bind9

mirror of https://github.com/isc-projects/bind9.git synced 2026-02-27 20:11:12 -05:00

Author	SHA1	Message	Date
Witold Krecicki	19d80ce584	4358. [test] Added American Fuzzy Lop harness that allows feeding fuzzed packets into BIND. [RT #41723]	2016-05-05 11:49:38 +02:00
Witold Krecicki	dc2a4887c4	4357. [func] Add the python RNDC module. [RT #42093 ]	2016-05-05 11:33:47 +02:00
Mark Andrews	08e36aa5a5	4356. [func] Add the ability to specify whether to wait for nameserver addresses to be looked up or not to rpz with a new modifying directive 'nsip-wait-recurse'. [RT #35009]	2016-05-05 16:29:05 +10:00
Evan Hunt	f1a2709aad	[master] add extractability to pkcs11-list 4354. [func] "pkcs11-list" now displays the extractability attribute of private or secret keys stored in an HSM, as either "true", "false", or "never" Thanks to Daniel Stirnimann. [RT #36557]	2016-05-04 21:56:48 -07:00
Tinderbox User	99bbb58ce7	update copyright notice / whitespace	2016-05-04 23:45:36 +00:00
Evan Hunt	699f790c49	[master] update pkcs11 headers 4353. [cleanup] Update PKCS#11 header files. [RT #42175]	2016-05-04 15:55:03 -07:00
Evan Hunt	66074f152f	[master] log message when using ISC DLV 4352. [cleanup] The ISC DNSSEC Lookaside Validation (DLV) service is scheduled to be disabled in 2017. A warning is now logged when named is configured to use it, either explicitly or via "dnssec-lookaside auto;" [RT #42207]	2016-05-04 14:37:25 -07:00
Tinderbox User	9e6e0881fa	update copyright notice / whitespace	2016-04-30 23:45:50 +00:00
Mark Andrews	cbad856135	support truncated hashes longer that 7 (cherry picked from commit 5b291f619e312689e25de8fd5662b0b9d4a62679)	2016-05-01 07:48:40 +10:00
Tinderbox User	3241ddcf93	regen master	2016-04-30 01:05:59 +00:00
Tinderbox User	21635968f7	update copyright notice / whitespace	2016-04-29 23:45:42 +00:00
Evan Hunt	470af54b4e	[master] more python2/3 compatibility fixes; use setup.py to install	2016-04-29 14:40:45 -07:00
Evan Hunt	304d16f08f	[master] address some python2/3 incompatibilities	2016-04-29 10:38:35 -07:00
Tinderbox User	17e9d6023e	Add .8 and .html files for dnssec-keymgr	2016-04-29 16:42:23 +00:00
Evan Hunt	90c7806bb6	[master] remove gnu make dependency	2016-04-29 09:36:36 -07:00
Evan Hunt	a27dc50157	[master] copyrights	2016-04-28 22:30:53 -07:00
Mark Andrews	86f221492f	alphabetize	2016-04-29 13:10:26 +10:00
Mark Andrews	48bf87ba83	4351. [bug] 'dig +noignore' didn't work. [RT #42273 ]	2016-04-29 12:41:02 +10:00
Mark Andrews	cf69e3d8b2	alphabetize host options	2016-04-29 11:21:49 +10:00
Tinderbox User	aa70afe5c1	update copyright notice / whitespace	2016-04-28 23:45:37 +00:00
Evan Hunt	f6096b958c	[master] dnssec-keymgr 4349. [contrib] kasp2policy: A python script to create a DNSSEC policy file from an OpenDNSSEC KASP XML file. 4348. [func] dnssec-keymgr: A new python-based DNSSEC key management utility, which reads a policy definition file and can create or update DNSSEC keys as needed to ensure that a zone's keys match policy, roll over correctly on schedule, etc. Thanks to Sebastian Castro for assistance in development. [RT #39211]	2016-04-28 00:16:01 -07:00
Evan Hunt	5ecfee97ba	[master] copyrights	2016-04-14 19:12:13 -07:00
Evan Hunt	3cd204c4a4	[master] fixed revoked key regression 4436. [bug] Fixed a regression introduced in change #4337 which caused signed domains with revoked KSKs to fail validation. [RT #42147]	2016-04-14 18:52:52 -07:00
Mark Andrews	7f79448198	remove unnecessary return	2016-04-08 04:24:47 +10:00
Tinderbox User	a0132868d1	update copyright notice / whitespace	2016-03-25 23:45:16 +00:00
Mark Andrews	42f6b7a890	add mdig.exe; fix typo in isc-hmac-fixup.exe	2016-03-26 09:07:54 +11:00
Evan Hunt	4a5f5c4ce1	[master] install mdig to bin not sbin	2016-03-25 09:52:00 -07:00
Tinderbox User	c19f42a378	update copyright notice / whitespace	2016-03-24 23:45:21 +00:00
Tinderbox User	e285c11870	regen master	2016-03-24 01:05:08 +00:00
Mark Andrews	6214c3c93a	4341. [bug] 'rndc flushtree' could fail to clean the tree if there wasn't a node at the specified name. [RT #41846]	2016-03-24 11:31:25 +11:00
Tinderbox User	a63461cc4b	update copyright notice / whitespace	2016-03-23 23:45:22 +00:00
Evan Hunt	7fa4c18451	[master] ECS family 0 handling was still broken	2016-03-23 15:00:30 -07:00
Evan Hunt	05b7b63f17	[master] more ECS handling fixes	2016-03-23 09:59:42 -07:00
Evan Hunt	395e6865d5	[master] fix ECS with family==0 4341. [bug] Correct the handling of ECS options with address family 0. [RT #41377]	2016-03-23 08:54:46 -07:00
Evan Hunt	d82b18a552	[master] fix uiAccess for win64 build	2016-03-22 17:28:12 -07:00
Evan Hunt	ddf3342cca	[master] test pipelining with mdig 4339. [test] Use "mdig" to test pipelined queries. [RT #41929]	2016-03-22 17:26:38 -07:00
Evan Hunt	132a571179	[master] fix mkeys TTL 0 issue 4337. [bug] The previous change exposed a latent flaw in key refresh queries for managed-keys when a cached DNSKEY had TTL 0. [RT #41986]	2016-03-22 12:12:32 -07:00
Tinderbox User	27def92931	update copyright notice / whitespace	2016-03-21 23:45:22 +00:00
Mark Andrews	0993cd5f22	4336. [bug] Don't emit records with zero ttl unless the records were learnt with a zero ttl. [RT #41687]	2016-03-21 13:22:21 +11:00
Mark Andrews	b8dcc13bc5	4335. [bug] zone->view could be detached too early. [RT #41942 ]	2016-03-21 12:02:00 +11:00
Tinderbox User	b1aac28027	update copyright notice / whitespace	2016-03-16 23:45:17 +00:00
Jeremy C. Reed	e12c78ebf6	add comments about why the configuration is bad I didn't get review. This is trivial.	2016-03-16 15:42:56 -04:00
Mark Andrews	756c643330	4334. [func] 'named -V' now reports zlib version. [RT #41913 ]	2016-03-13 07:48:11 +11:00
Jeremy C. Reed	81780ffd74	use -r $RANDFILE for test using keygen stops hang this is for ticket #41898	2016-03-11 09:27:15 -05:00
Tinderbox User	4a7004f3ce	update copyright notice / whitespace	2016-03-10 23:45:16 +00:00
Mark Andrews	7c52595464	4331. [func] When loading managed signed zones detect if the RRSIG's inception time is in the future and regenerate the RRSIG immediately. [RT #41808]	2016-03-10 17:01:08 +11:00
Tinderbox User	1fb011b1db	regen master	2016-03-08 22:35:32 +00:00
Tinderbox User	2cc103828e	update copyright notice / whitespace	2016-03-08 22:29:11 +00:00
Mark Andrews	1188aa3010	add automatic-interface-scan to ARM grammar	2016-03-09 09:00:07 +11:00
Mark Andrews	93ca5ee4c4	update copyrights	2016-03-08 16:21:19 +11:00
Mark Andrews	d6357f09aa	4329. [func] Warn about a common misconfiguration when forwarding RFC 1918 zones. [RT #41441]	2016-03-08 10:11:23 +11:00
Tinderbox User	220ba6da87	update copyright notice / whitespace	2016-03-04 23:45:23 +00:00
Mark Andrews	8398f00156	4326. [protocol] Add support for AVC. [RT #41819	2016-03-04 18:11:41 +11:00
Mukund Sivaraman	9da98335c1	Code cleanups (#41656 )	2016-03-04 12:18:17 +05:30
Evan Hunt	023ba1e6ef	[master] add OS details to rndc status 4325. [func] Add a line to "rndc status" indicating the hostname and operating system details. [RT #41610]	2016-03-03 22:02:52 -08:00
Tinderbox User	f254ab049e	update copyright notice / whitespace	2016-03-02 23:45:17 +00:00
Mark Andrews	ce7216c40a	4223. [bug] Improve HTTP header processing on statschannel. [RT #41674]	2016-03-02 11:04:59 +11:00
Mark Andrews	455c0848f8	4322. [security] Duplicate EDNS COOKIE options in a response could trigger an assertion failure. (CVE-2016-2088) [RT #41809]	2016-02-27 11:23:50 +11:00
Mark Andrews	7f514657e2	update copyrights	2016-02-25 10:55:40 +11:00
Mark Andrews	f9da4a8e54	4321. [bug] Zones using mapped files containing out-of-zone data could return SERVFAIL instead of the expected NODATA or NXDOMAIN results. [RT #41596]	2016-02-24 11:13:24 +11:00
Tinderbox User	62735fcde3	update copyright notice / whitespace	2016-02-23 23:45:35 +00:00
Mukund Sivaraman	293a9e9978	Fix allocation for "none" ACL that caused assertion failure (#41745 )	2016-02-23 12:51:34 +05:30
Mark Andrews	a125381c60	update usage	2016-02-23 16:57:02 +11:00
Tinderbox User	27424c351d	update copyright notice / whitespace	2016-02-20 23:45:16 +00:00
Mark Andrews	c968a257c1	fix subnet prefix	2016-02-20 12:01:30 +11:00
Tinderbox User	53ba272721	update copyright notice / whitespace	2016-02-18 23:45:32 +00:00
Mark Andrews	a2b15b3305	4318. [security] Malformed control messages can trigger assertions in named and rndc. (CVE-2016-1285) [RT #41666]	2016-02-18 12:11:27 +11:00
Mark Andrews	37176663e0	don't used class in grep e.g. [:space:]	2016-02-17 13:17:40 +11:00
Evan Hunt	93c211afc9	[master] fixed a regression in dyndb due to change #4277	2016-02-12 00:22:45 -08:00
Tinderbox User	6632721990	regen master	2016-02-12 01:04:18 +00:00
Tinderbox User	ee2e5fec65	regen master	2016-02-11 01:04:20 +00:00
Mark Andrews	b91d11bfcc	copyrights / whitespace	2016-02-11 10:44:21 +11:00
Evan Hunt	23733a9412	[master] misplaced <varlistentry>	2016-02-09 17:11:26 -08:00
Mukund Sivaraman	79a55d4f4d	Add option to tools to print RRs in unknown presentation format (#41595 )	2016-02-09 15:39:02 +05:30
Mukund Sivaraman	0c29904b27	Check that configured view class isn't a meta class (#41572 )	2016-02-08 13:58:01 +05:30
Mark Andrews	08913705e9	specify what to copy (cherry picked from commit `88624c9c32`)	2016-02-05 13:54:47 +11:00
Mark Andrews	68ecf1c9a5	add missing line break	2016-02-04 11:51:44 +11:00
Mark Andrews	d88ba93712	4313. [bug] Handle ns_client_replace failures in test mode. [RT #41190]	2016-02-03 14:59:19 +11:00
Tinderbox User	d83a9a980a	update copyright notice / whitespace	2016-02-02 23:45:23 +00:00
Mukund Sivaraman	f9b167290a	Remove 45 second sleeps from notify system test (#41248 ) No CHANGES entry required.	2016-02-02 09:46:57 +05:30
Mark Andrews	8d00c5ab2c	4312. [bug] dig's unknown dns and edns flags (MBZ value) logging was not consistent. [RT #41600]	2016-02-02 14:19:22 +11:00
Mark Andrews	e370cdf4ba	capture rndc output (cherry picked from commit `2d58f4aee2`)	2016-02-02 12:26:23 +11:00
Tinderbox User	8b074bef0c	update copyright notice / whitespace	2016-02-01 23:45:25 +00:00
Evan Hunt	ec450fde7c	[master] disallow delzone on policiy zones 4311. [bug] Prevent "rndc delzone" from being used on response-policy zones. [RT #41593]	2016-02-01 09:49:49 -08:00
Tinderbox User	3947e3625a	update copyright notice / whitespace	2016-01-31 23:45:23 +00:00
Evan Hunt	1d36ed108a	[master] spelling	2016-01-31 09:54:13 -08:00
Tinderbox User	5f4f7c688e	update copyright notice / whitespace	2016-01-30 23:45:23 +00:00
Evan Hunt	f02c22d58a	[master] add uname data to named -V 4308. [func] Added operating system details to "named -V" output. [RT #41452]	2016-01-30 11:06:58 -08:00
Evan Hunt	df9a49ee07	[master] dig/mdig could send misformatted ECS options 4307. [bug] "dig +subnet" and "mdig +subnet" could send incorrectly-formatted Client Subnet options if the prefix length was not divisble by 8. Also fixed a memory leak in "mdig". [RT #45178]	2016-01-29 17:41:29 -08:00
Tinderbox User	6825f304c5	regen master	2016-01-29 01:04:18 +00:00
Tinderbox User	b7f3400f3b	update copyright notice / whitespace	2016-01-28 23:45:29 +00:00
Evan Hunt	e073205a88	[master] openssl 1.0.2f patch 4306. [maint] Added a PKCS#11 openssl patch supporting version 1.0.2f [RT #38312]	2016-01-28 13:27:29 -08:00
Mark Andrews	832ab79d1f	4305. [bug] dnssec-signzone was not removing unnecessary rrsigs from the zone's apex. [RT #41483]	2016-01-28 15:42:34 +11:00
Mark Andrews	9d85a77382	4304. [port] xfer system test failed as 'tail -n +value' is not portable. [RT #41315]	2016-01-28 15:38:06 +11:00
Evan Hunt	8ede7a974b	[master] fix dig=+subnet zero-length prefix 4303. [bug] "dig +subnet" was unable to send a prefix length of zero, as it was incorrectly changed to 32 for v4 prefixes or 128 for v6 prefixes. In addition to fixing this, "dig +subnet=0" has been added as a short form for 0.0.0.0/0. The same changes have also been made in "mdig". [RT #41553]	2016-01-27 19:03:54 -08:00
Evan Hunt	30370d905e	[master] removed /Gy- from VS project files 4302. [port] win32: fixed a build error in VS 2015. [RT #41426]	2016-01-27 15:27:57 -08:00
Tinderbox User	4df65ccfec	update copyright notice / whitespace	2016-01-25 23:45:24 +00:00
Mark Andrews	9478de25bb	4301. [bug] dnssec-settime -p [DP]sync was not working. [RT #41534 ]	2016-01-26 00:27:44 +11:00
Mark Andrews	f8432e3f24	4301. [bug] dnssec-settime -p [DP]sync was not working. [RT #41534 ]	2016-01-26 00:09:03 +11:00
Mark Andrews	1fe6b74b9c	use 0 not ISC_FALSE for dns_name_fromtext	2016-01-25 16:55:02 +11:00
Tinderbox User	c46ac73c8f	update copyright notice / whitespace	2016-01-22 23:45:23 +00:00
Evan Hunt	630b2d0c5a	[master] NOSETFC incorrectly applied 4300. [bug] A flag could be set in the wrong field when setting up nonrecursive queries; this could cause the SERVFAIL cache to cache responses it shouldn't. New querytrace logging has been added which identified this error. [RT #41155]	2016-01-22 13:58:11 -08:00
Tinderbox User	7d4f45f6bd	update copyright notice / whitespace	2016-01-21 23:45:23 +00:00
Evan Hunt	9b789c54f8	[master] add regression test for RT #41518 4297. [test] Ensure delegations in RPZ zones fail robustly. [RT #41518]	2016-01-20 17:44:11 -08:00
Evan Hunt	d40154cab7	[master] cacluate TCP packet sizes correctly 4296. [bug] TCP packet sizes were calculated incorrectly in the stats channel; they could be counted in the wrong histogram bucket. [RT #40587]	2016-01-20 17:30:27 -08:00
Tinderbox User	b3378292d0	update copyright notice / whitespace	2016-01-20 23:45:22 +00:00
Evan Hunt	6bd794171f	[master] fixed rndc stop -p 4294. [bug] Fixed a regression in which "rndc stop -p" failed to print the PID. [RT #41513]	2016-01-20 09:53:26 -08:00
Tinderbox User	16201b15a6	update copyright notice / whitespace	2016-01-17 23:45:21 +00:00
Curtis Blackburn	3948d9c7c6	rrl test was failing on some systems because not all versions of perl understand '-E'. changed to '-e'	2016-01-15 14:35:12 -08:00
Curtis Blackburn	a66619fe32	[rt39196] Added a new nameserver to test rrl "log-only yes". Added test for RT #39197. Made the rrl test more tolerant of minor differences in results due to timing. Removed the failure override for the rrl test. commit 01a15bc80ef4c20171ddfe9b5ceb2ebe008c8e0d Author: Curtis Blackburn <ckb@isc.org> Date: Tue Dec 15 15:08:03 2015 -0800 added a new nameserver to the rrl test	2016-01-11 19:37:17 -08:00
Evan Hunt	bb5d14d724	[master] millisecond granularity for statschannel timers 4290. [func] The timers returned by the statistics channel (indicating current time, server boot time, and most recent reconfiguration time) are now reported with millisecond accuracy. [RT #40082]	2016-01-07 15:34:58 -08:00
Tinderbox User	742cb92338	regen master	2016-01-06 01:04:26 +00:00
Tinderbox User	feb1ccdaf1	update copyright notice / whitespace	2016-01-05 23:45:26 +00:00
Tinderbox User	d7dbbf9b7e	regen	2016-01-05 23:30:01 +00:00
Tinderbox User	4206bb139c	regen master	2016-01-05 01:04:24 +00:00
Tinderbox User	e1836d1fe4	update copyright notice / whitespace	2016-01-04 23:45:26 +00:00
Evan Hunt	8454718b87	[master] document return values from nslookup	2016-01-04 15:38:06 -08:00
Evan Hunt	3bcd09b416	[master] silence noisy logging 4287. [bug] Silence an overly noisy log message when message parsing fails. [RT #41374]	2016-01-04 13:05:23 -08:00
Francis Dupont	343aeac717	Updated WIN32 files (rt40877)	2016-01-04 17:27:31 +01:00
Evan Hunt	de4c1814dd	[master] update stats version number for rssac counters	2016-01-03 22:31:56 -08:00
Tinderbox User	7321d8df7b	update copyright notice / whitespace	2015-12-27 23:45:24 +00:00
Evan Hunt	fbed5f0f44	[master] fix geoip options 4284. [bug] Some GeoIP options were incorrectly documented using abbreviated forms which were not accepted by named. The code has been updated to allow both long and abbreviated forms. [RT #41381]	2015-12-26 10:50:32 -08:00
Francis Dupont	66d73c3611	Cleaned up OpenSSL patches	2015-12-23 21:14:36 +01:00
Francis Dupont	2f2dd34a93	Updated OpenSSL 1.0.1 patch	2015-12-23 19:33:31 +01:00
