cotugno/AdGuardHome
2
Fork 0
mirror of https://github.com/AdguardTeam/AdGuardHome.git synced 2024-11-15 18:08:30 -07:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'master' into 6192-access-ipv6-zone

Browse Source
This commit is contained in:
Stanislav Chzhen 2024-04-16 14:34:45 +03:00
commit e126e12f70
2 changed files with 33 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
CHANGELOG.md
View File

@ -29,8 +29,13 @@ NOTE: Add new changes BELOW THIS COMMENT.
### Fixed ### Fixed
<<<<<<< HEAD
- Support for link-local subnets, i.e. `fe80::/16`, in the access settings - Support for link-local subnets, i.e. `fe80::/16`, in the access settings
([#6192]). ([#6192]).
=======
- The ability to apply an invalid configuration for private RDNS, which led to
server inoperability.
>>>>>>> master
- Ignoring query log for clients with ClientID set ([#5812]). - Ignoring query log for clients with ClientID set ([#5812]).
- Subdomains of `in-addr.arpa` and `ip6.arpa` containing zero-length prefix - Subdomains of `in-addr.arpa` and `ip6.arpa` containing zero-length prefix
incorrectly considered invalid when specified for private RDNS upstream incorrectly considered invalid when specified for private RDNS upstream

35
internal/dnsforward/http.go
View File

@ -1,6 +1,7 @@
package dnsforward package dnsforward
import ( import (
"cmp"
"encoding/json" "encoding/json"
"fmt" "fmt"
"io" "io"
@ -332,6 +333,28 @@ func (req *jsonDNSConfig) checkBootstrap() (err error) {
return nil return nil
} }
// checkPrivateRDNS returns an error if the configuration of the private RDNS is
// not valid.
func (req *jsonDNSConfig) checkPrivateRDNS(
ownAddrs addrPortSet,
sysResolvers SystemResolvers,
privateNets netutil.SubnetSet,
) (err error) {
if (req.UsePrivateRDNS == nil || !*req.UsePrivateRDNS) && req.LocalPTRUpstreams == nil {
return nil
}
addrs := cmp.Or(req.LocalPTRUpstreams, &[]string{})
uc, err := newPrivateConfig(*addrs, ownAddrs, sysResolvers, privateNets, &upstream.Options{})
err = errors.WithDeferred(err, uc.Close())
if err != nil {
return fmt.Errorf("private upstream servers: %w", err)
}
return nil
}
// validateUpstreamDNSServers returns an error if any field of req is invalid. // validateUpstreamDNSServers returns an error if any field of req is invalid.
func (req *jsonDNSConfig) validateUpstreamDNSServers( func (req *jsonDNSConfig) validateUpstreamDNSServers(
ownAddrs addrPortSet, ownAddrs addrPortSet,
@ -349,12 +372,10 @@ func (req *jsonDNSConfig) validateUpstreamDNSServers(
} }
} }
if addrs := req.LocalPTRUpstreams; addrs != nil { err = req.checkPrivateRDNS(ownAddrs, sysResolvers, privateNets)
uc, err = newPrivateConfig(*addrs, ownAddrs, sysResolvers, privateNets, opts) if err != nil {
err = errors.WithDeferred(err, uc.Close()) // Don't wrap the error since it's informative enough as is.
if err != nil { return err
return fmt.Errorf("private upstream servers: %w", err)
}
} }
err = req.checkBootstrap() err = req.checkBootstrap()
@ -440,7 +461,7 @@ func (s *Server) handleSetConfig(w http.ResponseWriter, r *http.Request) {
// TODO(e.burkov): Consider prebuilding this set on startup. // TODO(e.burkov): Consider prebuilding this set on startup.
ourAddrs, err := s.conf.ourAddrsSet() ourAddrs, err := s.conf.ourAddrsSet()
if err != nil { if err != nil {
// TODO(e.burkov): !! Put into openapi // TODO(e.burkov): Put into openapi
aghhttp.Error(r, w, http.StatusInternalServerError, "getting our addresses: %s", err) aghhttp.Error(r, w, http.StatusInternalServerError, "getting our addresses: %s", err)
return return