Re: [Pdns-users] Reloading metadata with bind-backend & sqlite
On Mon, 2022-12-19 at 14:29 +0100, Thib D via Pdns-users wrote: > Hi, > > Apologies for the misunderstanding, > > I was mentioning this warning from the pdns docs, but I'm not sure this > also applies to bind-backend + sqlite setups: > > It is not possible to replace the sqlite3 database file while > > PowerDNS is running. Specifically, using rsync to distribute sqlite3 > > databases does not work without stopping PowerDNS first and > > restarting it after the change. It does also apply. It generally applies to almost all applications that use SQLite. > My goal here is to be able to modify/add either cryptokeys or metadata > for a zone without having to restart PowerDNS. > However, the sqlite database I am using on top of the bind backend is > read-only and provided from elsewhere (a distant server). You'll have to update the local database file in a way that doesn't break sqlite's active handle on it. (I don't have any tricks ready for that, sorry.) Kind regards, -- Peter van Dijk PowerDNS.COM BV - https://www.powerdns.com/ ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Reloading metadata with bind-backend & sqlite
Hi, Apologies for the misunderstanding, I was mentioning this warning from the pdns docs, but I'm not sure this also applies to bind-backend + sqlite setups: > It is not possible to replace the sqlite3 database file while PowerDNS is > running. Specifically, using rsync to distribute sqlite3 databases does > not work without stopping PowerDNS first and restarting it after the change. My goal here is to be able to modify/add either cryptokeys or metadata for a zone without having to restart PowerDNS. However, the sqlite database I am using on top of the bind backend is read-only and provided from elsewhere (a distant server). It is already possible to reload read-only zone content from disk with bind backend (using *pdns_control bind-reload-now * or just* "reload"*), but I would like to also be able to reload the zone content from the sqlite database (ie. dnssec key rollover). >From what I have tested so far, it is only possible to reload content from the zone.conf or zone files. Hope that makes sense. Best regards, Thibaud Le lun. 19 déc. 2022 à 12:21, Otto Moerbeek a écrit : > Hello, > > You did not explain what you seeing and what you expect. > > The warning concerns performance. But your questions suggests you are > seeing wrong data. Please be explicit. > > -Otto > > > > On Mon, Dec 19, 2022 at 11:02:34AM +0100, Thib D via Pdns-users wrote: > > > Hi Chris, > > > > I missed this warning note on the sqlite3 backend page ( > > https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html) > > I'm scared this looks like the exact same behaviour we are seeing with a > > bind+sqlite setup > > > > After adding/modifying cryptokeys or metadata in the database, we are > still > > able to see the changes with *pdnsutil show-zone* though > > > > Is this something that can be implemented or are there limitations that > > make this impossible to do so? > > > > Best regards, > > Thibaud > > > > Le sam. 17 d??c. 2022 ?? 12:07, Chris Hofstaedtler | Deduktiva < > > chris.hofstaedt...@deduktiva.com> a ??crit : > > > > > Hello Thibauld, > > > > > > * Thib D via Pdns-users [221216 > 14:19]: > > > > On bind / sqlite systems there is currently no way to reload > metadata and > > > > cryptokeys provided through a read only sqlite3 database, correct ? > > > > > > > > pdns_control commands like bind-reload-now / bind-add-zone / reload > do > > > not > > > > seem to fetch content from the sqlite database. > > > > > > > > Is there something I am missing or reloading metadata in this case is > > > only > > > > possible by restarting the pdns process ? > > > > > > From my understanding, these things are not cached. It should work > > > similar to a "normal" gsql setup: cryptokeys, metadata, ... are > > > loaded on-access, and thus become effective immediately. > > > > > > If you see something else, please clarify your setup and what > > > behavior you are seeing. > > > > > > Chris > > > > > > -- > > > Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) > > > www.deduktiva.com / +43 1 353 1707 > > > > > > ___ > > Pdns-users mailing list > > Pdns-users@mailman.powerdns.com > > https://mailman.powerdns.com/mailman/listinfo/pdns-users > > ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Reloading metadata with bind-backend & sqlite
