WIP ZONEVERSION (RFC9660) support #14818

Habbie · 2024-11-04T14:39:53Z

Short description

$ pdns/sdig 127.0.0.1 5300 www.example.com soa   zoneversion
Reply to question for qname='www.example.com.', qtype=SOA
Rcode: 0 (No Error), RD: 0, QR: 1, TC: 0, AA: 1, opcode: 0
1	example.com.	3005	IN	SOA	a.misconfigured.dns.server.invalid. hostmaster.example.com. 1731417315 10800 3600 604800 3600
2	.	0	IN	OPT	ABMABgIAZzNU4wATAAYC9nilCsY=
EDNS Zone Version (SOA serial) for labelcount 2: 1731417315
EDNS Zone Version (type 246) for labelcount 2: 2024082118

SOA serial is the served serial. type 246 is the unedited serial in our backend storage.

TODO:

Checklist

I have:

read the CONTRIBUTING.md document
compiled this code
tested this code
included documentation (including possible behaviour changes)
documented the code
added or modified regression test(s)
added or modified unit test(s)
checked that this code was merged to master

coveralls · 2024-11-04T15:13:20Z

Pull Request Test Coverage Report for Build 11799714388

Details

10 of 56 (17.86%) changed or added relevant lines in 3 files are covered.
76 unchanged lines in 13 files lost coverage.
Overall coverage decreased (-0.02%) to 64.664%

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
pdns/packethandler.cc	2	5	40.0%
pdns/dnspacket.cc	8	23	34.78%
pdns/ednszoneversion.cc	0	28	0.0%

Files with Coverage Reduction	New Missed Lines	%
ext/json11/json11.cpp	1	64.49%
pdns/recursordist/recursor_cache.cc	1	84.13%
pdns/misc.cc	2	63.6%
pdns/sstuff.hh	2	56.83%
modules/lmdbbackend/lmdbbackend.cc	2	73.53%
pdns/recursordist/test-syncres_cc2.cc	3	88.85%
pdns/stubresolver.cc	3	77.58%
pdns/packethandler.cc	3	72.53%
pdns/iputils.cc	3	55.91%
pdns/signingpipe.cc	5	83.38%

Totals
Change from base Build 11796572634:	-0.02%
Covered Lines:	125770
Relevant Lines:	163653

💛 - Coveralls

pdns/dnspacket.cc

+        auto& edited_serial = auth_serial.second.second;
+
+        uint8_t labelcount = name.countLabels();
+        EDNSZoneVersion unedited = {labelcount, 0 /* FIXME enum */, unedited_serial};


pdns/dnspacket.cc

pdns/ednszoneversion.cc

+{
+  uint8_t labelcount;
+  uint8_t type;
+  char version[256]; // FIXME they can be bigger


pdns/ednszoneversion.cc

+
+bool getEDNSZoneVersionFromString(const string& options, EDNSZoneVersion& zoneversion)
+{
+  // cerr<<"options.size:"<<options.size()<<endl;


pdns/ednszoneversion.cc

+bool getEDNSZoneVersionFromString(const char* options, unsigned int len, EDNSZoneVersion& zoneversion)
+{
+  EDNSZoneVersionWire zoneversionw{};
+  // static_assert(sizeof(zoneversionw) == 4, "sizeof(EDNSSubnetOptsWire) must be 4 bytes");


pdns/ednszoneversion.cc

+  EDNSZoneVersionWire zoneversionw{};
+  // static_assert(sizeof(zoneversionw) == 4, "sizeof(EDNSSubnetOptsWire) must be 4 bytes");
+  if (len > sizeof(zoneversionw)) {
+    return false; // FIXME this silently breaks on >256 bytes of version


pdns/sdig.cc

+      } else if (iter->first == EDNSOptionCode::ZONEVERSION) {
+        EDNSZoneVersion zoneversion;
+        if (getEDNSZoneVersionFromString(iter->second, zoneversion)) {
+          if (zoneversion.type == 0) { // FIXME enum


pdns/dnspacket.cc

+
+        uint8_t labelcount = name.countLabels();
+        EDNSZoneVersion unedited = {labelcount, 0 /* FIXME enum */, unedited_serial};
+        EDNSZoneVersion edited = {labelcount, 246 /* FIXME enum and wrong number */, edited_serial};


this works: ./sdig 200.1.122.30 53 dateserial.example.com A zoneversion Reply to question for qname='dateserial.example.com.', qtype=A Rcode: 0 (No Error), RD: 0, QR: 1, TC: 0, AA: 1, opcode: 0 1 dateserial.example.com. 43200 IN SOA ns.dateserial.example.com. hsalgado.nic.cl. 2023050202 21600 7200 2592000 43200 2 . 0 IN OPT ABMABgMAeJVL2g== EDNS Zone Version for labelcount 3: 2023050202 missing: * support in auth * meson updates * good code

Habbie added this to the auth-5 milestone Nov 4, 2024

Habbie added auth feature request labels Nov 4, 2024

github-advanced-security bot found potential problems Nov 7, 2024

View reviewed changes

Habbie added 13 commits November 12, 2024 15:41

note type check fixme

5aaaf40

check type

57eed0d

stash partial work

59e2b52

auth: emit zoneversion +fake other type -always-

c8eab61

forgot these files

b38708a

use private point

c8d903d

sdig: print labelcount for non-0 types

b6cc735

only send (and even generate) zoneversion data when requested

a5c5ad8

use serial/edited serial correctly

496d869

explicitly set d_wantszoneversion

cb0c75f

format

9e99aa6

meson build, remotebackend autotools build

edfd25b

Habbie force-pushed the zoneversion branch from d4fa1d5 to edfd25b Compare November 12, 2024 14:42

clang-tidy

e532c0c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WIP ZONEVERSION (RFC9660) support #14818

WIP ZONEVERSION (RFC9660) support #14818

Habbie commented Nov 4, 2024 •

edited

Loading

coveralls commented Nov 4, 2024 •

edited

Loading

WIP ZONEVERSION (RFC9660) support #14818

Are you sure you want to change the base?

WIP ZONEVERSION (RFC9660) support #14818

Conversation

Habbie commented Nov 4, 2024 • edited Loading

Short description

Checklist

coveralls commented Nov 4, 2024 • edited Loading

Pull Request Test Coverage Report for Build 11799714388

Details

💛 - Coveralls

Habbie commented Nov 4, 2024 •

edited

Loading

coveralls commented Nov 4, 2024 •

edited

Loading