bind9

mirror of https://github.com/isc-projects/bind9.git synced 2026-02-26 11:32:01 -05:00

Author	SHA1	Message	Date
Evan Hunt	4ef06963a4	[master] unresolved externals	2014-06-20 13:51:36 -07:00
Tinderbox User	5a31767b09	update copyright notice	2014-06-19 23:45:23 +00:00
Evan Hunt	cac2181160	[master] CDS/CDNSKEY rrtypes 3884. [protocol] Add CDS and CDNSKEY record types. [RT #36333]	2014-06-19 00:35:11 -07:00
Mark Andrews	bfbd478cdb	silence coverity	2014-06-19 11:33:22 +10:00
Evan Hunt	5e6cfc7c9a	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-06-18 17:25:19 -07:00
Evan Hunt	f47ed4bb4d	[master] silence warning	2014-06-18 17:24:48 -07:00
Mark Andrews	3a37159a95	add #include <isc/print.h>	2014-06-19 10:20:34 +10:00
Evan Hunt	b8a9632333	[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]	2014-06-18 16:50:38 -07:00
Mark Andrews	8eb2d262dc	silence coverity - add nul termination	2014-06-18 20:04:21 +10:00
Tinderbox User	636aadbfe4	update copyright notice	2014-06-17 23:45:20 +00:00
Evan Hunt	a4e76a630e	[master] update gitignore files; use rev-parse to get srcid	2014-06-17 13:49:30 -07:00
Mark Andrews	e177c7b814	add EAI_OVERFLOW to lwres	2014-06-17 10:20:24 +10:00
Tinderbox User	51437e2eea	update copyright notice	2014-06-16 23:45:20 +00:00
Evan Hunt	56510cd031	[master] null terminate strings for coverity	2014-06-16 15:30:11 -07:00
Tinderbox User	4ded8003e3	update copyright notice	2014-06-12 23:45:22 +00:00
Evan Hunt	06e0d6bb12	[master] address rpz bugs 3877. [bug] Inserting and deleting parent and child nodes in response policy zones could trigger an assertion failure. [RT #36272]	2014-06-11 20:00:19 -07:00
Mark Andrews	1208790272	make lhs unsigned	2014-06-12 11:12:22 +10:00
Mark Andrews	8a2ff13c3d	add INSISTs to silence tainted data false positive in Coverity	2014-06-12 10:42:39 +10:00
Tinderbox User	889eb2e055	update copyright notice	2014-06-11 23:45:23 +00:00
Mark Andrews	23fe5cbb07	pass rng to destroy	2014-06-11 22:57:46 +10:00
Mark Andrews	0c57bf16a5	fix unbalanced lock; test for non NULL before dereference;	2014-06-11 21:42:36 +10:00
Evan Hunt	8d8f9f7f86	[master] suppress unnecessary db lookups in DLZ redirect zones 3876. [bug] Improve efficiency of DLZ redirect zones by suppressing unnecessary database lookups. [RT #35835]	2014-06-10 16:25:26 -07:00
Evan Hunt	7c9d11b654	[master] add print.h, CHANGES note	2014-06-10 08:54:16 -07:00
Mukund Sivaraman	aa232396ee	[24702] Include key filename in logged message Squashed commit of the following: commit 593e6bc7e29938ff5c2f7508bde303fb069a97a9 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 19:17:40 2014 +0530 Increase size of filename buffers commit b8685678e026ba98b8833e26664193b6345eb00e Author: Evan Hunt <each@isc.org> Date: Wed Jun 4 18:57:44 2014 -0700 [rt24702] some tweaks during review commit adfbc8f808716c63e9e097d92beef104527e5c6f Author: Mukund Sivaraman <muks@isc.org> Date: Wed Jun 4 18:18:35 2014 +0530 [24702] Include key filename in logged message commit f1eff77e7e3704b145c3d65101a735467dd81dc3 Author: Mukund Sivaraman <muks@isc.org> Date: Wed Jun 4 18:12:43 2014 +0530 Add dst_key_getfilename()	2014-06-10 19:18:34 +05:30
Mark Andrews	5331f97edc	silence compiler warnings	2014-06-10 12:38:32 +10:00
Tinderbox User	1b2ae58ef1	update copyright notice	2014-06-09 23:45:20 +00:00
Mark Andrews	3b187cad7a	3873. [protocol] Only warn for SPF without TXT spf record. [RT #36210 ]	2014-06-10 09:32:43 +10:00
Mark Andrews	b16d99bac1	3872. [bug] Address issues found by static analysis. [RT #36209 ]	2014-06-10 09:17:15 +10:00
Mukund Sivaraman	5456bddd39	[27303] Supply format string as first arg to printf() No CHANGES entry for this as it isn't proved to cause an issue for anyone (isc_msgcat_get() has to return a format specifier) and isn't a user visible change. Squashed commit of the following: commit bcb15c9aa17b0b706aefd9efef5f7e0e951064a3 Author: Mukund Sivaraman <muks@isc.org> Date: Wed Jun 4 16:55:16 2014 +0530 [27303] Supply format string as first arg to printf() The old code only had a problem if isc_msgcat_get() returned a format specifier (%n).	2014-06-08 19:06:37 +05:30
Tinderbox User	780169512e	update copyright notice	2014-06-04 23:45:22 +00:00
Mukund Sivaraman	79d27f505a	[35063] Don't publish an activated key automatically before its publish time	2014-06-04 14:31:42 +05:30
Mukund Sivaraman	84dc4b3e7e	[35942] Update random number generator to ChaCha based (and add tests) Squashed commit of the following: commit 219a904fea95c74016229b6f4436d4f09de1bfd0 Author: Evan Hunt <each@isc.org> Date: Mon Jun 2 12:20:54 2014 -0700 [rt35942] style commit 90bc77185e9798af4595989abb8698efef8c70d7 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jun 2 18:01:30 2014 +0530 Return p-value=0 when prerequisite (monobit) fails commit 5594669728f1181a447616f60b835e4a043d1b21 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jun 2 17:44:25 2014 +0530 Print proportion of test sequences passing too commit 9e94b67a4114651224a8285f7c4a7fb03907f376 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jun 2 17:34:03 2014 +0530 Check uniform distribution of p-values commit acf911b32dd84ac1c30c57d8937cfeb6b3ff972f Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jun 2 17:17:39 2014 +0530 Check proportion of sequences passing a test commit 7289eb441fc4ec623364ad882e22b240ba8da308 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jun 2 04:33:37 2014 +0530 Refactor common setup code into random_test() No behavioral change is made. commit 51feef3e08c233d34a6b8b9d25a72d43110b4eed Author: Mukund Sivaraman <muks@isc.org> Date: Sun Jun 1 17:31:57 2014 +0530 Fix binary rank computation commit 0ea3c03dea353f309d13c38e26aa0abbffdcff2b Author: Mukund Sivaraman <muks@isc.org> Date: Tue May 27 06:01:10 2014 +0530 Add binary matrix rank RNG test commit eb4e7c53540ac97436d94714d30084907eeff01a Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 26 15:45:31 2014 +0530 Add function to find rank of a binary matrix commit 1292a06e0e09ebd37d4ecf5337814951dcacc4a4 Author: Evan Hunt <each@isc.org> Date: Thu May 29 16:21:51 2014 -0700 [rt35942] style; check whether we need libm for exp() commit c19788e5a89235e937a5aedf2ebea50f33406609 Author: Evan Hunt <each@isc.org> Date: Thu May 29 15:31:19 2014 -0700 [rt35942] incidental spelling error fixed commit c833326ad0df21e2a8b35958e85ccc0a692e38be Author: Mukund Sivaraman <muks@isc.org> Date: Thu May 29 11:34:37 2014 +0530 Revert "Add function to find rank of a binary matrix" This reverts commit 21b2f230e17f7fc638f81d9a34bcb148b0c4a6fb. This test will be added in RT#36125. commit cf786a533d34fdcd9e1c5650356e56d33e93a29f Author: Mukund Sivaraman <muks@isc.org> Date: Thu May 29 11:33:18 2014 +0530 Revert "Add binary matrix rank RNG test" This reverts commit dd843b9ca84fa9af80ec39631152f82778f0b97c. This test will be added in RT#36125. commit dd843b9ca84fa9af80ec39631152f82778f0b97c Author: Mukund Sivaraman <muks@isc.org> Date: Tue May 27 06:01:10 2014 +0530 Add binary matrix rank RNG test commit 21b2f230e17f7fc638f81d9a34bcb148b0c4a6fb Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 26 15:45:31 2014 +0530 Add function to find rank of a binary matrix commit 313c30088d6ba933bde3abb920f2a6d16b9b77e1 Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 26 13:38:44 2014 +0530 Add block frequency random test commit 0d279c60ed3eabe52cf3e1435bf14ec62752536f Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 26 13:04:03 2014 +0530 Add preconditions from NIST spec commit 7a6c5f2ce5078814d5cf0fea30596e58171174c1 Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 26 12:51:03 2014 +0530 Add functions to use in RNG tests commit 8c5cb5594f904f6669cdffaa364f799b4a2c6b58 Author: Mukund Sivaraman <muks@isc.org> Date: Thu May 22 00:26:10 2014 +0530 Add runs RNG test commit 4882f078cc2596c0911066ffb783e4dd145a63ec Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 21 23:58:20 2014 +0530 Pre-compute bitcounts LUT commit 896db3809fba2d9884a4a3a2fa847a73e007ad7f Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 21 23:30:23 2014 +0530 Fix the bit value being checked (this shouldn't affect the test) commit b932cbb5dae39eb819db29cf9490fb51d59b7c56 Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 21 19:35:12 2014 +0530 Add monobits RNG test commit 7bef19fd8b095aa567a975ef5c97d5812162d92e Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 21 16:53:02 2014 +0530 Add API documentation commit 54483f7feb64b5646dd1da45b1fd396e7d04b926 Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 21 16:39:03 2014 +0530 Rename isc_rngctx_t to isc_rng_t commit 7c5031b53555137a82c6b6218cd4dd5e95acf94d Author: Evan Hunt <each@isc.org> Date: Tue May 20 23:29:53 2014 -0700 [rt35942] use attach/detach with isc_rngctx_t commit 8aabae5e09888e6af651ed27bd6b4e9f76334d55 Author: Mukund Sivaraman <muks@isc.org> Date: Tue May 20 18:32:42 2014 +0530 Move RNG from dispatch.c to libisc commit e6d4ad4f389998b91d46e95e258cf420cb21d977 Author: Mukund Sivaraman <muks@isc.org> Date: Mon May 12 19:16:27 2014 +0530 Replace old arc4random with new ChaCha implementation from OpenBSD	2014-06-04 13:44:10 +05:30
Mark Andrews	b925be3e54	attempt to silence leaked lock false positive	2014-06-04 14:07:16 +10:00
Mark Andrews	7cce33eb78	place a upper bound on rdcount	2014-06-04 13:20:42 +10:00
Mark Andrews	f4db7287da	bad size on isc_mem_put	2014-06-04 11:45:09 +10:00
Tinderbox User	6efae581d0	update copyright notice	2014-06-03 23:45:20 +00:00
Mark Andrews	6fc3efb93f	keytable depends on openssl/pkcs11	2014-06-03 15:15:19 +10:00
Mark Andrews	50a7454174	3868. [bug] isc_mem_setwater incorrectly cleared hi_called potentially leaving over memory cleaner running. [RT #35270]	2014-06-02 16:31:42 +10:00
Tinderbox User	803d842603	update copyright notice	2014-05-30 23:45:21 +00:00
Evan Hunt	0cfb247368	[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]	2014-05-29 22:22:53 -07:00
Mark Andrews	536da846f6	update copyrights	2014-05-30 09:41:33 +10:00
Evan Hunt	caa252e5ad	[master] Fix bin/tests/rbt_test.c, use portable int types	2014-05-29 07:37:13 -07:00
Mukund Sivaraman	9ff0b976a1	Add missing include Reported by tinderbox. It is not required on this developer's machine, but would be required on platforms that don't supply snprintf().	2014-05-29 14:04:35 +05:30
Mukund Sivaraman	ce376a81fa	[35904] Add various RBT unit tests No CHANGES entry was added as this commit mainly adds tests related code. Squashed commit of the following: commit d3d44508daa128fb8b60f64b3a8c81f80602273d Author: Evan Hunt <each@isc.org> Date: Wed May 7 09:36:41 2014 -0700 [rt35904] remove private non-static names from .def file commit dbca45661c3939f21c3bb3f405d08cfe1b35d7aa Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 7 21:39:32 2014 +0530 Remove test for shortcut findnode() The implementation was not included in this review branch, but the tests erroneously made it through. This functionality will be addressed in a different ticket (RT#35906). commit 94ff14576ab3407f2612d34727b7eacfefc3668c Author: Mukund Sivaraman <muks@isc.org> Date: Wed May 7 21:36:50 2014 +0530 Minor indent fix commit 50972f17697bb222996e433faa8224843366f9b2 Author: Evan Hunt <each@isc.org> Date: Tue May 6 20:05:21 2014 -0700 [rt35904] style commit 5c4d5d41fcc5bfecdeebc008896974385c841b8d Author: Mukund Sivaraman <muks@isc.org> Date: Sun May 4 19:19:36 2014 +0530 RBT related updates * Add various RBT unit tests * Add some helper methods useful in unit testing RBT code * General cleanup	2014-05-29 11:09:23 +05:30
Mark Andrews	57d5f5abe1	silence coverity warning	2014-05-28 10:43:19 +10:00
Mark Andrews	358cc47a25	address typo	2014-05-27 14:10:12 +10:00
Mark Andrews	586d94eb74	3861. [security] Missing isc_buffer_availablelength check results in a REQUIRE assertion when printing out a packet. [RT #36078]	2014-05-25 12:39:03 +10:00
Mark Andrews	4b22b8decb	fix typo == -> =	2014-05-24 23:24:19 +10:00
Mark Andrews	a569e1b321	3860. [bug] ioctl(DP_POLL) array size needs to be determined at run time as it is limited to {OPEN_MAX}. [RT #35878]	2014-05-23 13:05:23 +10:00
Mark Andrews	35711d3c73	correct EDNSOK sense	2014-05-22 22:02:09 +10:00
Mark Andrews	ba586e9568	3857. [bug] Make it harder for a incorrect NOEDNS classification to be made. [RT #36020]	2014-05-22 21:38:53 +10:00
Tinderbox User	9d9626fb77	update copyright notice	2014-05-21 23:45:21 +00:00
Mark Andrews	8d56a8531d	remove unused assignment	2014-05-22 00:58:43 +10:00
Mark Andrews	0fe0789181	3855. [bug] Limit smoothed round trip time aging to no more than once a second. [RT #32909]	2014-05-21 10:08:52 +10:00
Mark Andrews	27b09ceb12	3853. [cleanup] Refactor dns_rdataslab_fromrdataset to seperate out the handling of a rdataset with no records. [RT #35968]	2014-05-20 11:36:03 +10:00
Evan Hunt	896f49f8bd	[master] increase and allow configuration of lwresd tasks/clients 3852. [func] Increase the default number of clients available for servicing lightweight resolver queries, and make them configurable via the "lwres-tasks" and "lwres-clients" options. (Thanks to Tomas Hozza.) [RT #35857]	2014-05-15 22:01:19 -07:00
Mark Andrews	0e338b60cd	3843. [protocol] Check EDNS EXPIRE option in dns_rdata_fromwire. [RT #35969] Conflicts: CHANGES	2014-05-13 21:57:40 +10:00
Mark Andrews	e188b84bc4	suppress clang static analysis warning	2014-05-11 10:47:56 +10:00
Tinderbox User	c381ccf794	update copyright notice	2014-05-07 23:45:21 +00:00
Mark Andrews	faa01edd13	3841. [cleanup] Refactor zone.c:add_opt to use dns_message_buildopt. [RT #35924]	2014-05-08 09:38:05 +10:00
Evan Hunt	1ea6e09c37	[master] check for arc4random_addrandom() 3840. [port] Check for arc4random_addrandom() before using it; it's been removed from OpenBSD 5.5. [RT #35907]	2014-05-07 08:58:25 -07:00
Mark Andrews	cd07e4d038	3838. [protocol] EDNS EXPIRE as been assigned a code point of 9.	2014-05-05 16:40:45 +10:00
Mark Andrews	b36fc8294e	3837. [security] A NULL pointer is passed to query_prefetch resulting a REQUIRE assertion failure when a fetch is actually initiated. [ RT #35899] Squashed commit of the following: commit 7f4e1f3917d743089c42cc52ec2c0eea598d2c00 Author: Mukund Sivaraman <muks@isc.org> Date: Sun May 4 22:34:34 2014 +0530 Fix a comment commit 6a35a6a2346013fa8e3798b9b680d8a3031fcb03 Author: Mark Andrews <marka@isc.org> Date: Sun May 4 23:34:25 2014 +1000 pass the correct name to query_prefetch	2014-05-05 10:12:12 +10:00
Tinderbox User	abc71f216a	update copyright notice	2014-05-02 23:45:19 +00:00
Mark Andrews	dd820d8fd2	3836. [bug] Address C++ keyword usage in header file.	2014-05-02 11:34:32 +10:00
Mark Andrews	c25d9da3f1	add keyboard.h [RT #35887 ]	2014-05-02 10:19:10 +10:00
Mark Andrews	d26c36b1d9	silence clang compiler warnings	2014-05-02 10:02:27 +10:00
Mark Andrews	3b27d9a318	dec_adbstats should decrement rather than increment	2014-05-01 20:58:32 +10:00
Mark Andrews	c2638d3d5a	protect geoip_elem use with HAVE_GEOIP	2014-05-01 15:03:11 +10:00
Mark Andrews	ab02ecbb30	silence compiler warning	2014-05-01 14:55:04 +10:00
Mark Andrews	4442141672	silence NULL pointer dereference warning	2014-05-01 14:23:23 +10:00
Evan Hunt	c0c4512020	[master] fixed geoip elements in named ACLs 3835. [bug] Geoip ACL elements didn't work correctly when referenced via named or nested ACLs. [RT #35879]	2014-04-30 20:21:56 -07:00
Mark Andrews	c2abd6efeb	update copyrights	2014-05-01 10:00:00 +10:00
Mark Andrews	5d739300d1	3834. [bug] The re-signing heaps were not being updated soon enough leading to multiple re-generations of the same RRSIG when a zone transfer was in progress. [RT #35273]	2014-04-30 11:58:07 +10:00
Evan Hunt	2b78610512	[master] reduce EDNS logging noise 3831. [cleanup] Reduce logging noise when EDNS state changes occur. [RT #35843]	2014-04-29 17:06:19 -07:00
Evan Hunt	cd750f6e74	[master] dig +ttlunits 3829. [func] "dig +ttlunits" causes dig to print TTL values with time-unit suffixes: w, d, h, m, s for weeks, days, hours, minutes, and seconds. (Thanks to Tony Finch.) [RT #35823]	2014-04-29 16:58:36 -07:00
Tinderbox User	f6ea2b1d09	update copyright notice	2014-04-29 23:45:21 +00:00
Evan Hunt	b4ba66ba1e	[master] "dnssec-signzone -N date" 3827. [func] "dnssec-signzone -N date" updates serial number to the current date in YYYYMMDDNN format. [RT #35800]	2014-04-29 16:29:20 -07:00
Evan Hunt	3e5743068c	[master] use-after-free in isc_radix_remove() 3826. [bug] Corrected a use-after-free in isc_radix_remove(). (This function is not used in BIND, but could have caused problems in programs linking to libisc.) [RT #35870]	2014-04-29 15:21:46 -07:00
Mark Andrews	c11e46110b	3825. [bug] Address sign extension bug in isc_regex_validate. [RT #35758]	2014-04-29 14:33:21 +10:00
Evan Hunt	e01fbe2a45	[master] SIT/max-cache-size flag collision 3824. [bug] A collision between two flag values could cause problems with cache cleaning when SIT was enabled. [RT #35858]	2014-04-28 10:24:39 -07:00
Tinderbox User	06081a0d61	update copyright notice	2014-04-25 23:45:21 +00:00
Evan Hunt	aefb3e308b	[master] better DDNS in DLZ; mysqldyn 3821. [contrib] Added a new "mysqldyn" DLZ module with dynamic update and transaction support. Thanks to Marty Lee for the contribution. [RT #35656] 3820. [func] The DLZ API doesn't pass the database version to the lookup() function; this can cause DLZ modules that allow dynamic updates to mishandle prerequisite checks. This has been corrected by adding a 'dbversion' field to the dns_clientinfo_t structure. [RT #35656]	2014-04-25 13:06:30 -07:00
