interesting
/
getdns
mirror of https://github.com/getdnsapi/getdns.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,496 Commits 58 Branches 69 Tags 14 MiB
Commit Graph

1841 Commits

Author SHA1 Message Date
Willem Toorop 516570e1f8 Include stubby (building) in tpkg testing 2017-08-22 12:16:48 +02:00
Willem Toorop 6024f9d72e Merge branch 'develop' into devel/without-stubby 2017-08-22 11:27:11 +02:00
Willem Toorop e57011a3ea Compile without stubby by default 
And with stubby from repo (as submodule) when --with-stubby is specified
 2017-08-22 11:25:47 +02:00
Sara Dickinson 33ff6a95ac Fix issue on macOX 10.10 where TCP fast open is detected but not implemented causing TCP to fail. The fix allows fallback to regular TCP in this case and is also more robust for cases where connectx() fails for some reason. 2017-08-18 17:59:49 +01:00
wtoorop f03ac9ab7b Merge pull request #324 from saradickinson/docs/fix_set_from_os 
Remove mention of using the second bit in set_from_os to init OpenSSL…
 2017-08-18 15:56:13 +02:00
wtoorop da7083f55a Merge pull request #316 from wtoorop/devel/roadblocks_and_valchains 
Devel/roadblocks and valchains
 2017-08-18 15:55:56 +02:00
wtoorop 5701fb99c9 Merge pull request #321 from neilcook/stub_fixes 
Stub fixes
 2017-08-18 15:53:23 +02:00
wtoorop ae0dd866aa Merge pull request #313 from MelindaShore/develop 
Modified Dockerfile to check out getdns master
 2017-08-18 15:52:49 +02:00
Sara Dickinson 05016e3a3a Remove mention of using the second bit in set_from_os to init OpenSSL as this no longer applies 2017-08-04 14:17:50 +01:00
Neil Cook 1555c432f5 Fix array bounds bug in upstream_select 2017-07-31 22:51:24 +01:00
Neil Cook 2d7d6581b4 Ensure netreq->fd is set to -1 after close()/closesocket() 
If netreq->fd is not set to -1, then multiple functions close the
same socket. This causes major issues in multithread code where the
socket must not be closed multiple times as it may be owned by a
different thread.
 2017-07-31 22:48:09 +01:00
Willem Toorop e11dc92df1 Hopefully the last warning 2017-07-15 18:38:31 +02:00
Willem Toorop 84430e02cd Actually working roadblocks and getting validation chains 2017-07-15 17:48:24 +02:00
Willem Toorop bceb6c8c87 Resubmit netreqs when roadblocks need to be avoided 2017-07-15 11:14:35 +02:00
Willem Toorop c5acb3769b Exit with error when answers were bogus 2017-07-06 21:28:34 +02:00
Willem Toorop d589adf120 Use -V option in transport tests 2017-07-06 12:19:14 +02:00
Willem Toorop d402603f4a Merge branch 'develop' of github.com:getdnsapi/getdns into develop 2017-07-06 12:13:30 +02:00
Willem Toorop 4478745955 No output from getdns_query to stdout except the result (unless -V is used) 
Resolves issue #315
 2017-07-06 12:08:09 +02:00
Sara Dickinson 28c41c3495 Move the SYNC/ASYNC response text to after the dict so the dict is the first thing output and can be parsed without stripping this text (request from user). 2017-07-06 12:03:35 +02:00
Willem Toorop 44065bead8 Initial windows work 2017-07-06 00:26:21 +02:00
Willem Toorop 7151e6fd44 Deal with leaking timeouts (between sync and async loop) 2017-07-01 01:01:17 +02:00
Willem Toorop 11138ff678 Also register application set trust anchors 2017-07-01 01:00:40 +02:00
Willem Toorop 59ff5e8178 0 terminate xml files 2017-07-01 00:45:09 +02:00
Willem Toorop 2b20f35e0e Write fetched trust anchor 2017-07-01 00:05:20 +02:00
Willem Toorop 8ec1f8eae9 Happy Eyeballs 2017-06-30 22:51:03 +02:00
Willem Toorop f9bdedbf84 Reconnect on pipelining failure 2017-06-30 22:00:14 +02:00
Willem Toorop 4a5f03ebbe Anticipate surplus reads 2017-06-30 21:14:02 +02:00
Willem Toorop 77d13f885e unused function warning 2017-06-30 11:08:20 +02:00
Willem Toorop 61561dd527 Fix warnings & dependencies 2017-06-30 10:45:51 +02:00
Willem Toorop 3e6c5775ff Fetch and equip context with trust-anchors 2017-06-30 10:18:07 +02:00
Willem Toorop 742588dd6f Merge branch 'develop' into hackathon/zeroconf-dnssec 2017-06-29 11:09:30 +02:00
Melinda Shore 146638ab94 Modified Dockerfile to check out getdns master and to use unbound-anchor to install dnssec trust root 2017-06-28 22:11:30 -08:00
wtoorop 45884a2dd7 Merge pull request #310 from getdnsapi/features/getdns_context_set_logfunc 
A configurable log function
 2017-06-28 22:55:45 +02:00
Willem Toorop 91ccbcd7df Typo? 2017-06-28 21:45:54 +02:00
wtoorop 280e72a0fe Merge pull request #311 from MelindaShore/develop 
Basic Dockerfile for stubby.
