Benjamin Fry
94ac564c3f
ignore portions of the README in Oranda site generation
2024-04-14 11:30:50 +02:00
Daniel McCarney
5aeb1d0209
resolver: err for dns-over-rustls w/o roots
...
If we find that we've constructed a Rustls root cert store that has no
trust anchors, return an early error. This makes the problem obvious
and avoids surfacing some other less specific error cause when we first
try to validate a peer certificate with an empty root store.
In order for our new early error to be surfaced correctly the
`name_sever_pool.rs` `parallel_conn_loop` fn needs its error handling
adjusted. Previously it would always compare the new error produced by
trying to build the TLS config against the default error it starts its
loop with, `ProtoErrorKind::NoConnections`. Since the error being
returned is another `ProtoErrorKind`, and the error specificity
comparison considers two `ProtoErrorKinds` equivalent in the general
case, the default error was always returned and the new error thrown
away.
2024-04-14 07:33:30 +02:00
Daniel McCarney
2e84c1184b
error: wrap io::Error in Arc for clone
...
`ProtoErrorKind` is `Clone`, but the `Io` variant holding `io:Error`
runs into trouble with this: since the error can't be cloned we have to
reconstruct it and this is a lossy process: resulting in a "simple"
`io::Error` that only holds the error type from the parent it was cloned
from. This loses important details like the underlying error
source/message.
This commit changes `ProtoErrorKind::Io` to hold `Arc<io::Error>>`
instead. This makes implementing `Clone` trivial - we clone the arc
- and no error information is lost.
2024-04-14 07:30:55 +02:00
0xffffharry
6c2a1e2c23
Make QuicClientStream Clonable
2024-04-10 09:42:39 +02:00
Dirkjan Ochtman
f1ced8a958
Update semver-compatible dependencies
2024-04-09 21:43:08 -04:00
Jorge Aparicio
4f024887e0
CI: test unbound (subject) against BIND (peers)
2024-03-28 21:41:31 +00:00
Jorge Aparicio
7aa9d543b4
support BIND in the NameServer role
2024-03-28 21:41:31 +00:00
Dirkjan Ochtman
70be0c5aa0
Upgrade rusqlite to 0.31
2024-03-22 08:33:27 -04:00
Dirkjan Ochtman
b7ce4cc292
Upgrade prefix-trie to 0.3
2024-03-22 08:33:27 -04:00
Dirkjan Ochtman
fced74e477
Update semver-compatible dependencies
2024-03-22 08:33:27 -04:00
Dirkjan Ochtman
4ebc33f2f1
Apply clippy suggestions from Rust 1.77
2024-03-22 08:33:27 -04:00
dependabot[bot]
9e8f8c67fb
Bump http from 1.0.0 to 1.1.0
...
Bumps [http](https://github.com/hyperium/http ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/hyperium/http/releases )
- [Changelog](https://github.com/hyperium/http/blob/master/CHANGELOG.md )
- [Commits](https://github.com/hyperium/http/compare/v1.0.0...v1.1.0 )
---
updated-dependencies:
- dependency-name: http
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-16 14:36:15 -04:00
dependabot[bot]
e9d7075ed4
Bump extractions/setup-just from 1 to 2
...
Bumps [extractions/setup-just](https://github.com/extractions/setup-just ) from 1 to 2.
- [Release notes](https://github.com/extractions/setup-just/releases )
- [Commits](https://github.com/extractions/setup-just/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: extractions/setup-just
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-16 13:45:38 -04:00
David Lönnhager
d2e64d8d26
Break when socket is unexpectedly shut down
2024-03-16 13:21:54 -04:00
Jorge Aparicio
d25cc923ec
Merge pull request #27 from ferrous-systems/ja-bind-impl
...
support using BIND in the Resolver role
2024-03-11 12:04:58 +01:00
Jorge Aparicio
90ee7b30f6
CI: run conformance tests against BIND
2024-03-11 11:59:56 +01:00
Jorge Aparicio
2c4ef88a98
support using BIND in the Resolver role
2024-03-11 11:59:56 +01:00
Jorge Aparicio
b8605f7944
Merge pull request #36 from ferrous-systems/ja-contraindications
...
