upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-25 10:59:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
25079 commits 18 branches 854 tags 440 MiB
Commit graph

2008 commits

Author SHA1 Message Date
Witold Krecicki
cc51cd2d20 4487. [test] Make system tests work on Windows. [RT #42931] 2016-10-19 17:21:13 +02:00
Mark Andrews
802e0662ef 4483. [func] Check prefixes in acls to make sure the address and 
prefix lengths are consistent.  Warn only in
                        BIND 9.11 and earlier. [RT #43367]
 2016-10-11 15:03:24 +11:00
Mark Andrews
99811850b4 sleep 2 to let in progress lookups complete 
(cherry picked from commit d3f29e7a4f)
 2016-10-10 14:36:02 +11:00
Evan Hunt
67a42ef55c [v9_11] reset ret between NTA tests 
(cherry picked from commit af05768c0e)
 2016-10-05 21:07:18 -07:00
Witold Krecicki
e8fab79146 4477. [test] Fix mkeys test timing issues. [RT #41028] 2016-10-05 13:45:37 +02:00
Witold Krecicki
c034b72ba1 4476. [test] Fix reclimit test on slower machines. [RT #43283] 2016-10-05 13:22:22 +02:00
Mark Andrews
82a50a619a 4474. [bug] win32: call WSAStartup in fromtext_in_wks so that 
getprotobyname and getservbyname work.  [RT #43197]
 2016-10-05 12:29:00 +11:00
Witold Krecicki
b4e6d4c724 [master] Disable dig IPv4-to-IPv6 mapping system test on OpenBSD 2016-09-30 12:20:55 +02:00
Mark Andrews
1477c19dd9 make statschannel version number agnostic 2016-09-29 17:01:06 +10:00
Mark Andrews
db9781d4a2 4468. [bug] Address ECS option handling issues. [RT #43191] 
(cherry picked from commit df17290113)
 2016-09-14 08:23:07 +10:00
Mark Andrews
178dc0e1d6 4463. [bug] The dnstap system test failed on some systems. 
[RT #43129]

(cherry picked from commit ed7097fc00)
 2016-09-08 11:40:47 +10:00
Tinderbox User
3711866d8b update copyright notice / whitespace 2016-08-30 23:45:56 +00:00
Mark Andrews
15bee593e7 4460. [test] Add system test for dnstap using unix domain sockets. 
[RT #42926]

(cherry picked from commit 3e1fa8411b)
 2016-08-30 11:21:33 +10:00
Evan Hunt
af326c2e3f [v9_11] fix tcp client memory leak 
4459.	[bug]		TCP client objects created to handle pipeline queries
			were not cleaned up correctly, causing uncontrolled
			memory growth. [RT #43106]

(cherry picked from commit a26a62cef2)
 2016-08-29 11:56:56 -07:00
Mark Andrews
1ea64ac3e5 remove spurious 'i' 
(cherry picked from commit e1f590a59a)
 2016-08-26 13:43:18 +10:00
Evan Hunt
f503aa345b [v9_11] pass source file and line to dyndb load function 
4455.	[cleanup]	Allow dyndb modules to correctly log the filename
			and line number when processing configuration text
			from named.conf. [RT #43050]

(cherry picked from commit 02fb764681)
 2016-08-25 18:09:45 -07:00
Tinderbox User
a3253fb44c update copyright notice / whitespace 2016-08-25 23:46:16 +00:00
Mark Andrews
7df3f06c0b 4454. [bug] 'rndc dnstap -reopen' had a race issue. [RT #43089] 
(cherry picked from commit 726cddb564)
 2016-08-25 10:05:07 +10:00
Mark Andrews
d1cacbb374 4453. [bug] Prefetching of DS records failed to update their 
RRSIGs. [RT #42865]

(cherry picked from commit f431bf02a6)
 2016-08-25 09:53:50 +10:00
Mark Andrews
c40906dfad 4450. [port] Provide more nuanced HSM support which better matches 
the specific PKCS11 providers capabilities. [RT #42458]