Francis Dupont	5c19058b0a	Updated OpenSSL 1.0.0 patch	2015-12-23 18:48:50 +01:00
Francis Dupont	059904647d	Updated OpenSSL 0.9.8 patch	2015-12-23 17:53:40 +01:00
Curtis Blackburn	df59681bd2	[rt40109] added a test for +dscp to the digdelv tests	2015-12-21 14:13:03 -08:00
Tinderbox User	0226754d9e	regen master	2015-12-19 01:04:14 +00:00
Mark Andrews	49762dffc4	4282. [func] 'dig +[no]mapped' determine whether the use of mapped IPv4 addresses over IPv6 is permitted or not. The default is +mapped. [RT #41307]	2015-12-19 09:47:11 +11:00
Tinderbox User	4688741c5c	update copyright notice / whitespace	2015-12-16 23:45:26 +00:00
Mark Andrews	f1fcadccc4	remove named.conf	2015-12-16 21:37:21 +11:00
Mark Andrews	1583a214cd	check for non removed files	2015-12-16 21:25:04 +11:00
Tinderbox User	a179cbdf65	regen master	2015-12-16 01:04:13 +00:00
Mark Andrews	ecfedec0e0	perform a more complete cleanup after running system tests [rt41255]	2015-12-16 11:29:18 +11:00
Tinderbox User	ea2ea0914c	update copyright notice / whitespace	2015-12-15 23:45:23 +00:00
Evan Hunt	0321aa184e	[master] reclimit test was broken with v6	2015-12-15 15:01:58 -08:00
Curtis Blackburn	9effea437d	[rt41269] additional tests for dig and delv, fix for --disable-ipv6 on osx, fixes for tests with --disable-ipv6	2015-12-15 11:58:28 -08:00
Mark Andrews	f647c0df9f	4281. [bug] Teach dns_message_totext about BADCOOKIE. [RT #41257 ]	2015-12-15 19:49:40 +11:00
Mukund Sivaraman	ecc06cbc32	Use optimal message sizes to improve compression in AXFRs (#40996 )	2015-12-15 13:24:14 +05:30
Evan Hunt	b96366252b	[master] add +nocookie and use perl for query burst	2015-12-14 21:27:49 -08:00
Evan Hunt	362d2d46aa	[master] fixed an incorrect test case in rpzrecurse	2015-12-13 14:15:47 -08:00
Evan Hunt	e0638007c8	[master] clarify in the help message that delv -c is a noop	2015-12-10 16:10:19 -08:00
Curtis Blackburn	21c6e49a77	[rt40106] add tests for dig +[no]ttlunits	2015-12-10 12:08:57 -08:00
Mark Andrews	505d311709	4278. [bug] 'delv +short +[no]split[=##]' didn't work as expected. [RT #41238]	2015-12-10 12:43:50 +11:00
Curtis Blackburn	6fe5cc5aea	[rt41263] add a system test for dig +qr +ednsopt<invalid>	2015-12-09 16:21:02 -08:00
Tinderbox User	2a37470065	update copyright notice / whitespace	2015-12-09 23:45:23 +00:00
Mukund Sivaraman	5d79b60fc5	Improve performance of RBT (#41165 )	2015-12-09 19:10:55 +05:30
Curtis Blackburn	aeb7b6e145	[rt40105] add a system test for dig +zflag	2015-12-08 16:06:39 -08:00
Curtis Blackburn	ce0d8b1c0e	[rt40104] changed one occurrence of +noednsneg to +noednsnegotiation	2015-12-08 16:03:01 -08:00
Curtis Blackburn	4d1ea2336c	[rt40107] add system tests for dig +header-only	2015-12-08 15:57:53 -08:00
Curtis Blackburn	ab94dd50e8	[rt40181] added tests for dig +short +nosplit/+rrcomments (see rt39291)	2015-12-08 15:13:52 -08:00
Mark Andrews	322e6b5be7	4276. [protocol] Add support for SMIMEA. [RT #40513 ]	2015-12-08 08:16:41 +11:00
Evan Hunt	464c2c673b	[master] fix dig +norrcomments 4272. [bug] dig: the +norrcomments option didn't work with +multi. [RT #41234]	2015-12-04 16:16:59 -08:00
Tinderbox User	8c20f8635a	update copyright notice / whitespace	2015-12-03 23:45:24 +00:00
Evan Hunt	8f918a34d1	[master] update to previous commit: also list chrootdir if applicable	2015-12-02 19:05:46 -08:00
Evan Hunt	b6214feb63	[master] add conf file to rndc status 4268. [func] "rndc status" now reports the path to the configuration file. [RT #36470]	2015-12-02 18:54:46 -08:00
Mark Andrews	26177be294	4267. [test] Check sdlz error handling. [RT #41142 ]	2015-12-02 13:00:42 +11:00
Mark Andrews	447591a49c	use isc_buffer_constinit	2015-11-23 07:26:46 +11:00
Tinderbox User	af0bea7aa7	update copyright notice / whitespace	2015-11-20 23:45:23 +00:00
Mark Andrews	5b1c7ef35b	4264. [bug] Check const of strchr/strrchr assignments match argument's const status. [RT #41150]	2015-11-20 18:38:24 +11:00
Tinderbox User	dec590a3de	regen master	2015-11-18 01:04:11 +00:00
Jeremy C. Reed	22b006e0df	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2015-11-17 10:22:41 -05:00
Tinderbox User	c203aa153c	update copyright notice / whitespace	2015-11-16 23:45:24 +00:00
Mark Andrews	a248b59381	use newrdatas rather than oldrdatas in sizeof for consistency [RT #41131 ]	2015-11-17 06:24:32 +11:00
Jeremy C. Reed	414678df72	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2015-11-16 12:53:55 -05:00
Francis Dupont	dd784c18ef	Merged VS 2015 64 bit warnings (#40373 )	2015-11-16 17:47:10 +01:00
Mark Andrews	c8821d124c	4260. [security] Insufficient testing when parsing a message allowed records with an incorrect class to be be accepted, triggering a REQUIRE failure when those records were subsequently cached. (CVE-2015-8000) [RT #4098]	2015-11-16 13:12:20 +11:00
Tinderbox User	3ebda3f46b	update copyright notice / whitespace	2015-11-12 23:45:23 +00:00
Mark Andrews	d0afc2d1c4	use a test key	2015-11-12 10:54:59 +11:00
Tinderbox User	4949f39716	update copyright notice / whitespace	2015-11-11 23:45:23 +00:00
Mark Andrews	946e2cd351	check ptr is not NULL	2015-11-11 22:33:57 +11:00
Mukund Sivaraman	53cf70ef7d	Cleanup *.nta files after rndc system test	2015-11-11 13:49:21 +05:30
Mukund Sivaraman	58f7af60e7	Allow non-destructive control channel access using a "read-only" clause (#40498 )	2015-11-11 13:46:57 +05:30
Mukund Sivaraman	9b17fd447c	Limit rndc query message sizes to 32 KiB (#41073 )	2015-11-11 09:56:13 +05:30
Jeremy C. Reed	cca02d061f	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2015-11-09 22:07:27 -05:00
Tinderbox User	3865e18d3d	update copyright notice / whitespace	2015-11-09 23:45:22 +00:00
Jeremy C. Reed	dde7a7d357	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2015-11-09 11:25:01 -05:00
Evan Hunt	e13d04fda9	[master] fix python script versions 4257. [cleanup] Python scripts reported incorrect version. [RT #41080]	2015-11-08 21:34:24 -08:00
Tinderbox User	dae43e88b7	update copyright notice / whitespace	2015-11-06 23:45:24 +00:00
Evan Hunt	b513918481	[master] allow spaces in rndc arguments 4256. [bug] Allow rndc command arguments to be quoted so as to allow spaces. [RT #36665]	2015-11-05 19:51:54 -08:00
Tinderbox User	e62b9c9ce6	regen master	2015-11-06 01:04:13 +00:00
Tinderbox User	4ba2689c1f	update copyright notice / whitespace	2015-11-05 23:45:25 +00:00
Jeremy C. Reed	f02194c053	clean up refpurpose contents to be consistent This is to be consistent with other manuals: - no period punctuation at end - no capitalization at beginning unless acronym or proper noun - and no simple article (like "A") to start sentence. While the docbook specification says refpurpose is a "one sentence", its examples show it with the rules shown above. Also compared with many manpages as this is common format for the .Nd macro's one line description.	2015-11-05 13:01:07 -05:00
Witold Krecicki	bfd4b9e11a	4255. [func] Add 'message-compression' option to disable DNS compression in responses. [RT #40726 ]	2015-11-05 12:19:04 +01:00
Mark Andrews	e939674d53	4252. [func] Add support for automating the generation CDS and CDNSKEY rrsets to named and dnssec-signzone. [RT #40424]	2015-11-05 12:09:48 +11:00
Evan Hunt	6b8519147a	[master] NTAs did not survive reoad/reconfig 4251. [bug] NTAs were deleted when the server was reconfigured or reloaded. [RT #41058]	2015-11-04 10:34:28 -08:00
Tinderbox User	d4a69308f5	update copyright notice / whitespace	2015-10-29 23:45:34 +00:00
Mark Andrews	f02e14c74f	#ifdef ISC_PLATFORM_HAVEATOMICSTORE (cherry picked from commit `f75f9e1b62`)	2015-10-30 07:06:42 +11:00
Evan Hunt	821ff5e8fa	[master] isc_atomic_storeq()/stats improvements 4248. [func] Add an isc_atomic_storeq() function, use it in stats counters to improve performance. [RT #39972] [RT #39979]	2015-10-28 22:19:18 -07:00
Mark Andrews	1ff2118d6c	return dns_dbtable_add result on error [RT #40653 ]	2015-10-29 15:48:01 +11:00
Mark Andrews	f06b6a9b14	4247. [port] Require both HAVE_JSON and JSON_C_VERSION to be defined to report json library version. [RT #41045]	2015-10-29 15:22:41 +11:00
Evan Hunt	aa9b64060f	[master] fix statschannel with no libjson 4246. [test] Ensure the statschannel system test runs when BIND is not built with libjson. [RT #40944]	2015-10-28 20:19:31 -07:00
Tinderbox User	eadee66609	regen master	2015-10-29 02:56:15 +00:00
Mark Andrews	72ac929f2b	4244. [bug] The parser was not reporting that use-ixfr is obsolete. [RT #41010]	2015-10-29 12:51:17 +11:00
Tinderbox User	1b6e38d7b8	regen	2015-10-28 23:30:01 +00:00
Tinderbox User	13908e7551	update copyright notice / whitespace	2015-10-27 23:45:22 +00:00
Tinderbox User	7b26f8d8b9	regen	2015-10-27 23:30:01 +00:00
Mark Andrews	a70fc47e9d	4243. [func] Improved stats reporting from Timothe Litt. [RT #38941 ]	2015-10-28 09:45:46 +11:00
Jeremy C. Reed	fe12c35c3e	fix some spelling typos and standardize some English spellings (to be consistent)	2015-10-23 13:04:09 -04:00
Tinderbox User	9d557856c2	regen master	2015-10-22 05:53:09 +00:00
Mark Andrews	79f0eedd65	cleanup trailing whitespace	2015-10-22 16:24:03 +11:00
Mark Andrews	30eec077db	cleanup trailing white space in SGML like files	2015-10-22 16:09:46 +11:00
Mark Andrews	04893d38e0	add blank line	2015-10-22 12:15:02 +11:00
Mark Andrews	0526268c2b	4242. [bug] Replace the client if not already replaced when prefetching. [RT #41001]	2015-10-22 10:58:25 +11:00
Evan Hunt	90174e64f4	[master] shorten default servfail-ttl 4239. [func] Changed default servfail-ttl value to 1 second from 10. Also, the maximum value is now 30 instead of 300. [RT #37556]	2015-10-17 13:44:01 -07:00
Francis Dupont	638e82b134	spelling	2015-10-07 14:49:51 +02:00
Tinderbox User	fd2597f756	regen master	2015-10-07 04:11:09 +00:00
Tinderbox User	010a51c427	regen master	2015-10-07 01:06:58 +00:00
Tinderbox User	19c7b1a029	update copyright notice / whitespace	2015-10-06 23:45:23 +00:00
Evan Hunt	6715db6593	[master] fix copyright warnings	2015-10-05 23:14:11 -07:00
Tinderbox User	2eeb74d1cf	regen master	2015-10-06 05:45:21 +00:00
Evan Hunt	14a656f94b	[master] upgrade doc toolchain 4237. [doc] Upgraded documentation toolchain to use DocBook 5 and dblatex. [RT #40766]	2015-10-05 21:59:35 -07:00
Mukund Sivaraman	31cca00bba	Add note about Windows (#40761 )	2015-10-06 05:57:26 +05:30
Mukund Sivaraman	1a989c4322	Update named manual page (#40761 )	2015-10-06 05:52:02 +05:30
Tinderbox User	244d11a227	update copyright notice / whitespace	2015-10-03 23:45:23 +00:00
Mukund Sivaraman	930719e876	Update the default value for number of UDP listeners (#40761 )	2015-10-03 07:08:55 +05:30
Tinderbox User	10b865e918	regen master	2015-10-03 01:07:28 +00:00
Evan Hunt	b66b333f59	[master] dnstap 4235. [func] Added support in named for "dnstap", a fast method of capturing and logging DNS traffic, and a new command "dnstap-read" to read a dnstap log file. Use "configure --enable-dnstap" to enable this feature (note that this requires libprotobuf-c and libfstrm). See the ARM for configuration details. Thanks to Robert Edmonds of Farsight Security. [RT #40211]	2015-10-02 12:32:42 -07:00
Witold Krecicki	a239044323	4234. [func] Add deflate compression in statistics channel HTTP server. [RT #40861]	2015-10-02 10:45:10 +02:00
Tinderbox User	e13c3286a5	update copyright notice / whitespace	2015-10-01 23:45:31 +00:00
Mark Andrews	3ed714b961	emit "E:TESTNAME:DATE" when we can't start a server	2015-10-01 16:01:34 +10:00
Mark Andrews	d76496a62a	handle ISC_R_FILENOTFOUND	2015-10-01 15:47:39 +10:00
Tinderbox User	551e0d486d	update copyright notice / whitespace	2015-09-30 23:45:36 +00:00
Mark Andrews	65d59a4307	4232. [test] Add tests for CDS and CDNSKEY with delegation-only. [RT #40597]	2015-09-30 15:55:14 +10:00
Mark Andrews	2a12984ce6	4227. [bug] Silence static analysis warnings. [RT #40828	2015-09-30 14:14:47 +10:00
Mark Andrews	0d990f57ae	silence compiler warnings	2015-09-30 14:04:28 +10:00
Mark Andrews	1a0e5b0504	address linking issues	2015-09-30 12:38:07 +10:00
Tinderbox User	55cfbf322d	update copyright notice / whitespace	2015-09-29 23:45:32 +00:00
Mark Andrews	ab8b419a79	#include <isc/string.h> for memset	2015-09-30 00:46:33 +10:00
Mark Andrews	ac6bb3dd36	add missing libraries	2015-09-30 00:44:49 +10:00
Evan Hunt	a00f9e2f50	[master] merge dyndb 4224. [func] Added support for "dyndb", a new interface for loading zone data from an external database, developed by Red Hat for the FreeIPA project. DynDB drivers fully implement the BIND database API, and are capable of significantly better performance and functionality than DLZ drivers, while taking advantage of advanced database features not available in BIND such as multi-master replication. Thanks to Adam Tkac and Petr Spacek of Red Hat. [RT #35271]	2015-09-28 23:12:35 -07:00
Mark Andrews	4d085258cc	make macro name match category name	2015-09-29 15:02:49 +10:00
Tinderbox User	6648adb2e1	update copyright notice / whitespace	2015-09-28 23:45:23 +00:00
Mark Andrews	7867d18ce0	Introduce end-of-line normalization	2015-09-29 08:25:35 +10:00
Mark Andrews	540f03ae74	use %zu	2015-09-29 07:31:15 +10:00
Witold Krecicki	e6d0a391f5	4223. [func] Add support for setting max-cache-size to percentage of available physical memory, set default to 90%. [RT #38442]	2015-09-28 11:08:50 +02:00
Mark Andrews	98a7f8c7ae	4222. [func] Bias IPv6 servers when selecting the next server to query. [RT #40836]	2015-09-28 18:57:19 +10:00
Tinderbox User	9a5087bf58	regen master	2015-09-23 01:05:36 +00:00
Tinderbox User	0e9b328d62	update copyright notice / whitespace	2015-09-22 23:45:22 +00:00
Evan Hunt	09ceaefb0a	[master] need id tag on refentry	2015-09-21 21:36:26 -07:00
Evan Hunt	cc52a16096	[master] fix wire_test so it can read files with comment lines	2015-09-18 11:39:31 -07:00
Mark Andrews	f6e45a5c54	4217. [protocol] Add support for CSYNC. [RT #40532 ]	2015-09-18 23:45:12 +10:00
Mark Andrews	ff55c577ba	4215. [bug] nsupdate: skip to next request on GSSTKEY create failure. [RT #40685]	2015-09-18 09:52:27 +10:00
Tinderbox User	7dbeeeaa1e	update copyright notice / whitespace	2015-09-17 23:45:24 +00:00
Mark Andrews	e0a30050c8	4214. [protocol] Add support for TALINK. [RT #40544 ]	2015-09-18 07:43:43 +10:00
Mark Andrews	dd1bcab25c	4213. [bug] Don't reuse a cache across multiple classes. [RT #40205]	2015-09-17 14:51:21 +10:00
Mark Andrews	1d5ebfc05f	address race condition in ecdsa system test leading to differing authority sections. [RT #40283 ]; no CHANGES entry.	2015-09-17 14:23:44 +10:00
Mark Andrews	09177840c7	4211. [bug] Ensure that lwresd gets at least one task to work with if enabled. [RT #40652]	2015-09-17 14:11:49 +10:00
Mark Andrews	fe51e068f0	4208. [bug] Address null pointer dereferences on out of memory. [RT #40764]	2015-09-17 08:51:25 +10:00
Mark Andrews	48bbe9c7f2	fix opcode usage	2015-09-16 21:17:49 +10:00
Mark Andrews	0f2ecf4b5c	4207. [bug] Handle class mismatches with raw zone files. [RT #40746]	2015-09-16 10:43:22 +10:00
Evan Hunt	226339ed43	[master] spurious spaces in named-checkconf -p 4205. [bug] 'named-checkconf -p' could include unwanted spaces when printing tuples with unset optional fields. [RT #40731]	2015-09-14 08:50:17 -07:00
Tinderbox User	96f6f5dfc2	update copyright notice / whitespace	2015-09-11 23:45:36 +00:00
Mark Andrews	295a711b72	4204. [bug] 'dig +trace' failed to lookup the correct type if the initial root ns query was retried. [RT #40296] `	2015-09-12 09:04:37 +10:00
Mark Andrews	5a49f61ca9	4199. [protocol] Add support for NINFO, RKEY, SINK, TA. [RT #40545] [RT #40547] [RT #40561] [RT #40563]	2015-09-11 17:35:01 +10:00
Evan Hunt	aec8a3b7cf	[master] improve rrchecker test 4203. [test] The rrchecker system test now tests conversion to and from unkonwn-type format. [RT #40584]	2015-09-11 00:24:47 -07:00
Mark Andrews	a0ef8211d3	4201. [func] The default preferred-glue is now the address record type of the transport the query was received over. [RT #40468]	2015-09-11 13:27:58 +10:00
Mark Andrews	3fa134363f	4200. [cleanup] win32: update BINDinstall to be BIND release independent. [RT #38915]	2015-09-11 12:25:39 +10:00
