Mukund Sivaraman
6fb3db01ac
Don't permit loading meta RR types such as TKEY from master files ( #47009 )
...
(cherry picked from commit 8a4ce20172c8eb726046
2018-01-22 14:36:18 +05:30
Tinderbox User
b68401ccae
update copyright notice / whitespace
2018-01-21 23:47:14 +00:00
Mark Andrews
2cf0fe3b80
4869. [bug] Address some cases where NULL with zero length could
...
be passed to memmove which is undefined behaviour and
can lead to bad optimisation. [RT #46888 ]
(cherry picked from commit fdd8838bf9
2018-01-22 09:39:25 +11:00
Tinderbox User
9eb24f1f84
update copyright notice / whitespace
2018-01-17 23:47:10 +00:00
Francis Dupont
2d387429a1
bcmp -> memcmp
2018-01-17 15:32:43 +01:00
Francis Dupont
ded782a862
Merged rt46864 (check MD5 amd SHA1 support)
2018-01-17 14:41:58 +01:00
Francis Dupont
f9c410d937
Merged rt46864 (check MD5 amd SHA1 support)
2018-01-17 14:40:13 +01:00
Tinderbox User
2927284144
update copyright notice / whitespace
2018-01-15 23:47:32 +00:00
Michał Kępień
e526027287
[v9_11] Ensure all master definitions in a catalog zone contain an IP address
...
4864. [bug] named acting as a slave for a catalog zone crashed if
the latter contained a master definition without an IP
address. [RT #45999 ]
(cherry picked from commit ae51a676c9
2018-01-15 20:52:54 +01:00
Tinderbox User
a853d87fc4
update copyright notice / whitespace
2018-01-13 23:48:14 +00:00
Mukund Sivaraman
929329d2d6
Fix various bugs reported by valgrind --tool=memcheck ( #46978 )
...
(cherry picked from commit f96133826e0374e1c3fd
2018-01-13 11:47:46 +05:30
Tinderbox User
82ddae820c
update copyright notice / whitespace
2018-01-10 23:50:06 +00:00
Mark Andrews
ec29d217ba
4862. [bug] The rdata flags for RRSIG was not being properly set
...
when constructing a rdataslab. [RT #46978 ]
(cherry picked from commit 7befb67af4
2018-01-11 09:54:20 +11:00
Tinderbox User
5470c1cc10
update copyright notice / whitespace
2018-01-09 23:47:12 +00:00
Mark Andrews
afefd75473
4861. [bug] The isc_crc64 unit test was not endian independent.
...
[RT #46973 ]
(cherry picked from commit 0ce212b9f5
2018-01-10 09:46:54 +11:00
Mark Andrews
f0353a586c
4860. [bug] isc_int8_t should be signed char. [RT #46973 ]
...
(cherry picked from commit 21f708c88c
2018-01-10 08:42:21 +11:00
Tinderbox User
dc2a85bed7
update copyright notice / whitespace
2018-01-04 23:46:19 +00:00
Mark Andrews
3b8a3c43a0
unconditionally typedef summarystat_t for coverity
...
(cherry picked from commit a0e66ef6dd
2018-01-05 10:11:21 +11:00
Evan Hunt
7ff28f5bef
[v9_11] block validator deadlock and prevent use-after-free
...
4859. [bug] A loop was possible when attempting to validate
unsigned CNAME responses from secure zones;
this caused a delay in returning SERVFAIL and
also increased the chances of encountering
CVE-2017-3145. [RT #46839 ]
4858. [security] Addresses could be referenced after being freed
in resolver.c, causing an assertion failure.
(CVE-2017-3145) [RT #46839 ]
2018-01-03 19:19:46 -08:00
Tinderbox User
d2017ba188
update copyright notice / whitespace
2018-01-03 23:46:13 +00:00
Mark Andrews
33506bef10
missing newline in comment
...
(cherry picked from commit 7258b852cf
2018-01-03 17:11:50 +11:00
Tinderbox User
09b9db3c91
update copyright notice / whitespace
2018-01-02 23:46:09 +00:00
Mark Andrews
c3237dec87
4852. [bug] Handle strftime() failing in isc_time_formatISO8601ms.
...
Add REQUIRE's and INSIST's to isc_time_formattimestamp,
isc_time_formathttptimestamp, isc_time_formatISO8601,
isc_time_formatISO8601ms. [RT #46892 ]
2018-01-02 10:46:41 +11:00
Tinderbox User
335466db9e
regen v9_11
2017-12-29 02:23:11 +00:00
Mark Andrews
3c3d824db7
initalize sigsize to zero; ATF_CHECK_EQ(sigsize, tsig.siglen);
...
(cherry picked from commit 9f61f6b46b
2017-12-22 08:59:03 +11:00
Mark Andrews
0c38c73c4c
don't attempt to call isc_buffer_free(&buf) twice; don't attempt to call dns_message_destroy(&msg) twice; don't test for key != NULL
...
