stats: add counter for timed out queries
...
Add counter `num_queries_timed_out` meaning queries that were sitting in the
socket queue and waiting to being processed too long. There is no reason
to process such queries, so let's drop it in the very beginning of the
pipeline.
Signed-off-by: Vadim Fedorenko <vadfed@meta.com>
2023-04-26 03:27:25 -07:00
Vadim Fedorenko
2e6ddd6032
netevent: parse and store rcv timestamp from sock
...
Add special field in comm_point to store the software receive timestamp
for every particular UDP packet. Aux data parser is updated to read
values and the whole callback is switched to use recvmsg form.
Signed-off-by: Vadim Fedorenko <vadfed@meta.com>
2023-04-26 03:26:51 -07:00
Vadim Fedorenko
a197aac2f6
timeval_func: move all timeval manipulation to separate file
...
There are several definitions of the same functions manipulating timeval
structures. Let's move them to separate file and arrange the code
preperly.
Signed-off-by: Vadim Fedorenko <vadfed@meta.com>
2023-04-26 03:23:41 -07:00
Vadim Fedorenko
648ad4db6f
Linting change.
...
Remove config parser/lexer code as it's rebuilded every time but can
break adding new config options.
Also clean up the code base to avoid mixing actual code changes and lint
issues.
Signed-off-by: Vadim Fedorenko <vadfed@meta.com>
2023-04-25 17:05:00 -07:00