mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-22 18:19:42 +00:00
Code Issues Releases Wiki Activity
bind/lib/dns/nta.c

692 lines
16 KiB
C
Raw Normal View History

[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
/*
Update license headers to not include years in copyright in all applicable files
2018-02-23 09:53:12 +01:00
* Copyright (C) Internet Systems Consortium, Inc. ("ISC")
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
*
Update the copyright information in all files in the repository This commit converts the license handling to adhere to the REUSE specification. It specifically: 1. Adds used licnses to LICENSES/ directory 2. Add "isc" template for adding the copyright boilerplate 3. Changes all source files to include copyright and SPDX license header, this includes all the C sources, documentation, zone files, configuration files. There are notes in the doc/dev/copyrights file on how to add correct headers to the new files. 4. Handle the rest that can't be modified via .reuse/dep5 file. The binary (or otherwise unmodifiable) files could have license places next to them in <foo>.license file, but this would lead to cluttered repository and most of the files handled in the .reuse/dep5 file are system test files.
2021-06-03 08:37:05 +02:00
* SPDX-License-Identifier: MPL-2.0
*
4401. [misc] Change LICENSE to MPL 2.0.
2016-06-27 14:56:38 +10:00
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
update all copyright headers to eliminate the typo
2020-09-14 16:20:40 -07:00
* file, you can obtain one at https://mozilla.org/MPL/2.0/.
Update license headers to not include years in copyright in all applicable files
2018-02-23 09:53:12 +01:00
*
* See the COPYRIGHT file distributed with this work for additional
* information regarding copyright ownership.
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
*/
/*! \file */
Replace custom isc_u?intNN_t types with C99 u?intNN_t types
2018-03-28 14:19:37 +02:00
#include <inttypes.h>
Replace custom isc_boolean_t with C standard bool type
2018-04-17 08:29:14 -07:00
#include <stdbool.h>
Replace custom isc_u?intNN_t types with C99 u?intNN_t types
2018-03-28 14:19:37 +02:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
#include <isc/async.h>
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
#include <isc/buffer.h>
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
#include <isc/event.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <isc/log.h>
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
#include <isc/loop.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <isc/mem.h>
add #include <isc/print.h>
2014-06-19 10:20:34 +10:00
#include <isc/print.h>
Make isc_result a static enum Remove the dynamic registration of result codes. Convert isc_result_t from unsigned + #defines into 32-bit enum type in grand unified <isc/result.h> header. Keep the existing values of the result codes even at the expense of the description and identifier tables being unnecessary large. Additionally, add couple of: switch (result) { [...] default: break; } statements where compiler now complains about missing enum values in the switch statement.
2021-10-04 17:14:53 +02:00
#include <isc/result.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <isc/rwlock.h>
#include <isc/string.h>
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
#include <isc/task.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <isc/time.h>
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
#include <isc/timer.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <isc/util.h>
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
#include <dns/db.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <dns/fixedname.h>
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
#include <dns/log.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <dns/name.h>
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
#include <dns/nta.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
#include <dns/rbt.h>
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
#include <dns/rdataset.h>
#include <dns/resolver.h>
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
#include <dns/time.h>
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
struct dns_ntatable {
/* Unlocked. */
apply the modified style
2020-02-13 14:44:37 -08:00
unsigned int magic;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns_view_t *view;
isc_rwlock_t rwlock;
isc_loopmgr_t *loopmgr;
isc_task_t *task;
/* Protected by atomics */
isc_refcount_t references;
/* Locked by rwlock. */
dns_rbt_t *table;
bool shuttingdown;
};
struct dns__nta {
unsigned int magic;
isc_mem_t *mctx;
isc_refcount_t references;
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
dns_ntatable_t *ntatable;
apply the modified style
2020-02-13 14:44:37 -08:00
bool forced;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_loop_t *loop;
apply the modified style
2020-02-13 14:44:37 -08:00
isc_timer_t *timer;
dns_fetch_t *fetch;
dns_rdataset_t rdataset;
dns_rdataset_t sigrdataset;
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
dns_fixedname_t fn;
apply the modified style
2020-02-13 14:44:37 -08:00
dns_name_t *name;
