upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-11 03:56:12 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
13152 commits 18 branches 854 tags 440 MiB
Commit graph

4175 commits

Author SHA1 Message Date
Mark Andrews
be8aff07bb spelling 2003-03-19 17:43:41 +00:00
Mark Andrews
818643e8c5 1452. [bug] Bad #ifdef, ISC_RFC2335 -> ISC_RFC2535. 2003-03-07 00:11:28 +00:00
Mark Andrews
a7efbe70e7 merge 9.2.2 back into v9_2 2003-03-06 04:38:29 +00:00
Mark Andrews
ea6fe0d54f 1451. [bug] rndc-confgen didn't exit with a error code for all 
failures. [RT #5209]
 2003-03-03 05:08:56 +00:00
Mark Andrews
b500de3be9 alt-transfer-source-v4 -> alt-transfer-source 2003-02-27 05:12:47 +00:00
Mark Andrews
0c2509b0b9 1449. [bug] query_addbestns() didn't handle running out of memory 
gracefully.
developer: marka
reviewer: explorer
 2003-02-27 02:11:16 +00:00
Mark Andrews
8b5de97014 1448. [bug] Handle empty wildcards labels. 
developer: marka
reviewer: explorer
 2003-02-27 00:19:04 +00:00
Mark Andrews
476386968b 1446. [func] Implemented undocumented alternate transfer sources 
from BIND 8.  See use-alt-transfer-source,
                        alt-transfer-source-v4 and alt-transfer-source-v6.

                        SECURITY: use-alt-transfer-source is ENABLED unless
                        you are using views.  This may caues a security risk
                        resulting in accidental disclosure of wrong zone
                        content if the master supplying different source
                        content based on IP address.  If you are not certian
                        ISC recommends setting use-alt-transfer-source no;
developer: marka
reviewer: explorer
 2003-02-26 23:29:00 +00:00
Mark Andrews
888bb8bf68 1443. [func] Masters lists can now be specified and referenced 
in zone masters clauses and other masters lists.
developer: marka
reviewer: explorer
 2003-02-26 06:04:03 +00:00
Mark Andrews
b312748a11 1442. [func] New fuctions for manipulating port lists: 
dns_portlist_create(), dns_portlist_add(),
                        dns_portlist_remove(), dns_portlist_match(),
                        dns_portlist_attach() and dns_portlist_detach().

1441.   [func]          It is now possible to tell dig to bind to a specific
                        source port.

1440.   [func]          It is now possible to tell named to avoid using
                        certian source ports (avoid-v4-udp-ports,
                        avoid-v6-udp-ports).
developer: marka
reviewer: explorer
 2003-02-26 05:05:16 +00:00
Mark Andrews
ee84964a7d 1439. [bug] Named could return NOERROR with certian NOTIFY 
failures.  Return NOTAUTH is the NOTIFY zone is
                        not being served.

1438.   [func]          Log TSIG (if any) when logging NOTIFY requests.
developer: marka
reviewer: explorer
 2003-02-26 04:16:27 +00:00
Mark Andrews
c3ea698877 1436. [func] dns_zonemgr_resumexfrs() can be used to restart 
stalled transfers.

1435.   [bug]           zmgr_resume_xfrs() was being called read locked
                        rather than write locked.  zmgr_resume_xfrs()
                        was not being called if the zone was being
                        shutdown.

1434.   [bug]           "rndc reconfig" failed to initiate the initial
                        zone transfer of new slave zones.
developer: marka
reviewer: explorer
 2003-02-26 03:45:59 +00:00
Mark Andrews
e2fb08b85d 1432. [func] The advertised EDNS UDP buffer size can now be set 
via named.conf (edns-udp-size).
developer: marka
reviewer: explorer
 2003-02-26 02:04:00 +00:00
Mark Andrews
0c66ca45dc remove duplicate "the" 2003-02-25 22:41:58 +00:00
Mark Andrews
6e0f975309 remove duplicate "the" 2003-02-25 22:40:23 +00:00
Mark Andrews
8e9cc3ced1 spelling 2003-02-07 02:39:06 +00:00
Mark Andrews
b587e1d83f spelling 2003-02-07 01:13:13 +00:00
Mark Andrews
a1301ef891 undo (wrong branch) 2003-02-04 06:10:09 +00:00
Mark Andrews
ab4bec8504 checkpoint 2003-02-04 05:44:32 +00:00
Mark Andrews
308094e467 arguements reversed 2003-01-31 12:07:56 +00:00
Mark Andrews
838d608e6f 1422. [func] Log name/type/class when denying a query. [RT #4663] 2003-01-21 06:11:46 +00:00
Mark Andrews
64cc9c8818 1421. [func] Differentiate updates that don't succeed due to 
prerequisites (unsuccessful) vs other reasons
                        (failed).
developer: marka
reviews: explorer
 2003-01-21 05:18:11 +00:00
Mark Andrews
c7fc6434fe 1418. [bug] 'rndc reconfig' did not cause new slaves to load. 2003-01-20 23:51:23 +00:00
Mark Andrews
9bd478a5e6 1417. [func] ID.SERVER/CHAOS is now a built in zone. 
See "server-id" for how to configure.
 2003-01-20 05:46:11 +00:00
Mark Andrews
421e4cf66e 1416. [bug] Empty node should return NOERROR NODATA, not NXDOMAIN. 
[RT #4715]
developer: marka
reviewer: explorer
 2003-01-18 03:18:31 +00:00
Mark Andrews
b0c15bd979 1415. [func] DS TTL now derived from NS ttl. NXT TTL now derived 
from SOA MINIMUM.