(cherry picked from commit 8ee6f289d8)
 2016-08-19 08:05:47 +10:00
Witold Krecicki
f9e49fd80e 4449. [test] Fix catalog zones test on slower systems. [RT #42997] 2016-08-18 18:17:17 +02:00
Mark Andrews
7204d08a31 4447. [tuning] Allow the fstrm_iothr_init() options to be set using 
named.conf to control how dnstap manages the data
                        flow. [RT #42974]

(cherry picked from commit 934837913f)
 2016-08-18 11:16:58 +10:00
Tinderbox User
a0c1ad17ab update copyright notice / whitespace 2016-08-17 23:46:03 +00:00
Evan Hunt
f5898cf348 [v9_11] fix dyndb issues; isc_errno_toresult() 
4445.	[cleanup]	isc_errno_toresult() can now be used to call the
			formerly private function isc__errno2result().
			[RT #43050]

4444.	[bug]		Fixed some issues related to dyndb: A bug caused
			braces to be omitted when passing configuration text
			from named.conf to a dyndb driver, and there was a
			use-after-free in the sample dyndb driver. [RT #43050]

Patch for dyndb driver submitted by Petr Spacek at Red Hat.

(cherry picked from commit 3390d74e33)
 2016-08-17 11:39:42 -07:00
Mark Andrews
ab598428c8 update dyndb_init inline documentationi [RT #43050] 
(cherry picked from commit 8c2c6b8b42)
 2016-08-17 14:12:54 +10:00
Tinderbox User
d621f10ebe update copyright notice / whitespace 2016-08-15 23:45:57 +00:00
Mukund Sivaraman
4e9a1ad226 Fix RPZ CIDR tree insertion bug (#43035) 
(cherry picked from commit 131307a70e)
 2016-08-15 17:07:50 +05:30
Mark Andrews
b4bbf49418 4439. [bug] Address race conditions getting ownernames of nodes. 
[RT #43005]

(cherry picked from commit c7e021e2e6)
 2016-08-12 14:09:34 +10:00
Mark Andrews
2fb6d3782b 4437. [func] Minimal-responses now has two additional modes 
no-auth and no-auth-recursive which suppress
                        adding the NS records to the authority section
                        as well as the associated address records for the
                        nameservers. [RT #42005]

(cherry picked from commit 78e31dd187)
 2016-08-12 10:49:57 +10:00
Mark Andrews
bc09fd1365 4436. [func] Return TLSA records as additional data for MX and SRV 
lookups. [RT #42894]

(cherry picked from commit bb900e62bf)
 2016-08-12 10:10:30 +10:00
Mark Andrews
33f91e248b 4434. [protocol] Return EDNS EXPIRE option for master zones in addition 
to slave zones. [RT #43008]

(cherry picked from commit bf2238b064)
 2016-08-12 09:32:29 +10:00
Mark Andrews
9e4811dc90 4432. [testing] Hide rndc output on expected failures in logfileconfig 
system test. [RT #27996]

(cherry picked from commit 12895c8d6f)
 2016-08-10 13:07:05 +10:00
Tinderbox User
b0cd1a7a63 update copyright notice / whitespace 2016-08-09 00:25:59 +00:00
Mark Andrews
12b791ae20 4431. [bug] named-checkconf now checks the rate-limit clause. 
[RT #42970]
 2016-08-08 23:54:15 +10:00
Mark Andrews
080582dc47 4430. [bug] Lwresd died if a search list was not defined. 
Found by 0x710DDDD At Alibaba Security. [RT #42895]

(cherry picked from commit 3146be6fd6)
 2016-08-08 10:23:22 +10:00
Witold Krecicki
bd9e956e03 Fix typos in nzd2nzf test 2016-07-26 21:16:15 +02:00
Witold Krecicki
3783f45e68 Fix merge error in bin/tests/system/conf.sh.in, add missing cleanups in tests 2016-07-26 20:33:06 +02:00
Mark Andrews
b7161f9898 4424. [experimental] Named now sends _ta-XXXX.<trust-anchor>/NULL queries 
to provide feedback to the trust-anchor administrators
                        about how key rollovers are progressing as per
                        draft-ietf-dnsop-edns-key-tag-02.  This can be
                        disabled using 'trust-anchor-telemetry no;'.
                        [RT #40583]