isc_stdtime_t expiry;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
};
apply the modified style
2020-02-13 14:44:37 -08:00
#define NTA_MAGIC ISC_MAGIC('N', 'T', 'A', 'n')
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
#define VALID_NTA(nn) ISC_MAGIC_VALID(nn, NTA_MAGIC)
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
hold a nta reference while fetching
2014-07-10 10:24:47 +10:00
static void
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_shutdown(dns__nta_t *nta);
hold a nta reference while fetching
2014-07-10 10:24:47 +10:00
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
static void
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_destroy(dns__nta_t *nta) {
isc_refcount_destroy(&nta->references);
nta->magic = 0;
REQUIRE(nta->timer == NULL);
if (dns_rdataset_isassociated(&nta->rdataset)) {
dns_rdataset_disassociate(&nta->rdataset);
}
if (dns_rdataset_isassociated(&nta->sigrdataset)) {
dns_rdataset_disassociate(&nta->sigrdataset);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
if (nta->fetch != NULL) {
dns_resolver_cancelfetch(nta->fetch);
dns_resolver_destroyfetch(&nta->fetch);
}
isc_mem_putanddetach(&nta->mctx, nta, sizeof(*nta));
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
ISC_REFCOUNT_IMPL(dns__nta, dns__nta_destroy);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
static void
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_free(void *data, void *arg) {
dns__nta_t *nta = (dns__nta_t *)data;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
UNUSED(arg);
dns__nta_shutdown(nta);
dns__nta_detach(&nta); /* for nta_create() */
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
isc_result_t
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
dns_ntatable_create(dns_view_t *view, isc_taskmgr_t *taskmgr,
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
isc_loopmgr_t *loopmgr, dns_ntatable_t **ntatablep) {
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
dns_ntatable_t *ntatable;
apply the modified style
2020-02-13 14:44:37 -08:00
isc_result_t result;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
REQUIRE(ntatablep != NULL && *ntatablep == NULL);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
ntatable = isc_mem_get(view->mctx, sizeof(*ntatable));
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
*ntatable = (dns_ntatable_t){
.loopmgr = loopmgr,
.view = view,
};
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Update netmgr, tasks, and applications to use isc_loopmgr Previously: * applications were using isc_app as the base unit for running the application and signal handling. * networking was handled in the netmgr layer, which would start a number of threads, each with a uv_loop event loop. * task/event handling was done in the isc_task unit, which used netmgr event loops to run the isc_event calls. In this refactoring: * the network manager now uses isc_loop instead of maintaining its own worker threads and event loops. * the taskmgr that manages isc_task instances now also uses isc_loopmgr, and every isc_task runs on a specific isc_loop bound to the specific thread. * applications have been updated as necessary to use the new API. * new ISC_LOOP_TEST macros have been added to enable unit tests to run isc_loop event loops. unit tests have been updated to use this where needed.
2022-07-26 13:03:45 +02:00
result = isc_task_create(taskmgr, &ntatable->task, 0);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS) {
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
goto cleanup_ntatable;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
isc_task_setname(ntatable->task, "ntatable", ntatable);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
result = dns_rbt_create(view->mctx, dns__nta_free, NULL,
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
&ntatable->table);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
goto cleanup_task;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Cleanup redundant isc_rwlock_init() result checks
2021-02-01 15:59:41 +11:00
isc_rwlock_init(&ntatable->rwlock, 0, 0);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
lib/dns/nta.c: use isc_refcount_t
2019-05-20 16:41:24 +02:00
isc_refcount_init(&ntatable->references, 1);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
ntatable->magic = NTATABLE_MAGIC;
*ntatablep = ntatable;
return (ISC_R_SUCCESS);
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
cleanup_task:
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
isc_task_detach(&ntatable->task);
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
cleanup_ntatable:
uninitalize memory read on error path
2018-11-09 15:32:33 +11:00
isc_mem_put(view->mctx, ntatable, sizeof(*ntatable));
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
return (result);
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
static void
dns__ntatable_destroy(dns_ntatable_t *ntatable) {
isc_refcount_destroy(&ntatable->references);
ntatable->magic = 0;
dns_rbt_destroy(&ntatable->table);
isc_rwlock_destroy(&ntatable->rwlock);
isc_task_detach(&ntatable->task);
isc_mem_put(ntatable->view->mctx, ntatable, sizeof(*ntatable));
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
