upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-24 18:30:38 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
25079 commits 18 branches 854 tags 440 MiB
Commit graph

10345 commits

Author SHA1 Message Date
Tinderbox User
003e956a96 update copyright notice / whitespace 2017-03-24 23:46:02 +00:00
Mark Andrews
8c31a25f3f 4582. [security] 'rndc ""' could trigger a assertion failure in named. 
(CVE-2017-3138) [RT #44924]

(cherry picked from commit 8e8dfc5941)
 2017-03-25 02:01:10 +11:00
Mark Andrews
7fcbbd6fa9 4580. [bug] 4578 introduced a regression when handling CNAME to 
referral below the current domain. [RT #44850]

(cherry picked from commit 638c7c635d)
 2017-03-14 15:12:03 +11:00
Mark Andrews
c006cfc5a2 Reimplement: 
4578.   [security]      Some chaining (CNAME or DNAME) responses to upstream
                        queries could trigger assertion failures.
                        (CVE-2017-3137) [RT #44734]

(cherry picked from commit f240f4a5de)
 2017-03-01 12:02:39 +11:00
Evan Hunt
559cbe04e7 [v9_11] remove unnecessary INSIST and prep 9.11.1rc2 
4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]

(cherry picked from commit a1365a0042)
 2017-02-23 14:55:10 -08:00
Mark Andrews
fd71f5a87f dns_master_styleflags returns dns_masterstyle_flags_t 2017-02-20 17:38:56 +11:00
Mark Andrews
4acedf9e13 explicitly cast to (unsigned int) 2017-02-20 17:29:18 +11:00
Mark Andrews
1d0815a2b5 remove redundant $Id 2017-02-16 12:33:08 +11:00
Mark Andrews
ab92948efa record ranges; account for -P's 2017-02-16 12:20:59 +11:00
Evan Hunt
ece26dd7d7 [v9_11] fix build errors from inline macros (change 4565) 2017-02-06 10:42:31 -08:00
Evan Hunt
43769594c0 [v9_11] prep 9.11.1rc1 2017-02-04 22:30:16 -08:00
Tinderbox User
1617002c78 update copyright notice / whitespace 2017-02-04 23:46:08 +00:00
Evan Hunt
07b7a3eade [v9_11] store local and remote addresses in dnstap 
4569.	[func]		Store both local and remote addresses in dnstap
			logging, and modify dnstap-read output format to
			print them. [RT #43595]

(cherry picked from commit 650b5e7592)
 2017-02-03 17:11:06 -08:00
Tinderbox User
48ba8af30c update copyright notice / whitespace 2017-02-03 23:46:00 +00:00
Evan Hunt
a09e49f3f4 [v9_11] silence "unused value" warning 
(cherry picked from commit f4d20b15a2)
 2017-02-03 11:27:00 -08:00
Mark Andrews
a4240242cd remove outdated cvs $Id strings 2017-02-03 18:39:57 +11:00
Mark Andrews
4901f2c10b 4567. [port] Call getprotobyname and getservbyname prior to calling 
chroot so that shared libraries get loaded. [RT #44537]

(cherry picked from commit c550e75ade)
 2017-02-03 14:23:01 +11:00
Tinderbox User
e2ec0753ce update copyright notice / whitespace 2017-02-02 23:46:34 +00:00
Evan Hunt
8e9dbb6222 [v9_11] support autore in inline macro buffer functions 
4565.	[cleanup]	The inline macro versions of isc_buffer_put*()
			did not implement automatic buffer reallocation.
			[RT #44216]

(cherry picked from commit 7769c92946)
 2017-02-02 11:33:04 -08:00
Mark Andrews
da23e32e41 4563. [bug] Modified zones would occasionally fail to reload. 
[RT #39424]

(cherry picked from commit dfe3068ef3)
 2017-02-02 17:14:09 +11:00
Evan Hunt
18ab9a0a34 [v9_11] Squashed commit of the following: 
4561.	[port]		Silence a warning in strict C99 compilers. [RT #44414]

(cherry picked from commit 6cb5e36ca3)
 2017-02-01 17:31:22 -08:00
Tinderbox User
4269c36906 update copyright notice / whitespace 2017-01-31 23:46:16 +00:00
Evan Hunt
05fce8cfff [v9_11] address portability issues 
(cherry picked from commit a2bd99a959)
 2017-01-30 16:52:32 -08:00
Mark Andrews
c2c386119e add a REQUIRE to catch the NULL pointer dereference that triggered CVE-2017-3135 
(cherry picked from commit 1d8995d226)
 2017-01-31 11:21:09 +11:00
Evan Hunt
781f6daa74 [v9_11] change 4558 was incomplete 
(cherry picked from commit cd668ea57f)
 2017-01-30 14:11:17 -08:00
Tinderbox User
5688a47c15 update copyright notice / whitespace 2017-01-24 23:45:58 +00:00
Mark Andrews
832f5803f6 4560. [bug] mdig: add -m option to enable memory debugging rather 
than have in on all the time. [RT #44509]