(cherry picked from commit f20179857a)
 2016-07-22 20:03:06 +10:00
Evan Hunt
2fee8782a6 [v9_11] copyrights 2016-07-21 20:06:52 -07:00
Evan Hunt
ee9982dbd9 [v9_11] add missing file 2016-07-21 12:45:39 -07:00
Evan Hunt
801707fe19 [v9_11] store "addzone" zone config in a NZD database 
4421.	[func]		When built with LMDB (Lightning Memory-mapped
			Database), named will now use a database to store
			the configuration for zones added by "rndc addzone"
			instead of using a flat NZF file. This improves
			performance of "rndc delzone" and "rndc modzone"
			significantly. Existing NZF files will
			automatically by converted to NZD databases.
			To view the contents of an NZD or to roll back to
			NZF format, use "named-nzd2nzf". To disable
                        this feature, use "configure --without-lmdb".
                        [RT #39837]
 2016-07-21 11:14:16 -07:00
Mark Andrews
529d8a7cf1 4420. [func] nslookup now looks for AAAA as well as A by default. 
[RT #40420]

(cherry picked from commit e7e7efe901)
 2016-07-22 03:28:28 +10:00
Witold Krecicki
d9d7b2657e 4419. [bug] Don't cause undefined result if the label of an 
entry in catalog zone is changed. [RT #42708]
 2016-07-21 13:07:56 +02:00
Mark Andrews
a1ddbcb37a more copyright cleanups 
(cherry picked from commit 592127b7fa)
 2016-07-21 19:16:24 +10:00
Evan Hunt
d907426f0f [v9_11] fix keymgr with low prepublication interval 
4417.	[bug]		dnssec-keymgr could fail to create successor keys
			if the prepublication interval was set to a value
			smaller than the default. [RT #42820]

Patch submitted by Nis Wechselberg (enbewe@enbewe.de).
 2016-07-20 15:14:20 -07:00
Evan Hunt
3525200d9f [v9_11] rndc dnstap -roll 
4411.	[func]		"rndc dnstap -roll" automatically rolls the
			dnstap output file; the previous version is
			saved with ".0" suffix, and earlier versions
			with ".1" and so on. An optional numeric argument
			indicates how many prior files to save. [RT #42830]
 2016-07-13 01:18:41 -07:00
Mark Andrews
64196d78c8 add more DNS64 default exclude acl tests 
(cherry picked from commit d147d56227)
 2016-07-13 10:58:46 +10:00
Mark Andrews
4d8940486c 4409. [bug] DNS64 should exlude mapped addresses by default when 
a exclude acl is not defined. [RT #42810]

(cherry picked from commit 557c7221fd)
 2016-07-11 14:12:42 +10:00
Mark Andrews
f555b59e36 4406. [bug] getrrsetbyname with a non absolute name could 
trigger a infinite recursion bug in lwresd
                        and named with lwres configured if when combined
                        with a search list entry the resulting name is
                        too long. [RT #42694]

(cherry picked from commit 38cc2d14e2)
 2016-07-07 13:50:38 +10:00
Mark Andrews
2be74962e4 ignore bin/tests/system/rndc/ns4/named.conf 
(cherry picked from commit 3c88f741c6)
 2016-07-07 09:57:01 +10:00
Tinderbox User
1105cecdc2 update copyright notice / whitespace 2016-07-06 23:47:18 +00:00
Mark Andrews
8d9a134fe7 4405. [bug] Change 4342 introduced a regression where you could 
not remove a delegation in a NSEC3 signed zone using
                        OPTOUT via nsupdate. [RT #42702]