1414.   [func]          Support for KSK flag.
 2003-01-18 02:40:59 +00:00
Mark Andrews
bf7f253e30 1413. [func] Explictly request the (re-)generation of DS records from 
keysets (dnssec-signzone -g).
developer: marka
reviewer: explorer
 2003-01-18 00:24:09 +00:00
Mark Andrews
0ffaee887f 1412. [func] You can now specify servers to be tried if a nameserver 
has IPv6 address and you only support IPv4 or the
                       reverse. See dual-stack-servers.
 2003-01-16 03:59:28 +00:00
Mark Andrews
c86eed4bde 1410. [func] handle records that live in the parent zone, e.g. DS. 
developer: marka
reviewer: explorer
 2003-01-14 00:28:50 +00:00
Mark Andrews
c314efc295 add comment 2003-01-10 02:37:44 +00:00
Mark Andrews
f4cbe536b1 cygwin support 2002-12-27 03:29:37 +00:00
Mark Andrews
81aea2f2d3 undo wrong branch 2002-12-13 02:51:41 +00:00
Mark Andrews
0020640ff6 checkpoint 2002-12-13 02:37:35 +00:00
Mark Andrews
bdf0739d6e Restore accidentally deleted call to isc_app_start(); [RT #4699] 
developer: jinmei
reviewer: marka
 2002-12-11 06:31:37 +00:00
Mark Andrews
5b76a09697 1405. [func] Use arc4random() if available. 
from: jakob@crt.se
reviewed: marka
 2002-12-04 01:19:28 +00:00
Mark Andrews
93e353425a 1403. [func] dnssec-signzone, dnssec-keygen, dnssec-makekeyset 
dnssec-signkey now report their version in the
                        usage message.
 2002-12-03 05:01:34 +00:00
Mark Andrews
49a940dc68 1402. [cleanup] A6 has been moved to experimental and is no longer 
fully supported.
developer: jinmei
reviewer: marka
 2002-11-27 09:52:58 +00:00
Michael Graff
e903df2f01 merge 4319 2002-11-12 23:58:14 +00:00
Michael Graff
994bc04060 merge 3907 2002-11-12 23:42:38 +00:00
Michael Graff
43ee20a821 merge rt4112 2002-11-12 23:38:12 +00:00
Michael Graff
49c6fe9bcc merge rt3892 2002-11-12 23:08:27 +00:00
Michael Graff
eec234d7a2 don't check for result being sane before it's first set. This is 
probably related to the removal of isc_app stuff.
 2002-11-12 22:57:57 +00:00
Michael Graff
2706bea98e pull down 3625 (code by Mark, pulldown by me) 
Note:  this also changes behavior beyond that mentioned in PR 3625
to also look up AAAA and MX records for hosts when 'host foo' is
the command line.

Also note that there will be one more commit here to fix a potential
show stopper.  I'll make that change directly to the mainline.
 2002-11-12 22:57:06 +00:00
Michael Graff
4411b9b6e7 pull down rt3507 (work by Mark, checked by me) 2002-11-12 21:52:44 +00:00
Mark Andrews
59ab128c97 1400. [bug] Block the addition of wildcard NS records by IXFR 
or UPDATE. [RT #3502]
developer: marka
reveiwer: ogud
 2002-11-12 20:16:30 +00:00
Mark Andrews
9977600381 1396. [func] dnssec-signzone: adjust the default signing time by 
1 hour to allow for clock skew.
 2002-11-04 00:16:05 +00:00
Mark Andrews
440edeebf9 emit explict interface message only if we are about to configure the 
first interface.
 2002-10-31 04:08:22 +00:00
Mark Andrews
aa39170da8 1394. [func] It is now possible to check if a particular element is 
in a acl.  Remove duplicate entries from the localnets
                        acl.

1393.   [port]          Bind to individual IPv6 interfaces if IPV6_IPV6ONLY
                        is not available in the kernel to prevent accidently
                        listening on IPv4 interfaces.
developer: jinmei
reviewer: marka
 2002-10-29 04:40:26 +00:00
Mark Andrews
925c021f1f u_int32_t -> isc_uint32_t 2002-10-28 02:35:36 +00:00
Mark Andrews
52fc1457e4 1392. [bug] named-checkzone: update usage. 2002-10-25 01:02:53 +00:00
Mark Andrews
6526fd032f 1391. [func] Add support for IPv6 scoped addresses in named. 2002-10-24 03:52:35 +00:00
Mark Andrews
0f44724dbc 1390. [func] host now supports ixfr. 2002-10-17 23:50:08 +00:00
Mark Andrews
b8fff4f0d7 1390. [func] host now supports ixfr. 
developer: marka
reviewer: jinmei
 2002-10-17 23:44:35 +00:00
Tatuya JINMEI 神明達哉
b6a4cc6927 prevented 'named-checkconf -z' from stopping due to an intermediate fail 
RT #3653

developer: marka
reviewer: jinmei
 2002-10-10 13:22:00 +00:00
Tatuya JINMEI 神明達哉
3ac2a99878 further BIND 8 compatiblity changes 
- made the output and exit code with the -l option compatible with bind 8

additionally, treated host -t axfr as host "-l -t any -v".

