Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

dns: T6422: allow multiple redundant NS records #3557

Merged
merged 2 commits into from
May 31, 2024
Merged

dns: T6422: allow multiple redundant NS records #3557

merged 2 commits into from
May 31, 2024

Conversation

haimgel
Copy link
Contributor

@haimgel haimgel commented May 30, 2024
edited
Loading

Change Summary

NS is unlike CNAME or PTR, multiple NS records are perfectly valid and is a common use case: multiple redundant DNS servers is a common configuration and should be supported.

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Code style update (formatting, renaming)
  • Refactoring (no functional changes)
  • Migration from an old Vyatta component to vyos-1x, please link to related PR inside obsoleted component
  • Other (please describe):

Component(s) name

dns

Proposed changes

Make NS record configuration behave more like A record, where multiple records with the same target are allowed.

How to test

set service dns forwarding authoritative-domain example.com records ns test target 'ns1.example.com'
set service dns forwarding authoritative-domain example.com records ns test target 'ns2.example.com'
commit

dig ns test.example.com

Response:
;; ANSWER SECTION:
test.example.com.	254	IN	NS	ns2.example.com.
test.example.com.	254	IN	NS	ns1.example.com.

Smoketest result

$ /usr/libexec/vyos/tests/smoke/cli/test_service_dns_forwarding.py
test_basic_forwarding (__main__.TestServicePowerDNS.test_basic_forwarding) ...
DNS forwarding requires a listen-address


DNS forwarding requires a listen-address

ok
test_dns64 (__main__.TestServicePowerDNS.test_dns64) ...
DNS 6to4 prefix must be of length /96

ok
test_dnssec (__main__.TestServicePowerDNS.test_dnssec) ... ok
test_domain_forwarding (__main__.TestServicePowerDNS.test_domain_forwarding) ... ok
test_ecs_add_for (__main__.TestServicePowerDNS.test_ecs_add_for) ... ok
test_ecs_ipv4_bits (__main__.TestServicePowerDNS.test_ecs_ipv4_bits) ... ok
test_edns_subnet_allow_list (__main__.TestServicePowerDNS.test_edns_subnet_allow_list) ... ok
test_exclude_throttle_adress (__main__.TestServicePowerDNS.test_exclude_throttle_adress) ... ok
test_external_nameserver (__main__.TestServicePowerDNS.test_external_nameserver) ... ok
test_listening_port (__main__.TestServicePowerDNS.test_listening_port) ... ok
test_multiple_ns_records (__main__.TestServicePowerDNS.test_multiple_ns_records) ... ok
test_no_rfc1918_forwarding (__main__.TestServicePowerDNS.test_no_rfc1918_forwarding) ... ok
test_serve_stale_extension (__main__.TestServicePowerDNS.test_serve_stale_extension) ... ok

----------------------------------------------------------------------
Ran 13 tests in 230.559s

OK

Checklist:

  • I have read the CONTRIBUTING document
  • I have linked this PR to one or more Phabricator Task(s)
  • I have run the components SMOKETESTS if applicable
  • My commit headlines contain a valid Task id
  • My change requires a change to the documentation
  • I have updated the documentation accordingly

@haimgel
dns: T6422: allow multiple redundant NS records
19d8415 
NS is unlike CNAME or PTR, multiple NS records are perfectly valid and is a common use case: multiple redundant DNS servers is a common configuration and should be supported.
@haimgel haimgel requested a review from a team as a code owner May 30, 2024 15:08
dmbaturin
dmbaturin previously requested changes May 30, 2024
View reviewed changes
src/conf_mode/service_dns_forwarding.py Outdated Show resolved Hide resolved
@dmbaturin
Copy link
Member

Please add a smoke test, too!

@haimgel
Copy link
Contributor Author

haimgel commented May 30, 2024

@dmbaturin, thanks! I added a smoke test and fixed the typo. Note that smoke coverage for authoritative DNS setup is not great to begin with, I focused here on what this change does only.

@haimgel haimgel requested a review from dmbaturin May 30, 2024 16:17
c-po
c-po requested changes May 30, 2024
View reviewed changes
src/conf_mode/service_dns_forwarding.py Outdated Show resolved Hide resolved
@haimgel haimgel force-pushed the T6422/allow-multiple-ns-records branch from df41369 to f2d0701 Compare May 30, 2024 19:24
@haimgel haimgel requested a review from c-po May 30, 2024 19:26
@c-po
Copy link
Member

c-po commented May 30, 2024

Please update the PR description with a more recent output of your smoketest, as the provided one lacks your newly added testcase.

other then that, LGTM

@haimgel
Copy link
Contributor Author

haimgel commented May 30, 2024

Please update the PR description with a more recent output of your smoketest, as the provided one lacks your newly added testcase.

other then that, LGTM

Thank you. Done.

@c-po
Copy link
Member

c-po commented May 31, 2024

@Mergifyio backport sagitta

@c-po c-po enabled auto-merge May 31, 2024 07:57
@mergify Mergify
Copy link
Contributor

mergify bot commented May 31, 2024
edited
Loading

backport sagitta

✅ Backports have been created

@c-po c-po dismissed dmbaturin’s stale review May 31, 2024 09:39

Changes implemented

@c-po c-po merged commit ea477ed into vyos:current May 31, 2024
8 checks passed
@mergify mergify bot mentioned this pull request May 31, 2024
Merged
12 tasks
@haimgel haimgel deleted the T6422/allow-multiple-ns-records branch May 31, 2024 13:09
c-po added a commit that referenced this pull request May 31, 2024
@c-po
Merge pull request #3568 from vyos/mergify/bp/sagitta/pr-3557
c6a8522 
dns: T6422: allow multiple redundant NS records (backport #3557)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sever-sever sever-sever sever-sever approved these changes

@c-po c-po c-po approved these changes

@sarthurdev sarthurdev Awaiting requested review from sarthurdev sarthurdev is a code owner automatically assigned from vyos/reviewers

@zdc zdc Awaiting requested review from zdc zdc is a code owner automatically assigned from vyos/reviewers

@jestabro jestabro Awaiting requested review from jestabro jestabro is a code owner automatically assigned from vyos/reviewers

@dmbaturin dmbaturin Awaiting requested review from dmbaturin

Assignees

@haimgel haimgel

Labels
backport current
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@haimgel @dmbaturin @c-po @sever-sever