4559.   [bug]           Openssl_link.c didn't compile if ISC_MEM_TRACKLINES
                        was turned off.  [RT #44509]

(cherry picked from commit 25da687db7)
 2017-01-24 17:49:08 +11:00
Mark Andrews
4441328a1d 4558. [bug] Synthesised CNAME before matching DNAME was still 
being cached when it should have been.  [RT #44318]

(cherry picked from commit 9f4bf43b79)
 2017-01-24 17:41:17 +11:00
Tinderbox User
9b2743294c update copyright notice / whitespace 2017-01-14 23:46:06 +00:00
Mark Andrews
7bcba68b95 4554. [bug] Remove double unlock in dns_dispatchmgr_setudp. 
[RT #44336]

(cherry picked from commit 5dfa5221d5)
 2017-01-14 13:14:25 +11:00
Tinderbox User
00860eece0 update copyright notice / whitespace 2017-01-13 23:46:05 +00:00
Mark Andrews
1de3115e8c make e's declaration unconditional. [RT #44324] 
(cherry picked from commit b8eee0f48d)
 2017-01-13 16:10:39 +11:00
Tinderbox User
f6b9092741 update copyright notice / whitespace 2017-01-12 23:46:13 +00:00
Mark Andrews
2cee8eadec 4553. [bug] Named could deadlock there were multiple changes to 
NSEC/NSEC3 parameters for a zone being processed at
                        the same time. [RT #42770]

(cherry picked from commit d2e1b47d4f)
 2017-01-12 14:26:06 +11:00
Mark Andrews
81df1363fb 4552. [bug] Named could trigger a assertion when sending notify 
messages. [RT #44019]

(cherry picked from commit 7b9e28f1a5)
 2017-01-12 14:12:38 +11:00
Tinderbox User
3b7f610bec update copyright notice / whitespace 2017-01-11 23:45:54 +00:00
Evan Hunt
e63d63dc85 [v9_11] expand the flags field in dns_master_style 
4550.	[cleanup]	Increased the number of available master file
			output style flags from 32 to 64. [RT #44043]

(cherry picked from commit 2e703d7b61)
 2017-01-11 12:01:06 -08:00
Tinderbox User
2728d0618e update copyright notice / whitespace 2017-01-04 23:45:48 +00:00
Evan Hunt
f5c17a057f [v9_11] add support for native pkcs11 on keyper 
4547.	[port]		Add support for --enable-native-pkcs11 on the AEP
			Keyper HSM. [RT #42463]
 2017-01-03 16:42:07 -08:00
Evan Hunt
7fa388dac3 [v9_11] silence warning 
(cherry picked from commit b3aebb5890)
 2016-12-28 17:54:39 -08:00
Mark Andrews
d6080de9be 9.11.1b1 2016-12-29 12:26:27 +11:00
Mark Andrews
701aa95d96 4510. [security] Named mishandled some responses where covering RRSIG 
records are returned without the requested data
                        resulting in a assertion failure. (CVE-2016-9147)
                        [RT #43548]

(cherry picked from commit 6adf421e7e)
 2016-12-29 11:49:06 +11:00
Mark Andrews
b243aa40f9 4508. [security] Named incorrectly tried to cache TKEY records which 
could trigger a assertion failure when there was
                            a class mismatch. (CVE-2016-9131) [RT #43522]

(cherry picked from commit 2c1c4b99a1)
 2016-12-29 11:17:14 +11:00
Tinderbox User
2a2618356e update copyright notice / whitespace 2016-12-28 23:50:44 +00:00
Mark Andrews
2595d1da35 4517. [security] Named could mishandle authority sections that were 
missing RRSIGs triggering an assertion failure.
                        (CVE-2016-9444) [RT # 43632]

(cherry picked from commit 1df30cfd27c5a3c57fce357c54aaf6c702227d51)
 2016-12-29 10:41:06 +11:00
wpk
397b24d008 [master] Remove spurious entry in lib/dns/win32/libdns.def.in 2016-12-28 19:22:13 +01:00
wpk
b1866070ef 4545. [func] Make dnstap-read output more functionally usable. 
[RT #43642]

4544.	[func]		Add message/payload size to dnstap-read YAML output.
			[RT #43622]
 2016-12-28 11:58:08 +01:00
Mark Andrews
6b45fd062b 4543. [bug] dns_client_startupdate now delays sending the update 
request until isc_app_ctxrun has been called.
                        [RT #43976]

(cherry picked from commit 6f94747270)
 2016-12-28 15:51:47 +11:00
Tinderbox User
cec9fddbaf update copyright notice / whitespace 2016-12-26 23:47:35 +00:00
Mark Andrews
f1e3dd087b 4540. [bug] Correctly handle ecs entries in dns_acl_isinsecure. 
[RT #43601]

(cherry picked from commit 8e333f42ef)
 2016-12-27 09:50:08 +11:00