bind9

mirror of https://github.com/isc-projects/bind9.git synced 2026-02-27 03:51:16 -05:00

Author	SHA1	Message	Date
Tinderbox User	06081a0d61	update copyright notice	2014-04-25 23:45:21 +00:00
Evan Hunt	aefb3e308b	[master] better DDNS in DLZ; mysqldyn 3821. [contrib] Added a new "mysqldyn" DLZ module with dynamic update and transaction support. Thanks to Marty Lee for the contribution. [RT #35656] 3820. [func] The DLZ API doesn't pass the database version to the lookup() function; this can cause DLZ modules that allow dynamic updates to mishandle prerequisite checks. This has been corrected by adding a 'dbversion' field to the dns_clientinfo_t structure. [RT #35656]	2014-04-25 13:06:30 -07:00
Mark Andrews	36e5ac0033	3819. [bug] NSEC3 hashes need to be able to be entered and displayed without padding. This is not a issue for currently defined algorithms but may be for future hash algorithms. [RT #27925]	2014-04-24 18:58:03 +10:00
Evan Hunt	2ae159b376	[master] globally rename "delve" to "delv" 3817. [func] The "delve" command is now spelled "delv" to avoid a namespace collision with the Xapian project. [RT #35801]	2014-04-23 11:14:12 -07:00
Tinderbox User	953189d30e	update copyright notice	2014-04-22 23:45:19 +00:00
Evan Hunt	ec3b216506	[master] masterfile-style 3814. [func] The "masterfile-style" zone option controls the formatting of dumped zone files. Options are "relative" (multiline format) and "full" (one record per line). The default is "relative". [RT #20798]	2014-04-17 17:10:29 -07:00
Evan Hunt	7318bbc262	[master] serial-update-method date; 3811. [func] "serial-update-method date;" sets serial number on dynamic update to today's date in YYYYMMDDNN format. (Thanks to Bradley Forschinger.) [RT #24903]	2014-04-17 16:05:50 -07:00
Evan Hunt	92fe6db3e4	[master] use test -r in system tests 3806. [test] Improved system test portability. [RT #35625]	2014-04-09 20:29:52 -07:00
Evan Hunt	baad8d9fd8	[master] allow null "file" for DLZ or alternate db zones 3803. [bug] "named-checkconf -z" incorrectly rejected zones using alternate data sources for not having a "file" option. [RT #35685]	2014-04-07 13:29:56 -07:00
Mark Andrews	5b60bde47b	use perl	2014-04-07 21:53:47 +10:00
Mark Andrews	a4941d6b5e	update check the correct resigning time is reported in zonestatus test to be more portable	2014-04-07 11:50:50 +10:00
Mark Andrews	0dfd942409	3798. [bug] 'rndc zonestatus' was reporting the wrong re-signing time. [RT #35659]	2014-04-04 11:33:49 +11:00
Tinderbox User	180d8b0eec	update copyright notice	2014-03-30 23:46:03 +00:00
Mukund Sivaraman	ef9334d745	3795. [bug] Make named-checkconf detect raw masterfiles for hint zones and reject them. [RT #35268] Squashed commit of the following: commit 5b0254711d6b77940d6217b9131b9d401df8a866 Author: Mukund Sivaraman <muks@isc.org> Date: Fri Mar 28 02:09:01 2014 +0530 Remove redundant helper function commit a4341c1a2ba830c8cee1def57a533f987f67c3dc Author: Mark Andrews <marka@isc.org> Date: Thu Jan 30 10:08:17 2014 +1100 error out if masterfile-format raw is specified for a hint zone.	2014-03-31 04:55:37 +05:30
Evan Hunt	22e29471c7	[master] check allow-update in view/options 3787. [bug] The code that checks whether "auto-dnssec" is allowed was ignoring "allow-update" ACLs set at the options or view level. [RT #29536]	2014-03-12 21:36:01 -07:00
Mark Andrews	6f49db82ab	calling $TSIGKEYGEN doesn't work with libtool.	2014-03-13 15:11:46 +11:00
Tinderbox User	0add14467b	update copyright notice	2014-03-12 23:46:05 +00:00
Evan Hunt	89740699cd	[master] fixed 'fixed' 3784. [bug] Using "rrset-order fixed" when it had not been enabled at compile time caused inconsistent results. It now works as documented, defaulting to cyclic mode. [RT #28104]	2014-03-12 08:45:44 -07:00
Evan Hunt	46bc64f4b1	[master] tsig-keygen 3783. [func] "tsig-keygen" is now available as an alternate command name for "ddns-confgen". It generates a TSIG key in named.conf format without comments. [RT #35503]	2014-03-12 08:29:15 -07:00
Mark Andrews	bab2bf7dfd	expr length arg is not portable	2014-03-12 13:59:41 +11:00
Evan Hunt	62258ada48	[master] auto-generate salt 3781. [func] Specifying "auto" as the salt when using "rndc signing -nsec3param" causes named to generate a 64-bit salt at random. [RT #35322]	2014-03-11 08:46:58 -07:00
Evan Hunt	7b46a4aa41	[master] fix negative numbers in $GENERATE 3780. [bug] $GENERATE handled negative numbers incorrectly. [RT #25528]	2014-03-10 11:55:32 -07:00
Tinderbox User	e9c7fe450e	update copyright notice	2014-03-06 23:46:08 +00:00
Evan Hunt	741dfd3ccd	[master] tests directory cleanup	2014-03-06 11:11:27 -08:00
Tinderbox User	8ab8cd1fa6	update copyright notice	2014-03-01 23:46:15 +00:00
Evan Hunt	ec88c1fdff	[master] capture stderr in systests.output - also tidied up runall.sh summary output	2014-02-28 21:59:28 -08:00
Evan Hunt	98922b2b2b	[master] merge several interdependent fixes 3760. [bug] Improve SIT with native PKCS#11 and on Windows. [RT #35433] 3759. [port] Enable delve on Windows. [RT #35441] 3758. [port] Enable export library APIs on windows. [RT #35382]	2014-02-26 19:00:05 -08:00
Evan Hunt	061f61dd3b	[master] add files omitted from coverage test	2014-02-26 08:54:21 -08:00
Evan Hunt	3a01ded15d	[master] enable windows python tools 3757. [port] Enable Python tools (dnssec-coverage, dnssec-checkds) to run on Windows. [RT #34355]	2014-02-26 08:43:50 -08:00
Mark Andrews	cc00679829	wait for zone to transfer	2014-02-23 14:06:15 +11:00
Evan Hunt	999926955b	[master] fix test error	2014-02-21 08:05:40 -08:00
Tinderbox User	20a96edbf9	update copyright notice	2014-02-20 23:46:35 +00:00
Mark Andrews	caac342072	add @ISC_OPENSSL_LIBS@	2014-02-21 00:35:22 +11:00
Mark Andrews	16134801ce	3750. [experimental] Partially implement EDNS EXPIRE option as described in draft-andrews-dnsext-expire-00. Retrivial of remaining time to expiry from slave zones is supported. EXPIRE uses an experimental option code (65002) and is subject to change. [RT #35416]	2014-02-20 14:56:20 +11:00
Mark Andrews	86a85a3bbd	don't error on rpz percentage checks as they fail inconsistently on virtual machines	2014-02-20 12:22:14 +11:00
Mark Andrews	e676a59686	update copyrights	2014-02-20 10:53:11 +11:00
Mark Andrews	7e2e41df67	3748. [func] Use delve to test dns_client interfaces. [RT #35383 ]	2014-02-19 19:33:21 +11:00
Evan Hunt	35f6a21f5f	[master] max-zone-ttl 3746. [func] New "max-zone-ttl" option enforces maximum TTLs for zones. If loading a zone containing a higher TTL, the load fails. DDNS updates with higher TTLs are accepted but the TTL is truncated. (Note: Currently supported for master zones only; inline-signing slaves will be added.) [RT #38405]	2014-02-18 23:26:50 -08:00
Mark Andrews	b5f6271f4d	3744. [experimental] SIT: send and process Source Identity Tokens (which are similar to DNS Cookies by Donald Eastlake) and are designed to help clients detect off path spoofed responses and for servers to detect legitimate clients. SIT use a experimental EDNS option code (65001). SIT can be enabled via --enable-developer or --enable-sit. It is on by default in Windows. RRL processing as been updated to know about SIT with legitimate clients not being rate limited. [RT #35389]	2014-02-19 12:53:42 +11:00
Tinderbox User	3fd910dec5	update copyright notice	2014-02-17 23:46:29 +00:00
Evan Hunt	5efcb3a3e2	[master] fix test errors - require 5.006_001 - cut off the least significant figures of rrsig dates before comparison to avoid integer overflow	2014-02-17 08:40:02 -08:00
Evan Hunt	7ba88e2a95	[master] fix dnssec test errors	2014-02-16 14:14:56 -08:00
Evan Hunt	72fd845d5a	[master] remove accidentally committed changes	2014-02-16 13:59:19 -08:00
Evan Hunt	792915beb0	[master] fix accidental dig breakage	2014-02-16 13:42:42 -08:00
Evan Hunt	dbb012765c	[master] merge libiscpk11 to libisc 3735. [cleanup] Merged the libiscpk11 library into libisc to simplify dependencies. [RT #35205]	2014-02-11 21:20:28 -08:00
Tinderbox User	6874b16e4a	update copyright notice	2014-02-10 23:46:26 +00:00
Mark Andrews	d7729155df	3734. [bug] Improve building with libtool. [RT #35314 ]	2014-02-10 15:01:06 +11:00
Tinderbox User	81f58902eb	update copyright notice	2014-02-07 23:46:39 +00:00
Mark Andrews	2870ee1fe5	use exit 255	2014-02-08 09:43:16 +11:00
Mark Andrews	0584ab7e9c	#include <isc/util.h>	2014-02-07 16:46:11 +11:00
Evan Hunt	7983f6f77a	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-02-06 19:41:48 -08:00
Evan Hunt	166341d554	[master] add no-case-compress 3731. [func] Added a "no-case-compress" ACL, which causes named to use case-insensitive compression (disabling change #3645) for specified clients. (This is useful when dealing with broken client implementations that use case-sensitive name comparisons, rejecting responses that fail to match the capitalization of the query that was sent.) [RT #35300]	2014-02-06 19:37:26 -08:00
Mark Andrews	a928b54fa9	silence unused parameter	2014-02-07 11:47:32 +11:00
Evan Hunt	a165a17a81	[master] dnssec-keygen fixes 3730. [cleanup] Added "never" as a synonym for "none" when configuring key event dates in the dnssec tools. [RT #35277] 3729. [bug] dnssec-kegeyn could set the publication date incorrectly when only the activation date was specified on the command line. [RT #35278]	2014-02-06 15:59:14 -08:00
Tinderbox User	7fa75f8e0e	update copyright notice	2014-02-06 23:46:25 +00:00
Tinderbox User	0666e6db54	update copyright notice	2014-01-31 23:46:22 +00:00
Evan Hunt	d0803df331	[master] fixed geoip in blackhole ACLs 3722. [bug] Using geoip ACLs in a blackhole statement could cause a segfault. [RT #35272]	2014-01-30 17:03:32 -08:00
Tinderbox User	04b5785fde	update copyright notice	2014-01-29 23:46:19 +00:00
Mark Andrews	75d747e1c5	3719. [bug] Address memory leak in in peer.c. [RT #35255 ]	2014-01-30 07:54:52 +11:00
Mark Andrews	61932ed917	copyright cleanups	2014-01-29 14:05:46 +11:00
Tinderbox User	aa7b16ec2a	update copyright notice	2014-01-21 23:46:16 +00:00
Evan Hunt	d58e33bfab	[master] testcrypto.sh in system tests 3714. [test] System tests that need to test for cryptography support before running can now use a common "testcrypto.sh" script to do so. [RT #35213]	2014-01-20 16:08:09 -08:00
Evan Hunt	e45d0508c3	[master] skip unnecesary also-notify data 3713. [bug] Save memory by not storing "also-notify" addresses in zone objects that are configured not to send notify requests. [RT #35195]	2014-01-20 15:53:51 -08:00
Tinderbox User	dfd5f3b388	update copyright notice	2014-01-18 23:46:13 +00:00
Evan Hunt	12bf5d4796	[master] address several issues with native pkcs11	2014-01-18 11:51:07 -08:00
Tinderbox User	c0682c2367	update copyright notice	2014-01-17 23:46:32 +00:00
Francis Dupont	e02659b241	applied emacs filled-paragraph (ESC-q) to reindent SUBDIRS	2014-01-17 14:14:30 +01:00
Tinderbox User	1633aead67	update copyright notice	2014-01-16 23:46:28 +00:00
Mark Andrews	db8938c993	3710. [bug] Address double dns_zone_detach when switching to using automatic empty zones from regular zones. [RT #35177]	2014-01-17 10:04:16 +11:00
Evan Hunt	5760095601	[master] skip xfer test with Net::DNS 0.73	2014-01-16 09:50:23 -08:00
Francis Dupont	6080262ffe	add iscpk11 dep in lwresd system test	2014-01-16 16:06:04 +01:00
Mark Andrews	e20788e121	update copyrights	2014-01-16 15:19:24 +11:00
Tinderbox User	bf0266f286	update copyright notice	2014-01-14 23:46:22 +00:00
Evan Hunt	ba751492fc	[master] native PKCS#11 support 3705. [func] "configure --enable-native-pkcs11" enables BIND to use the PKCS#11 API for all cryptographic functions, so that it can drive a hardware service module directly without the need to use a modified OpenSSL as intermediary (so long as the HSM's vendor provides a complete-enough implementation of the PKCS#11 interface). This has been tested successfully with the Thales nShield HSM and with SoftHSMv2 from the OpenDNSSEC project. [RT #29031]	2014-01-14 15:40:56 -08:00
Mark Andrews	07fb9b8330	3704. [protocol] Accept integer timestamps in RRSIG records. [RT #35185 ]	2014-01-14 16:12:30 +11:00
Tinderbox User	2cf1d5b098	update copyright notice	2014-01-12 23:46:23 +00:00
Mark Andrews	fb756ba304	3703. [func] Prefetch about to expire records if they are queried for, see prefetch option for details. [RT #35041]	2014-01-12 21:29:15 +11:00
Tinderbox User	f70a10508f	update copyright notice	2014-01-11 23:46:17 +00:00
Evan Hunt	7d2b185f16	[master] new dnssec-coverage options 3702. [func] 'dnssec-coverage -l' option specifies a length of time to check for coverage; events further into the future are ignored. 'dnssec-coverage -z' checks only ZSK events, and 'dnssec-coverage -k' checks only KSK events. (Thanks to Peter Palfrader.) [RT #35168]	2014-01-10 17:53:21 -08:00
Mark Andrews	a7c412f37c	update copyrights	2014-01-11 07:07:56 +11:00
Mark Andrews	ff6de396a9	3701. [func] named-checkconf can now suppress the printing of shared secrets by specifying '-x'. [RT #34465]	2014-01-10 16:56:36 +11:00
Tinderbox User	431a83fb29	update copyright notice	2014-01-09 23:46:35 +00:00
Mark Andrews	d4eb30fa2d	stop spamming system logs	2014-01-09 16:23:40 +11:00
Tinderbox User	e8914b47a2	update copyright notice	2014-01-05 23:46:12 +00:00
Mark Andrews	e9649ece3b	3696. [bug] dig failed to handle AXFR style IXFR responses which span multiple messages. [RT #35137]	2014-01-06 06:22:30 +11:00
Tinderbox User	9c61ab2c99	update copyright notice	2013-12-21 23:46:16 +00:00
Evan Hunt	c14ba71070	[master] warn if key-directory doesn't exist 3694. [bug] Warn when a key-directory is configured for a zone, but does not exist or is not a directory. [RT #35109]	2013-12-20 14:57:03 -08:00
Tinderbox User	7c329be7c0	update copyright notice	2013-12-15 23:46:14 +00:00
Tinderbox User	eade480b33	update copyright notice	2013-12-13 23:46:17 +00:00
Evan Hunt	0606c47750	[master] correct dispatch address/port check 3690. [bug] Iterative responses could be missed when the source port for an upstream query was the same as the listener port (53). [RT #34925]	2013-12-12 22:39:12 -08:00
Evan Hunt	9b895f30f1	[master] fix insecure delegation across static-stub zones 3689. [bug] Fixed a bug causing an insecure delegation from one static-stub zone to another to fail with a broken trust chain. [RT #35081]	2013-12-12 22:19:33 -08:00
Tinderbox User	de77dcc2c1	update copyright notice	2013-12-11 23:47:38 +00:00
Evan Hunt	4e1d84a33c	typo	2013-12-11 14:00:07 -08:00
Evan Hunt	0bbe3273a2	[master] dnssec-signzone -Q 3686. [func] "dnssec-signzone -Q" drops signatures from keys that are still published but no longer active. [RT #34990]	2013-12-11 13:25:21 -08:00
Tinderbox User	79812068ff	update copyright notice	2013-12-06 23:47:28 +00:00
Mark Andrews	7d65cbaca0	3684. [bug] The list of included files would grow on reload. [RT 35090]	2013-12-07 09:44:45 +11:00
Curtis Blackburn	8009525601	3682. [bug] Correct the behavior of rndc retransfer to allow inline-signing slave zones to retain NSEC3 parameters instead of reverting to NSEC [RT #34745]	2013-12-04 12:26:20 -06:00
Evan Hunt	d999ca28d4	[master] check hint files in named-checkconf -z 3676. [bug] "named-checkconf -z" now checks zones of type hint and redirect as well as master. [RT #35046]	2013-11-25 12:26:53 -08:00
Mark Andrews	225146b2c8	3674. [bug] RPZ zeroed ttls if the query type was '*'. [RT #35026 ]	2013-11-18 11:22:59 +11:00
Mark Andrews	ced4f794cf	check expected responses	2013-11-15 13:22:48 +11:00
Mark Andrews	3ac9ef6a6d	move forwarder server to 10.53.0.5	2013-11-15 13:16:51 +11:00
Tinderbox User	432d8fa3b4	update copyright notice	2013-11-14 23:46:24 +00:00
Evan Hunt	434bfc3dfa	[master] "in-view" zone option 3673. [func] New "in-view" zone option allows direct sharing of zones between views. [RT #32968]	2013-11-13 20:35:40 -08:00
Evan Hunt	0618287859	[master] allow setting local addr in dns_client 3672. [func] Local address can now be specified when using dns_client API. [RT #34811]	2013-11-13 10:52:22 -08:00
Mark Andrews	c4004ada2a	adjust sync point	2013-11-13 15:44:54 +11:00
Mark Andrews	6b0434299b	3671. [bug] Don't allow dnssec-importkey overwrite a existing non-imported private key.	2013-11-13 12:01:09 +11:00
Mark Andrews	015f044f7f	remove copyright noticed	2013-11-09 13:55:49 +11:00
Tinderbox User	97c299486a	update copyright notice	2013-11-08 23:46:19 +00:00
Mark Andrews	2048955015	3667. [func] dig: add support to keep the TCP socket open between successive queries (+[no]keepopen). [RT #34918]	2013-11-07 10:50:01 +11:00
Mark Andrews	49c1e0d18d	3666. [func] Add a tool, named-rrchecker, for checking the syntax of individual resource records. This tool is intended to be called by provisioning systems so that the front end does not need to be upgraded to support new DNS record types. [RT #34778]	2013-11-07 10:41:47 +11:00
Mark Andrews	50c67f588e	remove blank (cherry picked from commit 75aa3c6f2ada5dcc657d0858ee4544c7997d9840)	2013-09-23 09:47:30 +10:00
Mark Andrews	9fa2a0deed	3652. [bug] Address bug with rpz-drop policy. [RT #34816 ]	2013-09-21 17:27:43 +10:00
Tinderbox User	bcbb556868	update copyright notice	2013-09-19 23:46:20 +00:00
Evan Hunt	c7965f84c2	[master] comment nzf files 3649. [cleanup] Include a comment in .nzf files, giving the name of the associated view. [RT #34765]	2013-09-19 15:37:09 -07:00
Mark Andrews	88a6dc33b7	only generate DSA/ECDSA signatures in named if we have a source of randomness and only on specific platforms	2013-09-19 10:40:38 +10:00
Mark Andrews	7667dd1a03	call zone_settimer; sub test failure was not being detected (cherry picked from commit `ebd7900670`)	2013-09-18 12:57:46 +10:00
Mark Andrews	2c089bf6d2	whitspace	2013-09-16 10:14:07 +10:00
Tinderbox User	a989ffdbb3	update copyright notice	2013-09-10 23:46:14 +00:00
Evan Hunt	78f20eda3c	[master] clean up tests, update .gitignore	2013-09-09 19:37:17 -07:00
Mark Andrews	3d3aa9cde6	use -r rather then -f	2013-09-09 12:19:30 +10:00
Mark Andrews	23c73a1848	only test dsa if we have a random device	2013-09-09 11:42:58 +10:00
Tinderbox User	63737247d1	update copyright notice	2013-09-05 23:46:16 +00:00
Mark Andrews	cb69994ff8	3645. [protocol] Use case sensitive compression when responding to queries. [RT #34737]	2013-09-05 12:22:34 +10:00
Evan Hunt	690bd6bf5d	[master] fix inline test, add importkey to win32 build	2013-09-04 18:56:50 -07:00