 2017-06-28 21:28:31 +02:00
Willem Toorop 19479d4089 Merge branch 'develop' into features/getdns_context_set_logfunc 2017-06-28 21:22:55 +02:00
Willem Toorop 264135e799 Reintroduct timestamps and replace GETDNS_DAEMON: with STUBBY: 2017-06-28 21:09:40 +02:00
Willem Toorop 8235250fb6 Rename SYSTEM_DAEMON in LOG_UPSTREAM_STATS 2017-06-28 20:57:53 +02:00
Willem Toorop fb267938c3 Start with fetching root-anchors remotely 
Also lays the foundation for looking up upstreams by name and DANE authentication of upstreams.
 2017-06-28 20:35:30 +02:00
Sara Dickinson 55acf6662c Fix for outputting the address string in the DAEMON log 2017-06-28 17:58:38 +01:00
Willem Toorop 195f4c59c8 Fix for the constants declaration issue 2017-06-27 07:49:01 +02:00
Melinda Shore b0c55d540f Basic Dockerfile for stubby. 2017-06-26 17:17:16 -08:00
Willem Toorop 04e554086a A configurable log function 
Currently used only for DAEMON_DEBUG
 2017-06-27 00:23:22 +02:00
Willem Toorop ce43942cbe Respond to socket errors 2017-06-26 16:57:23 +02:00
Willem Toorop ff1ebbf671 Hmmm... this time the warning does make sense 2017-06-22 13:09:45 +02:00
Willem Toorop 2962baa050 Old (not so smart) compiler warns for uninitialized variable 2017-06-22 12:48:22 +02:00
Willem Toorop 69b3f6f558 Remove unnecessary initialization (scan-build) 2017-06-22 12:43:33 +02:00
Willem Toorop e2f1d3badb Dependencies 2017-06-22 12:41:01 +02:00
Willem Toorop 4a1008e02c New deps for anchor.lo 2017-06-22 12:28:07 +02:00
Willem Toorop 7ea3beaa6a Equip context with xml read trust anchors 2017-06-22 12:27:20 +02:00
Willem Toorop 6b70160659 getdnsify function names, even though they're static 2017-06-22 10:30:13 +02:00
Willem Toorop a2cf568190 RFC7958 root-anchors.xml parsing 2017-06-22 00:36:26 +02:00
Willem Toorop a7ed88fbed Add yxml as submodule 2017-06-20 16:00:37 +02:00
Willem Toorop e496d13777 Start with getting files from user area 2017-06-20 15:38:32 +02:00
Willem Toorop b0af051809 Initialize in correct order 2017-06-20 12:20:11 +02:00
Willem Toorop 4275ea6ffa Merge branch 'develop' into hackathon/zeroconf-dnssec 2017-06-20 10:06:00 +02:00
Willem Toorop ac084db231 Don't build libtool stubby if installed directly 2017-06-19 12:19:14 +02:00
Willem Toorop 5e1cceca82 Stubby is installed from getdns_query directly 2017-06-19 12:12:09 +02:00
Willem Toorop a07290a9b0 Bugfix for parallel make install 2017-06-19 12:06:34 +02:00
Willem Toorop 9a273cf144 Get rid of superfluous struct member query_id 2017-06-15 21:24:40 +02:00
Willem Toorop 1d87437854 ERROR all outstanding netreqs whith a failed statefull upstream 
Remove the currently processed netreq first, so it can be retries with another upstream/transport.
