<div dir="ltr">Hi,<div><br><div>Apologies for the misunderstanding,<div><br></div><div>I was mentioning this warning from the pdns docs, but I'm not sure this also applies to bind-backend + sqlite setups: </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span style="color:rgb(51,51,51);font-family:"Open Sans",Helvetica,Arial,sans-serif;font-size:16px">It is not possible to replace the sqlite3 database file while PowerDNS is running. Specifically, using </span><code class="gmail-docutils gmail-literal gmail-notranslate" style="box-sizing:border-box;font-family:Consolas,monospace;font-size:15px;padding:2px 4px;color:rgb(141,26,56);white-space:nowrap;border-radius:4px;line-height:23px;margin:20px 0px"><span class="gmail-pre" style="box-sizing:border-box">rsync</span></code><span style="color:rgb(51,51,51);font-family:"Open Sans",Helvetica,Arial,sans-serif;font-size:16px"> to distribute sqlite3 databases does not work without stopping PowerDNS first and restarting it after the change.</span></blockquote><div><br></div><div>My goal here is to be able to modify/add either cryptokeys or metadata for a zone without having to restart PowerDNS. </div><div>However, the sqlite database I am using on top of the bind backend is read-only and provided from elsewhere (a distant server). </div><div><br></div><div>It is already possible to reload read-only zone content from disk with bind backend (using <b>pdns_control bind-reload-now <zone></b> or just<b> "reload"</b>), but I would like to also be able to reload the zone content from the sqlite database (ie. dnssec key rollover). <br><br></div><div>From what I have tested so far, it is only possible to reload content from the zone.conf or zone files. </div><div><br></div><div>Hope that makes sense.</div><div>Best regards,</div><div>Thibaud</div></div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Le lun. 19 déc. 2022 à 12:21, Otto Moerbeek <<a href="mailto:otto@drijf.net">otto@drijf.net</a>> a écrit :<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hello,<br>
<br>
You did not explain what you seeing and what you expect.<br>
<br>
The warning concerns performance. But your questions suggests you are<br>
seeing wrong data. Please be explicit.<br>
<br>
-Otto<br>
<br>
<br>
<br>
On Mon, Dec 19, 2022 at 11:02:34AM +0100, Thib D via Pdns-users wrote:<br>
<br>
> Hi Chris,<br>
> <br>
> I missed this warning note on the sqlite3 backend page (<br>
> <a href="https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html" rel="noreferrer" target="_blank">https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html</a>)<br>
> I'm scared this looks like the exact same behaviour we are seeing with a<br>
> bind+sqlite setup<br>
> <br>
> After adding/modifying cryptokeys or metadata in the database, we are still<br>
> able to see the changes with *pdnsutil show-zone* though<br>
> <br>
> Is this something that can be implemented or are there limitations that<br>
> make this impossible to do so?<br>
> <br>
> Best regards,<br>
> Thibaud<br>
> <br>
> Le sam. 17 d??c. 2022 ?? 12:07, Chris Hofstaedtler | Deduktiva <<br>
> <a href="mailto:chris.hofstaedtler@deduktiva.com" target="_blank">chris.hofstaedtler@deduktiva.com</a>> a ??crit :<br>
> <br>
> > Hello Thibauld,<br>
> ><br>
> > * Thib D via Pdns-users <<a href="mailto:pdns-users@mailman.powerdns.com" target="_blank">pdns-users@mailman.powerdns.com</a>> [221216 14:19]:<br>
> > > On bind / sqlite systems there is currently no way to reload metadata and<br>
> > > cryptokeys provided through a read only sqlite3 database, correct ?<br>
> > ><br>
> > > pdns_control commands like bind-reload-now / bind-add-zone / reload do<br>
> > not<br>
> > > seem to fetch content from the sqlite database.<br>
> > ><br>
> > > Is there something I am missing or reloading metadata in this case is<br>
> > only<br>
> > > possible by restarting the pdns process ?<br>
> ><br>
> > From my understanding, these things are not cached. It should work<br>
> > similar to a "normal" gsql setup: cryptokeys, metadata, ... are<br>
> > loaded on-access, and thus become effective immediately.<br>
> ><br>
> > If you see something else, please clarify your setup and what<br>
> > behavior you are seeing.<br>
> ><br>
> > Chris<br>
> ><br>
> > --<br>
> > Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien)<br>
> > <a href="http://www.deduktiva.com" rel="noreferrer" target="_blank">www.deduktiva.com</a> / +43 1 353 1707<br>
> ><br>
<br>
> _______________________________________________<br>
> Pdns-users mailing list<br>
> <a href="mailto:Pdns-users@mailman.powerdns.com" target="_blank">Pdns-users@mailman.powerdns.com</a><br>
> <a href="https://mailman.powerdns.com/mailman/listinfo/pdns-users" rel="noreferrer" target="_blank">https://mailman.powerdns.com/mailman/listinfo/pdns-users</a><br>
<br>
</blockquote></div>