Mark Andrews	1deeb567fa	remove const	2014-04-25 14:26:41 +10:00
Mark Andrews	618053b8be	additional places: 3818. [bug] Stop lying to the optimizer that 'void *arg' is a constant in isc_event_allocate. (cherry picked from commit `39b5269577`)	2014-04-25 12:22:27 +10:00
Tinderbox User	37f7c4c673	update copyright notice	2014-04-24 23:45:21 +00:00
Mark Andrews	44c6deacdd	additional changes for: 3818. [bug] Stop lying to the optimizer that 'void *arg' is a constant in isc_event_allocate.	2014-04-24 18:59:01 +10:00
Mark Andrews	36e5ac0033	3819. [bug] NSEC3 hashes need to be able to be entered and displayed without padding. This is not a issue for currently defined algorithms but may be for future hash algorithms. [RT #27925]	2014-04-24 18:58:03 +10:00
Mark Andrews	e916c4f840	3818. [bug] Stop lying to the optimizer that 'void *arg' is a constant in isc_event_allocate.	2014-04-24 13:43:59 +10:00
Mark Andrews	974fb3a9c5	make days a const	2014-04-24 13:15:40 +10:00
Evan Hunt	2ae159b376	[master] globally rename "delve" to "delv" 3817. [func] The "delve" command is now spelled "delv" to avoid a namespace collision with the Xapian project. [RT #35801]	2014-04-23 11:14:12 -07:00
Tinderbox User	953189d30e	update copyright notice	2014-04-22 23:45:19 +00:00
Evan Hunt	ec3b216506	[master] masterfile-style 3814. [func] The "masterfile-style" zone option controls the formatting of dumped zone files. Options are "relative" (multiline format) and "full" (one record per line). The default is "relative". [RT #20798]	2014-04-17 17:10:29 -07:00
Evan Hunt	4e7973990c	[master] host recognizes /etc/resolv.conf options 3813. [func] "host" now recognizes the "timeout", "attempts" and "debug" options when set in /etc/resolv.conf. (Thanks to Adam Tkac at RedHat.) [RT #21885]	2014-04-17 17:04:51 -07:00
Evan Hunt	7318bbc262	[master] serial-update-method date; 3811. [func] "serial-update-method date;" sets serial number on dynamic update to today's date in YYYYMMDDNN format. (Thanks to Bradley Forschinger.) [RT #24903]	2014-04-17 16:05:50 -07:00
Evan Hunt	088b1abfd0	[master] prep 9.10.0 respin	2014-04-16 22:49:02 -07:00
Mark Andrews	469bbe0f97	3810. [bug] Work around broken nameservers that fail to ignore unknown EDNS options. [RT #35766]	2014-04-17 15:43:38 +10:00
Evan Hunt	2dc978b8a1	[master] fix "prefetch" doc 3808. [doc] Clean up "prefetch" documentation. [RT #35751]	2014-04-13 18:50:34 -07:00
Francis Dupont	c80fef792a	fix char sign extension [#35743 ]	2014-04-11 13:25:49 +02:00
Mark Andrews	51af0a72ad	sort	2014-04-08 10:43:43 +10:00
Mark Andrews	c7bd423cec	order.h	2014-04-08 10:37:21 +10:00
Mark Andrews	2d1c1ee28a	keyboard.h	2014-04-08 10:37:08 +10:00
Evan Hunt	38c3ed154a	[master] fix race 3804. [bug] Corrected a race condition in dispatch.c in which portentry could be reset leading to an assertion failure in socket_search(). (Change #3708 addressed the same issue but was incomplete.) [RT #35128]	2014-04-07 13:54:08 -07:00
Tinderbox User	1756e623f9	update copyright notice	2014-04-04 23:46:15 +00:00
Mark Andrews	866606b9c7	3802. [bug] Various header files were not being installed	2014-04-04 21:56:08 +11:00
Evan Hunt	4c4d6213e1	[master] prep 9.10.0rc1	2014-04-03 20:34:46 -07:00
Evan Hunt	f0e9d6e905	[master] fix gssapi probing on freebsd 3801. [port] Fix probing for gssapi support on FreeBSD. [RT #35615]	2014-04-03 19:52:03 -07:00
Mukund Sivaraman	ef9334d745	3795. [bug] Make named-checkconf detect raw masterfiles for hint zones and reject them. [RT #35268] Squashed commit of the following: commit 5b0254711d6b77940d6217b9131b9d401df8a866 Author: Mukund Sivaraman <muks@isc.org> Date: Fri Mar 28 02:09:01 2014 +0530 Remove redundant helper function commit a4341c1a2ba830c8cee1def57a533f987f67c3dc Author: Mark Andrews <marka@isc.org> Date: Thu Jan 30 10:08:17 2014 +1100 error out if masterfile-format raw is specified for a hint zone.	2014-03-31 04:55:37 +05:30
Tinderbox User	657099c9bc	update copyright notice	2014-03-29 23:46:04 +00:00
Mark Andrews	6ffa8fcf76	3794. [maint] Added AAAA for C.ROOT-SERVERS.NET.	2014-03-29 10:30:40 +11:00
Tinderbox User	934b17be8d	update copyright notice	2014-03-27 23:46:09 +00:00
Mark Andrews	6d5740075b	fix typo in comment	2014-03-27 18:21:31 +11:00
Mark Andrews	1fa64087e7	sigprocmask sets errno on error	2014-03-27 12:33:40 +11:00
Evan Hunt	bbd5c0ab33	[master] fix possible assertion in save_nsec3param() 3793. [bug] zone.c:save_nsec3param() could assert when out of memory. [RT #35621]	2014-03-26 13:12:35 -07:00
Mark Andrews	c1f26bd63c	silence clang compiler warnings	2014-03-26 16:20:31 +11:00
Mark Andrews	b4a819a44f	othererror should not include badvers now that we have a badvers counter	2014-03-25 16:46:11 +11:00
Tinderbox User	9d7e943c3d	update copyright notice	2014-03-19 23:46:06 +00:00
Mark Andrews	a78ffa0cc8	only set FCTX_ADDRINFO_NOSIT if we don't have a existing sit	2014-03-20 07:17:00 +11:00
Mark Andrews	09ab38c151	3790. [bug] Handle broken nameservers that send BADVERS in response to unknown EDNS options. Maintain statistics on BADVERS responses.	2014-03-20 05:00:55 +11:00
Mark Andrews	adbb48b4a0	3789. [bug] Null pointer dereference on rbt creation failure.	2014-03-17 23:25:21 +11:00
Mark Andrews	61cfadb50e	3788. [bug] dns_peer_getrequestsit was returning request_nsid by mistake.	2014-03-16 03:31:40 +11:00
Mark Andrews	03296893bc	fix include path for out of source tree build	2014-03-15 13:25:27 +11:00
Mark Andrews	8058292627	install context.h dnsconf.h; resconf.h types.h were not being installed when cross compiling	2014-03-14 11:42:16 +11:00
Mark Andrews	b0e6f5dfd7	copy named-rrchecker.html	2014-03-14 11:16:13 +11:00
Tinderbox User	24a4fabc0b	update copyright notice	2014-03-13 23:53:24 +00:00
Tinderbox User	3c15417fc1	update copyright notice	2014-03-13 23:46:07 +00:00
Evan Hunt	9ff6800ed0	[master] fix merge error	2014-03-13 07:00:13 -07:00
Evan Hunt	e4d524bd91	[master] missing win32 include files	2014-03-13 06:33:32 -07:00
Evan Hunt	9896a01aeb	[master] prep 9.10.0b2	2014-03-12 21:57:11 -07:00
Evan Hunt	22e29471c7	[master] check allow-update in view/options 3787. [bug] The code that checks whether "auto-dnssec" is allowed was ignoring "allow-update" ACLs set at the options or view level. [RT #29536]	2014-03-12 21:36:01 -07:00
Evan Hunt	acbb301e64	[master] better error output when initializing pkcs11 3786. [func] Provide more detailed error codes when using native PKCS#11. "pkcs11-tokens" now fails robustly rather than asserting when run against an HSM with an incomplete PCKS#11 API implementation. [RT #35479]	2014-03-12 20:52:01 -07:00
Mark Andrews	3911e7610f	3785. [bug] Debugging code dumphex didn't accept arbitarily long input (only compiled with -DDEBUG). [RT #35544]	2014-03-13 12:37:07 +11:00
Evan Hunt	ffbd79e978	[master] fix possible uninitialized variable	2014-03-10 20:55:26 -07:00
Tinderbox User	7bd4556414	update copyright notice	2014-03-10 23:46:12 +00:00
Evan Hunt	8cbf3b6fc3	[master] use adaptive locks when available 3781. [tuning] Use adaptive mutex locks when available; this has been found to improve performance under load on many systems. "configure --with-locktype=standard" restores conventional mutex locks. [RT #32576]	2014-03-10 12:14:35 -07:00
Evan Hunt	7b46a4aa41	[master] fix negative numbers in $GENERATE 3780. [bug] $GENERATE handled negative numbers incorrectly. [RT #25528]	2014-03-10 11:55:32 -07:00
Francis Dupont	83bb42c635	fix opensslgost_link.c when OPENSSL is not defined	2014-03-08 19:32:34 +01:00
Evan Hunt	9ba2cef72d	[master] clarify error 3779. [cleanup] Clarify the error message when using an option that was not enabled at compile time. [RT #35504]	2014-03-07 15:59:55 -08:00
Tinderbox User	4b1a933811	update copyright notice	2014-03-07 23:47:09 +00:00
Evan Hunt	78f79084fc	[master] warn when wrong address family used in listen-on/-v6 3778. [bug] Log a warning when the wrong address family is used in "listen-on" or "listen-on-v6". [RT #17848]	2014-03-07 11:31:51 -08:00
Evan Hunt	e29c2b3903	[master] fix misuses of isc__buffer functions, update comment	2014-03-06 17:26:21 -08:00
Tinderbox User	cc2a515684	update copyright notice	2014-03-04 23:46:15 +00:00
Evan Hunt	b454c03196	[master] use ANSI prototypes, clean up some casts	2014-03-04 10:42:25 -08:00
Evan Hunt	f6d0284ec2	[master] fix memory leak	2014-03-04 08:56:09 -08:00
Evan Hunt	e69790ac00	[master] printable NSID logging 3774. [func] When using "request-nsid", log the NSID value in printable form as well as hex. [RT #20864]	2014-03-03 20:51:14 -08:00
Tinderbox User	794b79e6bb	regen master	2014-02-28 01:07:06 +00:00
Evan Hunt	e71905610c	[master] fixed out-of-tree build 3766. [cleanup] Fixed problems with building outside the source tree when using native PKCS#11. [RT #35459]	2014-02-27 16:49:35 -08:00
Evan Hunt	1aced7b870	[master] fix possible rndc secroots crash 3765. [bug] Fixed a bug in "rndc secroots" that could crash named when dumping an empty keynode. [RT #35469]	2014-02-27 16:42:35 -08:00
Tinderbox User	938440694b	update copyright notice	2014-02-27 23:46:22 +00:00
Evan Hunt	1753d3c4d7	[master] correct dates in man pages	2014-02-27 11:43:10 -08:00
Mark Andrews	7fbbc9bfd3	3762. [bug] Address build problems with --pkcs11-native + --with-openssl with ECDSA support. [RT #35467]	2014-02-27 18:29:52 +11:00
Mark Andrews	96c17c5ecb	3761. [bug] Address dangling reference bug in dns_keytable_add. [RT #35471]	2014-02-27 16:55:46 +11:00
Evan Hunt	98922b2b2b	[master] merge several interdependent fixes 3760. [bug] Improve SIT with native PKCS#11 and on Windows. [RT #35433] 3759. [port] Enable delve on Windows. [RT #35441] 3758. [port] Enable export library APIs on windows. [RT #35382]	2014-02-26 19:00:05 -08:00
Mark Andrews	86ec04712b	#include <inttypes.h>	2014-02-27 11:57:51 +11:00
Evan Hunt	3a01ded15d	[master] enable windows python tools 3757. [port] Enable Python tools (dnssec-coverage, dnssec-checkds) to run on Windows. [RT #34355]	2014-02-26 08:43:50 -08:00
Mark Andrews	b0d8002354	use cfg_type_sstring rather than cfg_type_qstring for sit-secret	2014-02-27 01:11:13 +11:00
Mark Andrews	79bd3cf027	we only use 32 octets	2014-02-26 15:54:23 +11:00
Mark Andrews	f4193c2021	update copyrights	2014-02-25 12:07:41 +11:00
Mark Andrews	53ebc0959b	#ifdef notyet error handling for bad sit	2014-02-24 23:49:21 +11:00
Mark Andrews	0072ae822d	3756. [bug] GSSAPI Kerberos realm checking was broken in check_config leading to spurious messages being logged. [RT #35443]	2014-02-24 12:15:37 +11:00
Mark Andrews	9e39bafd2e	adjust SIT computation	2014-02-24 09:29:49 +11:00
Francis Dupont	2ab466bf79	more missing WIN32 docs	2014-02-22 03:01:56 +01:00
Mark Andrews	5e45c8aabf	add CFG_CLAUSEFLAG_NOTCONFIGURED flag	2014-02-21 12:48:39 +11:00
Mark Andrews	edd82b2ce2	3753. [bug] allow-notify was ignoring keys. [RT #35425 ]	2014-02-21 00:09:28 +11:00
Mark Andrews	86856f4f30	3752. [bug] Address potential REQUIRE failure if DNS_STYLEFLAG_COMMENTDATA is set when printing out a rdataset.	2014-02-20 23:04:54 +11:00
Evan Hunt	4a0beb64be	[master] start prep for 9.10.0b1	2014-02-19 21:39:35 -08:00
Evan Hunt	9576baafc0	[master] assert if sitok/sitbad are insane	2014-02-19 21:26:31 -08:00
Mark Andrews	d17d32a7bf	set setok/sitbad	2014-02-20 16:16:53 +11:00
Mark Andrews	f0c00f10a0	report if sit is good/bad	2014-02-20 15:55:09 +11:00
Mark Andrews	51d6d7eea4	continue rather than break	2014-02-20 15:20:12 +11:00
Mark Andrews	45b8dc626a	add #ifdef notdef check of DNS_OPT_EXPIRE length	2014-02-20 15:06:49 +11:00
Evan Hunt	6cba0b8e61	[expireopt] format expire time	2014-02-20 14:57:47 +11:00
Mark Andrews	16134801ce	3750. [experimental] Partially implement EDNS EXPIRE option as described in draft-andrews-dnsext-expire-00. Retrivial of remaining time to expiry from slave zones is supported. EXPIRE uses an experimental option code (65002) and is subject to change. [RT #35416]	2014-02-20 14:56:20 +11:00
Mark Andrews	801b958a5c	s/DNS_EDNSOPTIONS/DNS_EDNSOPTIONS/	2014-02-20 14:00:54 +11:00
Mark Andrews	72ba6ba736	define DNS_OPT_EDNSOPTIONS	2014-02-20 13:55:21 +11:00
Mark Andrews	e676a59686	update copyrights	2014-02-20 10:53:11 +11:00
Evan Hunt	d7b9756a21	[master] ENDS client-subnet in dig 3749. [func] "dig +subnet" sends an EDNS client subnet option containing the specified address/prefix when querying. (Thanks to Wilmer van der Gaast.) [RT #35415]	2014-02-19 15:51:02 -08:00
Tinderbox User	1361e03890	update copyright notice	2014-02-19 23:46:31 +00:00
Francis Dupont	f1a6c8e78c	WIN32 master fixes	2014-02-19 23:17:52 +01:00
Evan Hunt	7f5bdf7f40	[master] fix dns_resolver_destroyfetch race 3747. [bug] A race condition could lead to a core dump when destroying a resolver fetch object. [RT #35385]	2014-02-18 23:32:02 -08:00
Evan Hunt	35f6a21f5f	[master] max-zone-ttl 3746. [func] New "max-zone-ttl" option enforces maximum TTLs for zones. If loading a zone containing a higher TTL, the load fails. DDNS updates with higher TTLs are accepted but the TTL is truncated. (Note: Currently supported for master zones only; inline-signing slaves will be added.) [RT #38405]	2014-02-18 23:26:50 -08:00
Evan Hunt	6a3fa181d1	[master] add "--with-tuning=large" option 3745. [func] "configure --with-tuning=large" adjusts various compiled-in constants and default settings to values suited to large servers with abundant memory. [RT #29538]	2014-02-18 22:36:14 -08:00
Mark Andrews	b5f6271f4d	3744. [experimental] SIT: send and process Source Identity Tokens (which are similar to DNS Cookies by Donald Eastlake) and are designed to help clients detect off path spoofed responses and for servers to detect legitimate clients. SIT use a experimental EDNS option code (65001). SIT can be enabled via --enable-developer or --enable-sit. It is on by default in Windows. RRL processing as been updated to know about SIT with legitimate clients not being rate limited. [RT #35389]	2014-02-19 12:53:42 +11:00
Mark Andrews	38eabfcee7	3743. [bug] delegation-only flag wasn't working in forward zone declarations despite being documented. This is needed to support turning off forwarding and turning on delegation only at the same name. [RT #35392]	2014-02-18 10:09:07 +11:00
Mark Andrews	823eadf26d	#include <isc/string.h>	2014-02-17 12:22:42 +11:00
Tinderbox User	72141595cf	update copyright notice	2014-02-16 23:46:32 +00:00
Evan Hunt	1d761cb453	[master] delve 3741. [func] "delve" (domain entity lookup and validation engine): A new tool with dig-like semantics for performing DNS lookups, with internal DNSSEC validation, using the same resolver and validator logic as named. This allows easy validation of DNSSEC data in environments with untrustworthy resolvers, and assists with troubleshooting of DNSSEC problems. (Note: not yet available on win32.) [RT #32406]	2014-02-16 13:03:17 -08:00
Evan Hunt	31f6244cc2	[master] tcp and udp stats counters 3739. [func] Added per-zone stats counters to track TCP and UDP queries. [RT #35375]	2014-02-15 20:57:00 -08:00
Tinderbox User	56af756b6c	update copyright notice	2014-02-14 23:46:27 +00:00
Evan Hunt	f2ea8c2f96	[master] updated published drafts	2014-02-14 08:53:06 -08:00
Mark Andrews	2729aea3c1	3738. [bug] --enable-openssl-hash failed to build. [RT #35343 ]	2014-02-13 15:09:08 +11:00
Tinderbox User	1124950b35	update copyright notice	2014-02-12 23:46:27 +00:00
Mark Andrews	a1271e2404	3737. [bug] 'rndc retransfer' could trigger a assertion failure with inline zones. [RT #35353] (cherry picked from commit `8e30a7e9fd`)	2014-02-13 08:55:09 +11:00
Mark Andrews	afdcff15c0	#ifdef PF_ROUTE use	2014-02-13 01:13:05 +11:00
Evan Hunt	842a3e6d0e	[master] try multiple addresses per server name in nsupdate 3736. [bug] nsupdate: When specifying a server by name, fall back to alternate addresses if the first address for that name is not reachable. [RT #25784]	2014-02-11 21:29:10 -08:00
Evan Hunt	dbb012765c	[master] merge libiscpk11 to libisc 3735. [cleanup] Merged the libiscpk11 library into libisc to simplify dependencies. [RT #35205]	2014-02-11 21:20:28 -08:00
Mark Andrews	850b5e8093	Add Linux support to: 3733. [func] Improve interface scanning support. Interface information will be automatically updated if the OS supports routing sockets (MacOS, *BSD, Linux). Use "automatic-interface-scan no;" to disable. Add "rndc scan" to trigger a scan. [RT #23027]	2014-02-10 09:46:54 +11:00
Tinderbox User	81f58902eb	update copyright notice	2014-02-07 23:46:39 +00:00
Mark Andrews	d896314990	remove dns_pkcs11.h	2014-02-07 23:19:08 +11:00
Mark Andrews	6a47daef7e	#ifdef PF_ROUTE	2014-02-07 20:36:48 +11:00
Mark Andrews	62ec9fd168	3733. [func] Improve interface scanning support. Interface information will be automatically updated if the OS supports routing sockets. Use "automatic-interface-scan no;" to disable. Add "rndc scan" to trigger a scan. [RT #23027]	2014-02-07 17:16:37 +11:00
Evan Hunt	166341d554	[master] add no-case-compress 3731. [func] Added a "no-case-compress" ACL, which causes named to use case-insensitive compression (disabling change #3645) for specified clients. (This is useful when dealing with broken client implementations that use case-sensitive name comparisons, rejecting responses that fail to match the capitalization of the query that was sent.) [RT #35300]	2014-02-06 19:37:26 -08:00
Evan Hunt	dd19c1a352	[master] report T_SKIPPED from t_dst	2014-02-06 16:21:38 -08:00