ISC_REFCOUNT_IMPL(dns_ntatable, dns__ntatable_destroy);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
static void
apply the modified style
2020-02-13 14:44:37 -08:00
fetch_done(isc_task_t *task, isc_event_t *event) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_fetchevent_t *devent = (dns_fetchevent_t *)event;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *nta = devent->ev_arg;
apply the modified style
2020-02-13 14:44:37 -08:00
isc_result_t eresult = devent->result;
dns_ntatable_t *ntatable = nta->ntatable;
dns_view_t *view = ntatable->view;
isc_stdtime_t now;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
UNUSED(task);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (dns_rdataset_isassociated(&nta->rdataset)) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rdataset_disassociate(&nta->rdataset);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
if (dns_rdataset_isassociated(&nta->sigrdataset)) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rdataset_disassociate(&nta->sigrdataset);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
if (nta->fetch == devent->fetch) {
3979. [bug] Negative trust anchor fetches where not properly managed. [RT #37488]
2014-10-18 10:07:24 +11:00
nta->fetch = NULL;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
3979. [bug] Negative trust anchor fetches where not properly managed. [RT #37488]
2014-10-18 10:07:24 +11:00
dns_resolver_destroyfetch(&devent->fetch);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (devent->node != NULL) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_db_detachnode(devent->db, &devent->node);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
if (devent->db != NULL) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_db_detach(&devent->db);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
isc_event_free(&event);
set now on all paths
2014-06-25 00:44:11 +10:00
isc_stdtime_get(&now);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
switch (eresult) {
case ISC_R_SUCCESS:
case DNS_R_NCACHENXDOMAIN:
case DNS_R_NXDOMAIN:
case DNS_R_NCACHENXRRSET:
case DNS_R_NXRRSET:
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
RWLOCK(&ntatable->rwlock, isc_rwlocktype_write);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (nta->expiry > now) {
4779. [bug] Expire NTA at the start of the second. Don't update the expiry value if the record has already expired after a successful check. [RT #46368]
2017-10-24 09:54:25 +11:00
nta->expiry = now;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_write);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
break;
default:
break;
}
/*
* If we're expiring before the next recheck, we might
* as well stop the timer now.
*/
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
RWLOCK(&ntatable->rwlock, isc_rwlocktype_read);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (nta->timer != NULL && nta->expiry - now < view->nta_recheck) {
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_timer_stop(nta->timer);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_read);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_detach(&nta); /* for dns_resolver_createfetch() */
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
dns_view_weakdetach(&view);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
}
static void
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
checkbogus(void *arg) {
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *nta = arg;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_ntatable_t *ntatable = nta->ntatable;
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
dns_view_t *view = NULL;
apply the modified style
2020-02-13 14:44:37 -08:00
isc_result_t result;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
if (nta->fetch != NULL) {
dns_resolver_cancelfetch(nta->fetch);
3979. [bug] Negative trust anchor fetches where not properly managed. [RT #37488]
2014-10-18 10:07:24 +11:00
nta->fetch = NULL;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
}
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (dns_rdataset_isassociated(&nta->rdataset)) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rdataset_disassociate(&nta->rdataset);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
if (dns_rdataset_isassociated(&nta->sigrdataset)) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rdataset_disassociate(&nta->sigrdataset);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_ref(nta); /* for dns_resolver_createfetch */
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
dns_view_weakattach(ntatable->view, &view);
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
result = dns_resolver_createfetch(
view->resolver, nta->name, dns_rdatatype_nsec, NULL, NULL, NULL,
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
NULL, 0, DNS_FETCHOPT_NONTA, 0, NULL, ntatable->task,
fetch_done, nta, &nta->rdataset, &nta->sigrdataset,
&nta->fetch);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS) {
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_detach(&nta); /* for dns_resolver_createfetch() */
Call nta_detach() before dns_view_weakdetach() so view is available.
