Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

pdnsutil {add-record,delete-rrset}: Don't append ZONE if NAME ends with . #14984

Open
wants to merge 3 commits into
base: master
Choose a base branch
from

Conversation

ukleinek
Copy link
Contributor

If a NAME ends with a . it is to be understood as an absolute name and appending the zone is not intuitive then.

Closes: #8595

Checklist

I have:

  • read the CONTRIBUTING.md document
  • compiled this code
  • tested this code
  • included documentation (including possible behaviour changes)
  • documented the code
  • added or modified regression test(s)
  • added or modified unit test(s)

@Habbie Habbie added this to the auth-5 milestone Dec 17, 2024
pdns/pdnsutil.cc Outdated Show resolved Hide resolved
@coveralls
Copy link

coveralls commented Dec 17, 2024

Pull Request Test Coverage Report for Build 12748862565

Details

  • 1 of 1 (100.0%) changed or added relevant line in 1 file are covered.
  • 37 unchanged lines in 10 files lost coverage.
  • Overall coverage increased (+8.8%) to 73.684%

Files with Coverage Reduction New Missed Lines %
pdns/dnsdistdist/dnsdist-backend.cc 1 66.73%
pdns/misc.cc 2 64.85%
pdns/recursordist/sortlist.cc 2 72.94%
pdns/packethandler.cc 3 72.48%
pdns/remote_logger.cc 3 53.81%
pdns/iputils.cc 3 54.99%
pdns/recursordist/rec-main.cc 3 62.43%
pdns/recursordist/test-syncres_cc1.cc 5 89.91%
pdns/signingpipe.cc 7 84.18%
pdns/recursordist/ext/luawrapper/include/LuaContext.hpp 8 14.17%
Totals Coverage Status
Change from base Build 12745616875: 8.8%
Covered Lines: 55467
Relevant Lines: 71259

💛 - Coveralls

@ukleinek ukleinek force-pushed the pdnsutil-absolute-names branch from 0429faf to a878c70 Compare December 18, 2024 09:07
@ukleinek
Copy link
Contributor Author

Pushed with using isCanonical(). While working on this change I found that this function open-codes boost::ends_with() and "fixed" that accordingly. Not sure this is benefical, so feel free to only take the first commit.

Fix the respective calls in a test and the docs according to the now
explicit recommendation.

Using NAME=@ is the condition that is explicitly treated for that
purpose in the code. Currently NAME='' and NAME=. have the same effect.
@mind04
Copy link
Contributor

mind04 commented Dec 18, 2024

Add and delete record in pdnsutil are already somewhat special for pdns with the relative names. I'm not sure we should make them even more special by adding canonical logic.

If we touch this, I prefer switching to full names here like the rest of pdns and drop all the fiddling with apex canonical and/or relative names.

@ukleinek
Copy link
Contributor Author

The failing check is clang-tidy which wants me to use { } around the if bodies:
statement should be inside braces (readability-braces-around-statements - Level=Warning)
The style I picked matches the surrounding code. Looking again there is a big mixure, some if statements use braces for one line bodies others don't. There are even mixed ones and inconsistencies if the else starts on a new line or after the closing brace. shrug

@ukleinek ukleinek force-pushed the pdnsutil-absolute-names branch from 5b56440 to 2042465 Compare December 18, 2024 19:18
Copy link
Contributor

@miodvallat miodvallat left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Habbie
Copy link
Member

Habbie commented Jan 10, 2025

If we touch this, I prefer switching to full names here like the rest of pdns and drop all the fiddling with apex canonical and/or relative names.

I have to say I like this, except for breaking compatibility. But I agree the old form confuses people (including myself) all the time. And it in fact simplifies the code.

@ukleinek ukleinek force-pushed the pdnsutil-absolute-names branch from 2042465 to 98be793 Compare January 13, 2025 12:13
@ukleinek
Copy link
Contributor Author

I reworked this now that adding a RR for a name that doesn't end in $zone uses the relative name (with a warning) and interprets as absolute otherwise. IMHO this is a tad nicer than erroring out (which was what we discussed on irc). With the warning added today, we can drop the relative interpretation in a later release with less expected fallout (assuming people read the warning and adapt their usage).

@ukleinek ukleinek force-pushed the pdnsutil-absolute-names branch from 98be793 to a372dae Compare January 13, 2025 13:49
…th . or ZONE

If a NAME ends with a . it is to be understood as an absolute name and
appending the zone is not intuitive then.

Note this changes behaviour for calls like:

	pdnsutil --config-dir=configs/auth add-record example.net . NS 1.2.3.4

which added the NS record to the zone's apex before and is likely an
error now.

Also make both

	pdnsutil --config-dir=configs/auth add-record example.net www.example.net A 1.2.3.5
	pdnsutil --config-dir=configs/auth add-record example.net www A 1.2.3.5

add www.example.net. to the example.net zone.

Closes: PowerDNS#8595
boost:ends_with(qname, ".") behaves exactly as isCanonical(qname)
should. So use the first to implement the latter.
@ukleinek ukleinek force-pushed the pdnsutil-absolute-names branch from 3714bab to 5f8af39 Compare January 13, 2025 14:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

pdnsutil add-record (A) always adds zone to specified value, even when trailing dot is specified in value
6 participants