upstream/knot-dns
1
0
Fork 0
mirror of https://gitlab.nic.cz/knot/knot-dns.git synced 2026-02-03 18:49:28 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
19669 commits 142 branches 208 tags 63 MiB
Commit graph

1367 commits

Author SHA1 Message Date
Libor Peltan
6169020ec3 Merge branch 'notify-delay-new' into 'master' 
Rework notify-delay to be more practical and consistent with Bind

See merge request knot/knot-dns!1789
 2025-07-16 20:51:02 +02:00
David Vašek
749d3cde96 tests-extra: dnssec/dnskey_sync -- avoid infinite loop 2025-07-15 11:21:15 +02:00
Daniel Salzman
8c59b46adb conf: rework notify-delay to be more practical and consistent with Bind 2025-07-14 07:53:48 +02:00
Daniel Salzman
f678afc03d tests-extra: improve stability of dnssec/keystores 2025-07-02 12:06:45 +02:00
Libor Peltan
34cb1aef7c dnssec/multi-keystore: implemented ksk-only keystore... 
...so that KSKs and ZSKs can be in distinct keystores
 2025-07-01 10:51:18 +02:00
Libor Peltan
415f5bf88e dnssec: implemented multi-keystore option... 
...useful e.g. for hsm-to-pem migration
 2025-07-01 08:42:04 +02:00
Daniel Salzman
d10c345bf3 tests-extra: attempt to fix tls/quic xfr tests 2025-06-26 13:52:06 +02:00
Daniel Salzman
342f4466a1 tests-extra: improve stability of quic/xfr under Valgrind 2025-06-24 10:27:41 +02:00
Daniel Salzman
9f0f79779a server: purge sessticket_pool on server reload if creds changed 2025-06-23 17:55:14 +02:00
Jan Doskočil
261c378b74 conf: implemented certificate hostname validation 2025-06-23 17:55:14 +02:00
Daniel Salzman
1cec5a5fb0 dnskey-sync: use deterministic jitter always if keytag-modulo is configured 2025-05-30 12:44:57 +02:00
Daniel Salzman
b95b792222 dnskey-sync: add jitter to scheduled event to minimize race condition 2025-05-26 10:17:42 +02:00
Libor Peltan
da0e3b0d95 dnskey sync: skip rrs with different keytag modulo 2025-05-26 10:17:42 +02:00
Daniel Salzman
9c0e8c43f6 Merge branch 'tests_fix_startup' into 'master' 
fix tests-extra server startup routines