2020-11-03 11:25:55 +11:00
dns_view_weakdetach(&view);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
}
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
static void
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
settimer(dns_ntatable_t *ntatable, dns__nta_t *nta, uint32_t lifetime) {
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
dns_view_t *view = NULL;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_interval_t interval;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
REQUIRE(VALID_NTATABLE(ntatable));
REQUIRE(VALID_NTA(nta));
view = ntatable->view;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (view->nta_recheck == 0 || lifetime <= view->nta_recheck) {
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
return;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_timer_create(nta->loop, checkbogus, nta, &nta->timer);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
isc_interval_set(&interval, view->nta_recheck, 0);
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
isc_timer_start(nta->timer, isc_timertype_ticker, &interval);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
static void
apply the modified style
2020-02-13 14:44:37 -08:00
nta_create(dns_ntatable_t *ntatable, const dns_name_t *name,
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t **target) {
dns__nta_t *nta = NULL;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_view_t *view;
REQUIRE(VALID_NTATABLE(ntatable));
REQUIRE(target != NULL && *target == NULL);
view = ntatable->view;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
nta = isc_mem_get(view->mctx, sizeof(dns__nta_t));
*nta = (dns__nta_t){
.ntatable = ntatable,
.loop = isc_loop_current(ntatable->loopmgr),
.magic = NTA_MAGIC,
};
isc_mem_attach(view->mctx, &nta->mctx);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rdataset_init(&nta->rdataset);
dns_rdataset_init(&nta->sigrdataset);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_refcount_init(&nta->references, 1);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
Use dns_fixedname_initname() where possible Replace dns_fixedname_init() calls followed by dns_fixedname_name() calls with calls to dns_fixedname_initname() where it is possible without affecting current behavior and/or performance. This patch was mostly prepared using Coccinelle and the following semantic patch: @@ expression fixedname, name; @@ - dns_fixedname_init(&fixedname); ... - name = dns_fixedname_name(&fixedname); + name = dns_fixedname_initname(&fixedname); The resulting set of changes was then manually reviewed to exclude false positives and apply minor tweaks. It is likely that more occurrences of this pattern can be refactored in an identical way. This commit only takes care of the low-hanging fruit.
2018-03-28 14:38:09 +02:00
nta->name = dns_fixedname_initname(&nta->fn);
rename dns_name_copynf() to dns_name_copy() dns_name_copy() is now the standard name-copying function.
2021-05-21 17:20:44 -07:00
dns_name_copy(name, nta->name);
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
*target = nta;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
isc_result_t
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
dns_ntatable_add(dns_ntatable_t *ntatable, const dns_name_t *name, bool force,
apply the modified style
2020-02-13 14:44:37 -08:00
isc_stdtime_t now, uint32_t lifetime) {
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
isc_result_t result = ISC_R_SUCCESS;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *nta = NULL;
dns_rbtnode_t *node = NULL;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
REQUIRE(VALID_NTATABLE(ntatable));
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
RWLOCK(&ntatable->rwlock, isc_rwlocktype_write);
if (ntatable->shuttingdown) {
goto unlock;
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
nta_create(ntatable, name, &nta);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
nta->expiry = now + lifetime;
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
nta->forced = force;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
result = dns_rbt_addnode(ntatable->table, name, &node);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
switch (result) {
case ISC_R_EXISTS:
result = ISC_R_SUCCESS;
if (node->data != NULL) {
/* NTA already exists, just update the timer */
dns__nta_t *node_nta = (dns__nta_t *)node->data;
node_nta->expiry = nta->expiry;
dns__nta_detach(&nta); /* for nta_create */
break;
}
/* Node was empty, update as if new */
FALLTHROUGH;
case ISC_R_SUCCESS:
INSIST(node != NULL);
INSIST(node->data == NULL);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (!force) {
Update isc_timer to use isc_loopmgr * isc_timer was rewritten using the uv_timer, and isc_timermgr_t was completely removed; isc_timer objects are now directly created on the isc_loop event loops. * the isc_timer API has been simplified. the "inactive" timer type has been removed; timers are now stopped by calling isc_timer_stop() instead of resetting to inactive. * isc_manager now creates a loop manager rather than a timer manager. * modules and applications using isc_timer have been updated to use the new API.
2022-07-26 13:03:40 +02:00
settimer(ntatable, nta, lifetime);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
node->data = nta;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
break;
default:
break;
update copyright notice
2014-05-30 23:45:21 +00:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
unlock:
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_write);
return (result);
}
/*
* Caller must hold a write lock on rwlock.
