upstream/knot-dns
1
0
Fork 0
mirror of https://gitlab.nic.cz/knot/knot-dns.git synced 2026-05-28 04:02:31 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
20257 commits 146 branches 210 tags 63 MiB
Commit graph

434 commits

Author SHA1 Message Date
David Vašek
92b2653ae9 doc/reference: a basic description of 'policy.trash-delay' 2026-05-20 09:10:38 +02:00
David Vašek
13b734fd39 doc/reference: fix a typo 2026-05-20 09:10:38 +02:00
Daniel Salzman
839d88fb1c semchecks: check for DELEG at the zone apex 2026-05-06 12:14:06 +02:00
Libor Peltan
5de6f107c1 DELEG: conf knob to enforce/override DELEG-awareness... 
...manually, e.g. even for unsigned zones
 2026-05-06 12:14:06 +02:00
Libor Peltan
eb97f3aa31 dnssec/DELEG: conf knob in policy triggers ADT 2026-05-06 12:14:06 +02:00
Daniel Salzman
0448549f3f xdp: allow configuring ZERO_COPY by 'xdp.zero-copy' 
Disabling ZERO_COPY can help if there is a bug in the kernel/driver.
 2026-03-23 10:50:33 +01:00
Daniel Salzman
b8ef28b656 conf: soften catalog zone configuration checks 2026-02-21 20:31:33 +01:00
Libor Peltan
60cd64a885 doc: warn that moving member between generated catalogs is complicated 2026-02-13 16:45:52 +01:00
Daniel Salzman
1342215081 dbus: emit zone_not_updated signal if zone-updated is enabled 2025-12-18 15:34:15 +01:00
Daniel Salzman
a657f110b6 knotd: remove TCP Fast Open support 
This technology didn’t prove to be helpful.
 2025-12-16 14:36:18 +01:00
Daniel Salzman
314b06225d conf: increase defaults for timer-db-max-size and kasp-db-max-size 2025-12-15 13:45:16 +01:00
Daniel Salzman
3a25b60878 doc: some KSK submission improvements 2025-12-10 15:45:55 +01:00
Libor Peltan
8daa3d91c3 doc/submission: warning about non-application of parent-delay 2025-12-10 14:31:33 +01:00
Daniel Salzman
67b3f17c1f libknot: ED488 is mandatory since GnuTLS 3.6.12 2025-12-05 11:46:14 +01:00
Libor Peltan
3f9b634dab timers: implemented configurable periodic dump 2025-11-24 10:53:08 +01:00
Daniel Salzman
357706157a redis: add multi-db and/or sentinel support 2025-10-15 17:57:46 +02:00
Daniel Salzman
a34e5a096d doc: add default TLS and QUIC ports to reference 2025-10-15 13:50:17 +02:00
Daniel Salzman
b7ab32fcae redis: add support for hostname listen specification 2025-10-15 13:50:01 +02:00
Jan Hák
bafc3a22d9 dbus: add serial to external_verify event 2025-10-06 09:43:04 +02:00
Libor Peltan
9e30320c7e knotd: implement update-delay 2025-09-16 14:59:43 +02:00
Libor Peltan
cbddb5570e reverse+include-from: allow at slave, forcing ixfr-from-axfr 2025-09-15 14:45:25 +02:00
Libor Peltan
ae514d9e52 doc: add reference for redis-related options 2025-09-12 16:58:52 +02:00
Libor Peltan
6408e6493e zone: implemented including records from subzone(s) 2025-09-12 09:37:57 +02:00
Libor Peltan
3900b8cbd7 external-validation: implemented configurable timeout 2025-08-01 17:31:18 +02:00
Libor Peltan
965f9e1ecf dbus: signal when external validation is requested 2025-08-01 17:31:18 +02:00
Libor Peltan
97f8c41a24 external validation: implemented zone/diff dump 2025-08-01 17:31:18 +02:00
Daniel Salzman
6d79f78d3b doc: improve description of reverse-generate 2025-07-25 13:32:20 +02:00
Daniel Salzman
8c59b46adb conf: rework notify-delay to be more practical and consistent with Bind 2025-07-14 07:53:48 +02:00
Libor Peltan
34cb1aef7c dnssec/multi-keystore: implemented ksk-only keystore... 
...so that KSKs and ZSKs can be in distinct keystores
 2025-07-01 10:51:18 +02:00
Libor Peltan
415f5bf88e dnssec: implemented multi-keystore option... 
...useful e.g. for hsm-to-pem migration
 2025-07-01 08:42:04 +02:00
Daniel Salzman
6dce07a796 refresh: establish a new TCP connection for XFR if no-edns is set 2025-06-27 14:29:19 +02:00
Daniel Salzman
342f4466a1 tests-extra: improve stability of quic/xfr under Valgrind 2025-06-24 10:27:41 +02:00
Jan Doskočil
261c378b74 conf: implemented certificate hostname validation 2025-06-23 17:55:14 +02:00
Daniel Salzman
423cbe075f zonemd: emit 'dnssec-invalid' dbus event when validation fails 2025-05-30 13:50:19 +02:00
Jan Doskočil
b753ba3ca5 conf: implement notify-delay option 2025-05-22 08:16:44 +02:00
Libor Peltan
8f06214d68 doc: zone/reverse: some more description 2025-05-06 15:35:49 +02:00
Libor Peltan
6be870f0bf implemented multi-socket CTL... 
...with each socket handled by a thread
 2025-04-14 18:07:52 +02:00
Jan Doskočil
929aa4325d doc/knot.conf: cert-key doesnt rule out TLS 2025-04-14 12:25:09 +02:00
Libor Peltan
6ccf2243cf auto-reverse zones: implemented support for multiple... 
...forward zones to be reversed
 2025-04-04 20:41:27 +02:00
Daniel Salzman
59e67d4e39 knotd: don't use SO_REUSEPORT on a listening UNIX socket 
As it fails with kernels ~6.11.0-21. It doesn't make sense anyway.
 2025-04-03 10:19:36 +02:00
Daniel Salzman
4d36046987 conf: set 'hmac-sha256' as the default TSIG key algorithm 2025-03-31 12:30:03 +02:00
Daniel Salzman
a4da7526eb doc: update links to samples 2025-03-25 11:44:35 +01:00
Daniel Salzman
d3beffbd73 doc: add missing value list in cds-digest-type reference 2025-03-25 11:36:44 +01:00
Libor Peltan
f8472acb5f implemented zonefile-skip option 2025-03-12 08:43:36 +01:00
Libor Peltan
f66c2b7c74 doc: serial modulo/shift enhancements 2025-02-08 13:57:56 +01:00
Daniel Salzman
edcb6b09f7 conf: change default salt length to 0 2024-11-05 15:12:49 +01:00
Jan Hák
6055b7c9f6 acl: add protocol option to the configuration 2024-09-27 12:41:36 +02:00
Daniel Salzman
e5ef44ce7c doc: update the acl.deny item description 2024-09-04 14:01:02 +02:00
Daniel Salzman
86ecefafdf doc: fix typos 2024-09-03 19:33:47 +02:00
Jan Doskočil
fad9ce9f34 yparser: new time unit specifiers 
w = week
M = month
y = year
 2024-08-24 15:17:53 +02:00