upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-23 18:04:10 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
22449 commits 18 branches 854 tags 440 MiB
Commit graph

64 commits

Author SHA1 Message Date
Tinderbox User
cc2a515684 update copyright notice 2014-03-04 23:46:15 +00:00
Evan Hunt
b454c03196 [master] use ANSI prototypes, clean up some casts 2014-03-04 10:42:25 -08:00
Evan Hunt
98922b2b2b [master] merge several interdependent fixes 
3760.   [bug]           Improve SIT with native PKCS#11 and on Windows.
			[RT #35433]

3759.   [port]          Enable delve on Windows. [RT #35441]

3758.   [port]          Enable export library APIs on windows. [RT #35382]
 2014-02-26 19:00:05 -08:00
Mark Andrews
e676a59686 update copyrights 2014-02-20 10:53:11 +11:00
Mark Andrews
b5f6271f4d 3744. [experimental] SIT: send and process Source Identity Tokens 
(which are similar to DNS Cookies by Donald Eastlake)
                        and are designed to help clients detect off path
                        spoofed responses and for servers to detect legitimate
                        clients.

                        SIT use a experimental EDNS option code (65001).

                        SIT can be enabled via --enable-developer or
                        --enable-sit.  It is on by default in Windows.

                        RRL processing as been updated to know about SIT with
                        legitimate clients not being rate limited. [RT #35389]
 2014-02-19 12:53:42 +11:00
Evan Hunt
dbb012765c [master] merge libiscpk11 to libisc 
3735.	[cleanup]	Merged the libiscpk11 library into libisc
			to simplify dependencies. [RT #35205]
 2014-02-11 21:20:28 -08:00
Evan Hunt
90b513b2a0 [master] another build fix for pkcs11+atf+libtool 2014-01-15 12:07:04 -08:00
Evan Hunt
ba751492fc [master] native PKCS#11 support 
3705.	[func]		"configure --enable-native-pkcs11" enables BIND
			to use the PKCS#11 API for all cryptographic
			functions, so that it can drive a hardware service
			module directly without the need to use a modified
			OpenSSL as intermediary (so long as the HSM's vendor
			provides a complete-enough implementation of the
			PKCS#11 interface). This has been tested successfully
			with the Thales nShield HSM and with SoftHSMv2 from
			the OpenDNSSEC project. [RT #29031]
 2014-01-14 15:40:56 -08:00
Evan Hunt
903247531a [master] portable replacement for timegm() 2014-01-10 19:22:02 -08:00
Mark Andrews
a7c412f37c update copyrights 2014-01-11 07:07:56 +11:00
Mark Andrews
fd0f3e7cd8 add unit test for isc_time_parsehttptimestamp 2014-01-11 00:30:41 +11:00
Tinderbox User
431a83fb29 update copyright notice 2014-01-09 23:46:35 +00:00
Evan Hunt
e851ea8260 [master] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
 2014-01-08 16:39:05 -08:00
Mark Andrews
0a47bc90af 3668. [bug] Fix cast in lex.c which could see 0xff treated as eof. 
[RT #34993]
 2013-11-11 10:49:28 +11:00
Evan Hunt
5b7abbef51 [master] added isc_safe_memcmp() 
3611.	[bug]		Improved resistance to a theoretical authentication
			attack based on differential timing.  [RT #33939]
 2013-07-09 11:47:16 -07:00
Tinderbox User
5924e4ace0 update copyright notice 2013-06-10 23:46:19 +00:00
Evan Hunt
e59937c728 [rt33746] use CRC64 for map file error detection 
3591.	[func]		Use CRC-64 to detect map file corruption at load
			time. [RT #33746]
 2013-06-10 14:19:22 -07:00
Mark Andrews
45b727f651 silence coverity warnings 2013-04-11 17:07:50 +10:00
Mark Andrews