Mark Andrews	5b9469c0db	test for ECDSAP256SHA256 support	2013-09-04 22:33:31 +10:00
Mark Andrews	0c91911b4d	3642. [func] Allow externally generated DNSKEY to be imported into the DNSKEY management framework. A new tool dnssec-importkey is used to this. [RT #34698]	2013-09-04 13:53:02 +10:00
Mark Andrews	b5f4cc132e	3641. [bug] Handle changes to sig-validity-interval settings better. [RT #34625]	2013-09-04 13:45:00 +10:00
Mark Andrews	d6f99498d6	3639. [bug] Treat type 65533 (KEYDATA) as opaque except when used in a key zone. [RT #34238]	2013-09-04 13:14:06 +10:00
Tinderbox User	4b2c089cd8	update copyright notice	2013-08-19 23:46:14 +00:00
Mark Andrews	997c2c5116	3636. [bug] Automatic empty zones now behave better with forward only "zones" beneath them. [RT #34583]	2013-08-19 09:18:28 +10:00
Tinderbox User	33d6c4a086	update copyright notice	2013-08-16 23:46:11 +00:00
Mark Andrews	e548e07a9a	3636. [bug] Automatic empty zones now behave better with forward only "zones" beneath them. [RT #34583]	2013-08-16 13:54:23 +10:00
Tinderbox User	377b774598	update copyright notice	2013-08-15 23:46:17 +00:00
Mark Andrews	d1e22676de	3635. [bug] Signatures were not being removed from a zone with only KSK keys for a algorithm. [RT #24439]	2013-08-15 13:37:07 +10:00
Mark Andrews	7ace327795	3632. [bug] Signature from newly inactive keys were not being removed. [RT #32178]	2013-08-15 10:48:05 +10:00
Mark Andrews	75ae74f8fd	3629. [func] Allow the printing of cryptographic fields in DNSSEC records by dig to be suppressed (dig +nocrypto). [RT #34534]	2013-08-12 15:37:51 +10:00
Mark Andrews	16bd30ae69	3628. [func] Report DNSKEY key id's when dumping the cache. [RT #34533]	2013-08-12 14:38:26 +10:00
Mark Andrews	df0892aea6	3627. [bug] RPZ changes were not effective on slaves. [RT #34450 ]	2013-08-09 13:23:01 +10:00
Tinderbox User	f378953f3b	update copyright notice	2013-08-07 23:46:12 +00:00
Mark Andrews	f45f654185	3625. [bug] Don't send notify messages to machines outside of the test setup.	2013-08-07 15:48:55 +10:00
Evan Hunt	3cea62e3df	[master] fix bad test output when server fails	2013-07-25 11:15:53 -07:00
Tinderbox User	44c016134f	update copyright notice	2013-07-13 23:46:06 +00:00
Evan Hunt	9a32b8d8f8	[master] add a sleep to prevent intermittent test failure	2013-07-13 15:30:56 -07:00
Evan Hunt	421d4a0647	[master] rpz work 3620. [func] Added "rpz-client-ip" policy triggers, enabling RPZ responses to be configured on the basis of the client IP address; this can be used, for example, to blacklist misbehaving recursive or stub resolvers. [RT #33605] 3619. [bug] Fixed a bug in RPZ with "recursive-only no;" [RT #33776]	2013-07-12 14:46:47 -07:00
Evan Hunt	0b4ed61d20	[master] added missing file	2013-07-12 00:01:33 -07:00
Evan Hunt	0949306cb9	[master] check include file mtimes 3618. [func] "rndc reload" now checks modification times of include files as well as master files to determine whether to skip reloading a zone. [RT #33936]	2013-07-11 16:32:36 -07:00
Evan Hunt	964bdcd7ad	[master] don't go nonresponsive during "rndc reload" 3617. [bug] Named was failing to answer queries during "rndc reload" [RT #34098]	2013-07-11 10:54:21 -07:00
Tinderbox User	77b1d950a6	update copyright notice	2013-07-10 23:46:10 +00:00
Evan Hunt	1d26c6b9b8	[master] count the test cases correctly	2013-07-09 22:52:43 -07:00
Evan Hunt	927e4c9fec	[master] address race conditions with removing inline zones 3513. [bug] named could crash when deleting inline-signing zones with "rndc delzone". [RT #34066]	2013-07-09 17:39:21 -07:00
Evan Hunt	4ba84a5bdb	[master] use egrep as solaris doesn't like grep -E	2013-07-01 14:08:31 -07:00
Evan Hunt	9d4ec6d2c5	[master] "flushtree -all" no longer optional Updated CHANGES note: 3606. [func] "rndc flushtree" now flushes matching records in the address database and bad cache as well as the DNS cache. (Previously only the DNS cache was flushed.) [RT #33970]	2013-06-30 18:53:48 -07:00
Evan Hunt	9fa5a723e1	[master] "rndc flushtree -all <name>" 3606. [func] "rndc flushtree -all" flushes matching records in the ADB and bad cache as well as the DNS cache. (Without the "-all" option, flushtree will still only flush records from the DNS cache.) [RT #33970]	2013-06-26 14:59:32 -07:00
Mark Andrews	945ce145e0	Use extended regular expression as HPUX doesn't like grep -w '$TXT\\|ANY$'	2013-06-17 12:59:50 +10:00
Evan Hunt	be3f14af79	[master] fix system test failure - needed to specify session key file	2013-06-15 01:39:23 -07:00
Tinderbox User	53e8ebc8f0	update copyright notice	2013-06-14 23:46:13 +00:00
Evan Hunt	b7e40659ef	[master] rebuild resigning heaps when loading map files 3597. [bug] Ensure automatic-resigning heaps are reconstructed when loading zones in map format. [RT #33381]	2013-06-14 10:16:10 -07:00
Tinderbox User	1443158c11	update copyright notice	2013-06-13 23:46:13 +00:00
Mark Andrews	8e15d5eb3a	3593. [func] Update EDNS processing to better track remote server capabilities. [RT #30655]	2013-06-12 11:31:30 +10:00
Tinderbox User	1ec9fe2c3c	update copyright notice	2013-06-08 23:46:57 +00:00
Evan Hunt	89be55dc90	[master] improve RRL handling of deferrals and slipped NXDOMAIN 3590. [bug] When using RRL on recursive servers, defer rate-limiting until after recursion is complete; also, use correct rcode for slipped NXDOMAIN responses. [RT #33604]	2013-06-08 13:17:33 -07:00
Mark Andrews	c6eb92beb1	3589. [func] Report serial numbers in when starting zone transfers. Report accepted NOTIFY requests including serial. [RT# 33037]	2013-06-08 09:49:03 +10:00
Mark Andrews	8144dc702b	3587. [func] 'named -g' now checks the logging configuration but does not use it. [RT #33473]	2013-06-06 11:08:16 +10:00
Tinderbox User	099fa63e55	update copyright notice	2013-06-05 23:46:14 +00:00
Evan Hunt	5f1dc0d505	[master] add "-clean" option to "rndc delzone" 3585. [func] "rndc delzone -clean" option removes zone files when deleting a zone. [RT #33570]	2013-06-04 21:26:29 -07:00
Mark Andrews	1e34fe9044	3582. [bug] Silence false positive warning regarding missing file directive for inline slave zones. [RT #33662]	2013-06-04 11:34:03 +10:00
Tinderbox User	6d4487398e	update copyright notice	2013-05-29 23:46:19 +00:00
Mark Andrews	5f238c3c64	3577. [bug] Handle zero TTL values better. [RT #33411 ]	2013-05-29 18:10:11 +10:00
Tinderbox User	be899a549d	update copyright notice	2013-05-10 23:46:06 +00:00
Curtis Blackburn	428dd5c588	3573. [bug] "rndc addzone" and "rndc delzone" incorrectly handled zone names containing punctuation marks and other nonstandard characters. [RT #33419]	2013-05-10 16:12:27 -05:00
Tinderbox User	2147c42301	update copyright notice	2013-05-03 23:46:12 +00:00
Evan Hunt	34f3693b93	[master] log forwarded updates 3566. [func] Log when forwarding updates to master. [RT #33240]	2013-05-03 14:05:32 -07:00
Evan Hunt	1a076410c2	[master] fix corrupt map file handling 3564. [bug] Improved handling of corrupted map files. [RT #33380]	2013-05-03 14:00:12 -07:00
Evan Hunt	03b5d2689d	[master] add hash to map files 3562. [func] Update map file header format to include a SHA-1 hash of the database content, so that corrupted map files can be rejected at load time. [RT #32459]	2013-05-01 22:20:02 -07:00
Tinderbox User	7105104b6e	update copyright notice	2013-04-30 06:39:16 +00:00
Tinderbox User	055fd5fcba	update copyright notice	2013-04-30 05:03:43 +00:00
Tinderbox User	954e43e605	update copyright notice	2013-04-30 04:51:59 +00:00
Mark Andrews	26bb3b7a67	3559. [func] Check that both forms of Sender Policy Framework records exist or do not exist. [RT #33355]	2013-04-30 13:49:41 +10:00
Tinderbox User	5655174c2c	update copyright notice	2013-04-29 23:46:13 +00:00
Mark Andrews	9a785712f1	3558. [bug] IXFR of a DLZ stored zone was broken. [RT #33331 ]	2013-04-29 15:46:54 +10:00
Mark Andrews	ec8a802114	3557. [bug] Reloading redirect zones was broken. [RT #33292 ]	2013-04-29 15:20:09 +10:00
Evan Hunt	0e932023c4	[master] resume overriding rrl test failures	2013-04-25 20:02:59 -07:00
Evan Hunt	a6d43d18b1	[master] fixed several RRL issues 3554. [bug] RRL failed to correctly rate-limit upward referrals and failed to count dropped error responses in the statistics. [RT #33225]	2013-04-25 14:42:44 -07:00
Mark Andrews	78e179da20	egrep was not precise enough	2013-04-13 22:34:35 +10:00
Evan Hunt	b99bfa184b	[master] unify internal and export libraries 3550. [func] Unified the internal and export versions of the BIND libraries, allowing external clients to use the same libraries as BIND. [RT #33131]	2013-04-10 13:49:57 -07:00
Mark Andrews	cc444c73d5	add sleep 1 to loop	2013-04-10 21:35:36 +10:00
Tinderbox User	526cc7c2c0	update copyright notice	2013-04-09 23:46:07 +00:00
Mark Andrews	1cc4695f0d	3547. [bug] Some malformed unknown rdata records were not properly detected and rejected. [RT #33129]	2013-04-08 09:55:14 +10:00
Mark Andrews	3a6d62c59f	3546. [func] Add EUI48 and EUI64 types. [RT #33082 ]	2013-04-05 09:07:28 +11:00
Mark Andrews	c2838610c6	s/-e/-x/	2013-04-05 07:37:40 +11:00
Tinderbox User	f9adb48aea	update copyright notice	2013-04-03 23:46:07 +00:00
Mark Andrews	085496379f	add SAMPLE to the list of varables to be exported (cherry picked from commit `cf3e838fd3`)	2013-04-04 07:27:21 +11:00
Mark Andrews	8013077aa7	3541. [bug] The parts if libdns was not being properly initialized in when built in libexport mode. [RT #33028]	2013-04-03 17:27:40 +11:00
Tinderbox User	313b0ea9f2	update copyright notice	2013-03-23 23:46:06 +00:00
Evan Hunt	67adc03ef8	[master] add DSCP support 3535. [func] Add support for setting Differentiated Services Code Point (DSCP) values in named. Most configuration options which take a "port" option (e.g., listen-on, forwarders, also-notify, masters, notify-source, etc) can now also take a "dscp" option specifying a code point for use with outgoing traffic, if supported by the underlying OS. [RT #27596]	2013-03-22 14:05:33 -07:00
Evan Hunt	4bf686cf5d	[master] zone parsing broken with embedded null 3534. [bug] Extra text after an embedded NULL was ignored when parsing zone files. [RT #32699]	2013-03-21 19:30:10 -07:00
Tinderbox User	ad67363430	update copyright notice	2013-03-21 23:46:12 +00:00
Mark Andrews	15d970cb23	remove broken redundant test	2013-03-21 12:38:16 +11:00
Evan Hunt	831f59eb43	[master] add dnssec-coverage tool 3528. [func] New "dnssec-coverage" command scans the timing metadata for a set of DNSSEC keys and reports if a lapse in signing coverage has been scheduled inadvertently. (Note: This tool depends on python; it will not be built or installed on systems that do not have a python interpreter.) [RT #28098]	2013-03-20 14:39:13 -07:00
Tinderbox User	cfa2326b5c	update copyright notice	2013-03-14 23:46:11 +00:00
Evan Hunt	4eb998928b	[master] algorithm flexibility for rndc 3525. [func] Support for additional signing algorithms in rndc: hmac-sha1, -sha224, -sha256, -sha384, and -sha512. The -A option to rndc-confgen can be used to select the algorithm for the generated key. (The default is still hmac-md5; this may change in a future release.) [RT #20363]	2013-03-13 17:53:11 -07:00
Evan Hunt	21a7fde6ba	[master] handle servfail at DLZ zone apex 3522. [bug] DLZ lookups could fail to return SERVFAIL when they ought to. [RT #32685]	2013-03-11 15:54:03 -07:00
Mark Andrews	fae66f41c5	wait for upstream transfer to complete	2013-03-08 17:14:03 +11:00
Tinderbox User	40b42978b9	update copyright notice	2013-03-05 23:46:17 +00:00
Mark Andrews	ab8ea5c51e	check that the lwresd server has started before querying it (cherry picked from commit 661f1197a200bdd3d2411e9b02a46b93fb1fb083)	2013-03-05 17:24:19 +11:00
Mark Andrews	8e5fce1f9c	update copyrights	2013-03-01 10:39:29 +11:00
Evan Hunt	2a184ff865	[master] accept >4g max-{,a}cache-size 3506. [func] When setting "max-cache-size" and "max-acache-size", the keyword "unlimited" is no longer defined as equal to 4 gigabytes (except on 32-bit platforms); it means literally unlimited. [RT #32358] 3505. [bug] When setting "max-cache-size" and "max-acache-size", larger values than 4 gigabytes could not be set explicitly, though larger sizes were available when setting cache size to 0. This has been corrected; the full range is now available. [RT #32358]	2013-02-28 09:29:12 -08:00
Evan Hunt	501941f0b6	[master] add geoip support 3504. [func] Add support for ACLs based on geographic location, using MaxMind GeoIP databases. Based on code contributed by Ken Brownfield <kb@slide.com>. [RT #30681]	2013-02-27 17:19:39 -08:00
Tinderbox User	bea3baa50c	update copyright notice	2013-02-27 23:46:03 +00:00
Mark Andrews	90e1d62889	check that inlineslave.bk and inlineslave.bk.signed exist	2013-02-28 09:01:16 +11:00
Evan Hunt	40a7e85f3e	[master] better zone-statistics syntax 3501. [func] zone-statistics now takes three options: full, terse, and none. "yes" and "no" are retained as synonyms for full and terse, respectively. [RT #29165]	2013-02-27 11:53:58 -08:00
Mark Andrews	b3d3dd301b	ensure test starting conditions are met	2013-02-27 17:02:16 +11:00
Evan Hunt	68357e5241	[master] avoid double-free in rrl - RRL could assert when freeing qname - also, changed test addresses from 192.168/16 to 192.0/16	2013-02-26 19:15:11 -08:00
Evan Hunt	d654c95c96	[master] force 0 exit status from rrl system test RRL system test seems to be highly dependent on system speed. We are leaving it running and reporting results, but forcing it to return PASS unless one or more of the servers crashed or could not start.	2013-02-26 18:46:57 -08:00
Mark Andrews	609b8d0817	update copyrights	2013-02-27 12:27:58 +11:00
Mark Andrews	30314ce9c5	'!' is not portable.	2013-02-26 23:11:43 +11:00
Mark Andrews	118bdfd8c4	3497. [func] When deleting a slave/stub zone using 'rndc delzone' report the files that were being used so they can be cleaned up if desired. [RT #27899] Squashed commit of the following: commit 0e4e69d0c3153fe94aaa375b908cf7e3e45b5059 Author: Mark Andrews <marka@isc.org> Date: Thu Feb 21 17:01:44 2013 +1100 report the zones to be removed rather than removing them commit 5d247ac592eef64c4c467d99af4983b8c1ff998f Author: Mark Andrews <marka@isc.org> Date: Wed Feb 20 15:05:47 2013 +1100 remove slave/stub files when deleting a zone using delzone	2013-02-26 14:48:21 +11:00
Tinderbox User	f97d56e757	update copyright notice	2013-02-25 23:46:03 +00:00
Evan Hunt	94315060c2	[master] RPZ speedup (phase 2, multiple RPZ's) 3495. [func] Support multiple response-policy zones, while improving RPZ performance. [RT #32476]	2013-02-25 12:46:51 -08:00
Evan Hunt	55e5c51e66	[master] DNS RRL 3494. [func] DNS RRL: Blunt the impact of DNS reflection and amplification attacks by rate-limiting substantially- identical responses. [RT #28130]	2013-02-25 12:45:56 -08:00
Tinderbox User	573d78f3d5	update copyright notice	2013-02-21 23:45:56 +00:00
Evan Hunt	a81ae06ed3	[master] forbid inline-signing slave with no file 3491. [bug] Slave zones using inline-signing must specify a file name. [RT #31946]	2013-02-20 14:01:31 -08:00
Evan Hunt	2425d8bb7c	[master] truncate logged rdata if too long 3490. [bug] When logging RDATA during update, truncate if it's too long. [RT #32365] cherry picked from: commit 16ddb566e5a5b57bf925adef2b5543dddc1de49b commit cd97e0c23b09f38aac49aabab66ee13c68b7a3f3 commit d087fa982649c081d58c5bb16e63da3428e2b89d commit d0795bdffef57612dd7654ffd09c9f4216eee2c8	2013-02-20 13:54:52 -08:00
Mark Andrews	3c7df84b20	3488. [bug] Use after free error with DH generated keys. [RT #32649 ]	2013-02-18 20:26:26 +11:00
Tinderbox User	32dc577940	update copyright notice	2013-02-16 23:46:02 +00:00
Mark Andrews	c9297d3759	3487. [bug] Change 3444 was not complete. There was a additional place where the NOQNAME proof needed to be saved. [RT #32629] Squashed commit of the following: commit cdef844f57bd3eb30b1f77135b89b6f9360e8bee Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:27:14 2013 +1100 whitespace commit 60eb7e3f6cdd102d6aaf0fb4ada8c552576e4502 Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:19:51 2013 +1100 return noqname proof with +cd and dlv	2013-02-16 07:45:43 +11:00
Evan Hunt	0b8bd3a4ae	[master] address TKEY bugs 3486. [bug] named could crash when using TKEY-negotiated keys that had been deleted and then recreated. [RT #32506] commit 6a48b9999766d26cddc7cef275cd984b7d53c014 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:59:46 2013 -0800 [rt32506] don't dump key if dump is unimplemented commit d0ae0f44b460bab2e8bb24bba683d3ef69ec1765 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:42:25 2013 -0800 [rt32506] make sure LRU needs adjusting before adjusting it commit 0437f8f06b1cb72a6d5e3c30f27febca23846d95 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 12:28:28 2013 -0800 [rt32506] demonstrate bugs in tkey test	2013-02-15 10:19:50 -08:00
Tinderbox User	17131a9459	update copyright notice	2013-01-25 23:45:56 +00:00
Evan Hunt	c9611b4573	[master] change "fast" to "map" 3475. [cleanup] Changed name of 'map' zone file format (previously 'fast'). [RT #32458]	2013-01-24 14:20:48 -08:00
Evan Hunt	8f7d23a25c	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-01-23 15:48:47 -08:00
Tinderbox User	3aaa526a94	update copyright notice	2013-01-23 23:45:55 +00:00
Evan Hunt	ffff5d6792	[master] fix dns_request_createvia assert 3474. [bug] nsupdate could assert when the local and remote address families didn't match. [RT #22897]	2013-01-23 15:39:05 -08:00
Evan Hunt	9a0dd99a75	[master] fix incorrect nsec3 check - check for NSEC3 in empty nodes when not due to optout delegations - fixed typo in output ("Bad record NSEC record") - incidentally fixed an error in signzone that caused an incorrect warning about missing DNSKEYs when using -S and -3 together 3473. [bug] dnssec-signzone/verify could incorrectly report an error condition due to an empty node above an opt-out delegation lacking an NSEC3. [RT #32072]	2013-01-23 14:56:00 -08:00
Evan Hunt	214836c184	[master] dump masterfile after successful xfrin 3470. [bug] Slave zones could fail to dump when successfully refreshing after an initial failure. [RT #31276]	2013-01-22 15:49:50 -08:00
