[Pdns-users] Reloading metadata with bind-backend & sqlite

Thib D thibmac0241 at gmail.com
Mon Dec 19 13:29:45 UTC 2022 

Hi,

Apologies for the misunderstanding,

I was mentioning this warning from the pdns docs, but I'm not sure this
also applies to bind-backend + sqlite setups:

> It is not possible to replace the sqlite3 database file while PowerDNS is
> running. Specifically, using rsync to distribute sqlite3 databases does
> not work without stopping PowerDNS first and restarting it after the change.


My goal here is to be able to modify/add either cryptokeys or metadata for
a zone without having to restart PowerDNS.
However, the sqlite database I am using on top of the bind backend is
read-only and provided from elsewhere (a distant server).

It is already possible to reload read-only zone content from disk with bind
backend (using *pdns_control bind-reload-now <zone>* or just* "reload"*),
but I would like to also be able to reload the zone content from the sqlite
database (ie. dnssec key rollover).

>From what I have tested so far, it is only possible to reload content from
the zone.conf or zone files.

Hope that makes sense.
Best regards,
Thibaud

Le lun. 19 déc. 2022 à 12:21, Otto Moerbeek <otto at drijf.net> a écrit :

> Hello,
>
> You did not explain what you seeing and what you expect.
>
> The warning concerns performance. But your questions suggests you are
> seeing wrong data. Please be explicit.
>
>         -Otto
>
>
>
> On Mon, Dec 19, 2022 at 11:02:34AM +0100, Thib D via Pdns-users wrote:
>
> > Hi Chris,
> >
> > I missed this warning note on the sqlite3 backend page (
> > https://doc.powerdns.com/authoritative/backends/generic-sqlite3.html)
> > I'm scared this looks like the exact same behaviour we are seeing with a
> > bind+sqlite setup
> >
> > After adding/modifying cryptokeys or metadata in the database, we are
> still
> > able to see the changes with *pdnsutil show-zone* though
> >
> > Is this something that can be implemented or are there limitations that
> > make this impossible to do so?
> >
> > Best regards,
> > Thibaud
> >
> > Le sam. 17 d??c. 2022 ?? 12:07, Chris Hofstaedtler | Deduktiva <
> > chris.hofstaedtler at deduktiva.com> a ??crit :
> >
> > > Hello Thibauld,
> > >
> > > * Thib D via Pdns-users <pdns-users at mailman.powerdns.com> [221216
> 14:19]:
> > > > On bind / sqlite systems there is currently no way to reload
> metadata and
> > > > cryptokeys provided through a read only sqlite3 database, correct ?
> > > >
> > > > pdns_control commands like bind-reload-now / bind-add-zone / reload
> do
> > > not
> > > > seem to fetch content from the sqlite database.
> > > >
> > > > Is there something I am missing or reloading metadata in this case is
> > > only
> > > > possible by restarting the pdns process ?
> > >
> > > From my understanding, these things are not cached. It should work
> > > similar to a "normal" gsql setup: cryptokeys, metadata, ... are
> > > loaded on-access, and thus become effective immediately.
> > >
> > > If you see something else, please clarify your setup and what
> > > behavior you are seeing.
> > >
> > > Chris
> > >
> > > --
> > > Chris Hofstaedtler / Deduktiva GmbH (FN 418592 b, HG Wien)
> > > www.deduktiva.com / +43 1 353 1707
> > >
>
> > _______________________________________________
> > Pdns-users mailing list
> > Pdns-users at mailman.powerdns.com
> > https://mailman.powerdns.com/mailman/listinfo/pdns-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20221219/4ad3d9f2/attachment.htm>

More information about the Pdns-users mailing list