upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-22 14:49:20 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
17803 commits 18 branches 854 tags 440 MiB
Commit graph

687 commits

Author SHA1 Message Date
Mark Andrews
9f9b7f0e8d 2982. [bug] Reference count dst keys. dst_key_attach() can be used 
increment the reference count.

                        Note: dns_tsigkey_createfromkey() callers should now
                        always call dst_key_free() rather than setting it
                        to NULL on success. [RT #22672]
 2010-12-09 00:54:34 +00:00
Automatic Updater
b8a9a7bef2 update copyright notice 2010-12-08 23:51:56 +00:00
Mark Andrews
b9f2d007c5 2981. [func] Partial DNS64 support (AAAA synthesis). [RT #21991] 2010-12-08 05:01:00 +00:00
Mark Andrews
e334405421 2981. [func] Partial DNS64 support (AAAA synthesis). [RT #21991] 2010-12-08 02:46:17 +00:00
Automatic Updater
a4b8846651 update copyright notice 2010-12-07 23:47:02 +00:00
Mark Andrews
8aee18709f 2980. [bug] named didn't properly handle UPDATES that changed the 
TTL of the NSEC3PARAM RRset. [RT #22363]
 2010-12-07 02:53:34 +00:00
Mark Andrews
82f0630bae 2977. [bug] 'nsupdate -l' report if the session key is missing. 
[RT #21670]
 2010-12-03 00:37:33 +00:00
Automatic Updater
326a702a35 update copyright notice 2010-12-02 23:46:56 +00:00
Mark Andrews
c87f15dac8 2976. [bug] named die on exit after negotiating a GSS-TSIG key. [RT #3415] 2010-12-02 23:22:42 +00:00
Automatic Updater
e085624e0f update copyright notice 2010-11-30 23:46:55 +00:00
Evan Hunt
b5b934a0bb 2974. [bug] Some vaild UPDATE requests could fail due to a 
consistency check examining the existing version
			of the zone rather than the new version resulting
			from the UPDATE. [RT #22413]
 2010-11-30 02:27:08 +00:00
Automatic Updater
33cc94f04c update copyright notice 2010-11-17 23:47:09 +00:00
Mark Andrews
d48730a446 2970. [security] Adding a NO DATA negative cache entry failed to clear 
any matching RRSIG records.  A subsequent lookup of
                        of NO DATA cache entry could trigger a INSIST when the
                        unexpected RRSIG was also returned with the NO DATA
                        cache entry.  [RT #22288]
 2010-11-16 06:46:44 +00:00
Shawn Routhier
380c874925 Fix acl type processing so that allow-query works in options and view 
statements.  Also add a new set of tests to verify proper functioning.
[RT #22418]
 2010-11-16 01:37:39 +00:00
Mark Andrews
a27b3757fd 2968. [security] Named could fail to prove a data set was insecure 
before marking it as insecure.  One set of conditions
                        that can trigger this occurs naturally when rolling
                        DNSKEY algorithms.  [RT #22309]
 2010-11-16 01:14:51 +00:00
Mark Andrews
ed83fa75f5 2963. [security] The allow-query acl was being applied instead of the 
allow-query-cache acl to cache lookups. [RT #22114]
 2010-09-24 05:09:03 +00:00
Mark Andrews
165501a801 simplify grep 2010-09-15 23:22:02 +00:00
Evan Hunt
cff5da57d6 The "resolver" test was failing on systems with old versions of "grep". 2010-09-15 15:45:07 +00:00
Automatic Updater
3255640981 update copyright notice 2010-09-15 12:38:36 +00:00
Mark Andrews
082f42dcf2 2960. [func] Check that named accepts non-authoritative answers. 
[RT #21594]
 2010-09-15 12:07:56 +00:00
Mark Andrews
c75523bcb3 2959. [func] Check that named starts with a missing masterfile. 
[RT #22076]