Tinderbox User	f28c6dc514	update copyright notice / whitespace	2015-09-10 23:46:28 +00:00
Mark Andrews	3dd63ba00f	4199. [protocol] Add support for NINFO, RKEY, TA. [RT #40545] [RT #40547] [RT #40563]	2015-09-10 17:58:29 +10:00
Mark Andrews	63874956de	4199. [protocol] Add support for NINFO, RKEY. [RT #40547 ] [RT #40563 ]	2015-09-10 17:07:05 +10:00
Mark Andrews	8b29fc0b7a	4199. [protocol] Add support for RKEY. [RT #40563 ]	2015-09-10 14:50:20 +10:00
Mark Andrews	5be3128599	address race condition rt40242	2015-09-09 18:12:05 +10:00
Mark Andrews	075a3d60c2	4197. [bug] 'named-checkconf -z' didn't handle 'in-view' clauses. [RT #40603]	2015-09-09 17:56:23 +10:00
Mark Andrews	4ca7391e64	4196. [doc] Improve how "enum + other" types are documented. [RT #40608] 4195. [bug] 'max-zone-ttl unlimited;' was broken. [RT #40608]	2015-09-09 17:02:11 +10:00
Mark Andrews	fbd9aaa58c	4194. [bug] named-checkconf -p failed to properly print a port range. [RT #40634]	2015-09-09 16:49:11 +10:00
Mark Andrews	3b83676e07	*.vcxproj.in should use CRLF as EOL	2015-08-27 21:57:18 +00:00
Evan Hunt	bcae9a15c1	[master] s/the the/the/	2015-08-27 14:11:27 -07:00
Tinderbox User	0d5b7ed79d	update copyright notice / whitespace	2015-08-25 23:45:27 +00:00
Mark Andrews	9b956d342e	4192. [bug] The default rrset-order of random was not always being applied. [RT #40456]	2015-08-25 14:52:27 +10:00
Mark Andrews	5855fd79e3	4191. [protocol] Accept DNS-SD non LDH PTR records in reverse zones as per RFC 6763. [RT #37889]	2015-08-25 14:46:06 +10:00
Mark Andrews	3979031a06	check isc_buffer_allocate result	2015-08-23 19:29:40 +10:00
Tinderbox User	5d68969ab3	update copyright notice / whitespace	2015-08-22 23:45:23 +00:00
Mark Andrews	dc3912f3ca	4190. [protocol] Accept Active Diretory gc._msdcs.<forest> name as valid with check-names. <forest> still needs to be LDH. [RT #40399]	2015-08-22 15:27:33 +10:00
Mark Andrews	416265e4d4	add / (cherry picked from commit `820a9517ad`)	2015-08-20 14:02:08 +10:00
Mark Andrews	b5caf98644	ignore xmlstats	2015-08-20 14:00:23 +10:00
Tinderbox User	161b5249b9	update copyright notice / whitespace	2015-08-19 23:45:23 +00:00
Mark Andrews	5c1c62cd8a	awk on solaris doesn't like // as a pattern	2015-08-19 08:35:12 +10:00
Mukund Sivaraman	bf350c9f1a	Fix RPZ bugs related to wildcard triggers (#40357 )	2015-08-18 19:39:53 +05:30
Mark Andrews	1a38ba7b41	add statistics	2015-08-18 22:31:13 +10:00
Mark Andrews	d9aeaf35ea	check for libxml2	2015-08-18 22:29:35 +10:00
Evan Hunt	b750a49f3f	[master] fixed memory leak in dns_compress_add() 4184. [bug] Fixed a possible memory leak in name compression when rendering long messages. (Also, improved wire_test for testing such messages.) [RT #40375]	2015-08-17 22:41:44 -07:00
Evan Hunt	420a43c8d8	[master] timing safe memory comparisons 4183. [cleanup] Use timing-safe memory comparisons in cryptographic code. Also, the timing-safe comparison functions have been renamed to avoid possible confusion with memcmp(). [RT #40148]	2015-08-17 18:26:44 -07:00
Mark Andrews	486c763015	use grep rather than xmllint	2015-08-18 10:03:58 +10:00
Mark Andrews	bce42685ab	add missing echo	2015-08-18 09:37:14 +10:00
Evan Hunt	b2f85a0c8e	[master] win32: vs2015 compliance; openssl dependency for check.c	2015-08-17 11:35:10 -07:00
Mark Andrews	55df11d4e1	use sed instead of count	2015-08-18 00:35:06 +10:00
Mark Andrews	5f7540f12f	improve failure diagnostics	2015-08-17 17:42:58 +10:00
Mark Andrews	741c65c4d8	ignore leading zeros of revoked keyid	2015-08-17 17:10:46 +10:00
Tinderbox User	b140aa009b	update copyright notice / whitespace	2015-08-16 23:45:23 +00:00
Mark Andrews	6458ad3ab2	address use after free error	2015-08-16 20:28:52 +10:00
Tinderbox User	288c18263f	update copyright notice / whitespace	2015-08-14 23:45:27 +00:00
Evan Hunt	bf4a7968e8	[master] errors in pipelined queries could assert 4180. [bug] Error responses in pipelined queries could cause a crash in client.c. [RT #40289]	2015-08-14 08:34:54 -07:00
Mukund Sivaraman	984d2bb9e5	Fix assertion failure in parsing UNSPEC(103) RR from text (#40274 )	2015-08-14 13:30:52 +05:30
Mukund Sivaraman	474921d733	Fix assertion failure in parsing NSAP records from text	2015-08-14 13:11:26 +05:30
Mark Andrews	563878539a	4176. [bug] Address race issues with lwresd. [RT #40284 ]	2015-08-14 15:47:53 +10:00
Evan Hunt	bcf76c1fb8	[master] better reporting of xml/json unavailability - error if "configure --with-libxml2" but the library isn't available - log a warning on startup if only JSON or only XML can be served	2015-08-12 21:58:04 -07:00
Tinderbox User	aa6c5a3e33	regen master	2015-08-13 01:26:22 +00:00
Tinderbox User	ed91aca9e6	update copyright notice / whitespace	2015-08-12 23:45:25 +00:00
Mark Andrews	c631ff56bf	Updated CHANGES note to include require-server-cookie: 4152. [func] Implement DNS COOKIE option. This replaces the experimental SIT option of BIND 9.10. The following named.conf directives are available: send-cookie, cookie-secret, cookie-algorithm, nocookie-udp-size and require-server-cookie. The following dig options are available: +[no]cookie[=value] and +[no]badcookie. [RT #39928]	2015-08-13 08:26:23 +10:00
Evan Hunt	7c0f238c50	[master] handle time units in dnssec-coverage -r 4174. [bug] "dnssec-coverage -r" didn't handle time unit suffixes correctly. [RT #38444]	2015-08-12 12:20:43 -07:00
Mark Andrews	efb028b6c8	4173. [bug] dig +sigchase was not properly matching the trusted key. [RT #40188]	2015-08-12 19:11:49 +10:00
Mark Andrews	151f1bcd5e	4172. [bug] Named / named-checkconf didn't handle a view of CLASS0. [RT #40265]	2015-08-12 19:06:00 +10:00
Mark Andrews	b8a04d50a3	Change 3813 broke dig/host -4/-6. No CHANGES as this is has not been released	2015-08-12 12:50:15 +10:00
Mark Andrews	157bc46d2e	add '=' to +opcode description	2015-08-12 07:04:08 +10:00
Evan Hunt	2a49f6bbfe	[master] use dns_message_totext() in wire_data	2015-08-10 20:51:22 -07:00
Evan Hunt	f93884fcb7	[master] use libdns functions to convert rcode and opcode to text	2015-08-10 20:27:35 -07:00
Mark Andrews	f260e3a188	address len being shadowed	2015-08-11 12:59:34 +10:00
Tinderbox User	7e80eac638	update copyright notice / whitespace	2015-08-10 23:45:23 +00:00
Evan Hunt	3812202124	[master] add a "wire_test -d" option to read raw binary data 4169. [test] Added a 'wire_test -d' option to read input as raw binary data, for use as a fuzzing harness. [RT #40312]	2015-08-10 14:44:02 -07:00
Evan Hunt	05b1684791	[master] fix an awk portability issue	2015-08-03 14:21:16 -07:00
Tinderbox User	f3cbd0e029	update copyright notice / whitespace	2015-08-02 23:45:22 +00:00
Evan Hunt	68116c5a5f	[master] add +nocookie options where needed	2015-08-02 11:18:12 -07:00
Mark Andrews	b485d0a67f	if UDP and we have a bad cookie send a immediate badcookie response	2015-07-27 15:42:03 +10:00
Mark Andrews	58eb2006a4	return notimp for qcount=0 unimplemeneted opcodes (cherry picked from commit 7c10dc502a34f88f11c6b6469bb234c72e61fec8)	2015-07-24 13:37:12 +10:00
Evan Hunt	a3b21effd7	[master] missing 'use' caused test failure	2015-07-21 13:49:54 -07:00
Mukund Sivaraman	fc39b6a961	Update rndc usage output (#40010 ) Squashed commit of the following: commit 73f0bba7d8d4763763ff88731c739ac646714ac8 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jul 13 05:40:35 2015 +0530 Update rndc usage output This is based on a patch sent by Tony Finch.	2015-07-21 12:24:27 +05:30
Mukund Sivaraman	2cc21870b0	Make rndc showzone print a message when allow-new-zones is not configured (#40009 ) Squashed commit of the following: commit 77f12b02cf4e81f13e10db3cfac90e9de0b53928 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jul 13 05:28:13 2015 +0530 Some tweaks commit 9c521020b03c2fe7293ec4c970225fff479efd40 Author: Tony Finch <dot@dotat.at> Date: Thu Jul 9 15:36:15 2015 +0100 rndc addzone error reporting improvements Clearer error messages from rndc addzone and modzone when the view is not known or when allow-new-zones is off. Also, remove a spurious newline from the delzone response.	2015-07-21 12:19:24 +05:30
Mark Andrews	80a51d24ea	set badcookie not besteffort	2015-07-21 15:15:40 +10:00
Evan Hunt	a32ca13d12	[master] statschannel test failed when only JSON was available	2015-07-20 19:09:22 -07:00
Evan Hunt	9501aa9d5a	[master] portability	2015-07-20 19:01:29 -07:00
Mark Andrews	3a49d0ff10	4164. [bug] Don't rename slave files and journals on out of memory. [RT #40033] 4163. [bug] Address compiler warnings. [RT #40024]	2015-07-13 09:46:59 +10:00
Tinderbox User	b3338fc248	regen master	2015-07-11 01:05:48 +00:00
Tinderbox User	35af5049f8	update copyright notice / whitespace	2015-07-10 23:45:23 +00:00
Evan Hunt	629a015940	[master] correct the maximum NTA lifetime in rndc's help output	2015-07-10 09:07:23 -07:00
Mark Andrews	539c3f73b7	zone is not optional for zonestatus [RT #40012 ]	2015-07-10 15:28:11 +10:00
Evan Hunt	b716b9cddc	[master] add JSON and more XML tests 4161. [test] Add JSON test for traffic size stats; also test for consistency between "rndc stats" and the XML and JSON statistics channel contents. [RT #38700]	2015-07-09 21:18:42 -07:00
Tinderbox User	c0cbdeedb5	regen master	2015-07-10 01:05:03 +00:00
Tinderbox User	f16a6bfb6c	update copyright notice / whitespace	2015-07-09 23:45:22 +00:00
Evan Hunt	e38a7d749b	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-07-08 22:56:32 -07:00
Evan Hunt	1479200aa0	[master] DDoS mitigation features 3938. [func] Added quotas to be used in recursive resolvers that are under high query load for names in zones whose authoritative servers are nonresponsive or are experiencing a denial of service attack. - "fetches-per-server" limits the number of simultaneous queries that can be sent to any single authoritative server. The configured value is a starting point; it is automatically adjusted downward if the server is partially or completely non-responsive. The algorithm used to adjust the quota can be configured via the "fetch-quota-params" option. - "fetches-per-zone" limits the number of simultaneous queries that can be sent for names within a single domain. (Note: Unlike "fetches-per-server", this value is not self-tuning.) - New stats counters have been added to count queries spilled due to these quotas. See the ARM for details of these options. [RT #37125]	2015-07-08 22:53:39 -07:00
Mark Andrews	2561b2dd84	add comment about +trace and @server	2015-07-09 12:11:46 +10:00
Tinderbox User	f66d0e646f	regen	2015-07-08 23:30:01 +00:00
Mark Andrews	e8f98ec8d4	future cookie code	2015-07-08 12:57:29 +10:00
Mark Andrews	4968e1de7e	allow named to build w/o openssl	2015-07-08 11:54:25 +10:00
Tinderbox User	9ab5a7d83c	update copyright notice / whitespace	2015-07-07 23:45:22 +00:00
Mark Andrews	6e7f5e8ad5	4159. [cleanup] Alphabetize dig's help output. [RT #39966 ]	2015-07-08 09:20:49 +10:00
Mark Andrews	b399f4e568	4159. [cleanup] Alphabetize dig's help output. [RT #39966 ]	2015-07-08 08:49:24 +10:00
Evan Hunt	70d987def5	[master] traffic size stats 4156. [func] Added statistics counters to track the sizes of incoming queries and outgoing responses in histogram buckets, as specified in RSSAC002. [RT #39049]	2015-07-06 22:29:06 -07:00
Mukund Sivaraman	33ca26968b	Allow RPZ rewrite logging to be configured on a per-zone basis (#39754 )	2015-07-06 08:57:51 +05:30
Mark Andrews	3e33f4198d	4154. [bug] A OPT record should be included with the FORMERR response when there is a malformed EDNS option. [RT #39647] 4153. [bug] Dig should zero non significant +subnet bits. Check that non significant ECS bits are zero on receipt. [RT #39647]	2015-07-06 12:52:37 +10:00
Tinderbox User	1879ff4932	regen master	2015-07-06 01:04:49 +00:00
Tinderbox User	8f0b326d9a	update copyright notice / whitespace	2015-07-05 23:45:22 +00:00
Mark Andrews	ce67023ae3	4152. [func] Implement DNS COOKIE option. This replaces the experimental SIT option of BIND 9.10. The following named.conf directives are avaliable: send-cookie, cookie-secret, cookie-algorithm and nocookie-udp-size. The following dig options are available: +[no]cookie[=value] and +[no]badcookie. [RT #39928]	2015-07-06 09:44:24 +10:00
Tinderbox User	d6b82bc2ae	update copyright notice / whitespace	2015-06-30 23:45:23 +00:00
Tinderbox User	6cd01c0a96	regen master	2015-06-30 01:04:57 +00:00
Tinderbox User	337d408adb	update copyright notice / whitespace	2015-06-29 23:45:23 +00:00
Jeremy C. Reed	001b06f0ab	remove some duplicate "the" words.	2015-06-29 13:40:06 -04:00
Mukund Sivaraman	08f0129732	Fix a bug printing zone names with '/' character in XML and JSON stats (#39873 )	2015-06-29 18:33:18 +05:30
Mark Andrews	4a61eae651	4147. [bug] Filter-aaaa / filter-aaaa-on-v4 / filter-aaaa-on-v6 was returning referrals rather than nodata responses when the AAAA records were filtered. [RT #39843]	2015-06-29 15:48:41 +10:00
Tinderbox User	8e50c69783	update copyright notice / whitespace	2015-06-25 23:45:22 +00:00
Witold Krecicki	f10a67dad2	Add statistics counters for nxdomain redirections. [RT #39790 ]	2015-06-25 09:21:50 +02:00
Tinderbox User	e0ba64bdd2	update copyright notice / whitespace	2015-06-23 23:45:21 +00:00
Mukund Sivaraman	0439bfedd9	Fix parsing of NZFs saved by rndc addzone with view specified (#39845 )	2015-06-23 14:19:48 +05:30
Mukund Sivaraman	b4e114e3cd	Print unsigned values for serial, etc. in rndc zonestatus output (#39854 )	2015-06-23 13:57:33 +05:30
Mukund Sivaraman	d14c268362	Remove redundant nzf_remove() call during delzone (#39844 )	2015-06-23 13:41:08 +05:30
Witold Krecicki	af3770ed93	rndc reconfig reports configuration errors the same way rndc reload does [RT #39635 ]	2015-06-12 10:19:29 +02:00
Evan Hunt	27970e78c6	[master] log outdated rpz settings regardless of enable-querytrace	2015-06-10 10:22:59 -07:00
Evan Hunt	215049febb	[master] rpz_ver check was ineffective	2015-06-09 15:05:43 -07:00
Witold Krecicki	f85deb5154	log expired NTA at startup	2015-06-08 13:57:24 +02:00
Tinderbox User	335c82aebd	regen master	2015-06-05 01:05:03 +00:00
Mark Andrews	8a9bac8dec	4133. [port] Update how various json libraries are handled. [RT #39646]	2015-06-05 10:16:24 +10:00
Evan Hunt	eb447eca88	[master] dig option cleanups 4132. [cleanup] dig: added +rd as a synonym for +recurse, added +class as an unabbreviated alternative to +cl. [RT #39686]	2015-06-04 08:55:32 -07:00
Evan Hunt	8c9fba44a4	[master] further RPZ fixes 4131. [bug] Addressed further problems with reloading RPZ zones. [RT #39649]	2015-06-03 18:18:55 -07:00
Mark Andrews	b704d25ff3	unlock T4_mx	2015-05-30 17:54:33 +10:00
Mark Andrews	8c74b6a9a1	use sed as tail -n +# is not portable	2015-05-30 11:05:57 +10:00
Tinderbox User	22be030b50	regen master	2015-05-29 01:04:57 +00:00
Tinderbox User	431e5c81db	update copyright notice / whitespace	2015-05-28 23:45:24 +00:00
Mark Andrews	e53e202ef3	4128. [bug] Address issues raised by Coverity 7.6. [RT #39537 ]	2015-05-28 13:17:07 +10:00
Mark Andrews	52a487f71a	link against ISC_OPENSSL_LIBS	2015-05-28 11:06:39 +10:00
Tinderbox User	481870b95f	regen master	2015-05-28 01:04:54 +00:00
Tinderbox User	3813d22587	update copyright notice / whitespace	2015-05-27 23:45:25 +00:00
Mark Andrews	598b502695	4127. [protocol] CDS and CDNSKEY need to be signed by the key signing key as per RFC 7344, Section 4.1. [RT #37215]	2015-05-27 15:25:45 +10:00
Evan Hunt	a32b6291aa	[master] address regression 4126. [bug] Addressed a regression introduced in change #4121. [RT #39611]	2015-05-26 19:11:08 -07:00
Mark Andrews	91d3c63ca7	add -P and -T to help	2015-05-27 10:56:49 +10:00
Tinderbox User	b7b835bfb0	update copyright notice / whitespace	2015-05-24 23:45:24 +00:00
Mark Andrews	83622f9a4c	link against libisc	2015-05-24 12:50:56 +10:00
Mark Andrews	cb9b145f39	don't include <isc/print.h>	2015-05-24 12:50:20 +10:00
Mark Andrews	936adc1282	link against libisc	2015-05-24 11:58:15 +10:00
Tinderbox User	d70dac20d2	update copyright notice / whitespace	2015-05-23 23:45:25 +00:00