*/
static isc_result_t
apply the modified style
2020-02-13 14:44:37 -08:00
deletenode(dns_ntatable_t *ntatable, const dns_name_t *name) {
isc_result_t result;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
dns_rbtnode_t *node = NULL;
result = dns_rbt_findnode(ntatable->table, name, NULL, &node, NULL,
DNS_RBTFIND_NOOPTIONS, NULL, NULL);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
switch (result) {
case ISC_R_SUCCESS:
if (node->data == NULL) {
/* Found empty node */
return (ISC_R_NOTFOUND);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
result = dns_rbt_deletenode(ntatable->table, node, false);
return (result);
case DNS_R_PARTIALMATCH:
return (ISC_R_NOTFOUND);
default:
return (result);
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
isc_result_t
apply the modified style
2020-02-13 14:44:37 -08:00
dns_ntatable_delete(dns_ntatable_t *ntatable, const dns_name_t *name) {
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
isc_result_t result;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
REQUIRE(VALID_NTATABLE(ntatable));
REQUIRE(name != NULL);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWLOCK(&ntatable->rwlock, isc_rwlocktype_write);
4654. [cleanup] Don't use C++ keywords delete, new and namespace. [RT #45538]
2017-07-21 11:52:24 +10:00
result = deletenode(ntatable, name);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_write);
update copyright notice
2014-05-30 23:45:21 +00:00
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
return (result);
}
Replace custom isc_boolean_t with C standard bool type
2018-04-17 08:29:14 -07:00
bool
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
dns_ntatable_covered(dns_ntatable_t *ntatable, isc_stdtime_t now,
apply the modified style
2020-02-13 14:44:37 -08:00
const dns_name_t *name, const dns_name_t *anchor) {
isc_result_t result;
dns_fixedname_t fn;
dns_rbtnode_t *node;
dns_name_t *foundname;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *nta = NULL;
apply the modified style
2020-02-13 14:44:37 -08:00
bool answer = false;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
isc_rwlocktype_t locktype;
char nb[DNS_NAME_FORMATSIZE];
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
REQUIRE(VALID_NTATABLE(ntatable));
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
REQUIRE(dns_name_isabsolute(name));
Use dns_fixedname_initname() where possible Replace dns_fixedname_init() calls followed by dns_fixedname_name() calls with calls to dns_fixedname_initname() where it is possible without affecting current behavior and/or performance. This patch was mostly prepared using Coccinelle and the following semantic patch: @@ expression fixedname, name; @@ - dns_fixedname_init(&fixedname); ... - name = dns_fixedname_name(&fixedname); + name = dns_fixedname_initname(&fixedname); The resulting set of changes was then manually reviewed to exclude false positives and apply minor tweaks. It is likely that more occurrences of this pattern can be refactored in an identical way. This commit only takes care of the low-hanging fruit.
2018-03-28 14:38:09 +02:00
foundname = dns_fixedname_initname(&fn);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
locktype = isc_rwlocktype_read;
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
relock:
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWLOCK(&ntatable->rwlock, locktype);
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
again:
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
node = NULL;
result = dns_rbt_findnode(ntatable->table, name, foundname, &node, NULL,
DNS_RBTFIND_NOOPTIONS, NULL, NULL);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
switch (result) {
case ISC_R_SUCCESS:
/* Found a node */
break;
case DNS_R_PARTIALMATCH:
if (!dns_name_issubdomain(foundname, anchor)) {
goto unlock;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
/* Found a parental node */
result = ISC_R_SUCCESS;
break;
default:
goto unlock;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
INSIST(result == ISC_R_SUCCESS);
nta = (dns__nta_t *)node->data;
if (nta->expiry > now) {
/* We got non-expired answer */
answer = true;
goto unlock;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
/* Deal with expired NTA */
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
if (locktype == isc_rwlocktype_read) {
RWUNLOCK(&ntatable->rwlock, locktype);
locktype = isc_rwlocktype_write;
goto relock;
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns_name_format(foundname, nb, sizeof(nb));
isc_log_write(dns_lctx, DNS_LOGCATEGORY_DNSSEC, DNS_LOGMODULE_NTA,
ISC_LOG_INFO, "deleting expired NTA at %s", nb);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
/* We already found the node under the lock, so just delete it */
result = dns_rbt_deletenode(ntatable->table, node, false);
INSIST(result == ISC_R_SUCCESS);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
/* Look again */
goto again;
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
unlock:
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWUNLOCK(&ntatable->rwlock, locktype);
return (answer);
}
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
static isc_result_t
apply the modified style
2020-02-13 14:44:37 -08:00
putstr(isc_buffer_t **b, const char *str) {
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
isc_result_t result;
result = isc_buffer_reserve(b, strlen(str));
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS) {
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
return (result);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
update copyright notice / whitespace
2015-02-06 23:45:21 +00:00
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
isc_buffer_putstr(*b, str);
return (ISC_R_SUCCESS);
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
isc_result_t
Fixes for `rndc nta` user interface Tell the user explicitly about their mistakes: * Unknown options, e.g. -list instead of -dump or -delete instead of -remove. * Unknown view names. * Excess arguments. Include the view name in `rndc nta -dump` output, for consistency with the NTA add and remove actions. When removing an NTA from all views, do not abort with an error if the NTA was not found in one of the views.
