upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-25 10:59:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
25079 commits 18 branches 854 tags 440 MiB
Commit graph

845 commits

Author SHA1 Message Date
Mark Andrews
da23e32e41 4563. [bug] Modified zones would occasionally fail to reload. 
[RT #39424]

(cherry picked from commit dfe3068ef3)
 2017-02-02 17:14:09 +11:00
Tinderbox User
f6b9092741 update copyright notice / whitespace 2017-01-12 23:46:13 +00:00
Mark Andrews
2cee8eadec 4553. [bug] Named could deadlock there were multiple changes to 
NSEC/NSEC3 parameters for a zone being processed at
                        the same time. [RT #42770]

(cherry picked from commit d2e1b47d4f)
 2017-01-12 14:26:06 +11:00
Tinderbox User
9ab989b88c update copyright notice / whitespace 2016-11-02 23:48:10 +00:00
Mark Andrews
744c1db635 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]

(cherry picked from commit 5f8412a4cb)
 2016-11-03 09:48:26 +11:00
Mark Andrews
e51ba26500 4461. [bug] win32: not all external data was properly marked 
as external data for windows dll. [RT #43161]

(cherry picked from commit 8eceb0bffe)
 2016-09-07 14:14:40 +10:00
Mark Andrews
b4bbf49418 4439. [bug] Address race conditions getting ownernames of nodes. 
[RT #43005]

(cherry picked from commit c7e021e2e6)
 2016-08-12 14:09:34 +10:00
Mark Andrews
f3a4a5f8db 4438. [func] Use LIFO rather than FIFO when processing startup 
notify and refresh queries. [RT #42825]

(cherry picked from commit 5734cd3943)
 2016-08-12 11:34:29 +10:00
Evan Hunt
770fe3dcab [v9_11] remove spurious newline in EDNS EXPIRE logging 
Patch submitted by Tony Finch (dot@dotat.at).
 2016-08-10 09:26:40 -07:00
Tinderbox User
14d7597167 update copyright notice / whitespace 2016-07-22 23:48:02 +00:00
Mark Andrews
b7161f9898 4424. [experimental] Named now sends _ta-XXXX.<trust-anchor>/NULL queries 
to provide feedback to the trust-anchor administrators
                        about how key rollovers are progressing as per
                        draft-ietf-dnsop-edns-key-tag-02.  This can be
                        disabled using 'trust-anchor-telemetry no;'.
                        [RT #40583]

(cherry picked from commit f20179857a)
 2016-07-22 20:03:06 +10:00
Mark Andrews
0c27b3fe77 4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00
Witold Krecicki
4681ab1fc2 4387. [test] Rewritten test suite for catalog zones. [RT #42676] 
4386.	[func]		Support for master entries with TSIG keys in catalog
			zones. [RT #42577]
 2016-06-22 10:50:09 +02:00
Witold Krecicki
7a00d69909 4376. [experimental] Added support for Catalog Zones, a new method for 
provisioning secondary servers in which a list of
                        zones to be served is stored in a DNS zone and can
                        be propagated to slaves via AXFR/IXFR. [RT #41581]

4375.   [func]          Add support for automatic reallocation of isc_buffer
                        to isc_buffer_put* functions. [RT #42394]
 2016-05-26 21:23:19 +02:00
Mark Andrews
049a49c295 4367. [bug] Remove unnecessary assignment of loadtime in 
zone_touched. [RT #42440]
 2016-05-18 12:39:50 +10:00
Evan Hunt
132a571179 [master] fix mkeys TTL 0 issue 
4337.	[bug]		The previous change exposed a latent flaw in
			key refresh queries for managed-keys when
			a cached DNSKEY had TTL 0. [RT #41986]
 2016-03-22 12:12:32 -07:00
Tinderbox User
27def92931 update copyright notice / whitespace 2016-03-21 23:45:22 +00:00
Mark Andrews
0993cd5f22 4336. [bug] Don't emit records with zero ttl unless the records 
were learnt with a zero ttl. [RT #41687]
 2016-03-21 13:22:21 +11:00
Mark Andrews
b8dcc13bc5 4335. [bug] zone->view could be detached too early. [RT #41942] 2016-03-21 12:02:00 +11:00
Evan Hunt
4071efbec0 [master] disallow map zones in response-policy 
4269.	[bug]		Zones using "map" format master files currently
			don't work as policy zones.  This limitation has
			now been documented; attempting to use such zones
			in "response-policy" statements is now a
			configuration error.  [RT #38321]
 2015-12-02 21:10:09 -08:00
Mark Andrews
5b1c7ef35b 4264. [bug] Check const of strchr/strrchr assignments match 
argument's const status. [RT #41150]
 2015-11-20 18:38:24 +11:00
Mark Andrews
29868ebbe3 4254. [bug] Address missing lock when getting zone's serial. 
[RT #41072]
 2015-11-05 17:43:30 +11:00
Mark Andrews
e939674d53 4252. [func] Add support for automating the generation CDS and 
CDNSKEY rrsets to named and dnssec-signzone.
                        [RT #40424]
 2015-11-05 12:09:48 +11:00
Evan Hunt
40c619daee [master] fix theoretical shutdown race 
4226.	[bug]		Address a theoretical shutdown race in
			zone.c:notify_send_queue(). [RT #38958]
 2015-09-29 15:27:12 -07:00
Mark Andrews
70862302f8 4181. [bug] Queued notify messages could be dequeued from the 
wrong rate limiter queue. [RT #40350]
 2015-08-17 10:37:06 +10:00
Mark Andrews
3a49d0ff10 4164. [bug] Don't rename slave files and journals on out of memory. 
[RT #40033]