Evan Hunt	cbd1fa092e	[master] DLZ fixes - handle malformed answers from DLZ better: - handle dlz_lookup errors better: when the first lookup of a name returns an unexpected failure code, we return it to the caller rather than continuing on to look up the wildcard. we now only continue processing if the return from the first lookup was either ISC_R_SUCCESS or ISC_R_NOTFOUND. - improved backward-compatibility for dlz_version: added a DLZ_DLOPEN_AGE value indicating how many versions back from the current DLZ_DLOPEN_VERSION named will support	2013-01-22 15:13:08 -08:00
Tinderbox User	0a8a14d513	update copyright notice	2013-01-21 23:45:48 +00:00
Evan Hunt	a631c8d9b8	[master] prevent ixfr/ns1 being removed	2013-01-21 14:16:15 -08:00
Evan Hunt	30a7cf3957	[master] add 10.53.0.8 address	2013-01-21 12:36:41 -08:00
Tinderbox User	5ac5300fdf	update copyright notice	2013-01-17 23:46:25 +00:00
Evan Hunt	71f8edccba	[master] fix DNS64 with RPZ-remapped A records 3468. [security] RPZ rules to generate A records (but not AAAA records) could trigger an assertion failure when used in conjunction with DNS64. [RT #32141]	2013-01-17 11:23:30 -08:00
Curtis Blackburn	c8803902d6	[bug] Added checks in dnssec-keygen and dnssec-settime to check for delete date < inactive date. [RT #31719]	2013-01-17 10:59:16 -06:00
Tinderbox User	dc3d68d6fe	update copyright notice	2013-01-11 23:46:02 +00:00
Evan Hunt	b3d116c299	[master] fixed clientinfo version check 3466. [contrib] Corrected the DNS_CLIENTINFOMETHODS_VERSION check in DLZ example driver. [RT #32275]	2013-01-10 19:57:21 -08:00
Tinderbox User	5c6b95ba1b	update copyright notice	2013-01-10 23:46:00 +00:00
Mark Andrews	4801931443	3461. [bug] Negative responses could incorrectly have AD=1 set. [RT #32237]	2013-01-10 23:09:08 +11:00
Evan Hunt	578e319607	[master] add -J option to checkzone/compilezone 3459. [func] Added -J option to named-checkzone/named-compilezone to specify the path to the journal file. [RT #30958]	2013-01-09 16:56:46 -08:00
Tinderbox User	b941edbeb5	update copyright notice	2013-01-09 23:45:53 +00:00
Mark Andrews	c07c2a862e	3458. [bug] Return FORMERR when presented with a overly long domain named in a request. [RT #29682]	2013-01-10 10:30:15 +11:00
Mark Andrews	f1c1aab2c9	3457. [protocol] Add ILNP records (NID, LP, L32, L64). [RT #31836 ]	2013-01-10 08:26:31 +11:00
Mark Andrews	1a592aae29	test eighth interface	2013-01-09 19:08:59 +11:00
Tinderbox User	afe7d4b934	update copyright notice	2013-01-08 23:45:50 +00:00
Mark Andrews	fc0bfa07c7	3453. [bug] 'rndc addzone' of a zone with 'inline-signing yes;' failed. [RT #31960]	2013-01-09 07:40:27 +11:00
Tinderbox User	49503f1d9f	update copyright notice	2013-01-05 23:45:47 +00:00
Mark Andrews	25b95d31ce	3450. [bug] Stop logfileconfig system test spam system logs. [RT #32315] Squashed commit of the following: commit ad40744e2c7dc253b70857bb229def5dd194b418 Author: Mark Andrews <marka@isc.org> Date: Fri Jan 4 17:24:45 2013 +1100 logfileconfig spams the system log files	2013-01-06 07:56:10 +11:00
Tinderbox User	6fe42ff85c	update copyright notice	2013-01-04 23:45:53 +00:00
Evan Hunt	cb0a74fd8d	[master] show signzone errors in pkcs11 test	2013-01-03 19:55:34 -08:00
Evan Hunt	222d38735f	[master] allow-query-on works now 3448. [bug] The allow-query-on ACL was not processed correctly. [RT #29486]	2013-01-03 15:13:45 -08:00
Tinderbox User	d91e5a75df	update copyright notice	2013-01-02 23:45:51 +00:00
Tinderbox User	024cf50d12	update copyright notice	2013-01-01 23:45:47 +00:00
Mark Andrews	ae395e5f97	remove extranous rdata in nxrrset call as it is not ingnored in Net::DNS 0.70	2012-12-21 14:16:41 +11:00
Mark Andrews	ab91ece513	sign_tcp_continuation doesn't work with the newer versions of Net:DNS. Code has been submitted so we don't need to use the sign_tcp_continuation hack in future.	2012-12-21 12:58:58 +11:00
Tinderbox User	9191b6c9e8	update copyright notice	2012-12-20 23:45:48 +00:00
Mark Andrews	b372587363	TSIG no longer has a mac_size method; arcount no longer need to be adjusted	2012-12-21 00:30:14 +11:00
Mark Andrews	f127a35b6c	adjust test to account for blank owner after origin now being rejected	2012-12-19 14:37:56 +11:00
Mark Andrews	4040ff974c	-H not -i sets iterations	2012-12-19 14:18:05 +11:00
Mark Andrews	58c543d840	remove redundant $ORIGINs	2012-12-19 13:34:31 +11:00
Mark Andrews	8462dfb880	3443. [bug] The NOQNAME proof was not being returned from cached insecure responses. [RT #21409]	2012-12-19 09:55:02 +11:00
Mark Andrews	03958ad4b9	3442. [port] Net::DNS 0.69 introduced a non backwards compatible change. [RT #32216]	2012-12-19 08:46:36 +11:00
Mark Andrews	b6f22cc32f	Net::DNS 0.{70,71} doesn't force the TTL to zero for yxrrset, nxrrset and rr_del	2012-12-18 11:43:46 +11:00
Mark Andrews	6301757d64	don't wipe out named.run when restarting	2012-12-14 17:39:22 +11:00
Tinderbox User	b8e2e5dd86	update copyright notice	2012-12-08 23:45:51 +00:00
Mark Andrews	fe898ea0ee	DIG -> $DIG	2012-12-08 15:35:01 +11:00
Mark Andrews	e85702ce5b	3438. [bug] Don't accept unknown data escape in quotes. [RT #32031 ] Squashed commit of the following: commit 7ad3daade513c94a1c92ee7c91c112f161d13ef4 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 15:03:44 2012 +1100 look at the second token to determine if a TXT record in of unknown format or not commit 7df32138462646f6aee84ffa56d02ac24ec8d672 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 12:42:18 2012 +1100 '"\#"' was incorrectly being treated as a unknown data escape sequence.	2012-12-08 14:05:32 +11:00
Mark Andrews	6f7abb89ec	3437. [bug] isc_buffer_init -> isc_buffer_constinit to initialise buffers with constant data. [RT #32064] Squashed commit of the following: commit 3433b96bf11f8c90ccbe412f01d02a6d8bbc2d33 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:41:16 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit c22dbcc1122a0a44f7b46068e0ccbc25353a57d5 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:38:39 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit 900820416c45c1887d0d22d7a010df60a903bd56 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:24:19 2012 +1100 remove isc_buffer_reconstinit commit f815711c17b05f9961786a90b9bae902d3c01494 Author: Mark Andrews <marka@isc.org> Date: Wed Dec 5 15:42:57 2012 +1100 add isc_buffer_constinit	2012-12-08 12:48:57 +11:00
Tinderbox User	aae306e914	update copyright notice	2012-12-07 23:45:48 +00:00
Evan Hunt	abff0f462a	[master] pass client info to DLZ findzone method 3434. [bug] Pass client info to the DLZ findzone() entry point in addition to lookup(). This makes it possible for a database to answer differently whether it's authoritative for a name depending on the address of the client. [RT #31775]	2012-12-06 12:59:36 -08:00
Evan Hunt	177be355d4	[master] handle ISC_R_NOMORE correctly 3433. [bug] dlz_findzone() did not correctly handle ISC_R_NOMORE. [RT #31172]	2012-12-06 12:41:58 -08:00
Evan Hunt	2b8bed6681	[master] multiple-dlz/dlz-nxdomain 3432. [func] Multiple DLZ databases can now be configured. DLZ databases are searched in the order configured, unless set to "search no", in which case a zone can be configured to be retrieved from a particular DLZ database by using a "dlz <name>" option in the zone statement. DLZ databases can support type "master" and "redirect" zones. [RT #27597]	2012-12-06 12:39:52 -08:00
Evan Hunt	de5890da9b	[master] support all algorithms in ddns-confgen 3431. [bug] ddns-confgen: Some valid key algorithms were not accepted. [RT #31927]	2012-12-05 16:36:58 -08:00
Mark Andrews	3ff483ed84	loop 'I:checking expired signatures were updated' test	2012-12-03 09:30:38 +11:00
Mark Andrews	bde9e26d13	add -U 4	2012-11-29 08:12:51 +11:00
Mark Andrews	53e52b463e	adjust looping threshold from 10 to 15	2012-11-28 12:05:56 +11:00
Evan Hunt	8f9a5ae817	[master] correct checkds test	2012-11-27 15:03:55 -08:00
Mark Andrews	b13b452020	3424. [func] dnssec-dsfromkey now emits the hash without spaces. [RT #31951] Squashed commit of the following: commit 7369da0369e1de1fe6c5b5f84df8848b9a0984eb Author: Mark Andrews <marka@isc.org> Date: Fri Nov 23 17:24:04 2012 +1100 dupped/created reversed in log message commit 0cef5faaf3ac22b00ed0f95b6bb7a146cf4cac15 Author: Mark Andrews <marka@isc.org> Date: Fri Nov 23 13:40:14 2012 +1100 remove space from DS hash	2012-11-27 14:22:28 +11:00
Mark Andrews	c22f43b829	limit the number of udp dispatches when testing to 4	2012-11-26 22:11:27 +11:00
ckb	2786b6c53f	3422. [bug] Added a clear error message for when the SOA does not match the referral. [RT #31281]	2012-11-21 16:44:34 -06:00
Mark Andrews	20b95f5ff6	3421. [bug] Named loops when re-signing if all keys are offline. [RT #31916] Squashed commit of the following: commit f47af0ca6793687b9c8d08fd44b0c091ba5a4f9a Author: Mark Andrews <marka@isc.org> Date: Wed Nov 21 17:45:21 2012 +1100 dns_dns_zonediff_t -> dns_zonediff_t, clarify comment commit 344edefc3ee90856a7ff990abe7971925ba843b2 Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:12:26 2012 +1100 commit the zone changes if a keep was marked as being offline commit cad2c2446ebfc20b6d8c4f6dd0d6596d7106cc0f Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:08:29 2012 +1100 check for looping when re-signing expiring.example	2012-11-21 17:48:57 +11:00
Mark Andrews	8737e0d006	HPUX doesn't support 128 threads	2012-11-18 00:25:39 +11:00
Mark Andrews	c3c30fc43c	force integer output	2012-11-17 23:58:50 +11:00
Mark Andrews	55670a1e55	3416. [bug] Named could die on shutdown if running with 128 UDP dispatches per interface. [RT #31743] Squashed commit of the following: commit 1a97c755f8496f65024af0f634c1acf59a0a4252 Author: Mark Andrews <marka@isc.org> Date: Wed Nov 7 07:14:36 2012 +1100 add regression test for RT31743 commit 7b16b5f77fad39478168aac25742823f2fcd825b Author: Mark Andrews <marka@isc.org> Date: Fri Nov 2 23:57:24 2012 +1100 array bounds error when shutting down interface	2012-11-14 07:47:58 +11:00
Mark Andrews	4326ea8b66	use stop.pl to ensure old server is fully shutdown before starting new server	2012-11-08 07:38:13 +11:00
Mark Andrews	30a86ca430	add missing ARPANAME definition	2012-11-06 15:29:01 +11:00
Mark Andrews	e7d8a61783	More for: 3410. [bug] Addressed Coverity warnings. [RT #31626 Squashed commit of the following: commit d94f5463f508773a7b027230cd81b61cf8c9cfce Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 11:52:32 2012 +1100 <string.h> -> <isc/string.h> commit d707d6fb739c6e6df90a864141b418a13d3bccc8 Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 11:48:20 2012 +1100 address coverity warnings	2012-10-30 12:01:39 +11:00
Evan Hunt	f46168b879	[master] allow dnssec options in inline-signing slaves 3408. [bug] Some DNSSEC-related options (update-check-ksk, dnssec-loadkeys-interval, dnssec-dnskey-kskonly) are now legal in slave zones as long as inline-signing is in use. [RT #31078]	2012-10-26 16:14:59 -07:00
Evan Hunt	9c659b618f	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2012-10-24 18:03:54 -07:00
Tinderbox User	a3fb84bd1b	update copyright notice	2012-10-24 23:46:51 +00:00
Evan Hunt	4b3d727d96	[master] remove spurious signatures from glue 3404. [bug] dnssec-signzone: When re-signing a zone, remove RRSIG and NSEC records from nodes that used to be in-zone but are now below a zone cut. [RT #31556]	2012-10-24 15:46:59 -07:00
ckb	24d8211904	[rt25085] 3402. [bug] Correct interface numbers for IPv4 and IPv6 interfaces. [RT #25085]	2012-10-24 14:47:29 -05:00
Evan Hunt	47c5b8af92	[master] silence coverity warnings 3401. [bug] Addressed Coverity warnings. [RT #31484]	2012-10-23 22:04:06 -07:00
Tinderbox User	c37fbb91e3	update copyright notice	2012-10-18 23:46:07 +00:00
Mark Andrews	de0fd68097	3398. [bug] SOA parameters were not being updated with inline signed zones if the zone was modified while the server was offline. [RT #29272]	2012-10-19 10:25:06 +11:00
Mark Andrews	0fbd29837a	3396. [bug] OPT records were incorrectly removed from signed, truncated responses. [RT #31439]	2012-10-18 13:25:06 +11:00
Mark Andrews	415df3c9c0	test for directory existance before calling find	2012-10-16 10:56:42 +11:00
Mark Andrews	4b17401c9c	add test support for dropping edns messages (-T dropedns); ignoring edns in queries (-T noedns); variable max UDP (-T maxudp=value)	2012-10-16 10:23:08 +11:00
Mark Andrews	1721e1f2a6	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2012-10-07 11:35:56 +11:00
Tinderbox User	15c7a1bf20	update copyright notice	2012-10-06 23:46:11 +00:00
Mark Andrews	20783a3baf	remove empty directories when cleaning	2012-10-06 17:27:38 +10:00
Mark Andrews	dbf693fdfd	3391. [bug] DNSKEY that encountered a CNAME failed. [RT #31262 ]	2012-10-06 14:56:33 +10:00
Mark Andrews	611dc88768	3390. [bug] Silence clang compiler warnings. [RT #30417 ]	2012-10-06 14:20:45 +10:00
Mark Andrews	ecd851b832	add dsdigest	2012-10-03 14:04:48 +10:00
Mark Andrews	22a711df5e	add bin/tests/system/dsdigest/prereq.sh.in	2012-10-03 13:59:50 +10:00
Mark Andrews	058e44186b	3387. [func] Support for a DS digest can be disabled at runtime with disable-ds-digests. [RT #21581]	2012-10-03 12:38:43 +10:00
Tinderbox User	8e3eb3600a	update copyright notice	2012-10-02 23:46:09 +00:00
Mark Andrews	aa49af836c	3385. [bug] named-checkconf didn't detect missing master lists in also-notify clauses. [RT #30810]	2012-10-02 13:06:02 +10:00
Mark Andrews	2d68e392f3	copyright style	2012-09-20 10:42:24 +10:00
Mark Andrews	953414e971	make tests less timing sensitive by spining	2012-09-18 14:49:58 +10:00
Mark Andrews	5f26ffc2b4	3375. [bug] 'rndc dumpdb' failed on empty caches. [RT #30808 ]	2012-09-14 07:53:19 +10:00
Mark Andrews	d0522678a1	don't call out to the internet when running test	2012-08-30 13:53:41 +10:00
Mark Andrews	26dde51a93	silence warning	2012-08-24 10:42:44 +10:00
Mark Andrews	d1f43359e4	3379. [bug] nsupdate terminated unexpectedly in interactive mode if built with readline support. [RT #29550]	2012-08-22 13:38:51 +10:00
Mark Andrews	076bda8c2e	we didn't catch a zero option at the global level when views are active	2012-08-17 13:40:17 +10:00
Tinderbox User	36a3d08a72	update copyright notice	2012-08-15 23:46:02 +00:00
Evan Hunt	85705b4b5a	allow "forward" and "forwarders" in static-stub 3363. [bug] Need to allow "forward" and "fowarders" options in static-stub zones; this had been overlooked. [RT #30482]	2012-08-15 13:08:15 -07:00
Tinderbox User	23554e8479	update copyright notice	2012-08-14 23:46:02 +00:00
Evan Hunt	820fdd61dd	properly range-check fields that do not allow 0 3362. [bug] Setting some option values to 0 in named.conf could trigger an assertion failure on startup. [RT #27730]	2012-08-13 22:39:42 -07:00
Evan Hunt	8f6d6d72e8	support '-' salt in rndc signing -nsec3param 3361. [bug] "rndc signing -nsec3param" didn't work correctly when salt was set to '-' (no salt). [RT #30099]	2012-08-13 22:24:36 -07:00
Evan Hunt	3f755529ee	address memory leak with bad tsig secret 3359. [bug] An improperly-formed TSIG secret could cause a memory leak. [RT #30607]	2012-08-10 20:15:59 -07:00
Tinderbox User	953692fa1e	update copyright notice	2012-07-25 23:46:04 +00:00
ckb	e7857b5ee0	3356. [bug] Cap the TTL of signed RRsets when RRSIGs are approaching their expiry, so they don't remain in caches after expiry. [RT #26429]	2012-07-25 17:06:34 -05:00
Mark Andrews	3ce2018dfa	3355. [port] Use more portable awk in verify system test.	2012-07-25 12:59:45 +10:00
Mark Andrews	6eb6af6732	3354. [func] Improve OpenSSL error logging. [RT #29932 ]	2012-07-23 15:08:21 +10:00
Mark Andrews	16de4bca76	add verify system test	2012-07-19 13:11:42 +10:00
Evan Hunt	b123be9195	fix copyrights in checkds test	2012-07-06 14:24:24 -07:00
ckb	14d4dd1053	added cleanup of test files	2012-07-06 10:00:45 -05:00
ckb	c514f38c80	Conflicts: lib/dns/dst_parse.c lib/isc/win32/file.c	2012-07-05 16:07:31 -05:00
Tinderbox User	a3128c1995	update copyright notice	2012-06-29 23:45:57 +00:00
Tinderbox User	54f04323c0	update copyright notice	2012-06-29 01:49:43 +00:00
Mark Andrews	bf8267aa45	reverse bad copyright update	2012-06-29 11:39:47 +10:00
Tinderbox User	247bf37860	update copyright notice	2012-06-29 01:22:18 +00:00
Mark Andrews	66dddd906a	make the checkds system test dependent on the result of python discovery	2012-06-28 23:08:07 +10:00
Mark Andrews	1cefb9df3f	3344. [func] New "dnssec-checkds" command checks a zone to determine which DS records should be published in the parent zone, or which DLV records should be published in a DLV zone, and queries the DNS to ensure that it exists. (Note: This tool depends on python; it will not be built or installed on systems that do not have a python interpreter.) [RT #28099]	2012-06-28 17:06:00 +10:00
Tinderbox User	da5d53fb14	update copyright notice	2012-06-26 23:45:56 +00:00
Mark Andrews	c41c261fc7	3342. [bug] Change #3314 broke saving of stub zones to disk resulting in excessive cpu usage in some cases. [RT #29952]	2012-06-27 09:21:09 +10:00
Mark Andrews	ad127d839d	3341. [func] New "dnssec-verify" command checks a signed zone to ensure correctness of signatures and of NSEC/NSEC3 chains. [RT #23673]	2012-06-25 13:57:32 +10:00
Tinderbox User	3b398443f0	update copyright notice	2012-06-21 23:46:36 +00:00
Evan Hunt	6686505e3a	fix secondkey test, properly	2012-06-20 22:44:06 -07:00
Evan Hunt	8566c18b02	fixed second-key test to use correct rndc.conf	2012-06-20 15:07:24 -07:00
ckb	5f5f8b1dd4	removed .cvsignore files	2012-06-20 14:23:12 -05:00
ckb	7829fad409	merging fast format zone files Conflicts: .gitignore bin/named/zoneconf.c bin/tests/.gitignore bin/tests/system/autosign/tests.sh bin/tests/system/masterformat/clean.sh bin/tests/system/masterformat/ns1/compile.sh bin/tests/system/masterformat/tests.sh configure lib/dns/db.c lib/dns/include/dns/db.h lib/dns/include/dns/types.h lib/dns/master.c lib/dns/masterdump.c lib/dns/rbt.c lib/dns/rbtdb.c lib/dns/sdb.c lib/dns/sdlz.c lib/dns/tests/.cvsignore lib/dns/tests/Makefile.in lib/dns/win32/libdns.def lib/dns/xfrin.c lib/dns/zone.c lib/export/dns/Makefile.in lib/isc/include/isc/file.h lib/isc/unix/file.c lib/isc/win32/file.c lib/isccfg/namedconf.c	2012-06-20 14:13:12 -05:00
Tinderbox User	ef1963d83d	update copyright notice	2012-06-15 23:45:49 +00:00
Mark Andrews	6190ede04a	use a pre-computed key if the OpenSSL version doesn't support generating rsa keys with exponents > 32 bits	2012-06-15 10:41:31 +10:00
Mark Andrews	df6a295e43	temporarially pull rsabigexponent	2012-06-15 09:55:50 +10:00
