Commits · nightly · Knot projects / Knot Resolver

Aug 27, 2025
- Merge !1736 : ci: python:check: setuptools installation fix · cc40fdb9
  Vladimír Čunát authored Aug 27, 2025
  
  cc40fdb9
- .gitlab-ci.yml: python:check: also install build deps · 351b70ac
  Aleš Mrázek authored Aug 27, 2025
  
  351b70ac
- pyproject.toml: added build dependencies group · c0f8d4a9
  Aleš Mrázek authored Aug 27, 2025
  
  c0f8d4a9
- Merge !1734 : lint: clang-tidy fixes · bb65e987
  Vladimír Čunát authored Aug 27, 2025
  
  bb65e987
- daemon/io: catch fdopen fail, close fd and default back to stdout · bd9e789e
  Frantisek Tobias authored Aug 25, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  bd9e789e
- lint: lib/rules/local-addr.c: ignore false-positive clank-tidy clang-analyzer-unix.Stream error · 026f37bf
  Aleš Mrázek authored Aug 25, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  026f37bf
- lint: daemon/network.c: replaced NULL argument for 'setsockopt' · b3d18ffe
  Aleš Mrázek authored Aug 22, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  The 4th argument to 'setsockopt' should not be NULL, clang-tidy clang-analyzer-unix.StdCLibraryFunctions error.
  b3d18ffe
- lint: daemon/io.c: avoided Null pointer for output stream · ad364cbe
  Aleš Mrázek authored Aug 22, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  If it is not checked, the clang-tidy clang-analyzer-core::NonNullParamChecker error will be raised.
  ad364cbe
- lint: tidy: fixed cert-err33-c errors · 743531d9
  Aleš Mrázek authored Aug 20, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  743531d9
- lint: tidy: fixed cert-int09-c errors · 160c606f
  Aleš Mrázek authored Aug 20, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  160c606f
- .clang-tidy: disabled readability-math-missing-parentheses · c9e1943e
  Aleš Mrázek authored Aug 20, 2025 and Vladimír Čunát committed Aug 27, 2025
  
  c9e1943e
Aug 26, 2025

Merge branch 'logging-notice' into 'master' · 86353f95
Aleš Mrázek authored Aug 26, 2025
```
manager: logging: added NOTICE level

See merge request !1735
```
86353f95

manager/logging.py: added NOTICE level · fe9baf6d

Aleš Mrázek authored Aug 26, 2025

For now, only the level has been added, not the logger. To avoid confusion in the mapping, where notice(config) was mapped to warning (python).

fe9baf6d

Aug 01, 2025
- Merge !1729 : tests/integration/deckard: pull updates · 9edab29b
  Vladimír Čunát authored Aug 01, 2025
  
  9edab29b
- tests/integration/deckard: pull updates · f1f49a70
  Vladimír Čunát authored Aug 01, 2025
  
  - 224: hack compat with python >= 3.11 + libfaketime - 225: val_nsec3_cnametocnamewctoposwc.rpl: reinstate NS in an answer This one finally fixes deckard in CI.
  f1f49a70
Jul 29, 2025
- Merge !1728 : add NEWS for the last merge request · 86f50a6e
  Vladimír Čunát authored Jul 29, 2025
  
  86f50a6e
- add NEWS for the last merge request · cbd6aa35
  Vladimír Čunát authored Jul 29, 2025
  
  cbd6aa35
- Merge !1727 : datamodel/types: reduced validation strictness for DomainName · 4af1a676
  Vladimír Čunát authored Jul 29, 2025
  
  Fixes #934
  4af1a676
- datamodel/types: reduced validation strictness for DomainName · c0ebebba
  Aleš Mrázek authored Jul 29, 2025 and Vladimír Čunát committed Jul 29, 2025
  
  c0ebebba
Jul 18, 2025
- Merge !1725 : ci: minor adjustments · 4d5414b4
  Vladimír Čunát authored Jul 18, 2025
  
  4d5414b4
Jul 17, 2025
- .gitlab-ci.yml: renamed docs:pages to docs:latest · 5a3d2357
  Aleš Mrázek authored Jul 17, 2025
  