developer: marka
reviewer: jinmei
 2002-09-26 11:17:06 +00:00
Tatuya JINMEI 神明達哉
e9b85f0309 host exits with a non-zero code for erroneous results 
(RT #3536)
developer: marka
reviewer: jinmei
 2002-09-20 06:26:10 +00:00
Mark Andrews
c30d291128 correct typo in usage message. 
jinmei/marka
 2002-09-19 02:40:15 +00:00
Mark Andrews
79da8302e8 1380. [func] 'rndc recursing' dump recursing queries to 
'recursing-file = "named.recursing";'.
 2002-09-12 04:17:21 +00:00
Mark Andrews
02b772da47 developer: bwelling 
reviewed: marka
Generating a response when the qname matches a wildcard and the type
doesn't exist didn't work; the NXT name was improperly expanded and the
wildcard proof was omitted.
 2002-09-11 06:36:17 +00:00
Mark Andrews
a6b416d38c Don't call adjust_interfaces unless IPv6 support is enabled. [RT #3593] 2002-09-11 04:32:29 +00:00
Mark Andrews
77cdba459a missing const 2002-09-10 05:08:53 +00:00
Mark Andrews
dfd0eaf243 missing include 2002-09-10 05:07:56 +00:00
Mark Andrews
a9ae9d743c 1380. [func] 'rndc recursing' dump recursing queries to 
'recursing-file = "named.recursing";'.
 2002-09-10 04:45:54 +00:00
Mark Andrews
75ace6601e 1379. [func] 'rndc stats' now reports tcp and recursion quota 
states.

1378.   [func]          Improved positive feedback for 'rndc {reload|refresh}.

1377.   [func]          dns_zone_load{new}() now reports if the zone was
                        loaded, queued for loading to up to date.

1376.   [func]          New function dns_zone_logc() to log to specified
                        category.
 2002-09-10 02:23:46 +00:00
Michael Graff
e3239b40d2 remove the periodic 'still alive' message 2002-09-09 21:20:16 +00:00
Michael Graff
72ea295e09 change the 'I'm alive' messages to be 60 second apart, not 15 2002-09-09 20:03:18 +00:00
Michael Graff
ab7ce5eb6e detach from quota in an error case. I don't know if this is strictly needed, 
but it makes sense.  It is probably done later as well, but all places
check for the pointer != NULL, so we'll be ok.
 2002-09-08 18:40:58 +00:00
Michael Graff
e64aa1b4f2 add 15-second 'alive' messages (sent to server info channel) and support for a temporary hack, 'rndc timerpoke' 2002-09-08 18:34:04 +00:00
Mark Andrews
9130ab90fe developer: bwelling 
reviewer: marka
DNSSEC wildcard negative proof responses were longer than necessary in
some cases; the existence of a node for which the qname is a subdomain
obscures all shallower wildcards.

