Commits · ba6f98c3d830a25db3d3cdb73ea62020438f4c3f · Knot projects / Knot Resolver

Mar 06, 2019

cache: remove unsupported prune() operation from API · ba6f98c3

Petr Špaček authored 6 years ago

Cache cleaning needs to be done using separate mechanism
because cleaning it from worker process does not fit well into our
processing model. It is going to be a separate daemon.

Verified

ba6f98c3

Mar 05, 2019
- Merge !773 : misc. ubsan fixes · 3615852c
  Vladimír Čunát authored 6 years ago
  
  3615852c
- lib/utils kr_memreserve(): fix a ubsan nitpick · 95da3e07
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  95da3e07
- lib/generic/lru: fix alignment of contained values · 3e9f5904
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  3e9f5904
- lib/generic/lru: fix alignment of struct lru · 0b3cecb5
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  0b3cecb5
- contrib/murmurhash3: fix bad type punning · cd571a9f
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  cd571a9f
- Merge !781 : fix flushing of messages to logs in some cases · 65a04283
  Vladimír Čunát authored 6 years ago
  
  65a04283
- treewide: fix flushing of messages to logs in some cases · 09fac26c
  Vladimír Čunát authored 6 years ago
```
... by setting FILE* properties and replace the explicit flushes.
Explicit flushing couldn't be well done e.g. for lua's error() function.
In particular, we had problems with journald not getting logs timely.
```
  Verified
  
  09fac26c
- Merge branch 'rpz-errors' into 'master' · 71e87558
  Tomas Krizek authored 6 years ago
```
modules/policy.RPZ: log libzonefile errors as well

See merge request !780
```
  71e87558
- modules/policy.RPZ: log libzonefile errors as well · 165e8a88
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  165e8a88
Feb 28, 2019
- Merge branch 'stdin-null' into 'master' · 5aca5ced
  Petr Špaček authored 6 years ago
```
lua event.socket(): remove a hacky workaround

See merge request !778
```
  5aca5ced
- tests: rename forgotten worker.test.lua · 95a326fc
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  95a326fc
- lua event.socket(): disable a hacky workaround · 6b3dbd39
  Vladimír Čunát authored 6 years ago
```
It should be fixed in quite old libuv versions already:
https://github.com/libuv/libuv/issues/883
```
  Verified
  
  6b3dbd39
- Merge branch 'docker-certs' into 'master' · cd9d84d4
  Tomas Krizek authored 6 years ago
```
Add ca-certificates to runtime on Dockerfile

See merge request !779
```
  cd9d84d4
Feb 27, 2019
- Add ca-certificates to runtime on Dockerfile · 0be6f33e
  Jayson Reis authored 6 years ago
  
  Unverified
  
  0be6f33e
Feb 25, 2019
- Merge branch 'addr-split-port' into 'master' · 70894c94
  Petr Špaček authored 6 years ago
```
Splitting port from IP address

See merge request !776
```
  70894c94
- modules/policy: support '#' for separating port numbers · 7bd892c9
  Vladimír Čunát authored 6 years ago
```
and deduplicate the parsing logic.
```
  Verified
  
  7bd892c9
- lib/utils kr_straddr_split(): simplify the API · 5ed0b3a5
  Vladimír Čunát authored 6 years ago
```
After 83539eb7 it was a bit complicated.  It allowed to save a memcpy
of the address in case no port was specified, but we only need to do the
split when changing configuration, so it was overzealous optimization.
```
  Verified
  
  5ed0b3a5
- Merge branch 'tls-sni' into 'master' · c1496370
  Petr Špaček authored 6 years ago
```
policy.TLS_FORWARD: send SNI on wire if configured

See merge request !762
```
  c1496370
- daemon: improve readability of TLS parameter handling · 9a59a4d9
  Petr Špaček authored 6 years ago
  
  Verified
  
  9a59a4d9
- daemon: split TLS authentication into smaller functions · e7d8066d
  Petr Špaček authored 6 years ago
  