Evan Hunt	e5f9fa7e18	[master] deprecate isc_bitsrting 3727. [func] The isc_bitstring API is no longer used and has been removed from libisc. [RT #35284]	2014-02-06 15:36:13 -08:00
Evan Hunt	a8cdf2a2e7	[master] fixed win32 dig problem 3724. [bug] win32: Fixed a bug that prevented dig and host from exiting properly after completing a UDP query. [RT #35288]	2014-02-04 12:01:20 -08:00
Tinderbox User	0666e6db54	update copyright notice	2014-01-31 23:46:22 +00:00
Evan Hunt	48def18179	[master] silence coverity warnings - remove dead code in server.c - initialize a struct tm.c	2014-01-31 09:34:37 -08:00
Mark Andrews	bc021b8ef5	#include <inttypes.h>	2014-01-31 22:38:26 +11:00
Evan Hunt	4e182f01a1	[master] add stdint.h	2014-01-31 00:05:30 -08:00
Evan Hunt	0a35160f4e	[master] prep 9.10.0a2	2014-01-30 18:02:26 -08:00
Evan Hunt	3249da26fc	[master] rationalize external key handling 3723. [cleanup] Imported keys are now handled the same way regardless of DNSSEC algorithm. [RT #35215]	2014-01-30 17:49:32 -08:00
Evan Hunt	d0803df331	[master] fixed geoip in blackhole ACLs 3722. [bug] Using geoip ACLs in a blackhole statement could cause a segfault. [RT #35272]	2014-01-30 17:03:32 -08:00
Tinderbox User	4734976943	update copyright notice	2014-01-30 23:46:20 +00:00
Tinderbox User	04b5785fde	update copyright notice	2014-01-29 23:46:19 +00:00
Mark Andrews	63add83a26	3720. [bug] Address compiler warnings. [RT #35261 ]	2014-01-30 10:33:28 +11:00
Mark Andrews	75d747e1c5	3719. [bug] Address memory leak in in peer.c. [RT #35255 ]	2014-01-30 07:54:52 +11:00
Mark Andrews	fbc0e37e0c	3718. [bug] A missing ISC_LINK_INIT in log.c. [RT #35260 ]	2014-01-30 07:44:02 +11:00
Tinderbox User	0ff8ed750e	update copyright notice	2014-01-27 23:46:24 +00:00
Mark Andrews	ffa83ffb22	doxygen markup (cherry picked from commit bc28371004d70b17f0ca872da8bd84e70591eaf4)	2014-01-28 09:12:58 +11:00
Mark Andrews	b8cf73a3b3	3717. [port] hpux: Treat EOPNOTSUPP as a expected error code when probing to see if it is possible to set dscp values on a per packet basis. [RT #35252] 3716. [bug] The dns_request code was setting dcsp values when not requested. [RT #35252]	2014-01-28 08:25:28 +11:00
Tinderbox User	85167bb10f	update copyright notice	2014-01-24 23:46:22 +00:00
Evan Hunt	bff64bf12b	[master] correct copyrights and attributions see RT #35423 for details; highlights: - remove license clauses 3 and 4 from NetBSD code - remove advertising clause from historical BSD code - add openssl advertising attributions	2014-01-24 09:46:00 -08:00
Tinderbox User	fbe600459d	update copyright notice	2014-01-23 23:46:17 +00:00
Evan Hunt	83f69fcd6e	[master] fix a problem with libgeoip 1.5 and higher 3715. [bug] The region and city databases could fail to initialize when using some versions of libGeoIP, causing assertion failures when named was configured to use them. [RT #35427]	2014-01-23 12:46:02 -08:00
Mark Andrews	db519a99ce	remove src files not available for 'make depend'	2014-01-22 10:49:18 +11:00
Tinderbox User	aa7b16ec2a	update copyright notice	2014-01-21 23:46:16 +00:00
Mark Andrews	395a4c7f6f	s/gai_sterror.c/gai_strerror.c/	2014-01-22 10:10:47 +11:00
Mark Andrews	8fbf08d961	silence compiler warning	2014-01-22 10:01:01 +11:00
Evan Hunt	5c6f38b19b	[master] silence compiler warning	2014-01-21 11:21:29 -08:00
Evan Hunt	1b255a0c4e	[master] overlooked some memcpy->memmove changes with pkcs11 merge	2014-01-21 10:08:01 -08:00
Evan Hunt	a40b8e025a	[master] remove unnecessary test in name.c	2014-01-20 17:58:47 -08:00
Evan Hunt	d58e33bfab	[master] testcrypto.sh in system tests 3714. [test] System tests that need to test for cryptography support before running can now use a common "testcrypto.sh" script to do so. [RT #35213]	2014-01-20 16:08:09 -08:00
Evan Hunt	e45d0508c3	[master] skip unnecesary also-notify data 3713. [bug] Save memory by not storing "also-notify" addresses in zone objects that are configured not to send notify requests. [RT #35195]	2014-01-20 15:53:51 -08:00
Evan Hunt	12bf5d4796	[master] address several issues with native pkcs11	2014-01-18 11:51:07 -08:00
Francis Dupont	6972eaffdb	fix external key handling	2014-01-17 17:12:20 +01:00
Francis Dupont	1893156781	fix GSSAPI with native PKCS#11 typo [#35207 ]	2014-01-17 14:32:12 +01:00
Mark Andrews	e20788e121	update copyrights	2014-01-16 15:19:24 +11:00
Mark Andrews	64819a98a9	cast to unsigned char	2014-01-16 11:46:28 +11:00
Tinderbox User	b269de36be	update copyright notice	2014-01-15 23:46:24 +00:00
Mark Andrews	636c2f488c	initalize ret	2014-01-16 09:23:12 +11:00
Evan Hunt	90b513b2a0	[master] another build fix for pkcs11+atf+libtool	2014-01-15 12:07:04 -08:00
Evan Hunt	0a3fafde84	[master] try again, ensuring atf tests build...	2014-01-15 11:46:17 -08:00
Evan Hunt	e4f484b7b7	[master] address compiler warnings	2014-01-15 09:35:44 -08:00
Evan Hunt	d868cce6eb	[master] correct library build order	2014-01-15 09:20:09 -08:00
Mark Andrews	1b5dcef875	include <isc/tm.h>, <isc/lang.h> and <isc/types.h>	2014-01-15 20:42:22 +11:00
Evan Hunt	a147de10fe	[master] portable strptime/timegm 3709. [port] Use built-in versions of strptime() and timegm() on all platforms to avoid portability issues. [RT #35183]	2014-01-14 23:17:47 -08:00
Mark Andrews	702958d202	3708. [bug] Address a portentry locking issue in dispatch.c. [RT #35128]	2014-01-15 15:55:35 +11:00
Mark Andrews	cd7f8d18f8	3707. [bug] irs_resconf_load now returns ISC_R_FILENOTFOUND on a missing resolv.conf file and initializes the structure as if it had been configured with: nameserver ::1 nameserver 127.0.0.1 Note: Callers will need to be updated to treat ISC_R_FILENOTFOUND as a qualified success or else they will leak memory. The following code fragment will work with both only and new versions without changing the behaviour of the existing code. resconf = NULL; result = irs_resconf_load(mctx, "/etc/resolv.conf", &resconf); if (result != ISC_SUCCESS) { if (resconf != NULL) irs_resconf_destroy(&resconf); .... } [RT #35194]	2014-01-15 15:22:55 +11:00
Mark Andrews	d8b83f0e2b	silence compiler warning	2014-01-15 12:40:09 +11:00
Tinderbox User	bf0266f286	update copyright notice	2014-01-14 23:46:22 +00:00
Evan Hunt	ba751492fc	[master] native PKCS#11 support 3705. [func] "configure --enable-native-pkcs11" enables BIND to use the PKCS#11 API for all cryptographic functions, so that it can drive a hardware service module directly without the need to use a modified OpenSSL as intermediary (so long as the HSM's vendor provides a complete-enough implementation of the PKCS#11 interface). This has been tested successfully with the Thales nShield HSM and with SoftHSMv2 from the OpenDNSSEC project. [RT #29031]	2014-01-14 15:40:56 -08:00
Mark Andrews	07fb9b8330	3704. [protocol] Accept integer timestamps in RRSIG records. [RT #35185 ]	2014-01-14 16:12:30 +11:00
Tinderbox User	2cf1d5b098	update copyright notice	2014-01-12 23:46:23 +00:00
Mark Andrews	c24b6b4a40	fix for pre C99 compiler	2014-01-13 09:29:25 +11:00
Mark Andrews	fb756ba304	3703. [func] Prefetch about to expire records if they are queried for, see prefetch option for details. [RT #35041]	2014-01-12 21:29:15 +11:00
Evan Hunt	dc1cfff92a	[master] fix win32 isc_time_set()	2014-01-11 22:01:40 -08:00
Evan Hunt	6736c84f11	[master] missing prototype in time.h	2014-01-10 20:19:17 -08:00
Evan Hunt	903247531a	[master] portable replacement for timegm()	2014-01-10 19:22:02 -08:00
Mark Andrews	a7c412f37c	update copyrights	2014-01-11 07:07:56 +11:00
Evan Hunt	f459b70c8e	[master] one more win32 build error	2014-01-10 11:20:46 -08:00
Evan Hunt	480172bf6a	[master] missing prototypes	2014-01-10 11:17:12 -08:00
Evan Hunt	1bb2f53b9f	[master] fix win32 build problems	2014-01-10 10:58:06 -08:00
Mark Andrews	fd0f3e7cd8	add unit test for isc_time_parsehttptimestamp	2014-01-11 00:30:41 +11:00
Mark Andrews	52e6d8a36d	add ISC_PLATFORM_NEEDSTRCASESTR	2014-01-10 23:53:41 +11:00
Mark Andrews	429ab67296	strptime returns time in the local time zone so use mktime	2014-01-10 23:44:59 +11:00
Evan Hunt	0cd166e0a9	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-01-09 22:04:29 -08:00
Evan Hunt	60fb67079e	[master] add isc_string_strcasestr for portability	2014-01-09 22:04:03 -08:00
Mark Andrews	ff6de396a9	3701. [func] named-checkconf can now suppress the printing of shared secrets by specifying '-x'. [RT #34465]	2014-01-10 16:56:36 +11:00
Evan Hunt	57a46f4b19	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-01-09 19:05:46 -08:00
Evan Hunt	789252d55f	[master] stats improvements 3700. [func] Allow access to subgroups of XML statistics via special URLs http://<server>:<port>/xml/v3/server, /zones, /net, /tasks, /mem, and /status. [RT #35115] 3699. [bug] Improvements to statistics channel XSL stylesheet: the stylesheet can now be cached by the browser; section headers are omitted from the stats display when there is no data in those sections to be displayed; counters are now right-justified for easier readability. [RT #35117]	2014-01-09 18:46:25 -08:00
Tinderbox User	431a83fb29	update copyright notice	2014-01-09 23:46:35 +00:00
Mark Andrews	109f477ed7	silence compiler warning	2014-01-09 15:57:59 +11:00
Evan Hunt	e851ea8260	[master] replace memcpy() with memmove(). 3698. [cleanup] Replaced all uses of memcpy() with memmove(). [RT #35120]	2014-01-08 16:39:05 -08:00
Tinderbox User	ca8ad4871e	update copyright notice	2014-01-06 23:46:06 +00:00
Jeremy C. Reed	c55b7dce48	See ticket 35140 for details. Install some include files: dns/client.h dns/tsec.h irs/resconf.h irs/types.h (I noticed these when building DHCP using installed BIND9.) This was okayed during the 2014-01-02 BIND9 phone meeting.	2014-01-06 14:20:31 -06:00
Evan Hunt	2b258a1f5b	[master] dispatch.c race 3695. [bug] Address a possible race in dispatch.c. [RT #35107]	2013-12-23 09:50:18 -08:00
Evan Hunt	c14ba71070	[master] warn if key-directory doesn't exist 3694. [bug] Warn when a key-directory is configured for a zone, but does not exist or is not a directory. [RT #35109]	2013-12-20 14:57:03 -08:00
Tinderbox User	1baa4729ce	update copyright notice	2013-12-16 23:46:18 +00:00
Mark Andrews	a2ca594252	sort and one file per line	2013-12-17 10:35:45 +11:00
Mark Andrews	161e803a56	3692. [bug] Two calls to dns_db_getoriginnode were fatal if there was no data at the node. [RT #35080]	2013-12-17 09:08:59 +11:00
Evan Hunt	0606c47750	[master] correct dispatch address/port check 3690. [bug] Iterative responses could be missed when the source port for an upstream query was the same as the listener port (53). [RT #34925]	2013-12-12 22:39:12 -08:00
Evan Hunt	9b895f30f1	[master] fix insecure delegation across static-stub zones 3689. [bug] Fixed a bug causing an insecure delegation from one static-stub zone to another to fail with a broken trust chain. [RT #35081]	2013-12-12 22:19:33 -08:00
Mark Andrews	1bdc17e54e	remove from load_rpzs	2013-12-12 13:53:10 +11:00
Mark Andrews	e4d0018d4c	3688. [bug] loadnode could return a freed node on out of memory. [RT #35106]	2013-12-12 12:49:44 +11:00
Tinderbox User	de77dcc2c1	update copyright notice	2013-12-11 23:47:38 +00:00
Mark Andrews	00112618bc	3687. [bug] Address null pointer dereference in zone_xfrdone. [RT #35042]	2013-12-12 10:38:35 +11:00
Evan Hunt	0bbe3273a2	[master] dnssec-signzone -Q 3686. [func] "dnssec-signzone -Q" drops signatures from keys that are still published but no longer active. [RT #34990]	2013-12-11 13:25:21 -08:00
Mark Andrews	8539d19c04	handle underflow now that n is unsigned (cherry picked from commit `536ac53126`)	2013-12-10 07:24:44 +11:00
Mark Andrews	131333682c	silence compiler warning (cherry picked from commit `b14c6a1caf`)	2013-12-10 07:24:44 +11:00
Mark Andrews	7d65cbaca0	3684. [bug] The list of included files would grow on reload. [RT 35090]	2013-12-07 09:44:45 +11:00
Mark Andrews	53f70575bd	silence compiler warnings	2013-12-06 17:38:25 +11:00
Mark Andrews	2bdfb330af	update copyrights	2013-12-05 15:04:53 +11:00
Tinderbox User	5465b124f1	update copyright notice	2013-12-04 23:46:51 +00:00
Curtis Blackburn	8009525601	3682. [bug] Correct the behavior of rndc retransfer to allow inline-signing slave zones to retain NSEC3 parameters instead of reverting to NSEC [RT #34745]	2013-12-04 12:26:20 -06:00
Mark Andrews	c3c8823fed	3681. [port] Update the Windows build system to support feature selection and WIN64 builds. This is a work in progress. [RT #34160]	2013-12-04 12:47:23 +11:00
Evan Hunt	43bbab6d0b	[master] typo	2013-11-18 15:26:50 -08:00
Tinderbox User	432d8fa3b4	update copyright notice	2013-11-14 23:46:24 +00:00
Evan Hunt	434bfc3dfa	[master] "in-view" zone option 3673. [func] New "in-view" zone option allows direct sharing of zones between views. [RT #32968]	2013-11-13 20:35:40 -08:00
Mark Andrews	6a671a840d	add missing break;	2013-11-14 12:26:57 +11:00
Tinderbox User	c0de084bbd	update copyright notice	2013-11-13 23:46:31 +00:00
Evan Hunt	0618287859	[master] allow setting local addr in dns_client 3672. [func] Local address can now be specified when using dns_client API. [RT #34811]	2013-11-13 10:52:22 -08:00
Mark Andrews	7c19754bac	add partial legend for Address database dump	2013-11-13 12:10:43 +11:00
Tinderbox User	a4fa22bf14	update copyright notice	2013-11-11 23:46:29 +00:00
Mark Andrews	0a47bc90af	3668. [bug] Fix cast in lex.c which could see 0xff treated as eof. [RT #34993]	2013-11-11 10:49:28 +11:00
Mark Andrews	37bd255fd4	3665. [bug] Failure to release lock on error in receive_secure_db. [RT #34944]	2013-10-31 22:15:12 +11:00
Mark Andrews	2502a568e7	use smaller buffers	2013-10-26 20:36:17 +11:00
Tinderbox User	3a34908497	update copyright notice	2013-10-25 23:46:32 +00:00
Mark Andrews	938aea1dc4	address memory leak in change #3662 , force format matching, attempt to address coverity false positives	2013-10-26 10:04:36 +11:00
Mark Andrews	34416a7954	3663. [bug] Address bugs in dns_rdata_fromstruct and dns_rdata_tostruct for WKS and ISDN types. [RT #34910]	2013-10-25 13:06:09 +11:00
Mark Andrews	6100b17699	3662. [bug] 'host' could die if a UPD query timed out. [RT #34870 ]	2013-10-25 10:09:33 +11:00
Mark Andrews	0bfc15fe59	missing FCTXTRACE2 macro RT#34914	2013-10-21 15:51:43 +11:00
Tinderbox User	bfc4a951c5	update copyright notice	2013-10-08 23:46:23 +00:00
Mark Andrews	03a9daede1	be consistent in how ISC_PLATFORM_USETHREADS is defined and used	2013-10-08 16:47:57 +11:00
Tinderbox User	4e3e8cbea0	update copyright notice	2013-10-08 04:13:49 +00:00
Mark Andrews	c6e6cac4ea	call isc_mutex_trylock rather than pthread_mutex_trylock	2013-10-08 12:11:09 +11:00
Mark Andrews	03152360db	3661. [bug] Address lock order reversal deadlock with inline zones. [RT #34856]	2013-10-08 11:43:08 +11:00
Mark Andrews	368c4556c8	remove redudant #ifdef; address imprecise #ifdef usage	2013-10-02 11:59:39 +10:00
Mark Andrews	fb623f9a07	3655. [cleanup] Simplify TCP message processing when requesting a zone transfer. [RT #34825]	2013-09-25 09:57:34 +10:00
Mark Andrews	5116f25421	3654. [bug] Address race condition with manual notify requests. [RT #34806]	2013-09-25 09:47:31 +10:00
Tinderbox User	0e17b4207e	update copyright notice	2013-09-23 23:46:20 +00:00
Mark Andrews	9084a3e58f	silence clang warning	2013-09-23 13:26:33 +10:00
Mark Andrews	97a2a26cd9	3651. [tuning] Adjust when a master server is deemed unreachable. [RT #27075]	2013-09-21 17:12:39 +10:00
Mark Andrews	c1b8fa6160	3650. [tuning] Use separate rate limiting queues for refresh and notify requests. [RT #30589]	2013-09-21 16:29:58 +10:00
Mark Andrews	6c57978413	refresh_callback needs to check if the zone is exiting (cherry picked from commit 2e314abcf0a47acfbab55e5ef0463c04c08476be)	2013-09-18 14:52:38 +10:00
Mark Andrews	7667dd1a03	call zone_settimer; sub test failure was not being detected (cherry picked from commit `ebd7900670`)	2013-09-18 12:57:46 +10:00
Evan Hunt	213c41c9f7	[master] fix to change #3647	2013-09-13 09:52:15 -07:00
Mark Andrews	76df835d59	3647. [bug] Address a race condition when shutting down a zone. [RT #34750]	2013-09-12 13:37:43 +10:00
Evan Hunt	18df9e628e	[master] strdup journal filename 3646. [bug] Journal filename string could be set incorrectly, causing garbage in log messages. [RT #34738]	2013-09-09 22:12:47 -07:00
Evan Hunt	78f20eda3c	[master] clean up tests, update .gitignore	2013-09-09 19:37:17 -07:00
Evan Hunt	41dabe089f	[master] remove namespace.h from installed files	2013-09-09 09:22:37 -07:00
Tinderbox User	63737247d1	update copyright notice	2013-09-05 23:46:16 +00:00
Mark Andrews	0327c6de3e	remove accidentally added line	2013-09-05 16:23:12 +10:00
Evan Hunt	012648ce19	[master] missed an external	2013-09-04 19:45:30 -07:00
Evan Hunt	eb8fae696c	[master] remove rollforward2 from libdns.def	2013-09-04 19:36:12 -07:00
Tinderbox User	473d3168f0	update copyright notice	2013-09-04 23:46:16 +00:00
Evan Hunt	8e3b246dc8	[master] remove "resign" member from dns_diff struct no longer needed since change #3641	2013-09-04 16:35:11 -07:00
Evan Hunt	79e6f6e519	[master] deprecate dns_journal_rollforward2 no longer needed since change #3641	2013-09-04 16:19:52 -07:00
Mark Andrews	3ad8f24ddd	3644. [protocol] Check that EDNS subnet client options are well formed. [RT #34718]	2013-09-05 09:18:59 +10:00
Evan Hunt	8e1655931b	[master] add missing externals	2013-09-04 15:52:10 -07:00
Evan Hunt	09755f7270	[master] prep 9.10.0a1 release	2013-09-04 15:41:50 -07:00
Mark Andrews	e9921500e1	remove unused variable	2013-09-04 22:34:44 +10:00