(cherry picked from commit cb8650d875
2017-12-12 13:24:59 +11:00
Mark Andrews
2d82ed9456
4842. [bug] Conditionally compile opensslecdsa_link.c to avoid
...
warnings about unused function. [RT #46790 ]
(cherry picked from commit 63459cdc05
2017-12-07 13:31:57 +11:00
Tinderbox User
a1cf2291a9
update copyright notice / whitespace
2017-12-06 23:46:07 +00:00
Mark Andrews
a5a1cbece4
4841. [bug] Address -fsanitize=undefined warnings. [RT #46786 ]
...
(cherry picked from commit 9d5a0abe81
2017-12-06 21:02:24 +11:00
Mukund Sivaraman
16f43564c6
Backport performance work to 9.11 ( #45637 )
2017-12-06 10:35:21 +05:30
Mark Andrews
e01ef6f01c
4839. [bug] zone.c:zone_sign was not properly determining
...
if there were active KSK and ZSK keys for
a algorithm when update-check-ksk is true
(default) leaving records unsigned with one or
more DNSKEY algorithms. [RT #46774 ]
(cherry picked from commit 00f5ea91cf
2017-12-05 16:11:53 +11:00
Mark Andrews
677f507de7
4838. [bug] zone.c:add_sigs was not properly determining
...
if there were active KSK and ZSK keys for
a algorithm when update-check-ksk is true
(default) leaving records unsigned with one or
more DNSKEY algorithms. [RT #46754 ]
(cherry picked from commit 6fa2a0691e
2017-12-05 09:32:50 +11:00
Mark Andrews
bf459d24a1
4837. [bug] dns_update_signatures{inc} (add_sigs) was not
...
properly determining if there were active KSK and
ZSK keys for a algorithm when update-check-ksk is
true (default) leaving records unsigned. [RT #46743 ]
(cherry picked from commit 196e01da5f
2017-12-04 10:04:58 +11:00
Tinderbox User
701e9f3149
update copyright notice / whitespace
2017-11-30 23:46:50 +00:00
Evan Hunt
4a5dfa2d51
[v9_11] silence compiler warning
...
(cherry picked from commit 49a8cd6c01
2017-11-30 13:55:49 -08:00
Ondřej Surý
c62d9ac65f
[v9_11] Type the shifted values to isc_uint32_t so the top bit is unsigned (found by UBSAN) [RT #46740 ]
...
(cherry picked from commit a4a148cf9a
2017-11-30 18:27:07 +01:00
Michał Kępień
81e3e30849
[v9_11] Fix LMDB support on OpenBSD; clean up and refactor LMDB-related code
...
4835. [cleanup] Clean up and refactor LMDB-related code. [RT #46718 ]
4834. [port] Fix LMDB support on OpenBSD. [RT #46718 ]
(cherry picked from commit 2c20fc0d13
2017-11-30 14:34:43 +01:00
Tinderbox User
341ab4071f
update copyright notice / whitespace
2017-11-29 23:46:06 +00:00
Mark Andrews
64d7fa3ec4
4833. [bug] isc_event_free should check that the event is not
...
linked when called. [RT #46725 ]
4832. [bug] Events were not being removed from zone->rss_events.
[RT #46725 ]
(cherry picked from commit 9ddf7d6c4c
2017-11-30 10:38:46 +11:00
Mark Andrews
75505befa9
4831. [bug] Convert the RRSIG expirytime to 64 bits for
...
comparisions in diff.c:resign. [RT #46710 ]
(cherry picked from commit 0579a11658
2017-11-29 15:20:49 +11:00
Tinderbox User
acbc29f414
update copyright notice / whitespace
2017-11-28 23:46:12 +00:00
Mark Andrews
39d5523a8a
4829. [bug] isc_heap_delete did not zero the index value when
...
the heap was created with a callback to do that.
[RT #46709 ]
(cherry picked from commit 65a483106e
2017-11-28 18:50:36 +11:00
Mark Andrews
0adaa6be4b
#define update_recordsandbytes update_recordsandbytes64
2017-11-28 14:14:04 +11:00
Mark Andrews
f98a58d9e6
map more entry points to <name>64
2017-11-28 14:13:17 +11:00
Tinderbox User
4c713bf940
update copyright notice / whitespace
2017-11-27 23:47:09 +00:00
Mark Andrews
eb59c7d35b
restore setting header->heap_index to zero in setsigningtime
...
(cherry picked from commit c22b540e4c
2017-11-28 06:47:06 +11:00
Michał Kępień
1f4a3c7088
[v9_11] Do not use thread-local storage for storing LMDB reader locktable slots
...
4828. [bug] Do not use thread-local storage for storing LMDB reader
locktable slots. [RT #46556 ]
(cherry picked from commit 40a90fbf89
2017-11-27 09:48:49 +01:00
Mark Andrews
89085bebd3
More:
...
4819. [bug] Fully backout the transaction when adding a RRset
to the resigning / removal heaps fails. [RT #46473 ]
(cherry picked from commit 19f6a63184
2017-11-27 15:22:20 +11:00
Mark Andrews
cae9332121
add missing symbols
2017-11-27 14:04:47 +11:00
Mark Andrews
295a6bb5df
silence %lu vs size_t warning by casting to (unsigned long)
...
(cherry picked from commit 1dc8208a89
2017-11-24 10:26:35 +11:00