22b5363195 printf -> fprintf 2013-03-26 16:40:14 +11:00
Tinderbox User
313b0ea9f2 update copyright notice 2013-03-23 23:46:06 +00:00
Evan Hunt
cd594861c2 [master] add missing include 2013-03-22 14:50:22 -07:00
Evan Hunt
67adc03ef8 [master] add DSCP support 
3535.	[func]		Add support for setting Differentiated Services Code
			Point (DSCP) values in named.  Most configuration
			options which take a "port" option (e.g.,
			listen-on, forwarders, also-notify, masters,
			notify-source, etc) can now also take a "dscp"
			option specifying a code point for use with
			outgoing traffic, if supported by the underlying
			OS. [RT #27596]
 2013-03-22 14:05:33 -07:00
Mark Andrews
36b3ac4dce add <isc/util.h> 2013-02-27 16:14:44 +11:00
Mark Andrews
fdc5f1702e silence compiler warnings 2013-02-27 15:57:46 +11:00
Mark Andrews
609b8d0817 update copyrights 2013-02-27 12:27:58 +11:00
Mark Andrews
30b7c81c13 3500. [port] Support NAPTR regular expression validation on 
all platforms.  [RT #32688]
 2013-02-27 08:59:04 +11:00
Tinderbox User
573d78f3d5 update copyright notice 2013-02-21 23:45:56 +00:00
Evan Hunt
df925e6c66 [master] add zone memory context pools 
3492.	[bug]		Fixed a regression in zone loading performance
			due to lock contention. [RT #30399]
 2013-02-20 21:39:05 -08:00
Tinderbox User
e38affadb3 update copyright notice 2013-02-05 23:45:50 +00:00
Mark Andrews
7d517b64d5 explict cast to (char *) from (void *) to silence compiler warning in %s checking 2013-02-05 14:24:32 +11:00
Tinderbox User
d91e5a75df update copyright notice 2013-01-02 23:45:51 +00:00
Tinderbox User
024cf50d12 update copyright notice 2013-01-01 23:45:47 +00:00
Evan Hunt
47c5b8af92 [master] silence coverity warnings 
3401.	[bug]		Addressed Coverity warnings. [RT #31484]
 2012-10-23 22:04:06 -07:00
Mark Andrews
611dc88768 3390. [bug] Silence clang compiler warnings. [RT #30417] 2012-10-06 14:20:45 +10:00
Mark Andrews
96f1aa2458 add missing extern qualiers 2012-09-17 18:37:24 +10:00
Tinderbox User
14725aff16 update copyright notice 2012-09-12 23:46:13 +00:00
ckb
179d8f4cc8 3374. [bug] isc_parse_uint32 failed to return a range error on 
systems with 64 bit longs [RT #30232]
 2012-09-12 15:08:19 -05:00
Mark Andrews
8e0a15f42f 3370. [bug] Address use after free while shutting down. [RT #30241] 2012-08-22 19:19:30 +10:00
Mark Andrews
c965b18690 3353. [bug] Use a single task for task exclusive operations. 
[RT #29872]
 2012-07-19 23:00:21 +10:00
Mark Andrews
bf8267aa45 reverse bad copyright update 2012-06-29 11:39:47 +10:00
Tinderbox User
247bf37860 update copyright notice 2012-06-29 01:22:18 +00:00
Tinderbox User
5fa46bc916 update copyright notice 2012-03-10 23:45:53 +00:00
Mark Andrews
28a8f5b0de set $Id$ 2012-03-08 00:21:15 +11:00
Evan Hunt
e41d5a00bc added gitignore, removed cvsignore 2012-03-03 23:10:05 -08:00
Mark Andrews
db604cea5c fix all_events loop terminating condition to stop false positives 2011-12-01 22:30:37 +00:00
Evan Hunt
1a01def943 add print.h 2011-11-30 06:10:44 +00:00
Mark Andrews
ed74be8035 #include <isc/print.h> 2011-11-30 06:09:41 +00:00
Evan Hunt
0da3b4a9a7 3228. [tuning] Dynamically grow symbol table to improve zone 
loading performance. [RT #26523]
 2011-11-30 04:27:17 +00:00
Mark Andrews
23daf8948b 3225. [bug] Silence spurious "setsockopt(517, IPV6_V6ONLY) failed" 
messages. [RT #26507]
 2011-11-29 01:03:47 +00:00
Mark Andrews
03e2b1d18d 3223. [bug] 'task_test privilege_drop' generated false positives. 
[RT #26766]
 2011-11-29 00:41:28 +00:00