Mark Andrews	0c91911b4d	3642. [func] Allow externally generated DNSKEY to be imported into the DNSKEY management framework. A new tool dnssec-importkey is used to this. [RT #34698]	2013-09-04 13:53:02 +10:00
Mark Andrews	b5f4cc132e	3641. [bug] Handle changes to sig-validity-interval settings better. [RT #34625]	2013-09-04 13:45:00 +10:00
Mark Andrews	d6f99498d6	3639. [bug] Treat type 65533 (KEYDATA) as opaque except when used in a key zone. [RT #34238]	2013-09-04 13:14:06 +10:00
Curtis Blackburn	c4348cb50f	3638. [cleanup] Add the ability to handle ENOPROTOOPT in case it is encountered. [RT #34668]	2013-08-28 15:56:49 -05:00
Tinderbox User	377b774598	update copyright notice	2013-08-15 23:46:17 +00:00
Mark Andrews	d1e22676de	3635. [bug] Signatures were not being removed from a zone with only KSK keys for a algorithm. [RT #24439]	2013-08-15 13:37:07 +10:00
Mark Andrews	7ace327795	3632. [bug] Signature from newly inactive keys were not being removed. [RT #32178]	2013-08-15 10:48:05 +10:00
Evan Hunt	5f630b9417	[master] change 3630 incomplete--needed to check fromtext too	2013-08-14 17:23:41 -07:00
Tinderbox User	3c04ca47c6	update copyright notice	2013-08-13 23:46:14 +00:00
Evan Hunt	5d4343a998	[master] fix md5 key id computation 3630. [bug] Ensure correct ID computation for MD5 keys. [RT #33033]	2013-08-13 16:03:42 -07:00
Tinderbox User	21c8938824	update copyright notice	2013-08-12 23:46:05 +00:00
Mark Andrews	75ae74f8fd	3629. [func] Allow the printing of cryptographic fields in DNSSEC records by dig to be suppressed (dig +nocrypto). [RT #34534]	2013-08-12 15:37:51 +10:00
Mark Andrews	16bd30ae69	3628. [func] Report DNSKEY key id's when dumping the cache. [RT #34533]	2013-08-12 14:38:26 +10:00
Mark Andrews	df0892aea6	3627. [bug] RPZ changes were not effective on slaves. [RT #34450 ]	2013-08-09 13:23:01 +10:00
Evan Hunt	7ade93c328	[master] fix build error when IP_TOS is undefined	2013-08-08 19:15:11 -07:00
Evan Hunt	a499dddb4b	[master] easier to read NSID output 3626. [func] dig: NSID output now easier to read. [RT #21160]	2013-08-08 16:50:34 -07:00
Mark Andrews	e543b4e5db	remove redundent 'request-ixfr'	2013-08-01 14:38:27 +10:00
Mark Andrews	f45818b82a	add comment	2013-07-26 10:25:45 +10:00
Evan Hunt	d640b4a0ab	[master] perf: eliminate cache stats attach/detach 3622. [tuning] Eliminate an unnecessary lock when incrementing cache statistics. [RT #34339]	2013-07-25 10:51:31 -07:00
Tinderbox User	345a210f51	update copyright notice	2013-07-16 23:46:10 +00:00
Mark Andrews	fdb4ae8f6c	3621. [security] Incorrect bounds checking on private type 'keydata' can lead to a remotely triggerable REQUIRE failure (CVE-2013-4854). [RT #34238]	2013-07-17 08:03:50 +10:00
Mark Andrews	975172e3dc	remove unused variable	2013-07-16 10:18:54 +10:00
Mark Andrews	6142269dcc	remove unused assignment	2013-07-15 13:09:27 +10:00
Mark Andrews	7236e1bd00	remove dead code	2013-07-15 09:30:53 +10:00
Tinderbox User	44c016134f	update copyright notice	2013-07-13 23:46:06 +00:00
Mark Andrews	09fec18669	fix unchecked null; value not read	2013-07-14 00:26:23 +10:00
Francis Dupont	41a6b3031e	spelling	2013-07-13 01:39:41 +02:00
Evan Hunt	421d4a0647	[master] rpz work 3620. [func] Added "rpz-client-ip" policy triggers, enabling RPZ responses to be configured on the basis of the client IP address; this can be used, for example, to blacklist misbehaving recursive or stub resolvers. [RT #33605] 3619. [bug] Fixed a bug in RPZ with "recursive-only no;" [RT #33776]	2013-07-12 14:46:47 -07:00
Tinderbox User	dbd8673fa0	update copyright notice	2013-07-11 23:46:13 +00:00
Evan Hunt	0949306cb9	[master] check include file mtimes 3618. [func] "rndc reload" now checks modification times of include files as well as master files to determine whether to skip reloading a zone. [RT #33936]	2013-07-11 16:32:36 -07:00
Evan Hunt	cf0a69e999	[master] address zone->db races 3616. [bug] Change #3613 was incomplete. [RT #34177]	2013-07-11 09:51:47 -07:00
Evan Hunt	f4e309b177	[master] silence warning	2013-07-10 09:15:51 -07:00
Francis Dupont	a96e5ffbe0	spelling	2013-07-10 10:56:18 +02:00
Evan Hunt	927e4c9fec	[master] address race conditions with removing inline zones 3513. [bug] named could crash when deleting inline-signing zones with "rndc delzone". [RT #34066]	2013-07-09 17:39:21 -07:00
Tinderbox User	ca48f47d88	update copyright notice	2013-07-09 23:46:11 +00:00
Evan Hunt	4b13ea47db	[master] check for -ljson-c as well as -ljson 3512. [port] Check whether to use -ljson or -ljson-c. [RT #34115]	2013-07-09 16:43:59 -07:00
Evan Hunt	5b7abbef51	[master] added isc_safe_memcmp() 3611. [bug] Improved resistance to a theoretical authentication attack based on differential timing. [RT #33939]	2013-07-09 11:47:16 -07:00
Evan Hunt	eb4458b478	[master] prevent exportlib deadlock 3609. [bug] Corrected a possible deadlock in applications using the export version of the isc_app API. [RT #33967]	2013-07-06 18:23:41 -07:00
Francis Dupont	c46fb8092d	remove dns_adb_flushmatch from libdns.def	2013-07-04 10:56:18 +02:00
Evan Hunt	5bcbfa2da0	[master] add missing symbols	2013-07-01 10:44:16 -07:00
Evan Hunt	9d4ec6d2c5	[master] "flushtree -all" no longer optional Updated CHANGES note: 3606. [func] "rndc flushtree" now flushes matching records in the address database and bad cache as well as the DNS cache. (Previously only the DNS cache was flushed.) [RT #33970]	2013-06-30 18:53:48 -07:00
Tinderbox User	9c5faa2ba8	update copyright notice	2013-06-26 23:46:14 +00:00
Evan Hunt	9fa5a723e1	[master] "rndc flushtree -all <name>" 3606. [func] "rndc flushtree -all" flushes matching records in the ADB and bad cache as well as the DNS cache. (Without the "-all" option, flushtree will still only flush records from the DNS cache.) [RT #33970]	2013-06-26 14:59:32 -07:00
Evan Hunt	c5a53e9ab5	[master] fix WIN32 nmake crc64 - trivial typo in CRC-64 windows build	2013-06-26 14:49:01 -07:00
Evan Hunt	f42c0dcca8	[master] win32 fixes 3605. [port] win32: Addressed several compatibility issues with newer versions of Visual Studio. [RT #33916] Squashed commit of the following: commit 4127af15f85da90cf2bd3a0c5a558daae89e833a Author: Francis Dupont <fdupont@isc.org> Date: Tue Jun 25 22:41:53 2013 +0200 make the last change to be text commit 21ef4891b9ee3e3aefb45d4c80d5cb7ec78f264f Author: Curtis Blackburn <ckb@isc.org> Date: Tue Jun 25 12:35:08 2013 -0500 [rt33916] re-worded for easier reading commit 83828e47e62fea4070441e645ba8fed338255ceb Author: Francis Dupont <fdupont@isc.org> Date: Mon Jun 24 16:08:11 2013 +0200 introduce a VCRedistPath env var commit 0337f2554f168993a65945e78c2879e9bfca5293 Author: Francis Dupont <fdupont@isc.org> Date: Sun Jun 23 01:23:26 2013 +0200 _adjust_fdiv for VS < 2010 commit 375fdd5c06be276b0ff0ad589c0e22b809339fe9 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 16:27:04 2013 +0200 move to MSVC v1600 as it still breaks on VS 2010 commit bfcaf72071e9d8df1d0ce0c5f05b69acd51bf698 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:57:35 2013 +0200 WIN32: avoid addrinfo redef commit 18504c3e50b11e66a0b573c7cb3d61094bfa5b52 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:54:38 2013 +0200 WIN32: fseek/ftell commit f9a4fdccc5ab1c74c64412fb76da7dfd161787b2 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:13:01 2013 +0200 fix WIN32 error redefs in net.h (isc ad lwres libs)	2013-06-26 14:38:35 -07:00
Evan Hunt	7aba1a9660	[master] fix compile bug with json but no xml 3604. [bug] Fixed a compile-time error when building with JSON but not XML. [RT #33959]	2013-06-26 14:12:27 -07:00
Tinderbox User	ca283f2ecb	update copyright notice	2013-06-25 23:48:02 +00:00
Mark Andrews	682a574e67	3603. [bug] Install <isc/stat.h>. [RT #33956 ]	2013-06-25 23:56:45 +10:00
Evan Hunt	c3b5542144	[master] check for physical equivalence in names 3599. [tuning] Check for pointer equivalence in name comparisons. [RT #18125]	2013-06-18 18:14:28 -07:00
Mark Andrews	77fa1a27dd	pass correct type off_t	2013-06-19 07:00:07 +10:00
Mark Andrews	e457f75632	handle file offsets bigger that memory offsets	2013-06-19 01:25:35 +10:00
Tinderbox User	2777329775	update copyright notice	2013-06-17 23:46:12 +00:00
Evan Hunt	31707708c5	[master] portability fixes for map files 3598. [cleanup] Improved portability of map file code. [RT #33820]	2013-06-17 09:09:43 -07:00
Evan Hunt	b7e40659ef	[master] rebuild resigning heaps when loading map files 3597. [bug] Ensure automatic-resigning heaps are reconstructed when loading zones in map format. [RT #33381]	2013-06-14 10:16:10 -07:00
Evan Hunt	8f1e278931	[master] updated win32 build 3596. [port] Updated win32 build documentation, added dnssec-verify. [RT #22067]	2013-06-13 17:31:41 -07:00
Tinderbox User	1443158c11	update copyright notice	2013-06-13 23:46:13 +00:00
Evan Hunt	166c4c6c5b	[master] fix win32 build 3595. [port] win32: Fix build problems introduced by change #3550. [RT #33807]	2013-06-13 12:36:39 -07:00
Tinderbox User	8e9b13f510	update copyright notice	2013-06-12 23:46:16 +00:00
Francis Dupont	b4a865ee13	merge rt33813: MSVC doesn't propage const to dynamic array sizes	2013-06-12 19:14:30 +02:00
Francis Dupont	c213258356	merge rt33812: trivial updates for WIN32 build	2013-06-12 19:09:40 +02:00
Mark Andrews	baa9d706bd	move declaration to begining of block	2013-06-12 21:06:00 +10:00
Mark Andrews	cc74f3ade0	silence compiler warning	2013-06-12 11:57:52 +10:00
Mark Andrews	8e15d5eb3a	3593. [func] Update EDNS processing to better track remote server capabilities. [RT #30655]	2013-06-12 11:31:30 +10:00
Mark Andrews	0a6bfbc939	handle realloc failure [RT #32105 ]	2013-06-11 16:03:22 +10:00
Mark Andrews	8dda0f671d	remove unnecessary DE_CONST; pass in as (const void *)	2013-06-11 12:25:43 +10:00
Evan Hunt	7422f1f981	[master] fix compiler warning	2013-06-10 18:53:41 -07:00
Tinderbox User	5924e4ace0	update copyright notice	2013-06-10 23:46:19 +00:00
Evan Hunt	e59937c728	[rt33746] use CRC64 for map file error detection 3591. [func] Use CRC-64 to detect map file corruption at load time. [RT #33746]	2013-06-10 14:19:22 -07:00
Mark Andrews	c6eb92beb1	3589. [func] Report serial numbers in when starting zone transfers. Report accepted NOTIFY requests including serial. [RT# 33037]	2013-06-08 09:49:03 +10:00
Mark Andrews	8144dc702b	3587. [func] 'named -g' now checks the logging configuration but does not use it. [RT #33473]	2013-06-06 11:08:16 +10:00
Tinderbox User	099fa63e55	update copyright notice	2013-06-05 23:46:14 +00:00
Evan Hunt	276457f7a3	[master] assertion failure in resolver.c 3584. [security] Caching data from an incompletely signed zone could trigger an assertion failure in resolver.c [RT #33690]	2013-06-04 11:22:47 -07:00
Mark Andrews	2347c72129	3583. [bug] Address memory leak in GSS-API processing [RT #33574 ]	2013-06-04 11:59:57 +10:00
Mark Andrews	1e34fe9044	3582. [bug] Silence false positive warning regarding missing file directive for inline slave zones. [RT #33662]	2013-06-04 11:34:03 +10:00
Mark Andrews	ff8ab6befe	redo: 3576. [bug] Address a shutdown race when validating. [RT #33573 ]	2013-06-04 11:27:26 +10:00
Evan Hunt	5183f9d9da	[master] possible race in acache.c 3580. [bug] Addressed a possible race in acache.c [RT #33602]	2013-05-31 17:30:09 -07:00
Mark Andrews	c611465739	address memory in dns_view_getsecroots failure	2013-05-31 12:31:01 +10:00
Mark Andrews	5f238c3c64	3577. [bug] Handle zero TTL values better. [RT #33411 ]	2013-05-29 18:10:11 +10:00
Mark Andrews	2cd3c8856c	3576. [bug] Address a shutdown race when validating. [RT #33573 ]	2013-05-29 18:02:24 +10:00
Evan Hunt	f3c8e48b95	[master] change RRL log category 'query-errors' 3575. [func] Changed the logging category for RRL events from 'queries' to 'query-errors'. [RT #33540]	2013-05-21 12:20:54 -07:00
Mark Andrews	f9ed68cc5d	permit hexadecimal and octal dscp values	2013-05-17 21:01:02 +10:00
Mark Andrews	01e41f88b0	check for data being null	2013-05-09 21:29:57 +10:00
Mark Andrews	fb89b7cb33	add gen.dSYM	2013-05-09 10:54:36 +10:00
Tinderbox User	ee53fcb61c	update copyright notice	2013-05-08 23:46:09 +00:00
Mark Andrews	62f016d5d3	3571. [bug] Address race condition in dns_client_startresolve(). [RT #33234] Squashed commit of the following: commit ebfb9f3e783531cc1369bf519eb1c33437ec6f1a Author: Evan Hunt <each@isc.org> Date: Wed May 8 11:47:52 2013 -0700 [rt33234] style commit 0a915af759670aadb2455711997d9f29e5c3f794 Author: Mark Andrews <marka@isc.org> Date: Wed May 8 18:23:57 2013 +1000 handle dns_client race	2013-05-09 08:41:24 +10:00
Mark Andrews	3f97149ea3	assert if zone and zone->raw are the same; this should help coverity static analysis	2013-05-08 13:03:38 +10:00
Tinderbox User	180c8cf5fa	update copyright notice	2013-05-07 23:46:05 +00:00
Evan Hunt	127a4a90b0	[master] more map file sanity checks (not adding a new CHANGES note because this is an extension of the previous one, change #3570.)	2013-05-07 13:54:58 -07:00
Mark Andrews	831b70f5bd	remove dead code	2013-05-07 22:28:19 +10:00
Evan Hunt	d9f0c713fe	[master] handle corrupted pointers in map files 3570. [bug] Check internal pointers are valid when loading map files. [RT #33403]	2013-05-06 15:40:40 -07:00
Evan Hunt	e47208b6fb	[master] silence ccc-analyzer 3567. [bug] Silence clang static analyzer warnings. [RT #33365]	2013-05-03 14:31:27 -07:00
Evan Hunt	34f3693b93	[master] log forwarded updates 3566. [func] Log when forwarding updates to master. [RT #33240]	2013-05-03 14:05:32 -07:00
Evan Hunt	1a076410c2	[master] fix corrupt map file handling 3564. [bug] Improved handling of corrupted map files. [RT #33380]	2013-05-03 14:00:12 -07:00
Mark Andrews	b07086de42	add missing parameter sha1	2013-05-03 16:01:22 +10:00
Mark Andrews	0dc44869b9	remove special distclean target for irs	2013-05-03 13:32:57 +10:00
Tinderbox User	52d3ce3ada	update copyright notice	2013-05-02 23:46:13 +00:00
Evan Hunt	03b5d2689d	[master] add hash to map files 3562. [func] Update map file header format to include a SHA-1 hash of the database content, so that corrupted map files can be rejected at load time. [RT #32459]	2013-05-01 22:20:02 -07:00
Tinderbox User	954e43e605	update copyright notice	2013-04-30 04:51:59 +00:00
Mark Andrews	26bb3b7a67	3559. [func] Check that both forms of Sender Policy Framework records exist or do not exist. [RT #33355]	2013-04-30 13:49:41 +10:00
Mark Andrews	ec8a802114	3557. [bug] Reloading redirect zones was broken. [RT #33292 ]	2013-04-29 15:20:09 +10:00
Tinderbox User	9f40a78322	update copyright notice	2013-04-28 23:46:07 +00:00
Evan Hunt	73ad83bcf0	[master] d.root-servers.net AAAA 3556. [maint] Added AAAA for D.ROOT-SERVERS.NET.	2013-04-27 16:42:59 -07:00
Evan Hunt	5cedb1e345	[master] minor code cleanup in rrl.c:expand_entries() from RT #33137	2013-04-26 10:59:50 -07:00
Evan Hunt	ff5ac6d421	[master] address two more possible acache asserts 3555. [bug] Address theoretical race conditions in acache.c (change #3553 was incomplete). [RT #33252]	2013-04-25 18:02:52 -07:00
Evan Hunt	a6d43d18b1	[master] fixed several RRL issues 3554. [bug] RRL failed to correctly rate-limit upward referrals and failed to count dropped error responses in the statistics. [RT #33225]	2013-04-25 14:42:44 -07:00
Evan Hunt	330f98fe3b	[master] double free caused assertion in acache 3553. [bug] Address suspected double free in acache. [RT #33252] (cherry picked from commit 11b04b18f8ecb7c0119a7a6b6bbf8f5bad789c9a)	2013-04-25 10:41:06 -07:00
Mark Andrews	b4914b3d69	3551. [bug] resolver.querydscp[46] were uninitialized. [RT #32686 ]	2013-04-19 12:36:02 +10:00
Tinderbox User	d1fd0990fc	update copyright notice	2013-04-12 23:46:05 +00:00
Mark Andrews	865e411997	include <irs/netdb.h> as we are linking against libirs	2013-04-12 22:50:11 +10:00
Mark Andrews	214692d622	check result code	2013-04-12 14:41:10 +10:00
Mark Andrews	02638c8b40	silence hpux compiler warnings	2013-04-12 14:06:41 +10:00
Mark Andrews	794f12f4ff	fixup copyrights	2013-04-12 13:49:32 +10:00
Tinderbox User	08df939613	update copyright notice	2013-04-11 23:46:07 +00:00
Mark Andrews	8ce8052bb8	handle both cmsg types IP_TOS and IP_RECVTOS being used to return IP_TOS	2013-04-12 09:33:33 +10:00
Mark Andrews	da87a34cd2	don't call dns_message_destroy in make_querymessage	2013-04-11 18:11:12 +10:00
Mark Andrews	45b727f651	silence coverity warnings	2013-04-11 17:07:50 +10:00
Evan Hunt	fce7ba0f07	[master] fix build failure on hpux	2013-04-10 21:59:14 -07:00
Evan Hunt	634a52966f	[master] catch SIGHUP correctly in nothreads	2013-04-10 19:43:43 -07:00
Mark Andrews	e035632392	remove lib/export	2013-04-11 10:16:14 +10:00
Tinderbox User	12253af346	update copyright notice	2013-04-10 23:46:01 +00:00
Evan Hunt	53b6877dde	[master] add config.h	2013-04-10 14:23:54 -07:00
Evan Hunt	b99bfa184b	[master] unify internal and export libraries 3550. [func] Unified the internal and export versions of the BIND libraries, allowing external clients to use the same libraries as BIND. [RT #33131]	2013-04-10 13:49:57 -07:00
Tinderbox User	526cc7c2c0	update copyright notice	2013-04-09 23:46:07 +00:00
Mark Andrews	11d945cd75	silence signed/unsigned compare warning	2013-04-09 06:32:10 +10:00
Mark Andrews	4adf97c32f	3548. [bug] The NSID request code in resolver.c was broken resulting in invalid EDNS options being sent. [RT #33153]	2013-04-08 16:29:26 +10:00
Mark Andrews	1cc4695f0d	3547. [bug] Some malformed unknown rdata records were not properly detected and rejected. [RT #33129]	2013-04-08 09:55:14 +10:00
Tinderbox User	ea3dd509f6	update copyright notice	2013-04-04 23:46:06 +00:00