Hello, You did not explain what you seeing and what you expect. The warning concerns performance. But your questions suggests you are seeing wrong data. Please be explicit. -Otto On Mon, Dec 19, 2022 at 11:02:34AM +0100, Thib D via Pdns-users wrote: > Hi Chris, > > I missed this warning note on the sqlite3 backend page ( > https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html) > I'm scared this looks like the exact same behaviour we are seeing with a > bind+sqlite setup > > After adding/modifying cryptokeys or metadata in the database, we are still > able to see the changes with *pdnsutil show-zone* though > > Is this something that can be implemented or are there limitations that > make this impossible to do so? > > Best regards, > Thibaud > > Le sam. 17 d??c. 2022 ?? 12:07, Chris Hofstaedtler | Deduktiva < > chris.hofstaedt...@deduktiva.com> a ??crit : > > > Hello Thibauld, > > > > * Thib D via Pdns-users [221216 14:19]: > > > On bind / sqlite systems there is currently no way to reload metadata and > > > cryptokeys provided through a read only sqlite3 database, correct ? > > > > > > pdns_control commands like bind-reload-now / bind-add-zone / reload do > > not > > > seem to fetch content from the sqlite database. > > > > > > Is there something I am missing or reloading metadata in this case is > > only > > > possible by restarting the pdns process ? > > > > From my understanding, these things are not cached. It should work > > similar to a "normal" gsql setup: cryptokeys, metadata, ... are > > loaded on-access, and thus become effective immediately. > > > > If you see something else, please clarify your setup and what > > behavior you are seeing. > > > > Chris > > > > -- > > Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) > > www.deduktiva.com / +43 1 353 1707 > > > ___ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Reloading metadata with bind-backend & sqlite
Hi Chris, I missed this warning note on the sqlite3 backend page ( https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html) I'm scared this looks like the exact same behaviour we are seeing with a bind+sqlite setup After adding/modifying cryptokeys or metadata in the database, we are still able to see the changes with *pdnsutil show-zone* though Is this something that can be implemented or are there limitations that make this impossible to do so? Best regards, Thibaud Le sam. 17 déc. 2022 à 12:07, Chris Hofstaedtler | Deduktiva < chris.hofstaedt...@deduktiva.com> a écrit : > Hello Thibauld, > > * Thib D via Pdns-users [221216 14:19]: > > On bind / sqlite systems there is currently no way to reload metadata and > > cryptokeys provided through a read only sqlite3 database, correct ? > > > > pdns_control commands like bind-reload-now / bind-add-zone / reload do > not > > seem to fetch content from the sqlite database. > > > > Is there something I am missing or reloading metadata in this case is > only > > possible by restarting the pdns process ? > > From my understanding, these things are not cached. It should work > similar to a "normal" gsql setup: cryptokeys, metadata, ... are > loaded on-access, and thus become effective immediately. > > If you see something else, please clarify your setup and what > behavior you are seeing. > > Chris > > -- > Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) > www.deduktiva.com / +43 1 353 1707 > ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] Reloading metadata with bind-backend & sqlite
Hello Thibauld, * Thib D via Pdns-users [221216 14:19]: > On bind / sqlite systems there is currently no way to reload metadata and > cryptokeys provided through a read only sqlite3 database, correct ? > > pdns_control commands like bind-reload-now / bind-add-zone / reload do not > seem to fetch content from the sqlite database. > > Is there something I am missing or reloading metadata in this case is only > possible by restarting the pdns process ? >From my understanding, these things are not cached. It should work similar to a "normal" gsql setup: cryptokeys, metadata, ... are loaded on-access, and thus become effective immediately. If you see something else, please clarify your setup and what behavior you are seeing. Chris -- Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien) www.deduktiva.com / +43 1 353 1707 ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] Reloading metadata with bind-backend & sqlite
Hello, On bind / sqlite systems there is currently no way to reload metadata and cryptokeys provided through a read only sqlite3 database, correct ? pdns_control commands like bind-reload-now / bind-add-zone / reload do not seem to fetch content from the sqlite database. Is there something I am missing or reloading metadata in this case is only possible by restarting the pdns process ? Thank you, Best regards, Thibaud ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