That is, query for y.x.foo.com.  If the response contains an NXT
at x.foo.com, it's not necessary to prove that there's no wildcard at
*.foo.com, since it wouldn't be matched anyway.
 2002-09-06 03:47:56 +00:00
Mark Andrews
3bdf879a53 developer: jinmei 
reviewer: marka
1371    [bug]           notify-source-v6, transfer-source-v6 and
                        query-source-v6 with explict addresses and using the
                        same ports as named was listening on could interfere
                        with nameds ability to answer queries sent to those
                        addresses.
 2002-08-30 02:05:30 +00:00
Mark Andrews
1b5b46942d developer: mayer 
reviewed: marka
1370.   [bug]           dig '+[no]recurse' was incorrectly documented.
 2002-08-29 07:45:04 +00:00
Mark Andrews
6b25d2f7f7 developer: bwelling 
reviewed: marka
1369.   [bug]           Adding an NS record as the lexicographically last
                        record in a secure zone didn't work.
 2002-08-29 05:40:07 +00:00
Mark Andrews
52bf8cbb01 copy_server_list(), add_nameserver() and create_search_list() are private 
functions.
 2002-08-28 07:04:48 +00:00
Mark Andrews
b6309ed962 developer: jinmei 
reviewer: marka
1368.   [func]          remove support for bitstring labels.
 2002-08-27 04:53:43 +00:00
Mark Andrews
a2239239cf reviewed: marka 
developer: bwelling
don't attempt to generate a wildcard proof unless the zone is secure.
 2002-08-19 21:32:56 +00:00
Mark Andrews
301ef360a1 supported multiple listen-on-v6 correctly. 2002-08-17 03:00:49 +00:00
Mark Andrews
741a75f81b reviewed: marka 
developer: mayer
relative paths
build against openssl 0.9.6g
 2002-08-17 01:34:09 +00:00
Mark Andrews
8689f943a4 reviewed: jinmei 
developer: marka
1361.   [func]          Log file name when unable to open memory statistics
                        and dump database files. [RT# 3437]
 2002-08-17 00:23:19 +00:00
Mark Andrews
2434ccfde7 reviewed: marka 
developer: jinmei
1360.   [func]          Listen-on-v6 now supports specific addresses.
 2002-08-16 23:46:11 +00:00
Mark Andrews
306de01400 Re-order include directories. 2002-08-13 21:51:12 +00:00
Mark Andrews
2102584914 add lwres linkage 2002-08-13 01:59:31 +00:00
Danny Mayer
a17bea4f04 Put back missing origin fixes 2002-08-12 19:57:13 +00:00
Danny Mayer
b31e7ab885 Modifications to have dighost.c use liblwres to parse the resolv.conf file. Updates to dig, host and nslookup to increase modularity and use more functions in dighost.c 2002-08-12 18:25:25 +00:00
Danny Mayer
baeb459981 Updated dependencies to include lwres 2002-08-12 18:22:55 +00:00
Danny Mayer
03845b2911 Add the liblwres to the list of paths and lib 2002-08-12 01:31:48 +00:00
Danny Mayer
f7a51394db Add the liblwres to the list of paths and lib 2002-08-11 03:36:24 +00:00
Danny Mayer
2a868edaf8 Wrong argument given to fclose 2002-08-08 19:15:19 +00:00
Mark Andrews
95d24aa0d0 prevent assertion failure 2002-08-07 02:03:49 +00:00
Mark Andrews
d2bd37b22e reviewed: marka 
1354.   [bug]           nsupdate was extremely wasteful of memory.
 2002-08-06 04:23:20 +00:00
Danny Mayer
c9fb8b9f19 Added UF_SHIFT flag as NT requires it to add an account. W2K and WXP do not require it. 2002-08-06 03:35:30 +00:00
Mark Andrews
a6211a2f23 1354. [bug] nsupdate was extremely wasteful of memory. 2002-08-06 03:21:59 +00:00
Mark Andrews
e2cb5eecb0 reviewed: gson 
1352.   [bug]           dig, host, nslookup when falling back to TCP use the
                        current search entry (if any). [RT #3374]
 2002-08-06 02:40:11 +00:00
Mark Andrews
4c342614f8 1354. [bug] Fix DNSSEC wildcard proof for CNAME/DNAME. 2002-08-06 01:50:28 +00:00
Mark Andrews
4c8f0896dc 1352. [bug] dig, host, nslookup: when falling back to TCP use the 
current search list entry (if any). [RT #3374]
Original change missed one case.
 2002-08-06 00:35:01 +00:00
Mark Andrews
891c424e56 update_copyrights 2002-08-05 06:57:16 +00:00
Mark Andrews
b9e380b39d regen 2002-08-05 06:13:37 +00:00
Danny Mayer
0956e3d607 Add check and warning message for Windows 2000 systems not running Service Pack 2 or later 2002-08-03 01:31:48 +00:00
Mark Andrews
6c6673405c 1352. [bug] dig, host, nslookup when failing back to TCP use the 
current search entry (if any). [RT #3374]
 2002-08-02 12:49:46 +00:00
Mark Andrews
5b116f12fa 1325. [bug] If the tcpquota was exhausted it was possible to 
to trigger a INSIST() failure.
 2002-08-02 04:17:21 +00:00
Mark Andrews
c9dd10607a 1342. [port] darwin: ifconfig.sh now supports darwin. 2002-08-02 03:05:39 +00:00
Mark Andrews
a1d4da0dc7 initalise str 2002-08-01 06:51:32 +00:00
Danny Mayer
8ef03ac274 Port needed cast to isc_uint16_t as it is a 16 bit quantity 2002-08-01 03:28:01 +00:00
Danny Mayer
977265bc5d Fixed fclose to close the lockfile and not fd 2002-08-01 03:25:34 +00:00
Danny Mayer
6f1437add9 Fixed missing newline and continuation character (\n\) 2002-08-01 03:23:36 +00:00
Mark Andrews
31fd8a17fb missing %s in format 2002-07-31 02:22:15 +00:00
Mark Andrews
87f4715d6c 1344. [func] Log if the serial number on the master has gone backwards. 
If you have multiple machines specified in the masters
                        clause you may want to set 'multi-master yes;' to suppress
                        this warning.
 2002-07-29 06:58:46 +00:00
Mark Andrews
1431917c7c 1343. [func] Log successful notifies received (info). Adjust log level 
for failed notifies to notice.
 2002-07-29 05:15:32 +00:00
Mark Andrews
ec3984e9df 1339. [func] dig, host and nslookup now use IP6.ARPA for nibble 
lookups.  Bit string lookups are no longer attempted.
 2002-07-25 05:46:07 +00:00
Mark Andrews
f462e2f372 remove unused label 2002-07-25 05:16:10 +00:00
Mark Andrews
b972ff033b 1338. [func] IPv6 synthesis is now performed for IP6.ARPA bit 
string queries.
 2002-07-24 11:53:52 +00:00
Mark Andrews
fa4e143801 1337. [func] IPv6 synthesis is now performed for both IP6.ARPA 
and IP6.INT nibble queries.
 2002-07-24 07:02:50 +00:00
Mark Andrews
34c1d0e1b6 For some zones, querying for a non-DS record, then a DS record would 
time out and SERVFAIL.
 2002-07-23 03:40:19 +00:00
Mark Andrews
edc944d166 Change #1331 (Generate DNSSEC wildcard proofs) contained a memory leak. 2002-07-23 03:33:12 +00:00
Mark Andrews
0f042c7c44 - improves tests of negative insecurity proofs, including tests for the 
SOA TTL 0 hack.
- adds +noauth to a few invocations of dig where the authority section is
  not important.
- removes the bogus first half of the dynamic zone test, which didn't
  do anything other than make the test suite fail if run twice.
- fixed the fact that the keyless.example zone wasn't being securely
  delegated.
bwelling
 2002-07-19 06:20:24 +00:00
Mark Andrews
c54c1eaf26 1251. [func] Generate DNSSEC wildcard proofs. 2002-07-19 03:50:42 +00:00
Mark Andrews
4d9f3f00d9 1249. [func] named-checkzone will now check if nameservers that 
appear to be IP addresses.  Available modes "fail",
                        "warn" (default) and "ignore" the results of the
                        check.
 2002-07-19 02:34:58 +00:00
Mark Andrews
240a5d160a When returning a delegation from the cache and the DO bit is set, always 
try to add a DS.  The test for the existence of the sigrdataset was bogus
and crashed the server.

