upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-25 10:59:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
25079 commits 18 branches 854 tags 440 MiB
Commit graph

83 commits

Author SHA1 Message Date
Mark Andrews
0c27b3fe77 4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00
Witold Krecicki
19d80ce584 4358. [test] Added American Fuzzy Lop harness that allows 
feeding fuzzed packets into BIND.
			[RT #41723]
 2016-05-05 11:49:38 +02:00
Tinderbox User
53ba272721 update copyright notice / whitespace 2016-02-18 23:45:32 +00:00
Mark Andrews
a2b15b3305 4318. [security] Malformed control messages can trigger assertions 
in named and rndc. (CVE-2016-1285) [RT #41666]
 2016-02-18 12:11:27 +11:00
Mukund Sivaraman
58f7af60e7 Allow non-destructive control channel access using a "read-only" clause (#40498) 2015-11-11 13:46:57 +05:30
Mukund Sivaraman
9b17fd447c Limit rndc query message sizes to 32 KiB (#41073) 2015-11-11 09:56:13 +05:30
Tinderbox User
012142bbe0 update copyright notice / whitespace 2015-05-06 23:45:24 +00:00
Evan Hunt
9e804040a2 [master] add "rndc -r" to print result code 
4115.	[func]		"rndc -r" now prints the result code (e.g.,
			ISC_R_SUCCESS, ISC_R_TIMEOUT, etc) after
			running the requested command. [RT #38913]
 2015-05-05 16:39:09 -07:00
Evan Hunt
e32d354f75 [master] allow arbitrary-size rndc output 
4005.	[func]		The buffer used for returning text from rndc
			commands is now dynamically resizable, allowing
			arbitrarily large amounts of text to be sent back
			to the client. (Prior to this change, it was
			possible for the output of "rndc tsig-list" to be
			truncated.) [RT #37731]
 2014-11-14 15:58:54 -08:00
Evan Hunt
368aedf188 [master] log when using rndc.key 
3767.	[func]		Log explicitly when using rndc.key to configure
			command channel. [RT #35316]
 2014-02-27 17:55:04 -08:00
Tinderbox User
431a83fb29 update copyright notice 2014-01-09 23:46:35 +00:00
Evan Hunt
e851ea8260 [master] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
 2014-01-08 16:39:05 -08:00
Evan Hunt
2c2be89824 [master] buffer could overflow in rndc zonestatus 
3680.	[bug]		Ensure buffer space is available in "rndc zonestatus".
			[RT #35084]
 2013-12-02 15:38:24 -08:00
Evan Hunt
4eb998928b [master] algorithm flexibility for rndc 
3525.	[func]		Support for additional signing algorithms in rndc:
			hmac-sha1, -sha224, -sha256, -sha384, and -sha512.
			The -A option to rndc-confgen can be used to
			select the algorithm for the generated key.
			(The default is still hmac-md5; this may
			change in a future release.) [RT #20363]
 2013-03-13 17:53:11 -07:00
Mark Andrews
3a0da183bb 3520. [bug] 'mctx' was not being referenced counted in some places 
where it should have been.  [RT #32794]
 2013-03-08 14:38:03 +11:00
Tinderbox User
fe43ef9e63 update copyright notice 2013-03-07 23:47:05 +00:00
Evan Hunt
c1e88f8d86 [master] fix rndc replay protection 
3519.	[func]		Full replay protection via four-way handshake is
			now mandatory for rndc clients. Very old versions
			of rndc will no longer work. [RT #32798]
 2013-03-07 15:14:07 -08:00
Mark Andrews
c298583db5 3337. [bug] Change #3294 broke support for the multiple keys 
in controls. [RT #29694]
 2012-06-13 16:25:42 +10:00
Tinderbox User
5fa46bc916 update copyright notice 2012-03-10 23:45:53 +00:00
Mark Andrews
962bf88eec 3294. [bug] isccc/cc.c:table_fromwire failed to free alist on 
error. [RT #28265]
 2012-03-08 14:28:26 +11:00
Mark Andrews
328e0fee6b 3254. [bug] Set isc_socket_ipv6only() on the IPv6 control channels. 
[RT #22249]
 2011-12-22 08:07:48 +00:00
Automatic Updater
c1aef54e14 update copyright notice 2011-03-12 04:59:49 +00:00
Mark Andrews
0874abad14 3069. [cleanup] Silence warnings messages from clang static analysis. 