Tinderbox User	fd5b3eb81a	update copyright notice	2012-06-14 23:45:57 +00:00
Mark Andrews	7865ea9545	3339. [func] Allow the maximum supported rsa exponent size to be specified: "max-rsa-exponent-size <value>;" [RT #29228 ]	2012-06-14 15:44:20 +10:00
Mark Andrews	c298583db5	3337. [bug] Change #3294 broke support for the multiple keys in controls. [RT #29694]	2012-06-13 16:25:42 +10:00
Mark Andrews	1ff22ac042	Don't restart ns5 after killing it	2012-06-07 14:37:58 +10:00
Mark Andrews	ba16ade5f8	kill and restart the nameserver after running: perf 'without rpz' norpz	2012-06-04 16:25:25 +10:00
Tinderbox User	0ecbe41b6b	update copyright notice	2012-06-01 23:46:03 +00:00
Evan Hunt	3787f2ec8a	fix solaris portability problem	2012-06-01 11:40:52 -07:00
Evan Hunt	a2cd182a83	add a test for non-inline slaves	2012-06-01 08:29:06 -07:00
Mark Andrews	735ca24fa6	3321. [security] dns_rdataslab_fromrdataset could produce bad rdataslabs. [RT #29644]	2012-06-01 23:33:16 +10:00
Tinderbox User	7a440c4300	update copyright notice	2012-05-31 23:46:01 +00:00
Vernon Schryver	afaa290bb6	Squashed commit of the following: commit aea73609ac5d41ed091360e94370798965f28f05 commit eef7f44c57a060b24a426eb8888e16176a0a69b1 commit a88a26d864ad399fa2d40e3b9659b4d26f454ca1 commit 1b90d59568e7e3b65690c6bd075cf4d60b03e454 Merge: 74d8f73 `cd02924` commit 74d8f73ed553bb64a305e284905762f7ff0029aa commit 9a59ef6bbd4befe91e5691e8b85afe1cb7ab0706 commit c63606a53b4f1bb7066b37d3cfe588e9dc21a119 commit 2c392a840c8838455d144ce163bd873bee400c97 commit 0241f53563e6e7bed462a883d98a8931f01e0980 commit 79fe22b5d6f04bdaa3073cf54d41952194e879e1 commit 351b3049625f2edd39729dd85413e961b97d4b3b commit 7207674fc77c9a10d84c0cb94e36d1c09bb31459 commit 543ad34cf08f901c20b438c9d2f45482cff13d5e commit fc45b99ce4438627fdcbeb4365695ba0065fa46f commit c425207f57e0a5157372aa7edbb79b13170563e5 commit ef8c5e23ca284e0ea02f69ce1f356d537c19d93b commit ba0d4e3aa51efe412cfa1d031651f949442d1802 commit 41c7969c7cb6884b93011f7ace3fd9522efc021e and more from CVS for rt26172 Add - optional "recursive-only yes\|no" to the response-policy statement - optional max-policy-ttl to limit the lies that "recursive-only no" can introduce into resolvers' caches - test that queries with RD=0 are not rewritten by default - performance smoke test Change encoding of PASSTHRU action to "rpz-passthru". (The old encoding is still accepted.) Fix rt26180 assert botch in zone_findrdataset() in this branch as well. Fix missing signatures on NOERROR results despite RPZ hits when there are signatures and the client asks for DNSSEC,	2012-05-31 02:03:34 +00:00
Tinderbox User	e5d117e83f	update copyright notice	2012-05-21 23:45:46 +00:00
Mark Andrews	9caed807dc	redirect stderr to /dev/null	2012-05-21 16:02:46 +10:00
Mark Andrews	1b786cf46f	check for Net::DNS	2012-05-21 10:33:05 +10:00
Mark Andrews	9b6e76e5e7	awk and toupper is not portable, use sed instead	2012-05-21 10:13:08 +10:00
Tinderbox User	a847a4bcd6	update copyright notice	2012-05-17 23:46:03 +00:00
Evan Hunt	a40c338eaf	add ecdsa to system tests	2012-05-17 16:11:13 -07:00
Evan Hunt	26833735d3	Handle RRSIG signer case consistently 3329. [bug] Handle RRSIG signer-name case consistently: We generate RRSIG records with the signer-name in lower case. We accept them with any case, but if they fail to validate, we try again in lower case. [RT #27451]	2012-05-17 10:44:16 -07:00
Tinderbox User	633c5dc507	update copyright notice	2012-05-14 23:45:48 +00:00
Evan Hunt	d878b8d87c	merged filter-aaaa-on-v6 (ATT SoW) 3327. [func] Added 'filter-aaaa-on-v6' option; this is similar to 'filter-aaaa-on-v4' but applies to IPv6 connections. (Use "configure --enable-filter-aaaa" to enable this option.) [RT #27308]	2012-05-14 11:50:00 -07:00
Evan Hunt	bc626b81d7	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2012-05-14 10:07:34 -07:00
Evan Hunt	dd2a0a6d2d	Merge statistics code (ATT SoW, rt24117) This includes the following changes: 3326. [func] Added task list statistics: task model, worker threads, quantum, tasks running, tasks ready. [RT #27678] 3325. [func] Report cache statistics: memory use, number of nodes, number of hash buckets, hit and miss counts. [RT #27056] 3324. [test] Add better tests for ADB stats [RT #27057] 3323. [func] Report the number of buckets the resolver is using. [RT #27020] 3322. [func] Monitor the number of active TCP and UDP dispatches. [RT #27055] 3321. [func] Monitor the number of recursive fetches and the number of open sockets, and report these values in the statistics channel. [RT #27054] 3320. [func] Added support for monitoring of recursing client count. [RT #27009] 3319. [func] Added support for monitoring of ADB entry count and hash size. [RT #27057]	2012-05-14 10:06:05 -07:00
Francis Dupont	6a2ebd69b5	fix key name variable in autosign	2012-05-12 07:54:45 +02:00
Tinderbox User	99d8f5a704	update copyright notice	2012-05-02 23:45:44 +00:00
Mark Andrews	aaaf8d4f48	3317. [func] Add ECDSA support (RFC 6605). [RT #21918 ]	2012-05-02 23:20:17 +10:00
Tinderbox User	aa64e902a0	update copyright notice	2012-04-26 23:45:49 +00:00
Mark Andrews	393fd55d91	3313. [protocol] Add TLSA record type. [RT #28989 ]	2012-04-26 12:22:49 +10:00
Mark Andrews	7e9d6c7075	3312. [bug] named-checkconf didn't detect a bad dns64 clients acl. [RT #27631]	2012-04-26 11:42:39 +10:00
Evan Hunt	8c2a1d6b0b	fix .gitignore files	2012-04-23 08:17:26 -07:00
Tinderbox User	3fb95bfcb2	update copyright notice	2012-04-11 23:45:52 +00:00
Mark Andrews	75582adac7	3306. [bug] Improve DNS64 reverse zone performance. [RT #28563 ] 3305. [func] Add wire format lookup method to sdb. [RT #28563]	2012-04-11 12:17:57 +10:00
Tinderbox User	c922066e77	update copyright notice	2012-03-14 23:45:43 +00:00
Mark Andrews	021ea88ee5	ignore more test artifacts	2012-03-14 16:03:42 +11:00
Mark Andrews	25291eb87a	additional cleanup	2012-03-14 16:02:52 +11:00
Mark Andrews	dea3eb8eac	properly redirect stderr to stdout	2012-03-14 16:02:15 +11:00
Tinderbox User	5fa46bc916	update copyright notice	2012-03-10 23:45:53 +00:00
Mark Andrews	39bd69da32	empty directory	2012-03-10 08:45:46 +11:00
Evan Hunt	207845805e	set $Id$	2012-03-07 08:18:20 -08:00
Evan Hunt	2d7f41d66c	Revert "Re-created rt27597a for ongoing DLZ work" This reverts commit `d731ee9121`.	2012-03-05 15:42:52 -08:00
Evan Hunt	d731ee9121	Re-created rt27597a for ongoing DLZ work	2012-03-05 14:45:30 -08:00
Evan Hunt	632c0f1e91	Revert accidental merge of unfinished DLZ work	2012-03-05 14:44:21 -08:00
Mark Andrews	e214e8728a	Merge branches 'rt28261' and 'rt27597' of repo.isc.org:/proj/git/prod/bind9	2012-03-06 00:16:04 +11:00
Mark Andrews	f5b7359c57	Allow nsupdate to report which types it knows the internal structure to.	2012-03-05 11:38:07 +11:00
Evan Hunt	e41d5a00bc	added gitignore, removed cvsignore	2012-03-03 23:10:05 -08:00
Evan Hunt	43cf20e3e4	created	2012-03-03 22:47:40 -08:00
Evan Hunt	954501715d	checkpoint: multiple-DLZ functionality - multiple DLZ's can be specified, including multiple DLZ's using the same driver; e.g., two different back-ends both loaded by the dlopen driver - new "search" option can be specified in a DLZ indicating whether this DLZ database should be searched for unknown zones. The default is "yes". If "no", then the zone can only be found by named if it's registered in the zone table, which happens if the zone is configured for dynamic updates, or if "dlz <dlzname>" is specified in the zone statement. (The latter functionality is incomplete in this commit).	2012-03-03 22:43:38 -08:00
Automatic Updater	3484552b1b	update copyright notice	2012-02-23 07:09:29 +00:00
Mark Andrews	1864400107	3289. [bug] 'rndc retransfer' failed for inline zones. [RT #28036 ]	2012-02-23 06:53:15 +00:00
Automatic Updater	6c6ccd6b33	update copyright notice	2012-02-22 23:47:35 +00:00
Evan Hunt	261543671b	3288. [bug] dlz_destroy() function wasn't correctly registered by the DLZ dlopen driver. [RT #28056]	2012-02-22 21:45:20 +00:00
Mark Andrews	490b05960c	3287. [port] Update ans.pl to work with Net::DNS 0.68. [RT #28028 ]	2012-02-22 14:22:54 +00:00
Evan Hunt	89069e6b3a	3286. [bug] Managed key maintenance timer could fail to start after 'rndc reconfig'. [RT #26786]	2012-02-22 00:37:54 +00:00
Mark Andrews	5e501f3a87	Loop 'I:checking that large rdatasets loaded' in case the zone transfer has not yet completed	2012-02-15 00:50:59 +00:00
Automatic Updater	d03bc586b9	update copyright notice	2012-02-14 23:47:15 +00:00
Mark Andrews	4c34112a69	3283. [bug] Raw zones with with more than 512 records in a RRset failed to load. [RT #27863]	2012-02-13 23:46:24 +00:00
Automatic Updater	09b46c3945	update copyright notice	2012-02-09 23:47:18 +00:00
Mark Andrews	77eca24a29	move keygeneration out of the timing critical section	2012-02-09 21:10:45 +00:00
Mark Andrews	fb604d1cee	3282. [bug] Restrict the TTL of NS RRset to no more than that of the old NS RRset when replacing it. [RT #27792]	2012-02-09 20:54:46 +00:00
Automatic Updater	da5a7b29e9	update copyright notice	2012-02-07 23:47:24 +00:00
Evan Hunt	f4bd753e0b	fixed a test error that caused autosign to fail on freebsd	2012-02-07 00:33:19 +00:00
Mark Andrews	9181e8a056	rt27739: make ixfr test more robust	2012-02-07 00:19:45 +00:00
Automatic Updater	2f4561bc9c	update copyright notice	2012-02-06 23:46:49 +00:00
Mark Andrews	f91db44ab9	verify server is answering before starting next server	2012-02-06 23:20:38 +00:00
Evan Hunt	99f6179191	3277. [bug] Make sure automatic key maintenance is started when "auto-dnssec maintain" is turned on during "rndc reconfig". [RT #26805]	2012-02-06 21:33:50 +00:00
Automatic Updater	bb2d9d7aec	update copyright notice	2012-02-03 23:46:58 +00:00
Mark Andrews	ca92b02363	I:waiting for nameserver to load, ok'd by Evan	2012-02-03 04:44:17 +00:00
Automatic Updater	c2f843fc2b	update copyright notice	2012-02-02 23:47:33 +00:00
Mark Andrews	92a83eeb2d	portable code, ok'd bu Evan	2012-02-02 03:47:39 +00:00
Mark Andrews	912920eace	leave a better forensics trail on failure, ok'd by Evan	2012-02-02 03:26:55 +00:00
Mark Andrews	53d4f17eac	spin waiting for load/transfer to complete, ok'd by Evan	2012-02-02 03:08:02 +00:00
Automatic Updater	fe910f9d17	update copyright notice	2012-02-01 23:46:51 +00:00
Mark Andrews	23370a7eb2	more robust I:waiting for transfers to complete	2012-02-01 22:07:23 +00:00
Automatic Updater	41f1164438	update copyright notice	2012-01-31 23:47:33 +00:00
Evan Hunt	93143fd81a	3273. [bug] AAAA responses could be returned in the additional section even when filter-aaaa-on-v4 was in use. [RT #27292]	2012-01-31 06:58:39 +00:00
Evan Hunt	2855e27723	3271. [func] New "rndc zonestatus" command prints information about the specified zone. [RT #21671]	2012-01-31 03:35:41 +00:00
Evan Hunt	c54dadd853	3270. [bug] "rndc reload" didn't reuse existing zones correctly when inline-signing was in use. [RT #27650]	2012-01-31 01:13:10 +00:00
Automatic Updater	4a8adb51da	update copyright notice	2012-01-23 23:46:48 +00:00
Mark Andrews	3f7ad9656c	test for Net::DNS	2012-01-23 11:58:12 +00:00
Mark Andrews	bfe720adb5	reverse accidental commit	2012-01-17 08:26:03 +00:00
Automatic Updater	0d1cf4f5bc	update copyright notice	2012-01-16 23:46:46 +00:00
Mark Andrews	00164c8db2	fetches in progress/buckets	2012-01-16 08:35:09 +00:00
Evan Hunt	a06e0a14cc	use test -f; solaris doesn't support test -e	2012-01-12 00:37:18 +00:00
Automatic Updater	edb4393ef5	update copyright notice	2012-01-10 23:46:58 +00:00
Evan Hunt	9a02019889	3264. [bug] Automatic regeneration of signatures in an inline-signing zone could stall when the server was restarted. [RT #27344] 3263. [bug] "rndc sync" did not affect the unsigned side of an inline-signing zone. [RT #27337]	2012-01-10 18:13:37 +00:00
Automatic Updater	1b428fd3a7	update copyright notice	2012-01-07 23:46:53 +00:00
Evan Hunt	c19cfefe7e	3262. [bug] Signed responses were handled incorrectly by RPZ. [RT #27316]	2012-01-07 00:19:59 +00:00
Automatic Updater	f76bddd50b	update copyright notice	2012-01-04 23:46:49 +00:00
Evan Hunt	56c9fcf075	3260. [bug] "rrset-order cyclic" could appear not to rotate for some query patterns. [RT #27170/27185]	2012-01-04 03:06:51 +00:00
Automatic Updater	045e92d425	update copyright notice	2011-12-23 23:47:13 +00:00
Mark Andrews	7caaa75cbf	--enable-fixed-rrset uses reversed order for cyclic	2011-12-23 01:06:42 +00:00
Mark Andrews	6643b0dd91	3260. [bug] "rrset-order cyclic" could appears to not rotate for some query patterns. [RT #27170]	2011-12-23 00:38:23 +00:00
Mark Andrews	eacd6ec4e4	use binmode	2011-12-22 12:01:43 +00:00
Mark Andrews	9892bae7b7	forcing full sign with unreadable keys	2011-12-22 11:57:30 +00:00
Mark Andrews	354cb3ea67	use binmode	2011-12-22 11:56:07 +00:00
Evan Hunt	f30785f506	3252. [bug] When master zones using inline-signing were updated while the server was offline, the source zone could fall out of sync with the signed copy. They can now resynchronize. [RT #26676]	2011-12-22 07:32:41 +00:00
Mark Andrews	281a31ad37	+/- 500ms was too small a fudge factor (-582ms seen in testing), raise to +/- 1000ms	2011-12-22 02:15:24 +00:00
Mark Andrews	67dc2f0536	3249. [bug] Update log message when saving slave zones files for analysis after load failures. [RT #27087] 3248. [bug] Configure options --enable-fixed-rrset and --enable-exportlib were incompatible with each other. [RT #27087] 3247. [bug] 'raw' format zones failed to preserve load order breaking 'fixed' sort order. [RT #27087] 3246. [bug] Named failed to start with a empty also-notify list. [RT #27087]	2011-12-20 00:06:54 +00:00
Mark Andrews	b290d10fc4	3245. [bug] Don't report a error unchanged serials unless there were other changes when thawing a zone with ixfr-fromdifferences. [RT #26845]	2011-12-19 23:46:13 +00:00
Mark Andrews	d884e8ee4d	set status to 1 on R:FAIL	2011-12-19 23:08:50 +00:00
Evan Hunt	1d32b1df37	3244. [func] Added readline support to nslookup and nsupdate. Also simplified nsupdate syntax to make "update" and "prereq" optional. [RT #24659]	2011-12-16 23:01:17 +00:00
Mark Andrews	91013b0e19	join line for old awk	2011-12-12 12:08:09 +00:00
Mark Andrews	6c1a778723	chech that the final time is within 10 seconds but no greater than the expected interval	2011-12-12 06:51:12 +00:00
Automatic Updater	339d2a4d4b	update copyright notice	2011-12-09 23:47:05 +00:00
Mark Andrews	e238ebd9b3	Backout accident commit to head	2011-12-09 22:09:26 +00:00
Mark Andrews	5ccf5eac0f	ixfr-from-differences backup file	2011-12-09 13:32:42 +00:00
Evan Hunt	b4d8192d21	3241. [func] Extended the header of raw-format master files to include the serial number of the zone from which they were generated, if different (as in the case of inline-signing zones). This is to be used in inline-signing zones, to track changes between the unsigned and signed versions of the zone, which may have different serial numbers. (Note: raw zonefiles generated by this version of BIND are no longer compatble with prior versions. To generate a backward-compatible raw zonefile using dnssec-signzone or named-compilezone, specify output format "raw=0" instead of simply "raw".) [RT #26587]	2011-12-08 16:07:22 +00:00
Evan Hunt	4122abdc3c	Back out changes #3182 and #3202	2011-12-05 17:10:51 +00:00
Mark Andrews	f5f868ca4f	loop waiting for the zone to transfer	2011-12-02 04:14:33 +00:00
Mark Andrews	56dc4c6730	3233. [bug] 'rndc freeze/thaw' didn't work for inline zones. [RT #26632]	2011-12-02 02:44:01 +00:00
Automatic Updater	55313f60d8	update copyright notice	2011-12-01 23:46:51 +00:00
Mark Andrews	553197e288	3231. [bug] named could fail to send a uncompressable zone. [RT #26796] 3230. [bug[ 'dig axfr' failed to properly handle a multi-message axfr with a serial of 0. [RT #26796]	2011-12-01 00:53:58 +00:00
Mark Andrews	411d2914ad	3226. [bug] Address minor resource leakages. [RT #26624 ]	2011-11-30 00:48:51 +00:00
Mark Andrews	9bd876a683	3224. [bug] 'rndc signing' argument parsing was broken. [RT #26684 ]	2011-11-29 00:49:26 +00:00
Mark Andrews	374b677c50	make grep more precise	2011-11-27 12:04:27 +00:00
Evan Hunt	75c622f53b	add regression test for rbtdb.c version-mismatch issue	2011-11-18 19:32:13 +00:00
Evan Hunt	6fb6f8a226	3217. [cleanup] Fix build problem with --disable-static. [RT #26476 ]	2011-11-16 00:42:07 +00:00
Evan Hunt	d9eebc0849	3211. [func] dnssec-signzone: "-f -" prints to stdout; "-O full" option prints in single-line-per-record format. [RT #20287]	2011-11-07 23:16:31 +00:00
Mark Andrews	ac43690858	3209. [func] Add "dnssec-lookaside 'off'". [RT #24858 ]	2011-11-07 00:14:11 +00:00
Automatic Updater	2e8694f4db	update copyright notice	2011-11-06 23:46:40 +00:00
Mark Andrews	19ae9cbb28	3208. [bug] 'dig -y' handle unknown tsig alorithm better. [RT #25522]	2011-11-06 23:18:07 +00:00
Automatic Updater	af42579df6	update copyright notice	2011-11-04 23:46:15 +00:00
Mark Andrews	3fb5bccf59	3205. [func] Upgrade dig's defaults to better reflect modern nameserver behaviour. Enable "dig +adflag" and "dig +edns=0" by default. Enable "+dnssec" when running "dig +trace". [RT #23497]	2011-11-04 10:41:38 +00:00
Evan Hunt	25845da41a	3203. [bug] Increase log level to 'info' for validation failures from expired or not-yet-valid RRSIGs. [RT #21796]	2011-11-04 05:36:28 +00:00
Automatic Updater	0b85ae70e9	update copyright notice	2011-11-03 23:46:26 +00:00
Evan Hunt	6150d3cb66	3200. [doc] Some rndc functions were undocumented or were missing from 'rndc -h' output. [RT #25555]	2011-11-03 22:06:21 +00:00
Automatic Updater	1ab9944f6b	update copyright notice	2011-11-02 23:46:24 +00:00
Mark Andrews	46c7b71b4d	improve error diagnostics	2011-11-02 13:59:07 +00:00
Mark Andrews	e223d4bb26	loop waiting for stub zone to transfer	2011-11-02 08:17:01 +00:00
Mark Andrews	fe3472c80b	3191. [bug] Print NULL records using unknown format. [RT #26392 ]	2011-11-02 01:01:52 +00:00
Automatic Updater	89d1324270	update copyright notice	2011-11-01 23:47:00 +00:00
Evan Hunt	e2271ee953	3189. [test] Added a summary report after system tests. [RT #25517 ]	2011-11-01 18:35:53 +00:00
Automatic Updater	f308b3c2e0	update copyright notice	2011-10-30 23:46:15 +00:00
Evan Hunt	695ccee03b	added cvsignore files	2011-10-30 23:14:31 +00:00
Evan Hunt	81443179e5	missing files from clean.sh	2011-10-30 23:14:23 +00:00
Evan Hunt	74c46f605f	file missing from clean.sh	2011-10-30 23:11:24 +00:00
