upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-09 02:58:18 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
13152 commits 18 branches 854 tags 440 MiB
Commit graph

97 commits

Author SHA1 Message Date
Mark Andrews
69acffbb19 sync with HEAD 2003-10-14 03:48:11 +00:00
Mark Andrews
719e3ac95f pullup: 
merge rt3598 (code by marka, pullup by me)
 2003-08-25 01:44:12 +00:00
Mark Andrews
ab148ab902 pullup: 
Clean up the implementation cleanup mechanism.  Also remove ->issymmetric,
since it's easier to just do it in dst_api.c.
Move the memory allocation wrappers into openssl_link.c, since they're
openssl specific.
add dst_key_privatefrombuffer(), which coverts a public key into a private
key.
 2003-08-13 06:51:34 +00:00
Mark Andrews
193fd4f417 pullup: 
Use as_textregion.base not as_pointer.  [RT #2385]
 2003-08-13 00:36:56 +00:00
Mark Andrews
2b6b5bc00c 1143. [bug] When a trusted-keys statement was present and named 
was built without crypto support, it would leak memory.
 2003-08-08 06:07:52 +00:00
Mark Andrews
3b89807475 997. [func] Add support for RSA-SHA1 keys (RFC3110). 2003-08-04 01:04:44 +00:00
Mark Andrews
c1df871a18 silence compiler warnings (HPUX/11i) 2003-07-23 06:57:59 +00:00
Mark Andrews
6cb12c44a3 pullup: 
fix large DH key generation, hopefully for the last time.
 2001-12-19 01:09:58 +00:00
Andreas Gustafsson
fb17fdbd0e pullup: 
cvs rdiff -r1.89 -r1.90 bind9/lib/dns/sec/dst/dst_api.c
 2001-11-06 19:24:08 +00:00
Brian Wellington
6614bac268 oops, don't return an isc_boolean_t as an isc_result_t. 2001-07-10 21:27:59 +00:00
Brian Wellington
3b31ce9da9 functions can now return DST_R_NOCRYPTO 2001-07-10 19:05:53 +00:00
Brian Wellington
28e2058c5f macro style 2001-07-10 05:12:43 +00:00
Brian Wellington
9622173ccb only create a memory pool if OPENSSL is defined. 2001-07-10 05:00:42 +00:00
Brian Wellington
024550401d #if defined(OPENSSL) ==> #ifdef OPENSSL 
remove unused #include <openssl/rand.h>
 2001-07-10 04:01:19 +00:00
David Lawrence
25efbc557e set the permissions on a symmetric keyfile before anything is written to it, 
rather than after it is closed
 2001-05-31 10:45:32 +00:00
Brian Wellington
0716b32560 remove unnecessary const 2001-05-21 22:10:23 +00:00
Brian Wellington
177ede307a minor internal reorganization (yes, this will all become clear at some point) 2001-05-10 19:07:18 +00:00
Brian Wellington
4bd95a4965 fix a cut-and-paste-o and a warning 2001-05-10 04:50:28 +00:00
Brian Wellington
8e4da48fa7 consolidated duplicated code for filename mangling, removed sanity checks that 
weren't.
 2001-05-09 23:04:50 +00:00
Andreas Gustafsson
a08f7f4a6c frombuffer() was declared 'static' but defined 
without 'static'
 2001-05-04 17:57:33 +00:00
Brian Wellington
daad43e5a4 802. [bug] DNSSEC key tags were computed incorrectly in almost 
all cases. [RT #1146]
 2001-04-04 02:02:58 +00:00
Brian Wellington
45e22378fc dns_name_tofilenametext() now downcases the name, which means the callers 
don't need to.
 2001-03-27 23:43:15 +00:00
Brian Wellington
7d7215baf8 Add dns_name_tofilenametext(), and use it in the dnssec tools. 2001-03-27 22:57:48 +00:00
Brian Wellington
3d60fe9baf 740. [port] Handle openssl library mismatches slightly better. 2001-02-14 20:26:48 +00:00
Brian Wellington
b3936096b8 fix get_key_struct() definition 2001-01-27 04:33:18 +00:00
Brian Wellington
46c3b3f6e1 isc_uint16_t -> dns_keytag_t in many places; dns_keytable_findkeynode 
was casting incorrectly. [RT #664]
 2001-01-24 02:23:02 +00:00
Brian Wellington
5d0cca62ee Renamed keyid.c to key.c, and moved in a bunch of other functions that don't 
depend on crypto.
 2001-01-17 01:08:08 +00:00
Brian Wellington
d7483d67f7 Move dst_region_computeid into a new file dst/keyid.c, so that all of the 
dnssec code doesn't need to be linked in by using rdata routines.
 2001-01-17 00:33:37 +00:00
Brian Wellington
499b34cea0 copyright update 2001-01-09 22:01:04 +00:00
Brian Wellington
523dd6a979 669. [func] dnssec-keygen now makes the public key file 
non-world-readable for symmetric keys. [RT #403]
 2001-01-09 00:53:06 +00:00
Andreas Gustafsson
8998ed8481 added UNUSED() macro 2000-12-18 21:09:42 +00:00
Brian Wellington
ebfcb6cf66 550. [func] Support unknown rdata types and classes. 2000-11-09 23:55:05 +00:00
Brian Wellington
ed239db49c Allow keys to be referred to as 'Kname.+id+alg.' (with a trailing dot), since 
file completion often produces strings of that form.
 2000-11-01 00:17:18 +00:00
Mark Andrews
c03bb27f06 532. [func] Implement DNS UPDATE pseudo records using 
DNS_RDATA_UPDATE flag.

