4700. [func] Serving of stale answers is now supported. This
allows named to provide stale cached answers when
the authoritative server is under attack.
See max-stale-ttl, stale-answer-enable,
stale-answer-ttl. [RT #44790]
This commit is contained in:
Mark Andrews
@@ -19,8 +19,9 @@
|
||||
|
||||
#include <dns/db.h>
|
||||
#include <dns/dbiterator.h>
|
||||
#include <dns/name.h>
|
||||
#include <dns/journal.h>
|
||||
#include <dns/name.h>
|
||||
#include <dns/rdatalist.h>
|
||||
|
||||
#include "dnstest.h"
|
||||
|
||||
@@ -54,25 +55,230 @@ ATF_TC_BODY(getoriginnode, tc) {
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_create(mymctx, "rbt", dns_rootname, dns_dbtype_zone,
|
||||
dns_rdataclass_in, 0, NULL, &db);
|
||||
dns_rdataclass_in, 0, NULL, &db);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_getoriginnode(db, &node);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
ATF_CHECK_EQ(result, ISC_R_SUCCESS);
|
||||
dns_db_detachnode(db, &node);
|
||||
|
||||
result = dns_db_getoriginnode(db, &node);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
ATF_CHECK_EQ(result, ISC_R_SUCCESS);
|
||||
dns_db_detachnode(db, &node);
|
||||
|
||||
dns_db_detach(&db);
|
||||
isc_mem_detach(&mymctx);
|
||||
}
|
||||
|
||||
ATF_TC(getsetservestalettl);
|
||||
ATF_TC_HEAD(getsetservestalettl, tc) {
|
||||
atf_tc_set_md_var(tc, "descr",
|
||||
"test getservestalettl and setservestalettl");
|
||||
}
|
||||
ATF_TC_BODY(getsetservestalettl, tc) {
|
||||
dns_db_t *db = NULL;
|
||||
isc_mem_t *mymctx = NULL;
|
||||
isc_result_t result;
|
||||
dns_ttl_t ttl;
|
||||
|
||||
result = isc_mem_create(0, 0, &mymctx);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = isc_hash_create(mymctx, NULL, 256);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_create(mymctx, "rbt", dns_rootname, dns_dbtype_cache,
|
||||
dns_rdataclass_in, 0, NULL, &db);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
ttl = 5000;
|
||||
result = dns_db_getservestalettl(db, &ttl);
|
||||
ATF_CHECK_EQ_MSG(result, ISC_R_SUCCESS, "dns_db_getservestalettl");
|
||||
ATF_CHECK_EQ_MSG(ttl, 0, "dns_db_getservestalettl initial value");
|
||||
|
||||
ttl = 6 * 3600;
|
||||
result = dns_db_setservestalettl(db, ttl);
|
||||
ATF_CHECK_EQ_MSG(result, ISC_R_SUCCESS, "dns_db_setservestalettl");
|
||||
|
||||
ttl = 5000;
|
||||
result = dns_db_getservestalettl(db, &ttl);
|
||||
ATF_CHECK_EQ_MSG(result, ISC_R_SUCCESS, "dns_db_getservestalettl");
|
||||
ATF_CHECK_EQ_MSG(ttl, 6 * 3600, "dns_db_getservestalettl update value");
|
||||
|
||||
dns_db_detach(&db);
|
||||
isc_mem_detach(&mymctx);
|
||||
}
|
||||
|
||||
ATF_TC(dns_dbfind_staleok);
|
||||
ATF_TC_HEAD(dns_dbfind_staleok, tc) {
|
||||
atf_tc_set_md_var(tc, "descr",
|
||||
"check DNS_DBFIND_STALEOK works");
|
||||
}
|
||||
ATF_TC_BODY(dns_dbfind_staleok, tc) {
|
||||
dns_db_t *db = NULL;
|
||||
dns_dbnode_t *node = NULL;
|
||||
dns_fixedname_t example_fixed;
|
||||
dns_fixedname_t found_fixed;
|
||||
dns_name_t *example;
|
||||
dns_name_t *found;
|
||||
dns_rdatalist_t rdatalist;
|
||||
dns_rdataset_t rdataset;
|
||||
int count;
|
||||
int pass;
|
||||
isc_mem_t *mymctx = NULL;
|
||||
isc_result_t result;
|
||||
unsigned char data[] = { 0x0a, 0x00, 0x00, 0x01 };
|
||||
|
||||
result = isc_mem_create(0, 0, &mymctx);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = isc_hash_create(mymctx, NULL, 256);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_create(mymctx, "rbt", dns_rootname, dns_dbtype_cache,
|
||||
dns_rdataclass_in, 0, NULL, &db);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
dns_fixedname_init(&example_fixed);
|
||||
example = dns_fixedname_name(&example_fixed);
|
||||
|
||||
dns_fixedname_init(&found_fixed);
|
||||
found = dns_fixedname_name(&found_fixed);
|
||||
|
||||
result = dns_name_fromstring(example, "example", 0, NULL);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
/*
|
||||
* Pass 0: default; no stale processing permitted.
|
||||
* Pass 1: stale processing for 1 second.
|
||||
* Pass 2: stale turned off after being on.