Evan Hunt	094672b313	some files were missing from clean.sh	2011-10-30 23:05:13 +00:00
Evan Hunt	3718adf753	some files were missing from clean.sh	2011-10-30 22:59:45 +00:00
Evan Hunt	0422d7c531	Need to clear db-* files in clean.sh.	2011-10-30 22:55:12 +00:00
Automatic Updater	98a7e53914	update copyright notice	2011-10-28 12:20:31 +00:00
Mark Andrews	7b4b6f361b	3186. [bug] Version/db mis-match in rpz code. [RT #26180 ]	2011-10-28 11:46:50 +00:00
Evan Hunt	9c03f13e18	3185. [func] New 'rndc signing' option for auto-dnssec zones: - 'rndc signing -list' displays the current state of signing operations - 'rndc signing -clear' clears the signing state records for keys that have fully signed the zone - 'rndc signing -nsec3param' sets the NSEC3 parameters for the zone The 'rndc keydone' syntax is removed. [RT #23729]	2011-10-28 06:20:07 +00:00
Mark Andrews	30574fa9ad	exit 255 for SKIPPED	2011-10-28 03:15:05 +00:00
Scott Mann	376444d40b	add test for recent Net::DNS module.	2011-10-28 02:18:56 +00:00
Automatic Updater	96f5a19c12	update copyright notice	2011-10-27 23:46:31 +00:00
Scott Mann	b91b288f92	fix edns0 retry issues (rt #23393/24964).	2011-10-27 20:18:42 +00:00
Automatic Updater	8826a72394	update copyright notice	2011-10-26 23:46:15 +00:00
Mark Andrews	24ef32426d	3181. [func] Inline-signing is now supported for master zones. [RT #26224]	2011-10-26 20:56:45 +00:00
Evan Hunt	9570ddcd41	3180. [func] Local copies of slave zones are now saved in raw format by default, to improve startup performance. 'masterfile-format text;' can be used to override the default, if desired. [RT #25867]	2011-10-26 15:23:37 +00:00
Mark Andrews	aa0777cfb6	spin waiting for zone transfer to complete	2011-10-26 05:32:56 +00:00
Automatic Updater	329eb05c12	update copyright notice	2011-10-25 23:46:58 +00:00
Mark Andrews	ad94465154	improve failure reports	2011-10-25 03:57:08 +00:00
Mark Andrews	b1c6de5456	3177. [func] 'rndc keydone', remove the indicator record that named has finished signing the zone with the corresponding key. [RT #26206]	2011-10-25 01:54:22 +00:00
Automatic Updater	dfc015bc7e	update copyright notice	2011-10-20 23:46:51 +00:00
Mark Andrews	ada40193c8	3175. [bug] Fix how DNSSEC positive wildcard responses from a NSEC3 signed zone are validated. Stop sending a unnecessary NSEC3 record when generating such responses. [RT #26200]	2011-10-20 21:42:11 +00:00
Mark Andrews	1946c596b4	3174. [bug] Always compute to revoked key tag from scratch. [RT #24711]	2011-10-20 21:20:02 +00:00
Automatic Updater	e87f494810	update copyright notice	2011-10-17 23:46:33 +00:00
Mark Andrews	ca890c0aa8	sleep 1 # allow lwresd to finish starting.	2011-10-17 05:40:11 +00:00
Mark Andrews	2da036f231	The notify system test was using a dynamic zone for reload testing so it was just a plain fluke that it ever succeeded. * use a normal (non-dynamic) zone. * check that reloads of the master zone actually occur. * remove example3 test from tests.sh as it wasn't testing notify. * add a "sleep 1" so that the copied file will have a newer timestamp. * improve system test logging. * using seperate output files for each test so that it is possible to work out what went wrong if the system test fails.	2011-10-17 01:33:28 +00:00
Mark Andrews	020c4484fe	3173. [port] Correctly validate root DS responses. [RT #25726 ]	2011-10-15 05:00:15 +00:00
Automatic Updater	2d45eb7acb	update copyright notice	2011-10-14 23:46:34 +00:00
Mark Andrews	baabfdc0d9	wait for test zones to have loaded	2011-10-14 12:02:12 +00:00
Automatic Updater	304a539c59	update copyright notice	2011-10-13 22:48:24 +00:00
Mark Andrews	c28bc44028	waiting for servers to be ready for testing	2011-10-13 22:18:05 +00:00
Mark Andrews	88112d5fcb	'test -e' is not portable, use 'test -f'	2011-10-13 13:03:51 +00:00
Mark Andrews	abea1710a7	new	2011-10-13 04:53:07 +00:00
Mark Andrews	24ae404aca	'grep' -> 'grep -w' when checking for keyids	2011-10-13 03:55:01 +00:00
Mark Andrews	89d7808786	'grep' -> 'grep -w' when checking for keyids	2011-10-13 03:46:41 +00:00
Vernon Schryver	9fee08f655	Commit rt25172 changes to HEAD including - fix precedence among competing rules - improve ARM text including documenting rule precedence - try to rewrite CNAME chains until first hit - new "rpz" logging channel - same fix for "NS ." as in RT 24985	2011-10-13 01:32:34 +00:00
Mark Andrews	dc2e627239	3167. [bug] Negative answers from forwarders were not being correctly tagged making them appear to not be cached. [RT #25380]	2011-10-12 00:18:11 +00:00
Mark Andrews	02286522fb	3166. [bug] Upgrading a zone to support inline-signing failed. [RT #26014 ]	2011-10-12 00:10:20 +00:00
Evan Hunt	653a78de95	3165. [bug] dnssec-signzone could generate new signatures when resigning, even when valid signatures were already present. [RT #26025]	2011-10-11 19:26:06 +00:00
Mark Andrews	25500a1d9f	add missing break;	2011-10-11 13:36:12 +00:00
Mark Andrews	be7772a59c	#include <isc/print.h>	2011-10-11 00:53:15 +00:00
Evan Hunt	793814f807	3164. [func] Enable DLZ modules to retrieve client information, so that responses can be changed depending on the source address of the query. [RT #25768]	2011-10-11 00:09:03 +00:00
Scott Mann	07dc62785b	Change s/\R//g to chomp().	2011-10-10 23:18:17 +00:00
Evan Hunt	b2086d798b	3163. [bug] Use finer-grained locking in client.c to address concurrency problems with large numbers of threads. [RT #26044]	2011-10-10 22:57:14 +00:00
Scott Mann	db715e6d83	fix directory path for subdirs	2011-10-10 19:06:05 +00:00
Mark Andrews	d60fb3a58c	use index rather than match as it is more portable	2011-10-10 00:34:57 +00:00
Scott Mann	aab0b9cd3b	added ability to set named params through "named.args" file	2011-10-09 22:47:15 +00:00
Mark Andrews	17dfbab847	handle getline errors/eof	2011-10-07 21:32:35 +00:00
Mark Andrews	dc2cbfdafe	handle multi-line NSEC3 record better	2011-10-06 22:11:39 +00:00
Automatic Updater	65df0ad698	update copyright notice	2011-09-07 23:46:28 +00:00
Mark Andrews	35540d8b32	add missing files from request-ixfr test	2011-09-07 01:30:13 +00:00
Automatic Updater	cb3168cec7	update copyright notice	2011-09-06 23:46:27 +00:00
Scott Mann	fad5116b3d	Remove the ixfr-from-differences side-effect which causes an AXFR and extend request-ixfr to the zone level.	2011-09-06 22:29:33 +00:00
Automatic Updater	ca894e53b5	update copyright notice	2011-09-02 23:46:33 +00:00
Evan Hunt	9e4afc9b39	3151. [bug] Queries for type RRSIG or SIG could be handled incorrectly. [RT #21050]	2011-09-02 21:55:16 +00:00
Mark Andrews	56a520ef3a	don't use a expired slave zone	2011-09-02 02:25:07 +00:00
Mark Andrews	cd49e1ec2f	handle flushing of entries just before a second ticks over, speed up priming of the cache	2011-09-01 05:28:14 +00:00
Automatic Updater	a6ab2774bc	update copyright notice	2011-08-31 23:46:44 +00:00
Mark Andrews	2c35c68236	3148. [bug] Processing of normal queries could be stalled when forwarding a UPDATE message. [RT #24711]	2011-08-31 06:49:10 +00:00
Automatic Updater	4e68c7c87c	update copyright notice	2011-08-30 23:46:53 +00:00
Mark Andrews	9198ab377b	3147. [func] Initial inline signing support. [RT #23657 ]	2011-08-30 05:16:15 +00:00
Mark Andrews	31ad3f3aa4	split out subtests of 'another leaf node, with both positive and negative cache entries'	2011-08-29 03:31:29 +00:00
Evan Hunt	5a75f61dd4	3144. [bug] dns_dbiterator_seek() could trigger an assert when used with a nonexistent database node. [RT #25358]	2011-08-23 00:59:23 +00:00
Automatic Updater	17d33346d7	update copyright notice	2011-08-09 04:12:25 +00:00
Mark Andrews	772dfb90be	3141. [bug] Silence spurious "zone serial (0) unchanged" messages associated with empty zones. [RT #25079]	2011-08-09 02:24:28 +00:00
Automatic Updater	44931133ff	update copyright notice	2011-08-03 23:47:48 +00:00
Evan Hunt	64c66c801f	Missed an added file when merging rt19770.	2011-08-03 05:37:59 +00:00
Automatic Updater	adbc177194	update copyright notice	2011-08-02 23:47:52 +00:00
Evan Hunt	0127993480	3140. [func] New command "rndc flushtree <name>" clears the specified name from the server cache along with all names under it. [RT #19970]	2011-08-02 20:36:13 +00:00
Automatic Updater	2f17ad4545	update copyright notice	2011-07-28 23:47:59 +00:00
Mark Andrews	011080d64a	add ${ISC_INCLUDES}	2011-07-28 03:20:45 +00:00
Evan Hunt	cf63d32d55	3136. [func] Add RFC 1918 reverse zones to the list of built-in empty zones switched on by the 'empty-zones-enable' option. [RT #24990]	2011-07-28 03:18:17 +00:00
Mark Andrews	062ddb1981	use UNUSED()	2011-07-27 23:38:21 +00:00
Mark Andrews	f96ba7c746	remove check for oldid as named may have already deleted it	2011-07-26 04:42:20 +00:00
Mark Andrews	acf34e66a8	id was not being properly set	2011-07-26 04:28:35 +00:00
Evan Hunt	b47c020d5c	3133. [bug] Change #3114 was incomplete. [RT #24577 ]	2011-07-08 01:43:26 +00:00
Mark Andrews	a69070d8fa	3130. [func] Support alternate methods for managing a dynamic zone's serial number. Two methods are currently defined using serial-update-method, "increment" (default) and "unixtime". [RT #23849]	2011-07-01 02:25:48 +00:00
Evan Hunt	cba23be7ba	Add the newly discovered PoD to the nsupdate test. (No CHANGES note.)	2011-06-21 22:15:05 +00:00
Automatic Updater	313b4dc3b2	update copyright notice	2011-06-17 23:47:49 +00:00
Evan Hunt	e7220c9b84	3129. [bug] Named could crash on 'rndc reconfig' when allow-new-zones was set to yes and named ACLs were used, [RT #22739]	2011-06-17 07:05:02 +00:00
Automatic Updater	0f467ed4d4	update copyright notice	2011-06-10 23:47:32 +00:00
Evan Hunt	79ce3a9e82	3128. [func] Inserting an NSEC3PARAM via dynamic update in an auto-dnssec zone that has not been signed yet will cause it to be signed with the specified NSEC3 parameters when keys are activated. The NSEC3PARAM record will not appear in the zone until it is signed, but the parameters will be stored. [RT #23684]	2011-06-10 01:51:09 +00:00
Evan Hunt	5e3affc6a0	3127. [bug] 'rndc thaw' will now remove a zone's journal file if the zone serial number has been changed and ixfr-from-differences is not in use. [RT #24687]	2011-06-10 01:32:38 +00:00
Mark Andrews	475b1ed9cc	3126. [security] Using DNAME record to generate replacements caused RPZ to exit with a assertion failure. [RT #23766]	2011-06-09 03:10:17 +00:00
Mark Andrews	b64e3b8358	3125. [security] Using wildcard CNAME records as a replacement with RPZ caused named to exit with a assertion failure. [RT #24715]	2011-06-09 00:42:51 +00:00
Evan Hunt	2a6d60615c	Fixed an nsupdate test error	2011-06-09 00:15:05 +00:00
Evan Hunt	6de9744cf9	3124. [bug] Use an rdataset attribute flag to indicate negative-cache records rather than using rrtype 0; this will prevent problems when that rrtype is used in actual DNS packets. [RT #24777] 3123. [security] Change #2912 exposed a latent flaw in dns_rdataset_totext() that could cause named to crash with an assertion failure. [RT #24777]	2011-06-08 22:13:51 +00:00
Scott Mann	07797bfb1f	fix RT 24561	2011-06-07 01:45:38 +00:00
Mark Andrews	ec564e401a	add debugging output on test failure	2011-05-31 13:52:06 +00:00
Mark Andrews	ae0691566a	date +%s is not portable, use perl -e 'print time();', Adjust messages	2011-05-30 22:32:06 +00:00
Scott Mann	5588b32695	This is a workaround fix for a problem in Solaris 10 (specifically on thing1) for which a root cause has not yet been found. RT #24561.	2011-05-30 15:13:49 +00:00
Mark Andrews	fe8572e116	The old active key could be deleted before the "former standby key has now signed fully" ran causing it to fail. Delay the deletion by 10 seconds.	2011-05-30 07:25:19 +00:00
Automatic Updater	6406d6507a	update copyright notice	2011-05-26 23:47:28 +00:00
Mark Andrews	ea82782532	3120. [bug] Named could fail to validate zones list in a DLV that validated insecure without using DLV and had DS records in the parent zone. [RT #24631]	2011-05-26 04:35:02 +00:00
Evan Hunt	0245f7725c	3118. [bug] When rolling to a new DNSSEC key, a private-type record could be created and never marked complete. [RT #23253]	2011-05-26 04:25:47 +00:00
Automatic Updater	00678e367d	update copyright notice	2011-05-25 23:47:16 +00:00
Mark Andrews	021bc5b3cc	add DRUZ zone with DS records	2011-05-25 01:06:56 +00:00
Evan Hunt	47e70d820e	3118. [bug] nsupdate could dump core on shutdown when using SIG(0) keys. [RT #24604]	2011-05-23 22:25:32 +00:00
Evan Hunt	bfe32d08c5	3116. [func] New 'dnssec-update-mode' option controls updates of DNSSEC records in signed dynamic zones. Set to 'no-resign' to disable automatic RRSIG regeneration while retaining the ability to sign new or changed data. [RT #24533]	2011-05-23 20:10:03 +00:00
Evan Hunt	fc6364bf24	expiring.example.db.in was left out when committing rt23136 to HEAD	2011-05-21 15:07:10 +00:00
Scott Mann	a50ce0f80b	Fix for RT #23136 task 1.	2011-05-19 00:31:57 +00:00
Mark Andrews	789875a1bd	named.conf copyrights	2011-05-08 07:12:48 +00:00
Automatic Updater	25db028666	update copyright notice	2011-05-07 23:47:28 +00:00
Evan Hunt	de7df3e56f	3111. [bug] Improved consistency checks for dnssec-enable and dnssec-validation, added test cases to the checkconf system test. [RT #24398]	2011-05-07 05:55:17 +00:00
Automatic Updater	40717638fa	update copyright notice	2011-05-06 23:47:29 +00:00
Evan Hunt	ac21f918f2	3109. [func] The also-notify option now uses the same syntax as a zone's masters clause. This means it is now possible to specify a TSIG key to use when sending notifies to a given server, or to include an explicit named masters list in an also-notfiy statement. [RT #23508]	2011-05-06 21:23:51 +00:00
Evan Hunt	485522d7e1	3108. [cleanup] dnssec-signzone: Clarified some error and warning messages; removed #ifdef ALLOW_KSKLESS_ZONES code (use -P instead). [RT #20852] 3107. [bug] dnssec-signzone: Report the correct number of ZSKs when using -x. [RT #20852]	2011-05-06 21:08:33 +00:00
Automatic Updater	a30e1b26b4	update copyright notice	2011-05-05 23:47:17 +00:00
Scott Mann	b2b3209149	added g	2011-05-05 23:15:56 +00:00
Scott Mann	101e493844	remove trailing whitespace from pid (RT 24388)	2011-05-05 23:10:24 +00:00
Scott Mann	58d7c91b65	remove trailing newline from pid (RT #24388 )	2011-05-05 22:56:55 +00:00
Evan Hunt	d454a60f56	3103. [bug] Configuring 'dnssec-validation auto' in a view instead of in the options statement could trigger an assertion failure in named-checkconf. [RT #24382]	2011-05-05 16:13:35 +00:00
Mark Andrews	83bf223210	explictly kill the process if the server fails to start, check for a non zero length pid file	2011-05-05 04:47:45 +00:00
Mark Andrews	46d3c6cf40	grep was not precise enough leading to test failure	2011-05-03 16:07:44 +00:00
Mark Andrews	f1d4986b83	treat asb(x) < 500ms as 0	2011-05-02 23:56:59 +00:00
Mark Andrews	65043f48f2	force numeric comparision	2011-05-02 05:05:05 +00:00
Mark Andrews	07907fa31a	handle end of day	2011-05-02 01:35:04 +00:00
Mark Andrews	bbf46f1aa2	fix expression	2011-05-01 21:36:33 +00:00
Mark Andrews	f83682f368	awk -v is not portable, add floating point arithmetic effects	2011-05-01 11:29:20 +00:00
Automatic Updater	54968ae88e	update copyright notice	2011-04-29 23:47:18 +00:00
Evan Hunt	39f2d1a96a	3102. [func] New 'dnssec-loadkeys-interval' option configures how often, in minutes, to check the key repository for updates when using automatic key maintenance. Default is every 60 minutes (formerly hard-coded to 12 hours). [RT #23744] 3101. [bug] Zones using automatic key maintenance could fail to check the key repository for updates. [RT #23744]	2011-04-29 21:37:15 +00:00
Evan Hunt	76db58eb81	3100. [security] Certain response policy zone configurations could trigger an INSIST when receiving a query of type RRSIG. [RT #24280]	2011-04-27 17:46:47 +00:00
Automatic Updater	7021f2faa0	update copyright notice	2011-04-19 23:47:52 +00:00
Evan Hunt	7a2173839c	3099. [test] "dlz" system test now runs but gives R:SKIPPED if not compiled with --with-dlz-filesystem. [RT #24146] 3098. [bug] DLZ zones were answering without setting the AA bit. [RT #24146]	2011-04-19 22:30:52 +00:00
Evan Hunt	c92122485d	3097. [test] Add a tool to test handling of malformed packets. [RT #24096]	2011-04-15 01:02:08 +00:00
Scott Mann	c7e1812d02	a few more "--with-gssapi" as default fixes to correct problems on test systems	2011-04-05 19:16:54 +00:00
Scott Mann	80593d9802	one character typo.	2011-04-05 16:10:39 +00:00
Evan Hunt	4e5fc672bc	Corrected a bug in the dnssec test introduced in change #3046 .	2011-03-31 15:58:51 +00:00
Automatic Updater	e2d4cd0ae4	update copyright notice	2011-03-30 23:47:12 +00:00
Scott Mann	761fa7d770	Fixes for various OS/environs for RT #23836 (--with-gssapi as default).	2011-03-30 15:48:41 +00:00
Evan Hunt	eb08f01b96	Forgot to add a data file for the autosign test.	2011-03-26 01:19:03 +00:00
Evan Hunt	319b8a1488	3092. [bug] Signatures for records at the zone apex could go stale due to an incorrect timer setting. [RT #23769] 3091. [bug] Fixed a bug in which zone keys that were published and then subsequently activated could fail to trigger automatic signing. [RT #22991]	2011-03-25 23:53:02 +00:00
Mark Andrews	0a82492610	3089. [func] dnssec-dsfromkey now supports reading keys from standard input "dnssec-dsfromkey -f -". [RT# 20662]	2011-03-24 02:10:23 +00:00
Automatic Updater	4f06155c8f	update copyright notice	2011-03-22 23:47:30 +00:00
Scott Mann	1760d5e5f2	For some reason, this didn't get removed before (RT #23687 )	2011-03-22 17:20:03 +00:00
Scott Mann	95759de490	Remove bin/tests/system/logfileconfig/ns1/named.conf and add setup.sh in order to resolve changing named.conf issue. [RT #23687]	2011-03-22 16:51:50 +00:00
Evan Hunt	c2255e8614	Fixed a bug that was exposed by change #3085 .	2011-03-22 03:19:38 +00:00
Mark Andrews	e706901292	add test numbers	2011-03-22 00:41:53 +00:00
Automatic Updater	6333ba02a5	update copyright notice	2011-03-21 23:47:21 +00:00
Mark Andrews	c2265bd341	adjust rt23702 test to take less time	2011-03-21 20:31:22 +00:00
Evan Hunt	0994d3a21b	3087. [bug] DDNS updates using SIG(0) with update-policy match type "external" could cause a crash. [RT #23735]	2011-03-21 19:54:03 +00:00
Evan Hunt	1063914c30	Fixed some problems from change #3084 that turned up after committing it; "freeze" and "thaw" weren't working quite right when used without a specific zone name.	2011-03-21 18:38:40 +00:00
