upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-02 21:40:43 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
24891 commits 18 branches 854 tags 440 MiB
Commit graph

6490 commits

Author SHA1 Message Date
Mark Andrews
e0f1907562 locks are only need in OpenSSL < 1.1 2016-11-09 10:06:34 +11:00
Mark Andrews
704f73353d only call dns_test_begin once 
(cherry picked from commit f13c7b01746a07bef87a386ceff93ccb2a7488a9)
(cherry picked from commit 56c6fc0dac)
 2016-11-09 10:03:47 +11:00
Mark Andrews
a135cb62d3 remove spurious newline [RT #43585] 
(cherry picked from commit fed2f7e4c1)
 2016-11-09 08:27:27 +11:00
Tinderbox User
9ab989b88c update copyright notice / whitespace 2016-11-02 23:48:10 +00:00
Mark Andrews
68770381db add dns_db_getsize, dns_rdataslab_count, dns_zone_getmaxrecords, dns_zone_setmaxrecords 
(cherry picked from commit aee76db9e3)
 2016-11-03 09:48:40 +11:00
Mark Andrews
744c1db635 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]

(cherry picked from commit 5f8412a4cb)
 2016-11-03 09:48:26 +11:00
Evan Hunt
b7ae121eff [v9_11] typo 2016-11-02 09:43:01 -07:00
Mark Andrews
2ea4ed1726 remove review fprintf 
(cherry picked from commit a0caf66c97)
 2016-11-02 18:04:20 +11:00
Mark Andrews
6db55b4ff9 4507. [bug] Name could incorrectly log 'allows updates by IP 
address, which is insecure' [RT #43432]

(cherry picked from commit 2b2b85c897)
 2016-11-02 17:54:37 +11:00
Evan Hunt
8a5809527e [v9_11] make uninstall 
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]

(cherry picked from commit 6087f87afb)
 2016-11-01 19:17:23 -07:00
Evan Hunt
6552f33198 [v9_11] 4496. [func] dig: add +idnout to control whether labels are 
display in punycode or not.  Requires idn support
                        to be enabled at compile time. [RT #43398]

(cherry picked from commit 42470b0b87)
 2016-10-31 20:17:28 -07:00
Mark Andrews
880fce6a74 add more LIBRESSL_VERSION_NUMBER checks 
(cherry picked from commit 429b543086)
 2016-11-01 12:37:29 +11:00
Mark Andrews
395fe33465 add more LIBRESSL_VERSION_NUMBER checks 
(cherry picked from commit 3d38cfaf8a)
 2016-11-01 12:25:03 +11:00
Tinderbox User
e356a7622a update copyright notice / whitespace 2016-10-30 23:47:21 +00:00
Mark Andrews
76af83c9ad 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 
(cherry picked from commit 1fce0951ed)
 2016-10-31 10:05:55 +11:00
Mark Andrews
fb9cdee4af 4495. [bug] A isc_mutex_init call was it being checked. [RT #43391] 
(cherry picked from commit f21645e137)
 2016-10-28 11:15:18 +11:00
Mark Andrews
c5e8808e35 4490. [maint] Added AAAA (2001:500:12::d0d) for G.ROOT-SERVERS.NET. 
(cherry picked from commit 3b7cb2c5b1)
 2016-10-21 22:44:42 +11:00
Mark Andrews
7c66fc9700 4489. [security] It was possible to trigger assertions when processing 
a response. (CVE-2016-8864) [RT #43465]

(cherry picked from commit bd6f27f5c3)
 2016-10-21 14:56:20 +11:00
Witold Krecicki
cc51cd2d20 4487. [test] Make system tests work on Windows. [RT #42931] 2016-10-19 17:21:13 +02:00
Mark Andrews
af9b975ccc 4482. [bug] Address use before require check and remove extraneous 
dns_message_gettsigkey call in dns_tsig_sign.
                        [RT #43374]

(cherry picked from commit 61463ab7a4)
 2016-10-11 14:41:01 +11:00
Mark Andrews
82a50a619a 4474. [bug] win32: call WSAStartup in fromtext_in_wks so that 
getprotobyname and getservbyname work.  [RT #43197]
 2016-10-05 12:29:00 +11:00
Mark Andrews
47f8b47b8d 9.11.0rc3 2016-09-20 21:19:46 +10:00
Mark Andrews
db9781d4a2 4468. [bug] Address ECS option handling issues. [RT #43191] 
(cherry picked from commit df17290113)
 2016-09-14 08:23:07 +10:00
Mark Andrews
8269f06a0f 9.11.0rc2 2016-09-09 15:38:24 +10:00
Mark Andrews
700d3cb789 4467. [security] It was possible to trigger a assertion when rendering 
a message. [RT #43139]

(cherry picked from commit 2bd0922cf9)
 2016-09-09 11:31:59 +10:00
Mark Andrews
6aaf3d01a1 4462. [bug] Don't describe a returned EDNS COOKIE as "good" 
when there isn't a valid server cookie. [RT #43167]

(cherry picked from commit 58d622d96d)
 2016-09-08 11:35:11 +10:00
Mark Andrews
e51ba26500 4461. [bug] win32: not all external data was properly marked 
as external data for windows dll. [RT #43161]