|
||||
*/
|
||||
for (pass = 0; pass < 3; pass++) {
|
||||
dns_rdata_t rdata = DNS_RDATA_INIT;
|
||||
|
||||
/* 10.0.0.1 */
|
||||
rdata.data = data;
|
||||
rdata.length = 4;
|
||||
rdata.rdclass = dns_rdataclass_in;
|
||||
rdata.type = dns_rdatatype_a;
|
||||
|
||||
dns_rdatalist_init(&rdatalist);
|
||||
rdatalist.ttl = 2;
|
||||
rdatalist.type = dns_rdatatype_a;
|
||||
rdatalist.rdclass = dns_rdataclass_in;
|
||||
ISC_LIST_APPEND(rdatalist.rdata, &rdata, link);
|
||||
|
||||
switch (pass) {
|
||||
case 0:
|
||||
/* default: stale processing off */
|
||||
break;
|
||||
case 1:
|
||||
/* turn on stale processing */
|
||||
result = dns_db_setservestalettl(db, 1);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
break;
|
||||
case 2:
|
||||
/* turn off stale processing */
|
||||
result = dns_db_setservestalettl(db, 0);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
break;
|
||||
}
|
||||
|
||||
dns_rdataset_init(&rdataset);
|
||||
result = dns_rdatalist_tordataset(&rdatalist, &rdataset);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_findnode(db, example, ISC_TRUE, &node);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
result = dns_db_addrdataset(db, node, NULL, 0, &rdataset, 0,
|
||||
NULL);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
dns_db_detachnode(db, &node);
|
||||
dns_rdataset_disassociate(&rdataset);
|
||||
|
||||
result = dns_db_find(db, example, NULL, dns_rdatatype_a,
|
||||
0, 0, &node, found, &rdataset, NULL);
|
||||
ATF_REQUIRE_EQ(result, ISC_R_SUCCESS);
|
||||
|
||||
/*
|
||||
* May loop for up to 2 seconds performing non stale lookups.
|
||||
*/
|
||||
count = 0;
|
||||
do {
|
||||
count++;
|
||||
ATF_REQUIRE(count < 21); /* loop sanity */
|
||||
ATF_CHECK_EQ(rdataset.attributes &
|
||||
DNS_RDATASETATTR_STALE, 0);
|
||||
ATF_CHECK(rdataset.ttl > 0);
|
||||
dns_db_detachnode(db, &node);
|
||||
dns_rdataset_disassociate(&rdataset);
|
||||
|
||||
usleep(100000); /* 100 ms */
|
||||
|
||||
result = dns_db_find(db, example, NULL,
|
||||
dns_rdatatype_a, 0, 0,
|
||||
&node, found, &rdataset, NULL);
|
||||
} while (result == ISC_R_SUCCESS);
|
||||
|
||||
ATF_CHECK_EQ(result, ISC_R_NOTFOUND);
|
||||
|
||||
/*
|
||||
* Check whether we can get stale data.
|
||||
*/
|
||||
result = dns_db_find(db, example, NULL, dns_rdatatype_a,
|
||||
DNS_DBFIND_STALEOK, 0,
|
||||
&node, found, &rdataset, NULL);
|
||||
switch (pass) {
|
||||
case 0:
|
||||
ATF_CHECK_EQ(result, ISC_R_NOTFOUND);
|
||||
break;
|
||||
case 1:
|
||||
/*
|
||||
* Should loop for 1 second with stale lookups then
|
||||
* stop.
|
||||
*/
|
||||
count = 0;
|
||||
do {
|
||||
count++;
|
||||
ATF_REQUIRE(count < 50); /* loop sanity */
|
||||
ATF_CHECK_EQ(result, ISC_R_SUCCESS);
|
||||
ATF_CHECK_EQ(rdataset.ttl, 0);
|
||||
ATF_CHECK_EQ(rdataset.attributes &
|
||||
DNS_RDATASETATTR_STALE,
|
||||
DNS_RDATASETATTR_STALE);
|
||||
dns_db_detachnode(db, &node);
|
||||
dns_rdataset_disassociate(&rdataset);
|
||||
|
||||
usleep(100000); /* 100 ms */
|
||||
|
||||
result = dns_db_find(db, example, NULL,
|
||||
dns_rdatatype_a,
|
||||
DNS_DBFIND_STALEOK,
|
||||
0, &node, found,
|
||||
&rdataset, NULL);
|
||||
} while (result == ISC_R_SUCCESS);
|
||||
ATF_CHECK(count > 1);
|
||||
ATF_CHECK(count < 11);
|
||||
ATF_CHECK_EQ(result, ISC_R_NOTFOUND);
|
||||
break;
|
||||
case 2:
|
||||
ATF_CHECK_EQ(result, ISC_R_NOTFOUND);
|
||||
break;
|
||||
}
|
||||
}
|
||||
|
||||
dns_db_detach(&db);
|
||||
isc_mem_detach(&mymctx);
|
||||
}
|
||||
|
||||
/*
|
||||
* Main
|
||||
*/
|
||||
ATF_TP_ADD_TCS(tp) {
|
||||
ATF_TP_ADD_TC(tp, getoriginnode);
|
||||
ATF_TP_ADD_TC(tp, getsetservestalettl);
|
||||
ATF_TP_ADD_TC(tp, dns_dbfind_staleok);
|
||||
return (atf_no_error());
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user