Evan Hunt	cf0d508b1e	Forgot to add rndc test dir when committing "rndc sync" change to HEAD	2011-03-21 18:06:07 +00:00
Evan Hunt	36b2d5f93c	use "rndc sync" instead of freeze/thaw cycle to dump zones, now that it's available.	2011-03-21 16:53:44 +00:00
Evan Hunt	10a759cee6	3086. [bug] Running dnssec-settime -f on an old-style key will now force an update to the new key format even if no other change has been specified, using "-P now -A now" as default values. [RT #22474]	2011-03-21 15:56:35 +00:00
Evan Hunt	35f1a4fc93	3085. [func] New '-R' option in dnssec-signzone forces removal of signatures which have not yet expired but were generated by a key that no longer exists. [RT #22471]	2011-03-21 07:26:47 +00:00
Mark Andrews	5f49da42fe	wait longer for the nsec3chain generation to complete	2011-03-21 03:30:48 +00:00
Mark Andrews	5095e72ac3	3083. [bug] NOTIFY messages were not being sent when generating a NSEC3 chain incrementally. [RT #23702]	2011-03-21 01:02:39 +00:00
Mark Andrews	653cad790b	3082. [port] strtok_r is threads only. [RT #23747 ]	2011-03-21 00:30:18 +00:00
Mark Andrews	7dc5273a3e	skip not untested	2011-03-20 09:03:47 +00:00
Francis Dupont	f3bb08a519	add 23591 no-regression	2011-03-18 21:14:20 +00:00
Evan Hunt	1853c5eaf7	ignore SIGPIPE in ans.pl; this is needed for debian.	2011-03-18 04:41:15 +00:00
Evan Hunt	ea5334a36e	fixed a missing / in /dev/null	2011-03-18 02:08:45 +00:00
Automatic Updater	207cee019e	update copyright notice	2011-03-17 23:47:30 +00:00
Francis Dupont	50f64cf0e5	silent compiler warnings for DLZ exernal driver support and example	2011-03-17 09:25:54 +00:00
Evan Hunt	61bcc23203	3076. [func] New '-L' option in dnssec-keygen, dnsset-settime, and dnssec-keyfromlabel sets the default TTL of the key. When possible, automatic signing will use that TTL when the key is published. [RT #23304]	2011-03-17 01:40:40 +00:00
Automatic Updater	71d0d898fb	update copyright notice	2011-03-13 23:47:36 +00:00
Mark Andrews	26b49e8459	3074. [bug] Make the adb cache read through for zone data and glue learn for zone named is authoritative for. [RT #22842]	2011-03-13 02:49:28 +00:00
Automatic Updater	8ac903147f	update copyright notice	2011-03-12 23:47:42 +00:00
Mark Andrews	69e617cf88	test for Net::DNS	2011-03-12 21:24:52 +00:00
Automatic Updater	c1aef54e14	update copyright notice	2011-03-12 04:59:49 +00:00
Evan Hunt	4fbaf0202b	link driver.so from the .o file instead of the .lo file when building with libtool.	2011-03-11 07:11:07 +00:00
Mark Andrews	2d96b63d31	3067. [bug] ixfr-from-differences {master\|slave}; failed to select the master/slave zones. [RT #23580]	2011-03-11 00:43:54 +00:00
Automatic Updater	cf786a52ce	update copyright notice	2011-03-10 23:47:50 +00:00
Evan Hunt	422009fe5b	3066. [func] The DLZ "dlopen" driver is now built by default, no longer requiring a configure option. To disable it, use "configure --without-dlopen". Driver also supported on win32. [RT #23467]	2011-03-10 04:36:16 +00:00
Mark Andrews	198be130e2	remove exit	2011-03-07 14:03:49 +00:00
Automatic Updater	0e27506ce3	update copyright notice	2011-03-05 23:52:31 +00:00
Evan Hunt	9a859983d7	3062. [func] Made several changes to enhance human readability of DNSSEC data in dig output and in generated zone files: - DNSKEY record comments are more verbose, no longer used in multiline mode only - multiline RRSIG records reformatted - multiline output mode for NSEC3PARAM records - "dig +norrcomments" suppresses DNSKEY comments - "dig +split=X" breaks hex/base64 records into fields of width X; "dig +nosplit" disables this. [RT #22820]	2011-03-05 19:39:07 +00:00
Mark Andrews	eff7f78bc6	3061. [func] New option "dnssec-signzone -D", only write out generated DNSSEC records. [RT #22896]	2011-03-05 06:35:41 +00:00
Evan Hunt	61271cdee6	3060. [func] New option "dnssec-signzone -X <date>" allows specification of a separate expiration date for DNSKEY RRSIGs and other RRSIGs. [RT #22141]	2011-03-04 22:20:21 +00:00
Evan Hunt	c2f051aaaa	3059. [test] Added a regression test for change #3023 .	2011-03-04 22:01:01 +00:00
Scott Mann	be59d1eb72	Adding missing files for RT22771.	2011-03-04 14:43:58 +00:00
Scott Mann	32babe43eb	Ensure that log files are plain files. (RT #22771 )	2011-03-04 14:07:03 +00:00
Automatic Updater	7d9d170dbb	update copyright notice	2011-03-03 23:47:32 +00:00
Evan Hunt	f385bac3b9	3057. [bug] "rndc secroots" would abort after the first error and so could miss some views. [RT #23488]	2011-03-03 16:16:47 +00:00
Francis Dupont	9fe8cca065	add URI support	2011-03-03 14:10:27 +00:00
Francis Dupont	624664e504	Fixed last autosign test report [RT #23256 ]	2011-03-02 09:03:45 +00:00
Mark Andrews	be789bc7eb	3045. [removed] Replaced by change #3050 .	2011-03-02 04:52:25 +00:00
Mark Andrews	d819823fee	3051. [bug] NS records obsure DS records at the bottom of the zone if both are present. [RT #23035]	2011-03-02 04:49:05 +00:00
Mark Andrews	c1ced49662	3051. [bug] NS records obsure DS records at the bottom of the zone if both are present. [RT #23035]	2011-03-02 04:20:34 +00:00
Mark Andrews	ba88bcf08b	3050. [bug] The autosign system test was timing dependent. Wait for the initial autosigning to complete before running the rest of the test. [RT #23035]	2011-03-02 04:08:58 +00:00
Automatic Updater	c8175ece69	update copyright notice	2011-03-01 23:48:07 +00:00
Mark Andrews	4c05f9a6a3	3048. [bug] Fully seperate view key mangement. [RT #23419 ]	2011-03-01 22:44:04 +00:00
Scott Mann	d31740ce28	Fixed DNSKEY NODATA responses not cached (RT #22908 ).	2011-03-01 14:40:39 +00:00
Automatic Updater	bc171df6ca	update copyright notice	2011-02-28 23:47:39 +00:00
Francis Dupont	664917beda	Use RRSIG original TTL in validated RRset TTL [RT #23332 ]	2011-02-28 14:21:35 +00:00
Francis Dupont	17bc56e321	ove the testsock.pl sleep to autosign test suite [RT #23400 ]	2011-02-28 14:08:36 +00:00
Mark Andrews	2f09e7c3fc	3041. [bug] dnssec-signzone failed to generate new signatures on ttl changes. [RT #23330]	2011-02-24 03:04:43 +00:00
Mark Andrews	4f07b2b00c	3040. [bug] Named failed to validate insecure zones where a node with a CNAME existed between the trust anchor and the top of the zone. [RT #23338]	2011-02-23 11:30:35 +00:00
Mark Andrews	0e507dbb81	2039. [func] Redirect on NXDOMAIN support. [RT #23146 ]	2011-02-23 03:08:11 +00:00
Scott Mann	3b46648b02	Revert the previous commit...made on wrong branch.	2011-02-22 22:57:23 +00:00
Scott Mann	44b49a34b1	Added some comments.	2011-02-22 22:50:45 +00:00
Mark Andrews	b795de862b	2036. [bug] Check built-in zone arguments to see if the zone is re-usable or not. [RT #21914]	2011-02-22 04:14:30 +00:00
Automatic Updater	c41b2924a5	update copyright notice	2011-02-15 23:47:36 +00:00
Mark Andrews	b1b42b03b7	3020. [bug] auto-dnssec failed to correctly update the zone when changing the DNSKEY RRset. [RT #23232 ]	2011-02-15 22:02:36 +00:00
Mark Andrews	c5fa370695	3019. [func] Test: check apex NSEC3 records after adding DNSKEY record via UPDATE. [RT #23229]	2011-02-14 23:53:44 +00:00
Automatic Updater	56748bc3d1	update copyright notice	2011-02-08 23:10:07 +00:00
Mark Andrews	37b017f2ca	Regression test for: 3018. [bug] Named failed to check for the "none;" acl when deciding if a zone may need to be re-signed. [RT #23120]	2011-02-08 03:47:02 +00:00
Automatic Updater	784a904bd0	update copyright notice	2011-02-03 12:18:12 +00:00
Mark Andrews	c1ee8bb4ba	3013. [bug] The DNS64 ttl was not always being set as expected. [RT #23034]	2011-02-03 07:35:56 +00:00
Mark Andrews	16cc4a1f56	3012. [bug] Remove DNSKEY TTL change pairs before generating signing records for any remaing DNSKEY changes. [RT #22590]	2011-02-03 06:03:15 +00:00
Evan Hunt	439a6b2fbf	created cvsignore	2011-02-01 20:12:16 +00:00
Evan Hunt	5645e0c82a	Automatically-added copyright text was breaking the RPZ test.	2011-01-13 19:30:41 +00:00
Automatic Updater	9cee5bb028	update copyright notice	2011-01-13 04:59:26 +00:00
Mark Andrews	87708bde16	3008. [func] Response policy zones (RPZ) support. [RT #21726 ]	2011-01-13 01:59:28 +00:00
Automatic Updater	135bcc2e42	update copyright notice	2011-01-11 23:47:14 +00:00
Mark Andrews	b053854c20	call dns_tsigkeyring_detach(&ring)	2011-01-10 13:09:49 +00:00
Mark Andrews	fc5e97963d	Check that ::1 is configured	2011-01-10 05:08:49 +00:00
Evan Hunt	8a743600dd	3005. [port] Solaris: Work around the lack of gsskrb5_register_acceptor_identity() by setting the KRB5_KTNAME environment variable to the contents of tkey-gssapi-keytab. Also fixed test errors on MacOSX. [RT #22853]	2011-01-08 00:33:12 +00:00
Automatic Updater	93235c1cba	update copyright notice	2011-01-07 23:47:07 +00:00
Evan Hunt	f686c5d700	Added missing .cvsignore entries	2011-01-07 07:10:34 +00:00
Evan Hunt	c23a9eed3e	- Missed out authsock.pl when committing 3003. - Remove auth.sock in clean.sh.	2011-01-07 07:01:58 +00:00
Mark Andrews	dc4fa197dd	3004. [func] DNS64 reverse support. [RT #22769 ]	2011-01-07 04:31:39 +00:00
Automatic Updater	db69d5d53c	update copyright notice	2011-01-06 23:47:00 +00:00
Evan Hunt	3916872f37	3003. [experimental] Added update-policy match type "external", enabliing named to defer the decision of whether to allow a dynamic update to an external daemon. (Contributed by Andrew Tridgell.) [RT #22758]	2011-01-06 23:24:39 +00:00
Automatic Updater	1da9dbcf48	update copyright notice	2011-01-04 23:47:14 +00:00
Evan Hunt	79bf7c874b	3001. [func] Added a default trust anchor for the root zone, which can be switched on by setting "dnssec-validation auto;" in the named.conf options. [RT #21727]	2011-01-03 23:45:08 +00:00
Mark Andrews	ac78c47210	! test -n -> test -z	2010-12-27 13:38:43 +00:00
Mark Andrews	cd86950664	exit 255	2010-12-24 07:27:15 +00:00
Mark Andrews	37dee1ff94	2999. [func] Add GOST support (RFC 5933). [RT #20639 ]	2010-12-23 04:08:00 +00:00
Automatic Updater	ca103999e6	update copyright notice	2010-12-20 23:47:21 +00:00
Evan Hunt	950aa1d752	When a prereq.sh file determines that a test can't run because the feature to be tested was not configured in at build time, it can now return 255, and run.sh will print "R:SKIPPED" instead of "R:UNTESTED". Robie will be able to flag this as green rather than yellow.	2010-12-20 21:35:45 +00:00
Evan Hunt	8fda09fc85	Changed $(command) to `command` in tests.sh for compatibility with older bourne shells.	2010-12-20 18:37:07 +00:00
Mark Andrews	e11d10bbcc	example.nil.zone -> example.nil.db	2010-12-19 23:39:28 +00:00
Automatic Updater	941c0792f2	update copyright notice	2010-12-18 23:47:11 +00:00
Evan Hunt	6c3eff861d	tsiggss test needed a prereq.sh file. (Committing without review because the script is simple, no one is available, and I want to shut robie up.)	2010-12-18 16:48:41 +00:00
Mark Andrews	0faa11ab77	clean first	2010-12-18 11:45:01 +00:00
Evan Hunt	af903e5008	Added files to clean.sh scripts that have been left around after tests run. Skipping the ticket/review steps because the change is trivial.	2010-12-18 02:12:44 +00:00
Evan Hunt	71bd858d8e	2989. [func] Added support for writable DLZ zones. (Contributed by Andrew Tridgell of the Samba project.) [RT #22629] 2988. [experimental] Added a "dlopen" DLZ driver, allowing the creation of external DLZ drivers that can be loaded as shared objects at runtime rather than linked with named. Currently this is switched on via a compile-time option, "configure --with-dlz-dlopen". Note: the syntax for configuring DLZ zones is likely to be refined in future releases. (Contributed by Andrew Tridgell of the Samba project.) [RT #22629] 2987. [func] Improve ease of configuring TKEY/GSS updates by adding a "tkey-gssapi-keytab" option. If set, updates will be allowed with any key matching a principal in the specified keytab file. "tkey-gssapi-credential" is no longer required and is expected to be deprecated. (Contributed by Andrew Tridgell of the Samba project.) [RT #22629]	2010-12-18 01:56:23 +00:00
Mark Andrews	273757406a	.zone -> .db	2010-12-17 00:57:39 +00:00
Tatuya JINMEI 神明達哉	743bbdc18f	2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0)	2010-12-16 09:51:30 +00:00
Evan Hunt	bbedadf76a	2985. [bug] Add a regression test for change #2896 . [RT #21324 ]	2010-12-15 18:44:37 +00:00
Mark Andrews	9f9b7f0e8d	2982. [bug] Reference count dst keys. dst_key_attach() can be used increment the reference count. Note: dns_tsigkey_createfromkey() callers should now always call dst_key_free() rather than setting it to NULL on success. [RT #22672]	2010-12-09 00:54:34 +00:00
Automatic Updater	b8a9a7bef2	update copyright notice	2010-12-08 23:51:56 +00:00
Mark Andrews	b9f2d007c5	2981. [func] Partial DNS64 support (AAAA synthesis). [RT #21991 ]	2010-12-08 05:01:00 +00:00
Mark Andrews	e334405421	2981. [func] Partial DNS64 support (AAAA synthesis). [RT #21991 ]	2010-12-08 02:46:17 +00:00
Automatic Updater	a4b8846651	update copyright notice	2010-12-07 23:47:02 +00:00
Mark Andrews	8aee18709f	2980. [bug] named didn't properly handle UPDATES that changed the TTL of the NSEC3PARAM RRset. [RT #22363]	2010-12-07 02:53:34 +00:00
Mark Andrews	82f0630bae	2977. [bug] 'nsupdate -l' report if the session key is missing. [RT #21670]	2010-12-03 00:37:33 +00:00
Automatic Updater	326a702a35	update copyright notice	2010-12-02 23:46:56 +00:00
Mark Andrews	c87f15dac8	2976. [bug] named die on exit after negotiating a GSS-TSIG key. [RT #3415 ]	2010-12-02 23:22:42 +00:00
Automatic Updater	e085624e0f	update copyright notice	2010-11-30 23:46:55 +00:00
Evan Hunt	b5b934a0bb	2974. [bug] Some vaild UPDATE requests could fail due to a consistency check examining the existing version of the zone rather than the new version resulting from the UPDATE. [RT #22413]	2010-11-30 02:27:08 +00:00
Automatic Updater	33cc94f04c	update copyright notice	2010-11-17 23:47:09 +00:00
Mark Andrews	d48730a446	2970. [security] Adding a NO DATA negative cache entry failed to clear any matching RRSIG records. A subsequent lookup of of NO DATA cache entry could trigger a INSIST when the unexpected RRSIG was also returned with the NO DATA cache entry. [RT #22288]	2010-11-16 06:46:44 +00:00
Shawn Routhier	380c874925	Fix acl type processing so that allow-query works in options and view statements. Also add a new set of tests to verify proper functioning. [RT #22418]	2010-11-16 01:37:39 +00:00
Mark Andrews	a27b3757fd	2968. [security] Named could fail to prove a data set was insecure before marking it as insecure. One set of conditions that can trigger this occurs naturally when rolling DNSKEY algorithms. [RT #22309]	2010-11-16 01:14:51 +00:00
Mark Andrews	ed83fa75f5	2963. [security] The allow-query acl was being applied instead of the allow-query-cache acl to cache lookups. [RT #22114]	2010-09-24 05:09:03 +00:00
Mark Andrews	165501a801	simplify grep	2010-09-15 23:22:02 +00:00
Evan Hunt	cff5da57d6	The "resolver" test was failing on systems with old versions of "grep".	2010-09-15 15:45:07 +00:00
Automatic Updater	3255640981	update copyright notice	2010-09-15 12:38:36 +00:00
Mark Andrews	082f42dcf2	2960. [func] Check that named accepts non-authoritative answers. [RT #21594]	2010-09-15 12:07:56 +00:00
Mark Andrews	c75523bcb3	2959. [func] Check that named starts with a missing masterfile. [RT #22076] 2958. [bug] named failed to start with a missing master file. [RT #22076]	2010-09-15 03:32:34 +00:00
Mark Andrews	240a7dc59d	2951. [bug] named failed to generate a correct signed response in a optout, delegation only zone with no secure delegations. [RT #22007]	2010-09-07 00:58:36 +00:00
Automatic Updater	dac2623103	update copyright notice	2010-08-25 23:46:37 +00:00
Mark Andrews	17be07ab81	2948. [port] MacOS: provide a mechanism to configure the test interfaces at reboot. See bin/tests/system/README for details.	2010-08-25 04:51:51 +00:00
Automatic Updater	7202b5cf66	update copyright notice	2010-08-17 23:46:46 +00:00
Mark Andrews	e0c50ca36a	update default id range to match that used (1..7)	2010-08-17 04:08:57 +00:00
Mark Andrews	c6f4972c74	2943. [func] Add support to load new keys into managed zones without signing immediately with "rndc loadkeys". Add support to link keys with "dnssec-keygen -S" and "dnssec-settime -S". [RT #21351]	2010-08-16 22:21:07 +00:00
Mark Andrews	8bc194b266	2941. [bug] sdb and sdlz (dlz's zone database) failed to support DNAME at the zone apex. [RT #21610]	2010-08-16 04:49:14 +00:00
Automatic Updater	2b43d1d8c5	update copyright notice	2010-08-13 23:47:04 +00:00
Mark Andrews	c73d8c1b72	2938. [bug] When skipping NSEC3 records that don't match the current NSEC3PARAM record in use for zone named could dereference a uninitialised pointer attempting to obtain a lock. [RT# 21868]	2010-08-13 06:46:25 +00:00
Mark Andrews	bde46569f3	.orig -> .in as .orig is used by patch	2010-08-12 01:31:36 +00:00
Evan Hunt	cfd262045c	2936. [func] Improved configuration syntax and multiple-view support for addzone/delzone feature (see change #2930). Removed "new-zone-file" option, replaced with "allow-new-zones (yes\|no)". The new-zone-file for each view is now created automatically, with a filename generated from a hash of the view name. It is no longer necessary to "include" the new-zone-file in named.conf; this happens automatically. Zones that were not added via "rndc addzone" can no longer be removed with "rndc delzone". [RT #19447]	2010-08-11 18:14:20 +00:00
Evan Hunt	cb933b69ff	2932. [cleanup] Corrected a numbering error in the "dnssec" test. [RT #21597]	2010-08-09 22:34:56 +00:00
Tatuya JINMEI 神明達哉	f1f39b7e07	2931. [bug] Temporarily and partially disable change 2864 because it would cause inifinite attempts of RRSIG queries. This is an urgent care fix; we'll revisit the issue and complete the fix later. [RT #21710]	2010-07-15 01:17:45 +00:00
Evan Hunt	5312c2ffbe	dnssec and dlv tests included master zones whose master files were missing. this was a bug that hadn't been noticed before, but 19447 added a test for that condition and it caused test failures.	2010-07-11 01:18:24 +00:00
Mark Andrews	a7d2b922ee	match the dig.out.ns#.$n to the nameserver	2010-06-28 01:34:11 +00:00
Mark Andrews	8fa6ca58b6	check that we have non-cachable answers to test against	2010-06-28 01:31:49 +00:00
Automatic Updater	1b67d9b719	update copyright notice	2010-06-26 23:46:49 +00:00