Mark Andrews	3a6d62c59f	3546. [func] Add EUI48 and EUI64 types. [RT #33082 ]	2013-04-05 09:07:28 +11:00
Evan Hunt	ad668472f1	[master] bug in rrl slip 3545. [bug] RRL slip behavior was incorrect when set to 1. [RT #33111]	2013-04-04 10:32:19 -07:00
Tinderbox User	f9adb48aea	update copyright notice	2013-04-03 23:46:07 +00:00
Mark Andrews	515991cda4	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2013-04-03 14:04:48 +00:00
Mark Andrews	1b2ba49571	link export/libisccfg againt DNS_CRYPTO_LIBS	2013-04-03 14:03:27 +00:00
Mark Andrews	c15b536ddb	3543. [bug] Update socket stucture before attaching to socket manager after accert. [RT #33084]	2013-04-03 17:42:42 +11:00
Mark Andrews	b1fb5abb50	add insist to try to prevent coverity false positive	2013-04-03 17:37:15 +11:00
Mark Andrews	8013077aa7	3541. [bug] The parts if libdns was not being properly initialized in when built in libexport mode. [RT #33028]	2013-04-03 17:27:40 +11:00
Mark Andrews	8c460e0159	3540. [bug] libt_api: t_info and t_assert were not thread safe.	2013-04-03 17:17:02 +11:00
Tinderbox User	d458ef4acb	update copyright notice	2013-04-02 23:46:03 +00:00
Evan Hunt	99bf6a57d9	[master] fix isc_time_formathttptmestamp() on win32 3539. [port] win32: timestamp format didn't match other platforms.	2013-04-01 22:27:49 -07:00
Evan Hunt	73b3019760	[master] address windows build warnings	2013-03-28 15:37:47 -07:00
Evan Hunt	96139421d6	[master] win32 portability fixes	2013-03-26 23:01:13 -07:00
Mark Andrews	36279f1ce1	assign to a int before calling setsockopt	2013-03-27 10:59:34 +11:00
Tinderbox User	0a00c3eb03	update copyright notice	2013-03-26 23:47:51 +00:00
Mark Andrews	d8c1e4eccf	check that sent packet arrives	2013-03-26 16:41:49 +11:00
Mark Andrews	12753e9e31	check for MAP_FILE	2013-03-26 16:41:20 +11:00
Mark Andrews	22b5363195	printf -> fprintf	2013-03-26 16:40:14 +11:00
Mark Andrews	d91274d003	remove unnecessary close	2013-03-25 10:02:31 +11:00
Mark Andrews	0266cebbf0	use unsigned constant	2013-03-25 07:31:37 +11:00
Mark Andrews	6f85ff3aac	cast to (void )	2013-03-25 07:29:35 +11:00
Mark Andrews	cfb605168d	include <sys/uio.h>	2013-03-25 07:24:59 +11:00
Tinderbox User	313b0ea9f2	update copyright notice	2013-03-23 23:46:06 +00:00
Mark Andrews	464e32079c	address warnings	2013-03-23 19:41:34 +11:00
Mark Andrews	72b0326c20	check if IPV6_TCLASS is defined	2013-03-23 19:04:41 +11:00
Tinderbox User	1e9f7a42bc	update copyright notice	2013-03-22 23:46:17 +00:00
Evan Hunt	cd594861c2	[master] add missing include	2013-03-22 14:50:22 -07:00
Evan Hunt	e57a83b576	[master] slaves notify before writing to disk 3537. [tuning] Slave zones, when updated, now send NOTIFY messages to peers before being dumped to disk rather than after. [RT #27242]	2013-03-22 14:14:59 -07:00
Evan Hunt	67adc03ef8	[master] add DSCP support 3535. [func] Add support for setting Differentiated Services Code Point (DSCP) values in named. Most configuration options which take a "port" option (e.g., listen-on, forwarders, also-notify, masters, notify-source, etc) can now also take a "dscp" option specifying a code point for use with outgoing traffic, if supported by the underlying OS. [RT #27596]	2013-03-22 14:05:33 -07:00
Mark Andrews	bbb3705e4c	3535. [bug] Minor win32 cleanups. [RT #32962 ]	2013-03-22 22:23:48 +11:00
Mark Andrews	80f1365a59	sock could be used uninitalized in isc_socketmgr_renderxml on error	2013-03-22 15:30:20 +11:00
Evan Hunt	4bf686cf5d	[master] zone parsing broken with embedded null 3534. [bug] Extra text after an embedded NULL was ignored when parsing zone files. [RT #32699]	2013-03-21 19:30:10 -07:00
Tinderbox User	ad67363430	update copyright notice	2013-03-21 23:46:12 +00:00
Mark Andrews	c82da2167d	3531. [bug] win32: A uninitialized value could be returned on out of memory. [RT #32960]	2013-03-22 09:21:30 +11:00
Tinderbox User	171f12f31e	update copyright notice	2013-03-19 23:46:08 +00:00
Evan Hunt	625ee5d015	[master] add inttypes.h to rbt_test.c	2013-03-18 17:13:48 -07:00
Tinderbox User	be8fedce2a	update copyright notice	2013-03-16 23:46:03 +00:00
Evan Hunt	741ebf1004	[master] make dst test work outside srcdir 3526. [cleanup] Set up dependencies for unit tests correctly during build. [RT #32803]	2013-03-15 07:35:56 -07:00
Tinderbox User	cfa2326b5c	update copyright notice	2013-03-14 23:46:11 +00:00
Mark Andrews	73273ce28f	add json.h	2013-03-15 09:11:13 +11:00
Mark Andrews	3d0aa29c26	add json.h	2013-03-15 00:04:11 +11:00
Evan Hunt	4eb998928b	[master] algorithm flexibility for rndc 3525. [func] Support for additional signing algorithms in rndc: hmac-sha1, -sha224, -sha256, -sha384, and -sha512. The -A option to rndc-confgen can be used to select the algorithm for the generated key. (The default is still hmac-md5; this may change in a future release.) [RT #20363]	2013-03-13 17:53:11 -07:00
Mark Andrews	cedd50b3b6	make work without json	2013-03-14 11:12:27 +11:00
Tinderbox User	22dd28c5bc	update copyright notice	2013-03-13 23:46:08 +00:00
Evan Hunt	feb067b25a	[master] add JSON statistics channel 3524. [func] Added an alternate statistics channel in JSON format, when the server is built with the json-c library: http://[address]:[port]/json. [RT #32630]	2013-03-13 14:24:50 -07:00
Evan Hunt	8a64253066	[master] fixed srcdir in nothreads build	2013-03-12 23:42:12 -07:00
Evan Hunt	62ac31d7fd	[master] add inttypes.h to rbt.c	2013-03-12 20:44:41 -07:00
Evan Hunt	72c86c105a	[master] DLZ modules: filesystem, ldap, wildcard 3523. [contrib] Ported filesystem and ldap DLZ drivers to dynamically-loadable modules, and added the "wildcard" module based on a contribution from Vadim Goncharov <vgoncharov@nic.ru>. [RT #23569]	2013-03-11 17:03:46 -07:00
Evan Hunt	21a7fde6ba	[master] handle servfail at DLZ zone apex 3522. [bug] DLZ lookups could fail to return SERVFAIL when they ought to. [RT #32685]	2013-03-11 15:54:03 -07:00
Tinderbox User	b7e6fc2a4c	update copyright notice	2013-03-08 23:47:06 +00:00
Mark Andrews	aababae795	3521. [bug] Address memory leak in opensslecdsa_link.c. [RT #32249 ]	2013-03-08 21:12:42 +11:00
Mark Andrews	3a0da183bb	3520. [bug] 'mctx' was not being referenced counted in some places where it should have been. [RT #32794]	2013-03-08 14:38:03 +11:00
Mark Andrews	af21fc6644	3518. [bug] Increase the size of dns_rrl_key.s.rtype by one bit so that all dns_rrl_rtype_t enum values fit regardless of whether it is teated as signed or unsigned by the compiler. [RT #32792]	2013-03-07 18:44:45 +11:00
Evan Hunt	929eed35ac	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-03-06 18:10:17 -08:00
Evan Hunt	61ddb38c2b	[master] remove leftover debugging printf	2013-03-06 18:09:05 -08:00
Mark Andrews	e7b9603ead	3517. [bug] Reorder destruction to avoid shutdown race. [RT #32777 ]	2013-03-07 07:13:38 +11:00
Mark Andrews	f3350b6718	silence compiler warnings	2013-03-05 23:41:22 +11:00
Mark Andrews	f9de007a57	#ifdef HAVE_GEOIP	2013-03-01 21:33:49 +11:00
Mark Andrews	e69e6105b2	#ifdef HAVE_GEOIP	2013-03-01 16:11:16 +11:00
Mark Andrews	8e5fce1f9c	update copyrights	2013-03-01 10:39:29 +11:00
Evan Hunt	f61b05a6a5	[master] address warnings building exportlibs	2013-02-28 15:22:44 -08:00
Mark Andrews	8a896bc645	fix configure.in to remove warnings when running autoconf only compile geoip.o when requested. silence compiler warnings	2013-03-01 09:58:32 +11:00
Evan Hunt	2a184ff865	[master] accept >4g max-{,a}cache-size 3506. [func] When setting "max-cache-size" and "max-acache-size", the keyword "unlimited" is no longer defined as equal to 4 gigabytes (except on 32-bit platforms); it means literally unlimited. [RT #32358] 3505. [bug] When setting "max-cache-size" and "max-acache-size", larger values than 4 gigabytes could not be set explicitly, though larger sizes were available when setting cache size to 0. This has been corrected; the full range is now available. [RT #32358]	2013-02-28 09:29:12 -08:00
Mark Andrews	33c14ca653	silence clang warning	2013-02-28 16:48:42 +11:00
Mark Andrews	fa23a7b8e9	silence locking false positive by puttling lock/unlock in same routine	2013-02-28 14:00:39 +11:00
Mark Andrews	b34b328287	explicitly ignore error returns	2013-02-28 13:44:14 +11:00
Evan Hunt	3fccc26025	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-02-27 18:29:53 -08:00
Evan Hunt	9cc2e4b4ab	[master] ifdef around geoip syntax in parser	2013-02-27 18:29:30 -08:00
Mark Andrews	3426bd337d	check the returns from isc_task_beginexclusive	2013-02-28 13:14:52 +11:00
Evan Hunt	501941f0b6	[master] add geoip support 3504. [func] Add support for ACLs based on geographic location, using MaxMind GeoIP databases. Based on code contributed by Ken Brownfield <kb@slide.com>. [RT #30681]	2013-02-27 17:19:39 -08:00
Tinderbox User	bea3baa50c	update copyright notice	2013-02-27 23:46:03 +00:00
Evan Hunt	f79c13fed8	[master] silence warning due to incorrect assert	2013-02-27 13:52:30 -08:00
Evan Hunt	40a7e85f3e	[master] better zone-statistics syntax 3501. [func] zone-statistics now takes three options: full, terse, and none. "yes" and "no" are retained as synonyms for full and terse, respectively. [RT #29165]	2013-02-27 11:53:58 -08:00
Evan Hunt	dbe761ac41	[master] better rrl shutdown bug fix	2013-02-26 23:39:38 -08:00
Evan Hunt	87ffe1bea7	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-02-26 22:41:48 -08:00
Evan Hunt	ae0fb42535	[master] back out previous rrl.c change Not the right fix; use ISC_LIST_INITANDAPPEND instead.	2013-02-26 22:41:14 -08:00
Mark Andrews	36b3ac4dce	add <isc/util.h>	2013-02-27 16:14:44 +11:00
Mark Andrews	fdc5f1702e	silence compiler warnings	2013-02-27 15:57:46 +11:00
Evan Hunt	68357e5241	[master] avoid double-free in rrl - RRL could assert when freeing qname - also, changed test addresses from 192.168/16 to 192.0/16	2013-02-26 19:15:11 -08:00
Evan Hunt	55f5787b35	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-02-26 17:29:51 -08:00
Evan Hunt	a4ee78d003	[master] silence warning	2013-02-26 17:28:41 -08:00
Mark Andrews	609b8d0817	update copyrights	2013-02-27 12:27:58 +11:00
Mark Andrews	30b7c81c13	3500. [port] Support NAPTR regular expression validation on all platforms. [RT #32688]	2013-02-27 08:59:04 +11:00
Evan Hunt	e0c4f1f5cc	[master] silence RRL warnings	2013-02-26 00:03:49 -08:00
Tinderbox User	f97d56e757	update copyright notice	2013-02-25 23:46:03 +00:00
Evan Hunt	37418116d5	[master] handle failures from dns_rpz_add() - I noticed a problem after merge, vjs supplied a fix, I have reviewed it, no ticket number.	2013-02-25 14:38:08 -08:00
Evan Hunt	dcf426e9b5	[master] corrected typos & unintialized variable	2013-02-25 13:23:42 -08:00
Evan Hunt	94315060c2	[master] RPZ speedup (phase 2, multiple RPZ's) 3495. [func] Support multiple response-policy zones, while improving RPZ performance. [RT #32476]	2013-02-25 12:46:51 -08:00
Evan Hunt	55e5c51e66	[master] DNS RRL 3494. [func] DNS RRL: Blunt the impact of DNS reflection and amplification attacks by rate-limiting substantially- identical responses. [RT #28130]	2013-02-25 12:45:56 -08:00
Tinderbox User	573d78f3d5	update copyright notice	2013-02-21 23:45:56 +00:00
Evan Hunt	df925e6c66	[master] add zone memory context pools 3492. [bug] Fixed a regression in zone loading performance due to lock contention. [RT #30399]	2013-02-20 21:39:05 -08:00
Evan Hunt	a81ae06ed3	[master] forbid inline-signing slave with no file 3491. [bug] Slave zones using inline-signing must specify a file name. [RT #31946]	2013-02-20 14:01:31 -08:00
Tinderbox User	9d8985bea9	update copyright notice	2013-02-18 23:45:58 +00:00
Mark Andrews	740e7340c5	3489. [bug] --enable-developer now turns on ISC_LIST_CHECKINIT. dns_dlzcreate() failed to properly initialize dlzdb.link. When cloning a rdataset do not copy the link contents. [RT #32651] Squashed commit of the following: commit c36c49cbdaeec8b2506dffadbffa543283702fa2 Author: Mark Andrews <marka@isc.org> Date: Mon Feb 18 23:24:57 2013 +1100 don't copy the link when cloning a rdataset commit 9fef5827edcc925075832dcce900eeca9057456d Author: Mark Andrews <marka@isc.org> Date: Mon Feb 18 23:23:25 2013 +1100 initialise the dlzdb link; don't return a stale pointer on error commit a13c584732eae2dde48920a73886b54f1fe6b030 Author: Mark Andrews <marka@isc.org> Date: Mon Feb 18 23:21:59 2013 +1100 turn on ISC_LIST_CHECKINIT	2013-02-19 07:28:24 +11:00
Mark Andrews	3c7df84b20	3488. [bug] Use after free error with DH generated keys. [RT #32649 ]	2013-02-18 20:26:26 +11:00
Tinderbox User	32dc577940	update copyright notice	2013-02-16 23:46:02 +00:00
Mark Andrews	c9297d3759	3487. [bug] Change 3444 was not complete. There was a additional place where the NOQNAME proof needed to be saved. [RT #32629] Squashed commit of the following: commit cdef844f57bd3eb30b1f77135b89b6f9360e8bee Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:27:14 2013 +1100 whitespace commit 60eb7e3f6cdd102d6aaf0fb4ada8c552576e4502 Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:19:51 2013 +1100 return noqname proof with +cd and dlv	2013-02-16 07:45:43 +11:00
Evan Hunt	0b8bd3a4ae	[master] address TKEY bugs 3486. [bug] named could crash when using TKEY-negotiated keys that had been deleted and then recreated. [RT #32506] commit 6a48b9999766d26cddc7cef275cd984b7d53c014 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:59:46 2013 -0800 [rt32506] don't dump key if dump is unimplemented commit d0ae0f44b460bab2e8bb24bba683d3ef69ec1765 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:42:25 2013 -0800 [rt32506] make sure LRU needs adjusting before adjusting it commit 0437f8f06b1cb72a6d5e3c30f27febca23846d95 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 12:28:28 2013 -0800 [rt32506] demonstrate bugs in tkey test	2013-02-15 10:19:50 -08:00
Mark Andrews	52946dc6c0	silence compiler warning	2013-02-15 17:41:53 +11:00
Mark Andrews	7e9ccec638	3485. [cleanup] Only compile openssl_gostlink.c if we support GOST.	2013-02-12 13:03:34 +11:00
Tinderbox User	4486374631	update copyright notice	2013-02-08 23:45:50 +00:00
Evan Hunt	b748b5e2c2	[master] fix cache/ADB stats in new stats schema new stats that were added for 9.10 (changes 3319-3326) were not all updated when the new statistics schema was merged (change 3418). 3484. [bug] Some statistics were incorrectly rendered in XML. [RT #32587]	2013-02-08 14:53:14 -08:00
Tinderbox User	e38affadb3	update copyright notice	2013-02-05 23:45:50 +00:00
Mark Andrews	7d517b64d5	explict cast to (char ) from (void ) to silence compiler warning in %s checking	2013-02-05 14:24:32 +11:00
Evan Hunt	9dac1de625	[master] silence logging noise 3480. [bug] Silence logging noise when setting up zone statistics. [RT #32525]	2013-02-02 13:59:49 -08:00
Tinderbox User	17131a9459	update copyright notice	2013-01-25 23:45:56 +00:00
Mark Andrews	9c9b75c435	3479. [bug] Address potential memory leaks in gssapi support code. [RT #32405]	2013-01-25 12:23:38 +11:00
Evan Hunt	c9611b4573	[master] change "fast" to "map" 3475. [cleanup] Changed name of 'map' zone file format (previously 'fast'). [RT #32458]	2013-01-24 14:20:48 -08:00
Evan Hunt	8f7d23a25c	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-01-23 15:48:47 -08:00
Tinderbox User	3aaa526a94	update copyright notice	2013-01-23 23:45:55 +00:00
Evan Hunt	ffff5d6792	[master] fix dns_request_createvia assert 3474. [bug] nsupdate could assert when the local and remote address families didn't match. [RT #22897]	2013-01-23 15:39:05 -08:00
Evan Hunt	641e87a1a0	[master] avoid active-counter underflow 3472. [bug] The active-connections counter in the socket statistics could underflow. [RT #31747] (cherry picked from commit 4dfe072abe4e76f5078a38ea0b97800333290877)	2013-01-23 14:28:23 -08:00
Evan Hunt	a0a1003895	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-01-22 16:13:09 -08:00
Evan Hunt	214836c184	[master] dump masterfile after successful xfrin 3470. [bug] Slave zones could fail to dump when successfully refreshing after an initial failure. [RT #31276]	2013-01-22 15:49:50 -08:00
Tinderbox User	b95504f9a7	update copyright notice	2013-01-22 23:45:48 +00:00
Evan Hunt	cbd1fa092e	[master] DLZ fixes - handle malformed answers from DLZ better: - handle dlz_lookup errors better: when the first lookup of a name returns an unexpected failure code, we return it to the caller rather than continuing on to look up the wildcard. we now only continue processing if the return from the first lookup was either ISC_R_SUCCESS or ISC_R_NOTFOUND. - improved backward-compatibility for dlz_version: added a DLZ_DLOPEN_AGE value indicating how many versions back from the current DLZ_DLOPEN_VERSION named will support	2013-01-22 15:13:08 -08:00
Tinderbox User	5ac5300fdf	update copyright notice	2013-01-17 23:46:25 +00:00
Mark Andrews	444f2a8efd	add POST's	2013-01-17 23:24:54 +11:00
Mark Andrews	2afbf0891c	s/head/tail/	2013-01-17 21:47:39 +11:00
Mark Andrews	d8e8abdff9	Silence "Access to field 'refs' results in a dereference of a null pointer" by adding appropriate assertions.	2013-01-17 14:38:28 +11:00
Mark Andrews	d710475e18	Silence "Use of memory after it is freed" by asserting the head and tail of list are not the element after it is unlinked from the list.	2013-01-17 14:22:30 +11:00
Tinderbox User	54c820164a	update copyright notice	2013-01-15 23:45:50 +00:00
Mark Andrews	70b0f9e179	silence compiler warning: Value stored to '?' is never used	2013-01-16 07:13:08 +11:00
Tinderbox User	dc3d68d6fe	update copyright notice	2013-01-11 23:46:02 +00:00
