| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
* Fix typos and add todo to fix spelling of dnsutil.MaximumDefaulTTL
Signed-off-by: Zhizhen He <hezhizhen.yi@gmail.com>
|
|
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
Add DNS-over-QUIC server
Signed-off-by: jaehnri <joao.henri.cr@gmail.com>
Signed-off-by: João Henri <joao.henri.cr@gmail.com>
|
|
Signed-off-by: Diogenes Pelisson <diogenes.pelisson@gmail.com>
|
|
* Change default value to 1232
As specified by DNS flag day 2020, good and decent default value
avoiding fragmentation issues should be 1232. It is quite likely 1500
would work reliably on local ethernet networks.
Value 512 is set implicitly and must be used for all clients, which did
not include OPT RR with explicit value they support.
Since MR #5368 it should work correctly.
Signed-off-by: Petr Menšík <pemensik@redhat.com>
* Adapt bufsize test to new default value
Check also buffer size smaller than legacy value is not accepted.
Signed-off-by: Petr Menšík <pemensik@redhat.com>
* Update bufsize documentation
Mention also increasing request size is not possible, it can only reduce
the accepted size.
Signed-off-by: Petr Menšík <pemensik@redhat.com>
---------
Signed-off-by: Petr Menšík <pemensik@redhat.com>
|
|
|
|
Signed-off-by: rokkiter <101091030+rokkiter@users.noreply.github.com>
|
|
subdomain wildcard (#6162)
remove double subdomain reference from review feedback
not subdoman
Signed-off-by: emaildanwilson <dan@controlplane.com>
Co-authored-by: emaildanwilson <dan@controlplane.com>
|
|
|
|
* remove endpoint and endpointslicev1beta watch support
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* adjust readme
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* informer object changes
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* remove unused funcs
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
---------
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
Signed-off-by: Ondřej Benkovský <ondrej.benkovsky@jamf.com>
|
|
disabled (#6137)
* always create listers, so we dont panic
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
---------
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
This reverts commit d0375bc0269eccb1966ccf38a9b43263d551dee4.
|
|
Signed-off-by: Marius Kimmina <mar.kimmina@gmail.com>
|
|
Signed-off-by: yyzxw <1020938856@qq.com>
Signed-off-by: xiaowu.zhu <xiaowu.zhu@daocloud.io>
|
|
Signed-off-by: Justin <cattyhouse@users.noreply.github.com>
|
|
|
|
Signed-off-by: Philippe Antoine <contact@catenacyber.fr>
|
|
Signed-off-by: Ayato Tokubi <atokubi@redhat.com>
|
|
Avoid Go 1.20 test error by not attempting to close the testing temp
file unless there was an error in Read().
* Use a CreateTemp() to create unique test files.
* Defer the deletion of the temp file.
Woarkaround for: https://github.com/golang/go/issues/59938
Signed-off-by: SuperQ <superq@gmail.com>
|
|
* forward: continue waiting after malformed responses
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* add test
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* fix test
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* clean up
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* clean up
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* move test to /test/. Add build tag.
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* install libpcap-dev for e2e tests
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* sudo the test
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* remove stray err check
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* disable the test
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* use -exec flag to run test binary as root
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* run new test by itself in a new workflow
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* fix test name
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* only for udp
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* remove libpcap test workflow action
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* remove test, since it cant run in ci
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* and remove gopacket package
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
---------
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
|
|
Signed-off-by: cui fliter <imcusg@gmail.com>
|
|
|
|
* When returning NS for delegation point, we sign any DS Record or if not
found we generate a NSEC proving absence of DS. This follow behaviour
describe in rfc4035 (Section 3.1.4)
* DS request at apex behave as before.
* Fix edge case of requesting NSEC which prove that NSEC does not exist.
Signed-off-by: Jeremiejig <me@jeremiejig.fr>
|
|
|
|
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
Signed-off-by: vanceli <vanceli@tencent.com>
Signed-off-by: Vance Li <vncl@YingyingM1.local>
Co-authored-by: vanceli <vanceli@tencent.com>
|
|
* cname target rewrite part in answer sec
tion
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* upstream request
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* fix looping issue
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* support exact, prefix, suffix, substring, and regex types for cname rewrite
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* support any qtype, corrected prefix, suffix, substring types behavior
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* unit tests added, mocked the upstream call
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* fix lint errors
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* add newline to fix test issue
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* add default rewrite type, add readme
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* readme grammar fix
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* reuse rewrite types
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
* comment fixed
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
---------
Signed-off-by: amila <amila.15@cse.mrt.ac.lk>
|
|
defaulting to localhost makes things explicit in CoreDNS code, and will give us valid URIs in
the logs
Signed-off-by: W. Trevor King <wking@tremily.us>
|
|
* plugin/forward: Move Proxy into pkg/plugin/proxy, to allow forward.Proxy to be used outside of forward plugin.
