37d7a7d984
Change the resolved.conf Cache option to a tri-state "no, no-negative, yes" values.
If a lookup returns SERVFAIL systemd-resolved will cache the result for 30s (See 201d995
),
however, there are several use cases on which this condition is not acceptable (See systemd#5552 comments)
and the only workaround would be to disable cache entirely or flush it , which isn't optimal.
This change adds the 'no-negative' option when set it avoids putting in cache
negative answers but still works the same heuristics for positive answers.
Signed-off-by: Jorge Niedbalski <jnr@metaklass.org>
36 lines
1.2 KiB
C
36 lines
1.2 KiB
C
/* SPDX-License-Identifier: LGPL-2.1+ */
|
|
#pragma once
|
|
|
|
#include "hashmap.h"
|
|
#include "list.h"
|
|
#include "prioq.h"
|
|
#include "resolve-util.h"
|
|
#include "time-util.h"
|
|
|
|
typedef struct DnsCache {
|
|
Hashmap *by_key;
|
|
Prioq *by_expiry;
|
|
unsigned n_hit;
|
|
unsigned n_miss;
|
|
} DnsCache;
|
|
|
|
#include "resolved-dns-answer.h"
|
|
#include "resolved-dns-packet.h"
|
|
#include "resolved-dns-question.h"
|
|
#include "resolved-dns-rr.h"
|
|
|
|
void dns_cache_flush(DnsCache *c);
|
|
void dns_cache_prune(DnsCache *c);
|
|
|
|
int dns_cache_put(DnsCache *c, DnsCacheMode cache_mode, DnsResourceKey *key, int rcode, DnsAnswer *answer, bool authenticated, uint32_t nsec_ttl, usec_t timestamp, int owner_family, const union in_addr_union *owner_address);
|
|
int dns_cache_lookup(DnsCache *c, DnsResourceKey *key, bool clamp_ttl, int *rcode, DnsAnswer **answer, bool *authenticated);
|
|
|
|
int dns_cache_check_conflicts(DnsCache *cache, DnsResourceRecord *rr, int owner_family, const union in_addr_union *owner_address);
|
|
|
|
void dns_cache_dump(DnsCache *cache, FILE *f);
|
|
bool dns_cache_is_empty(DnsCache *cache);
|
|
|
|
unsigned dns_cache_size(DnsCache *cache);
|
|
|
|
int dns_cache_export_shared_to_packet(DnsCache *cache, DnsPacket *p);
|