Mark Andrews	2ac85d943b	specfiy where libisc is (cherry picked from commit c907e7b512e88b641595d514790e2b41575f149e)	2015-05-24 06:03:08 +10:00
Mark Andrews	e6e7de5cda	link against ISCLIBS	2015-05-24 05:42:44 +10:00
Francis Dupont	850cfa4e86	Added isc in includes (print.h requires it)	2015-05-23 15:51:34 +02:00
Francis Dupont	3759f10fc5	added print.h includes, updated copyrights	2015-05-23 14:21:51 +02:00
Tinderbox User	46ee7c3260	update copyright notice / whitespace	2015-05-22 23:45:24 +00:00
Curtis Blackburn	717c2b9655	4125. [test] Added tests for dig, renamed delv test to digdelv. [RT #39490]	2015-05-22 11:47:17 -07:00
Evan Hunt	c55a1da4fc	[master] log parsing errors from default config or addzone/modzone 4124. [func] Log errors or warnings encountered when parsing the internal default configuration. Clarify the logging of errors and warnings encountered in rndc addzone or modzone parameters. [RT #39440]	2015-05-21 23:04:29 -07:00
Tinderbox User	0dfc0745c4	update copyright notice / whitespace	2015-05-21 23:45:26 +00:00
Mukund Sivaraman	705cea35a8	Fix RPZ radix tree search() for CLIENT-IP triggers (#39481 )	2015-05-21 11:10:49 +05:30
Evan Hunt	b403f3b57e	[master] revert erroneous cleanup	2015-05-20 13:44:28 -07:00
Evan Hunt	54231cf082	[master] minor cleanup	2015-05-20 00:10:38 -07:00
Tinderbox User	e9ed929fd1	regen master	2015-05-20 01:04:55 +00:00
Evan Hunt	7e6cf6fc6e	[master] address a possible policy update race 4120. [bug] A bug in RPZ could cause the server to crash if policy zones were updated while recursion was pending for RPZ processing of an active query. [RT #39415]	2015-05-19 15:47:42 -07:00
Jeremy C. Reed	20914534e6	add a space after shell here-document name <<END> foo.out to <<END > foo.out to be consistent with shell style discussed via jabber in bind9 room	2015-05-19 13:22:36 -04:00
Mark Andrews	c7463967db	4119. [func] Allow dig to set the message opcode. [RT #39550 ]	2015-05-19 12:46:06 +10:00
Evan Hunt	d9aefcf5cb	[master] there are now 98 automatic zones	2015-05-16 10:07:17 -07:00
Mark Andrews	8f20f6c9d7	4117. [protocol] Add EMPTY.AS112.ARPA as per RFC 7534.	2015-05-15 08:22:25 +10:00
Tinderbox User	9ae1588020	update copyright notice / whitespace	2015-05-08 23:45:24 +00:00
Mukund Sivaraman	b947e1a521	Fix a bug in RPZ that could cause unwanted recursion (#39229 ) Conflicts: doc/arm/notes.xml	2015-05-07 08:29:36 +05:30
Tinderbox User	012142bbe0	update copyright notice / whitespace	2015-05-06 23:45:24 +00:00
Mark Andrews	fe76a64294	restore is_zone on return from redirect lookup [RT #37989b] (cherry picked from commit 1d405c1412b3a2e5aafb37ea55b332914246349e)	2015-05-07 08:32:42 +10:00
Tinderbox User	6d45011a65	regen master	2015-05-06 01:05:06 +00:00
Tinderbox User	4e92a74ec4	update copyright notice / whitespace	2015-05-05 23:45:24 +00:00
Evan Hunt	9e804040a2	[master] add "rndc -r" to print result code 4115. [func] "rndc -r" now prints the result code (e.g., ISC_R_SUCCESS, ISC_R_TIMEOUT, etc) after running the requested command. [RT #38913]	2015-05-05 16:39:09 -07:00
Evan Hunt	d4ed608e0c	[master] Allow some tests to run partially if Net::DNS is unavailable	2015-05-05 08:33:09 -07:00
Mukund Sivaraman	8f25faf972	Fix a regression in radix tree implementation introduced by ECS code (#38983 )	2015-05-05 13:11:23 +05:30
Mark Andrews	ecaed3593c	add managed-keys to help	2015-05-05 12:20:51 +10:00
Tinderbox User	395c952141	regen master	2015-05-05 01:05:07 +00:00
Tinderbox User	6376559cd3	update copyright notice / whitespace	2015-05-04 23:45:23 +00:00
Mark Andrews	3138571170	fix tag	2015-05-05 08:23:47 +10:00
Mark Andrews	8a46213dbe	fix tag	2015-05-05 08:23:00 +10:00
Evan Hunt	dc877b38a0	[master] check for Net::DNS 4113. [test] Check for Net::DNS is some system test prerequisites. [RT #39369]	2015-05-04 12:51:38 -07:00
Evan Hunt	1c02dd9dd9	[master] fix root-delegation-only without exclude 4112. [bug] Named failed to load when "root-delegation-only" was used without a list of domains to exclude. [RT #39380]	2015-05-04 12:44:10 -07:00
Mark Andrews	52aa2f9498	4111. [doc] Alphabetize rndc man page. [RT #39360 ]	2015-05-04 16:21:00 +10:00
Tinderbox User	452a29e62c	update copyright notice / whitespace	2015-04-28 23:45:24 +00:00
Mark Andrews	b292230ab8	4110. [bug] Address memory leaks / null pointer dereferences on out of memory. [RT #39310]	2015-04-29 03:16:50 +10:00
Tinderbox User	b299727c2e	update copyright notice / whitespace	2015-04-23 23:45:22 +00:00
Mark Andrews	c82b378115	4108. [func] A additional nxdomain redirect (nxdomain-redirect) method is now supported. [RT #37989]	2015-04-23 16:57:15 +10:00
Tinderbox User	37873c28de	update copyright notice / whitespace	2015-04-21 23:45:21 +00:00
Jeremy C. Reed	ae6b7bcd92	add some more files to cleanup after successful system test runs	2015-04-21 08:42:09 -04:00
Jeremy C. Reed	2e4babacf0	add mdig to gitignore	2015-04-21 08:41:36 -04:00
Jeremy C. Reed	6c1e7a347f	add gitignore file	2015-04-21 08:37:12 -04:00
Jeremy C. Reed	d71665e623	remove the named lock file	2015-04-21 08:21:40 -04:00
Francis Dupont	ab973ec40c	misc x64 VS 2015 CTP fixes [#39308 ]	2015-04-17 11:39:26 +02:00
Mark Andrews	f1a261ba2d	4104. [bug] Address uninitialized elements. [RT #39252 ]	2015-04-17 14:04:47 +10:00
Francis Dupont	bcb68be0a8	misc fixes for VS 2015 CTP #39267	2015-04-17 02:57:02 +02:00
Mark Andrews	e834b30f7c	use awk for line count rather that wc -l which may space pad	2015-04-16 12:17:59 +10:00
Evan Hunt	fc3ed1dbda	[master] fix +split and +rrcomments with dig +short 4101. [bug] dig: the +split and +rrcomments options didn't work with +short. [RT #39291]	2015-04-15 09:50:07 -07:00
Mark Andrews	c855e7170a	4100. [bug] Inherited owernames on the line immediately following a $INCLUDE were not working. [RT #39268]	2015-04-15 12:47:57 +10:00
Mark Andrews	bc8f82492d	4098. [bug] Address use-after-free issue when using a predecessor key with dnssec-settime. [RT #39272]	2015-04-15 12:33:21 +10:00
Tinderbox User	a269ca51cc	update copyright notice / whitespace	2015-04-14 23:45:21 +00:00
Mukund Sivaraman	ac31adc3b7	Add additional logging about xfrin transfer status (#39170 )	2015-04-14 12:16:26 +05:30
Tinderbox User	24abfe433e	regen master	2015-04-14 01:05:08 +00:00
Tinderbox User	6a6ceba6fe	update copyright notice / whitespace	2015-04-13 23:45:23 +00:00
Jeremy C. Reed	2637d30fbd	docbook <command> tags around named server references	2015-04-13 11:46:35 -05:00
Jeremy C. Reed	d82cc2260c	use docbook tag for option	2015-04-13 11:17:42 -05:00
Jeremy C. Reed	6ad1eab597	"commandline" to "command line"	2015-04-13 10:48:43 -05:00
Tinderbox User	1b0b6d7325	update copyright notice / whitespace	2015-04-07 23:45:23 +00:00
Evan Hunt	f28e5058c3	[master] dig can now learn the SIT value when retrying 4093. [func] Dig now learns the SIT value from truncated responses when it retries over TCP. [RT #39047]	2015-04-06 23:16:54 -07:00
Mark Andrews	febb020dce	4092. [bug] 'in-view' didn't work for zones beneath a empty zone. [RT #39173]	2015-04-07 13:21:33 +10:00
Tinderbox User	6e61135f10	update copyright notice / whitespace	2015-03-27 23:45:21 +00:00
Mukund Sivaraman	f9f81abff0	Fix a crash while parsing malformed CAA RRs in presentation format (#39003 )	2015-03-27 10:32:03 +05:30
Mark Andrews	1f5659fe68	spelling Signed-off-by: Mark Andrews <marka@isc.org>	2015-03-18 09:35:57 +11:00
Tinderbox User	4aaac77cb5	update copyright notice / whitespace	2015-03-16 23:45:20 +00:00
Mukund Sivaraman	642e4ac70d	Fix out-of-srcdir build with native pkcs11 (#38831 )	2015-03-16 14:08:46 +05:30
Evan Hunt	da4a7772eb	[master] improve thread support reporting 4083. [cleanup] Print of the number of CPUs and UDP listeners in the log and in "rndc status" output; indicate whether threads are supported in "named -V" output. [RT #38811]	2015-03-04 15:56:33 -08:00
Tinderbox User	811acf52b8	update copyright notice / whitespace	2015-03-04 23:45:21 +00:00
Mark Andrews	1b05d22789	4082. [bug] Incrementally sign large inline zone deltas. [RT #37927]	2015-03-05 09:59:29 +11:00
Francis Dupont	caaff35375	updated OpenSSL PKCS#11 engine patches	2015-03-04 15:15:01 +01:00
Mark Andrews	012ce6857e	use unique query names	2015-03-04 17:12:37 +11:00
Mark Andrews	2e0d8d74d7	handle daylight savings changes	2015-03-04 15:51:31 +11:00
Mark Andrews	d869bc7685	address -Wshaddow of lockfile	2015-03-04 13:49:48 +11:00
Tinderbox User	947d37484e	regen master	2015-03-04 01:04:48 +00:00
Mark Andrews	29d52c001f	4081. [cleanup] Use dns_rdatalist_init consistently. [RT #38759 ]	2015-03-03 16:43:42 +11:00
Evan Hunt	7ae96d8823	[master] add "lock-file" and fix up singleton code 4080. [func] Completed change #4022, adding a "lock-file" option to named.conf to override the default lock file, in addition to the "named -X <filename>" command line option. Setting the lock file to "none" using either method disables the check completely. [RT #37908]	2015-03-02 19:27:54 -08:00
Tinderbox User	3d787a1213	update copyright notice / whitespace	2015-03-02 23:45:21 +00:00
Mukund Sivaraman	10dd5f62f2	Add support for Valgrind's helgrind tool (#38706 ) Also fix one locking issue that helgrind found: Maintain stats->lock while stats->reference is used.	2015-03-02 13:42:20 +05:30
Tinderbox User	5e93bad21b	update copyright notice / whitespace	2015-03-01 23:45:20 +00:00
Tinderbox User	548a24c3d3	regen master	2015-02-28 01:05:06 +00:00
Mark Andrews	0be58dd2da	add $DESCRIPTION	2015-02-28 00:10:56 +11:00
Mark Andrews	0382684a06	add $DESCRIPTION	2015-02-28 00:09:25 +11:00
Mark Andrews	326b84f20e	fix version tests	2015-02-27 17:01:25 +11:00
Mark Andrews	a8da00ef95	4079. [func] Preserve the case of the ownername of records to the RRset level. [RT #37442]	2015-02-27 15:08:38 +11:00
Mark Andrews	be9720ae2c	4077. [test] Add static-stub regression test for DS NXDOMAIN return making the static stub disappear. [RT #38564]	2015-02-27 12:46:45 +11:00
Mark Andrews	bb5df338d9	4076. [bug] Named could crash on shutdown with outstanding reload / reconfig events. [RT #38622]	2015-02-27 12:34:43 +11:00
Mark Andrews	af669cb4fd	4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708 ]	2015-02-27 10:55:55 +11:00
Tinderbox User	c10fda07d6	update copyright notice / whitespace	2015-02-26 23:45:22 +00:00
Evan Hunt	044008f58f	[master] version cleanup 4073. [cleanup] Add libjson-c version number reporting to "named -V"; normalize version number formatting. [RT #38056]	2015-02-26 12:21:10 -08:00
Mukund Sivaraman	1783676a64	Add a --enable-querytrace configure switch for very verbose query tracelogging (#37520 )	2015-02-26 16:51:07 +05:30
Mukund Sivaraman	db93c0def5	Fix a segfault when running nslookup (#38548 )	2015-02-26 14:03:35 +05:30
Evan Hunt	bef771f237	[master] minor python3 portability fix	2015-02-25 17:12:05 -08:00
Evan Hunt	f833abd617	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-02-25 17:11:10 -08:00
Evan Hunt	ca6e60cb70	[master] reorganize nsupdate man page 4069. [doc] Reorganize options in the nsupdate man page. [RT #38516]	2015-02-25 17:05:08 -08:00
Tinderbox User	0eea9763d8	regen master	2015-02-26 01:04:45 +00:00
Evan Hunt	aeff3f0541	[master] include serial number in JSON zone stats 4068. [bug] Serial number was omitted from JSON zone statistics. [RT #38604]	2015-02-25 16:55:25 -08:00
Evan Hunt	8378b0c190	[master] reduce rrl logging noise 4067. [cleanup] Reduce noise from RRL when query logging is disabled. [RT #38648]	2015-02-25 16:44:43 -08:00
Evan Hunt	82c091b7a4	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-02-25 16:39:51 -08:00
Evan Hunt	53ae008f27	[master] reorganize options in dig man page 4066. [doc] Reorganize options in the dig man page. [RT #38516]	2015-02-25 16:38:52 -08:00
Tinderbox User	f159b7b5c7	update copyright notice / whitespace	2015-02-25 23:45:22 +00:00
Mukund Sivaraman	5a505fc4c2	Add facility to run system test nameds under Valgrind (#38546 )	2015-02-25 09:06:45 +05:30
Evan Hunt	bfc11b9c65	[master] additional mkeys tests 4065. [test] Additional RFC 5011 tests. [RT #38569]	2015-02-23 21:07:26 -08:00
Evan Hunt	07229d51a6	[master] report library version numbers on win32	2015-02-20 23:23:59 -08:00
Mark Andrews	19ba0bb5fd	remove unnecessary goto's and label	2015-02-19 15:53:20 +11:00
Mark Andrews	2b4860c4dc	rt38571: handle Time::Piece not being supported by perl	2015-02-18 23:49:33 +11:00
Mark Andrews	82c6bce26a	ignore dig's result when expecting 'connection timed out'	2015-02-12 13:44:30 +11:00
Tinderbox User	f6bc0a8608	update copyright notice / whitespace	2015-02-11 23:45:25 +00:00
Mark Andrews	466428be1f	assign sitvalue	2015-02-11 23:43:16 +11:00
Mark Andrews	a6ccc5c9bc	fix sitvalue	2015-02-11 22:57:50 +11:00
Mark Andrews	2ff2145ff5	4061. [bug] Handle timeout in legacy system test. [RT #38573 ]	2015-02-11 16:53:39 +11:00
Tinderbox User	f3affbe2ff	update copyright notice / whitespace	2015-02-10 23:45:23 +00:00
Evan Hunt	a98f70acc8	[master] address valgrind warnings 4059. [bug] Addressed valgrind warnings. [RT #38549]	2015-02-10 14:01:38 -08:00
Tinderbox User	d481ce8bba	update copyright notice / whitespace	2015-02-09 23:45:20 +00:00
Mark Andrews	dd06dbd512	add named.conf	2015-02-08 23:12:44 +11:00
Tinderbox User	659d063f23	regen master	2015-02-08 01:05:11 +00:00
Tinderbox User	8a1d7e8e8f	update copyright notice / whitespace	2015-02-07 23:45:20 +00:00
Mark Andrews	e10d453eb4	add crypto prerequisite	2015-02-08 08:16:54 +11:00
Evan Hunt	ea1f331c75	[master] fix tag mismatch	2015-02-06 17:33:30 -08:00
Tinderbox User	29756974c5	update copyright notice / whitespace	2015-02-06 23:45:21 +00:00
Evan Hunt	fecf151504	[master] better formatting fix	2015-02-06 00:04:19 -08:00
Evan Hunt	29beab1340	[master] fix "initialize with revoked key" test, add missing newline	2015-02-05 23:53:36 -08:00
Evan Hunt	ef3cf42de0	[master] remove a change inadvertently committed	2015-02-05 23:34:14 -08:00
Mark Andrews	e785f9c1c7	4057. [bug] 'dnssec-dsfromkey -T 0' failed to add ttl field. [RT #38565]	2015-02-06 17:01:50 +11:00
Mark Andrews	b1de3a999c	use $PERL	2015-02-06 16:58:39 +11:00
Evan Hunt	591389c7d4	[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]	2015-02-05 17:18:15 -08:00
Tinderbox User	de283bda6a	regen master	2015-02-06 01:04:48 +00:00
Francis Dupont	96bb3555e9	restore mdig.c	2015-02-05 13:34:18 +01:00
Francis Dupont	b2fd46f683	add print.h in mdig.c	2015-02-05 13:25:38 +01:00
Francis Dupont	7768b049c0	add missing mdig.* files	2015-02-05 13:23:35 +01:00
Mark Andrews	f4b1e7b656	isc_net_pton is conditionally built, use inet_pton	2015-02-05 15:20:02 +11:00
Tinderbox User	724df78acd	update copyright notice / whitespace	2015-02-04 23:45:21 +00:00
Mark Andrews	a85cae8232	add <isc/print.h>	2015-02-05 08:22:09 +11:00
Mark Andrews	12c65cbb20	actually add bin/tools/mdig.c	2015-02-05 07:56:05 +11:00
Francis Dupont	1059bc2e42	added mdig tool	2015-02-04 14:22:32 +01:00
Mukund Sivaraman	4eefa351cc	Fix a leak of query fetchlock (#38454 ) 4052. [bug] Fix a leak of query fetchlock. [RT #38454]	2015-02-03 11:42:58 +05:30
Evan Hunt	d8890e779c	[master] silence RPZ log messages 4050. [cleanup] Silence occasional spurious "duplicate query" log messages from RPZ. [RT #38510]	2015-02-02 15:49:36 -08:00
Tinderbox User	be755f4725	update copyright notice / whitespace	2015-01-22 23:45:26 +00:00
Evan Hunt	9175a4ed63	[master] fixed library version reporting - forgot to include a CHANGES note - disabled on windows (it fails to link)	2015-01-22 11:17:03 -08:00
Evan Hunt	84ee90b52d	[master] fix 'total use' accounting 4046. [bug] Accounting of "total use" in memory context statistics was not correct. [RT #38370]	2015-01-22 09:44:24 -08:00
Mark Andrews	b3c4c896e3	initialise fp	2015-01-22 12:14:45 +11:00
Tinderbox User	3e240d6559	regen master	2015-01-22 01:04:47 +00:00
Tinderbox User	39f68d7b64	update copyright notice / whitespace	2015-01-21 23:45:24 +00:00
Evan Hunt	2817aa56ca	[master] "rndc modzone" 4043. [func] "rndc modzone" can be used to modify the configuration of an existing zone, using similar syntax to "rndc addzone". [RT #37895]	2015-01-20 22:34:16 -08:00
