Benjamin Fry
414abf7087
remove single add access control methods, only allow slice
2024-02-06 11:23:12 -05:00
Benjamin Fry
27925a8ce7
cleanup evaluation of access lists
2024-02-06 11:23:12 -05:00
Benjamin Fry
91e5065213
renamce Access to AccessControl
2024-02-06 11:23:12 -05:00
Benjamin Fry
456a306f3a
fix typos in Access usage
2024-02-06 11:23:12 -05:00
Benjamin Fry
10d607b8a6
use get_or_insert_with to clean up code
2024-02-06 11:23:12 -05:00
Benjamin Fry
d6a927aba8
add deny networks config option and examples
2024-02-06 11:23:12 -05:00
Benjamin Fry
09bd66ec3c
add deny networks to access
2024-02-06 11:23:12 -05:00
Benjamin Fry
f141667a0b
add config option for allow_networks
2024-02-06 11:23:12 -05:00
Benjamin Fry
4f4f3172bf
wire up Access to check request IP addr before servicing the IP
2024-02-06 11:23:12 -05:00
Benjamin Fry
4b6c7022c4
add access check for IP networks
2024-02-06 11:23:12 -05:00
Jorge Aparicio
7ad5bacbdc
parse dig's output
2024-02-06 16:47:18 +01:00
Jorge Aparicio
fc7cf970a5
fix nameserver's A record & add some docs
2024-02-05 19:51:02 +01:00
Jorge Aparicio
d13186e404
make resolution test work
2024-02-05 19:21:52 +01:00
Jorge Aparicio
984a05e873
revamp zone file generation
2024-02-05 18:33:04 +01:00
Jorge Aparicio
7e9f63d85e
fix non-fatal NSD error about PID file
2024-02-05 15:55:01 +01:00
Jorge Aparicio
1b0f1ef59f
move validation to Domain ctor
2024-02-05 15:53:48 +01:00
Jorge Aparicio
bab595a412
simplify code with minijinja::render!
2024-02-05 15:44:25 +01:00
Jorge Aparicio
cbbb12b3b5
refactor Container methods
2024-02-05 15:03:57 +01:00
Jorge Aparicio
c7e0580c7a
use Ipv4Addr type for IP addresses
2024-02-05 14:42:20 +01:00
Jorge Aparicio
d79581bdcc
fix warnings
2024-02-05 14:27:10 +01:00
Jorge Aparicio
60ecfeca5e
initial RecursiveResolver API
2024-02-05 14:24:01 +01:00
Jorge Aparicio
9101bb1046
only build image once per test runner run
2024-02-02 15:45:12 +01:00
Jorge Aparicio
1d616e822d
rename nsd -> AuthoritativeNameServer
2024-02-02 15:40:43 +01:00
Jorge Aparicio
f4ded488ce
merge all docker images into one
2024-02-02 15:39:38 +01:00
Jorge Aparicio
42de7c3a92
move NsdContainer into its own module
2024-02-02 15:19:29 +01:00
Jorge Aparicio
e997c8cff5
move Container into its own module
2024-02-02 15:15:42 +01:00
Jorge Aparicio
61bb4bb315
test nameserver with dig
2024-02-02 15:09:45 +01:00
Jorge Aparicio
cc753de77c
add NsdContainer
2024-02-02 14:59:13 +01:00
Jorge Aparicio
6026caf25d
make nameserver setup work
2024-02-02 14:48:26 +01:00
Jorge Aparicio
bc10cda9cc
WIP root & tld name server setup
2024-02-01 18:07:00 +01:00
Jorge Aparicio
3c50ca911a
initial Container API
2024-02-01 17:19:01 +01:00
Jorge Aparicio
e6691ffc40
Merge pull request #3 from japaric/expand-dockerfiles-install-tools
...
Prepare containers to work on OSX
2024-02-01 16:31:30 +01:00
Jorge Aparicio
97beb1c083
Merge pull request #2 from japaric/readme-up
...
add TLD name server instructions
2024-02-01 16:25:40 +01:00
Sebastian Ziebell
907f40923d
Prepare containers to work on OSX
...
* copy config files into unbound container
* install vim & tshark in all containers
2024-02-01 16:24:39 +01:00
Jorge Aparicio
88afa403a4
add TLD name server instructions
2024-02-01 16:24:34 +01:00
Jorge Aparicio
ecc73a5255
Merge pull request #1 from japaric/expand-example-setup
...
Expand test setup to run on OSX as well
2024-02-01 15:36:38 +01:00
Sebastian Ziebell
e5c373b6da
Expand test setup to run on OSX as well
...
A client based `Dockerfile` is added to run `dig` & `delv` in, to make
the setup work on OSX.
* set up client container
* install additional tools
* expand Readme with setup instructions
2024-02-01 15:34:30 +01:00
Jorge Aparicio
a438d7c5e1
initial commit
2024-01-29 17:08:18 +01:00
Sebastian J. Bronner
bf655508e9
Update comparison_benches.rs
2024-01-27 14:22:30 -05:00
Sebastian J. Bronner
35de3f8bff
Update mod.rs
2024-01-27 14:22:30 -05:00
Sebastian Ziebell
0ab6d0995f
Only DNSKEY zone keys are allowed to match DS RR
...
In section [5.2 Processing of DS RRs When Validating Responses](https://datatracker.ietf.org/doc/html/rfc4034#section-5.2 ) it states "The DNSKEY RR referred to in the DS RR MUST be a DNSSEC zone key.".
This changes the verification that a corresponding DNSKEY for a DS RR not only matches the digest, but also is zone key.
2024-01-27 14:21:08 -05:00
Wiktor Kwapisiewicz
957078fd5a
Fix a typo in crate description
...
Signed-off-by: Wiktor Kwapisiewicz <wiktor@metacode.biz>
2024-01-25 17:02:35 +01:00
Dirkjan Ochtman
5b4b915d49
Update rusqlite and idna
2024-01-24 07:03:15 +01:00
Dirkjan Ochtman
4b76d91f91
Update semver-compatible dependencies (except clap and deps)
2024-01-24 07:03:15 +01:00
dependabot[bot]
5edab29590
Bump actions/cache from 3 to 4
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3 to 4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-22 15:54:35 +01:00
Benjamin Fry
2cdfab9bf0
clarify the iterators in the Lookup Types
2024-01-06 21:31:56 -05:00
Benjamin Fry
642d33ca71
cleanup rust docs
2024-01-06 21:31:56 -05:00
Marcus Butler
356bb541a4
Refactor is_subzone to use Name::zone_of with additional checks for partially/fully qualified domains.
2024-01-04 23:36:36 -05:00
Marcus Butler
4809a0d10b
Changed to doc comment
2024-01-04 23:36:36 -05:00
Marcus Butler
c003a426f1
Change in_bailiwick function name to be more descriptive (is_subzone)
2024-01-04 23:36:36 -05:00