mirror of
https://github.com/isc-projects/bind9.git
synced 2026-06-11 02:49:59 -04:00
Merge branch '963-dnstap-check-ra-v9_14' into 'v9_14'
dnstap: if recursion is not available, log queries as AQ instead of CQ See merge request isc-projects/bind9!1799
This commit is contained in:
Evan Hunt
commit
7378ba8a80
3 changed files with 23 additions and 15 deletions
6
CHANGES
6
CHANGES
|
|
@ -1,3 +1,9 @@
|
|||
5210. [bug] When dnstap is enabled and recursion is not
|
||||
available, incoming queries are now logged
|
||||
as "auth". Previously, this depended on whether
|
||||
recursion was requested by the client, not on
|
||||
whether recursion was available. [GL #963]
|
||||
|
||||
5208. [test] Run valid rdata wire encodings through totext+fromtext
|
||||
and tofmttext+fromtext methods to check these methods.
|
||||
[GL #899]
|
||||
|
|
|
|||
|
|
@ -145,16 +145,16 @@ status=`expr $status + $ret`
|
|||
|
||||
echo_i "checking AUTH_QUERY message counts"
|
||||
ret=0
|
||||
[ $aq1 -eq 2 ] || {
|
||||
echo_i "ns1 $aq1 exepcted 2"
|
||||
[ $aq1 -eq 3 ] || {
|
||||
echo_i "ns1 $aq1 exepcted 3"
|
||||
ret=1
|
||||
}
|
||||
[ $aq2 -eq 1 ] || {
|
||||
echo_i "ns2 $aq2 expected 1"
|
||||
[ $aq2 -eq 2 ] || {
|
||||
echo_i "ns2 $aq2 expected 2"
|
||||
ret=1
|
||||
}
|
||||
[ $aq3 -eq 0 ] || {
|
||||
echo_i "ns3 $aq3 expected 0"
|
||||
[ $aq3 -eq 1 ] || {
|
||||
echo_i "ns3 $aq3 expected 1"
|
||||
ret=1
|
||||
}
|
||||
if [ $ret != 0 ]; then echo_i "failed"; fi
|
||||
|
|
@ -179,16 +179,16 @@ status=`expr $status + $ret`
|
|||
|
||||
echo_i "checking CLIENT_QUERY message counts"
|
||||
ret=0
|
||||
[ $cq1 -eq 1 ] || {
|
||||
echo_i "ns1 $cq1 expected 1"
|
||||
[ $cq1 -eq 0 ] || {
|
||||
echo_i "ns1 $cq1 expected 0"
|
||||
ret=1
|
||||
}
|
||||
[ $cq2 -eq 1 ] || {
|
||||
echo_i "ns2 $cq2 expected 1"
|
||||
[ $cq2 -eq 0 ] || {
|
||||
echo_i "ns2 $cq2 expected 0"
|
||||
ret=1
|
||||
}
|
||||
[ $cq3 -eq 2 ] || {
|
||||
echo_i "ns3 $cq3 expected 2"
|
||||
[ $cq3 -eq 1 ] || {
|
||||
echo_i "ns3 $cq3 expected 1"
|
||||
ret=1
|
||||
}
|
||||
if [ $ret != 0 ]; then echo_i "failed"; fi
|
||||
|
|
|
|||
|
|
@ -2789,8 +2789,9 @@ ns__client_request(isc_task_t *task, isc_event_t *event) {
|
|||
true) == ISC_R_SUCCESS)
|
||||
ra = true;
|
||||
|
||||
if (ra == true)
|
||||
if (ra == true) {
|
||||
client->attributes |= NS_CLIENTATTR_RA;
|
||||
}
|
||||
|
||||
ns_client_log(client, DNS_LOGCATEGORY_SECURITY, NS_LOGMODULE_CLIENT,
|
||||
ISC_LOG_DEBUG(3), ra ? "recursion available" :
|
||||
|
|
@ -2817,10 +2818,11 @@ ns__client_request(isc_task_t *task, isc_event_t *event) {
|
|||
case dns_opcode_query:
|
||||
CTRACE("query");
|
||||
#ifdef HAVE_DNSTAP
|
||||
if ((client->message->flags & DNS_MESSAGEFLAG_RD) != 0)
|
||||
if (ra && (client->message->flags & DNS_MESSAGEFLAG_RD) != 0) {
|
||||
dtmsgtype = DNS_DTTYPE_CQ;
|
||||
else
|
||||
} else {
|
||||
dtmsgtype = DNS_DTTYPE_AQ;
|
||||
}
|
||||
|
||||
dns_dt_send(client->view, dtmsgtype, &client->peeraddr,
|
||||
&client->destsockaddr, TCP_CLIENT(client), NULL,
|
||||
|
|
|
|||
Loading…
Reference in a new issue