2016-12-06 14:32:47 +00:00
dns_ntatable_totext(dns_ntatable_t *ntatable, const char *view,
apply the modified style
2020-02-13 14:44:37 -08:00
isc_buffer_t **buf) {
isc_result_t result;
dns_rbtnode_t *node;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
dns_rbtnodechain_t chain;
apply the modified style
2020-02-13 14:44:37 -08:00
bool first = true;
isc_stdtime_t now;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
REQUIRE(VALID_NTATABLE(ntatable));
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
isc_stdtime_get(&now);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
RWLOCK(&ntatable->rwlock, isc_rwlocktype_read);
simplify dns_rbtnodechain_init() by removing unnecessary 'mctx' parameter
2019-08-27 22:41:18 -07:00
dns_rbtnodechain_init(&chain);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
result = dns_rbtnodechain_first(&chain, ntatable->table, NULL, NULL);
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
if (result != ISC_R_SUCCESS && result != DNS_R_NEWORIGIN) {
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result == ISC_R_NOTFOUND) {
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
result = ISC_R_SUCCESS;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
goto cleanup;
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
for (;;) {
dns_rbtnodechain_current(&chain, NULL, NULL, &node);
if (node->data != NULL) {
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *n = (dns__nta_t *)node->data;
apply the modified style
2020-02-13 14:44:37 -08:00
char nbuf[DNS_NAME_FORMATSIZE];
char tbuf[ISC_FORMATHTTPTIMESTAMP_SIZE];
char obuf[DNS_NAME_FORMATSIZE +
ISC_FORMATHTTPTIMESTAMP_SIZE +
sizeof("expired: \n")];
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_fixedname_t fn;
apply the modified style
2020-02-13 14:44:37 -08:00
dns_name_t *name;
isc_time_t t;
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
list "validate-except" entries in "rndc nta -d" and "rndc secroots" - no longer exclude these entries when dumping the NTA table - indicate "validate-except" entries with the keyword "permanent" in place of an expiry date - add a test for this feature, and update other tests to account for the presence of extra lines in some rndc outputs - incidentally removed the unused function dns_ntatable_dump() - CHANGES, release note
2020-03-03 22:46:58 -08:00
name = dns_fixedname_initname(&fn);
dns_rbt_fullnamefromnode(node, name);
dns_name_format(name, nbuf, sizeof(nbuf));
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
if (n->expiry != 0xffffffffU) {
list "validate-except" entries in "rndc nta -d" and "rndc secroots" - no longer exclude these entries when dumping the NTA table - indicate "validate-except" entries with the keyword "permanent" in place of an expiry date - add a test for this feature, and update other tests to account for the presence of extra lines in some rndc outputs - incidentally removed the unused function dns_ntatable_dump() - CHANGES, release note
2020-03-03 22:46:58 -08:00
/* Normal NTA entries */
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
isc_time_set(&t, n->expiry, 0);
isc_time_formattimestamp(&t, tbuf,
sizeof(tbuf));
Fixes for `rndc nta` user interface Tell the user explicitly about their mistakes: * Unknown options, e.g. -list instead of -dump or -delete instead of -remove. * Unknown view names. * Excess arguments. Include the view name in `rndc nta -dump` output, for consistency with the NTA add and remove actions. When removing an NTA from all views, do not abort with an error if the NTA was not found in one of the views.