to reproduce:
 - create a signed parent & child zone
 - query a recursive server for the ns record of the child
 - query the recursive server for a name in the child with +norec
bwelling
 2002-07-17 06:09:41 +00:00
Mark Andrews
65bbe3a2cb pullup: 
There are four "i":s in "initialize"
 2002-07-12 00:17:28 +00:00
Mark Andrews
8e5017af68 Recursive quota should apply to tcp queries when the tcp quota is reached. 2002-07-11 05:45:33 +00:00
cvs2git
23045b97b6 This commit was manufactured by cvs2git to create branch 'v9_3'. 2002-07-11 05:44:12 +00:00
Mark Andrews
e368e45536 reviewed: bwelling 
1242.   [bug]           named-checkzone failed if a journal existed. [RT #2657]
 2002-07-11 05:44:11 +00:00
Mark Andrews
bca7f81db5 all references from -m to -j 2002-07-11 05:36:12 +00:00
Mark Andrews
e14e853d86 usage should show -j 2002-07-11 04:50:36 +00:00
Mark Andrews
e9359db5e9 use -j rather than -m to read the journal if it exists. 2002-07-11 04:49:27 +00:00
Mark Andrews
ba06508f01 ISC_MEM_DEBUGRECORD was turned on accidently. 
'm' option was missing from isc_commandline_parse()
 2002-07-11 04:40:07 +00:00
Mark Andrews
9d352ffc42 reviewed: bwelling 
1327.   [bug]           nsupdate: allow white space base64 key data.
 2002-07-11 03:51:27 +00:00
Mark Andrews
2ea0604c6f reviewed: bwelling 
1299.   [port]          Darwin uses (unsigned long) for size_t. [RT #2590]
 2002-07-10 06:10:45 +00:00
Mark Andrews
cac1899bda reviewed: bwelling 
1272.   [bug]           Dig, host and nslookup were not checking the address
                        the answer was coming from against the address it was
                        sent to. [RT# 2692]
 2002-07-10 04:44:50 +00:00
Mark Andrews
385535aed8 reviewed: bwelling 
1209.   [bug]           Dig, host, nslookup were not checking the message ids
                        on the responses. [RT #2454]
 2002-07-10 04:37:55 +00:00
Mark Andrews
3e4d38c0b1 reviewed: bwelling 
1277.   [bug]           Failure to write pid-file should not be fatal on
                        reload. [RT #2861]
 2002-07-10 04:27:30 +00:00
Mark Andrews
5d98cf67b3 white space cleanup 2002-07-10 01:13:44 +00:00
Mark Andrews
454c78d02c runt -> short (< header size) 2002-07-10 01:03:14 +00:00
Mark Andrews
475fe52dc3 1345. [bug] If the tcpquota was exhausted it was possible to 
to trigger a INSIST() failure.
 2002-07-09 02:41:36 +00:00
Mark Andrews
7d73f463e2 reviewed: bwelling 
1341.   [port]          linux: Slackware 4.0 needs <asm/unistd.h>.
 2002-07-09 01:42:05 +00:00
Mark Andrews
5af560664d 1342. [port] darwin: ifconfig.sh now supports darwin. 2002-07-06 21:54:44 +00:00
Mark Andrews
268c7ef56b don't apply cache-filename to "_bind" view. 2002-07-04 05:03:46 +00:00
Mark Andrews
0f8f42a09e 1341. [port] linux: Slackware 4.0 needs <asm/unistd.h>. 2002-07-03 05:09:43 +00:00
Mark Andrews
b833082a39 reviewed: marka 
1273.   [bug]           The dnssec system test failed to remove the correct
                        files.
 2002-07-02 03:43:38 +00:00
Mark Andrews
c073347825 reviewed: bwelling 
1335.   [bug]           Options should apply to the internal _bind view.
 2002-07-02 02:46:43 +00:00
Mark Andrews
8d77066ba0 1342. [bug] dnssec-signzone usage message was misleading. 
1341.   [bug]           If the last RRset in a zone is glue, dnssec-signzone
                        would incorrectly duplicate its output and sign it.
 2002-07-01 07:37:38 +00:00
Mark Andrews
70f8c70cdd 1335. [bug] Options should apply to the internal _bind view. 2002-06-26 04:48:12 +00:00
Mark Andrews
ac65e45126 1333. [func] Query log now says if the query was signed (S) or 
if EDNS was used (E).
 2002-06-25 04:12:51 +00:00
Mark Andrews
0423090da1 1332. [func] Log TSIG key used w/ outgoing zone transfers. 2002-06-25 04:08:43 +00:00
Mark Andrews
8f1bf2fb3a null pointer dereference 2002-06-20 00:21:35 +00:00
Mark Andrews
0b09763c35 1328. [func] DS (delegation signer) support. 2002-06-17 04:01:37 +00:00
Mark Andrews
6a3c86ff43 1327. [bug] nsupdate: allow white space base64 key data. 2002-06-17 02:30:40 +00:00
Mark Andrews
cd9bfe5b25 1323. [func] Option 'flush-zones-on-shutdown <boolean>;'. 2002-06-13 05:54:34 +00:00
Mark Andrews
dcd371be7d 1220. [func] Extended rndc dumpdb to support dumping of zones and 
view selection: 'dumpdb [-all|-zones|-cache] [view]'.
 2002-06-13 05:12:54 +00:00
Mark Andrews
cc4928ec71 1219. [func] New category 'update-security'. 2002-06-12 06:29:49 +00:00
Mark Andrews
a483e67c4c 1210. [func] "dig axfr" now reports the number of messages 
as well as the number of records.
 2002-05-29 05:31:05 +00:00
Mark Andrews
a1edcd1b8d 1203. [func] Use "dataready" accept filter if available. 2002-05-27 00:40:23 +00:00
Mark Andrews
7c23b791f4 1301. [func] Log zone when unable to get private keys to update 