(cherry picked from commit d811a7d9ef)
 2016-07-06 10:14:01 +10:00
Witold Krecicki
a77f86b6ca Fix keymgr test for change 4400 [RT #42718] 2016-06-27 12:22:01 +02:00
Mark Andrews
0c27b3fe77 4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00
Mark Andrews
8927a982bd update copyrights / whitespace 2016-06-24 16:23:26 +10:00
Mark Andrews
c1a72112b2 4396. [func] dnssec-keymgr now takes a '-r randomfile' option. 
[RT #42455]
 2016-06-24 14:12:24 +10:00
Mark Andrews
7d262a3647 4394. [func] Add rndc command "dnstap-reopen" to close and 
reopen dnstap output filed. [RT #41803]
 2016-06-24 09:37:04 +10:00
Jeremy C. Reed
e8300d7263 Use test random file for tsig test using keygen 
This is for #42565: tsig test hangs and KEYGEN and randomdev

It was okayed there and is a trivial fix. No changes log needed.
 2016-06-23 18:48:09 -04:00
Tinderbox User
601645a1e8 update copyright notice / whitespace 2016-06-22 23:45:21 +00:00
Mark Andrews
10966da999 4402. [func] Collect statistics for RSSAC02v3 traffic-volume, 
traffic-sizes and rcode-volume reporting. [RT #41475]
 2016-06-23 08:44:54 +10:00
Witold Krecicki
4681ab1fc2 4387. [test] Rewritten test suite for catalog zones. [RT #42676] 
4386.	[func]		Support for master entries with TSIG keys in catalog
			zones. [RT #42577]
 2016-06-22 10:50:09 +02:00
Mark Andrews
b56bd9b59f 4387. [bug] Change 4336 was not complete leading to SERVFAIL 
being return as NS records expired. [RT #42683]
 2016-06-22 15:26:38 +10:00
Mark Andrews
96beefd76f 4386.[bug]Remove shadowed overmem function/variable. [RT #42706] 2016-06-22 15:13:24 +10:00
Witold Krecicki
3f06b888ae 4385. [func] Add support for allow-query and allow-transfer ACLs 
to catalog zones. [RT #42578]
 2016-06-20 13:39:44 +02:00
Mark Andrews
c1bf332c7c silence rm error message 2016-06-20 14:33:33 +10:00
Mark Andrews
eff62988e6 checking that default nta's were lifted due to lifetime were not robust 2016-06-20 14:29:11 +10:00
Mark Andrews
948fe5822b 4384. [bug] Change 4256 accidentally disabled logging of the 
rndc command. [RT #42654]
 2016-06-18 00:10:51 +10:00
Mark Andrews
3f0de196f7 report subtest number 2016-06-17 10:50:33 +10:00
Tinderbox User
3939cc42d8 update copyright notice / whitespace 2016-06-16 23:45:22 +00:00
Mark Andrews
caf7c2fd25 style 2016-06-17 07:13:12 +10:00
Tinderbox User
dce54b9b5c update copyright notice / whitespace 2016-06-14 23:45:25 +00:00
Mark Andrews
3635d8f910 do not overflow exit status. [RT #42643] 2016-06-14 13:48:39 +10:00
Tinderbox User
ffaab41a01 update copyright notice / whitespace 2016-06-10 23:45:19 +00:00
Evan Hunt
eb3195d211 [master] add a test for dig +subnet with various prefix lengths 2016-06-09 22:49:52 -07:00
Mark Andrews
fbc50678e1 4382. [bug] rndc {addzone,modzone,delzone,showzone} should all 
compare the zone name using a canonical format.
                        [RT #42630]
 2016-06-10 11:03:53 +10:00
Witold Krecicki
c2afbab9dc 4381. [bug] Missing "zone-directory" option in catalog zone 
definition caused BIND to crash. [RT #42579]
 2016-06-02 21:41:02 +02:00
Tinderbox User
7336a12983 update copyright notice / whitespace 2016-05-31 23:45:29 +00:00
Evan Hunt
3d0b7d5cc3 [master] zone-directory option for catalog zones 
4380.	[experimental]	Added a "zone-directory" option to "catalog-zones"
			syntax, allowing local masterfiles for slaves
			that are provisioned by catalog zones to be stored
			in a directory other than the server's working
			directory. [RT #42527]
 2016-05-31 10:36:27 -07:00
Tinderbox User
262bebd081 update copyright notice / whitespace 2016-05-27 23:45:23 +00:00
Mark Andrews
9268297baa 4379. [bug] An INSIST could be triggered if a zone contains 
RRSIG records with expiry fields that loop
                        using serial number arithmetic. [RT #40571]
 2016-05-27 15:24:30 +10:00
Evan Hunt
e3f231023c [master] use $DIG not dig 2016-05-26 18:39:07 -07:00
Mark Andrews
aabcb1fde0 4377. [bug] Don't reuse zero TTL responses beyond the current 
client set (excludes ANY/SIG/RRSIG queries).
                        [RT #42142]
 2016-05-27 09:59:46 +10:00
Evan Hunt
6c2a76b3e2 [master] copyrights, win32 definitions 2016-05-26 12:36:17 -07:00
Witold Krecicki
7a00d69909 4376. [experimental] Added support for Catalog Zones, a new method for 
provisioning secondary servers in which a list of
                        zones to be served is stored in a DNS zone and can
                        be propagated to slaves via AXFR/IXFR. [RT #41581]