  Verified
  
  e7d8066d
- nitpicks · 6bd23d70
  Petr Špaček authored 6 years ago
  
  Verified
  
  6bd23d70
Feb 22, 2019
- daemon: rework handling of TLS authentication params · 81b1450e
  Vladimír Čunát authored 6 years ago and Petr Špaček committed 6 years ago
```
It's mainly about the way we parse and validate them.

Almost all of the parts of validation that were being done
in modules/policy/policy.lua and daemon/tls.c got moved
to daemon/bindings/net.c, so it's easier to follow that.
Also more checks are being done now, e.g. contents of .pin_sha256
and .hostname strings.
```
  Verified
  
  81b1450e
- policy.TLS_FORWARD: send SNI on wire if configured · a4284580
  Vladimír Čunát authored 6 years ago and Petr Špaček committed 6 years ago
```
In https world it's standard to do that, and it's relied on.
Real-life example: 8.8.8.8#853 over TLSv1.3 won't send a certificate
if we don't send SNI (no idea why; also they do send it with TLSv1.2).

As a consequence, we no longer allow multiple hostnames per
address-port tuple, but that didn't seem useful.
```
  Verified
  
  a4284580
- Merge !774 : various compiler warning fixes · 14c9aba9
  Vladimír Čunát authored 6 years ago
  
  14c9aba9
- daemon/network: avoid unused functions and variables · eae04d89
  Tomas Krizek authored 6 years ago and Vladimír Čunát committed 6 years ago
```
Make sure gcc doesn't produce unused func/var warnings when using
optional compilation. This fixes three such issues on CentOS 7.
```
  Verified
  
  eae04d89
- daemon/engine: avoid unused variable with DNDEBUG · e2d602d3
  Tomas Krizek authored 6 years ago and Vladimír Čunát committed 6 years ago
  
  Verified
  
  e2d602d3
- pytests/tlsproxy: fix C warnings · e7f9603d
  Tomas Krizek authored 6 years ago and Vladimír Čunát committed 6 years ago
  
  Verified
  
  e7f9603d
Feb 21, 2019
- nitpick fixes for clang-tidy · b9b97d47
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  b9b97d47
- test nitpicks: fix -Wpedantic issues · ac1b73be
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  ac1b73be
Feb 18, 2019
- Merge branch 'doc-rename-flowcharts' into 'master' · 970a63fa
  Tomas Krizek authored 6 years ago
```
doc/flowcharts: use underscores instead of spaces in filename

See merge request !772
```
  970a63fa
- doc/flowcharts: use underscores instead of spaces in filename · 4f7f3181
  Tomas Krizek authored 6 years ago
  
  Verified
  
  4f7f3181
Feb 14, 2019
- Merge branch 'doc-flowcharts' into 'master' · 217a46b3
  Petr Špaček authored 6 years ago
```
doc: attempt on documenting of some kresd algorithms

See merge request !731
```
  217a46b3
- doc/flowcharts: minor additions and restructurization · 151ab19a
  Grigorii Demidov authored 6 years ago and Petr Špaček committed 6 years ago
  
  151ab19a
- doc: flowcharts, minor actualization of udp task.dia · 0255da00
  Grigorii Demidov authored 6 years ago and Petr Špaček committed 6 years ago
  
  0255da00
- doc: outgoing tcp query flowchart · 9e859498
  Grigorii Demidov authored 6 years ago and Petr Špaček committed 6 years ago
  
  9e859498
- doc: attempt on visualizaion of incoming udp query processing · 77dabaf5
  Grigorii Demidov authored 6 years ago and Petr Špaček committed 6 years ago
  
  77dabaf5
Feb 11, 2019
- Merge branch 'nitpicks-lua' into 'master' · 039504d4
  Petr Špaček authored 6 years ago
```
smaller changes, mainly around lua error handling

See merge request !768
```
  039504d4
- daemon/bindings: nitpicks fixed during MR review · f283f729
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  f283f729
- treewide: avoid lua_tonumber where integer is expected · 5b73673a
  Vladimír Čunát authored 6 years ago
  
  Verified
  
  5b73673a

Admin message

Admin message