bind9

mirror of https://github.com/isc-projects/bind9.git synced 2026-02-28 12:31:29 -05:00

Author	SHA1	Message	Date
Evan Hunt	7c0f238c50	[master] handle time units in dnssec-coverage -r 4174. [bug] "dnssec-coverage -r" didn't handle time unit suffixes correctly. [RT #38444]	2015-08-12 12:20:43 -07:00
Mark Andrews	efb028b6c8	4173. [bug] dig +sigchase was not properly matching the trusted key. [RT #40188]	2015-08-12 19:11:49 +10:00
Mark Andrews	151f1bcd5e	4172. [bug] Named / named-checkconf didn't handle a view of CLASS0. [RT #40265]	2015-08-12 19:06:00 +10:00
Mark Andrews	b8a04d50a3	Change 3813 broke dig/host -4/-6. No CHANGES as this is has not been released	2015-08-12 12:50:15 +10:00
Mark Andrews	157bc46d2e	add '=' to +opcode description	2015-08-12 07:04:08 +10:00
Evan Hunt	2a49f6bbfe	[master] use dns_message_totext() in wire_data	2015-08-10 20:51:22 -07:00
Evan Hunt	f93884fcb7	[master] use libdns functions to convert rcode and opcode to text	2015-08-10 20:27:35 -07:00
Mark Andrews	f260e3a188	address len being shadowed	2015-08-11 12:59:34 +10:00
Tinderbox User	7e80eac638	update copyright notice / whitespace	2015-08-10 23:45:23 +00:00
Evan Hunt	3812202124	[master] add a "wire_test -d" option to read raw binary data 4169. [test] Added a 'wire_test -d' option to read input as raw binary data, for use as a fuzzing harness. [RT #40312]	2015-08-10 14:44:02 -07:00
Evan Hunt	05b1684791	[master] fix an awk portability issue	2015-08-03 14:21:16 -07:00
Tinderbox User	f3cbd0e029	update copyright notice / whitespace	2015-08-02 23:45:22 +00:00
Evan Hunt	68116c5a5f	[master] add +nocookie options where needed	2015-08-02 11:18:12 -07:00
Mark Andrews	b485d0a67f	if UDP and we have a bad cookie send a immediate badcookie response	2015-07-27 15:42:03 +10:00
Mark Andrews	58eb2006a4	return notimp for qcount=0 unimplemeneted opcodes (cherry picked from commit 7c10dc502a34f88f11c6b6469bb234c72e61fec8)	2015-07-24 13:37:12 +10:00
Evan Hunt	a3b21effd7	[master] missing 'use' caused test failure	2015-07-21 13:49:54 -07:00
Mukund Sivaraman	fc39b6a961	Update rndc usage output (#40010 ) Squashed commit of the following: commit 73f0bba7d8d4763763ff88731c739ac646714ac8 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jul 13 05:40:35 2015 +0530 Update rndc usage output This is based on a patch sent by Tony Finch.	2015-07-21 12:24:27 +05:30
Mukund Sivaraman	2cc21870b0	Make rndc showzone print a message when allow-new-zones is not configured (#40009 ) Squashed commit of the following: commit 77f12b02cf4e81f13e10db3cfac90e9de0b53928 Author: Mukund Sivaraman <muks@isc.org> Date: Mon Jul 13 05:28:13 2015 +0530 Some tweaks commit 9c521020b03c2fe7293ec4c970225fff479efd40 Author: Tony Finch <dot@dotat.at> Date: Thu Jul 9 15:36:15 2015 +0100 rndc addzone error reporting improvements Clearer error messages from rndc addzone and modzone when the view is not known or when allow-new-zones is off. Also, remove a spurious newline from the delzone response.	2015-07-21 12:19:24 +05:30
Mark Andrews	80a51d24ea	set badcookie not besteffort	2015-07-21 15:15:40 +10:00
Evan Hunt	a32ca13d12	[master] statschannel test failed when only JSON was available	2015-07-20 19:09:22 -07:00
Evan Hunt	9501aa9d5a	[master] portability	2015-07-20 19:01:29 -07:00
Mark Andrews	3a49d0ff10	4164. [bug] Don't rename slave files and journals on out of memory. [RT #40033] 4163. [bug] Address compiler warnings. [RT #40024]	2015-07-13 09:46:59 +10:00
Tinderbox User	b3338fc248	regen master	2015-07-11 01:05:48 +00:00
Tinderbox User	35af5049f8	update copyright notice / whitespace	2015-07-10 23:45:23 +00:00
