[Opendnssec-develop] adapter design

Matthijs Mekking matthijs at NLnetLabs.nl
Fri Jan 14 12:03:13 UTC 2011 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

On the 26th, we will have another teleconf. One of the topics will be
how to implement the other adapters. These are my initial thoughts:

* Drop the zonefetcher, make adapters part of the zone list.
  It has an advantage that it becomes more flexible: you can set the
  acl per zone. It has the risk that the same information has to be
  copied many times.

* When there is a Zone Transfer adapter (AXFR, IXFR), start of a thread
  that handles incoming notifies and transfer requests (replaces the
  zone fetcher). The thread has access to the zone structures, so we
  can easily implement soa refresh, retry and expire. A thread removes
  the issues with privilege dropping and process communication.

* What to do with ods-signer sign <zone> when the zone as a AXFR/IXFR
  adapter? (Force transfer request?, read the last transferred zone?)

Attached are the proposed differences to the syntax. Most changes are
adapted from the zonefetch.rnc


Best regards,

Matthijs

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJNMDuBAAoJEA8yVCPsQCW5vvsIAMc2V7feuVgagQX0RxnoAVDv
xLOrNIlmOfAhGAsHqOvvGjHOeBO8DMGLk9r1Ike6pSk9YFPipRBroAoxMQ9btf5J
PDHIlBaETnzjfdN73f2iCf+s0hFSmbfFU+dZvfV0mDK8lkuD8+mvVo4TZOQMy6bg
+LDO6aTjyK7IwMa78InbqaRieZJKgLdMunjotttstBxAg0RJ06/DTI49RIhcaJiU
N9sqoQ3egId3Tp9Z0V5L5hh/bb8uwvK30e2LIKuCkkHcjK8H3dpBIkwxTQUS6n3S
EfuOqe067SHkRkT3+gMMKhGwcCaPS4hCsQkmnW9y9ZjVi4bzUKbk0kA5NxnPN0w=
=du4S
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: zonelist.rnc.diff
Type: text/x-patch
Size: 1354 bytes
Desc: not available
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20110114/144ef92e/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: zonelist.rnc.diff.sig
Type: application/octet-stream
Size: 287 bytes
Desc: not available
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20110114/144ef92e/attachment.obj>

More information about the Opendnssec-develop mailing list