2016-12-06 14:32:47 +00:00
snprintf(obuf, sizeof(obuf), "%s%s%s%s: %s %s",
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
first ? "" : "\n", nbuf,
Fixes for `rndc nta` user interface Tell the user explicitly about their mistakes: * Unknown options, e.g. -list instead of -dump or -delete instead of -remove. * Unknown view names. * Excess arguments. Include the view name in `rndc nta -dump` output, for consistency with the NTA add and remove actions. When removing an NTA from all views, do not abort with an error if the NTA was not found in one of the views.
2016-12-06 14:32:47 +00:00
view != NULL ? "/" : "",
view != NULL ? view : "",
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
n->expiry <= now ? "expired"
: "expiry",
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
tbuf);
list "validate-except" entries in "rndc nta -d" and "rndc secroots" - no longer exclude these entries when dumping the NTA table - indicate "validate-except" entries with the keyword "permanent" in place of an expiry date - add a test for this feature, and update other tests to account for the presence of extra lines in some rndc outputs - incidentally removed the unused function dns_ntatable_dump() - CHANGES, release note
2020-03-03 22:46:58 -08:00
} else {
/* "validate-except" entries */
snprintf(obuf, sizeof(obuf), "%s%s%s%s: %s",
first ? "" : "\n", nbuf,
view != NULL ? "/" : "",
view != NULL ? view : "", "permanent");
}
first = false;
result = putstr(buf, obuf);
if (result != ISC_R_SUCCESS) {
goto cleanup;
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
}
result = dns_rbtnodechain_next(&chain, NULL, NULL);
if (result != ISC_R_SUCCESS && result != DNS_R_NEWORIGIN) {
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result == ISC_R_NOMORE) {
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
result = ISC_R_SUCCESS;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
break;
}
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
cleanup:
[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]
2014-06-18 16:47:22 -07:00
dns_rbtnodechain_invalidate(&chain);
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_read);
return (result);
[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]
2014-05-29 22:22:53 -07:00
}
[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]
2015-02-05 17:18:15 -08:00
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
isc_result_t
apply the modified style
2020-02-13 14:44:37 -08:00
dns_ntatable_save(dns_ntatable_t *ntatable, FILE *fp) {
isc_result_t result;
dns_rbtnode_t *node;
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
dns_rbtnodechain_t chain;
apply the modified style
2020-02-13 14:44:37 -08:00
isc_stdtime_t now;
bool written = false;
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
REQUIRE(VALID_NTATABLE(ntatable));
isc_stdtime_get(&now);
RWLOCK(&ntatable->rwlock, isc_rwlocktype_read);
simplify dns_rbtnodechain_init() by removing unnecessary 'mctx' parameter
2019-08-27 22:41:18 -07:00
dns_rbtnodechain_init(&chain);
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
result = dns_rbtnodechain_first(&chain, ntatable->table, NULL, NULL);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS && result != DNS_R_NEWORIGIN) {
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
goto cleanup;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
for (;;) {
dns_rbtnodechain_current(&chain, NULL, NULL, &node);
if (node->data != NULL) {
apply the modified style
2020-02-13 14:44:37 -08:00
isc_buffer_t b;
char nbuf[DNS_NAME_FORMATSIZE + 1], tbuf[80];
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
dns_fixedname_t fn;
apply the modified style
2020-02-13 14:44:37 -08:00
dns_name_t *name;
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *n = (dns__nta_t *)node->data;
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
/*
* Skip this node if the expiry is already in the
* past, or if this is a "validate-except" entry.