Evan Hunt	629a015940	[master] correct the maximum NTA lifetime in rndc's help output	2015-07-10 09:07:23 -07:00
Mark Andrews	539c3f73b7	zone is not optional for zonestatus [RT #40012 ]	2015-07-10 15:28:11 +10:00
Evan Hunt	b716b9cddc	[master] add JSON and more XML tests 4161. [test] Add JSON test for traffic size stats; also test for consistency between "rndc stats" and the XML and JSON statistics channel contents. [RT #38700]	2015-07-09 21:18:42 -07:00
Tinderbox User	c0cbdeedb5	regen master	2015-07-10 01:05:03 +00:00
Tinderbox User	f16a6bfb6c	update copyright notice / whitespace	2015-07-09 23:45:22 +00:00
Evan Hunt	e38a7d749b	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-07-08 22:56:32 -07:00
Evan Hunt	1479200aa0	[master] DDoS mitigation features 3938. [func] Added quotas to be used in recursive resolvers that are under high query load for names in zones whose authoritative servers are nonresponsive or are experiencing a denial of service attack. - "fetches-per-server" limits the number of simultaneous queries that can be sent to any single authoritative server. The configured value is a starting point; it is automatically adjusted downward if the server is partially or completely non-responsive. The algorithm used to adjust the quota can be configured via the "fetch-quota-params" option. - "fetches-per-zone" limits the number of simultaneous queries that can be sent for names within a single domain. (Note: Unlike "fetches-per-server", this value is not self-tuning.) - New stats counters have been added to count queries spilled due to these quotas. See the ARM for details of these options. [RT #37125]	2015-07-08 22:53:39 -07:00
Mark Andrews	2561b2dd84	add comment about +trace and @server	2015-07-09 12:11:46 +10:00
Tinderbox User	f66d0e646f	regen	2015-07-08 23:30:01 +00:00
Mark Andrews	e8f98ec8d4	future cookie code	2015-07-08 12:57:29 +10:00
Mark Andrews	4968e1de7e	allow named to build w/o openssl	2015-07-08 11:54:25 +10:00
Tinderbox User	9ab5a7d83c	update copyright notice / whitespace	2015-07-07 23:45:22 +00:00
Mark Andrews	6e7f5e8ad5	4159. [cleanup] Alphabetize dig's help output. [RT #39966 ]	2015-07-08 09:20:49 +10:00
Mark Andrews	b399f4e568	4159. [cleanup] Alphabetize dig's help output. [RT #39966 ]	2015-07-08 08:49:24 +10:00
Evan Hunt	70d987def5	[master] traffic size stats 4156. [func] Added statistics counters to track the sizes of incoming queries and outgoing responses in histogram buckets, as specified in RSSAC002. [RT #39049]	2015-07-06 22:29:06 -07:00
Mukund Sivaraman	33ca26968b	Allow RPZ rewrite logging to be configured on a per-zone basis (#39754 )	2015-07-06 08:57:51 +05:30
Mark Andrews	3e33f4198d	4154. [bug] A OPT record should be included with the FORMERR response when there is a malformed EDNS option. [RT #39647] 4153. [bug] Dig should zero non significant +subnet bits. Check that non significant ECS bits are zero on receipt. [RT #39647]	2015-07-06 12:52:37 +10:00
Tinderbox User	1879ff4932	regen master	2015-07-06 01:04:49 +00:00
Tinderbox User	8f0b326d9a	update copyright notice / whitespace	2015-07-05 23:45:22 +00:00
Mark Andrews	ce67023ae3	4152. [func] Implement DNS COOKIE option. This replaces the experimental SIT option of BIND 9.10. The following named.conf directives are avaliable: send-cookie, cookie-secret, cookie-algorithm and nocookie-udp-size. The following dig options are available: +[no]cookie[=value] and +[no]badcookie. [RT #39928]	2015-07-06 09:44:24 +10:00
Tinderbox User	d6b82bc2ae	update copyright notice / whitespace	2015-06-30 23:45:23 +00:00
Tinderbox User	6cd01c0a96	regen master	2015-06-30 01:04:57 +00:00
Tinderbox User	337d408adb	update copyright notice / whitespace	2015-06-29 23:45:23 +00:00