Evan Hunt	ff62d4458a	[master] allow shared TCP sockets when connecting 4041. [func] TCP sockets can now be shared while connecting. (This will be used to enable client-side support of pipelined queries.) [RT #38231]	2015-01-20 17:22:31 -08:00
Tinderbox User	d9184858dd	regen master	2015-01-21 01:04:51 +00:00
Evan Hunt	761d135ed6	[master] add TCP pipelining support 4040. [func] Added server-side support for pipelined TCP queries. TCP connections are no longer closed after the first query received from a client. (The new "keep-response-order" option allows clients to be specified for which the old behavior will still be used.) [RT #37821]	2015-01-20 16:14:09 -08:00
Evan Hunt	b77ae24e3e	[master] more windows VS14 compatibility work (completes change #3987)	2015-01-20 15:45:38 -08:00
Tinderbox User	c110d61b17	update copyright notice / whitespace	2015-01-20 23:45:26 +00:00
Evan Hunt	11463c0ac2	[master] clean up gcc -Wshadow warnings 4039. [cleanup] Cleaned up warnings from gcc -Wshadow. [RT #37381]	2015-01-20 13:29:18 -08:00
Mark Andrews	f8eb4e5bfd	4037. [bug] also-notify was ignoring the tsig key when checking for duplicates resulting in some expected notify messages not being sent. [RT #38369]	2015-01-20 16:42:56 +11:00
Tinderbox User	c7940abbd3	update copyright notice / whitespace	2015-01-19 23:45:22 +00:00
Jeremy C. Reed	6e9b7dc9c7	start the testing named with -X named.lock	2015-01-19 12:45:44 -06:00
Mukund Sivaraman	b05a50c852	Make call to open a temporary file name safe during NZF creation (#38331 ) Based on a patch sent in by Tony Finch <dot@dotat.at>. Also fix win32 implementation of isc_file_openunique() to use a random filename instead of using the process id.	2015-01-16 18:29:23 +05:30
Mukund Sivaraman	f91c369b4a	Close FILEs before overwriting NZF file (#38332 ) Based on a patch sent in by Tony Finch <dot@dotat.at>.	2015-01-16 15:23:11 +05:30
Tinderbox User	ef8014e56f	regen master	2015-01-14 01:04:44 +00:00
Tinderbox User	a6ca100924	update copyright notice / whitespace	2015-01-13 23:45:21 +00:00
Evan Hunt	03f979494f	[master] document default DNSKEY TTL - see RT #38268	2015-01-13 09:54:57 -08:00
Tinderbox User	8402f7bfea	regen master	2015-01-13 01:04:50 +00:00
Tinderbox User	2dd6ffb5cb	update copyright notice / whitespace	2015-01-12 23:45:21 +00:00
Mukund Sivaraman	a6f0e9c985	Add NTA persistence (#37087 ) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]	2015-01-12 09:07:48 +05:30
Tinderbox User	f0cbe180f0	update copyright notice / whitespace	2015-01-10 23:45:22 +00:00
Mark Andrews	7952156995	4032. [bug] Built-in "empty" zones did not correctly inherit the "allow-transfer" ACL from the options or view. [RT #38310]	2015-01-10 22:01:42 +11:00
Tinderbox User	63b0524b96	update copyright notice / whitespace	2015-01-08 23:45:22 +00:00
Evan Hunt	69a838727b	[master] typo in comment	2015-01-08 08:46:59 -08:00
Mark Andrews	d1f1f13c7f	4031. [bug] named-checkconf -z failed to report a missing file with a hint zone. [RT #38294]	2015-01-08 19:19:12 +11:00
Evan Hunt	4069b09224	[master] intialize result correctly	2015-01-07 17:38:00 -08:00
Evan Hunt	5eba0cae0b	[master] initialize result	2015-01-07 17:36:45 -08:00
Tinderbox User	11e9368a22	regen master	2015-01-08 01:04:51 +00:00
Tinderbox User	b129f72d95	update copyright notice / whitespace	2015-01-07 23:45:22 +00:00
Evan Hunt	74eb2f5cbc	[master] rndc showzone / rndc delzone of non-added zones 4030. [func] "rndc delzone" is now applicable to zones that were configured in named.conf, as well as zones that were added via "rndc addzone". (Note, however, that if named.conf is not also modified, the deleted zone will return when named is reloaded.) [RT #37887] 4029. [func] "rndc showzone" displays the current configuration of a specified zone. [RT #37887]	2015-01-06 22:57:57 -08:00
Mark Andrews	b0c18fffd3	4028. [bug] $GENERATE with a zero step was not being caught as a error. A $GENERATE with a / but no step was not being caught as a error. [RT #38262]	2015-01-06 11:31:34 +11:00
Francis Dupont	851f940846	update OpenSSL 1.0.1 patch	2015-01-02 16:07:09 +01:00
Francis Dupont	bb62b71494	update OpenSSL 1.0.0 patch	2015-01-02 15:27:38 +01:00
Francis Dupont	fc2245322a	update OpenSSL 0.9.8 patch	2015-01-02 14:58:49 +01:00
Mark Andrews	511ec77fca	4027. [port] Net::DNS 0.81 compatibility. [RT #38165	2014-12-23 08:37:46 +11:00
Tinderbox User	84d939b211	update copyright notice / whitespace	2014-12-21 23:45:20 +00:00
Mark Andrews	44032d3918	4026. [bug] Fix RFC 3658 reference in dig +sigchase. [RT #38173 ]	2014-12-22 09:40:26 +11:00
Evan Hunt	5deda448e8	[master] fixes for singleton on hpux - hpux returns EADDRINUSE when listening on UDP sockets, so we need to check for that - also need to ensure that subsidiary named processes are shut down in the runtime system test	2014-12-20 00:31:54 -08:00
Evan Hunt	6963c6048f	[master] still needed another -X	2014-12-19 16:57:24 -08:00
Evan Hunt	8249f11121	[master] add -X to lwresd	2014-12-18 22:52:44 -08:00
Tinderbox User	d5ece58e3b	regen master	2014-12-19 01:04:53 +00:00
Mark Andrews	ae454ec746	update copyrights	2014-12-19 10:35:15 +11:00
Mukund Sivaraman	47d837a499	Make named a singleton process [RT#37908] Conflicts: bin/tests/system/conf.sh.in lib/dns/win32/libdns.def.in lib/isc/win32/file.c The merge also needed to update files in legacy and tcp system tests (newly introduced in master after branch was created) to introduce use of lockfile.	2014-12-18 12:31:25 +05:30
Evan Hunt	be7fba8019	[master] adjust max-recursion-queries 4021. [bug] Adjust max-recursion-queries to accommodate the need for more queries when the cache is empty. [RT #38104]	2014-12-15 22:28:06 -08:00
Mark Andrews	8ee3233acd	adjust comment	2014-12-09 07:41:16 +11:00
Mukund Sivaraman	d225dec89f	Clean up after reclimit system test	2014-12-08 21:37:53 +05:30
Tinderbox User	dc5e29a7d2	update copyright notice / whitespace	2014-12-05 23:45:22 +00:00
Mark Andrews	39a5e136fb	skip subtest if cryptography not compiled in	2014-12-06 00:48:52 +11:00
Mark Andrews	03fd9cb81c	4020. [bug] Change 3736 broke nsupdate's SOA MNAME discovery resulting in updates being sent to the wrong server. [RT #37925]	2014-12-05 18:26:38 +11:00
Mark Andrews	017aa9aef6	4019. [func] If named is not configured to validate the answer then allow fallback to plain DNS on timeout even when we know the server supports EDNS. [RT #37978]	2014-12-05 17:47:26 +11:00
Mark Andrews	7d42818a3e	NS_CLIENTATTR_NOSETFC collided with NS_CLIENTATTR_HAVEECS	2014-12-05 11:56:26 +11:00
Mark Andrews	12065c231e	clean up intermediates	2014-12-05 08:28:15 +11:00
Mark Andrews	76b242bb77	pre-sign the zones	2014-12-05 07:28:29 +11:00
Tinderbox User	b9097be03b	update copyright notice / whitespace	2014-12-03 23:45:24 +00:00
Mark Andrews	693d70f96f	4017. [testing] Add system test to check lookups to legacy servers with broken DNS behaviour. [RT #37965]	2014-12-04 07:01:52 +11:00
Mukund Sivaraman	c5e9423340	Fix a dig segfault due to bad linked list usage [RT #37591 ] The crash (#37591) seems to happen because the query is taken out of lookup->q(query->link), and put on lookup->connecting(query->clink). The code checks query->link where it is detached (-1 in next pointer). However, there's no need to call send_tcp_connect() there as the queries are already connecting at that point.	2014-12-03 16:09:25 +05:30
Tinderbox User	88a2182a1a	regen master	2014-12-03 01:04:59 +00:00
Mark Andrews	ea3aa401bc	4015. [bug] Nameservers that are skipped due to them being CNAMEs were not being logged. They are now logged to category 'cname' as per BIND 8. [RT #37935]	2014-12-03 11:34:07 +11:00
Tinderbox User	a3d2295829	update copyright notice / whitespace	2014-12-02 23:45:23 +00:00
Mark Andrews	6444de08d1	4014. [bug] When including a master file origin_changed was not being properly set leading to a potentially spurious 'inherited owner' warning. [RT #37919]	2014-12-03 09:42:30 +11:00
Evan Hunt	aafd2f2637	[master] remove obsolete 'relay' test	2014-12-02 13:57:35 -08:00
Francis Dupont	5c5c6d289d	Add a TCP only option to server/peer	2014-12-02 14:17:59 +01:00
Tinderbox User	6472130d32	update copyright notice / whitespace	2014-11-25 23:45:21 +00:00
Mark Andrews	9e69a36ec1	make isc_buffer_t **text	2014-11-26 07:36:53 +11:00
Mark Andrews	e465d54bc9	unchecked putnull	2014-11-25 15:24:00 +11:00
Tinderbox User	523ad879ce	update copyright notice / whitespace	2014-11-24 23:53:16 +00:00
Mark Andrews	d040fa2f1c	4011. [bug] master's list port and dscp inheritance was not properly implemented. [RT #37792]	2014-11-24 11:25:06 +11:00
Mark Andrews	092d3b76db	4010. [cleanup] Clear the prefetchable state when initiating a prefetch. [RT #37399]	2014-11-24 11:18:30 +11:00
Mark Andrews	7301df07cf	extend the permissible number of queries to 25 from 24	2014-11-24 10:20:39 +11:00
Tinderbox User	ddbd14ec13	regen master	2014-11-22 01:05:01 +00:00
Evan Hunt	92384667ff	[master] delv +tcp 4009. [func] delv: added a +tcp option. [RT #37855]	2014-11-21 09:42:04 -08:00
Mark Andrews	d65fb496fb	use perl not awk to do serial additions	2014-11-21 18:08:04 +11:00
Tinderbox User	5d35f07318	update copyright notice / whitespace	2014-11-20 23:45:24 +00:00
Evan Hunt	05e448935c	[master] refactor max-recursion-queries - the counters weren't set correctly when fetches timed out. instead we now pass down a counter object.	2014-11-19 18:21:02 -08:00
Tinderbox User	4ccffa13aa	update copyright notice / whitespace	2014-11-19 23:45:22 +00:00
Mukund Sivaraman	077350a407	Add .gitignore	2014-11-19 15:03:01 +05:30
Evan Hunt	c4f54e5bd1	[master] add max-recursion-queries also fixes and documentation for max-recursion-depth	2014-11-18 22:02:02 -08:00
Mark Andrews	f9ee67d9ce	%zu is not universally available	2014-11-19 12:10:06 +11:00
Tinderbox User	e208712faa	update copyright notice / whitespace	2014-11-18 23:45:22 +00:00
Evan Hunt	3230429e17	[master] limit recursion depth and iterative queries 4006. [security] A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow (default 7), and the number of iterative queries that it will send (default 50) before terminating a recursive query (CVE-2014-8500). The recursion depth limit is configured via the "max-recursion-depth" option. [RT #35780]	2014-11-17 23:24:44 -08:00
Evan Hunt	c325ff9c79	[master] complete coverity fixes	2014-11-17 17:39:00 -08:00
Mark Andrews	18fa89b01e	check returns from putstr and putnull	2014-11-18 12:21:20 +11:00
Tinderbox User	11dc1b1508	update copyright notice	2014-11-17 23:45:20 +00:00
Evan Hunt	0ada3802ea	[master] awk portability fix	2014-11-17 12:22:18 -08:00
Evan Hunt	a0b4f6d952	[master] geoip security fixes 4003. [security] When geoip-directory was reconfigured during named run-time, the previously loaded GeoIP data could remain, potentially causing wrong ACLs to be used or wrong results to be served based on geolocation. [RT #37720] 4002. [security] Lookups in GeoIP databases that were not loaded could cause an assertion failure. [RT #37679] 4001. [security] The caching of GeoIP lookups did not always handle address families correctly, potentially resulting in an assertion failure. [RT #37672]	2014-11-16 08:43:22 -08:00
Mark Andrews	ed51a21730	fix ns_smf_add_message	2014-11-15 17:18:10 +11:00
Mark Andrews	eca6a76eda	make inline	2014-11-15 17:03:21 +11:00
Evan Hunt	e32d354f75	[master] allow arbitrary-size rndc output 4005. [func] The buffer used for returning text from rndc commands is now dynamically resizable, allowing arbitrarily large amounts of text to be sent back to the client. (Prior to this change, it was possible for the output of "rndc tsig-list" to be truncated.) [RT #37731]	2014-11-14 15:58:54 -08:00
Evan Hunt	c4abb19716	[master] reference leak with AAAA glue but not A 4004. [bug] When delegations had AAAA glue but not A, a reference could be leaked causing an assertion failure on shutdown. [RT #37796]	2014-11-14 09:02:28 -08:00
Mukund Sivaraman	16c86a4980	Update .gitgnore files (ISC-Bugs #37773 )	2014-11-11 11:47:02 +05:30
Tinderbox User	6d0a639bd0	update copyright notice	2014-11-06 23:45:21 +00:00
Evan Hunt	067c0c38e7	[master] s/mempcy/memmove/	2014-11-06 13:01:59 -08:00
Tinderbox User	369963ad26	regen master	2014-11-06 01:05:06 +00:00
Evan Hunt	3cc8c7d630	[master] fix nxrrset in nxdomain redirection 4000. [bug] NXDOMAIN redirection incorrectly handled NXRRSET from the redirect zone. [RT #37722]	2014-11-04 23:49:56 -08:00
Evan Hunt	ce96d4326c	[master] new mkeys and nzf naming format 3999. [func] "mkeys" and "nzf" files are now named after their corresponding views, unless the view name contains characters that would be incompatible with use in a filename (i.e., slash, backslash, or capital letters). If a view name does contain these characters, the files will still be named using a cryptographic hash of the view name. Regardless of this, if a file using the old name format is found to exist, it will continue to be used. [RT #37704]	2014-11-04 19:43:27 -08:00
Mark Andrews	1feee79e1f	3997. [protocol] Add OPENGPGKEY record. [RT# 37671]	2014-11-04 12:24:39 +11:00
Tinderbox User	def82e8de9	regen master	2014-10-31 01:04:53 +00:00
Tinderbox User	12b386e1a6	update copyright notice	2014-10-30 23:45:21 +00:00
Mark Andrews	f0a54842b1	3994. [func] Dig now supports setting the last unassigned DNS header flag bit (dig +zflag). [RT #37421]	2014-10-31 10:16:00 +11:00
Mark Andrews	0f5144163c	3993. [func] Dig now supports EDNS negotiation by default. (dig +[no]ednsnegotiation). [RT #37604]	2014-10-30 23:13:12 +11:00
Tinderbox User	a3ff24aaa5	regen master	2014-10-30 01:05:12 +00:00
Mark Andrews	f274cbeaed	3992. [func] DiG can now send queries without questions (dig +header-only). [RT #37599]	2014-10-30 11:42:02 +11:00
Mark Andrews	00fb0253c9	3991. [func] Add the ability to buffer logging output by specifying "buffered yes;" when defining a channel. [RT #26561]	2014-10-30 11:37:05 +11:00
Mark Andrews	a5c7cfbac4	3990. [testing] Add tests for unknown DNSSEC algorithm handling. [RT #37541]	2014-10-30 11:05:26 +11:00
Tinderbox User	eaaf00efc0	regen master	2014-10-23 01:04:55 +00:00
Mark Andrews	cb6ec834f1	fix tag mis-match	2014-10-22 12:09:57 +11:00
Tinderbox User	6932de75ef	update copyright notice	2014-10-21 23:45:24 +00:00
Mark Andrews	4140a96f22	3987. [func] Allow the zone serial of a dynamically updatable zone to be updated via rndc. [RT #37404]	2014-10-21 18:15:42 +11:00
Tinderbox User	78ec962d98	regen master	2014-10-21 01:04:47 +00:00
Mark Andrews	40b28f5402	3985. [doc] Describe how +ndots and +search interact in dig. [RT #37529]	2014-10-21 08:05:21 +11:00
Evan Hunt	498b061031	[master] allow 1-week nta-lifetime/nta-recheck 3983. [bug] Change #3940 was incomplete: negative trust anchors could be set to last up to a week, but the "nta-lifetime" and "nta-recheck" options were still limted to one day. [RT #37522]	2014-10-20 13:40:17 -07:00
Evan Hunt	7cf2122e0d	[master] change 3977 altered expected linecount from secroots	2014-10-18 16:50:32 -07:00
Mark Andrews	72775a79fe	3981. [bug] Cache DS/NXDOMAIN independently of other query types. [RT #37467]	2014-10-18 13:09:09 +11:00
Evan Hunt	27174d90cc	[master] fix spurious error in rndc secroots 3977. [cleanup] "rndc secroots" reported a "not found" error when there were no negative trust anchors set. [RT #37506]	2014-10-17 15:41:13 -07:00
Tinderbox User	6478b87fd2	regen master	2014-10-17 01:04:36 +00:00
Jeremy C. Reed	edad003e63	Remove the apostrophe 's from plural acronyms This is to be consistent with our common usage of just using a plural "s" without apostrophe. This was brought up via discussion in ticket 37505. I didn't have this reviewed.	2014-10-16 11:55:51 -05:00
Jeremy C. Reed	697bda73eb	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2014-10-16 11:01:26 -05:00
Jeremy C. Reed	22c1597937	fixes to manual from chucka See ticket #37505	2014-10-16 11:00:13 -05:00
Mark Andrews	44ef2206d7	allow for the set of ttls to be empty	2014-10-16 14:46:44 +11:00