Mark Andrews	810656a187	2925. [bug] Named failed to accept uncachable negative responses from insecure zones. [RT# 21555]	2010-06-25 23:50:13 +00:00
Automatic Updater	cf309ffeee	update copyright notice	2010-06-25 23:46:51 +00:00
Mark Andrews	f35a87f58f	remove leading zeros on keyid account for trusted keys not applying to _bind anymore	2010-06-25 07:28:46 +00:00
Mark Andrews	bf13e709db	2924. [func] 'rndc secroots' dump a combined summary of the current managed keys combined with trusted keys. [RT #20904]	2010-06-25 03:24:05 +00:00
Automatic Updater	b8d4e96e95	update copyright notice	2010-06-23 23:46:58 +00:00
Automatic Updater	b61690dbad	update copyright notice	2010-06-22 23:46:52 +00:00
Mark Andrews	48dfee7150	2920. [func] Allow 'filter-aaaa-on-v4' to be applied selectively to IPv4 clients. New acl 'filter-aaaa' (default any).	2010-06-22 04:03:38 +00:00
Automatic Updater	263874836b	update copyright notice	2010-06-11 23:46:49 +00:00
Mark Andrews	96fae19c97	restore export of PERL PK11GEN PK11LIST PK11DEL	2010-06-11 01:57:36 +00:00
Mark Andrews	9a56f03c4c	2916. [func] Add framework to use IPv6 in tests. fd92:7065:b8e:ffff::1 ... fd92:7065:b8e:ffff::7	2010-06-10 06:19:52 +00:00
Automatic Updater	ad0471f93b	update copyright notice	2010-06-08 23:50:24 +00:00
Mark Andrews	e24ccb512c	2914. [bug] Make the "autosign" system test more portable. [RT #20997]	2010-06-07 04:45:43 +00:00
Mark Andrews	63af1a646a	2913. [func] Add pkcs#11 system tests. [RT #20784 ]	2010-06-07 03:42:37 +00:00
Mark Andrews	5ee4d3f2ee	iterations is -H	2010-06-04 00:04:39 +00:00
Automatic Updater	6e13ffa218	update copyright notice	2010-06-03 23:51:05 +00:00
Mark Andrews	e74c3a0f59	specify NSEC3 iterations	2010-06-03 21:44:49 +00:00
Mark Andrews	10acc63770	2911. [bug] dnssec-signzone didn't handle out of zone records well. [RT #21367]	2010-06-03 06:29:03 +00:00
Mark Andrews	675cc80975	2911. [bug] dnssec-signzone didn't handle out of zone records well. [RT #21367]	2010-06-03 03:13:32 +00:00
Automatic Updater	a2d2fc17b0	update copyright notice	2010-06-02 01:28:40 +00:00
Mark Andrews	a27bbd21cf	2909. [bug] named-checkzone -p could die if "update-policy local;" was specified in named.conf. [RT #21416]	2010-06-02 01:07:47 +00:00
Automatic Updater	248b9ab0b0	update copyright notice	2010-05-27 23:51:08 +00:00
Automatic Updater	051dec6fb7	update copyright notice	2010-05-26 23:50:47 +00:00
Mark Andrews	b4c6ce22d0	call sign.sh robustly	2010-05-26 07:00:37 +00:00
Mark Andrews	e27d55e3ee	2904. [bug] When using DLV, sub-zones of the zones in the DLV, could be incorrectly marked as insecure instead of secure leading to negative proofs failing. This was a unintended outcome from change 2890. [RT# 21392]	2010-05-26 06:28:00 +00:00
Automatic Updater	15c961a1dd	update copyright notice	2010-05-19 09:33:50 +00:00
Mark Andrews	5ae2eac4c1	2902. [func] Add regression test for change 2897. [RT #21040 ]	2010-05-19 07:45:38 +00:00
Mark Andrews	b667946fa5	2900. [bug] The placeholder negative caching element was not properly constructed triggering a INSIST in dns_ncache_towire(). [RT #21346]	2010-05-19 06:39:50 +00:00
Mark Andrews	44f175a90a	2892. [bug] Handle REVOKED keys better. [RT #20961 ]	2010-05-14 04:38:52 +00:00
Mark Andrews	f2ae969065	handle revoke changes	2010-05-06 11:28:20 +00:00
Automatic Updater	4d42b714be	update copyright notice	2010-03-04 23:50:34 +00:00
Mark Andrews	56c2c3835f	10.53.0.1 through 10.53.0.5 -> 10.53.0.1 through 10.53.0.7	2010-03-04 20:34:16 +00:00
Evan Hunt	ecde9a1cd5	smartsign fails on slow machines. delay the timing-sensitive dnssec-settime call as long as possible.	2010-01-19 15:54:45 +00:00
Automatic Updater	6bb1560124	update copyright notice	2010-01-18 23:48:40 +00:00
Evan Hunt	e11a0c114c	2841. [func] Added "smartsign" and improved "autosign" and "dnssec" regression tests. [RT #20865]	2010-01-18 19:19:31 +00:00
Automatic Updater	a30c7003af	update copyright notice	2010-01-07 23:48:54 +00:00
Evan Hunt	597642c0ba	2831. [security] Do not attempt to validate or cache out-of-bailiwick data returned with a secure answer; it must be re-fetched from its original source and validated in that context. [RT #20819]	2010-01-07 16:48:23 +00:00
Tatuya JINMEI 神明達哉	d8680445d6	2828. [security] Cached CNAME or DNAME RR could be returned to clients without DNSSEC validation. [RT #20737] 9.4-ESV, 9.5.3, 9.6.2, 9.7.0, 9.8.0(?)	2009-12-30 08:02:23 +00:00
Evan Hunt	f766024a27	change all keys from rsasha1 to nsec3rsasha1 so that the nsec->nsec3 transitions work correctly. (they worked before, but weren't supposed to; when that bug was fixed, the test broke.)	2009-12-19 17:30:31 +00:00
Automatic Updater	8b82c01d74	update copyright notice	2009-12-06 23:48:29 +00:00
Evan Hunt	0d796b1aaa	improve cleanup and add named.run to .cvsignore files	2009-12-06 03:04:39 +00:00
Evan Hunt	12178c8652	2805. [bug] Fixed namespace problems encountered when building external programs using non-exported BIND9 libraries (i.e., built without --enable-exportlib). [RT #20679]	2009-12-05 23:31:41 +00:00
Automatic Updater	4b6dc226f7	update copyright notice	2009-12-04 22:06:37 +00:00
Mark Andrews	5d850024cb	2800. [func] Reject zones which have NS records which refer to CNAMEs, DNAMEs or don't have address record (class IN only). Reject UPDATEs which would cause the zone to fail the above checks if committed. [RT #20678]	2009-12-04 03:33:15 +00:00
Mark Andrews	ecbbb29519	add copyright	2009-12-03 04:51:41 +00:00
Evan Hunt	6a4d6e3379	adapted to the special needs of solaris's really old awk	2009-12-02 17:54:45 +00:00
Evan Hunt	095810f8cb	fixed autosign/metadata brokenness on solaris [rt20685]	2009-12-02 05:42:15 +00:00
Automatic Updater	ffd297db79	update copyright notice	2009-11-30 23:48:02 +00:00
Evan Hunt	7511904837	add cvsignore files	2009-11-30 21:03:17 +00:00
Evan Hunt	75b8de8787	Create automatic tests "autosign" and "metadata". [rt19946]	2009-11-30 21:00:48 +00:00
Automatic Updater	fe2b9bf570	update copyright notice	2009-11-18 23:48:07 +00:00
Mark Andrews	a39a5f4d81	2772. [security] When validating, track whether pending data was from the additional section or not and only return it if validates as secure. [RT #20438]	2009-11-17 23:55:18 +00:00
Mark Andrews	0a30185f80	2748. [func] Identify bad answers from GTLD servers and treat them as referrals. [RT #18884]	2009-11-04 02:15:30 +00:00
Mark Andrews	c6d2578fd6	2741. [func] Allow the dnssec-keygen progress messages to be suppressed (dnssec-keygen -q). Automatically suppress the progress messages when stdin is not a tty. [RT #20474]	2009-10-28 00:27:10 +00:00
Automatic Updater	990dca4605	update copyright notice	2009-10-27 23:47:45 +00:00
Mark Andrews	e09cdbac08	2738. [func] Add RSASHA256 and RSASHA512 tests to the dnssec system test. [RT #20453]	2009-10-27 22:25:37 +00:00
Evan Hunt	72cfcb48a7	cleanup ddns.key after nsupdate test	2009-10-27 05:57:06 +00:00
Evan Hunt	0ce9fba8f0	cleanup DLV test	2009-10-27 05:49:50 +00:00
Evan Hunt	fb596cc9af	2691. [func] dnssec-signzone: retain the existing NSEC or NSEC3 chain when re-signing a previously-signed zone. Use -u to modify NSEC3 parameters or switch between NSEC and NSEC3. [RT #20304]	2009-09-25 06:47:50 +00:00
Evan Hunt	30a60d2aff	On some slower systems the startup is delayed and this causes an apparent transfer failure on the initial calls to dig. Adding a test here to make sure the zones are fully loaded before attempting to query them.	2009-09-04 17:14:58 +00:00
Automatic Updater	d7201de09b	update copyright notice	2009-09-02 23:48:03 +00:00
Tatuya JINMEI 神明達哉	307d208450	2660. [func] Add a new set of DNS libraries for non-BIND9 applications. See README.libdns. [RT #19369]	2009-09-01 00:22:28 +00:00
Evan Hunt	4103d428a9	use genrandom to produce random data for input to ddns-confgen	2009-07-30 15:11:41 +00:00
Automatic Updater	0282f038eb	update copyright notice	2009-07-29 23:47:43 +00:00
Evan Hunt	9069215eac	2641. [bug] Fixed an error in parsing update-policy syntax, added a regression test to check it. [RT #20007]	2009-07-29 17:52:00 +00:00
Automatic Updater	26d8ffe715	update copyright notice	2009-07-19 23:47:55 +00:00
Evan Hunt	553ead32ff	2636. [func] Simplify zone signing and key maintenance with the dnssec-* tools. Major changes: - all dnssec-* tools now take a -K option to specify a directory in which key files will be stored - DNSSEC can now store metadata indicating when they are scheduled to be published, acttivated, revoked or removed; these values can be set by dnssec-keygen or overwritten by the new dnssec-settime command - dnssec-signzone -S (for "smart") option reads key metadata and uses it to determine automatically which keys to publish to the zone, use for signing, revoke, or remove from the zone [RT #19816]	2009-07-19 04:18:05 +00:00
Automatic Updater	6815ef40df	update copyright notice	2009-06-26 23:47:58 +00:00
Mark Andrews	870332fb6d	2617. [bug] ifconfig.sh failed to emit an error message when run from the wrong location. [RT #19375]	2009-06-26 06:08:40 +00:00
Automatic Updater	39844d4710	update copyright notice	2009-06-04 02:56:47 +00:00
Mark Andrews	2534a73a59	2608. [func] Perform post signing verification checks in dnssec-signzone. These can be disabled with -P. The post sign verification test ensures that for each algorithm in use there is at least one non revoked self signed KSK key. That all revoked KSK keys are self signed. That all records in the zone are signed by the algorithm. [RT #19653]	2009-06-04 02:13:37 +00:00
Automatic Updater	e6ada020f5	update copyright notice	2009-05-29 23:47:49 +00:00
Tatuya JINMEI 神明達哉	40d0f115a6	2604. [func] Add support for DNS rebinding attack prevention through new options, deny-answer-addresses and deny-answer-aliases. Based on contributed code from JD Nurmi, Google. [RT #18192]	2009-05-29 22:22:37 +00:00
Automatic Updater	4f91bcae43	update copyright notice	2009-03-02 23:47:43 +00:00
Evan Hunt	ca42dcc068	2569. [func] Move journalprint, nsec3hash, and genrandom commands from bin/tests into bin/tools; "make install" will put them in $sbindir. [RT #19301]	2009-03-02 03:54:10 +00:00
Mark Andrews	e4c6491bbf	2565. [func] Add support for HIP record. Includes new functions dns_rdata_hip_first(), dns_rdata_hip_next() and dns_rdata_hip_current(). [RT #19384]	2009-02-26 06:09:19 +00:00
Automatic Updater	8b835581b4	update copyright notice	2009-01-30 23:47:50 +00:00
Mark Andrews	14810640b7	2539. [security] Update the interaction between recursion, allow-query, allow-query-cache and allow-recursion. [RT #19198]	2009-01-30 08:19:00 +00:00
Automatic Updater	83b86f3936	update copyright notice	2009-01-21 23:47:27 +00:00
Mark Andrews	31b7a2fed6	2534. [func] Check NAPTR records regular expressions and replacement strings to ensure they are syntaxically valid and consistant. [RT #18168]	2009-01-21 05:37:55 +00:00
Evan Hunt	95de316a5d	suppress an error message on solaris. [rt18253]	2008-10-09 21:27:52 +00:00
Automatic Updater	3398334b3a	update copyright notice	2008-09-25 04:02:39 +00:00
Mark Andrews	6098d364b6	2448. [func] Add NSEC3 support. [RT #15452 ]	2008-09-24 02:46:23 +00:00
Francis Dupont	cbb8a1b7cb	Support Solaris 2.11 and over. [RT #18362 ]	2008-07-25 20:40:07 +00:00
Evan Hunt	7ed4399c65	remove 'grep -q' from acl test script, some platforms don't support it. [rt18253]	2008-07-19 00:02:14 +00:00
Mark Andrews	862015b91f	cleanup	2008-07-17 01:15:34 +00:00
Automatic Updater	1dd754dcdf	update copyright notice	2008-04-24 23:46:59 +00:00
Evan Hunt	66e50468dd	Change rrsetorder test two ways: 1) only test "fixed" ordering if it was compiled in 2) test whether "cyclic" ordering is cyclic, but don't rely on the initial state being predictable [rt17977]	2008-04-24 21:50:27 +00:00
Automatic Updater	a687db7ce8	update copyright notice	2008-04-02 23:46:58 +00:00
Mark Andrews	3f42cf2f3e	2349. [func] Provide incremental re-signing support for secure dynamic zones. [RT #1091] back out incorrect branch rt1091 and apply correct branch rt1091a.	2008-04-02 02:37:42 +00:00
Automatic Updater	f9760f7b6a	update copyright notice	2008-03-03 23:47:02 +00:00
Mark Andrews	d9936b218d	2340. [port] openbsd: interface configuration. [RT #17700 ]	2008-03-03 01:20:03 +00:00
Evan Hunt	262c39b236	IPv6 addresses could match IPv4 ACL entries and vice versa. [RT #17462 ]	2008-01-21 20:38:54 +00:00
Automatic Updater	9d5ed744c4	update copyright notice	2008-01-14 23:46:56 +00:00
Mark Andrews	034f775ae1	2301. [bug] Remove resource leak and fix error messages in bin/tests/system/lwresd/lwtest.c. [RT #17474]	2008-01-14 12:02:11 +00:00
Automatic Updater	6f2e211d39	update copyright notice	2008-01-10 23:47:01 +00:00
Mark Andrews	1c9f629c18	2293. [func] Add ACL regression test. [RT #17375 ]	2008-01-10 01:10:01 +00:00
Automatic Updater	1da14e066c	update copyright notice	2008-01-02 23:47:02 +00:00
Mark Andrews	f5d0f49584	2285. [func] Test framework for client memory context management. [RT #17377]	2008-01-02 05:03:07 +00:00
Mark Andrews	604419a812	2282. [bug] Acl code fixups. [RT #17346 ]	2007-12-20 01:48:29 +00:00
Mark Andrews	8b6418238d	remove ns2/dlv.db when cleaning	2007-10-30 23:56:09 +00:00
Mark Andrews	a1e2170ad5	2250. [func] New flag 'memstatistics' to state whether the memory statistics file should be written or not. Additionally named's -m option will cause the statistics file to be written. [RT #17113]	2007-09-26 03:22:45 +00:00
Mark Andrews	8c76634f88	2246. [bug] Make the startup of test servers (ans.pl) more robust. [RT #17147]	2007-09-24 04:13:25 +00:00
Mark Andrews	12e0477d4e	Part 2 of: 2233. [func] Add support for O(1) ACL processing, based on radix tree code originally written by kevin brintnall. [RT #16288]	2007-09-14 01:46:06 +00:00
Evan Hunt	d468b1b7b2	Fix compiler warnings on SCO OSr5	2007-09-13 04:45:18 +00:00
Automatic Updater	70e5a7403f	update copyright notice	2007-06-19 23:47:24 +00:00
Automatic Updater	ec5347e2c7	update copyright notice	2007-06-18 23:47:57 +00:00
Automatic Updater	db100c22d6	update copyright notice	2007-04-26 23:46:52 +00:00
Mark Andrews	429e23d2f5	2170. [func] Add acache processing to test suite. [RT #16711 ]	2007-04-26 04:06:50 +00:00
Automatic Updater	1b5a345334	update copyright notice	2007-03-06 02:12:39 +00:00
Mark Andrews	a56f5ada43	2157. [func] dns_db_transfernode() created. [RT #16685 ] 2156. [bug] Fix node reference leaks in lookup.c:lookup_find(), resolver.c:validated() and resolver.c:cache_name(). Fix a memory leak in rbtdb.c:free_noqname(). Make lookup.c:lookup_find() robust against event leaks. [RT #16685]	2007-03-06 00:38:58 +00:00
Mark Andrews	92f56936fb	update copyright notice	2007-01-09 03:11:16 +00:00
Mark Andrews	7acb804e7f	update copyright notice	2007-01-09 02:44:24 +00:00
Mark Andrews	d6b5e0b0e8	update copyright notice	2006-03-10 00:23:21 +00:00
Mark Andrews	cfe92110ce	2007. [func] It is now possible to explicitly enable DNSSEC validation. default dnssec-validation no; to be changed to yes in 9.5.0. [RT #15674]	2006-03-09 23:21:54 +00:00
Mark Andrews	59d84d1b07	2001. [func] Check the KSK flag when updating a secure dynamic zone. New zone option "update-check-ksk yes;". [RT #15817]	2006-03-06 01:27:52 +00:00
Mark Andrews	ea8874ec35	update copyright notice	2006-03-05 23:58:52 +00:00
Mark Andrews	d76ed813a5	1999. [func] Implement "rrset-order fixed". [RT #13662 ]	2006-03-03 00:43:35 +00:00
Mark Andrews	8131d4ed6d	update copyright notice	2006-02-26 23:49:50 +00:00
Mark Andrews	95b484c958	fix minor typos	2006-02-26 22:57:18 +00:00
Mark Andrews	26e2a07a0b	update copyright notice	2006-01-27 23:57:46 +00:00
Mark Andrews	c6d4f78152	1973. [func] TSIG HMACSHA1, HMACSHA224, HMACSHA256, HMACSHA384 and HMACSHA512 support. [RT #13606]	2006-01-27 02:35:15 +00:00
Mark Andrews	141132c272	update copyright notice	2006-01-07 00:23:35 +00:00
Mark Andrews	08c58709fa	specify -D as libtool does not preserve argv0.	2006-01-06 06:55:28 +00:00
Mark Andrews	b44f48a31a	remove ns1/example.db.raw	2006-01-06 06:53:57 +00:00
Mark Andrews	35da39a7f1	update copyright notice	2006-01-04 00:37:24 +00:00
Mark Andrews	2a90390dee	1945. [cleanup] dnssec-keygen: RSA (RSAMD5) is nolonger recommended. To generate a RSAMD5 key you must explictly request RSAMD5. [RT #13780]	2006-01-03 06:06:04 +00:00
Mark Andrews	5c6e60df66	update copyright notice	2005-11-30 23:52:54 +00:00
Mark Andrews	2674e1a455	1940. [bug] Fixed a number of error conditions reported by Coverity.	2005-11-30 03:33:49 +00:00
Mark Andrews	e6d667397a	update copyright notice	2005-11-03 00:02:56 +00:00
Mark Andrews	d29c05346a	address timing issue in tests	2005-11-02 04:56:49 +00:00
Mark Andrews	3a58ea619a	update copyright notice	2005-09-30 00:39:50 +00:00
Mark Andrews	80a609bf44	1919. [bug] The cache memory context array was too small to have the desired performance characteristics. [RT #15454] stop.pl Increase amount of time allowed for named to stop before aborting the server.	2005-09-28 04:36:06 +00:00
Mark Andrews	c5f4c17c4c	update copyright notice	2005-09-13 00:35:29 +00:00
Mark Andrews	4cabb8becd	fix cleanup	2005-09-12 22:35:05 +00:00
Mark Andrews	675d696977	update copyright notice	2005-09-06 03:51:37 +00:00
Mark Andrews	03e200df5d	1913. [func] Integrate contibuted DLZ code into named. [RT #11382 ]	2005-09-05 00:12:29 +00:00
Mark Andrews	5be3685b0e	1919. [bug] dig's +sigchase code overhauled. [RT #14933 ] 1918. [bug] The DLV code has been re-worked to make no longer query order sensitive. [RT #14933]	2005-08-25 00:56:08 +00:00
Mark Andrews	2c15fcdeac	seperate out sibling glue checks	2005-08-24 23:54:04 +00:00
Mark Andrews	4e1d3e67cd	1914. [bug] Strings returned from cfg_obj_asstring() should be treated as read-only. The prototype for cfg_obj_asstring() has been updated to reflect this. [RT #15256]	2005-08-23 02:36:11 +00:00
Mark Andrews	ec8f4b0adb	remove white space	2005-07-27 04:12:00 +00:00
Mark Andrews	2bef371309	1890. [func] Add a system test for named-checkconf. [RT #14931 ]	2005-06-23 06:52:23 +00:00
Mark Andrews	618e5825c5	update copyright notice	2005-06-22 00:10:30 +00:00
Mark Andrews	a903095bf4	1817. [func] add support for additional zone file formats for improving loading performance. The masterfile-format option in named.conf can be used to specify a non-default format. A new separate command named-compilezone was provided to generate zone files in a new format.	2005-06-20 01:05:33 +00:00
Mark Andrews	f2daad8ac3	update copyright notice	2005-06-12 00:03:20 +00:00