Jeremy C. Reed	001b06f0ab	remove some duplicate "the" words.	2015-06-29 13:40:06 -04:00
Mukund Sivaraman	08f0129732	Fix a bug printing zone names with '/' character in XML and JSON stats (#39873 )	2015-06-29 18:33:18 +05:30
Mark Andrews	4a61eae651	4147. [bug] Filter-aaaa / filter-aaaa-on-v4 / filter-aaaa-on-v6 was returning referrals rather than nodata responses when the AAAA records were filtered. [RT #39843]	2015-06-29 15:48:41 +10:00
Tinderbox User	8e50c69783	update copyright notice / whitespace	2015-06-25 23:45:22 +00:00
Witold Krecicki	f10a67dad2	Add statistics counters for nxdomain redirections. [RT #39790 ]	2015-06-25 09:21:50 +02:00
Tinderbox User	e0ba64bdd2	update copyright notice / whitespace	2015-06-23 23:45:21 +00:00
Mukund Sivaraman	0439bfedd9	Fix parsing of NZFs saved by rndc addzone with view specified (#39845 )	2015-06-23 14:19:48 +05:30
Mukund Sivaraman	b4e114e3cd	Print unsigned values for serial, etc. in rndc zonestatus output (#39854 )	2015-06-23 13:57:33 +05:30
Mukund Sivaraman	d14c268362	Remove redundant nzf_remove() call during delzone (#39844 )	2015-06-23 13:41:08 +05:30
Witold Krecicki	af3770ed93	rndc reconfig reports configuration errors the same way rndc reload does [RT #39635 ]	2015-06-12 10:19:29 +02:00
Evan Hunt	27970e78c6	[master] log outdated rpz settings regardless of enable-querytrace	2015-06-10 10:22:59 -07:00
Evan Hunt	215049febb	[master] rpz_ver check was ineffective	2015-06-09 15:05:43 -07:00
Witold Krecicki	f85deb5154	log expired NTA at startup	2015-06-08 13:57:24 +02:00
Tinderbox User	335c82aebd	regen master	2015-06-05 01:05:03 +00:00
Mark Andrews	8a9bac8dec	4133. [port] Update how various json libraries are handled. [RT #39646]	2015-06-05 10:16:24 +10:00
Evan Hunt	eb447eca88	[master] dig option cleanups 4132. [cleanup] dig: added +rd as a synonym for +recurse, added +class as an unabbreviated alternative to +cl. [RT #39686]	2015-06-04 08:55:32 -07:00
Evan Hunt	8c9fba44a4	[master] further RPZ fixes 4131. [bug] Addressed further problems with reloading RPZ zones. [RT #39649]	2015-06-03 18:18:55 -07:00
Mark Andrews	b704d25ff3	unlock T4_mx	2015-05-30 17:54:33 +10:00
Mark Andrews	8c74b6a9a1	use sed as tail -n +# is not portable	2015-05-30 11:05:57 +10:00
Tinderbox User	22be030b50	regen master	2015-05-29 01:04:57 +00:00
Tinderbox User	431e5c81db	update copyright notice / whitespace	2015-05-28 23:45:24 +00:00
Mark Andrews	e53e202ef3	4128. [bug] Address issues raised by Coverity 7.6. [RT #39537 ]	2015-05-28 13:17:07 +10:00
Mark Andrews	52a487f71a	link against ISC_OPENSSL_LIBS	2015-05-28 11:06:39 +10:00
Tinderbox User	481870b95f	regen master	2015-05-28 01:04:54 +00:00
Tinderbox User	3813d22587	update copyright notice / whitespace	2015-05-27 23:45:25 +00:00
Mark Andrews	598b502695	4127. [protocol] CDS and CDNSKEY need to be signed by the key signing key as per RFC 7344, Section 4.1. [RT #37215]	2015-05-27 15:25:45 +10:00
Evan Hunt	a32b6291aa	[master] address regression 4126. [bug] Addressed a regression introduced in change #4121. [RT #39611]	2015-05-26 19:11:08 -07:00
Mark Andrews	91d3c63ca7	add -P and -T to help	2015-05-27 10:56:49 +10:00
Tinderbox User	b7b835bfb0	update copyright notice / whitespace	2015-05-24 23:45:24 +00:00
Mark Andrews	83622f9a4c	link against libisc	2015-05-24 12:50:56 +10:00
Mark Andrews	cb9b145f39	don't include <isc/print.h>	2015-05-24 12:50:20 +10:00
Mark Andrews	936adc1282	link against libisc	2015-05-24 11:58:15 +10:00
Tinderbox User	d70dac20d2	update copyright notice / whitespace	2015-05-23 23:45:25 +00:00
