upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-09 09:40:45 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
27156 commits 18 branches 854 tags 440 MiB
Commit graph

821 commits

Author SHA1 Message Date
Mark Andrews
84527eb4d5 update copyrights 2019-01-02 10:26:49 +11:00
Mark Andrews
901adb154b remove reference to obsolete xml/v2 schema 
(cherry picked from commit 9e1af0cef1)
 2018-11-13 11:08:59 -08:00
Mark Andrews
b2ffe56fc5 add krb5-selfsub and ms-selfsub 
(cherry picked from commit fbeefd4990)
 2018-09-10 17:40:19 +10:00
Mark Andrews
61e40c1192 update {krb5,ms}-{self,subdomain} descriptions 
(cherry picked from commit 0370d13667)
 2018-08-27 17:01:15 +10:00
Michał Kępień
c84a2342f4 Log a message when "ixfr-from-differences" is set for an inline-signed zone 
For inline-signed zones, the value of "ixfr-from-differences" is
hardcoded to:

  - "yes" for the raw version of the zone,
  - "no" for the signed version of the zone.

In other words, any user-provided "ixfr-from-differences" setting is
effectively ignored for an inline-signed zone.  Ensure the user is aware
of that by adding a note to the ARM and logging a message when an
"ixfr-from-differences" option is found at the zone level.

(cherry picked from commit 087157d14f)
 2018-08-24 10:24:46 +02:00
Ondřej Surý
a6887424ca Un-deprecate the answer-cookie option 2018-06-26 15:18:36 -07:00
Mukund Sivaraman
ca24707d38 Update ARM documentation 
(cherry picked from commit b5265a8cfa)
 2018-06-08 17:29:45 +10:00
Mark Andrews
9a5f308287 add named.conf option root-key-sentinel 
(cherry picked from commit 68e9315c7d)
(cherry picked from commit ee763ef281)
 2018-06-04 17:41:22 -04:00
Mark Andrews
f9d19cab7f 4699. [func] Multiple cookie-secret clauses can now be specified. 
The first one specified is used to generate new
                        server cookies.  [RT #45672]
 2018-06-04 13:16:28 -07:00
Mark Andrews
cf8c1e3284 add closing '};' 
(cherry picked from commit ab22160a1c)
 2018-05-25 13:12:00 +10:00
Mark Andrews
8543097699 add HOME.ARPA to the list of empty zones 
(cherry picked from commit 10dd0b3efe)
 2018-05-23 11:14:18 +10:00
Evan Hunt
50aae06d89 rewrite the update-policy documentation 
- clarify the behavior of the name and identity fields for various
  rule types, particularly tcp-self and 6to4-self.

(cherry picked from commit dea89f2a52)
 2018-05-15 13:20:15 -07:00
Evan Hunt
8b205089b7 update file headers to remove copyright years 2018-03-14 16:40:20 -07:00
Mark Andrews
8f1ed05dc0 4885. [security] update-policy rules that otherwise ignore the name 
field now require that it be set to "." to ensure
                        that any type list present is properly interpreted.
                        [RT #47126]

(cherry picked from commit ec771bbdc8)
 2018-02-07 13:50:00 +11:00
Tinderbox User
93ca8abdf8 update copyright notice / whitespace 2018-01-22 23:47:25 +00:00
Evan Hunt
1cf118a656 [v9_11] automatically generate named.conf grammars for the ARM 
4873.	[doc]		Grammars for named.conf included in the ARM are now
			automatically generated by the configuration parser
			itself.  As a side effect of the work needed to
			separate zone type grammars from each other, this
			also makes checking of zone statements in
			named-checkconf more correct and consistent.
			[RT #36957]