zone.  Log zone when NXT records are missing from
                        secure zone.
 2002-05-24 06:26:04 +00:00
Mark Andrews
f013b11377 1213. [func] Report view associated with client if it is not a 
standard view (_default or _bind).
 2002-05-24 06:22:30 +00:00
Mark Andrews
acc8b7ac3d 1299. [port] Darwin uses (unsigned long) for size_t. [RT #2590] 2002-05-23 04:32:30 +00:00
Mark Andrews
e7bb307667 1298. [func] dig: now supports +[no]cl +[no]ttlid. 2002-05-22 04:58:30 +00:00
Mark Andrews
4c83dd7f22 1291. [bug] "recursion available: {denied,approved}" was too 
confusing.
 2002-05-16 04:05:42 +00:00
Mark Andrews
51ba5754ca pullup: 
1289.   [port]          Openserver: ifconfig.sh support.
 2002-05-13 04:37:38 +00:00
Mark Andrews
57e0f58b3f 1289. [port] Openserver: ifconfig.sh support. 2002-05-13 04:18:07 +00:00
Mark Andrews
a6540ffa21 pullup: 
1288.   [port]          Openserver: the value FD_SETSIZE depends on whether
                        <sys/param.h> is included or not.  Be consistant.
 2002-05-10 06:54:40 +00:00
Mark Andrews
26cf4737b3 1288. [port] Openserver: the value FD_SETSIZE depends on whether 
<sys/param.h> is included or not.  Be consistant.
 2002-05-10 06:41:55 +00:00
Mark Andrews
b9b40d5fb7 1282. [bug] ns_server_destroy() failed to set *serverp to NULL. 2002-05-08 06:06:33 +00:00
Mark Andrews
88c2b83cc5 1282. [bug] ns_server_destroy() failed to set *serverp to NULL. 2002-05-08 04:45:43 +00:00
Mark Andrews
93e6ebcd0a 1277. [bug] Failure to write pid-file should not be fatal on 
reload. [RT #2861]
 2002-05-03 05:28:29 +00:00
Mark Andrews
0dfac52f06 null pointer de-reference 2002-04-29 23:43:46 +00:00
Mark Andrews
c4a9ce445c 1274. [func] preferred-glue option from BIND 8.3. 2002-04-26 00:40:37 +00:00
Mark Andrews
a04a323f9a 1273. [bug] The dnssec system test failed to remove the correct 
files.
 2002-04-24 00:46:25 +00:00
Mark Andrews
09fb82a40d Reviewed by: gson@nominum.com 
1244.   [bug]           Receiving a TCP message from a blackhole address would
                        prevent further messages being received over that
                        interface.
 2002-04-23 01:53:53 +00:00
Mark Andrews
dd02289085 1272. [bug] Dig, host and nslookup were not checking the address 
the answer was coming from against the address it was
                        sent to. [RT# 2692]
 2002-04-19 04:06:53 +00:00
Mark Andrews
15f358ed4e 1270. [func] Nsupdate will report the address the update was 
sent to.
 2002-04-18 00:22:17 +00:00
Mark Andrews
2b1c71b134 1244. [bug] Receiving a TCP message from a blackhole address would 
prevent further messages being received over that
                        interface.
 2002-04-03 05:30:03 +00:00
Mark Andrews
7791dd06ea 1242. [bug] named-checkzone failed if a journal existed. [RT #2657] 2002-04-02 06:54:07 +00:00
Mark Andrews
253c278b39 pullup: 
1240.   [bug]           It was possible to leak zone references by
                        specifying an incorrect zone to rndc.
 2002-03-29 01:35:24 +00:00
Mark Andrews
7d3458a972 1240. [bug] It was possible to leak zone references by 
specifying an incorrect zone to rndc.
 2002-03-29 01:10:22 +00:00
Mark Andrews
af54b372dc pullup: 
1239.   [bug]           Under certain circumstances named could continue to
                        use a name after it had been freed triggering
                        INSIST() failures.  [RT #2614]
 2002-03-28 05:10:09 +00:00
Mark Andrews
7c441b7f4a 1239. [bug] Under certain circumstances named could continue to 
use a name after it had been freed triggering
                        INSIST() failures.  [RT #2614]
 2002-03-28 04:03:50 +00:00
Mark Andrews
b2f3e5c308 update_copyrights 2002-03-26 00:55:15 +00:00
Mark Andrews
d1a95dea1f pullup: 
1237.   [bug]           nslookup: "set q=type" failed.
 2002-03-20 22:45:11 +00:00
Mark Andrews
27cd2ff244 pullup: 
1221.   [bug]           Zone types 'master', 'slave' and 'stub' were not being
                        compared case insensitively. [RT #2542]
 2002-03-20 20:32:41 +00:00
Mark Andrews
4dedf7a82e pullup: 
1215.   [port]          solaris: add support to ifconfig.sh for x86 2.5.1
 2002-03-20 19:59:50 +00:00
Mark Andrews
7f20fd8ebb 1237. [bug] nslookup: "set q=type" failed. 2002-03-20 18:20:03 +00:00
Brian Wellington
b3c7dffe07 the 'ID mismatch' message printed by dig should show the expected and received 
message IDs.
(now to figure out why they don't match...)
 2002-03-14 18:11:38 +00:00
Brian Wellington
3c5f4710cf remove extraneous blank lines 2002-03-13 23:36:14 +00:00
Mark Andrews
0924f3b522 silence compiler 2002-03-12 03:55:57 +00:00
Mark Andrews
2dd99c098c 1234. [bug] 'rrset-order' and 'sortlist' should be additive 
not exclusive.