Mark Andrews	2ac85d943b	specfiy where libisc is (cherry picked from commit c907e7b512e88b641595d514790e2b41575f149e)	2015-05-24 06:03:08 +10:00
Mark Andrews	e6e7de5cda	link against ISCLIBS	2015-05-24 05:42:44 +10:00
Francis Dupont	850cfa4e86	Added isc in includes (print.h requires it)	2015-05-23 15:51:34 +02:00
Francis Dupont	3759f10fc5	added print.h includes, updated copyrights	2015-05-23 14:21:51 +02:00
Tinderbox User	46ee7c3260	update copyright notice / whitespace	2015-05-22 23:45:24 +00:00
Curtis Blackburn	717c2b9655	4125. [test] Added tests for dig, renamed delv test to digdelv. [RT #39490]	2015-05-22 11:47:17 -07:00
Evan Hunt	c55a1da4fc	[master] log parsing errors from default config or addzone/modzone 4124. [func] Log errors or warnings encountered when parsing the internal default configuration. Clarify the logging of errors and warnings encountered in rndc addzone or modzone parameters. [RT #39440]	2015-05-21 23:04:29 -07:00
Tinderbox User	0dfc0745c4	update copyright notice / whitespace	2015-05-21 23:45:26 +00:00
Mukund Sivaraman	705cea35a8	Fix RPZ radix tree search() for CLIENT-IP triggers (#39481 )	2015-05-21 11:10:49 +05:30
Evan Hunt	b403f3b57e	[master] revert erroneous cleanup	2015-05-20 13:44:28 -07:00
Evan Hunt	54231cf082	[master] minor cleanup	2015-05-20 00:10:38 -07:00
Tinderbox User	e9ed929fd1	regen master	2015-05-20 01:04:55 +00:00
Evan Hunt	7e6cf6fc6e	[master] address a possible policy update race 4120. [bug] A bug in RPZ could cause the server to crash if policy zones were updated while recursion was pending for RPZ processing of an active query. [RT #39415]	2015-05-19 15:47:42 -07:00
Jeremy C. Reed	20914534e6	add a space after shell here-document name <<END> foo.out to <<END > foo.out to be consistent with shell style discussed via jabber in bind9 room	2015-05-19 13:22:36 -04:00
Mark Andrews	c7463967db	4119. [func] Allow dig to set the message opcode. [RT #39550 ]	2015-05-19 12:46:06 +10:00
Evan Hunt	d9aefcf5cb	[master] there are now 98 automatic zones	2015-05-16 10:07:17 -07:00
Mark Andrews	8f20f6c9d7	4117. [protocol] Add EMPTY.AS112.ARPA as per RFC 7534.	2015-05-15 08:22:25 +10:00
Tinderbox User	9ae1588020	update copyright notice / whitespace	2015-05-08 23:45:24 +00:00
Mukund Sivaraman	b947e1a521	Fix a bug in RPZ that could cause unwanted recursion (#39229 ) Conflicts: doc/arm/notes.xml	2015-05-07 08:29:36 +05:30
Tinderbox User	012142bbe0	update copyright notice / whitespace	2015-05-06 23:45:24 +00:00
Mark Andrews	fe76a64294	restore is_zone on return from redirect lookup [RT #37989b] (cherry picked from commit 1d405c1412b3a2e5aafb37ea55b332914246349e)	2015-05-07 08:32:42 +10:00
Tinderbox User	6d45011a65	regen master	2015-05-06 01:05:06 +00:00
Tinderbox User	4e92a74ec4	update copyright notice / whitespace	2015-05-05 23:45:24 +00:00
Evan Hunt	9e804040a2	[master] add "rndc -r" to print result code 4115. [func] "rndc -r" now prints the result code (e.g., ISC_R_SUCCESS, ISC_R_TIMEOUT, etc) after running the requested command. [RT #38913]	2015-05-05 16:39:09 -07:00
Evan Hunt	d4ed608e0c	[master] Allow some tests to run partially if Net::DNS is unavailable	2015-05-05 08:33:09 -07:00
Mukund Sivaraman	8f25faf972	Fix a regression in radix tree implementation introduced by ECS code (#38983 )	2015-05-05 13:11:23 +05:30
Mark Andrews	ecaed3593c	add managed-keys to help	2015-05-05 12:20:51 +10:00
Tinderbox User	395c952141	regen master	2015-05-05 01:05:07 +00:00
Tinderbox User	6376559cd3	update copyright notice / whitespace	2015-05-04 23:45:23 +00:00
Mark Andrews	3138571170	fix tag	2015-05-05 08:23:47 +10:00
Mark Andrews	8a46213dbe	fix tag	2015-05-05 08:23:00 +10:00