Mark Andrews	d4d68515d2	1885. [func] Additional memory debugging support to track size and mctx arguements. [RT #14814]	2005-06-10 07:00:20 +00:00
Mark Andrews	0c545eb705	update copyright notice	2005-05-30 02:00:39 +00:00
Mark Andrews	e123ebc1aa	integrity check cleanup	2005-05-24 04:30:10 +00:00
Mark Andrews	172d748152	update copyright notice	2005-05-20 01:09:36 +00:00
Mark Andrews	c5223c9cb7	1862. [func] Add additional zone data constancy checks. named-checkzone has extended checking of NS, MX and SRV record and the hosts they reference. named has extended post zone load checks. New zone options: check-mx and integrity-check. [RT #4940]	2005-05-19 04:59:05 +00:00
Mark Andrews	3002b5952d	cleanup a couple more files	2004-12-14 01:02:50 +00:00
Mark Andrews	a36db48f57	1789. [bug] Prerequisite test for tkey and dnssec could fail with "configure --with-libtool".	2004-12-08 06:10:49 +00:00
Mark Andrews	850a31f07e	update copyright notices	2004-11-24 23:50:57 +00:00
Mark Andrews	6c52944ef2	1763. [func] Perform sanity checks on NS records which refer to 'in zone' names. [RT #13002]	2004-11-23 05:23:46 +00:00
Mark Andrews	43fe2897fc	1731. [port] darwin: relax version test in ifconfig.sh. [RT #12581] 1730. [port] Determine the length type used by the socket API. [RT #12581]	2004-10-05 03:17:18 +00:00
Mark Andrews	ca155b1321	aix5	2004-09-24 05:38:01 +00:00
Mark Andrews	86c3e4bb96	1717. [port] solaris: ifconfig.sh did not support Solaris 10. "ifconfig.sh down" didn't work for Solaris 9.	2004-09-09 01:02:12 +00:00
Mark Andrews	756f078904	clean up /dsset-, /dlvset- and ns2/dlv.db	2004-09-07 04:14:44 +00:00
Mark Andrews	d7a8ba373d	copyright	2004-08-19 04:44:08 +00:00
Mark Andrews	9f7d51ee32	1688. [bug] LDFLAGS was not supported.	2004-07-20 07:13:43 +00:00
Mark Andrews	23fdb6a5a3	1654. [bug] isc_result_totext() contained array bounds read error. 1653. [func] Add key type checking to dst_key_fromfilename(), DST_TYPE_KEY should be used to read TSIG, TKEY and SIG(0) keys. 1652. [bug] TKEY still uses KEY.	2004-06-11 00:27:06 +00:00
Mark Andrews	c315e5cfea	1648. [func] Update dnssec-lookaside named.conf syntax to support multiple dnssec-lookaside namespaces (not yet implemented).	2004-06-04 02:31:43 +00:00
Mark Andrews	2cd8fa3ef9	1639. [func] Initial dlv system test.	2004-05-14 04:58:24 +00:00
Mark Andrews	38e8022ace	1625. [bug] named failed to load/transfer RFC2535 signed zones which contained CNAMES. [RT# 11237]	2004-05-05 01:32:58 +00:00
Mark Andrews	8d414d1559	1600. [bug] Duplicate zone pre-load checks were not case insensitive. 1599. [bug] Fix memory leak on error path when checking named.conf. 1598. [func] Specify that certain parts of the namespace must be secure (dnssec-must-be-secure).	2004-04-15 23:40:27 +00:00
Mark Andrews	1676408640	pullup silence compiler fixes ifconfig.sh for Solaris 9 README updates	2004-03-18 02:58:08 +00:00
Mark Andrews	28b863e609	pullup fixed from 9.3	2004-03-16 05:52:24 +00:00
Mark Andrews	50105afc55	1589. [func] DNSSEC lookaside validation. enable-dnssec -> dnssec-enable	2004-03-10 02:19:58 +00:00
Mark Andrews	fa7ee558e0	1584. [bug] "make test" failed with a readonly source tree. [RT #10461]	2004-03-10 01:06:06 +00:00
Mark Andrews	3b7dadafad	update copyrights	2004-03-05 12:46:14 +00:00
Mark Andrews	dafcb997e3	update copyright notice	2004-03-05 05:14:21 +00:00
Mark Andrews	821644d49b	1574. [bug] Don't attempt to open the controls socket(s) when running tests. [RT #9091]	2004-03-02 02:01:41 +00:00
Mark Andrews	362a27e81e	1586. [func] "check-names" is now implemented.	2004-02-27 20:44:09 +00:00
Mark Andrews	2047977ce2	1586. [func] "check-names" is now implemented.	2004-02-27 20:41:51 +00:00
Mark Andrews	74cb99072c	1573. [port] linux: update to libtool 1.5.2 so that "make install DESTDIR=/xx" works with "configure --with-libtool". [RT #9941]	2004-02-24 01:41:28 +00:00
Mark Andrews	89783da064	1581. [func] Disable DNSSEC support by default. To enable DNSSEC specify "enable-dnssec yes;" in named.conf.	2004-02-17 03:40:23 +00:00
Mark Andrews	4230c2e85e	lookup RRSIG (46) not SIG (24) in getrrsetbyname test.	2004-02-17 03:34:55 +00:00
Mark Andrews	148d848bbc	NSEC does not support raw type numbers	2004-01-27 04:39:29 +00:00
Mark Andrews	8d1374958f	create/destroy hash	2004-01-27 04:25:36 +00:00
Mark Andrews	841ed46de5	1558. [func] New DNSSEC 'disable-algorithms'. Support entry into child zones for which we don't have a supported algorithm. Such child zones are treated as unsigned.	2004-01-15 04:09:17 +00:00
Mark Andrews	35541328a8	1558. [func] New DNSSEC 'disable-algorithms'. Support entry into child zones for which we don't have a supported algorithm. Such child zones are treated as unsigned. 1557. [func] Implement missing DNSSEC tests for * NOQNAME proof with wildcard answers. * NOWILDARD proof with NXDOMAIN. Cache and return NOQNAME with wildcard answers.	2004-01-14 02:06:51 +00:00
Mark Andrews	b7e6fb4e84	whitespace	2003-10-26 21:33:47 +00:00
Mark Andrews	93d6dfaf66	1516. [func] Roll the DNSSEC types to RRSIG, NSEC and DNSKEY.	2003-09-30 06:00:40 +00:00
Mark Andrews	5e9f612524	1498. [port] bsdos: 5.x support.	2003-07-30 01:43:28 +00:00
Mark Andrews	a947b0145f	convert bit-string labels to nibbles.	2003-07-08 05:17:20 +00:00
Mark Andrews	f4cbe536b1	cygwin support	2002-12-27 03:29:37 +00:00
Mark Andrews	49a940dc68	1402. [cleanup] A6 has been moved to experimental and is no longer fully supported. developer: jinmei reviewer: marka	2002-11-27 09:52:58 +00:00
Michael Graff	994bc04060	merge 3907	2002-11-12 23:42:38 +00:00
Mark Andrews	b6309ed962	developer: jinmei reviewer: marka 1368. [func] remove support for bitstring labels.	2002-08-27 04:53:43 +00:00
Mark Andrews	0f042c7c44	- improves tests of negative insecurity proofs, including tests for the SOA TTL 0 hack. - adds +noauth to a few invocations of dig where the authority section is not important. - removes the bogus first half of the dynamic zone test, which didn't do anything other than make the test suite fail if run twice. - fixed the fact that the keyless.example zone wasn't being securely delegated. bwelling	2002-07-19 06:20:24 +00:00
Mark Andrews	5af560664d	1342. [port] darwin: ifconfig.sh now supports darwin.	2002-07-06 21:54:44 +00:00
Mark Andrews	0b09763c35	1328. [func] DS (delegation signer) support.	2002-06-17 04:01:37 +00:00
Mark Andrews	acc8b7ac3d	1299. [port] Darwin uses (unsigned long) for size_t. [RT #2590 ]	2002-05-23 04:32:30 +00:00
Mark Andrews	57e0f58b3f	1289. [port] Openserver: ifconfig.sh support.	2002-05-13 04:18:07 +00:00
Mark Andrews	a04a323f9a	1273. [bug] The dnssec system test failed to remove the correct files.	2002-04-24 00:46:25 +00:00
Mark Andrews	3561e645d7	1215. [port] solaris: add support to ifconfig.sh for x86 2.5.1	2002-03-01 11:28:28 +00:00
Mark Andrews	a7038d1a05	copyrights	2002-02-20 03:35:59 +00:00
Brian Wellington	4014b6a8ae	although a privately secure zone was signed, it was never tested.	2002-02-13 01:32:12 +00:00
Brian Wellington	64ea670052	the dynamic zone test wasn't working as expected since the child zone wasn't securely delegated.	2002-02-06 03:28:59 +00:00
Brian Wellington	4ca54c8f3b	ns5 is the incorrectly configured server, not ns4.	2002-02-01 01:56:00 +00:00
Andreas Gustafsson	473ca0bf8c	Added RT #2399 regression test	2002-01-22 22:27:29 +00:00
Mark Andrews	2c63b97c09	update tests for MD and MF know longer being loadable	2001-12-12 06:24:11 +00:00
Brian Wellington	0e40083fdd	@DNS_OPENSSL_LIBS@ -> @DNS_CRYPTO_LIBS@	2001-11-06 20:05:13 +00:00
Brian Wellington	78baa4ccb8	some files weren't being removed.	2001-11-06 19:32:54 +00:00
Mark Andrews	72499be79f	1103. [port] OpenUNIX 8 support (ifconfig.sh). [RT #1970 ]	2001-11-05 04:19:56 +00:00
Andreas Gustafsson	17b687ef36	1080. [bug] BIND 8 compatibility: accept bare IP prefixes as the second element of a two-element top level sort list statement. [RT #1964]	2001-10-30 20:19:34 +00:00
Andreas Gustafsson	1c31f17f89	added regression test for RT #1866 , #1869	2001-10-09 22:58:24 +00:00
Andreas Gustafsson	06365907a0	don't assume perl is in the path	2001-10-09 22:31:39 +00:00
Andreas Gustafsson	094d1d9a27	the tkey test would randomly fail due to key IDs with a leading zero being interpreted as octal numbers	2001-10-09 22:24:24 +00:00
Andreas Gustafsson	8bd6c39d5e	clean more files	2001-09-26 23:33:19 +00:00
Andreas Gustafsson	99f08fc172	ignore more files	2001-09-26 23:29:12 +00:00
Andreas Gustafsson	83515c3462	ifconfig.sh can now be invoked either from bin/tests/system or from the top level directory [RT #1758 ]	2001-09-26 23:16:26 +00:00
Andreas Gustafsson	f8d86ef2f6	if network interfaces are not not configured, urge the user to configure them [RT #1757]	2001-09-22 01:10:41 +00:00
Andreas Gustafsson	589a8a85b3	clarified messages	2001-09-22 01:10:03 +00:00
Andreas Gustafsson	2e189b0677	if a server does not die when sent a SIGTERM, kill it using SIGABRT, not SIGKILL, so that we get a core file to analyze. Also make sure we return with a nonzero exit status in this case.	2001-09-20 18:33:51 +00:00
Mark Andrews	c2bc56dc65	Move configuration checking to libbind9.	2001-09-20 15:17:07 +00:00
Andreas Gustafsson	e4b5f088ca	Added RT #1763 regression test	2001-09-19 21:19:52 +00:00
Andreas Gustafsson	1301637cc5	check that negative validation fails with a misconfigured trusted key	2001-09-19 20:47:02 +00:00
Andreas Gustafsson	e1e635578d	use ifconfig.sh up, not ifconfig.sh start, to be consistent with the ifconfig.sh usage message [RT #1758]	2001-09-17 21:42:47 +00:00
Andreas Gustafsson	66870de523	support 'make check' as an alias for 'make test'	2001-09-17 20:47:51 +00:00
Andreas Gustafsson	f4f9761c84	note that ifconfig.sh must be run as root	2001-09-17 20:33:54 +00:00
Brian Wellington	81b172466c	* empty log message *	2001-09-17 17:47:20 +00:00
Brian Wellington	206bced36f	order the parameters to dnssec-keygen consistently.	2001-09-17 17:42:04 +00:00
Andreas Gustafsson	99f467f016	test the ixfr-from-differences option	2001-09-08 00:24:33 +00:00
Andreas Gustafsson	260696e5e3	cleaned up xfer system test in preparation for adding ixfr-from-differences tests	2001-09-07 23:29:52 +00:00
Andreas Gustafsson	f3bbe7772f	added script for generating zone data, for use in system tests so that they don't all need to have their own (duplicated) zone data	2001-09-07 23:29:03 +00:00
Andreas Gustafsson	4b8b883127	Dollar sign in $TTL needs to be escaped; 80 columns	2001-09-07 00:57:25 +00:00
Andreas Gustafsson	7aac53eb69	Actually, this file should not be in CVS at all since it's machine generated by setup.sh.	2001-09-07 00:49:03 +00:00
Andreas Gustafsson	f56cdc894f	reverted unintentional commit	2001-09-07 00:35:40 +00:00
Andreas Gustafsson	b39ad8a69b	when assigning to isc_mem_debugging, use symbolic names for the flags, not magic integer constants	2001-09-06 23:14:42 +00:00
Andreas Gustafsson	b4636f4587	update_copyrights	2001-08-09 00:33:47 +00:00
Andreas Gustafsson	f4909f01a7	the test outcome should not depend on the dig version printed	2001-08-09 00:10:56 +00:00
Andreas Gustafsson	2627aca3bb	oops, one too may CFLAGS snuck in	2001-08-01 22:16:06 +00:00
Andreas Gustafsson	0a53284205	951. [bug] CFLAGS was not passed to the linker when linking some of the test programs under bin/tests. [RT #1555].	2001-08-01 22:06:29 +00:00
Andreas Gustafsson	e0315f2160	added 'masterfile' system test to make sure rt #1558 does not happen again	2001-08-01 19:01:02 +00:00
Andreas Gustafsson	07dcadc6e2	update_copyrights	2001-07-17 20:29:36 +00:00
Andreas Gustafsson	25525110c1	fixed and simplified	2001-07-13 18:29:00 +00:00
Brian Wellington	20d13d8975	remove generated file	2001-07-12 01:20:56 +00:00
Brian Wellington	828bd291c6	Only remove generated files.	2001-07-12 00:20:57 +00:00
Brian Wellington	f4d26dbdb6	fix redirection	2001-07-11 19:02:16 +00:00
Brian Wellington	1a8002871e	require a build with openssl to run dnssec & tkey tests	2001-07-10 21:41:14 +00:00
Andreas Gustafsson	f0b6aa146e	avoid using .orig as a filename extension, as it will be ignored by cvs import	2001-07-03 00:05:15 +00:00
Andreas Gustafsson	cf2e85ee9c	typo	2001-06-14 22:24:16 +00:00
Andreas Gustafsson	3446187a42	consistently assume ifconfig is in path regardless of platform and regardless of whether configuring interfaces up or down	2001-06-14 14:10:32 +00:00
Andreas Gustafsson	1c8409706f	consistent ordering	2001-06-14 14:08:51 +00:00
Andreas Gustafsson	ddae6fe9c7	simplified	2001-06-14 14:06:04 +00:00
Mark Andrews	ef8d97818f	901. [bug] More Unixware config.guess related changes.	2001-06-14 04:52:39 +00:00
Olafur Gudmundsson	112d9875bf	config.guess update changed FreeBSD system identifier	2001-06-12 03:34:01 +00:00
Brian Wellington	1969ab5360	copyright updates	2001-05-30 20:31:08 +00:00
Mark Andrews	4fbd6a13a5	#838 7.1.1 -> 7.x.x	2001-05-24 23:58:24 +00:00
Mark Andrews	761a21dfab	838. [port] UnixWare 7.1.1 is now suported by bin/tests/system/ifconfig.sh.	2001-05-24 23:55:48 +00:00
Andreas Gustafsson	b56607d483	the ixfr test requires Net::DNS	2001-05-14 22:35:57 +00:00
Andreas Gustafsson	13b9abae18	uninitialized variable	2001-05-10 19:05:00 +00:00
Andreas Gustafsson	c6c5f2db75	added .cvsignore file	2001-05-10 19:01:51 +00:00
Andreas Gustafsson	89485c1d71	added incremental zone transfer test	2001-05-10 18:29:09 +00:00
Andreas Gustafsson	67a3554aa6	use $PERL	2001-05-10 16:28:57 +00:00
Andreas Gustafsson	73a0d5c6ec	do not assume . is in $PATH	2001-05-09 21:55:44 +00:00
Andreas Gustafsson	3ee7b0d2cd	set the SO_REUSEADDR socket option, like named itself does	2001-04-24 01:52:16 +00:00
Andreas Gustafsson	7f4bf5aaac	8-columns indentation and consistent spacing	2001-04-24 01:23:28 +00:00
Andreas Gustafsson	fa1a39a514	avoid unnecessary auto array initialization	2001-04-16 17:23:34 +00:00
Brian Wellington	d4ef65050f	copyright updates (note - this doesn't touch lib/bind at all. Mark, whenever you're done with lib/bind, make sure to do the copyright magic)	2001-04-10 21:52:17 +00:00
Brian Wellington	734ae1f7c6	isc_{base64\|hex}_decodestring took an unused mctx. Remove the mctx.	2001-03-22 00:07:07 +00:00
Brian Wellington	298273b535	The updated config.guess now calls linux "linux" instead of "linux-gnu"	2001-03-16 21:44:35 +00:00
Brian Wellington	bbbcb61fb2	Add one more test; make sure configuration files are legal.	2001-03-09 18:49:57 +00:00
Andreas Gustafsson	f0a1134d33	updated	2001-03-08 18:44:59 +00:00
David Lawrence	8423f8296a	added cacheclean to SUBDIRS to have its test execute with runall.sh	2001-03-08 16:19:35 +00:00
Brian Wellington	e2f470bebb	Check that rndc stop syncs zone files.	2001-03-08 02:59:47 +00:00
Damien Neil	2f5f42596b	- Stop can now use rndc, when passed the --use-rndc option. - Slightly restructured code to eliminate duplication. - No longer waits five seconds for a server to die, if it dies promptly.	2001-03-08 02:34:01 +00:00
Brian Wellington	53aed64e0f	add missing .cvsignore files	2001-03-06 01:51:34 +00:00
Brian Wellington	b9a99f0772	remove 'ans.run' files	2001-03-05 22:54:08 +00:00
David Lawrence	9c2e820b3b	new test for exercising cache cleaning	2001-03-05 12:50:08 +00:00
Brian Wellington	494e26b333	clean up properly	2001-03-04 21:17:42 +00:00
Brian Wellington	626f97e223	allow-update is not allowed in slave zones	2001-03-02 02:44:51 +00:00
Andreas Gustafsson	f65a42f377	exit with a nonzero status if there were errors	2001-03-01 02:35:13 +00:00
Brian Wellington	2fa9cf0bf9	remove extraneous spaces	2001-02-28 03:05:01 +00:00
Brian Wellington	7a224ba59b	test that validation of an ANY query returning a DNAME works	2001-02-23 06:22:11 +00:00
Brian Wellington	529d1b9ada	test that validation of a query returning a DNAME works	2001-02-23 06:14:44 +00:00
Brian Wellington	fa342c624a	Added start.sh and stop.sh, which read the values from conf.sh into the environment and call the perl scripts.	2001-02-21 20:11:34 +00:00
Brian Wellington	4f91c46a42	Test that both normal and ANY queries that match a CNAME are properly validated.	2001-02-21 06:47:45 +00:00
Brian Wellington	a41ab607a4	Test that validation of ANY queries works. Also add data to be used for CNAME/DNAME tests, but not the tests yet since they fail.	2001-02-20 18:33:50 +00:00
Andreas Gustafsson	3ad7f12f74	exit if restarting server fails; increase sleep after SIGKILLing server to give sockets time to be freed	2001-02-15 01:04:06 +00:00
Matt Nelson	214eae639d	Made obsolete by .pl version.	2001-02-15 00:10:33 +00:00
Matt Nelson	2d556761c2	Use stop.pl to stop servers, not stop.sh.	2001-02-15 00:07:03 +00:00
Andreas Gustafsson	3e42d5b2bb	start and stop the servers in alphabetical order	2001-02-14 23:57:33 +00:00
Andreas Gustafsson	927fe08882	leave more evidence when failing	2001-02-14 02:42:10 +00:00
Andreas Gustafsson	1b003261c2	stop.pl should replace only kill -TERM, not kill -KILL; the test is specifically trying to test how the server behaves when shut down uncleanly	2001-02-14 02:11:17 +00:00
Andreas Gustafsson	edd03c5600	add -- before non-option argument starting with a dash so as not to confuse the Perl Getopt module	2001-02-14 02:03:45 +00:00
Matt Nelson	614610ba0b	Use start.pl and stop.pl to start and stop servers during test.	2001-02-14 00:16:38 +00:00
Matt Nelson	a60a0fd346	Use start.pl and stop.pl instead of start.sh and stop.sh.	2001-02-14 00:14:24 +00:00
Brian Wellington	5226a9f307	argument handling was broken	2001-02-14 00:13:33 +00:00
Matt Nelson	557e104278	Added ability to test port on a single ip address.	2001-02-14 00:09:44 +00:00
Matt Nelson	cf1dd93491	Rewrite of stop.sh in perl. Added ability to stop single server.	2001-02-13 23:41:00 +00:00
Matt Nelson	7b8ebf78a8	Rewrite of start.sh in perl. Added ability to start single specified server and to skip cleanup of server files.	2001-02-13 23:39:50 +00:00
Brian Wellington	8b473437f1	Support Solaris x86, improve Solaris support, support Linux on non x86.	2001-02-12 23:06:44 +00:00
Brian Wellington	ae73c78406	some data structures weren't freed.	2001-02-05 23:09:05 +00:00
Stephen Jacob	dc7c9751e7	added purify support (${PURIFY} to link commands) to missed test Makefile.in	2001-02-02 01:01:22 +00:00
Stephen Jacob	7bc8deb30f	purify support (${PURIFY added to link commands) for all in bin/tests	2001-02-01 23:41:55 +00:00

... 19 20 21 22 23 ...

2403 commits