Mark Andrews	d9aaf7acce	make test more robust in the face of server failures	2014-10-16 12:34:12 +11:00
Mark Andrews	79921aeec2	3975. [bug] Don't populate or use the bad cache for queries that don't request or use recursion. [RT #37466]	2014-10-15 11:25:23 +11:00
Jeremy C. Reed	05d4b5a9fc	[master] add -x to the usage output (By the way, -d is also not in the usage nor in the manpage.)	2014-10-13 13:48:15 -07:00
Evan Hunt	1cbc394e7c	[master] add redirect zone to checkconf -z test	2014-10-09 18:30:34 -07:00
Evan Hunt	ca0ee90361	[master] turn off servfail cache in masterformat test	2014-10-09 09:30:46 -07:00
Francis Dupont	1831311ac6	added hooks for gperftools CPU profiler [#37339 ]	2014-10-08 15:14:02 +02:00
Mark Andrews	c12c746e3a	3972. [bug] Fix host's usage statement. [RT #37397 ]	2014-10-07 01:09:49 +11:00
Mark Andrews	c81d56c03e	3971. [bug] Reduce the cascasding failures due to a bad $TTL line in named-checkconf / named-checkzone. [RT #37138]	2014-10-05 08:29:34 +11:00
Mark Andrews	39fb5f2a5d	verifying inline zones work with views requires crypto to be configured	2014-10-04 18:06:04 +10:00
Evan Hunt	12002ea49e	[master] add delv system test 3969. [test] Added 'delv' system test. [RT #36901]	2014-10-02 22:37:20 -07:00
Tinderbox User	7a3f584cfc	update copyright notice	2014-10-02 23:45:25 +00:00
Mark Andrews	6979ebf549	3968. [bug] Silence spurious log messages when using 'named -[46]'. [RT #37308]	2014-10-03 08:05:56 +10:00
Mark Andrews	b24061719c	3967. [test] Add test for inlined signed zone in multiple views with different DNSKEY sets. [RT #35759]	2014-10-03 07:59:44 +10:00
Mark Andrews	9c0589bc8b	3966. [bug] Missing dns_db_closeversion call in receive_secure_db. [RT #35746]	2014-10-03 07:50:09 +10:00
Mark Andrews	a837c939c4	SIG(0) update forwarding testing requires crypto be configured	2014-10-02 11:07:01 +10:00
Tinderbox User	b68a2d272b	regen master	2014-10-02 01:05:48 +00:00
Tinderbox User	3fd181c98f	update copyright notice	2014-10-01 23:45:24 +00:00
Mark Andrews	ed1c845c1d	3964. [func] nsupdate now performs check-names processing. [RT #36266]	2014-10-02 09:35:43 +10:00
Evan Hunt	7b04216015	[master] improve dlzexternal test 3963. [test] Added NXRRSET test cases to the "dlzexternal" system test. [RT #37344]	2014-09-30 17:08:12 -07:00
Mark Andrews	7d891eaf91	3962. [bug] 'dig +topdown +trace +sigchase' address unhandled error conditions. [RT #34663 ]	2014-10-01 10:01:54 +10:00
Tinderbox User	be484acb22	update copyright notice	2014-09-30 23:45:22 +00:00
Mark Andrews	ffeaac1d82	3961. [bug] Forwarding of SIG(0) signed UPDATE messages failed with BADSIG. [RT #37216]	2014-10-01 07:24:16 +10:00
Mark Andrews	c83b91fb63	3960. [bug] 'dig +sigchase' could loop forever. [RT #37220 ]	2014-10-01 07:06:20 +10:00
Tinderbox User	2fb35a6d59	update copyright notice	2014-09-29 23:45:24 +00:00
Mark Andrews	4bc581ca31	use RANDFILE rather than /dev/urandom	2014-09-29 23:39:07 +10:00
Mark Andrews	1c5990c2f9	3958. [bug] Detect when writeable files have multiple references in named.conf. [RT #37172]	2014-09-29 12:10:10 +10:00
Mark Andrews	80169c379d	3957. [bug] "dnssec-keygen -S" failed for ECCGOST, ECDSAP256SHA256 and ECDSAP384SHA384. [RT #37183]	2014-09-29 10:18:54 +10:00
Mark Andrews	10c12aa549	3956. [func] Notify messages are now rate limited by notify-rate and startup-notify-rate instead of serial-query-rate. [RT #24454] 3955. [bug] Notify messages due to changes are no longer queued behind startup notify messages. [RT #24454]	2014-09-29 10:01:08 +10:00
Mark Andrews	6b6d6509f6	3954. [bug] Unchecked mutex init in dlz_dlopen_driver.c [RT #37112 ]	2014-09-27 12:30:00 +10:00
Mark Andrews	9a36fb86f5	3953. [bug] Don't escape semi-colon in TXT fields. [RT #37159 ]	2014-09-27 12:14:20 +10:00
Mark Andrews	27cd03a21c	use more portable awk	2014-09-19 15:00:18 +10:00
Mark Andrews	06e28e50bd	give the nameserver a little longer to response	2014-09-18 10:06:48 +10:00
Mark Andrews	1a5f84d56a	UNTESTED -> SKIPPED	2014-09-16 23:49:52 +10:00
Mark Andrews	f4a9c9226a	silence signed/unsigned warning	2014-09-16 23:46:37 +10:00
Mark Andrews	13a9b42a43	make depend fails in bin/python	2014-09-15 14:06:17 +10:00
Tinderbox User	4fe1df3962	regen master	2014-09-14 01:05:19 +00:00
Mark Andrews	3867312e4c	3951. [func] Add the ability to set yet-to-be-defined EDNS flags to dig (+ednsflags=#). [RT #37142]	2014-09-13 19:13:59 +10:00
Tinderbox User	c25602ed66	regen master	2014-09-13 01:05:26 +00:00
Evan Hunt	8dba0e7d87	[master] [rt36993] work around a bmake bug in BSD 3950. [port] Changed the bin/python Makefile to work around a bmake bug in FreeBSD 10 and NetBSD 6. [RT #36993]	2014-09-12 15:21:47 -07:00
Mark Andrews	48b093c864	update named-checkzone manpage for SPF changes	2014-09-13 07:55:57 +10:00
Tinderbox User	2c69f767d6	update copyright notice	2014-09-10 23:45:21 +00:00
Mark Andrews	947cf282a7	3949. [experimental] Experimental support for draft-andrews-edns1 by sending EDNS(1) queries (define DRAFT_ANDREWS_EDNS1 when building). Add support for limiting the EDNS version advertised to servers: server { edns-version 0; }; Log the EDNS version received in the query log. [RT #35864]	2014-09-10 15:31:40 +10:00
Mark Andrews	5c420ccc29	drop 'I:send many simultaneous updates via a update forwarder' test until re-written using perl	2014-09-07 22:08:45 +10:00
Mark Andrews	76a17033db	also fix the expected count	2014-09-07 20:24:59 +10:00
Mark Andrews	48179343c2	reduce number of nsupdates being simultaeously forked	2014-09-07 20:24:14 +10:00
Mark Andrews	8aa098c633	update copyrights	2014-09-06 09:38:48 +10:00
Tinderbox User	5fa6a064b8	regen master	2014-09-05 19:26:47 +00:00
Evan Hunt	1aa8b80767	[master] fix warnings/doc errors - possible use before assignment in query.c - missing <varlistentry> in ARM	2014-09-04 18:35:30 -07:00
Evan Hunt	c9e976dc43	[master] [rt37057] server-id tests 3944. [test] Added a regression test for "server-id". [RT #37057]	2014-09-04 18:18:36 -07:00
Tinderbox User	948c80ffa8	update copyright notice	2014-09-04 23:45:24 +00:00
Evan Hunt	a878301981	[master] servfail cache 3943. [func] SERVFAIL responses can now be cached for a limited time (configured by "servfail-ttl", default 10 seconds, limit 30). This can reduce the frequency of retries when an authoritative server is known to be failing, e.g., due to ongoing DNSSEC validation problems. [RT #21347]	2014-09-03 23:28:14 -07:00
Mark Andrews	fec7998314	3942. [bug] Wildcard responses from a optout range should be marked as insecure. [RT #37072]	2014-09-04 13:57:50 +10:00
Evan Hunt	c3d0221104	[master] oops, nta lifetime change broke dnssec test	2014-09-03 20:51:32 -07:00
Evan Hunt	3d066288ad	[master] [rt37069] update NTA limit to a week 3940. [func] "rndc nta" now allows negative trust anchors to be set for up to one week. [RT #37069]	2014-09-03 19:00:03 -07:00
Mark Andrews	74717eef53	3939. [func] Improve UPDATE forwarding performance by allowing TCP connections to be shared. [RT #37039]	2014-09-04 10:37:45 +10:00
Mark Andrews	3547641f76	error message was not being returned	2014-08-30 20:26:48 +10:00
Mark Andrews	22e0fcb055	conditional UNUSED(task)	2014-08-30 15:47:25 +10:00
Mark Andrews	1a63fb1d14	update copyrights	2014-08-30 12:27:49 +10:00
Tinderbox User	3278ff814d	update copyright notice	2014-08-29 23:45:22 +00:00
Mark Andrews	25c5d8e89e	#include isc/print.h>	2014-08-29 16:17:35 +10:00
Evan Hunt	f5c24a7f48	[master] add better servfail logging 3937. [func] Added some debug logging to better indicate the conditions causing SERVFAILs when resolving. [RT #35538]	2014-08-28 22:37:55 -07:00
Evan Hunt	d46855caed	[master] ECS authoritative support 3936. [func] Added authoritative support for the EDNS Client Subnet (ECS) option. ACLs can now include "ecs" elements which specify an address or network prefix; if an ECS option is included in a DNS query, then the address encoded in the option will be matched against "ecs" ACL elements. Also, if an ECS address is included in a query, then it will be used instead of the client source address when matching "geoip" ACL elements. This behavior can be overridden with "geoip-use-ecs no;". When "ecs" or "geoip" ACL elements are used to select a view for a query, the response will include an ECS option to indicate which client network the answer is valid for. (Thanks to Vincent Bernat.) [RT #36781]	2014-08-28 22:05:57 -07:00
Evan Hunt	180319f572	[master] fix geoip asnum matching 3935. [bug] "geoip asnum" ACL elements would not match unless the full organization name was specified. They can now match against the AS number alone (e.g., AS1234). [RT #36945]	2014-08-28 21:40:32 -07:00
Mark Andrews	7c73ac5e13	3934. [bug] Catch bad 'sit-secret' in named-checkconf. Improve sit-secrets documentation. [RT #36980]	2014-08-29 14:35:21 +10:00
Evan Hunt	0c2313eb36	[master] fixes to checkconf test, HIP casecompare 3933. [bug] Corrected the implementation of dns_rdata_casecompare() for the HIP rdata type. [RT #36911] 3932. [test] Improved named-checkconf tests. [RT #36911]	2014-08-27 21:36:13 -07:00
Mark Andrews	1164997311	3931. [cleanup] Cleanup how dlz grammer is defined. [RT #36879 ]	2014-08-26 15:01:29 +10:00
Evan Hunt	74745c760c	[master] "rndc nta -r" could hang 3930. [bug] "rndc nta -r" could cause a server hang if the NTA was not found. [RT #36909]	2014-08-25 18:01:26 -07:00
Mark Andrews	905ba39e10	3929. [bug] 'host -a' needed to clear idnoptions. [RT #36963 ]	2014-08-26 08:27:24 +10:00
Evan Hunt	06f329afe1	[master] silence coverity	2014-08-22 18:19:09 -07:00
Tinderbox User	cefd74ae81	regen master	2014-08-23 01:06:12 +00:00
Tinderbox User	fea81a5e0e	update copyright notice	2014-08-22 23:45:27 +00:00
Evan Hunt	087b3e8d90	[master] add to rndc test 3928. [test] Improve rndc system test. [RT #36898]	2014-08-22 16:41:57 -07:00
Evan Hunt	24aaa04401	[master] register pkcs11 error codes in dig 3927. [bug] dig: report PKCS#11 error codes correctly when compiled with --enable-native-pkcs11. [RT #36956]	2014-08-22 10:40:43 -07:00
Jeremy C. Reed	f3150c99d7	add missing -Q from synopsis	2014-08-22 08:22:17 -05:00
Mark Andrews	840d6a4614	3925. [bug] DS lookup of RFC 1918 empty zones failed. [RT #36917	2014-08-22 16:32:19 +10:00
Mark Andrews	d4859b0b2a	3924. [bug] Improve 'rndc addzone' error reporting. RT #35187	2014-08-22 16:18:49 +10:00
Evan Hunt	eeb13c7cd2	[master] don't clear signatures from zone cuts 3922. [bug] When resigning, dnssec-signzone was removing all signatures from delegation nodes. It now retains DS and (if applicable) NSEC signatures. [RT #36946]	2014-08-21 22:56:12 -07:00
Mark Andrews	cef76ee5bd	3921. [bug] AD was inappopriately set on RPZ responses. [RT #36833 ]	2014-08-22 15:45:40 +10:00
Mark Andrews	3d66a979b5	3919. [bug] dig: continue to next line if a address lookup fails in batch mode. [RT #36755]	2014-08-22 15:40:43 +10:00
Tinderbox User	5165c59007	update copyright notice	2014-08-21 23:45:22 +00:00
Mark Andrews	f5695ad0e1	3917. [bug] dig, nslookup and host now continue on names that are too long after applying a search list elements. [RT #36892]	2014-08-21 18:05:55 +10:00
Tinderbox User	e2eaaf8015	update copyright notice	2014-08-18 23:45:21 +00:00
Mark Andrews	a7d4d52874	quiet mode is -q	2014-08-18 19:38:43 +10:00
Mark Andrews	5244e505ad	3915 [bug] Address a assertion if a route event arrived while shutting down. [RT #36887]	2014-08-18 13:17:35 +10:00
Tinderbox User	a24330c480	regen master	2014-08-16 01:06:20 +00:00
Tinderbox User	aebd0e85bf	update copyright notice	2014-08-15 23:45:20 +00:00
Jeremy C. Reed	b0af7cbe92	SEE ALSO cleanup in pkcs11 manuals This sorts them, adds missing from one manual, uses correct section number, and gets rid of a trailing comma. Okayed via RT ticket 36830.	2014-08-15 11:39:55 -05:00
Jeremy C. Reed	821350367e	fix typos or misspellings	2014-08-15 10:35:31 -05:00
Jeremy C. Reed	2f5461d23b	remove the now gone -all switch from flushtree This is for RT ticket #36832. While here update manual page date.	2014-08-15 09:28:37 -05:00
Jeremy C. Reed	474faea7dd	change ecgen to keygen in a few places in manpage I didn't create a CHANGES entry for this as it was trivial and the name of the installed manual didn't change. This is for RT ticket #36830.	2014-08-15 09:16:50 -05:00
Tinderbox User	cd14665cdf	update copyright notice	2014-08-07 23:45:19 +00:00
Evan Hunt	cfe32752a6	[master] [36737] allow zero-length URI and CAA fields 3914. [bug] Allow the URI target and CAA value fields to be zero length. [RT #36737]	2014-08-06 17:40:42 -07:00
Tinderbox User	1e7501fe07	update copyright notice	2014-08-06 23:45:23 +00:00
Mark Andrews	43b9737b11	3911. [func] Implement EDNS EXPIRE option client side. [RT #35925 ]	2014-08-06 11:50:40 +10:00
Tinderbox User	79bb509936	update copyright notice	2014-08-02 23:45:21 +00:00
Mark Andrews	c38341ec43	3908. [bug] rndc now differentiates between a zone in multiple views and a zone that doesn't exist at all. [RT #36691]	2014-08-02 14:43:26 +10:00
Mark Andrews	323bb31d7c	move 'nta -dump'	2014-08-01 10:41:47 +10:00
Mark Andrews	d96f74a3cb	3907. [cleanup] Alphabetise rndc help. [RT#36683]	2014-08-01 10:31:41 +10:00
Tinderbox User	25633bca23	update copyright notice	2014-07-31 23:45:21 +00:00
Mark Andrews	db8369d873	remove trailing whitespace	2014-08-01 00:30:02 +10:00
Mark Andrews	f2a91da02e	adjust range	2014-07-31 20:32:50 +10:00
Mark Andrews	3a55d43527	3904. [func] Add the RPZ SOA to the additional section. [RT36507]	2014-07-31 10:51:48 +10:00
Mark Andrews	bc5db10d72	[rt36611] 3903. [bug] Improve the accuracy of DiG's reported round trip time. [RT 36611]	2014-07-31 07:39:59 +10:00
Mark Andrews	70be388974	[rt36039] 3902. bug] liblwres wasn't handling link-local addresses in nameserver clauses in resolv.conf. [RT #36039]	2014-07-30 23:26:37 +10:00
Evan Hunt	a5e2e389ef	[master] complete change #3882 Parse arguments to "rndc nta" so they can be either long or shortened (i.e., both "-dump" and "-d" will work).	2014-07-29 20:28:42 -07:00
Tinderbox User	d1b499c827	update copyright notice	2014-07-29 23:45:20 +00:00
Evan Hunt	2383eb5272	[master] add CAA rdata support 3056. [protocol] Added support for CAA record type (RFC 6844). [RT #36625]	2014-07-29 08:40:35 -07:00
Mark Andrews	275a8affe7	3899. [bug] "request-ixfr" is only applicable to slave and redirect zones. [RT #36608]	2014-07-25 14:23:14 +10:00
Mark Andrews	ac5ed74860	3897. [bug] RPZ summary information was not properly being updated after a AXFR resulting in changes sometimes being ignored. [RT #35885]	2014-07-22 10:57:58 +10:00
Tinderbox User	d9f0b06dc2	regen master	2014-07-16 01:05:40 +00:00
Mark Andrews	2064e46209	3895. [func] Add the ability to set the DSCP code point to dig. [RT #36546]	2014-07-15 23:27:14 +10:00
Mark Andrews	ccaee7760f	add +ednsopt to -h output	2014-07-10 16:19:33 +10:00
Mark Andrews	39cad8fb7d	update copyrights	2014-07-08 12:40:40 +10:00
Mark Andrews	fce704e751	rename dnssec/ns7/split-rrsig.in	2014-07-08 11:12:32 +10:00
Tinderbox User	1cd80e4825	update copyright notice	2014-07-07 23:45:21 +00:00
Mark Andrews	3c13af3759	3892. [bug] Setting '-t aaaa' in .digrc had unintended side effects. [RT #36452]	2014-07-08 02:00:28 +10:00
Francis Dupont	607c9360f1	update OpenSSL bases (#36447 )	2014-07-07 14:50:29 +02:00
Mark Andrews	d734818278	3891. [bug] Use ${INSTALL_SCRIPT} rather than ${INSTALL_PROGRAM} to install python programs.	2014-07-07 16:05:50 +10:00
Mark Andrews	63e1ac1e09	3890. [bug] RRSIG sets that were not loaded in a single transaction at start up where not being correctly added to re-signing heaps. [RT #36302]	2014-07-07 12:05:01 +10:00
Mark Andrews	e58154a6ec	silence coverity warnings	2014-07-02 15:28:02 +10:00
Evan Hunt	547411428e	[master] add "rndc nta" options to "rndc -h" output	2014-07-01 16:01:59 -07:00
Mark Andrews	6f6b7781d5	save the output of rndc nta so that it can be analysed if there is a failure; more cleanups	2014-06-30 11:41:09 +10:00
Mark Andrews	62275d5306	make test for nsec3param more robust	2014-06-27 15:50:51 +10:00
Mark Andrews	b05ef7092f	update nta failure messages	2014-06-27 11:53:39 +10:00