See merge request knot/knot-dns!1774
 2025-05-22 13:15:55 +02:00
Jan Doskočil
b753ba3ca5 conf: implement notify-delay option 2025-05-22 08:16:44 +02:00
David Vašek
cec7fd4527 tests-extra: allow lower number of server start retries for recoverable start failures 2025-05-21 14:20:58 +02:00
David Vašek
06f46233aa tests-extra: when ports are busy, really allow a retry with a different configuration 2025-05-21 14:20:58 +02:00
David Vašek
140200c489 tests-extra: if a servers doesn't start during test startup, restart the startup process 
In the past, knotd server continued running even after binding of some ports failed.
This is no longer true for some time. The tests didn't reflect it.
 2025-05-21 14:20:58 +02:00
David Vašek
de158da5bc tests-extra: fix the repeated server startup 
A workaround of already fixed flaw doesn't apply anymore.
 2025-05-21 14:20:58 +02:00
Libor Peltan
31dd087d76 xfr/slave-sign: independent SOA serial series on slave-side 2025-05-21 12:27:22 +02:00
Daniel Salzman
5e34fd81d2 modules: allow zone-reload/reload to fail due to module configuration errors 
Based on https://github.com/CZ-NIC/knot/pull/34
 2025-05-12 16:22:30 +02:00
Libor Peltan
e43440cefc nameserver/XFRout: multi-msg locked by rwlock instead RCU... 
...prevents locking updates to unrelated zones as well
 2025-04-28 08:47:57 +02:00
Jan Doskočil
43fef05180
tests: fix a typo 2025-04-24 15:18:03 +02:00
Daniel Salzman
26d468f093 tests-extra: fix arguments of ctl_sock_rnd() in zone_wait() 2025-04-15 15:44:01 +02:00
Libor Peltan
6be870f0bf implemented multi-socket CTL... 
...with each socket handled by a thread
 2025-04-14 18:07:52 +02:00
Daniel Salzman
fed77c1cc7 ctl: add missing rdata canonicalization to zone-(un)set 2025-04-14 13:10:14 +02:00
Libor Peltan
9d5dd57981 fix TLS/0-RTT server-side by removing nonsensial relict +test 2025-04-08 18:06:02 +02:00
Libor Peltan
6ccf2243cf auto-reverse zones: implemented support for multiple... 
...forward zones to be reversed
 2025-04-04 20:41:27 +02:00
Libor Peltan
5e937e081d keymgr: tolerate - versus _ in commands 2025-03-25 10:30:18 +01:00
Libor Peltan
7fd0221374 dnssec: bugfix: block accepting DS submission in manual policy 2025-03-25 08:24:43 +01:00
Libor Peltan
c7e0d925e1 dnssec: moved last_signed_serial from kaspDB to timers... 
...to gain performance with many zones signing at once
 2025-03-17 08:31:29 +01:00
Libor Peltan
dc325e87d5 zone/skip: also applies to zone diff computation 2025-03-12 12:37:59 +01:00
Libor Peltan
f8472acb5f implemented zonefile-skip option 2025-03-12 08:43:36 +01:00
Daniel Salzman
0473328611 tests-extra: increase robustness of edns/nsid 2025-02-14 12:39:32 +01:00
Libor Peltan
58c25f944a tests: fixing slow run with all valgrind flags 2025-02-11 12:11:13 +01:00
Libor Peltan
daf9f6d0f5 implemented SOA serial shift for backup-signer op 2025-02-08 13:57:56 +01:00
Daniel Salzman
c476ed6cb7 ddns: allow initial update to empty zone 2025-02-06 21:28:36 +01:00
Daniel Salzman
0be611ae41 sem-checks: fix DNAME at the zone apex check if active NSEC3 2025-01-16 10:51:34 +01:00
Daniel Salzman
020c84e622 ctl: improve error detection and send an error message to the client 2025-01-08 14:14:31 +01:00
Libor Peltan
5b457116db ctl: fix ctl stuck when abort sent to nonexisting conf txn... 
...this appeared as a regression when implementing concurrent CTL
 2025-01-08 12:30:01 +01:00
David Vašek
1cc5bdba00 tests-extra: remove superfluous C-style semicolons from Python code 2024-12-26 01:13:42 +01:00
David Vašek
e5c7d37d90 tests-extra: fix the all-servers startup method 
When all servers are already running, don't start some of them again.
 2024-12-25 23:50:53 +01:00
David Vašek
df1a49f4ca tests-extra: fix Knot server starting when it listens on a socket 2024-12-25 23:50:34 +01:00
Libor Peltan
f884b63c9e tests: added max TTL test with signing and incremental realod 2024-12-19 09:57:08 +01:00
David Vašek
5238477dcb tests-extra: zone/expire -- fix a typo 2024-12-18 09:35:12 +01:00
Libor Peltan
1c8518a337 tests: compatibility with new Bind9 2024-11-25 10:15:45 +01:00
Daniel Salzman
1ffe8d5db9 zone: don't purge times.catalog_member if still a member zone 2024-11-22 13:02:13 +01:00
Jan Hák
556a19cf07 knotd: expiration aborts transaction in progress 2024-11-18 15:55:49 +01:00
Libor Peltan
d6c68c9d41 nameserver: add check for \0 bytes in QNAME labels and respond it as NXDOMAIN ... 
if it doens't exactly match a node owner.
 2024-11-15 08:07:25 +01:00
Daniel Salzman
f916bc678d tests-extra: update prerequisites in README 2024-11-14 08:28:07 +01:00