2958.   [bug]           named failed to start with a missing master file.
                        [RT #22076]
 2010-09-15 03:32:34 +00:00
Mark Andrews
240a7dc59d 2951. [bug] named failed to generate a correct signed response 
in a optout, delegation only zone with no secure
                        delegations. [RT #22007]
 2010-09-07 00:58:36 +00:00
Automatic Updater
dac2623103 update copyright notice 2010-08-25 23:46:37 +00:00
Mark Andrews
17be07ab81 2948. [port] MacOS: provide a mechanism to configure the test 
interfaces at reboot. See bin/tests/system/README
                        for details.
 2010-08-25 04:51:51 +00:00
Automatic Updater
7202b5cf66 update copyright notice 2010-08-17 23:46:46 +00:00
Mark Andrews
e0c50ca36a update default id range to match that used (1..7) 2010-08-17 04:08:57 +00:00
Mark Andrews
c6f4972c74 2943. [func] Add support to load new keys into managed zones 
without signing immediately with "rndc loadkeys".
                        Add support to link keys with "dnssec-keygen -S"
                        and "dnssec-settime -S".  [RT #21351]
 2010-08-16 22:21:07 +00:00
Mark Andrews
8bc194b266 2941. [bug] sdb and sdlz (dlz's zone database) failed to support 
DNAME at the zone apex.  [RT #21610]
 2010-08-16 04:49:14 +00:00
Automatic Updater
2b43d1d8c5 update copyright notice 2010-08-13 23:47:04 +00:00
Mark Andrews
c73d8c1b72 2938. [bug] When skipping NSEC3 records that don't match the 
current NSEC3PARAM record in use for zone named
                        could dereference a uninitialised pointer attempting
                        to obtain a lock. [RT# 21868]
 2010-08-13 06:46:25 +00:00
Mark Andrews
bde46569f3 .orig -> .in as .orig is used by patch 2010-08-12 01:31:36 +00:00
Evan Hunt
cfd262045c 2936. [func] Improved configuration syntax and multiple-view 
support for addzone/delzone feature (see change
			#2930).  Removed "new-zone-file" option, replaced
			with "allow-new-zones (yes|no)".  The new-zone-file
			for each view is now created automatically, with
			a filename generated from a hash of the view name.
			It is no longer necessary to "include" the
			new-zone-file in named.conf; this happens
			automatically.  Zones that were not added via
			"rndc addzone" can no longer be removed with
			"rndc delzone". [RT #19447]
 2010-08-11 18:14:20 +00:00
Evan Hunt
cb933b69ff 2932. [cleanup] Corrected a numbering error in the "dnssec" test. 
[RT #21597]
 2010-08-09 22:34:56 +00:00
Tatuya JINMEI 神明達哉
f1f39b7e07 2931. [bug] Temporarily and partially disable change 2864 
because it would cause inifinite attempts of RRSIG
			queries.  This is an urgent care fix; we'll
			revisit the issue and complete the fix later.
			[RT #21710]
 2010-07-15 01:17:45 +00:00
Evan Hunt
5312c2ffbe dnssec and dlv tests included master zones whose master files were missing. 
this was a bug that hadn't been noticed before, but 19447 added a test for
that condition and it caused test failures.
 2010-07-11 01:18:24 +00:00
Mark Andrews
a7d2b922ee match the dig.out.ns#.$n to the nameserver 2010-06-28 01:34:11 +00:00
Mark Andrews
8fa6ca58b6 check that we have non-cachable answers to test against 2010-06-28 01:31:49 +00:00
Automatic Updater
1b67d9b719 update copyright notice 2010-06-26 23:46:49 +00:00
Mark Andrews
810656a187 2925. [bug] Named failed to accept uncachable negative responses 
from insecure zones. [RT# 21555]
 2010-06-25 23:50:13 +00:00
Automatic Updater
cf309ffeee update copyright notice 2010-06-25 23:46:51 +00:00
Mark Andrews
f35a87f58f remove leading zeros on keyid 
account for trusted keys not applying to _bind anymore
 2010-06-25 07:28:46 +00:00
Mark Andrews
bf13e709db 2924. [func] 'rndc secroots' dump a combined summary of the 
current managed keys combined with trusted keys.
                        [RT #20904]
 2010-06-25 03:24:05 +00:00
Automatic Updater
b8d4e96e95 update copyright notice 2010-06-23 23:46:58 +00:00
Automatic Updater
b61690dbad update copyright notice 2010-06-22 23:46:52 +00:00
Mark Andrews
48dfee7150 2920. [func] Allow 'filter-aaaa-on-v4' to be applied selectively 
to IPv4 clients.  New acl 'filter-aaaa' (default any).
 2010-06-22 04:03:38 +00:00
Automatic Updater
263874836b update copyright notice 2010-06-11 23:46:49 +00:00
Mark Andrews
96fae19c97 restore export of PERL PK11GEN PK11LIST PK11DEL 2010-06-11 01:57:36 +00:00
Mark Andrews
9a56f03c4c 2916. [func] Add framework to use IPv6 in tests. 
fd92:7065:b8e:ffff::1 ... fd92:7065:b8e:ffff::7
 2010-06-10 06:19:52 +00:00
Automatic Updater
ad0471f93b update copyright notice 2010-06-08 23:50:24 +00:00
Mark Andrews
e24ccb512c 2914. [bug] Make the "autosign" system test more portable. 
[RT #20997]
 2010-06-07 04:45:43 +00:00