Since we are using GitHub Actions in CoreDNS repo and we are already
using Dependabot for security/version scans on golang code,
it makes sense to enable security/version scans on GitHub Actions as well.
Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
This PR will fix the issue of doc is not automated rendered
through GitHub Actions anymore.
It looks the issue is cause by the fact that in `fixup_file_mtime.sh`
is only fixing files on source (.md) side, not on target (man/*.[1|5|7])
side. As a result Makefile will skip the rendering of doc as
it assume everything will be update to date.
This should fix the issue we were facing.
Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
Our GitHub Actions CI is having some issues with `make -f Makefile.doc`
as the related changes that should have triggered the build didn't
work for the past 3 months (since march).
This PR adds verbose to GitHub Actions CI to see if we can get more information.
Note this PR just add `set -x` to show detailed step. Will not impact anything else.
Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
* fix ipv6 case for cidr.Class
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* add check and test case for invalid ipv6 cidr
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* net package is bad at detecting ipv6/ipv4
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* rename Class -> Split
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
-p is the default flag in DNS software for setting the port, we use
'dns.port' because of preventing clashes with other caddy software
users. This is no longer an issue, so we can do what we want here.
Add -p to works like -dns.port.
(this PR includes generated manpage, but that shouldn't matter too much)
Signed-off-by: Miek Gieben <miek@miek.nl>
* Bump version and amend notes to include latest PRs
Signed-off-by: Miek Gieben <miek@miek.nl>
* Update notes/coredns-1.8.4.md
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
* Update notes/coredns-1.8.4.md
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
* Update notes/coredns-1.8.4.md
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
* Update notes/coredns-1.8.4.md
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
* Remove newline and set data anew
Signed-off-by: Miek Gieben <miek@miek.nl>
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
The health endpoint histogram has a large amount of cardinality for a
simple endpoint. Introduce a new "Slim" set of buckets for `/health` to
reduce the metrics load on large deployments. Especially those that have
per-node DNS caching services.
Add a metric to count internal health check failures rather than use the
timeout value as side effect monitor of the check error. This avoids
incorrectly recording the timeout value if there is an error that is not
a timeout (ex. refused)
Signed-off-by: SuperQ <superq@gmail.com>
* trap unsupported FROM cidr notations
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
* make is a warning
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
This was found by fuzzing.
We need to make this a fully qualified domain name to catch all errors
in dnsserver/register.go and not later when plugin.Normalize() is called again on these
strings, with the prime difference being that the domain name is fully
qualified. This was found by fuzzing where "ȶ" is deemed OK, but "ȶ." is
not (might be a bug in miekg/dns actually). But here we were checking ȶ,
which is OK, and later we barf in ȶ. leading to "index out of range".
Added a tests and check manually if it would crash with the current code
(yes), and fail with an error in this PR (yes).
Signed-off-by: Miek Gieben <miek@miek.nl>
