Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pi-hole FTL v5.12 #1258

Merged
merged 50 commits into from
Dec 22, 2021
Merged

Pi-hole FTL v5.12 #1258

merged 50 commits into from
Dec 22, 2021

Conversation

DL6ER
Copy link
Member

@DL6ER DL6ER commented Dec 20, 2021

By submitting this pull request, I confirm the following:

  • I have read and understood the contributors guide.
  • I have checked that another pull request for this purpose does not exist.
  • I have considered, and confirmed that this submission will be valuable to others.
  • I accept that this submission may not be used, and the pull request closed at the will of the maintainer.
  • I give this submission freely, and claim no ownership to its content.

How familiar are you with the codebase?:

10

What's Changed

DL6ER and others added 30 commits October 24, 2021 09:56
@DL6ER
--local should behave as --server, not as --address according to the …
5dbde7e 
…man page

Signed-off-by: DL6ER <dl6er@dl6er.de>
@simonkelley @DL6ER
Fix truncation logic in make_local_answer()
5129c7e 
add_resource_record() returns 1 if the record was added.
Only increment anscount of so.

Thanks to Petr Menšík for spotting the problem.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@pemensik @DL6ER
Enable locale support for IDN at startup
95473e7 
--address=/münchen.de/ is not accepted unless LOCALEDIR is defined on
build. It is not by default. If LIBIDN1 or 2 is defined, call setlocale
to initialize locale required to translate domains to ascii form.

Signed-off-by: Petr Menšík <pemensik@redhat.com>
Signed-off-by: DL6ER <dl6er@dl6er.de>
@pemensik @DL6ER
Disable transitional IDN rules, accept only sane names
370ed98 
Transitional encoding accepts every emoticon you can think about.
Because setlocale were not enabled before, IDN 2003 input was not
accepted by dnsmasq. It makes no sense therefore to maintain backward
compatibility. Accept only proper encoded unicode names and reject
random unicode characters.

Signed-off-by: Petr Menšík <pemensik@redhat.com>
Signed-off-by: DL6ER <dl6er@dl6er.de>
@simonkelley @DL6ER
Support IDN in --auth-zone.
7fb7556 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
dnsmasq.h has to be included first as it sources config.h
d4cf1e3 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Update embedded dnsmasq version to v2.87test4
a5e8579 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@simonkelley @DL6ER
Add --filter and --filter-AAAA options.
f53cf25 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Include branch, commit, commit-date, architecture and compiler in pih…
a21b0f8 
…ole -vv

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1229 from pi-hole/tweak/pihole_vv
823bdb3 
Extend pihole -vv
@simonkelley @DL6ER
Fix crash in PXE/netboot when DNS server disabled.
29261a5 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@yubiuser
Print FTL version when calling the built in sqlite function only in i…
0fde381 
…nteractive mode

Signed-off-by: Christian König <ckoenig@posteo.de>
@yubiuser
Add a test to check if Pi-hole version is printed in interactive mode
3ef0f24 
Signed-off-by: Christian König <ckoenig@posteo.de>
@DL6ER
Merge pull request #1226 from pi-hole/tweak/sql2
0ed94b2 
Print FTL version when calling the built in sqlite function only in interactive mode
@DL6ER
Compute reply time also for queries which failed upstream
3accb27 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1234 from pi-hole/fix/DNSSEC_BOGUS_reply_time
60b056f 
Compute reply time also for queries which failed upstream
@DL6ER
Tweak logic so we can determine the fastest responding upstream serve…
9102ea9 
…r also in cases where sub-queries had to be asked because long-lived CNAMEs contained short-lived children.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1236 from pi-hole/master
1ae2a1a 
sync master -> development
@DL6ER
Merge pull request #1235 from pi-hole/fix/cached_cname_upstream_dest
c2dca11 
Tweak to determination of fastest upstream
@DL6ER
Analyze and store which upstream sent us an error report (e.g. SERVFA…
585875d 
…IL on DNSSEC BOGUS or REFUSED on rate-limiting)

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1237 from pi-hole/fix/upstream_error_analysis
9bfcc88 
Analyze error report origins
@DL6ER
Improve virtual interface analysis
37d3706 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Do not catch SIGABRT
828d0d7 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1241 from pi-hole/tweak/virtual_interfaces
6a53765 
Improve virtual interface analysis
@DL6ER
Add DNSMASQ_WARN message type whenever dnsmasq logs a warning. Also, …
ff34a0c 
…do not flush the message table on reload (but only on restart) so that config-related (i.e. one-time) warnings are not accidentally deleted.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Ensure message table exists before trying to flush it
bd373c5 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1243 from pi-hole/tweak/warning_messages
827b55a 
Add dnsmasq warnings to message table
@DL6ER
Reduce code duplication by using labels + ensure we do not run dbclos…
028989b 
…e() multiple times on database issues (e.g., when database is locked)