[RT #20256]
 2011-03-11 06:11:27 +00:00
Mark Andrews
240e53b132 2396. [bug] Don't set SO_REUSEADDR for randomized ports. 
[RT #18336]
part 2
 2008-07-23 23:27:54 +00:00
Mark Andrews
9de0f9b0ae 2396. [bug] Don't set SO_REUSEADDR for randomized ports. 
[RT #18336]
 2008-07-22 03:43:04 +00:00
Automatic Updater
2f012d936b update copyright notice 2008-01-18 23:46:58 +00:00
Automatic Updater
2f99b54e8e update copyright notice 2008-01-17 23:47:00 +00:00
Mark Andrews
546c2bf791 2308. [cleanup] Silence Coverity warning in bin/named/controlconf.c. 
[RT #17495]
 2008-01-17 02:57:16 +00:00
Evan Hunt
c7e266b7e5 Add support for O(1) ACL processing, based on radix tree code originally 
written by kevin brintnall. [RT #16288]
 2007-09-12 01:09:08 +00:00
Automatic Updater
ec5347e2c7 update copyright notice 2007-06-18 23:47:57 +00:00
Mark Andrews
cdce8b88c6 update copyright notice 2007-02-14 00:27:27 +00:00
Mark Andrews
96ea716328 2134. [func] Additional statistics support. [RT #16666] 2007-02-13 02:49:08 +00:00
Mark Andrews
cfcb0881d1 2111. [bug] Fix a number of errors reported by Coverity. 
[RT #16507]
 2006-12-07 04:46:27 +00:00
Mark Andrews
45e1bd6358 1991. [cleanup] The configuration data, once read, should be treated 
as readonly.  Expand the use of const to enforce this
                        at compile time. [RT #15813]
 2006-02-28 02:39:52 +00:00
Mark Andrews
26e2a07a0b update copyright notice 2006-01-27 23:57:46 +00:00
Mark Andrews
c6d4f78152 1973. [func] TSIG HMACSHA1, HMACSHA224, HMACSHA256, HMACSHA384 and 
HMACSHA512 support. [RT #13606]
 2006-01-27 02:35:15 +00:00
Mark Andrews
ade83e60fa silence ambigious else 2005-11-30 03:36:45 +00:00
Mark Andrews
2674e1a455 1940. [bug] Fixed a number of error conditions reported by 
Coverity.
 2005-11-30 03:33:49 +00:00
Mark Andrews
4e1d3e67cd 1914. [bug] Strings returned from cfg_obj_asstring() should be 
treated as read-only.  The prototype for
                        cfg_obj_asstring() has been updated to reflect this.
                        [RT #15256]
 2005-08-23 02:36:11 +00:00
Rob Austein
ab023a6556 1851. [doc] Doxygen comment markup. [RT #11398] 2005-04-27 04:57:32 +00:00
Mark Andrews
4423c99613 1814. [func] UNIX domain controls are now supported. 2005-02-23 01:09:23 +00:00
Mark Andrews
abeb45c775 update copyrights 2005-01-12 01:56:12 +00:00
Mark Andrews
ad5bc22a81 1797. [func] named-checkconf now check acls to verify that they 
only refer to existing acls. [RT #13101]
 2005-01-11 03:46:11 +00:00
Mark Andrews
dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Mark Andrews
72ddc4cef9 1480. [bug] Provide replay protection for rndc commands. Full 
replay protection requires both rndc and named to
                        be updated.  Partial replay protection (limited
                        exposure after restart) is provided if just named
                        is updated.
 2003-07-17 06:24:44 +00:00
Mark Andrews
a7038d1a05 copyrights 2002-02-20 03:35:59 +00:00
Andreas Gustafsson
669e9657c7 Split off the named.conf grammar into a source module separate 
from the configuration parser, to facilitate reuse of the latter for
parsing non-BIND configuration files
 2002-01-04 02:32:16 +00:00
Brian Wellington
b541c10d04 1141. [bug] When named rejected a control message, it would 
leak a file descriptor and memory.
 2001-11-27 21:51:31 +00:00
Andreas Gustafsson
5cd7e9d4db 1083. [bug] The default control channel listened on the 
wildcard adress, not the loopback as documented.
 2001-10-31 19:35:19 +00:00
Andreas Gustafsson
32d248107a 1062. [bug] If the control channel listener socket was shut 
down before server exit, the listener object could
                        be freed twice. [RT #1916]
 2001-10-19 21:00:12 +00:00