We MUST add netreq to the netreqs_by_query_id map even before we write to it, to have a reliable store of taken query ids.
 2017-06-15 21:15:00 +02:00
Willem Toorop d9158e639b Clear netreq_by_query_id on upstream failure 
But don't error the specific netreq then!
 2017-06-15 17:21:05 +02:00
Willem Toorop e2be41d352 Don't segfault on IPv6 unavailability 
Resolved issue #306?  Review needed!
Shoud upstream_failed cancel all the netreqs?
 2017-06-14 15:36:53 +02:00
Willem Toorop e00100b388 s/recieve/receive/ 2017-06-09 11:24:51 +02:00
Willem Toorop 9b548a76c9 Resync with Unbound 2017-06-08 14:48:22 +02:00
Willem Toorop 878a229bea Don't test OARC servers 2017-06-08 14:06:58 +02:00
Sara Dickinson d2e8ac9e61 Change script name so it is specific for macOS (which is the new ‘official’ name for Mac OS X!) 
Add the copyright statement to the stubby-setdns-macos.sh file
 2017-06-07 17:00:21 +01:00
Sara Dickinson 305a6f6b6a 1) Add a stubby-setdns script (for MAC OS X only at the moment) to support Homebrew formula 
2) Remove the OARC server from the default config. So now only include the servers that commit to not logging user data. Can make this clearer once we have a yaml config file.
3) Update makefile to include stubby.conf and stubby-setdns in dist tarball
 2017-06-02 11:52:56 +01:00
Willem Toorop a9464993dd bugfix #286 reschedule reused listening addresses 2017-06-01 16:24:24 +02:00
Willem Toorop 8cef8b1f95 Use libtool from correct location 2017-06-01 15:32:50 +02:00
Willem Toorop c5d000b552 Merge branch 'develop' of github.com:getdnsapi/getdns into develop 2017-05-23 16:04:39 +02:00
Willem Toorop 8c27d285a8 Dependencies 2017-05-23 16:04:31 +02:00
Hoda Rohani 1e99398576 travis doesn't support ipv6? 2017-05-22 16:59:07 +02:00
Hoda Rohani 69408816b4 Merge remote-tracking branch 'origin/develop' into coverage 2017-05-22 09:48:18 +02:00
Hoda Rohani 21fe94c06e copy transport test to tpkg and extend more to check tsig 
add unit test for tls connection
 2017-05-18 09:30:51 +02:00
Willem Toorop 67d787d74a Merge branch 'develop' into hackathon/zeroconf-dnssec 2017-05-12 15:39:02 +02:00
Willem Toorop 3d4193fa41 Actually start building! 2017-05-10 23:04:31 +02:00
Willem Toorop 760b813333 Schedule resource depletion tpkg's sequentually 2017-05-10 23:01:57 +02:00
Hoda Rohani 053845332d adding more get functions to the tests 2017-05-10 16:47:51 +02:00
Willem Toorop 6ca0b8b481 Run tpkg tests in parallel too 2017-05-10 16:35:32 +02:00
Willem Toorop e152842573 Fail event-loops-unit-tests tpkg when tests fail 2017-05-10 14:39:59 +02:00
Willem Toorop 1eae032743 tpkg tests build in parallel 2017-05-10 14:35:01 +02:00
Willem Toorop e127365900 Parallel testing support 2017-05-10 14:10:29 +02:00
Hoda Rohani 6ec0f2e021 add get functions to check the values 2017-05-08 12:49:59 +02:00
Hoda Rohani 2ac13e0807 Merge pull request #302 from getdnsapi/devel/rr-types 
Devel/rr types
 2017-05-02 17:58:03 +02:00