1223.   [func]          'rrset-order' partially works 'cyclic' and 'random'
                        are supported.
 2002-03-07 13:46:41 +00:00
Mark Andrews
608c703d12 1221. [bug] Zone types 'master', 'slave' and 'stub' were not being 
compared case insensitively. [RT #2542]
 2002-03-06 23:52:38 +00:00
Mark Andrews
feb8ae0931 1220. [func] Support for APL rdata type. 2002-03-06 07:41:25 +00:00
Mark Andrews
27151990b2 1219. [func] Named now reports the TSIG extended error code when 
signature verification fails. [RT #1651]
 2002-03-05 00:36:44 +00:00
Mark Andrews
3561e645d7 1215. [port] solaris: add support to ifconfig.sh for x86 2.5.1 2002-03-01 11:28:28 +00:00
Mark Andrews
e53a5a116f 1209. [bug] Dig, host, nslookup were not checking the message ids 
on the responses. [RT #2454]
 2002-02-21 04:48:00 +00:00
Mark Andrews
e1cbf95aec regen 2002-02-20 04:31:44 +00:00
Mark Andrews
a7038d1a05 copyrights 2002-02-20 03:35:59 +00:00
Mark Andrews
4daf63c4b0 copyright dates 2002-02-20 02:17:28 +00:00
Andreas Gustafsson
6a8832f784 There are four "i":s in "initialize" 2002-02-20 01:45:15 +00:00
Andreas Gustafsson
a07532875f pullup: 
1193.   [bug]           Best effort parsing didn't handle packet truncation.
 2002-02-19 22:13:00 +00:00
Mark Andrews
c3103a0b2d update 2002-02-19 04:45:34 +00:00
Brian Wellington
4014b6a8ae although a privately secure zone was signed, it was never tested. 2002-02-13 01:32:12 +00:00
Mark Andrews
e1748302ad cfg_test needs to link against libdns (shared lib) 2002-02-12 12:02:06 +00:00
Mark Andrews
13db7f40a5 libdns required for shared library build. 2002-02-12 06:49:36 +00:00
Mark Andrews
f2048c5dff update_copyrights 2002-02-12 06:05:52 +00:00
Mark Andrews
63102c64ae pullup: 
distclean should remove r1.htm
 2002-02-12 05:49:37 +00:00
Mark Andrews
d03d2dbfe9 distclean should remove r1.htm 2002-02-12 05:35:08 +00:00
Mark Andrews
0d2fb0ac27 add libdns to named-checkconf. 2002-02-12 04:31:19 +00:00
Mark Andrews
c73c1c33ec 1193. [bug] dig +besteffort parsing didn't handle packet 
truncation.  dns_message_parse() has new flag
                        DNS_MESSAGE_IGNORETRUNCATION.
 2002-02-12 02:10:33 +00:00
cvs2git
0570be3294 This commit was manufactured by cvs2git to create branch 'v9_3'. 2002-02-08 03:57:48 +00:00
Mark Andrews
73d7583d98 update copyrights 2002-02-08 03:57:47 +00:00
Brian Wellington
64ea670052 the dynamic zone test wasn't working as expected since the child zone wasn't 
securely delegated.
 2002-02-06 03:28:59 +00:00
Brian Wellington
6c62c34a5b signing the root zone didn't work. 2002-02-05 05:16:11 +00:00
Danny Mayer
51693f0bd9 Added case to ensure that normal cleanup code is run during system shutdown 2002-02-02 00:56:40 +00:00
Brian Wellington
4ca54c8f3b ns5 is the incorrectly configured server, not ns4. 2002-02-01 01:56:00 +00:00
Brian Wellington
94b4f2728e rndc unfreeze should reload the zone. 2002-01-30 00:55:15 +00:00
Brian Wellington
f29583dca7 mention freeze & unfreeze in the usage 2002-01-30 00:20:50 +00:00
Brian Wellington
8fb0f1fa42 regen 2002-01-29 23:30:32 +00:00
Brian Wellington
a20b2c5f53 document SIG(0) support. 2002-01-29 23:30:12 +00:00
Mark Andrews
0e84be2c52 unsigned char -> char 2002-01-25 03:12:07 +00:00
Mark Andrews
3e69f0cd72 pullup: 
1072.   [bug]           The TCP client quota could be exceeded when
                        recursion occurred. [RT #1937]
 2002-01-24 23:09:15 +00:00
Mark Andrews
c592760e76 pullup: 
1071.   [bug]           Sockets listening for TCP DNS connections
                        specified an excessive listen backlog. [RT #1937]
 2002-01-24 22:59:07 +00:00
Mark Andrews
f64f89606f pullup: 
nsupdate should not take octal and hex TTLs
 2002-01-24 21:59:51 +00:00
Andreas Gustafsson
3f25cb17e3 pullup: 
1070.  [bug]           Copy DNSSEC OK (DO) to response as specified by
                       draft-ietf-dnsext-dnssec-okbit-03.txt.
 2002-01-24 19:00:27 +00:00
Andreas Gustafsson
e2352fb8cd pullup: 
995.   [bug]           dig, host, nslookup: using a raw IPv6 address as a
                        target address should be fatal on a IPv4 only system.
 2002-01-24 18:42:29 +00:00
Andreas Gustafsson
21b4f15c60 pullup: 
1109.   [bug]           nsupdate accepted illegal ttl values.
 2002-01-24 18:32:25 +00:00
Brian Wellington
b6279d0b4b Don't freeze an already frozen zone. 2002-01-24 09:58:42 +00:00
Mark Andrews
f27e47b5ff pullup: 
1014.   [bug]           Some queries would cause statistics counters to
                        increment more than once or not at all. [RT #1321]
 2002-01-24 04:22:58 +00:00
Mark Andrews
2a091ec932 pullup: 
988.   [bug]           'additional-from-auth no;' did not work reliably
                        in the case of queries answered from the cache.
                        [RT #1436]
 2002-01-24 03:49:04 +00:00
Mark Andrews
9445e10377 1012. [bug] The -p option to named did not behave as documented. 2002-01-24 03:06:25 +00:00
Andreas Gustafsson
fff1dbdf55 pullup: 
1166.   [bug]           "Not Implemented" should be reported as NOTIMP,
                        not NOTIMPL. [RT #2281]
 2002-01-23 17:57:51 +00:00
Brian Wellington
b2ca6fd3a8 #1187 was both unclean and broken. Fix it and clean it up. 2002-01-23 08:46:40 +00:00
Brian Wellington
99df95697c pullup: 
1191.   [bug]           A dynamic update removing the last non-apex name in
                        a secure zone would fail. [RT #2399]
 2002-01-23 08:17:55 +00:00
Mark Andrews
feed58ca64 pullup: 
add format checking
 2002-01-23 03:02:28 +00:00
Mark Andrews
023dd2cfe0 reverse also-notify changes. dns_zone_setalsonotify() has relaxed its calling 
convention.
Correct INSIST
 2002-01-23 02:12:24 +00:00
Andreas Gustafsson
413463f215 pullup: 
wrong test to see if snprintf had a too small buffer.
 2002-01-23 02:11:32 +00:00
Andreas Gustafsson
a7859ded82 1175. [bug] named-checkzone failed to call dns_result_register() 
at startup which could result in runtime
                        exceptions when printing "out of memory" errors.
                        [RT #2335]
(The named-checkconf.c change was not pulled up; it is not applicable
to the 9.2 branch because the 9.2 named-checkconf.c does not link
with libdns)
 2002-01-22 23:34:56 +00:00
Andreas Gustafsson
473ca0bf8c Added RT #2399 regression test 2002-01-22 22:27:29 +00:00
Andreas Gustafsson
48b0f5ff87 1191. [bug] A dynamic update removing the last non-apex name in 
a secure zone would fail. [RT #2399]
 2002-01-22 22:26:45 +00:00
Brian Wellington
cde7dfea4c 1190. [func] Add the "rndc freeze" and"rndc unfreeze" commands. 
[RT #2394]