*/
if (n->expiry <= now || n->expiry == 0xffffffffU) {
goto skip;
}
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
name = dns_fixedname_initname(&fn);
dns_rbt_fullnamefromnode(node, name);
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
isc_buffer_init(&b, nbuf, sizeof(nbuf));
result = dns_name_totext(name, false, &b);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result != ISC_R_SUCCESS) {
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
goto skip;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
/* Zero terminate. */
isc_buffer_putuint8(&b, 0);
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
isc_buffer_init(&b, tbuf, sizeof(tbuf));
dns_time32_totext(n->expiry, &b);
[master] address valgrind warnings 4059. [bug] Addressed valgrind warnings. [RT #38549]
2015-02-10 14:01:38 -08:00
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
/* Zero terminate. */
isc_buffer_putuint8(&b, 0);
fprintf(fp, "%s %s %s\n", nbuf,
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
n->forced ? "forced" : "regular", tbuf);
option to disable validation under specified names - added new 'validate-except' option, which configures an NTA with expiry of 0xffffffff. NTAs with that value in the expiry field do not expire, are are not written out when saving the NTA table and are not dumped by rndc secroots
2018-04-30 16:10:17 -07:00
written = true;
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
}
skip:
result = dns_rbtnodechain_next(&chain, NULL, NULL);
if (result != ISC_R_SUCCESS && result != DNS_R_NEWORIGIN) {
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
if (result == ISC_R_NOMORE) {
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
result = ISC_R_SUCCESS;
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
break;
}
}
Use clang-format to reformat the source files
2020-02-12 13:59:18 +01:00
cleanup:
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
dns_rbtnodechain_invalidate(&chain);
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_read);
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
if (result == ISC_R_SUCCESS && !written) {
result = ISC_R_NOTFOUND;
}
return (result);
}
static void
dns__nta_shutdown_cb(dns__nta_t *nta) {
REQUIRE(VALID_NTA(nta));
if (nta->timer) {
isc_timer_stop(nta->timer); /* This is superfluous */
isc_timer_destroy(&nta->timer);
Use clang-tidy to add curly braces around one-line statements The command used to reformat the files in this commit was: ./util/run-clang-tidy \ -clang-tidy-binary clang-tidy-11 -clang-apply-replacements-binary clang-apply-replacements-11 \ -checks=-*,readability-braces-around-statements \ -j 9 \ -fix \ -format \ -style=file \ -quiet clang-format -i --style=format $(git ls-files '*.c' '*.h') uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h') clang-format -i --style=format $(git ls-files '*.c' '*.h')
2020-02-13 21:48:23 +01:00
}
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_detach(&nta);
}
static void
dns__nta_shutdown(dns__nta_t *nta) {
REQUIRE(VALID_NTA(nta));
if (nta->timer != NULL) {
isc_timer_stop(nta->timer);
}
dns__nta_ref(nta);
isc_async_run(nta->loop, (isc_job_cb)dns__nta_shutdown_cb, nta);
Add NTA persistence (#37087) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]
2015-01-12 09:04:16 +05:30
}
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
void
dns_ntatable_shutdown(dns_ntatable_t *ntatable) {
isc_result_t result;
dns_rbtnode_t *node;
dns_rbtnodechain_t chain;
REQUIRE(VALID_NTATABLE(ntatable));
RWLOCK(&ntatable->rwlock, isc_rwlocktype_write);
ntatable->shuttingdown = true;
dns_rbtnodechain_init(&chain);
result = dns_rbtnodechain_first(&chain, ntatable->table, NULL, NULL);
while (result == ISC_R_SUCCESS || result == DNS_R_NEWORIGIN) {
dns_rbtnodechain_current(&chain, NULL, NULL, &node);
if (node->data != NULL) {
Create the negative trust anchor timer on the current loop Instead of always creating the trust anchor timer (dns_nta_t) on the main loop, create the timer on the current loop and associate each dns_nta_t object to the loop it was created on. This simplifies the timer handling as everything is run on the associated loop. During the change, the dns_nta_t structure was renamed to dns__nta_t and changed to be fully internal to the nta.c compilation unit, and the dns_ntatable_t structure was made opaque. This required no change to code using the API as dns_nta_t never had any external users and the dns_ntatable_t was properly accessed only by using function calls.
2022-09-12 16:36:30 +02:00
dns__nta_t *nta = (dns__nta_t *)node->data;
dns__nta_shutdown(nta);
Address use after free between view, resolver and nta. Hold a weak reference to the view so that it can't go away while nta is performing its lookups. Cancel nta timers once all external references to the view have gone to prevent them triggering new work.
2020-08-07 18:00:41 +10:00
}
result = dns_rbtnodechain_next(&chain, NULL, NULL);
}
dns_rbtnodechain_invalidate(&chain);
RWUNLOCK(&ntatable->rwlock, isc_rwlocktype_write);
}
Reference in New Issue Copy Permalink