README: cover dns-test automatic clean-up
2024-03-11 11:58:34 +01:00
Jorge Aparicio
f3bd5a1c55
README: cover dns-test automatic clean-up
...
and advise against running tests with cargo-watch
2024-03-07 16:04:18 +01:00
Marcus Butler
da41e4ad06
Update mio to 0.8.11 to fix RUSTSEC-2024-0019
2024-03-04 23:03:01 +01:00
Marcus Butler
3db11773cd
Fix formatting issue in crates/proto/src/op/message.rs
2024-03-04 23:02:24 +01:00
Hoe Hao Cheng
f382e96a90
Forward hickory-dns's root cert features to hickory-resolver
2024-03-04 14:39:29 +01:00
situ2001
966bc27c6e
fix: not returning the result of a let
binding from a block
2024-03-02 13:03:23 -05:00
situ2001
92ff81ca29
test: Header count setting
2024-03-02 13:03:23 -05:00
situ2001
b1e35ad619
chore: add comments
2024-03-02 13:03:23 -05:00
situ2001
a85852ab98
feat: add setter methods for Message struct to improve configurability
2024-03-02 13:03:23 -05:00
Benjamin Fry
cf0f048434
rename proven fields to "require"
2024-03-02 11:43:52 -05:00
Benjamin Fry
32a4118ec0
fix some comment and other review issues
2024-03-02 11:43:52 -05:00
Benjamin Fry
574cb82e47
make Proof must_use, add Proven::into_parts
2024-03-02 11:43:52 -05:00
Benjamin Fry
5c53fbcdad
add dnssec lookup to Lookup
2024-03-02 11:43:52 -05:00
Benjamin Fry
494fb8df45
Add proven type to require validation before use
2024-03-02 11:43:52 -05:00
Benjamin Fry
d1da894e37
use find_map instead of filter_map in Lookup
2024-03-02 11:43:52 -05:00
Benjamin Fry
6774fb053e
clean up after rrsig changes
2024-03-02 11:43:52 -05:00
Benjamin Fry
ec806ae445
change results of validation to always return records
2024-03-02 11:43:52 -05:00
Benjamin Fry
1d2a1df0ee
change to Proofs to rrset validation
2024-03-02 11:43:52 -05:00
Benjamin Fry
9fc8fa5bad
Better Proofs for DNSKEY validation
2024-03-02 11:43:52 -05:00
Benjamin Fry
c0f93de61e
add DS proof validation
2024-03-02 11:43:52 -05:00
Benjamin Fry
98933eeb85
Remove generic Error from DnsHandle
2024-03-02 11:43:52 -05:00
Benjamin Fry
de0b4605b5
simplify async proof validation and reduce clones
2024-03-02 11:43:52 -05:00
Benjamin Fry
46d30cbec8
cleanup some of the clones of records on verification
2024-03-02 11:43:52 -05:00
Benjamin Fry
a549a35252
add in additionals for validation
2024-03-02 11:43:52 -05:00
Benjamin Fry
14f4f0a4b6
add a test for Secure records
2024-03-02 11:43:52 -05:00
Benjamin Fry
70d8e6fc0f
add Proof to resource::Record
2024-03-02 11:43:52 -05:00
Benjamin Fry
c15b91abdf
remove unnecessary clones of rrsig in dnssec
2024-03-02 11:43:52 -05:00
Benjamin Fry
8538d68f8d
Notes on changes to dnssec proof, and unwrap RRSIG from Record
2024-03-02 11:43:52 -05:00
Benjamin Fry
1723a15260
remove with deprecation
2024-03-02 11:43:52 -05:00
Benjamin Fry
e2c82f6991
change internal usage from set_rr_type to set_record_type
2024-03-02 11:43:52 -05:00
Benjamin Fry
c0c2b2fa89
make dnssec methods more type safe
2024-03-02 11:43:52 -05:00
Benjamin Fry
bc044e89f3
Add Proof to NSEC results
2024-03-02 11:43:52 -05:00
Benjamin Fry
552fa36dc3
Add Proof type for DNSSEC
2024-03-02 11:43:52 -05:00