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1244 from pi-hole/tweak/dbclose
0d44449 
Ensure dbclose() is not called multiple times
@DL6ER
Test for warnings defined in dnsmasq's source code
2599cf1 
Signed-off-by: DL6ER <dl6er@dl6er.de>
DL6ER and others added 20 commits November 29, 2021 14:11
@DL6ER
Warn about resource shortages (15min load average exceeding number of…
4c2c59b 
… cores, available disk space for database and log file, and available shared memory (RAM))

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Add options CHECK_LOAD, CHECK_SHMEM, and CHECK_DISK to control checki…
6d7bbcb 
…ng levels and disabling warnings.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Add support for conditional domain suffices in HOSTNAMEFQDN mode
e9bb301 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Review suggestion + we should not warn about load on the CI as this i…
ff16446 
…s out of our control

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Remove redundant warning limit (now defined in config.c)
9c3ff7e 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Fix config logging for new options
49b46d4 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1250 from pi-hole/tweak/conditional_domainsuffix
1729c28 
Add support for conditional domain suffices in HOSTNAMEFQDN mode
@DL6ER
Merge pull request #1249 from pi-hole/tweak/warn_resources
d53b0f6 
Warn about resource shortages
@simonkelley @DL6ER
Fix problems with upper-case in domain-match.
ea689a2 
The domain-match rewrite didn't take into account
that domain names are case-insensitive, so things like

--address=/Example.com/.....

didn't work correctly.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Revert "Ensure correct query ID is stored in forward->frec_src"
50eac5d 
This reverts commit 93cf7f8.
@simonkelley @DL6ER
Fix confusion with log-IDs and DNS retries.
2924c29 
The IDs logged when --log-queries=extra is in effect
can be wrong in three cases.

1) When query is retried in response to a a SERVFAIL or REFUSED
answer from upstream. In this case the ID of an unrelated query will
appear in the answer log lines.

2) When the same query arrives from two clients. The query is
sent upstream once, as designed, and the result returned to both clients,
as designed, but the reply to the first client gets the log-ID of the
second query in error.

3) When a query arrives, is sent upstream, and the reply comes back,
but the transaction is blocked awaiting a DNSSEC query needed to validate
the reply. If the client retries the query in this state, the blocking
DNSSEC query will be resent, as designed, but that send will be logged with
the ID of the original, currently blocked, query.

Thanks to  Dominik Derigs for his analysis of this problem.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge branch 'development' into update/dnsmasq
9c5f14d
@DL6ER
Update SQLite engine from 3.36.0 to 3.37.0
db5e13d 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1251 from pi-hole/update/sqlite_3.37.0
5b9eefd 
Update SQLite engine from 3.36.0 to 3.37.0
@DL6ER
Merge pull request #1246 from pi-hole/test/dnsmasq_warnings
9c16f71 
Test for dnsmasq warning messages in source code
@DL6ER
Merge pull request #1252 from pi-hole/tweak/abort
d987d3c 
Do not catch SIGABRT
@guns @DL6ER
Correctly return a heap-allocated empty string instead of NULL
768b10d 
Commit 32e15c3f458c2e8838a9ecf7d478ecb6750516bf added the following
change:

  --- a/src/dnsmasq/option.c
  +++ b/src/dnsmasq/option.c
  @@ -654,7 +654,7 @@ static char *canonicalise_opt(char *s)
       return 0;

     if (strlen(s) == 0)
  -    return "";
  +    return opt_string_alloc("");

     unhide_metas(s);
     if (!(ret = canonicalise(s, &nomem)) && nomem)

Unfortunately, opt_string_alloc(const char *cp) returns NULL when
strlen(cp) == 0, which in turn causes --rebind-domain-ok='' to crash
with SIGSEGV.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@simonkelley @DL6ER
Fix regression in --rebind-domain-ok in 2.86
89a8864 
The 2.86 domain-match rewrite changed matching from
whole-labels to substring matching, so example.com
would match example.com and www.example.com, as before,
but also goodexample.com, which is a regression. This
restores the original behaviour.

Also restore the behaviour of --rebind-domain-ok=//
to match domains with onlt a single label and no dots.

Thanks to Sung Pae for reporting these bugs and supplying
an initial patch.

Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Update dnsmasq version string
d294b2f 
Signed-off-by: DL6ER <dl6er@dl6er.de>
@DL6ER
Merge pull request #1230 from pi-hole/update/dnsmasq
92a27e7 
Update embedded dnsmasq to v2.87test4-6
@DL6ER DL6ER added the Release label Dec 22, 2021
@PromoFaux PromoFaux merged commit 83a950b into master Dec 22, 2021
@pralor-bot
Copy link

This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there:

https://discourse.pi-hole.net/t/nach-update-keine-counter-mehr/51812/7

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@PromoFaux PromoFaux PromoFaux approved these changes

@dschaper dschaper Awaiting requested review from dschaper

@yubiuser yubiuser Awaiting requested review from yubiuser

Assignees
No one assigned
Labels
Release
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@DL6ER @pralor-bot @PromoFaux @simonkelley @pemensik @yubiuser @guns