Mark Andrews	284f6435c2	adjust NTA test timing windows to support slower machines; self tune sleeps bases of actual elapsed time;	2014-06-26 13:37:50 +10:00
Tinderbox User	9f8df2d75c	update copyright notice	2014-06-25 23:45:21 +00:00
Mark Andrews	7205cd2db7	cleanup nsupdate.out	2014-06-25 16:16:34 +10:00
Mark Andrews	eca15167ac	dump unexpected update failures	2014-06-25 16:12:25 +10:00
Mark Andrews	33399d6a14	3888. [func] 'rndc status' now reports the number of automatic zones. [RT #36015]	2014-06-25 13:17:03 +10:00
Mark Andrews	70ee770c69	Net::DNS 0.78 should work when it is released as it contains: Fix rt.cpan.org #96439 Uninitialised decoding object when printing packet	2014-06-25 01:01:50 +10:00
Mark Andrews	1c95f67232	use $PERL	2014-06-24 13:50:14 +10:00
Mark Andrews	bf59efcf0e	3885. [port] Use 'open()' rather than 'file()' to open files in python.	2014-06-23 14:46:34 +10:00
Tinderbox User	5a31767b09	update copyright notice	2014-06-19 23:45:23 +00:00
Evan Hunt	064785ce84	[master] fix seccomp support for i386/nothreads	2014-06-19 09:38:41 -07:00
Evan Hunt	cac2181160	[master] CDS/CDNSKEY rrtypes 3884. [protocol] Add CDS and CDNSKEY record types. [RT #36333]	2014-06-19 00:35:11 -07:00
Mark Andrews	875e869ddc	fix 'result' might be used uninitialized in this function	2014-06-19 11:37:17 +10:00
Tinderbox User	61ab11c0ec	regen master	2014-06-19 01:05:10 +00:00
Evan Hunt	b8a9632333	[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]	2014-06-18 16:50:38 -07:00
Mark Andrews	f5bb5eb7f6	3881. [bug] Address memory leak with UPDATE error handling. [RT #36303]	2014-06-18 11:21:31 +10:00
Tinderbox User	636aadbfe4	update copyright notice	2014-06-17 23:45:20 +00:00
Evan Hunt	a4e76a630e	[master] update gitignore files; use rev-parse to get srcid	2014-06-17 13:49:30 -07:00
Tinderbox User	6f12058975	regen master	2014-06-17 01:05:10 +00:00
Mark Andrews	a0d411c05f	3880. [test] Update ans.pl to work with new TSIG support in Net::DNS; add additional Net::DNS version prerequisite checks. [RT #36327]	2014-06-17 10:35:46 +10:00
Mark Andrews	bd7996b047	remove redundent nul setting	2014-06-17 10:26:57 +10:00
Evan Hunt	56510cd031	[master] null terminate strings for coverity	2014-06-16 15:30:11 -07:00
Evan Hunt	e3468c9052	[master] seccomp also needs dup() in the --disable-threads case	2014-06-16 13:52:17 -07:00
Evan Hunt	940b03cef2	[master] release seccomp context when finished	2014-06-16 11:19:40 -07:00
Mukund Sivaraman	4278293107	[10686] Add version printing option to various BIND utilites Squashed commit of the following: commit 95effe9b2582a7eb878ccb8cb9ef51dfc5bbfde7 Author: Evan Hunt <each@isc.org> Date: Tue Jun 10 16:52:45 2014 -0700 [rt10686] move version() to dnssectool.c commit df205b541d1572ea5306a5f671af8b54b9c5c770 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:38:31 2014 +0530 Rearrange order of cases commit cfd30893f2540bf9d607e1fd37545ea7b441e0d0 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:38:08 2014 +0530 Add version printer to dnssec-verify commit a625ea338c74ab5e21634033ef87f170ba37fdbe Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:32:19 2014 +0530 Add version printer to dnssec-signzone commit d91e1c0f0697b3304ffa46fccc66af65591040d9 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:26:01 2014 +0530 Add version printer to dnssec-settime commit 46fc8775da3e13725c31d13e090b406d69b8694f Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:25:48 2014 +0530 Fix docbook commit 8123d2efbd84cdfcbc70403aa9bb27b96921bab2 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:20:17 2014 +0530 Add version printer to dnssec-revoke commit d0916420317d3e8c69cf1b37d2209ea2d072b913 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:17:54 2014 +0530 Add version printer to dnssec-keygen commit 93b0bd5ebc043298dc7d8f446ea543cb40eaecf8 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:14:11 2014 +0530 Add version printer to dnssec-keyfromlabel commit 07001bcd9ae2d7b09dd9e243b0ab35307290d05d Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:13:39 2014 +0530 Update usage help output, docbook commit 85cdd702f41c96fbc767fc689d1ed97fe1f3a926 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:07:18 2014 +0530 Add version printer to dnssec-importkey commit 9274fc61e38205aad561edf445940b4e73d788dc Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:01:53 2014 +0530 Add version printer to dnssec-dsfromkey commit bf4605ea2d7282e751fd73489627cc8a99f45a90 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 20:49:22 2014 +0530 Add -V to nsupdate usage output	2014-06-16 12:10:38 +05:30
Mark Andrews	48789995c1	use $NSUPDATE	2014-06-15 18:35:19 +10:00
Mark Andrews	f9e47cfe4f	Net::DNS 0.76 broke the handling of some packets	2014-06-14 10:11:06 +10:00
Evan Hunt	c1d33c159b	[master] wrong dlopen filename caused segfault 3878. [bug] Using the incorrect filename for a DLZ module caused a segmentation fault on startup. [RT #36286]	2014-06-12 19:33:37 -07:00
Mark Andrews	1881aea774	fix test to see if $PERL is set (cherry picked from commit 44f0f310d41acc5c772d38353fe35ddacb3fee80)	2014-06-13 11:47:23 +10:00
Mark Andrews	d4a98c0fb7	die if $Net::DNS::VERSION >= 0.73	2014-06-13 11:25:32 +10:00
Evan Hunt	fb710168ef	[master] use correct shared library suffix	2014-06-12 17:06:23 -07:00
Tinderbox User	4ded8003e3	update copyright notice	2014-06-12 23:45:22 +00:00
Evan Hunt	06e0d6bb12	[master] address rpz bugs 3877. [bug] Inserting and deleting parent and child nodes in response policy zones could trigger an assertion failure. [RT #36272]	2014-06-11 20:00:19 -07:00
Mark Andrews	b836de821a	fail if SIT data is too large	2014-06-12 07:57:19 +10:00
Evan Hunt	fc32eac99f	[master] seccomp sandboxing wasn't working in nonthreaded builds	2014-06-10 19:10:46 -07:00
Mark Andrews	9c2cf9e201	update copyrights	2014-06-11 10:28:09 +10:00
Evan Hunt	8d8f9f7f86	[master] suppress unnecessary db lookups in DLZ redirect zones 3876. [bug] Improve efficiency of DLZ redirect zones by suppressing unnecessary database lookups. [RT #35835]	2014-06-10 16:25:26 -07:00
Mark Andrews	20dec973da	4. [test] Check that only "check-names master" is needed for updates to be accepted.	2014-06-10 13:48:57 +10:00
Mark Andrews	32a1fd3dd2	update spf check	2014-06-10 12:28:33 +10:00
Tinderbox User	1b2ae58ef1	update copyright notice	2014-06-09 23:45:20 +00:00
Mark Andrews	3b187cad7a	3873. [protocol] Only warn for SPF without TXT spf record. [RT #36210 ]	2014-06-10 09:32:43 +10:00
Mark Andrews	b16d99bac1	3872. [bug] Address issues found by static analysis. [RT #36209 ]	2014-06-10 09:17:15 +10:00
Mukund Sivaraman	79d27f505a	[35063] Don't publish an activated key automatically before its publish time	2014-06-04 14:31:42 +05:30
Mark Andrews	ab6fd5e892	initialise matches	2014-06-02 13:53:59 +10:00
Mark Andrews	5360986092	set max	2014-06-02 13:42:58 +10:00
Mark Andrews	3a26e75e3c	accept a range of stats values	2014-06-02 08:15:47 +10:00
Tinderbox User	f5c27ecceb	regen master	2014-05-31 01:05:50 +00:00
Evan Hunt	0cfb247368	[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]	2014-05-29 22:22:53 -07:00
Mark Andrews	fa6308bd57	3866. [bug] Named could die on disk full in generate_session_key. [RT #36119]	2014-05-30 14:38:39 +10:00
Mark Andrews	536da846f6	update copyrights	2014-05-30 09:41:33 +10:00
Mark Andrews	44b0e0b1d5	More changes for: 3864. [bug] RPZ didn't work well when being used as forwarder. [RT #36060]	2014-05-30 08:41:27 +10:00
Evan Hunt	caa252e5ad	[master] Fix bin/tests/rbt_test.c, use portable int types	2014-05-29 07:37:13 -07:00
Mark Andrews	3d75189141	3864. [bug] RPZ didn't work well when being used as forwarder. [RT #36060]	2014-05-29 17:02:10 +10:00
Mark Andrews	4694229f60	make a explict edns query so this subtest is independent of other tests	2014-05-29 10:46:44 +10:00
Mark Andrews	800d25b848	3863. [bug] The "E" flag was missing from the query log as a unintended side effect of code rearrangement to support EDNS EXPIRE. [RT #36117]	2014-05-29 08:04:55 +10:00
Mark Andrews	9b819daddf	3862. [cleanup] Return immediately if we are not going to log the message in ns_client_dumpmessage.	2014-05-27 12:16:04 +10:00
Tinderbox User	f5ae3cca1d	regen master	2014-05-24 01:05:32 +00:00
Evan Hunt	d51e441520	spelling	2014-05-23 19:32:56 +00:00
Mark Andrews	a0f91e910b	3856. [bug] Configuring libjson without also configuring libxml resulting in a REQUIRE assertion when retrieving statistics using json. [RT #36009]	2014-05-21 12:06:00 +10:00
Tinderbox User	fc74b733bf	regen master	2014-05-17 01:05:14 +00:00
Tinderbox User	104f0e51ac	update copyright notice	2014-05-16 23:45:21 +00:00
Evan Hunt	896f49f8bd	[master] increase and allow configuration of lwresd tasks/clients 3852. [func] Increase the default number of clients available for servicing lightweight resolver queries, and make them configurable via the "lwres-tasks" and "lwres-clients" options. (Thanks to Tomas Hozza.) [RT #35857]	2014-05-15 22:01:19 -07:00
Evan Hunt	6fa84a3e25	[master] enable libseccomp system call filtering 3851. [func] Allow libseccomp based system-call filtering on Linux; use "configure --enable-seccomp" to turn it on. Thanks to Loganaden Velvindron for the contribution. [RT #35347]	2014-05-15 20:29:30 -07:00
Tinderbox User	284d5252c1	update copyright notice	2014-05-15 23:45:22 +00:00
Mark Andrews	01f881c1c5	3849. [bug] Disabling forwarding could trigger a REQUIRE assertion. [RT #35979]	2014-05-15 16:54:32 +10:00
Tinderbox User	b90c4f0646	regen master	2014-05-15 05:05:58 +00:00
Tinderbox User	9cc7fd5e1a	Merge branch 'master' of ssh://repo.isc.org/proj/git/prod/bind9	2014-05-15 05:02:02 +00:00
Tinderbox User	6bcac4b58d	regen master	2014-05-15 04:46:54 +00:00
Mark Andrews	97553eec86	grammar	2014-05-15 14:44:43 +10:00
Mark Andrews	0af902c0df	white space	2014-05-15 14:30:31 +10:00
Mark Andrews	2d0bc1e0f3	+domain was out of order	2014-05-15 14:26:57 +10:00
Tinderbox User	8e16b30787	regen master	2014-05-15 03:57:31 +00:00
Mark Andrews	9c36846e41	3849. [doc] Alphabetized dig's +options. [RT #35992 ]	2014-05-15 13:38:10 +10:00
Mark Andrews	71e9639c1d	ignore dig-symtbl.c, host-symtbl.c and nslookup-symtbl.c	2014-05-15 12:12:50 +10:00
Mark Andrews	a14fe85229	3848. [bug] Adjust 'statistics-channels specified but not effective' error message to account for JSON support. [RT #36008]	2014-05-15 11:12:05 +10:00
Mark Andrews	69530009f1	use portable awk	2014-05-15 00:34:17 +10:00
Tinderbox User	297342940e	regen master	2014-05-14 01:05:10 +00:00
Mark Andrews	05816676bb	3846. [bug] "dig +notcp ixfr=<serial>" should result in a UDP ixfr query. [RT #35980]	2014-05-14 09:59:02 +10:00
Francis Dupont	761f60fc35	use vcredist_x64.exe for 64 bit Windows [#35973 ]	2014-05-13 12:31:50 +02:00
Mark Andrews	2c172a42b3	3842. [bug] Adjust RRL log-only logging category. [RT #35945 ]	2014-05-11 10:59:42 +10:00
Mark Andrews	733898cffe	use sub second sleeps for prefetch disabled test	2014-05-09 15:00:36 +10:00
Mark Andrews	151759e7b7	address suspected race in system test for 'named -L'	2014-05-08 11:10:04 +10:00
Tinderbox User	c381ccf794	update copyright notice	2014-05-07 23:45:21 +00:00
Evan Hunt	60988462e5	[master] use posix-compatible shell in system tests 3839. [test] Use only posix-compatible shell in system tests. [RT #35625]	2014-05-06 22:06:04 -07:00
Mark Andrews	215f02a137	remove resource leak	2014-05-06 20:51:33 +10:00
Mark Andrews	b36fc8294e	3837. [security] A NULL pointer is passed to query_prefetch resulting a REQUIRE assertion failure when a fetch is actually initiated. [ RT #35899] Squashed commit of the following: commit 7f4e1f3917d743089c42cc52ec2c0eea598d2c00 Author: Mukund Sivaraman <muks@isc.org> Date: Sun May 4 22:34:34 2014 +0530 Fix a comment commit 6a35a6a2346013fa8e3798b9b680d8a3031fcb03 Author: Mark Andrews <marka@isc.org> Date: Sun May 4 23:34:25 2014 +1000 pass the correct name to query_prefetch	2014-05-05 10:12:12 +10:00
Evan Hunt	c0c4512020	[master] fixed geoip elements in named ACLs 3835. [bug] Geoip ACL elements didn't work correctly when referenced via named or nested ACLs. [RT #35879]	2014-04-30 20:21:56 -07:00
Mark Andrews	f09f1bf18e	fix filter-aaaa system test to work when crypto is disabled	2014-05-01 12:28:50 +10:00
Mark Andrews	5b56f2e3cc	zero pad date and month fields	2014-05-01 11:41:32 +10:00
Mark Andrews	c2abd6efeb	update copyrights	2014-05-01 10:00:00 +10:00
Mark Andrews	96f07724d6	use SKIPPED exit code (255)	2014-05-01 00:33:11 +10:00
Mark Andrews	23c7871cc7	don't read past end of command line argument	2014-04-30 16:09:16 +10:00
Mark Andrews	b75c645026	have +[no]ttl as a alias for +[no]ttlid	2014-04-30 16:05:18 +10:00
Mark Andrews	3057498bda	add missing default action for +[no]ttl*	2014-04-30 15:59:15 +10:00
Mark Andrews	0172c9fc2c	use +nottlid	2014-04-30 15:53:37 +10:00
Mark Andrews	87344c2cb3	2833. [bug] Cross compiling was broken due to calling genrandom at build time. [RT #35869]	2014-04-30 11:39:43 +10:00
Tinderbox User	e68c527dff	regen master	2014-04-30 01:05:11 +00:00
Evan Hunt	44613d4d86	[master] named -L option for default logfile 3832. [func] "named -L <filename>" causes named to send log messages to the specified file by default instead of to the system log. (Thanks to Tony Finch.) [RT #35845]	2014-04-29 17:17:03 -07:00
Evan Hunt	0dc0b029e9	[master] log query errors at info when query logging is on 3830. [func] When query logging is enabled, log query errors at the same level ('info') as the queries themselves. [RT #35844]	2014-04-29 17:04:21 -07:00
Evan Hunt	cd750f6e74	[master] dig +ttlunits 3829. [func] "dig +ttlunits" causes dig to print TTL values with time-unit suffixes: w, d, h, m, s for weeks, days, hours, minutes, and seconds. (Thanks to Tony Finch.) [RT #35823]	2014-04-29 16:58:36 -07:00
Tinderbox User	f6ea2b1d09	update copyright notice	2014-04-29 23:45:21 +00:00
Evan Hunt	b4ba66ba1e	[master] "dnssec-signzone -N date" 3827. [func] "dnssec-signzone -N date" updates serial number to the current date in YYYYMMDDNN format. [RT #35800]	2014-04-29 16:29:20 -07:00
Mark Andrews	e54767a3c9	change exit code	2014-04-29 22:57:15 +10:00
Mark Andrews	db3f8d175d	silence compiler warnings; style	2014-04-29 21:11:14 +10:00
Mark Andrews	1a158ef6ee	fix testsock6.pl (cherry picked from commit `660195a82c`)	2014-04-29 19:15:55 +10:00
Evan Hunt	54267016bc	[master] add geoip and filter-aaaa to SUBDIRS	2014-04-28 22:41:13 -07:00
Mark Andrews	52c5b74c27	improve error handling in sig_fromfile	2014-04-29 14:41:25 +10:00
Mark Andrews	76884179fd	3823. [func] Log the rpz cname target when rewriting. [RT #35667 ]	2014-04-28 15:18:53 +10:00
Tinderbox User	2d50cce72e	update copyright notice	2014-04-26 23:45:20 +00:00
Evan Hunt	eb1a7730f0	[master] log static-stub correctly when removing 3822. [bug] Log the correct type of static-stub zones when removing them. [RT #35842]	2014-04-26 10:16:37 -07:00
Mark Andrews	4aaaaadeae	silence warnings	2014-04-26 23:42:37 +10:00
Mark Andrews	f4f70bf596	address 'version' reference leak	2014-04-26 23:30:53 +10:00
Tinderbox User	06081a0d61	update copyright notice	2014-04-25 23:45:21 +00:00
Evan Hunt	aefb3e308b	[master] better DDNS in DLZ; mysqldyn 3821. [contrib] Added a new "mysqldyn" DLZ module with dynamic update and transaction support. Thanks to Marty Lee for the contribution. [RT #35656] 3820. [func] The DLZ API doesn't pass the database version to the lookup() function; this can cause DLZ modules that allow dynamic updates to mishandle prerequisite checks. This has been corrected by adding a 'dbversion' field to the dns_clientinfo_t structure. [RT #35656]	2014-04-25 13:06:30 -07:00
Tinderbox User	37f7c4c673	update copyright notice	2014-04-24 23:45:21 +00:00
Mark Andrews	44c6deacdd	additional changes for: 3818. [bug] Stop lying to the optimizer that 'void *arg' is a constant in isc_event_allocate.	2014-04-24 18:59:01 +10:00
Mark Andrews	36e5ac0033	3819. [bug] NSEC3 hashes need to be able to be entered and displayed without padding. This is not a issue for currently defined algorithms but may be for future hash algorithms. [RT #27925]	2014-04-24 18:58:03 +10:00