  5a3d2357
- .gitlab-ci.yml: docs:pages: run job automatically and only for master · 362b1db3
  Aleš Mrázek authored Jul 17, 2025
  
  This will help to keep the /latest docs up to date.
  362b1db3
- .gitlab-ci.yml: removed OBS · f7732253
  Aleš Mrázek authored Jul 17, 2025
  
  We do not use OBS for version 6.
  f7732253
- Merge branch 'release-6.0.15' into 'master' · f3b8ad08
  Aleš Mrázek authored Jul 17, 2025
  
  Release 6.0.15 See merge request !1722
  View commits for tag v6.0.15 v6.0.15
  
  f3b8ad08
- nit: datamodel: fix formatting · c5be4db5
  Aleš Mrázek authored Jul 17, 2025
  
  c5be4db5
- release 6.0.15 · ea0970da
  Aleš Mrázek authored Jul 17, 2025
  
  ea0970da
- Merge !1718 : lib/dnssec: drop incorrect `requirement` and comment · 32671c6f
  Vladimír Čunát authored Jul 17, 2025
  
  32671c6f
- lib/dnssec: drop incorrect `requirement` and comment · 84bede11
  Vladimír Čunát authored Jun 04, 2025
  
  I don't think this can happen on correct records, due to the way that the root zone is. But we've seen this assertion happen in real life, and attackers might be able to misuse it to cause crashes.
  84bede11
- Merge !1717 : lib/cache pkt_renew(): don't keep parts of packet header · dc341910
  Vladimír Čunát authored Jul 17, 2025
  
  dc341910
- lib/cache pkt_renew(): don't keep parts of packet header · d5e0b5be
  Vladimír Čunát authored Jun 13, 2025
  
  No idea why it's been done in this weird way since forever.
  d5e0b5be
- Merge !1715 : NO_CACHE flag: fix and tweak its behavior · 214e46d2
  Vladimír Čunát authored Jul 17, 2025
  
  214e46d2
Jul 16, 2025

lib/cache: tweak the meaning of .flags.NO_CACHE · 73e0cbbb

Vladimír Čunát authored Jul 07, 2025

This way it should better match docs for the flag,
and I think it makes a bit more sense now,
at least for the use cases we have in our code now.

Also add NEWS for these two commits.

73e0cbbb

lib/cache: simplify logic for qry->flags.CACHE_TRIED · 726a3bdc

Vladimír Čunát authored Jul 07, 2025

As a side effect, this solves an issue which could be seen
during resolver startup where the trust anchor update would fail.
[taupd ] active refresh failed for . with rcode: 2

The cause is that for queries started with .flags.NO_CACHE,
we'd skip the section setting .flags.CACHE_TRIED, and consequently
kr_rule_local_data_answer() would get run more often than expected.

The new logic should be also much simpler to follow.
We always apply cache (and policy) just once per kr_query.

726a3bdc

Merge !1716 : daemon: add configurability for low source port check · cf40b6b8
Vladimír Čunát authored Jul 16, 2025

cf40b6b8

daemon: add configurability for low source port check · 44ad4214

Vladimír Čunát authored Jul 14, 2025

In commit c0482d5a this check was added.  Now one can e.g. disable by
> require('ffi').C.the_network.min_udp_source_port = 0
(typically used inside YAML config at /lua/script or /lua/script-file)

44ad4214

Merge !1714: datamodel: improve file permission check · 2fb119ba
Vladimír Čunát authored Jul 16, 2025
```
Fixes #933
```
2fb119ba
NEWS update · 139ca879
Aleš Mrázek authored Jul 08, 2025 and Vladimír Čunát committed Jul 16, 2025

139ca879
kresctl: commands: changed validation strictness default to false · 0fc0253e
Aleš Mrázek authored Jul 07, 2025 and Vladimír Čunát committed Jul 16, 2025

0fc0253e

datamodel/types/files.py: improve file permission check · da67d3b4

Vladimír Čunát authored Jul 16, 2025

In particular with ACLs this could have prevented resolver starting
even if the permissions were OK. os.access() should be accurate
at least when running from manager (not from kresctl).

da67d3b4

Merge !1702 : daemon/defer: fix sampling of timed events · 4927e66c
Vladimír Čunát authored Jul 16, 2025

4927e66c

Admin message