Mark Andrews	c8bfcec3c9	silence compiler warning	2013-01-11 17:38:58 +11:00
Mark Andrews	3760ce53f2	add dns_zone_clearqueryaoncl, dns_zone_getqueryaoncl	2013-01-11 16:56:26 +11:00
Mark Andrews	5cd7ca9dbd	windows snprint support	2013-01-11 16:26:30 +11:00
Mark Andrews	99394e9807	3465. [bug] Handle isolated reserved ports. [RT #31778 ]	2013-01-11 14:10:07 +11:00
Mark Andrews	0762ca086e	record 9.8.x range info	2013-01-11 11:51:37 +11:00
Tinderbox User	5c6b95ba1b	update copyright notice	2013-01-10 23:46:00 +00:00
Mark Andrews	4801931443	3461. [bug] Negative responses could incorrectly have AD=1 set. [RT #32237]	2013-01-10 23:09:08 +11:00
Mark Andrews	6a528eaa09	remove dead code	2013-01-10 18:13:25 +11:00
Tinderbox User	b941edbeb5	update copyright notice	2013-01-09 23:45:53 +00:00
Mark Andrews	c07c2a862e	3458. [bug] Return FORMERR when presented with a overly long domain named in a request. [RT #29682]	2013-01-10 10:30:15 +11:00
Mark Andrews	f1c1aab2c9	3457. [protocol] Add ILNP records (NID, LP, L32, L64). [RT #31836 ]	2013-01-10 08:26:31 +11:00
Mark Andrews	6018bd957d	remove dead code	2013-01-09 21:50:20 +11:00
Mark Andrews	f622386388	use known length for known algorithns in fromtext_dlv cf fromtext_ds	2013-01-09 21:11:16 +11:00
Mark Andrews	513b5e8e51	3373. [bug] win32: open raw files in binary mode. [RT #30944 ] was not complete openfile_fast and openfile_raw should be using mode "rb" rather than "r".	2013-01-09 17:03:03 +11:00
Mark Andrews	aa24128022	3454. [port] sparc64: improve atomic support. [RT #25182 ]	2013-01-09 12:55:32 +11:00
Tinderbox User	afe7d4b934	update copyright notice	2013-01-08 23:45:50 +00:00
Mark Andrews	fc0bfa07c7	3453. [bug] 'rndc addzone' of a zone with 'inline-signing yes;' failed. [RT #31960]	2013-01-09 07:40:27 +11:00
Mark Andrews	c9cecf7bb5	3452. [bug] Accept duplicate singlton records. [RT #32329 ]	2013-01-08 10:58:42 +11:00
Tinderbox User	e436a3d965	update copyright notice	2013-01-06 23:45:45 +00:00
Mark Andrews	c359f7b10f	3451. [port] Increase per thread stack size from 64K to 1M. [RT #32230]	2013-01-07 09:52:16 +11:00
Mark Andrews	016eea4c62	remove dead code	2013-01-06 07:48:01 +11:00
Tinderbox User	6fe42ff85c	update copyright notice	2013-01-04 23:45:53 +00:00
Mark Andrews	f7d6bc93d1	make static	2013-01-05 00:32:38 +11:00
Mark Andrews	cbb2a0ebea	silence compiler warning	2013-01-04 15:57:38 +11:00
Evan Hunt	f0a3b10baa	[master] add print.h	2013-01-03 18:22:52 -08:00
Mark Andrews	8bd5bcd2a7	3445. [bug] Warn about zone files with blank owner names immediately after $ORIGIN directives. [RT #31848] Conflicts: lib/dns/tests/master_test.c	2013-01-04 12:16:55 +11:00
Mark Andrews	e285c6ea84	3449. [bug] gen.c: use the pre-processor to construct format strings so that compiler can perform sanity checks; check the snprintf results. [RT #17576]	2013-01-04 11:07:58 +11:00
Tinderbox User	d91e5a75df	update copyright notice	2013-01-02 23:45:51 +00:00
Tinderbox User	024cf50d12	update copyright notice	2013-01-01 23:45:47 +00:00
Tinderbox User	9191b6c9e8	update copyright notice	2012-12-20 23:45:48 +00:00
Evan Hunt	086cb64a78	[master] remove unnecessary memcpy	2012-12-20 10:33:47 -08:00
Mark Andrews	45d4341eed	silence signed/unsigned warning; rename log -> fctx_log	2012-12-19 12:39:54 +11:00
Evan Hunt	3ad3e9c948	[master] reject $ORIGIN before inherited name 3445. [bug] Reject zone files with blank owner names immediately after $ORIGIN directives. [RT #31848]	2012-12-18 16:17:55 -08:00
Tinderbox User	b16174507d	update copyright notice	2012-12-18 23:45:50 +00:00
Mark Andrews	8462dfb880	3443. [bug] The NOQNAME proof was not being returned from cached insecure responses. [RT #21409]	2012-12-19 09:55:02 +11:00
Mark Andrews	9f6b57798d	3441. [maint] D.ROOT-SERVERS.NET is now 199.7.91.13.	2012-12-14 12:48:29 +11:00
Mark Andrews	fcc04c160f	3440. [bug] Reorder get_key_struct to not trigger a assertion when cleaning up due to out of memory error. [RT #32131]	2012-12-13 11:18:01 +11:00
Mark Andrews	463f4ad70b	silence clang --analyzer warnin by checking rdata.length	2012-12-10 08:24:17 +11:00
Tinderbox User	b8e2e5dd86	update copyright notice	2012-12-08 23:45:51 +00:00
Mark Andrews	50aaa90130	RETTOK -> RETERR	2012-12-09 07:45:51 +11:00
Mark Andrews	e85702ce5b	3438. [bug] Don't accept unknown data escape in quotes. [RT #32031 ] Squashed commit of the following: commit 7ad3daade513c94a1c92ee7c91c112f161d13ef4 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 15:03:44 2012 +1100 look at the second token to determine if a TXT record in of unknown format or not commit 7df32138462646f6aee84ffa56d02ac24ec8d672 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 12:42:18 2012 +1100 '"\#"' was incorrectly being treated as a unknown data escape sequence.	2012-12-08 14:05:32 +11:00
Mark Andrews	6f7abb89ec	3437. [bug] isc_buffer_init -> isc_buffer_constinit to initialise buffers with constant data. [RT #32064] Squashed commit of the following: commit 3433b96bf11f8c90ccbe412f01d02a6d8bbc2d33 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:41:16 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit c22dbcc1122a0a44f7b46068e0ccbc25353a57d5 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:38:39 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit 900820416c45c1887d0d22d7a010df60a903bd56 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:24:19 2012 +1100 remove isc_buffer_reconstinit commit f815711c17b05f9961786a90b9bae902d3c01494 Author: Mark Andrews <marka@isc.org> Date: Wed Dec 5 15:42:57 2012 +1100 add isc_buffer_constinit	2012-12-08 12:48:57 +11:00
Tinderbox User	aae306e914	update copyright notice	2012-12-07 23:45:48 +00:00
Evan Hunt	45f3693294	[master] check malloc/calloc return values 3436. [bug] Check malloc/calloc return values. [RT #32088]	2012-12-07 12:23:58 -08:00
Evan Hunt	abff0f462a	[master] pass client info to DLZ findzone method 3434. [bug] Pass client info to the DLZ findzone() entry point in addition to lookup(). This makes it possible for a database to answer differently whether it's authoritative for a name depending on the address of the client. [RT #31775]	2012-12-06 12:59:36 -08:00
Evan Hunt	177be355d4	[master] handle ISC_R_NOMORE correctly 3433. [bug] dlz_findzone() did not correctly handle ISC_R_NOMORE. [RT #31172]	2012-12-06 12:41:58 -08:00
Evan Hunt	2b8bed6681	[master] multiple-dlz/dlz-nxdomain 3432. [func] Multiple DLZ databases can now be configured. DLZ databases are searched in the order configured, unless set to "search no", in which case a zone can be configured to be retrieved from a particular DLZ database by using a "dlz <name>" option in the zone statement. DLZ databases can support type "master" and "redirect" zones. [RT #27597]	2012-12-06 12:39:52 -08:00
Mark Andrews	8a6f41d86a	3430. [bug] win32: isc_time_formatISO8601 was missing the 'T' between the date and time. [RT #32044]	2012-12-04 14:59:56 +11:00
Mark Andrews	c6f03e7903	treat clang 3.x and 4.x as independent release streams	2012-12-03 09:10:43 +11:00
Mark Andrews	6ebf3dbb33	workaround only needed for clang 3.1	2012-12-03 07:58:01 +11:00
Mark Andrews	c6af776a7e	silence compiler warnings	2012-12-01 21:32:31 +11:00
Mark Andrews	4151109b94	silence clang --analyze warnings	2012-11-30 18:50:38 +11:00
Mark Andrews	85a873f000	conditionally silence false positives from clang --analyze	2012-11-30 16:19:00 +11:00
Mark Andrews	538f4a22b1	3429. [bug] dns_zone_getserial2 could a return success without returning a valid serial. [RT #32007] Squashed commit of the following: commit 0057f4b6e843c3998b987dbc7f32ceeee8afc150 Author: Mark Andrews <marka@isc.org> Date: Fri Nov 30 08:13:15 2012 +1100 zone_get_from_db could return success without setting return valuses; serial is only valid if soacount is none zero	2012-11-30 11:39:37 +11:00
Mark Andrews	22f3afddd2	null pointer derefernce on out of memory	2012-11-30 00:58:56 +11:00
Mark Andrews	d4af2cc0db	initialize the octet string to empty so that we don't free garbage on error	2012-11-29 18:11:05 +11:00
Mark Andrews	965605e238	link against @DNS_CRYPTO_LIBS@	2012-11-29 07:27:11 +11:00
Mark Andrews	2e22f903da	3425. [bug] "acacheentry" reference counting was broken resulting in use after free. [RT #31908]	2012-11-27 16:03:36 +11:00
Mark Andrews	c46aa71433	dupped/created reversed in log message	2012-11-23 17:28:16 +11:00
Tinderbox User	7e75b6266d	update copyright notice	2012-11-21 23:45:45 +00:00
ckb	2786b6c53f	3422. [bug] Added a clear error message for when the SOA does not match the referral. [RT #31281]	2012-11-21 16:44:34 -06:00
Mark Andrews	20b95f5ff6	3421. [bug] Named loops when re-signing if all keys are offline. [RT #31916] Squashed commit of the following: commit f47af0ca6793687b9c8d08fd44b0c091ba5a4f9a Author: Mark Andrews <marka@isc.org> Date: Wed Nov 21 17:45:21 2012 +1100 dns_dns_zonediff_t -> dns_zonediff_t, clarify comment commit 344edefc3ee90856a7ff990abe7971925ba843b2 Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:12:26 2012 +1100 commit the zone changes if a keep was marked as being offline commit cad2c2446ebfc20b6d8c4f6dd0d6596d7106cc0f Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:08:29 2012 +1100 check for looping when re-signing expiring.example	2012-11-21 17:48:57 +11:00
Mar Andrews	c3b9fad5e3	3420. [bug] Address VPATH compilation issues. [RT #31879 ]	2012-11-17 09:33:46 +00:00
Mark Andrews	39bfdc2ff9	3419. [bug] Memory leak on validation cancel. [RT #31869 ] Squashed commit of the following: commit 452b07ec7cb31784d90d9c2e45ca708df306302e Author: Mark Andrews <marka@isc.org> Date: Wed Nov 14 23:36:36 2012 +1100 destroy fetch when canceling validator	2012-11-15 11:16:28 +11:00
ckb	aecadaf3b1	3418. [func] New XML schema (version 3.0) for the statistics channel adds query type statistics at the zone level, and flattens the XML tree and uses compressed format to optimize parsing. Includes new XSL that permits charting via the Google Charts API on browsers that support javascript in XSL. The old XML schema has been deprecated. [RT #30023] 3417. [placeholder]	2012-11-14 12:44:15 -06:00
Mark Andrews	d8fc410cf8	Redo 3415. [bug] named could die with a REQUIRE failure if a valdation was canceled. [RT #31804]	2012-11-14 07:41:32 +11:00
Mark Andrews	1a09fefa59	3415. [bug] named could die with a REQUIRE failure id a valdation was canceled. [RT #31804] Squashed commit of the following: commit d414d3cb4244daeca4159ac1f8a82322e4a20e5a Author: Mark Andrews <marka@isc.org> Date: Wed Nov 7 14:19:28 2012 +1100 check that val->fetch != NULL before calling dns_resolver_destroyfetch	2012-11-09 09:09:52 +11:00
Mark Andrews	07cab7ffa8	improve isc_mempool_put memory model	2012-11-02 16:02:15 +11:00
Mark Andrews	ffd17aca38	move memory accounting to before free of memory to avoid "using" a pointer after it is freed	2012-11-02 15:57:56 +11:00
Mark Andrews	6316438336	spelling	2012-11-02 11:19:02 +11:00
Mark Andrews	d9baadbb0c	add coverity[+free : arg-1] directive	2012-11-02 11:16:32 +11:00
Mark Andrews	8f4572372c	3414. [bug] Address locking issues found by Coverity. [RT #31626 ]	2012-11-02 06:41:45 +11:00
Mark Andrews	18a148d998	sock is potentially unused in use_min_mtu	2012-11-01 15:28:36 +11:00
Mark Andrews	a004a82ee3	uninitalised use	2012-11-01 13:53:20 +11:00
Mark Andrews	4d30dd89f5	3412. [bug] Copy timeval structure from control message data. [RT #31548]	2012-11-01 11:16:59 +11:00
Tinderbox User	fcd7c22fdf	update copyright notice	2012-10-31 23:45:49 +00:00
Mark Andrews	bbf31e6b62	More coverity fixes: 3410. [bug] Addressed Coverity warnings. [RT #31626] Squashed commit of the following: commit 6fec07bbb69ead784063052f2099674f8b52c6b3 Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 18:14:35 2012 +1100 use strl{cat,cpy} commit 19a5d3766f3dbc8a2944b21640a8226a89aae7ba Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 14:38:55 2012 +1100 address unchecked xmlTextWriter* calls	2012-11-01 10:22:11 +11:00
Mark Andrews	c2e80cf47e	3411. [tuning] Use IPV6_USE_MIN_MTU or equivalent with TCP in addition to UDP. [RT #31690 ] Squashed commit of the following: commit bcbe9ae7a99e1f7f4236a22739a793b51ace8684 Author: Mark Andrews <marka@isc.org> Date: Wed Oct 31 15:10:53 2012 +1100 Use IPV6_USE_MIN_MTU for TCP as well as UDP	2012-11-01 08:42:56 +11:00
Mark Andrews	16a2ddb2ce	more: 3410. [bug] Addressed Coverity warnings. [RT #31626 ] move set_refreshkeytimer call within loop so that keydata is valid.	2012-10-30 13:00:58 +11:00
Mark Andrews	15fdec98df	check more dns_rdata_tostruct returns	2012-10-30 08:50:06 +11:00
Mark Andrews	f83542787f	3410. [bug] Addressed Coverity warnings. [RT #31626 ] Squashed commit of the following: commit bce2efe66d69d60b746b85df49974ca341723169 Author: Mark Andrews <marka@isc.org> Date: Mon Oct 29 12:59:25 2012 +1100 use 'static dns_rdata_xxxx_t xxxx' commit 704d3c29acbf2dd350a26f2df82a57cb077ba72e Author: Mark Andrews <marka@isc.org> Date: Mon Oct 29 12:35:16 2012 +1100 return ISC_R_NOTFOUND if private record length does not make sense commit 7596610c12c5685336fc0909860173d2fae359af Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:41:17 2012 +1100 check private->length == 5 commit 3836365a3e3e83b057bd940350f032279e080296 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:40:50 2012 +1100 properly set private->length commit a295778ac53109d39ef3a8b233751100edae678b Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:13:30 2012 +1100 check dns_rdata_tostruct result commit e33c37ca9112159e0b2363615bb018d27fa7d1a5 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:10:43 2012 +1100 check remove/fopen/chmod return values commit 3a675e0666aae25d1c51f51ec7bd3fbe25545aae Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:59:10 2012 +1100 check isc_socket_accept result commit 696923344f4b07ce0dba4cf2675b1cbb6eba7e8e Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:55:40 2012 +1100 change variable scopes commit b9e9d9ad58270271003e463f10744e0ceaf9ad97 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:53:19 2012 +1100 check inet_pton return value commit 70698e9589da77e3745efb6ea24b8830addd6ae4 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:52:40 2012 +1100 break -> /* NOTREACHED */ commit 88de9de2e8e201ab2fef16a868f241e8206ea826 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:52:06 2012 +1100 strcpy -> strlcpy commit 6ba79c7cec0e48014cdfa76e8a9406b7a921556e Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:51:26 2012 +1100 check dns_rdata_tostruct return values	2012-10-29 20:04:59 +11:00
Evan Hunt	f46168b879	[master] allow dnssec options in inline-signing slaves 3408. [bug] Some DNSSEC-related options (update-check-ksk, dnssec-loadkeys-interval, dnssec-dnskey-kskonly) are now legal in slave zones as long as inline-signing is in use. [RT #31078]	2012-10-26 16:14:59 -07:00
Evan Hunt	2f57f353e8	[master] address mem.c compilation problems 3406. [bug] mem.c: Fix compilation errors when building with ISC_MEM_TRACKLINES or ISC_MEMPOOL_NAMES disabled. Also, ISC_MEM_DEBUG is no longer optional. [RT #31559]	2012-10-25 18:56:47 -07:00
Tinderbox User	814fc913e6	update copyright notice	2012-10-25 23:47:00 +00:00
Mark Andrews	f3e10cca1b	3405. [bug] Handle time going backwards in acache. [RT #31253 ] Squashed commit of the following: commit fbf4c8fe2644c101bac870360d3f2c159a90f203 Author: Mark Andrews <marka@isc.org> Date: Wed Oct 24 14:43:14 2012 +1100 remove INSIST and handle time going backwards	2012-10-25 14:29:10 +11:00
Tinderbox User	a3fb84bd1b	update copyright notice	2012-10-24 23:46:51 +00:00
Evan Hunt	9dca437081	[master] silence warning	2012-10-24 15:40:00 -07:00
Evan Hunt	98f9571bd9	[master] silence unused variable warning	2012-10-24 15:36:04 -07:00
Evan Hunt	c241017dcd	[master] fix fedora 17 ecdsa compilation problem	2012-10-24 13:56:41 -07:00
Evan Hunt	0e37e9e3d7	[master] silence noisy OpenSSL logging 3402. [bug] Correct interface numbers for IPv4 and IPv6 interfaces.	2012-10-24 12:58:16 -07:00
Evan Hunt	47c5b8af92	[master] silence coverity warnings 3401. [bug] Addressed Coverity warnings. [RT #31484]	2012-10-23 22:04:06 -07:00
Mark Andrews	965371b8cf	3399. [port] netbsd: rename 'bool' parameter to avoid namespace clash. [RT #31515]	2012-10-22 11:42:23 +11:00
Tinderbox User	94f86d37b2	update copyright notice	2012-10-19 23:45:58 +00:00
Mark Andrews	3624e53916	remove redundant UNUSED(callbacks)	2012-10-19 16:28:57 +11:00
Tinderbox User	c37fbb91e3	update copyright notice	2012-10-18 23:46:07 +00:00
Mark Andrews	de0fd68097	3398. [bug] SOA parameters were not being updated with inline signed zones if the zone was modified while the server was offline. [RT #29272]	2012-10-19 10:25:06 +11:00
Mark Andrews	0fbd29837a	3396. [bug] OPT records were incorrectly removed from signed, truncated responses. [RT #31439]	2012-10-18 13:25:06 +11:00
Mark Andrews	70bd5ae6fa	missing space before other len after change #3389	2012-10-17 12:48:12 +11:00
Mark Andrews	47c6d89485	3394. [bug] Adjust 'sucessfully validated after lower casing signer' log level and category. [RT #31414]	2012-10-16 11:56:05 +11:00
Tinderbox User	603a182e43	update copyright notice	2012-10-15 23:46:02 +00:00
Mark Andrews	4b17401c9c	add test support for dropping edns messages (-T dropedns); ignoring edns in queries (-T noedns); variable max UDP (-T maxudp=value)	2012-10-16 10:23:08 +11:00
Mark Andrews	71dfdcbfae	3392. [func] Keep statistics on REFUSED responses. [RT #31412 ]	2012-10-16 10:21:22 +11:00
Mark Andrews	9432ef6cdb	remove redundent call	2012-10-12 21:57:22 +11:00