Willem Toorop 1ff6771c47 Merge branch 'develop' of github.com:getdnsapi/getdns into develop 2017-05-02 17:36:41 +02:00
Willem Toorop db856f5227 Allow for simultaneous jobs 
Resolves issue #166
 2017-05-02 17:34:50 +02:00
Willem Toorop ed08025c38 A better approach for the Windows strdup issue 2017-05-02 17:22:06 +02:00
Willem Toorop dab93cd197 TSIG and TKEY parsing by gldns 2017-05-02 16:28:55 +02:00
Willem Toorop 1e44ea7bd8 NSAP-PTR rdata is STR after all 2017-05-02 16:10:08 +02:00
Willem Toorop 16d97b607c Add missing RR types SMIMEA and AVC 
+ fix rdata of TA RR type
 2017-05-02 15:54:12 +02:00
Willem Toorop 352fef644e Check for unimplemented RR types 2017-05-02 15:20:57 +02:00
Willem Toorop 37fa7a1f07 Test correct rr-types output 2017-05-02 15:08:25 +02:00
Willem Toorop dbbf778ae8 TALINK 2017-05-02 15:04:57 +02:00
Willem Toorop 4c73b5e156 EID and NIMLOC 2017-05-02 14:59:02 +02:00
Willem Toorop ad53010cd2 NSAP-PTR 2017-05-02 14:50:39 +02:00
Willem Toorop 3b465d3600 Another small bug in str2wire function 2017-05-02 14:29:47 +02:00
Willem Toorop d1d95f4955 OPENPGPKEY support 2017-05-02 14:11:45 +02:00
Willem Toorop 066ef2ddaa Fix TAG rdata type presentation format 2017-05-02 14:01:21 +02:00
Willem Toorop cc9451d364 More rr-dict coverage by removing unused funcs 2017-05-02 12:55:51 +02:00
Willem Toorop 2a6c4b35cb Fix unit tests to allow for fixed IPSECKEY 2017-05-02 12:14:20 +02:00
Willem Toorop dbc1719206 Zero sized gateways with IPSECKEY gateway_type 0 2017-05-02 11:44:47 +02:00
Hoda Rohani 80897d2b86 reorder rrs 2017-04-26 14:45:07 +02:00
Hoda Rohani 62fa69c461 Issue 108: Create a test to check all RR types 2017-04-26 14:32:30 +02:00
Hoda Rohani 6f7f6046eb Extend server capabilities with valgrind 2017-04-19 12:34:01 +02:00
Hoda Rohani 193bc618a5 Merge branch 'develop' of https://github.com/getdnsapi/getdns into develop 2017-04-19 12:09:10 +02:00
Hoda Rohani 6f3db561f3 Bugfix in converting IPs in str2dict 
+ tpkg test for server capabilities
 2017-04-19 12:07:55 +02:00
Willem Toorop a670606849 Rearrange doxygen into subject groups 2017-04-13 20:30:59 +02:00
Willem Toorop b4eecd59ab Merge branch 'develop' into release/1.1.0 2017-04-13 15:46:24 +02:00
Willem Toorop 02516c4079 Two last warnings 2017-04-13 15:45:59 +02:00
Willem Toorop eb8fe6184a getdnsapi.net DNS over TLS ips to match the name 2017-04-13 11:47:44 +02:00
Willem Toorop d5dcdac58c Validate tls_auth_name 
Deals with issue #270
 2017-04-13 11:19:22 +02:00
Willem Toorop 691d1a77e6 Fix VS Code analysis warning 
Should settle issue #239
 2017-04-13 10:59:20 +02:00
Hoda Rohani 6c4af3af93 unintiallized array 2017-04-13 09:44:08 +02:00
Willem Toorop 0da79ae77a Fix to compile with libressl. Thanks phicoh. 2017-04-12 23:05:17 +02:00
wtoorop 0857926965 Merge pull request #283 from wtoorop/devel/doxygen 
Devel/doxygen
 2017-04-12 22:53:21 +02:00
Willem Toorop 8c45f1fded All remaining doxygen documentation 
Existing documentation needs to be reviewed too though...