Signed-off-by: Patrick Downey <patrick.downey@dioadconsulting.com>
|
|
* Add fallthrough option to k8s_external plugin to allow transitioning control to the next plugin if the domain is not found
* Exit on start up if required plugin is not present.
Signed-off-by: vanceli <vanceli@tencent.com>
---------
Signed-off-by: vanceli <vanceli@tencent.com>
Co-authored-by: vanceli <vanceli@tencent.com>
|
|
* inserts all records in the loop. checks for insert errors. adds test. fixes #5985
Signed-off-by: Marcos Mendez <marcos_mendez@homedepot.com>
|
|
This change avoids the hard coding of HTTPS, allowing flexibility in whether HTTP or HTTPS is used.
Signed-off-by: Sebastian Dahlgren <sebdah@fb.com>
|
|
Signed-off-by: dmachard <5562930+dmachard@users.noreply.github.com>
|
|
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
Don't lock weights for duration of parsing weight file. Add
missing check to reject zero weight values.
Signed-off-by: Gabor Dozsa <gabor.dozsa@ibm.com>
|
|
Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
|
|
Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
|
|
* plugin/forward: fix broken tap plugins when dnstap plugins specified
---------
Signed-off-by: Gerhard Tan <gwohau.tan@gmail.com>
|
|
* Add weighted-round-robin policy to loadbalance plugin
Signed-off-by: Gabor Dozsa <gabor.dozsa@ibm.com>
|
|
adds a new option `keepttl` to the cache plugin
Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
|
|
Signed-off-by: Vico Chu <vico24826@gmail.com>
Signed-off-by: Vico Chu <vico24826@gmail.com>
|
|
|
|
* Drop obsolete client-go auth plugins
The OpenStack plugin is no longer available, even in version 0.24.4 of
client-go; see
https://github.com/kubernetes/client-go/blob/v0.24.4/plugin/pkg/client/auth/openstack/openstack_stub.go
It is replaced by the client-keystone-auth credential plugin. The
plugin has been entirely removed in client-go 0.26.0, which breaks the
build when any other dependency pulls in client-go 0.26.0 or later.
The GCP plugin is deprecated in K8s 1.22+ and unavailable in 1.26+
(although it is still stubbed in client-go 0.26.0). Is it replaced by
the gke-gcloud-auth-plugin credential plugin.
Signed-off-by: Stephen Kitt <skitt@redhat.com>
* Update plugin/kubernetes/setup.go
Signed-off-by: Stephen Kitt <skitt@redhat.com>
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
|
|
plugin/kubernetes: fix NXDOMAIN/NOERROR responses for TXT queries
Signed-off-by: Laurence Robinson <laurence_robinson@live.co.uk>
Co-authored-by: Laurence Robinson <laurence.robinson@deshaw.com>
|
|
* add glsb example
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
* plugin/edns: remove truncating of question section on bad EDNS version
EDNS requests of "Unknown Version" removed the query section altogether.
Not sure why since this is not require (see [link](https://kb.isc.org/docs/edns-compatibility-dig-queries)
This cause issues with DNS solutions that uses this information (initial queried name, type and class) in order to route the response to the right client (e.g. PDNS).
The change here is to keep the inital query section as is.
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
* adding tests for edns0 version check
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
* adding tests for non-edns0 version check
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
|
|
* fix multiple dnstap plugins behavior
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
|
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
|
Zhizhen He
Chris O'Haver
João Henri
Diogenes Pelisson
Petr Menšík
Pat Downey
rokkiter
Dan Wilson
Eng Zer Jun
Ondřej Benkovský
Marius Kimmina
yyzxw
Justin
junhwong
Catena cyber
Ayato Tokubi
Ben Kochie
Yashpal
cui fliter
Dan Salmon
jeremiejig
Vancl
Amila Senadheera
W. Trevor King
Marcos Mendez
Sebastian Dahlgren
Denis MACHARD
Gabor Dozsa
Fish-pro
Gerhard Tan
Arthur Outhenin-Chalandre
Vico Chu
Rich
Stephen Kitt
LAMRobinson
Ben Kaplan
