modules/daf,renumber: fixed the modules and added tests
This fixes most of the rules in DAF that were broken in 2.0 and adds tests. It also allows policy filter to evaluate policies in the checkout layer, before the subrequest is sent to authoritative. This is used primarily for negotiating features between resolver and authoritatives, or disabling transports.
The policy filter can now match on:
- NS suffix - to apply policies on any zone on given nameservers
- Query type
New actions:
- REFUSE - block query with an RCODE=REFUSED, fixes #337 (closed)
The DAF can now toggle features between resolver and authoritatives.
fixes #322 (closed)
cc @anb
Merge request reports
Activity
added 1 commit
- e52efad9 - http: allow loading custom endpoints to http
Depends on a commit from https://gitlab.labs.nic.cz/knot/knot-resolver/merge_requests/527 to retrieve the last processed query, so I added it to this PR as well.
added 5 commits
- 46dee271 - http: allow loading custom endpoints to http
- c6b21f97 - lib/utils: removed obsoleted functions
- e645b93d - daemon/worker: move checkout layer before connect, catch checkout errors
- 9ecf5acf - lib/resolve: randomize qname in checkout layer when secret changes
- 9ce31390 - modules/daf,renumber: fixed the modules and added tests
Toggle commit listhttp.lua
DownloadPut
data
in the first slot, for people who do not care MIME too much, and line up with the order later for the data callbackdata, err, set_mime, set_ttl = data(h, stream)
?Also, the doc about endpoint is outdated.
Edited by Anbang WenThis is a cherry-pick from https://gitlab.labs.nic.cz/knot/knot-resolver/merge_requests/527 because I need
request:last()
, see that PR for more details.
- Resolved by Marek Vavrusa
added 1 commit
- 06cfd924 - modules/daf: allow multiple argument matching in filter
Related, to be considered before merge: #217 (closed) #205 (closed)
added 1 commit
- 4bf11887 - daf: bugfix for rule deletion, hint for duplicated rule
Replaced by !716 (merged) which does not contain changes in cache.