4375.   [func]          Add support for automatic reallocation of isc_buffer
                        to isc_buffer_put* functions. [RT #42394]
 2016-05-26 21:23:19 +02:00
Tinderbox User
7173647ada update copyright notice / whitespace 2016-05-25 23:45:21 +00:00
Evan Hunt
0cbe448914 [master] minimal-any 
4371.	[func]		New "minimal-any" option reduces the size of UDP
			responses for qtype ANY by returning a single
			arbitrarily selected RRset instead of all RRsets.
			Thanks to Tony Finch. [RT #41615]
 2016-05-25 13:54:34 -07:00
Mark Andrews
d4a9a6c4a9 pass $KEYGEN to $KEYMGR 2016-05-25 14:05:26 +10:00
Mark Andrews
ecb9c56ff6 use python3 compatible syntax 2016-05-25 13:37:07 +10:00
Mark Andrews
32148399a2 ignore missing SERVFAIL 2016-05-12 14:25:43 +10:00
Tinderbox User
f5489931d7 update copyright notice / whitespace 2016-05-09 23:45:56 +00:00
Mark Andrews
97e9fc9e53 add missing dependancy 2016-05-09 15:42:57 +10:00
Mark Andrews
2b96f36d0c remember dig/rndc outputs 2016-05-09 07:59:19 +10:00
Mark Andrews
9e14bf1f86 add test counter 2016-05-09 07:29:43 +10:00
Witold Krecicki
9852ad2408 Fix awk compatibility issue in rndc system test 2016-05-07 13:33:51 +02:00
Tinderbox User
f89adb2c2a update copyright notice / whitespace 2016-05-05 23:45:48 +00:00
Evan Hunt
7614afdab2 [master] remove copyright header from policy.good 2016-05-05 14:26:15 -07:00
Witold Krecicki
e846f127d6 4362. [func] Changed rndc reconfig behaviour so that newly added 
zones are loaded asynchronously and the loading does
			not block the server. [RT #41934]
 2016-05-05 21:41:12 +02:00
Mark Andrews
5ac427050f 4360. [bug] Silence spurious 'bad key type' message when there is 
a existing TSIG key. [RT #42195]
 2016-05-05 22:27:08 +10:00
Mark Andrews
594d15df25 4359. [bug] Inherited 'also-notify' lists were not being checked 
by named-checkconf. [RT #42174]
 2016-05-05 21:59:09 +10:00
Witold Krecicki
dc2a4887c4 4357. [func] Add the python RNDC module. [RT #42093] 2016-05-05 11:33:47 +02:00