4163.   [bug]           Address compiler warnings. [RT #40024]
 2015-07-13 09:46:59 +10:00
Mukund Sivaraman
08f0129732 Fix a bug printing zone names with '/' character in XML and JSON stats (#39873) 2015-06-29 18:33:18 +05:30
Evan Hunt
8c9fba44a4 [master] further RPZ fixes 
4131.	[bug]		Addressed further problems with reloading RPZ
			zones. [RT #39649]
 2015-06-03 18:18:55 -07:00
Mark Andrews
e53e202ef3 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] 2015-05-28 13:17:07 +10:00
Tinderbox User
3813d22587 update copyright notice / whitespace 2015-05-27 23:45:25 +00:00
Mark Andrews
598b502695 4127. [protocol] CDS and CDNSKEY need to be signed by the key signing 
key as per RFC 7344, Section 4.1. [RT #37215]
 2015-05-27 15:25:45 +10:00
Evan Hunt
a32b6291aa [master] address regression 
4126.	[bug]		Addressed a regression introduced in change #4121.
			[RT #39611]
 2015-05-26 19:11:08 -07:00
Mark Andrews
f1a261ba2d 4104. [bug] Address uninitialized elements. [RT #39252] 2015-04-17 14:04:47 +10:00
Francis Dupont
bcb68be0a8 misc fixes for VS 2015 CTP #39267 2015-04-17 02:57:02 +02:00
Mark Andrews
54fe1d05b6 4095. [bug] zone->options2 was not being properly initalized. 
[RT #39228]
 2015-04-11 08:04:02 +10:00
Mukund Sivaraman
9a7532f836 Send notifies immediately for slave zones during startup (#38843) 2015-03-25 10:55:55 +05:30
Mukund Sivaraman
ebeb4b3e09 Fix a crash due to use-after-free (#38495) 2015-03-18 06:42:54 +05:30
Mark Andrews
1b05d22789 4082. [bug] Incrementally sign large inline zone deltas. 
[RT #37927]
 2015-03-05 09:59:29 +11:00
Mark Andrews
29d52c001f 4081. [cleanup] Use dns_rdatalist_init consistently. [RT #38759] 2015-03-03 16:43:42 +11:00
Mark Andrews
a8da00ef95 4079. [func] Preserve the case of the ownername of records to 
the RRset level. [RT #37442]
 2015-02-27 15:08:38 +11:00
Mark Andrews
af669cb4fd 4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708] 2015-02-27 10:55:55 +11:00
Evan Hunt
bfc11b9c65 [master] additional mkeys tests 
4065.	[test]		Additional RFC 5011 tests. [RT #38569]
 2015-02-23 21:07:26 -08:00
Evan Hunt
7acc2f2156 [master] fix LOADPENDING issues 
4063.	[bug]		Asynchronous zone loads were not handled
			correctly when the zone load was already in
			progress; this could trigger a crash in zt.c.
			[RT #37573]
 2015-02-22 20:43:39 -08:00
Tinderbox User
29756974c5 update copyright notice / whitespace 2015-02-06 23:45:21 +00:00
Evan Hunt
591389c7d4 [master] 5011 tests and fixes 
4056.	[bug]		Expanded automatic testing of trust anchor
			management and fixed several small bugs including
			a memory leak and a possible loss of key state
			information. [RT #38458]

4055.	[func]		"rndc managed-keys" can be used to check status
			of trust anchors or to force keys to be refreshed,
			Also, the managed keys data file has easier-to-read
			comments.  [RT #38458]
 2015-02-05 17:18:15 -08:00
Evan Hunt
801fb8b894 [master] avoid crash due to managed-key rollover 
4053.	[security]	Revoking a managed trust anchor and supplying
			an untrusted replacement could cause named
			to crash with an assertion failure.
			(CVE-2015-1349) [RT #38344]
 2015-02-03 18:25:28 -08:00
Mark Andrews
875574f1e4 4045. [bug] Skip to next master on dns_request_createvia4 failure. 
[RT #25185]
 2015-01-22 15:56:50 +11:00
Tinderbox User
c110d61b17 update copyright notice / whitespace 2015-01-20 23:45:26 +00:00
Evan Hunt
11463c0ac2 [master] clean up gcc -Wshadow warnings 
4039.	[cleanup]	Cleaned up warnings from gcc -Wshadow. [RT #37381]
 2015-01-20 13:29:18 -08:00
Mark Andrews
f8eb4e5bfd 4037. [bug] also-notify was ignoring the tsig key when checking 
for duplicates resulting in some expected notify
                        messages not being sent. [RT #38369]
 2015-01-20 16:42:56 +11:00