(cherry picked from commit 8eceb0bffe)
 2016-09-07 14:14:40 +10:00
Mukund Sivaraman
ce78690029 Update assertions to be more correct, and also remove use of a reserved word (#43090) 
Note: this doesn't actually fix #43090.
(cherry picked from commit becac651e8)
 2016-08-29 18:54:02 +05:30
Mark Andrews
d102ab1b84 4457. [maint] Added AAAA (2001:500:a8::e) for E.ROOT-SERVERS.NET. 
(cherry picked from commit c55b572ccf)
 2016-08-29 10:16:30 +10:00
Evan Hunt
f503aa345b [v9_11] pass source file and line to dyndb load function 
4455.	[cleanup]	Allow dyndb modules to correctly log the filename
			and line number when processing configuration text
			from named.conf. [RT #43050]

(cherry picked from commit 02fb764681)
 2016-08-25 18:09:45 -07:00
Tinderbox User
a3253fb44c update copyright notice / whitespace 2016-08-25 23:46:16 +00:00
Mark Andrews
6f36f2f7b8 rename ioqversion -> generation; move increment before fstrm_iothr_destroy 
(cherry picked from commit 7535dd93a1)
 2016-08-25 12:07:34 +10:00
Mark Andrews
7df3f06c0b 4454. [bug] 'rndc dnstap -reopen' had a race issue. [RT #43089] 
(cherry picked from commit 726cddb564)
 2016-08-25 10:05:07 +10:00
Mark Andrews
d1cacbb374 4453. [bug] Prefetching of DS records failed to update their 
RRSIGs. [RT #42865]

(cherry picked from commit f431bf02a6)
 2016-08-25 09:53:50 +10:00
Mark Andrews
a8cfd15880 update copyrights / whitespace 2016-08-23 09:50:22 +10:00
Evan Hunt
22913d088f [v9_11] Merged rt43077 (new RSA verify unit test) 
(cherry picked from commit fc41d120f0)
 2016-08-22 09:07:52 -07:00
Witold Krecicki
892f238ace Prep for 9.11.0rc1 2016-08-19 11:34:11 +02:00
Mark Andrews
c40906dfad 4450. [port] Provide more nuanced HSM support which better matches 
the specific PKCS11 providers capabilities. [RT #42458]

(cherry picked from commit 8ee6f289d8)
 2016-08-19 08:05:47 +10:00
Mark Andrews
e722a7f2eb add dns_dt_getstats 
(cherry picked from commit 81ace51190)
 2016-08-18 12:22:14 +10:00
Mark Andrews
7204d08a31 4447. [tuning] Allow the fstrm_iothr_init() options to be set using 
named.conf to control how dnstap manages the data
                        flow. [RT #42974]

(cherry picked from commit 934837913f)
 2016-08-18 11:16:58 +10:00
Evan Hunt
6ce5279d0f [v9_11] check for STALE rdatasets in cache search 
4446.	[bug]		The cache_find() and _findrdataset() functions
			could find rdatasets that had been marked stale.
			[RT #42853]

(cherry picked from commit 46e7763d19)
 2016-08-17 11:44:41 -07:00
Mark Andrews
a5c76d926c use explict casts to silence truncation warnings 
(cherry picked from commit 4cb2ad343f)
 2016-08-16 12:29:32 +10:00
Mukund Sivaraman
4e9a1ad226 Fix RPZ CIDR tree insertion bug (#43035) 
(cherry picked from commit 131307a70e)
 2016-08-15 17:07:50 +05:30
Tinderbox User
911c11bf4b update copyright notice / whitespace 2016-08-12 23:45:53 +00:00
Mark Andrews
b4bbf49418 4439. [bug] Address race conditions getting ownernames of nodes. 
[RT #43005]

(cherry picked from commit c7e021e2e6)
 2016-08-12 14:09:34 +10:00
Mark Andrews
f3a4a5f8db 4438. [func] Use LIFO rather than FIFO when processing startup 
notify and refresh queries. [RT #42825]

(cherry picked from commit 5734cd3943)
 2016-08-12 11:34:29 +10:00
Mark Andrews
2fb6d3782b 4437. [func] Minimal-responses now has two additional modes 
no-auth and no-auth-recursive which suppress
                        adding the NS records to the authority section
                        as well as the associated address records for the
                        nameservers. [RT #42005]

(cherry picked from commit 78e31dd187)
 2016-08-12 10:49:57 +10:00
Mark Andrews
bc09fd1365 4436. [func] Return TLSA records as additional data for MX and SRV 
lookups. [RT #42894]

(cherry picked from commit bb900e62bf)
 2016-08-12 10:10:30 +10:00
Evan Hunt
770fe3dcab [v9_11] remove spurious newline in EDNS EXPIRE logging 
Patch submitted by Tony Finch (dot@dotat.at).
 2016-08-10 09:26:40 -07:00
Mark Andrews
3a71cd8ca3 4429. [bug] Address potential use after free on fclose() error. 
[RT #42976]

(cherry picked from commit c1915935cf)
 2016-08-08 09:51:13 +10:00