Basically, "freeze" disables dynamic updates to a zone, syncs the journal
file into the master file, and removes the journal.  This allows manual
edits of a dynamic zone file without stopping the server, since the
zone is temporarily considered non-dynamic.  "unfreeze" re-enables dynamic
updates to a zone.

So, instead of the old:
	rndc stop
	edit master file
	remove journal
	restart server
you can now do:
	rndc freeze zone
	edit master file
	rndc reload zone
	rndc unfreeze zone
which doesn't require stopping the server.

About everyone here at the secure dynamic update workshop wanted this.
It will be documented soon.
 2002-01-22 22:05:59 +00:00
Andreas Gustafsson
ec52edeff2 missing format string argument; add format checking 2002-01-22 21:45:07 +00:00
Brian Wellington
15033eed4d make a few dynamic update log messages more informative 2002-01-22 16:05:51 +00:00
Brian Wellington
a5c077e40c 1181. [func] Add the "key-directory" configuration statement, 
which allows the server to look for online signing
			keys in alternate directories.
 2002-01-21 11:00:25 +00:00
Brian Wellington
2ca556300b 1180. [func] dnssec-keygen should always generate keys with 
protocol 3 (DNSSEC), since it's less confusing
			that way.
 2002-01-21 10:13:20 +00:00
Brian Wellington
97527fc03c 1179. [func] Add SIG(0) support to nsupdate. 2002-01-21 07:59:15 +00:00
Mark Andrews
b627356826 re-do: 
1168.   [bug]           Empty also-notify clauses were not handled. [RT #2309]
 2002-01-14 04:16:03 +00:00
Mark Andrews
e9472e9f18 1175. [bug] named-checkzone and named-checkconf failed to call 
dns_result_register() at startup which could
                        result in runtime exceptions when printing
                        "out of memory" errors. [RT #2335]
 2002-01-14 01:42:04 +00:00
Andreas Gustafsson
669e9657c7 Split off the named.conf grammar into a source module separate 
from the configuration parser, to facilitate reuse of the latter for
parsing non-BIND configuration files
 2002-01-04 02:32:16 +00:00
Mark Andrews
9ab461a6ff 1169. [func] Identify recursive queries in the query log. 2001-12-29 05:31:26 +00:00
Mark Andrews
da5d1cf1b1 1164. [bug] "Not Implemented" should be reported as NOTIMP. 2001-12-19 12:16:47 +00:00
Mark Andrews
2c63b97c09 update tests for MD and MF know longer being loadable 2001-12-12 06:24:11 +00:00
Mark Andrews
11dbb6dc6b silently reject MD and MF updates. 2001-12-11 23:53:13 +00:00
Mark Andrews
8e40433e34 1158. [func] Report the client's address when logging notify 
messages.
 2001-12-10 23:09:24 +00:00
Brian Wellington
e57e32e575 restructuring - build the nxt chain independently from the signing process 2001-12-08 00:38:40 +00:00
Brian Wellington
8740bb8af0 remove #defines that shouldn't be there. 2001-12-07 01:55:42 +00:00
Brian Wellington
68d9a8bddf Fix a typo (I hope) in marka's keys-in-match-* patch. 2001-12-07 01:34:08 +00:00