 2017-04-12 22:50:17 +02:00
Sara Dickinson 6e66754795 Nope - just add uncensored as the yeti servers would require a different trust anchor 2017-04-12 18:19:34 +01:00
Willem Toorop 2226c722a9 Extra context setters 2017-04-12 12:35:46 +02:00
Willem Toorop 68a87e4cee Event loop extension functions documentation 2017-04-12 11:21:25 +02:00
Willem Toorop 708e520989 Spelling fixes from Andreas Schulze 2017-04-11 23:33:24 +02:00
Willem Toorop a060e723f2 Doxygen documentation for everything in getdns.h 2017-04-11 23:29:33 +02:00
Sara Dickinson ce7ee62355 Should we update stubby.conf to include 2 of the new test servers? 2017-04-11 15:24:10 +01:00
Willem Toorop d28283a850 Merge remote-tracking branch 'upstream/develop' into devel/doxygen 2017-04-10 12:17:59 +02:00
Willem Toorop e6696d9557 getdns_context_unset_edns_maximum_udp_payload_size 2017-04-06 20:53:18 +02:00
Willem Toorop c9b3e3cf7b Allow cleanup of naked idle timeouts 2017-04-06 20:50:34 +02:00
Willem Toorop 2d011e3d19 Merge branch 'features/unset_max_udp_payload_sz' into release/1.1.0 2017-04-06 19:40:35 +02:00
Willem Toorop c2edc94a3a Clear timeout event when getting dnssec chain 
With full recursion
 2017-04-06 15:18:12 +02:00
Willem Toorop e35a2182a9 missing #include 2017-04-06 12:24:27 +02:00
Willem Toorop 4ceec33d08 Do something about TLS renegotiation. 2017-04-06 11:46:10 +02:00
Willem Toorop e08d3592a0 Schedule timeout when collecting for dnssec chain 2017-04-06 11:20:08 +02:00
Willem Toorop f8c7d8b5d5 Network request submission and callback reporting 2017-04-05 22:43:27 +02:00
Willem Toorop 2220c1a48d Options for request debugging 2017-04-05 17:53:39 +02:00
Willem Toorop 67baa1d651 getdns_context_unset_edns_maximum_udp_payload_size 2017-04-05 12:37:48 +02:00
Willem Toorop edecca8b63 smime verification of root-anchors.xml in ~/.getdns 2017-03-27 09:21:29 -05:00
wtoorop fe49bc1c69 Merge pull request #279 from dkg/feature/padding-policy 
Implement sensible default padding policy.
 2017-03-27 08:19:31 -05:00
Daniel Kahn Gillmor f2a90925bc getdns-query: S is no longer a valid transport label. 2017-03-26 14:38:43 -05:00
Daniel Kahn Gillmor 9de4d6537b Implement sensible default padding policy. 
This commit changes the semantics of tls_query_padding_blocksize()
slightly.  Where previously both 0 and 1 meant "no padding", this
commit changes 1 to mean "pad using a sensible policy".

At NDSS 2017's DNS privacy workshop, I presented an empirical study of
DNS padding policies:

https://www.internetsociety.org/events/ndss-symposium/ndss-symposium-2017/dns-privacy-workshop-2017-programme#session3

The slide deck is here:
https://dns.cmrg.net/ndss2017-dprive-empirical-DNS-traffic-size.pdf

The resulting recommendation from the research is that a simple
padding policy is relatively cheap and still protective of metadata
when DNS traffic is encrypted:

 * queries should be padded to a multiple of 128 octets
 * responses should be padded to a multiple of 468 octets

Since getdns is only currently doing queries over tls, we only have to
implement the first part of this policy :)
 2017-03-26 14:37:28 -05:00
Willem Toorop f4fe2cb6c5 Merge branch 'develop' into hackathon/zeroconf-dnssec 2017-03-26 10:46:50 -05:00
wtoorop 148dfabf88 Merge pull request #276 from huitema/develop 
Fixing the select and poll event loops for Windows
 2017-03-26 10:20:48 -05:00
Willem Toorop 03efb66991 Keep connections open with sync requests too 2017-03-26 10:16:25 -05:00
huitema 6f0b08a400 Fixing the select event loop so it does not give up for naked timers in Windows. 
Making sure the poll event loop works on windows.
Fixing the poll event loop so it does not give up for naked timers in Windows.
 2017-03-26 10:07:44 -05:00
Willem Toorop 8864dfce92 Merge branch 'develop' into hackathon/zeroconf-dnssec 2017-03-25 20:37:36 -05:00
Willem Toorop 007208a122 Merge branch 'develop' of github.com:getdnsapi/getdns into develop 2017-03-25 20:22:54 -05:00
Willem Toorop 9fa6ab5994 Clang pragma's with clang only 2017-03-25 20:22:34 -05:00
Willem Toorop b7d16e3c89 One more leak 2017-03-25 17:00:02 -05:00
Willem Toorop 6316c558bc typo 2017-03-25 21:45:08 +01:00
Willem Toorop 3eb6ebf5e4 Fix memory leak 2017-03-25 21:33:30 +01:00
Willem Toorop 5f6e47d091 Only equip with peer cert when transport is TLS 2017-03-25 21:26:05 +01:00
Willem Toorop a2efd8f6c1 Report peer certificate in call_reporting 2017-03-25 19:36:20 +01:00