 531.   [func]          Rdata really should be initalized before being
                        assigned to (dns_rdata_fromwire(), dns_rdata_fromtext(),
                        dns_rdata_clone(), dns_rdata_fromregion()),
                        check that it is.
 2000-10-25 04:26:57 +00:00
Brian Wellington
e9c0951923 Remove dnssafe; use openssl rsa instead. 2000-09-16 01:12:21 +00:00
Brian Wellington
020d334001 Don't assume class IN. 2000-09-12 09:54:36 +00:00
Brian Wellington
8c7fa43b3c Make dst_region_computeid() take an algorithm, since it was returning the 
wrong id for RSA keys.  Also clean up a few error messages from dst routines.
 2000-09-08 14:23:49 +00:00
Brian Wellington
d3735e0e25 DST_ALG_RSA -> DST_ALG_RSAMD5 2000-09-02 01:17:20 +00:00
Brian Wellington
c9e998ea51 A bit of gss-tsig code. Don't expect this to work. 2000-08-17 02:04:22 +00:00
David Lawrence
40f53fa8d9 Trailing whitespace trimmed. Perhaps running "perl util/spacewhack.pl in your 
own CVS tree will help minimize CVS conflicts.  Maybe not.
Blame Graff for getting me to trim all trailing whitespace.
 2000-08-01 01:33:37 +00:00
Brian Wellington
38c3484647 Replace the internal dst__id_calc() with the visible dst_region_computeid(). 2000-07-31 19:44:21 +00:00
Brian Wellington
c0975ccf5c Use the dst entropy wrapper in all cases, so that the initial entropy flags 
passes into dst are always in effect.
 2000-06-12 18:05:15 +00:00
Brian Wellington
ce89d902a2 dst_context_create should check for a null key before creating a context 2000-06-12 07:07:53 +00:00
Brian Wellington
6204077770 Actually make openssl work with our entropy api 2000-06-09 23:31:55 +00:00
Brian Wellington
09a1a618cd Use the entropy api. 2000-06-09 22:32:20 +00:00
Andreas Gustafsson
3b938ff0d9 copyright messages now generated by util/update_copyrights 2000-06-09 20:58:39 +00:00
David Lawrence
e46d261abb added void parameter declarator for definition of dst_lib_destroy() 2000-06-08 23:21:15 +00:00
David Lawrence
e90de0d144 buildfilename() definition needed static attribute of its declaration 2000-06-08 20:38:48 +00:00
Brian Wellington
76513c0271 Removed errant call to dns_rdata_freestruct, cleaned up an error case. 2000-06-07 19:05:45 +00:00
Brian Wellington
78d14e388a Use MD5/SHA1 from libisc instead of dst/openssl 2000-06-07 17:22:31 +00:00