Mark Andrews	b57445a84b	fix rename	2014-04-24 09:40:49 +10:00
Tinderbox User	e108f2ec64	regen master	2014-04-23 18:28:07 +00:00
Evan Hunt	2ae159b376	[master] globally rename "delve" to "delv" 3817. [func] The "delve" command is now spelled "delv" to avoid a namespace collision with the Xapian project. [RT #35801]	2014-04-23 11:14:12 -07:00
Tinderbox User	953189d30e	update copyright notice	2014-04-22 23:45:19 +00:00
Evan Hunt	1a9932dde1	[master] dig +qr now shows query size 3816. [func] "dig +qr" now reports query size. (Thanks to Tony Finch.) [RT #35822]	2014-04-22 12:38:53 -07:00
Tinderbox User	f39512a917	regen master	2014-04-20 01:05:19 +00:00
Evan Hunt	5978df387c	[master] additional nsupdate doc fix	2014-04-18 18:26:07 -07:00
Evan Hunt	627a9ceb63	[master] fix tags	2014-04-18 18:23:37 -07:00
Evan Hunt	1f73b46904	[master] clarify nsupdate -y 3815. [doc] Clarify "nsupdate -y" usage in man page. [RT #35808]	2014-04-18 15:08:23 -07:00
Evan Hunt	58e291cb8d	[master] setup tsig in dig/host/nslookup (Change #3813 had broken some system tests.)	2014-04-18 07:27:50 -07:00
Evan Hunt	ec3b216506	[master] masterfile-style 3814. [func] The "masterfile-style" zone option controls the formatting of dumped zone files. Options are "relative" (multiline format) and "full" (one record per line). The default is "relative". [RT #20798]	2014-04-17 17:10:29 -07:00
Evan Hunt	4e7973990c	[master] host recognizes /etc/resolv.conf options 3813. [func] "host" now recognizes the "timeout", "attempts" and "debug" options when set in /etc/resolv.conf. (Thanks to Adam Tkac at RedHat.) [RT #21885]	2014-04-17 17:04:51 -07:00
Mark Andrews	e560fbdf77	3812. [func] Dig now supports sending arbitary EDNS options from the command line (+ednsopt=code[:value]). [RT #35584]	2014-04-18 09:52:12 +10:00
Evan Hunt	7318bbc262	[master] serial-update-method date; 3811. [func] "serial-update-method date;" sets serial number on dynamic update to today's date in YYYYMMDDNN format. (Thanks to Bradley Forschinger.) [RT #24903]	2014-04-17 16:05:50 -07:00
Francis Dupont	7c7c2fa688	OpenSSL 1.0.1f -> 1.0.1g	2014-04-14 14:50:06 +02:00
Tinderbox User	a7051299c6	update copyright notice	2014-04-10 23:46:10 +00:00
Evan Hunt	92fe6db3e4	[master] use test -r in system tests 3806. [test] Improved system test portability. [RT #35625]	2014-04-09 20:29:52 -07:00
Tinderbox User	914ed533b8	regen master	2014-04-10 01:05:11 +00:00
Evan Hunt	540daf2887	[master] missing manpage install rule for dnssec-importkey	2014-04-09 17:17:25 -07:00
Evan Hunt	baad8d9fd8	[master] allow null "file" for DLZ or alternate db zones 3803. [bug] "named-checkconf -z" incorrectly rejected zones using alternate data sources for not having a "file" option. [RT #35685]	2014-04-07 13:29:56 -07:00
Mark Andrews	5b60bde47b	use perl	2014-04-07 21:53:47 +10:00
Mark Andrews	a4941d6b5e	update check the correct resigning time is reported in zonestatus test to be more portable	2014-04-07 11:50:50 +10:00
Evan Hunt	7ef5dc87b6	[master] detach route socket when shutting down 3800. [bug] A pending event on the route socket could cause an assertion failure when shutting down named. [RT #35674]	2014-04-03 19:48:29 -07:00
Evan Hunt	44fbdddcad	[master] improve command line error reporting 3799. [bug] Improve named's command line error reporting. [RT #35603]	2014-04-03 19:34:48 -07:00
Mark Andrews	0dfd942409	3798. [bug] 'rndc zonestatus' was reporting the wrong re-signing time. [RT #35659]	2014-04-04 11:33:49 +11:00
Mark Andrews	a3799a38e7	#include <pk11/result.h>	2014-04-01 12:47:31 +11:00
Mark Andrews	e6ff1b5127	#include <dns/result.h>	2014-04-01 12:27:59 +11:00
Mark Andrews	51e6164fd6	3796. [bug] Register dns and pkcs#11 error codes. [RT #35629 ]	2014-03-31 15:38:36 +11:00
Tinderbox User	180d8b0eec	update copyright notice	2014-03-30 23:46:03 +00:00
Mukund Sivaraman	ef9334d745	3795. [bug] Make named-checkconf detect raw masterfiles for hint zones and reject them. [RT #35268] Squashed commit of the following: commit 5b0254711d6b77940d6217b9131b9d401df8a866 Author: Mukund Sivaraman <muks@isc.org> Date: Fri Mar 28 02:09:01 2014 +0530 Remove redundant helper function commit a4341c1a2ba830c8cee1def57a533f987f67c3dc Author: Mark Andrews <marka@isc.org> Date: Thu Jan 30 10:08:17 2014 +1100 error out if masterfile-format raw is specified for a hint zone.	2014-03-31 04:55:37 +05:30
Jeremy C. Reed	35094302da	have the install target also do installdirs as other tool's makefiles do. Okayed by each via jabber.	2014-03-28 13:04:02 -05:00
Mark Andrews	c73a7e127f	3792. [func] Provide links to the alternate statistics views when displaying in a browser. [RT #35605] Squashed commit of the following: commit 7ac73b584aa6e026a1deb124257d3a2ed1fc64cc Author: Evan Hunt <each@isc.org> Date: Mon Mar 24 21:47:28 2014 -0700 [rt35605] tweak commit b18bccc570803293f819c04f324f91b446a67756 Author: Mark Andrews <marka@isc.org> Date: Tue Mar 25 14:20:07 2014 +1100 provide links to alternate statistic views	2014-03-25 15:56:40 +11:00
Mark Andrews	09ab38c151	3790. [bug] Handle broken nameservers that send BADVERS in response to unknown EDNS options. Maintain statistics on BADVERS responses.	2014-03-20 05:00:55 +11:00
Mark Andrews	9e9d5e2548	check return value of convert_name	2014-03-16 11:21:32 +11:00
Mark Andrews	9f1959f0a7	silence signed/unsigned comparision warning	2014-03-16 11:14:26 +11:00
Evan Hunt	a7742a8885	[master] silence win64 build warning	2014-03-13 13:30:26 -07:00
Tinderbox User	ec899c963c	regen master	2014-03-13 06:24:13 +00:00
Evan Hunt	22e29471c7	[master] check allow-update in view/options 3787. [bug] The code that checks whether "auto-dnssec" is allowed was ignoring "allow-update" ACLs set at the options or view level. [RT #29536]	2014-03-12 21:36:01 -07:00
Mark Andrews	6f49db82ab	calling $TSIGKEYGEN doesn't work with libtool.	2014-03-13 15:11:46 +11:00
Evan Hunt	acbb301e64	[master] better error output when initializing pkcs11 3786. [func] Provide more detailed error codes when using native PKCS#11. "pkcs11-tokens" now fails robustly rather than asserting when run against an HSM with an incomplete PCKS#11 API implementation. [RT #35479]	2014-03-12 20:52:01 -07:00
Evan Hunt	e9a9bb6b14	[master] balance tag	2014-03-12 18:08:05 -07:00
Tinderbox User	0add14467b	update copyright notice	2014-03-12 23:46:05 +00:00
Evan Hunt	89740699cd	[master] fixed 'fixed' 3784. [bug] Using "rrset-order fixed" when it had not been enabled at compile time caused inconsistent results. It now works as documented, defaulting to cyclic mode. [RT #28104]	2014-03-12 08:45:44 -07:00
Evan Hunt	46bc64f4b1	[master] tsig-keygen 3783. [func] "tsig-keygen" is now available as an alternate command name for "ddns-confgen". It generates a TSIG key in named.conf format without comments. [RT #35503]	2014-03-12 08:29:15 -07:00
Mark Andrews	ca7aeeab71	make constant unsigned	2014-03-12 14:04:29 +11:00
Mark Andrews	bab2bf7dfd	expr length arg is not portable	2014-03-12 13:59:41 +11:00
Mark Andrews	f5375b1b8e	check isc_hex_totext result	2014-03-12 12:58:09 +11:00
Tinderbox User	3c7b4ac451	regen master	2014-03-12 01:05:39 +00:00
Evan Hunt	62258ada48	[master] auto-generate salt 3781. [func] Specifying "auto" as the salt when using "rndc signing -nsec3param" causes named to generate a 64-bit salt at random. [RT #35322]	2014-03-11 08:46:58 -07:00
Evan Hunt	7b46a4aa41	[master] fix negative numbers in $GENERATE 3780. [bug] $GENERATE handled negative numbers incorrectly. [RT #25528]	2014-03-10 11:55:32 -07:00
Tinderbox User	4b1a933811	update copyright notice	2014-03-07 23:47:09 +00:00
Evan Hunt	78f79084fc	[master] warn when wrong address family used in listen-on/-v6 3778. [bug] Log a warning when the wrong address family is used in "listen-on" or "listen-on-v6". [RT #17848]	2014-03-07 11:31:51 -08:00
Evan Hunt	e29c2b3903	[master] fix misuses of isc__buffer functions, update comment	2014-03-06 17:26:21 -08:00
Tinderbox User	e9c7fe450e	update copyright notice	2014-03-06 23:46:08 +00:00
Evan Hunt	741dfd3ccd	[master] tests directory cleanup	2014-03-06 11:11:27 -08:00
Evan Hunt	a2fd1de97d	[master] fix DLZ coredump 3777. [bug] EDNS EXPIRE code could dump core when processing DLZ queries. [RT #35493]	2014-03-06 11:06:30 -08:00
Tinderbox User	0f52ea95d8	regen master	2014-03-06 01:05:38 +00:00
Evan Hunt	431859b442	[master] typo	2014-03-04 21:46:21 -08:00
Tinderbox User	d3ddafd746	regen master	2014-03-05 01:06:28 +00:00
Tinderbox User	cc2a515684	update copyright notice	2014-03-04 23:46:15 +00:00
Evan Hunt	b454c03196	[master] use ANSI prototypes, clean up some casts	2014-03-04 10:42:25 -08:00
Evan Hunt	e7c0d42b11	[master] rndc -q 3776. [bug] "rndc -q" suppresses output from successful rndc commands. Errors are printed on stderr. [RT #21393]	2014-03-04 09:49:57 -08:00
Evan Hunt	7d769b7ba7	[master] don't use keyname from command line if using -S	2014-03-04 09:07:26 -08:00
Evan Hunt	d51456e453	[master] fix API mismatch bug in DLZ 3775. [bug] dlz_dlopen driver could return the wrong error code on API version mismatch, leading to a segfault. [RT #35495]	2014-03-04 08:58:40 -08:00
Tinderbox User	b46346eb30	regen master	2014-03-04 01:05:04 +00:00
Tinderbox User	1599ac12be	update copyright notice	2014-03-03 23:47:11 +00:00
Evan Hunt	9f5222620c	[master] revert the "version" interactive command from nslookup	2014-03-03 10:05:55 -08:00
Evan Hunt	f4ada59b35	[master] don't use strncasecmp for command line option	2014-03-03 09:31:41 -08:00
Evan Hunt	67d01dcacb	[master] add "version" options to host/nslookup/nsupdate 3773. [func] "host", "nslookup" and "nsupdate" now have options and commands to print the version number. [RT #26057]	2014-03-03 09:08:04 -08:00
Tinderbox User	74ae031d9d	regen master	2014-03-02 01:05:20 +00:00
Evan Hunt	262fea6637	[master] fix log level for built in keys 3771. [cleanup] Adjusted log level for "using built-in key" messages. [RT #24383]	2014-03-01 15:51:21 -08:00
Tinderbox User	8ab8cd1fa6	update copyright notice	2014-03-01 23:46:15 +00:00
Evan Hunt	084ba95b08	[master] dig +trace could fail when retrying with TCP 3770. [bug] "dig +trace" could fail with an assertion when it needed to fall back to TCP due to a truncated response. [RT #24660]	2014-03-01 15:32:25 -08:00
Evan Hunt	ec88c1fdff	[master] capture stderr in systests.output - also tidied up runall.sh summary output	2014-02-28 21:59:28 -08:00
Evan Hunt	3ef4b7383a	[master] improved doc for "rndc signing -list" 3769. [doc] Improved documentation of "rndc signing -list". [RT #30652]	2014-02-28 21:29:19 -08:00
Evan Hunt	72aa3b2a4e	[master] add sha-384 to dnssec-checkds 3768. [bug] "dnssec-checkds" was missing the SHA-384 digest algorithm. [RT #34000]	2014-02-28 21:09:24 -08:00
Tinderbox User	e23798e2ab	update copyright notice	2014-02-28 23:46:19 +00:00
Evan Hunt	368aedf188	[master] log when using rndc.key 3767. [func] Log explicitly when using rndc.key to configure command channel. [RT #35316]	2014-02-27 17:55:04 -08:00
Tinderbox User	794b79e6bb	regen master	2014-02-28 01:07:06 +00:00
Evan Hunt	a60bf97f9f	[master] dnssec-keyfromlabel -S and -i 3764. [bug] The dnssec-keygen/settime -S and -i options (to set up a successor key and set the prepublication interval) were missing from dnssec-keyfromlabel. [RT #35394]	2014-02-27 16:25:32 -08:00
Tinderbox User	938440694b	update copyright notice	2014-02-27 23:46:22 +00:00
Evan Hunt	f79ee00c69	[master] use cache in delve 3763. [bug] delve: Cache DNSSEC records to avoid the need to re-fetch them when restarting validation. [RT #35476]	2014-02-27 14:49:01 -08:00
Evan Hunt	1753d3c4d7	[master] correct dates in man pages	2014-02-27 11:43:10 -08:00
Evan Hunt	98922b2b2b	[master] merge several interdependent fixes 3760. [bug] Improve SIT with native PKCS#11 and on Windows. [RT #35433] 3759. [port] Enable delve on Windows. [RT #35441] 3758. [port] Enable export library APIs on windows. [RT #35382]	2014-02-26 19:00:05 -08:00
Mark Andrews	95c3a5e116	merge copyrights	2014-02-27 13:21:27 +11:00
Evan Hunt	061f61dd3b	[master] add files omitted from coverage test	2014-02-26 08:54:21 -08:00
Evan Hunt	3a01ded15d	[master] enable windows python tools 3757. [port] Enable Python tools (dnssec-coverage, dnssec-checkds) to run on Windows. [RT #34355]	2014-02-26 08:43:50 -08:00
Mark Andrews	79bd3cf027	we only use 32 octets	2014-02-26 15:54:23 +11:00
Mark Andrews	ed70f92dd0	use ISC_PLATFORM_USESIT	2014-02-24 09:54:04 +11:00
Mark Andrews	6b8c78d6ab	delve: -p was not affecting servers lernt from resolv.conf	2014-02-24 09:38:28 +11:00
Mark Andrews	9e39bafd2e	adjust SIT computation	2014-02-24 09:29:49 +11:00
Mark Andrews	02a5e3ed85	3755. [func] Add stats counters for known EDNS options + others. [RT #35447]	2014-02-24 09:24:25 +11:00
Mark Andrews	c48c691c4f	check for zone being NULL	2014-02-24 08:52:15 +11:00
Mark Andrews	6d7aa71f2f	encrypt nonce and time	2014-02-24 07:16:00 +11:00
Francis Dupont	35bcef6631	fixed ENABLE_LTR typos	2014-02-23 09:37:32 +01:00
Mark Andrews	cc00679829	wait for zone to transfer	2014-02-23 14:06:15 +11:00
Mark Andrews	89b23dc57e	silence compiler warning	2014-02-23 11:44:12 +11:00
Tinderbox User	892503bd48	regen master	2014-02-21 17:38:07 +00:00
Evan Hunt	f0f3f595b1	[master] delve man page improvements	2014-02-21 08:33:17 -08:00
Evan Hunt	999926955b	[master] fix test error	2014-02-21 08:05:40 -08:00
Evan Hunt	6ce1aa1902	[master] tag mismatch	2014-02-20 20:59:24 -08:00
Evan Hunt	2059d7950b	[master] missing man pages, named-rrchecker had wrong name	2014-02-20 20:46:25 -08:00
Tinderbox User	20a96edbf9	update copyright notice	2014-02-20 23:46:35 +00:00
Tinderbox User	0e1dece22e	regen master	2014-02-20 19:19:27 +00:00
Evan Hunt	bce9696c7a	[master] fix win32 installer 3754. [cleanup] win32: Installer now places files in the Program Files area rather than system services. [RT #35361]	2014-02-20 10:11:06 -08:00
Mark Andrews	80b37f909a	increment dns_nsstatscounter_recursclients when prefetching	2014-02-21 01:40:54 +11:00
Mark Andrews	caac342072	add @ISC_OPENSSL_LIBS@	2014-02-21 00:35:22 +11:00
Mark Andrews	c62ead1ae7	check the result of dns_zone_getdb call	2014-02-20 20:33:46 +11:00
Evan Hunt	5b7dbbf172	[master] silence win64 warnings	2014-02-19 22:58:09 -08:00
Mark Andrews	47cb20eae1	add EDNS EXPIRE processing on ixfr and axfr out	2014-02-20 17:51:31 +11:00
Evan Hunt	83eecff731	[master] adjust default -U 3751. [tuning] The default setting for the -U option (setting the number of UDP listeners per interface) has been adjusted to improve performance. [RT #35417]	2014-02-19 21:54:43 -08:00
Evan Hunt	9576baafc0	[master] assert if sitok/sitbad are insane	2014-02-19 21:26:31 -08:00
Mark Andrews	f0c00f10a0	report if sit is good/bad	2014-02-20 15:55:09 +11:00
Mark Andrews	16134801ce	3750. [experimental] Partially implement EDNS EXPIRE option as described in draft-andrews-dnsext-expire-00. Retrivial of remaining time to expiry from slave zones is supported. EXPIRE uses an experimental option code (65002) and is subject to change. [RT #35416]	2014-02-20 14:56:20 +11:00
Mark Andrews	801b958a5c	s/DNS_EDNSOPTIONS/DNS_EDNSOPTIONS/	2014-02-20 14:00:54 +11:00
Mark Andrews	72ba6ba736	define DNS_OPT_EDNSOPTIONS	2014-02-20 13:55:21 +11:00
Mark Andrews	86a85a3bbd	don't error on rpz percentage checks as they fail inconsistently on virtual machines	2014-02-20 12:22:14 +11:00
Evan Hunt	2af7d81efd	[master] unbalanced tag	2014-02-19 17:15:51 -08:00
Mark Andrews	e676a59686	update copyrights	2014-02-20 10:53:11 +11:00
Evan Hunt	d7b9756a21	[master] ENDS client-subnet in dig 3749. [func] "dig +subnet" sends an EDNS client subnet option containing the specified address/prefix when querying. (Thanks to Wilmer van der Gaast.) [RT #35415]	2014-02-19 15:51:02 -08:00
Tinderbox User	1361e03890	update copyright notice	2014-02-19 23:46:31 +00:00
Francis Dupont	f1a6c8e78c	WIN32 master fixes	2014-02-19 23:17:52 +01:00

... 18 19 20 21 22 ...

8425 commits