Mark Andrews	6700284a4f	fix typos in variable names	2012-10-10 13:10:07 +11:00
Mark Andrews	1559dfd341	silence compiler warning	2012-10-08 14:30:10 +11:00
Tinderbox User	15c7a1bf20	update copyright notice	2012-10-06 23:46:11 +00:00
Mark Andrews	dbf693fdfd	3391. [bug] DNSKEY that encountered a CNAME failed. [RT #31262 ]	2012-10-06 14:56:33 +10:00
Mark Andrews	611dc88768	3390. [bug] Silence clang compiler warnings. [RT #30417 ]	2012-10-06 14:20:45 +10:00
Mark Andrews	14889e7b17	add <dns/dsdigest.h> to the list of header files to be installed	2012-10-05 15:10:50 +10:00
Mark Andrews	2ec7373254	3389. [bug] Always return NOERROR (not 0) in TSIG. [RT #31275 ]	2012-10-05 06:57:05 +10:00
Tinderbox User	7ce7ecf6bc	update copyright notice	2012-10-03 23:46:17 +00:00
Mark Andrews	e0ad27d822	Revert "include <isc/print.h> in gen.c" This reverts commit `3f6cec1a35`.	2012-10-04 08:11:21 +10:00
Evan Hunt	3f6cec1a35	include <isc/print.h> in gen.c	2012-10-03 07:59:57 -07:00
Evan Hunt	41bbb34bc2	fix coverity issues 3388. [bug] Fixed several Coverity warnings. [RT #30996]	2012-10-02 23:44:03 -07:00
Mark Andrews	02bbbc26be	lib/dns/include/dns/dsdigest.h	2012-10-03 14:47:30 +10:00
Mark Andrews	058e44186b	3387. [func] Support for a DS digest can be disabled at runtime with disable-ds-digests. [RT #21581]	2012-10-03 12:38:43 +10:00
Mark Andrews	f4f15cbf71	white space; move pause to before comment.	2012-10-03 10:11:07 +10:00
Mark Andrews	9e70b51d3b	3386. [bug] Address locking violation when generating new NSEC / NSEC3 chains. [RT #31224]	2012-10-03 09:02:28 +10:00
Mark Andrews	37702cb83c	reapply accidentally reversed change	2012-10-02 16:42:50 +10:00
Mark Andrews	aa49af836c	3385. [bug] named-checkconf didn't detect missing master lists in also-notify clauses. [RT #30810]	2012-10-02 13:06:02 +10:00
Evan Hunt	31c6f9cc85	silence warning	2012-09-28 18:47:05 -07:00
Tinderbox User	0fc76b64fb	update copyright notice	2012-09-28 23:46:10 +00:00
Evan Hunt	d1ac7adb3e	improve logging of ecdsa errors 3384. [bug] Improved logging of crypto errors. [RT #30963]	2012-09-28 13:46:47 -07:00
Tinderbox User	04a9fcecf5	update copyright notice	2012-09-26 23:46:13 +00:00
Evan Hunt	da35568c71	use correct port range 3382. [bug] SOA query from slave used use-v6-udp-ports range, if set, regardless of the address family in use. [RT #24173]	2012-09-26 13:55:18 -07:00
Mark Andrews	27809a2ee5	3379. [bug] isc_interval_zero and isc_time_epoch should be "const (type)* const". [RT #31069]	2012-09-26 14:58:53 +10:00
Evan Hunt	05284949f7	handle nonexistent managed-keys-directory 3378. [bug] Handle missing 'managed-keys-directory' better. [RT #30625]	2012-09-25 18:19:17 -07:00
Evan Hunt	664320a88f	remove spurious newline 3377. [bug] Removed spurious newline from NSEC3 multiline output. [RT #31044]	2012-09-18 14:22:33 -07:00
Mark Andrews	96f1aa2458	add missing extern qualiers	2012-09-17 18:37:24 +10:00
Mark Andrews	eed495737b	3376. [bug] Lack of EDNS support was being recorded without a successful response. [RT #30811]	2012-09-14 11:01:06 +10:00
Mark Andrews	5f26ffc2b4	3375. [bug] 'rndc dumpdb' failed on empty caches. [RT #30808 ]	2012-09-14 07:53:19 +10:00
Tinderbox User	14725aff16	update copyright notice	2012-09-12 23:46:13 +00:00
ckb	179d8f4cc8	3374. [bug] isc_parse_uint32 failed to return a range error on systems with 64 bit longs [RT #30232]	2012-09-12 15:08:19 -05:00
Mark Andrews	0b9ea3fca6	O_BINARY -> _O_BINARY	2012-09-12 13:51:49 +10:00
Mark Andrews	7e9d637131	3373. [bug] win32: open raw files in binary mode. [RT #30944 ]	2012-09-12 11:44:24 +10:00
Mark Andrews	4c2168728c	3372. [bug] Silence spurious "deleted from unreachable cache" messages. [RT #30501]	2012-09-08 17:59:14 +10:00
Mark Andrews	d27343c554	make dns_rbt_zero_header static	2012-08-24 10:44:26 +10:00
Mark Andrews	68eb4dca5a	unsigned constants	2012-08-24 08:45:56 +10:00
Mark Andrews	4738df0c5c	v9_8_4rc2	2012-08-23 23:39:43 +10:00
Mark Andrews	8e0a15f42f	3370. [bug] Address use after free while shutting down. [RT #30241 ]	2012-08-22 19:19:30 +10:00
Tinderbox User	72de8965c8	update copyright notice	2012-08-21 23:46:02 +00:00
Mark Andrews	8f7e0e25a5	3368. [bug] <dns/iptable.h>, <dns/private.h> and <dns/zone.h> where not C++ safe.	2012-08-21 16:42:19 +10:00
Mark Andrews	b29e848220	3367. [bug] dns_dnsseckey_create() result was not being checked. [RT #30685]	2012-08-21 12:04:09 +10:00
Tinderbox User	0c156cfa39	update copyright notice	2012-08-17 23:46:06 +00:00
ckb	339f08ee1e	3366. [bug] Fixed Read-After-Write dependency violation for IA64 atomic operations. [RT #25181]	2012-08-17 13:02:50 -05:00
Mark Andrews	076bda8c2e	we didn't catch a zero option at the global level when views are active	2012-08-17 13:40:17 +10:00
Evan Hunt	78ba74e63d	remove spurious newlines in zone.c logging 3365. [bug] Removed spurious newlines from log messages in zone.c [RT #30675]	2012-08-16 10:41:09 -07:00
Mark Andrews	1bbd36c4db	3364. [security] Named could die on specially crafted record. [RT #30416]	2012-08-16 09:42:14 +10:00
Evan Hunt	85705b4b5a	allow "forward" and "forwarders" in static-stub 3363. [bug] Need to allow "forward" and "fowarders" options in static-stub zones; this had been overlooked. [RT #30482]	2012-08-15 13:08:15 -07:00
Tinderbox User	23554e8479	update copyright notice	2012-08-14 23:46:02 +00:00
Evan Hunt	820fdd61dd	properly range-check fields that do not allow 0 3362. [bug] Setting some option values to 0 in named.conf could trigger an assertion failure on startup. [RT #27730]	2012-08-13 22:39:42 -07:00
Mark Andrews	4e8090f1c1	test against unsigned zero	2012-08-14 14:31:51 +10:00
Mark Andrews	f06dad6860	3360. [bug] 'host -w' could die. [RT #18723 ]	2012-08-14 11:05:29 +10:00
Evan Hunt	3f755529ee	address memory leak with bad tsig secret 3359. [bug] An improperly-formed TSIG secret could cause a memory leak. [RT #30607]	2012-08-10 20:15:59 -07:00
Tinderbox User	953692fa1e	update copyright notice	2012-07-25 23:46:04 +00:00
ckb	e7857b5ee0	3356. [bug] Cap the TTL of signed RRsets when RRSIGs are approaching their expiry, so they don't remain in caches after expiry. [RT #26429]	2012-07-25 17:06:34 -05:00
Mark Andrews	1495117889	cast mode to unsigned int for fprintf	2012-07-24 12:58:04 +10:00
Mark Andrews	2634750ce5	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2012-07-24 12:18:43 +10:00
Mark Andrews	1d2f282840	cleanup unused variables	2012-07-24 12:18:10 +10:00
Tinderbox User	0b637179cc	update copyright notice	2012-07-23 23:46:06 +00:00
Mark Andrews	6eb6af6732	3354. [func] Improve OpenSSL error logging. [RT #29932 ]	2012-07-23 15:08:21 +10:00
Mark Andrews	13518a9636	windows fixes	2012-07-20 18:08:28 +10:00
Tinderbox User	c207dd8394	update copyright notice	2012-07-19 23:45:53 +00:00
Mark Andrews	c965b18690	3353. [bug] Use a single task for task exclusive operations. [RT #29872]	2012-07-19 23:00:21 +10:00
Mark Andrews	ee2f98d5cf	3352. [bug] Ensure that learned server attributes timeout of the adb cache. [RT #29856]	2012-07-18 14:16:37 +10:00
Mark Andrews	c963ca7542	3351. [bug] isc_mem_put and isc_mem_putanddetach didn't report caller if either ISC_MEM_DEBUGSIZE or ISC_MEM_DEBUGCTX memory debugging flags are set. [RT #30243]	2012-07-18 10:02:32 +10:00
Mark Andrews	d0d892f449	3350. [bug] Memory read overrun in isc___mem_reallocate if ISC_MEM_DEBUGCTX memory debugging flag is set. [RT #30240]	2012-07-18 09:50:52 +10:00
Mark Andrews	1a594d204a	fix race in ISC_QUEUE_PUSH	2012-07-17 15:12:20 +10:00
ckb	ad7fdba1ed	3348. [security] prevent RRSIG data from being cached if a negative record matching the covering type exists at a higher trust level. Such data already can't be retrieved from the cache since change 3218 -- this prevents it being inserted into the cache as well.	2012-07-09 12:51:11 -05:00
Evan Hunt	bb5c950e7c	update .def file	2012-07-05 18:05:44 -07:00
Evan Hunt	4476b98f89	missed out a variable declaration	2012-07-05 17:18:22 -07:00
ckb	c514f38c80	Conflicts: lib/dns/dst_parse.c lib/isc/win32/file.c	2012-07-05 16:07:31 -05:00
Evan Hunt	cdd271b14a	fix bad-cache assert 3346. [security] Bad-cache data could be used before it was initialized, causing an assert. [RT #30025]	2012-07-02 10:01:48 -07:00
Evan Hunt	d64138e577	addressed possible race in ISC_QUEUE 3345. [bug] Addressed race condition when removing the last item or inserting the first item in an ISC_QUEUE. [RT #29539]	2012-07-02 09:37:17 -07:00
Tinderbox User	a3128c1995	update copyright notice	2012-06-29 23:45:57 +00:00
Mark Andrews	bf8267aa45	reverse bad copyright update	2012-06-29 11:39:47 +10:00
Tinderbox User	247bf37860	update copyright notice	2012-06-29 01:22:18 +00:00
Tinderbox User	da5d53fb14	update copyright notice	2012-06-26 23:45:56 +00:00
Mark Andrews	c41c261fc7	3342. [bug] Change #3314 broke saving of stub zones to disk resulting in excessive cpu usage in some cases. [RT #29952]	2012-06-27 09:21:09 +10:00
Tinderbox User	6d5f928b26	update copyright notice	2012-06-25 23:46:00 +00:00
Mark Andrews	ad127d839d	3341. [func] New "dnssec-verify" command checks a signed zone to ensure correctness of signatures and of NSEC/NSEC3 chains. [RT #23673]	2012-06-25 13:57:32 +10:00
Mark Andrews	1a3894ca22	silence compiler warning by using offsetof to get structure elelment offsets	2012-06-25 11:57:10 +10:00
Mark Andrews	171d2c23f1	remove 'inline' on dns_rbt_serialize_align	2012-06-25 08:14:34 +10:00
Mark Andrews	abeb649619	check fwrite results	2012-06-23 18:21:52 +10:00
Mark Andrews	d70f7b9e46	change type of where to uintptr_t	2012-06-23 18:06:33 +10:00
Mark Andrews	aeed8b4d3b	change offset type to long	2012-06-23 18:02:13 +10:00
Tinderbox User	3b398443f0	update copyright notice	2012-06-21 23:46:36 +00:00
Tinderbox User	620620df3a	silence pointer/int conversion warnings using uintptr_t, since we are using stdio file offsets are longs	2012-06-22 07:37:09 +10:00
Evan Hunt	5506903c92	Merge rt28412b - check for mmap() in configure - implement isc_file_mmap() and isc_file_munmap() to do malloc()/read() and free() when run on systems that do not support mmap().	2012-06-21 12:58:46 -07:00
Mark Andrews	46e025d82e	remove rundundent call 'result = isc_parse_uint8(&ui, r.base, 10);'	2012-06-21 14:28:32 +10:00
Tinderbox User	8e6b386ab7	update copyright notice	2012-06-20 23:46:40 +00:00
ckb	5f5f8b1dd4	removed .cvsignore files	2012-06-20 14:23:12 -05:00
ckb	7829fad409	merging fast format zone files Conflicts: .gitignore bin/named/zoneconf.c bin/tests/.gitignore bin/tests/system/autosign/tests.sh bin/tests/system/masterformat/clean.sh bin/tests/system/masterformat/ns1/compile.sh bin/tests/system/masterformat/tests.sh configure lib/dns/db.c lib/dns/include/dns/db.h lib/dns/include/dns/types.h lib/dns/master.c lib/dns/masterdump.c lib/dns/rbt.c lib/dns/rbtdb.c lib/dns/sdb.c lib/dns/sdlz.c lib/dns/tests/.cvsignore lib/dns/tests/Makefile.in lib/dns/win32/libdns.def lib/dns/xfrin.c lib/dns/zone.c lib/export/dns/Makefile.in lib/isc/include/isc/file.h lib/isc/unix/file.c lib/isc/win32/file.c lib/isccfg/namedconf.c	2012-06-20 14:13:12 -05:00
Tinderbox User	ef1963d83d	update copyright notice	2012-06-15 23:45:49 +00:00
Mark Andrews	ec048f4600	make maxbits signed as BN_num_bits is signed	2012-06-15 11:54:58 +10:00
Mark Andrews	7865ea9545	3339. [func] Allow the maximum supported rsa exponent size to be specified: "max-rsa-exponent-size <value>;" [RT #29228 ]	2012-06-14 15:44:20 +10:00
Mark Andrews	57f1d800f8	3338. [bug] Address race condition in units tests: asyncload_zone and asyncload_zt. [RT #26100]	2012-06-14 15:13:44 +10:00
Mark Andrews	c298583db5	3337. [bug] Change #3294 broke support for the multiple keys in controls. [RT #29694]	2012-06-13 16:25:42 +10:00
Tinderbox User	8ce1923429	update copyright notice	2012-06-08 23:45:57 +00:00
Mark Andrews	80fa3ef851	3336. [func] Maintain statistics for RRsets tagged as "stale". [RT #29514]	2012-06-08 16:32:44 +10:00
Mark Andrews	109ebcc980	3334. [bug] Hold a zone table reference while performing a asyncronous load of a zone. [RT #28326]	2012-06-08 13:52:13 +10:00
Mark Andrews	7310c0b1ee	3333. [bug] Setting resolver-query-timeout too low can cause named to not recover if it looses connectivity. [RT #29623]	2012-06-08 12:34:33 +10:00
Mark Andrews	a0c1fa2a8f	3332. [bug] Re-use cached DS rrsets if possible. [RT 29446]	2012-06-07 12:51:11 +10:00
Mark Andrews	735ca24fa6	3321. [security] dns_rdataslab_fromrdataset could produce bad rdataslabs. [RT #29644]	2012-06-01 23:33:16 +10:00
Tinderbox User	7a440c4300	update copyright notice	2012-05-31 23:46:01 +00:00
Vernon Schryver	afaa290bb6	Squashed commit of the following: commit aea73609ac5d41ed091360e94370798965f28f05 commit eef7f44c57a060b24a426eb8888e16176a0a69b1 commit a88a26d864ad399fa2d40e3b9659b4d26f454ca1 commit 1b90d59568e7e3b65690c6bd075cf4d60b03e454 Merge: 74d8f73 `cd02924` commit 74d8f73ed553bb64a305e284905762f7ff0029aa commit 9a59ef6bbd4befe91e5691e8b85afe1cb7ab0706 commit c63606a53b4f1bb7066b37d3cfe588e9dc21a119 commit 2c392a840c8838455d144ce163bd873bee400c97 commit 0241f53563e6e7bed462a883d98a8931f01e0980 commit 79fe22b5d6f04bdaa3073cf54d41952194e879e1 commit 351b3049625f2edd39729dd85413e961b97d4b3b commit 7207674fc77c9a10d84c0cb94e36d1c09bb31459 commit 543ad34cf08f901c20b438c9d2f45482cff13d5e commit fc45b99ce4438627fdcbeb4365695ba0065fa46f commit c425207f57e0a5157372aa7edbb79b13170563e5 commit ef8c5e23ca284e0ea02f69ce1f356d537c19d93b commit ba0d4e3aa51efe412cfa1d031651f949442d1802 commit 41c7969c7cb6884b93011f7ace3fd9522efc021e and more from CVS for rt26172 Add - optional "recursive-only yes\|no" to the response-policy statement - optional max-policy-ttl to limit the lies that "recursive-only no" can introduce into resolvers' caches - test that queries with RD=0 are not rewritten by default - performance smoke test Change encoding of PASSTHRU action to "rpz-passthru". (The old encoding is still accepted.) Fix rt26180 assert botch in zone_findrdataset() in this branch as well. Fix missing signatures on NOERROR results despite RPZ hits when there are signatures and the client asks for DNSSEC,	2012-05-31 02:03:34 +00:00
Mark Andrews	e8e0a46925	silence warnings from clang	2012-05-30 11:52:02 +10:00
Mark Andrews	cf751b1c9b	don't insist that rbtdb->cachestats exists.	2012-05-18 15:19:49 +10:00
Tinderbox User	a847a4bcd6	update copyright notice	2012-05-17 23:46:03 +00:00
Evan Hunt	26833735d3	Handle RRSIG signer case consistently 3329. [bug] Handle RRSIG signer-name case consistently: We generate RRSIG records with the signer-name in lower case. We accept them with any case, but if they fail to validate, we try again in lower case. [RT #27451]	2012-05-17 10:44:16 -07:00
Evan Hunt	01695063c6	fix check_data() usage 3328. [bug] Fixed inconsistent data checking in dst_parse.c. [RT #29401]	2012-05-16 23:12:57 -07:00
Tinderbox User	633c5dc507	update copyright notice	2012-05-14 23:45:48 +00:00
Evan Hunt	d81b6b94c4	cache stats were detached when flushing cache	2012-05-14 12:20:34 -07:00
Evan Hunt	d878b8d87c	merged filter-aaaa-on-v6 (ATT SoW) 3327. [func] Added 'filter-aaaa-on-v6' option; this is similar to 'filter-aaaa-on-v4' but applies to IPv6 connections. (Use "configure --enable-filter-aaaa" to enable this option.) [RT #27308]	2012-05-14 11:50:00 -07:00
Evan Hunt	dd2a0a6d2d	Merge statistics code (ATT SoW, rt24117) This includes the following changes: 3326. [func] Added task list statistics: task model, worker threads, quantum, tasks running, tasks ready. [RT #27678] 3325. [func] Report cache statistics: memory use, number of nodes, number of hash buckets, hit and miss counts. [RT #27056] 3324. [test] Add better tests for ADB stats [RT #27057] 3323. [func] Report the number of buckets the resolver is using. [RT #27020] 3322. [func] Monitor the number of active TCP and UDP dispatches. [RT #27055] 3321. [func] Monitor the number of recursive fetches and the number of open sockets, and report these values in the statistics channel. [RT #27054] 3320. [func] Added support for monitoring of recursing client count. [RT #27009] 3319. [func] Added support for monitoring of ADB entry count and hash size. [RT #27057]	2012-05-14 10:06:05 -07:00
Mark Andrews	c438f1beb9	3318. [tuning] Reduce the amount of work performed while holding a bucket lock when finshed with a fetch context. [RT #29239]	2012-05-10 08:28:32 +10:00
Mark Andrews	26ed6de665	add opensslecdsa_link	2012-05-09 13:51:29 +10:00
Evan Hunt	d560cb0fc3	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2012-05-03 14:01:41 -07:00
Evan Hunt	970aa7d783	missing braces; style glitch	2012-05-03 14:01:32 -07:00
Tinderbox User	99d8f5a704	update copyright notice	2012-05-02 23:45:44 +00:00
Mark Andrews	89bbdd1f69	Use '==' not '=' in conditional test when not using openssl.	2012-05-03 09:29:32 +10:00
Mark Andrews	aaaf8d4f48	3317. [func] Add ECDSA support (RFC 6605). [RT #21918 ]	2012-05-02 23:20:17 +10:00
Tinderbox User	ee980d3fc4	update copyright notice	2012-04-28 23:45:42 +00:00
Evan Hunt	54489ba167	Improve locking performance in dispatch.c 3316. [tuning] Improved locking performance when recursing. [RT #28836] - Use one lock per memory pool instead of associating them all with a single 'pool_lock' in the dispatch manager. - Reduce the critical sections for qid->lock in get_dispsocket(), deref_portentry() and dns_dispatch_addresponse2(). - Added a memory pool for socket events in dns_dispatch_t. - Add an isc_socketevent_t member in the resquery_t object, and use it with isc_socket_sendto2() instead of using isc_socket_sendto() - Tuned the memory pools in dispatch.c for better performance under load	2012-04-28 14:52:28 -07:00