(cherry picked from commit 129c4414cb)
(cherry picked from commit f662d5484e)
 2018-01-22 19:40:00 +00:00
Evan Hunt
77a2183961 [v9_11] document "fixedpoint" 2017-12-07 19:01:10 -08:00
Evan Hunt
8f98972067 [v9_11] clarify doc on zone refresh and expiry 2017-11-01 23:09:47 -07:00
Evan Hunt
17b7c60902 [v9_11] removed references to obsolete versions in documentation 2017-11-01 22:20:36 -07:00
Evan Hunt
4ee7a74729 [v9_11] fix some documentation errors [RT #45527] 
(cherry picked from commit 81570e84a2)
 2017-10-25 11:05:13 -07:00
Evan Hunt
415b410ae8 [v9_11] zone "file" option was undocumented 
(cherry picked from commit b1042e011c)
 2017-10-23 19:40:12 -07:00
Evan Hunt
b30ffd0a5b [v9_11] doc nit: Base64 is capitalized and not hyphenated 
(cherry picked from commit 321b8429f5)
 2017-10-21 13:29:45 -07:00
Evan Hunt
56e30ebae6 [v9_11] require writable managed keys directory 
4769.	[bug]		Enforce the requirement that the managed keys
			directory (specified by "managed-keys-directory",
			and defaulting to the working directory if not
			specified) must be writable. [RT #46077]
 2017-10-17 21:26:41 -07:00
Evan Hunt
02af0069a1 [v9_11] add DOA to ARM 2017-10-07 19:34:39 -07:00
Evan Hunt
f592d2f76c [v9_11] further restrict update-policy local 
4762.	[func]		"update-policy local" is now restricted to updates
                from local addresses. (Previously, other addresses
                were allowed so long as updates were signed by the
                local session key.) [RT #45492]
 2017-10-06 15:43:18 -07:00
Evan Hunt
43d53a4e4b [v9_11] fix topology doc 
4758.	[doc]		Remove documentation of unimplemented "topology".
			[RT #46161]
 2017-10-05 18:52:11 -07:00
Evan Hunt
1a35af8e47 [v9_11] remove spurious control character 2017-10-03 19:41:57 -07:00
Tinderbox User
a134177ed9 update copyright notice / whitespace 2017-10-03 23:46:31 +00:00
Evan Hunt
d5bd8bb71a [v9_11] de-DLV 
4749.	[func]		The ISC DLV service has been shut down, and all
			DLV records have been removed from dlv.isc.org.
			- Removed references to ISC DLV in documentation
			- Removed DLV key from bind.keys
			- No longer use ISC DLV by default in delv
			[RT #46155]
 2017-10-03 00:43:19 -07:00
Mark Andrews
4ae32a6f72 remove unimplement rate-limit option [RT #46030] 
(cherry picked from commit fb088a00cf)
 2017-09-19 13:15:53 +10:00
Evan Hunt
5007b353e4 [v9_11] grammar error and missing reference to filter-aaaa-on-v6 
(cherry picked from commit b2a5df8d4b)
 2017-08-09 15:05:36 -07:00
Evan Hunt
d1c18780d3 [v9_11] remove unnecessary acronym expansions 2017-07-28 12:23:40 -07:00
Evan Hunt
0725e28e47 [v9_11] remove outdated reference to libbind 
(cherry picked from commit ef9ab10ce0)
 2017-05-18 15:35:30 -07:00
Tinderbox User
af0d9b7705 update copyright notice / whitespace 2017-04-26 23:46:00 +00:00
Mukund Sivaraman
3b38e4b834 Set a LMDB mapsize and also provide a config option to control it (#44954) 
(cherry picked from commit 241b49e611)
 2017-04-26 23:55:27 +05:30
Evan Hunt
d438157f7e [v9_11] clarify auth ECS is not meant for production use 2016-12-26 16:52:14 -08:00
Mark Andrews
83a28ca274 4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831] 
(cherry picked from commit 1b8ce3b330)
 2016-12-07 10:50:50 +11:00
Evan Hunt
1585a9f239 [v9_11] fixed ARM grammars 
4526.	[doc]		Corrected errors and improved formatting of
			grammar defintiions in the ARM. [RT #43739]
 2016-12-05 00:43:37 -08:00
Evan Hunt
2fb4184d9d [v9_11] fix managed-keys doc 
4525.	[doc]		Fixed outdated documentation on managed-keys.
			[RT #43810]

(cherry picked from commit e1ba21bd58)
 2016-12-04 20:22:38 -08:00
Mark Andrews
ae07f624ff automate insertion of copyright year list into Bv9ARM-book.xml 
(cherry picked from commit e527dcdb00)
 2016-11-26 07:50:06 +11:00
Mark Andrews
744c1db635 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]

(cherry picked from commit 5f8412a4cb)
 2016-11-03 09:48:26 +11:00
Mark Andrews
98546bb432 s/secret_string/algorithm_id/ for cookie-algorithm 
(cherry picked from commit fe09d4b609)
 2016-09-01 12:05:33 +10:00
Evan Hunt
e615ecb7a5 [v9_11] correct default value of tcp-clients 
(cherry picked from commit b46760b373)
 2016-08-30 23:02:39 -07:00
Jeremy C. Reed
6dd849c866 fix the 8K number 
from the upstream source:
/** Default `buffer_hint` value. */
 2016-08-25 13:56:57 -04:00
Evan Hunt
756b54c8ff [v9_11] add missing release notes and fix other doc nits 
(cherry picked from commit 864dc79dce)
 2016-08-24 16:25:51 -07:00
Evan Hunt
28a4d32b05 [v9_11] add dnssec-keygen and nslookup man page links to ARM 
(cherry picked from commit 1e50c0d857)
 2016-08-24 20:39:52 +00:00
Evan Hunt
428fc1a50e [v9_11] document power of 2 requirement for fstrm-set-input-queue-size 
(cherry picked from commit dd666442d3)
 2016-08-18 18:10:49 -07:00
Evan Hunt
d4bcb6ee58 [v9_11] missed renaming SIT to COOKIE 
(cherry picked from commit b715ad3cdb)
 2016-08-18 18:09:02 -07:00
Mark Andrews
7204d08a31 4447. [tuning] Allow the fstrm_iothr_init() options to be set using 
named.conf to control how dnstap manages the data
                        flow. [RT #42974]

(cherry picked from commit 934837913f)
 2016-08-18 11:16:58 +10:00
Mark Andrews
2fb6d3782b 4437. [func] Minimal-responses now has two additional modes 
no-auth and no-auth-recursive which suppress
                        adding the NS records to the authority section
                        as well as the associated address records for the
                        nameservers. [RT #42005]

(cherry picked from commit 78e31dd187)
 2016-08-12 10:49:57 +10:00