Evan Hunt	4e8fe357a6	create and use multiple fetch dispatches Added API to create a set of UDP dispatches which can be shared round-robin style when making upstream queries for authoritative data; this should reduce lock contention in the query source dispatch.	2012-04-27 16:11:30 -07:00
Mark Andrews	8e2c2ca0a0	TRUE -> ISC_TRUE	2012-04-26 18:19:48 +10:00
Mark Andrews	1a04af5311	3314. [bug] The masters list could be updated while refesh_callback and stub_callback were using it. [RT #26732]	2012-04-26 12:58:39 +10:00
Mark Andrews	393fd55d91	3313. [protocol] Add TLSA record type. [RT #28989 ]	2012-04-26 12:22:49 +10:00
Mark Andrews	7e9d6c7075	3312. [bug] named-checkconf didn't detect a bad dns64 clients acl. [RT #27631]	2012-04-26 11:42:39 +10:00
Mark Andrews	4c9c2a6a72	3311. [bug] Abort the zone dump if zone->db is NULL in zone.c:zone_gotwritehandle. [RT #29028]	2012-04-26 11:23:43 +10:00
Tinderbox User	18cbe0a216	update copyright notice	2012-04-25 23:45:46 +00:00
Evan Hunt	bdf5cdc32c	increase table size for mutex profiling	2012-04-24 16:52:12 -07:00
Evan Hunt	20d441892d	fctx_finddone: call fctx_destroy within the bucket lock	2012-04-24 14:56:38 -07:00
Tinderbox User	776833c82e	update copyright notice	2012-04-12 23:45:51 +00:00
Mark Andrews	4f3a3fc43c	3307. [bug] Add missing ISC_LANG_BEGINDECLS and ISC_LANG_ENDDECLS. [RT #28956]	2012-04-13 08:32:37 +10:00
Mark Andrews	a280469e72	3307. [bug] Add missing ISC_LANG_ENDDECLS to <dns/tsec.h>. [RT #28956 ]	2012-04-12 19:11:50 +10:00
Tinderbox User	3fb95bfcb2	update copyright notice	2012-04-11 23:45:52 +00:00
Mark Andrews	75582adac7	3306. [bug] Improve DNS64 reverse zone performance. [RT #28563 ] 3305. [func] Add wire format lookup method to sdb. [RT #28563]	2012-04-11 12:17:57 +10:00
Mark Andrews	72bdc940a7	use hmctx, not mctx when freeing rbtdb->heaps	2012-04-11 10:26:42 +10:00
Mark Andrews	bf6651e27d	3303. [bug] named could die when reloading. [RT #28606 ]	2012-04-05 15:48:43 +10:00
Mark Andrews	840659f1d7	3302. [bug] dns_dnssec_findmatchingkeys could fail to find keys if the zone name contained character that required special mappings. [RT #28600]	2012-03-30 12:05:13 +11:00
Mark Andrews	56fdf1d401	3300. [bug] Named could die if gssapi was enabled in named.conf but was not compiled in. [RT #28338]	2012-03-29 09:49:58 +11:00
Mark Andrews	85fcd0b9b2	3299. [bug] Make SDB handle errors from database drivers better. [RT #28534]	2012-03-28 10:21:13 +11:00
Mark Andrews	2c642143d4	3298. [bug] Named could dereference a NULL pointer in zmgr_start_xfrin_ifquota if the zone was being removed. [RT #28419]	2012-03-22 12:19:46 +11:00
Mark Andrews	c51f2c9a52	3297. [bug] Named could die on a malformed master file. [RT #28467 ]	2012-03-15 12:07:49 +11:00
Tinderbox User	5fa46bc916	update copyright notice	2012-03-10 23:45:53 +00:00
Mark Andrews	269c07173e	3295. [bug] Adjust isc_time_secondsastimet range check to be more portable. [RT # 26542]	2012-03-08 15:30:51 +11:00
Mark Andrews	962bf88eec	3294. [bug] isccc/cc.c:table_fromwire failed to free alist on error. [RT #28265]	2012-03-08 14:28:26 +11:00
Evan Hunt	b48c55093b	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2012-03-07 08:18:26 -08:00
Evan Hunt	207845805e	set $Id$	2012-03-07 08:18:20 -08:00
Mark Andrews	28a8f5b0de	set $Id$	2012-03-08 00:21:15 +11:00
Mark Andrews	4c1847ef47	set $Id$	2012-03-07 22:17:19 +11:00
Mark Andrews	2669638693	set $Id$	2012-03-07 22:13:11 +11:00
Tinderbox User	ea94d37012	regen master	2012-03-07 01:41:11 +00:00
Evan Hunt	2d7f41d66c	Revert "Re-created rt27597a for ongoing DLZ work" This reverts commit `d731ee9121`.	2012-03-05 15:42:52 -08:00
Evan Hunt	d731ee9121	Re-created rt27597a for ongoing DLZ work	2012-03-05 14:45:30 -08:00
Evan Hunt	632c0f1e91	Revert accidental merge of unfinished DLZ work	2012-03-05 14:44:21 -08:00
Mark Andrews	e214e8728a	Merge branches 'rt28261' and 'rt27597' of repo.isc.org:/proj/git/prod/bind9	2012-03-06 00:16:04 +11:00
Mark Andrews	2eae3ad06e	Merge remote-tracking branch 'origin/rt28040'	2012-03-05 12:49:28 +11:00
Evan Hunt	e41d5a00bc	added gitignore, removed cvsignore	2012-03-03 23:10:05 -08:00
Evan Hunt	954501715d	checkpoint: multiple-DLZ functionality - multiple DLZ's can be specified, including multiple DLZ's using the same driver; e.g., two different back-ends both loaded by the dlopen driver - new "search" option can be specified in a DLZ indicating whether this DLZ database should be searched for unknown zones. The default is "yes". If "no", then the zone can only be found by named if it's registered in the zone table, which happens if the zone is configured for dynamic updates, or if "dlz <dlzname>" is specified in the zone statement. (The latter functionality is incomplete in this commit).	2012-03-03 22:43:38 -08:00
Automatic Updater	dc3d394636	update copyright notice	2012-02-29 23:47:21 +00:00
Evan Hunt	e5bf06eedc	3291. [port] Fixed a build error on systems without ENOTSUP. [RT #28200]	2012-02-29 21:28:17 +00:00
Automatic Updater	2e00aaef3d	update copyright notice	2012-02-28 23:46:59 +00:00
Mark Andrews	a7ab4ad2d4	3290. [bug] <isc/hmacsha.h> was not being installed. [RT #28169 ]	2012-02-28 21:32:36 +00:00
Mark Andrews	96de2db32a	dns_zone_synckeyzone	2012-02-23 07:15:24 +00:00
Automatic Updater	3484552b1b	update copyright notice	2012-02-23 07:09:29 +00:00
Mark Andrews	1864400107	3289. [bug] 'rndc retransfer' failed for inline zones. [RT #28036 ]	2012-02-23 06:53:15 +00:00
Mark Andrews	8a4689070a	dns_message_logpacket	2012-02-22 05:03:39 +00:00
Evan Hunt	89069e6b3a	3286. [bug] Managed key maintenance timer could fail to start after 'rndc reconfig'. [RT #26786]	2012-02-22 00:37:54 +00:00
Mark Andrews	ea79a9bd0e	2x POST(locktype);	2012-02-17 00:18:18 +00:00
Automatic Updater	5fec28507a	update copyright notice	2012-02-15 21:19:59 +00:00
Mark Andrews	6d386978b3	3285. [bug] val-frdataset was incorrectly disassociated in proveunsecure after calling startfinddlvsep. [RT #27928]	2012-02-15 20:59:40 +00:00
Mark Andrews	5b57f580ce	3284. [bug] Address race conditions with the handling of rbtnode.deadlink. [RT #27738]	2012-02-15 02:00:47 +00:00
Automatic Updater	d03bc586b9	update copyright notice	2012-02-14 23:47:15 +00:00
Mark Andrews	c478bb4c46	extend: 3282. [bug] Restrict the TTL of NS RRset to no more than that of the old NS RRset when replacing it. [RT #27792] [RT #27884]	2012-02-14 00:22:54 +00:00
Mark Andrews	4c34112a69	3283. [bug] Raw zones with with more than 512 records in a RRset failed to load. [RT #27863]	2012-02-13 23:46:24 +00:00
Automatic Updater	09b46c3945	update copyright notice	2012-02-09 23:47:18 +00:00
Mark Andrews	fb604d1cee	3282. [bug] Restrict the TTL of NS RRset to no more than that of the old NS RRset when replacing it. [RT #27792]	2012-02-09 20:54:46 +00:00
Automatic Updater	da5a7b29e9	update copyright notice	2012-02-07 23:47:24 +00:00
Mark Andrews	936036e823	3281. [bug] SOA refresh queries could be treated as cancelled despite succeeding over the loopback interface. [RT #27782]	2012-02-07 19:50:20 +00:00
Mark Andrews	fc3b3e1f7e	3278. [bug] Hold a internal reference to the zone while performing a asynchronous load. Address potential memory leak if the asynchronous is cancelled. [RT #27750]	2012-02-07 00:47:21 +00:00
Automatic Updater	2f4561bc9c	update copyright notice	2012-02-06 23:46:49 +00:00
Mark Andrews	77cb7130e7	3276. [bug] win32: isc_socket_dup is not implemented. [RT #27696 ] 3276. [bug] win32: ns_os_openfile failed to return NULL on safe_open failure. [RT #27696]	2012-02-06 04:19:33 +00:00
Mark Andrews	fb63e9c020	missing return	2012-02-03 12:59:03 +00:00
Mark Andrews	1769b07530	fix memory overun in dns_zone_getincludes, allocated array too small (zero). fix possible memory overrun in dns_zone_getincludes fix inconsistent mxtc use in ns_server_zonestatus fix missing out of memory errors checks in zone_registerinclude fix possible use after free issues zone_registerinclude/ns_server_zonestatus	2012-02-01 21:28:39 +00:00
Mark Andrews	d98850b876	3275. [bug] "use out of scope" bug in unit test master_test. [RT# 27674]	2012-02-01 00:20:09 +00:00
Automatic Updater	41f1164438	update copyright notice	2012-01-31 23:47:33 +00:00
Evan Hunt	2855e27723	3271. [func] New "rndc zonestatus" command prints information about the specified zone. [RT #21671]	2012-01-31 03:35:41 +00:00
Evan Hunt	c54dadd853	3270. [bug] "rndc reload" didn't reuse existing zones correctly when inline-signing was in use. [RT #27650]	2012-01-31 01:13:10 +00:00
Mark Andrews	a86310b25a	Add comment describing LIBINTERFACE values per branch	2012-01-30 00:23:27 +00:00
Mark Andrews	63acb91046	make 'when' isc_stdtime_t in set_key_expiry_warning	2012-01-30 00:06:13 +00:00
Evan Hunt	f8ae0a35d0	fixed api typo	2012-01-29 06:05:10 +00:00
Evan Hunt	12c3204c46	prepare for 9.9.0 final	2012-01-29 05:14:07 +00:00
Automatic Updater	80c7083796	update copyright notice	2012-01-27 23:46:59 +00:00
Mark Andrews	bc298cd0f7	3268. [bug] Convert RRSIG expiry times to 64 timestamps to work out the earliest expiry time. [RT #23311]	2012-01-27 01:43:53 +00:00
Mark Andrews	1bb3831e13	3267. [bug] Memory allocation failures could be mis-reported as unexpected error. New ISC_R_UNSET result code. [RT #27336]	2012-01-27 01:21:41 +00:00
Mark Andrews	ef9f4d0977	3266. [bug] The maximum number of NSEC3 iterations for a DNSKEY RRset was not being properly computed. [RT #26543]	2012-01-27 00:49:42 +00:00
Automatic Updater	ee2129ee66	update copyright notice	2012-01-25 23:46:49 +00:00
Mark Andrews	18d208a4a2	3265. [bug] Address lock order reversal with inline-signing support. [27557]	2012-01-25 02:46:53 +00:00
Mark Andrews	639c1d5617	silence 'Assigned value is always the same as the existing value' warning	2012-01-22 04:56:41 +00:00
Evan Hunt	d47f51b6ac	add .cvsignore	2012-01-16 23:17:32 +00:00
Automatic Updater	edb4393ef5	update copyright notice	2012-01-10 23:46:58 +00:00
Evan Hunt	9a02019889	3264. [bug] Automatic regeneration of signatures in an inline-signing zone could stall when the server was restarted. [RT #27344] 3263. [bug] "rndc sync" did not affect the unsigned side of an inline-signing zone. [RT #27337]	2012-01-10 18:13:37 +00:00
Automatic Updater	f76bddd50b	update copyright notice	2012-01-04 23:46:49 +00:00
Evan Hunt	56c9fcf075	3260. [bug] "rrset-order cyclic" could appear not to rotate for some query patterns. [RT #27170/27185]	2012-01-04 03:06:51 +00:00
Automatic Updater	a3c7d21f5c	update copyright notice	2011-12-22 23:46:20 +00:00
Mark Andrews	41ca314cc2	3260. [bug] "rrset-order cyclic" could appears to not rotate for some query patterns. [RT #27170]	2011-12-22 23:43:52 +00:00
Evan Hunt	53e58ba9fa	oops missed one.	2011-12-22 19:14:15 +00:00
Evan Hunt	891c6eb907	add missing symbols	2011-12-22 18:58:50 +00:00
Evan Hunt	949eefdda4	prep for 9.9.0rc1 release	2011-12-22 17:49:49 +00:00
Mark Andrews	9ddf371552	3257. [bug] Do not generate a error message when calling fsync() in a pipe or socket. [RT #27109]	2011-12-22 08:49:01 +00:00
Mark Andrews	a5a30ae7c0	3253. [bug] Return DNS_R_SYNTAX when the input to a text field is too long. [RT #26956]	2011-12-22 07:41:29 +00:00
Evan Hunt	f30785f506	3252. [bug] When master zones using inline-signing were updated while the server was offline, the source zone could fall out of sync with the signed copy. They can now resynchronize. [RT #26676]	2011-12-22 07:32:41 +00:00
Mark Andrews	dd0d54ff01	3251. [bug] Enforce a upper bound (65535 bytes) on the amount of memory dns_sdlz_putrr() can allocate per record to prevent run away memory consumption on ISC_R_NOSPACE. [RT #26956]	2011-12-22 07:15:05 +00:00
Automatic Updater	f63cb76be6	update copyright notice	2011-12-20 23:46:29 +00:00
Mark Andrews	e101ec1503	@srdir@ -> @srcdir@	2011-12-20 05:04:44 +00:00
Mark Andrews	4a4066453f	update slabbed data layout description	2011-12-20 00:55:01 +00:00
Mark Andrews	c31601ae9b	add missing s	2011-12-20 00:26:52 +00:00
Mark Andrews	67dc2f0536	3249. [bug] Update log message when saving slave zones files for analysis after load failures. [RT #27087] 3248. [bug] Configure options --enable-fixed-rrset and --enable-exportlib were incompatible with each other. [RT #27087] 3247. [bug] 'raw' format zones failed to preserve load order breaking 'fixed' sort order. [RT #27087] 3246. [bug] Named failed to start with a empty also-notify list. [RT #27087]	2011-12-20 00:06:54 +00:00
Mark Andrews	b290d10fc4	3245. [bug] Don't report a error unchanged serials unless there were other changes when thawing a zone with ixfr-fromdifferences. [RT #26845]	2011-12-19 23:46:13 +00:00
Mark Andrews	97494b99f0	remove accidental commit to head	2011-12-10 22:09:41 +00:00
Automatic Updater	339d2a4d4b	update copyright notice	2011-12-09 23:47:05 +00:00
Mark Andrews	e238ebd9b3	Backout accident commit to head	2011-12-09 22:09:26 +00:00
Mark Andrews	0b096436e9	flush both raw zone instance if it exists	2011-12-09 20:47:18 +00:00
Mark Andrews	5ccf5eac0f	ixfr-from-differences backup file	2011-12-09 13:32:42 +00:00
Automatic Updater	b54ac42f19	update copyright notice	2011-12-08 23:46:49 +00:00
Evan Hunt	b4d8192d21	3241. [func] Extended the header of raw-format master files to include the serial number of the zone from which they were generated, if different (as in the case of inline-signing zones). This is to be used in inline-signing zones, to track changes between the unsigned and signed versions of the zone, which may have different serial numbers. (Note: raw zonefiles generated by this version of BIND are no longer compatble with prior versions. To generate a backward-compatible raw zonefile using dnssec-signzone or named-compilezone, specify output format "raw=0" instead of simply "raw".) [RT #26587]	2011-12-08 16:07:22 +00:00
Mark Andrews	e4aac0596c	3241. [bug] Address race conditions in the resolver code. [RT #26889]	2011-12-07 23:08:42 +00:00
Mark Andrews	71e4c3ee74	3240. [bug] DNSKEY state change events could be missed. [RT #26874 ]	2011-12-07 22:48:22 +00:00
Mark Andrews	04281728d4	3239. [bug] dns_dnssec_findmatchingkeys needs to use a consistent timestamp. [RT #26883]	2011-12-07 22:36:25 +00:00
Mark Andrews	9c832595d4	3238. [bug] keyrdata was not being reinitialize in lib/dns/rbtdb.c:iszonesecure. [RT#26913]	2011-12-07 22:21:05 +00:00
Automatic Updater	c757fd2e17	update copyright notice	2011-12-06 23:46:32 +00:00
Automatic Updater	806956b43b	update copyright notice	2011-12-05 23:46:35 +00:00
Mark Andrews	05556e6c82	#include <dns/db.h>	2011-12-05 20:51:41 +00:00
Evan Hunt	56d7492b2c	missed a line	2011-12-05 17:27:16 +00:00
Evan Hunt	4122abdc3c	Back out changes #3182 and #3202	2011-12-05 17:10:51 +00:00
Mark Andrews	2591f13dd3	3235. [func] dns_db_diffx, a extended dns_db_diff which returns the generated diff and optionally writes it to a journal. [RT #26386]	2011-12-05 06:10:07 +00:00
Mark Andrews	de52784e45	3235. [func] dns_db_diffx, a extended dns_db_diff which returns the generated diff and optionally writes it to a journal. [RT #26386]	2011-12-04 23:48:12 +00:00
Automatic Updater	a09e70c947	update copyright notice	2011-12-02 23:46:56 +00:00
Mark Andrews	2c25ca45a4	errno2result now reports caller when unable to convert errno	2011-12-02 07:15:17 +00:00
Mark Andrews	56dc4c6730	3233. [bug] 'rndc freeze/thaw' didn't work for inline zones. [RT #26632]	2011-12-02 02:44:01 +00:00
Mark Andrews	db604cea5c	fix all_events loop terminating condition to stop false positives	2011-12-01 22:30:37 +00:00
Scott Mann	d881a5ad06	Accept patch from RedHat (RT #26732 ).	2011-12-01 15:58:46 +00:00
Mark Andrews	38f6085062	silence Division by zero warning	2011-12-01 01:33:27 +00:00
Scott Mann	5927944728	Fix problem identified by CLANG: local variable not passed back to struct.	2011-12-01 00:14:11 +00:00
Automatic Updater	b9e911c71c	update copyright notice	2011-11-30 23:46:25 +00:00
Evan Hunt	1a01def943	add print.h	2011-11-30 06:10:44 +00:00
Mark Andrews	ed74be8035	#include <isc/print.h>	2011-11-30 06:09:41 +00:00
Mark Andrews	5e3daa58f4	move declaration to start of block	2011-11-30 06:06:33 +00:00
Evan Hunt	0da3b4a9a7	3228. [tuning] Dynamically grow symbol table to improve zone loading performance. [RT #26523]	2011-11-30 04:27:17 +00:00
Mark Andrews	cae06bceda	3227. [bug] Interim fix to make WKS's use of getprotobyname() and getservbyname() self thread safe. [RT #26232]	2011-11-30 01:18:11 +00:00
Mark Andrews	23daf8948b	3225. [bug] Silence spurious "setsockopt(517, IPV6_V6ONLY) failed" messages. [RT #26507]	2011-11-29 01:03:47 +00:00
Mark Andrews	03e2b1d18d	3223. [bug] 'task_test privilege_drop' generated false positives. [RT #26766]	2011-11-29 00:41:28 +00:00
Mark Andrews	91ed1cc821	3222. [cleanup] Replace dns_journal_{get,set}_bitws with dns_journal_{get,set}_sourceserial. [RT #26634]	2011-11-28 03:14:59 +00:00
Evan Hunt	69feafa0af	3221. [bug] Fixed a potential coredump on shutdown due to referencing fetch context after it's been freed. [RT #26720]	2011-11-23 22:53:53 +00:00
Evan Hunt	08b512b6a0	3220. [bug] Change #3186 was incomplete; dns_db_rpz_findips() could fail to set the database version correctly, causing an assertion failure. [RT #26180]	2011-11-18 18:40:31 +00:00
Mark Andrews	2256c13194	--- 9.9.0b2 released --- 3219. [bug] Disable NOEDNS caching following a timeout.	2011-11-16 22:18:53 +00:00

... 17 18 19 20 21 ...

10345 commits