Evan Hunt	dc877b38a0	[master] check for Net::DNS 4113. [test] Check for Net::DNS is some system test prerequisites. [RT #39369]	2015-05-04 12:51:38 -07:00
Evan Hunt	1c02dd9dd9	[master] fix root-delegation-only without exclude 4112. [bug] Named failed to load when "root-delegation-only" was used without a list of domains to exclude. [RT #39380]	2015-05-04 12:44:10 -07:00
Mark Andrews	52aa2f9498	4111. [doc] Alphabetize rndc man page. [RT #39360 ]	2015-05-04 16:21:00 +10:00
Tinderbox User	452a29e62c	update copyright notice / whitespace	2015-04-28 23:45:24 +00:00
Mark Andrews	b292230ab8	4110. [bug] Address memory leaks / null pointer dereferences on out of memory. [RT #39310]	2015-04-29 03:16:50 +10:00
Tinderbox User	b299727c2e	update copyright notice / whitespace	2015-04-23 23:45:22 +00:00
Mark Andrews	c82b378115	4108. [func] A additional nxdomain redirect (nxdomain-redirect) method is now supported. [RT #37989]	2015-04-23 16:57:15 +10:00
Tinderbox User	37873c28de	update copyright notice / whitespace	2015-04-21 23:45:21 +00:00
Jeremy C. Reed	ae6b7bcd92	add some more files to cleanup after successful system test runs	2015-04-21 08:42:09 -04:00
Jeremy C. Reed	2e4babacf0	add mdig to gitignore	2015-04-21 08:41:36 -04:00
Jeremy C. Reed	6c1e7a347f	add gitignore file	2015-04-21 08:37:12 -04:00
Jeremy C. Reed	d71665e623	remove the named lock file	2015-04-21 08:21:40 -04:00
Francis Dupont	ab973ec40c	misc x64 VS 2015 CTP fixes [#39308 ]	2015-04-17 11:39:26 +02:00
Mark Andrews	f1a261ba2d	4104. [bug] Address uninitialized elements. [RT #39252 ]	2015-04-17 14:04:47 +10:00
Francis Dupont	bcb68be0a8	misc fixes for VS 2015 CTP #39267	2015-04-17 02:57:02 +02:00
Mark Andrews	e834b30f7c	use awk for line count rather that wc -l which may space pad	2015-04-16 12:17:59 +10:00
Evan Hunt	fc3ed1dbda	[master] fix +split and +rrcomments with dig +short 4101. [bug] dig: the +split and +rrcomments options didn't work with +short. [RT #39291]	2015-04-15 09:50:07 -07:00
Mark Andrews	c855e7170a	4100. [bug] Inherited owernames on the line immediately following a $INCLUDE were not working. [RT #39268]	2015-04-15 12:47:57 +10:00
Mark Andrews	bc8f82492d	4098. [bug] Address use-after-free issue when using a predecessor key with dnssec-settime. [RT #39272]	2015-04-15 12:33:21 +10:00
Tinderbox User	a269ca51cc	update copyright notice / whitespace	2015-04-14 23:45:21 +00:00
Mukund Sivaraman	ac31adc3b7	Add additional logging about xfrin transfer status (#39170 )	2015-04-14 12:16:26 +05:30
Tinderbox User	24abfe433e	regen master	2015-04-14 01:05:08 +00:00
Tinderbox User	6a6ceba6fe	update copyright notice / whitespace	2015-04-13 23:45:23 +00:00
Jeremy C. Reed	2637d30fbd	docbook <command> tags around named server references	2015-04-13 11:46:35 -05:00
Jeremy C. Reed	d82cc2260c	use docbook tag for option	2015-04-13 11:17:42 -05:00
Jeremy C. Reed	6ad1eab597	"commandline" to "command line"	2015-04-13 10:48:43 -05:00
Tinderbox User	1b0b6d7325	update copyright notice / whitespace	2015-04-07 23:45:23 +00:00
Evan Hunt	f28e5058c3	[master] dig can now learn the SIT value when retrying 4093. [func] Dig now learns the SIT value from truncated responses when it retries over TCP. [RT #39047]	2015-04-06 23:16:54 -07:00
Mark Andrews	febb020dce	4092. [bug] 'in-view' didn't work for zones beneath a empty zone. [RT #39173]	2015-04-07 13:21:33 +10:00
Tinderbox User	6e61135f10	update copyright notice / whitespace	2015-03-27 23:45:21 +00:00
Mukund Sivaraman	f9f81abff0	Fix a crash while parsing malformed CAA RRs in presentation format (#39003 )	2015-03-27 10:32:03 +05:30
Mark Andrews	1f5659fe68	spelling Signed-off-by: Mark Andrews <marka@isc.org>	2015-03-18 09:35:57 +11:00
Tinderbox User	4aaac77cb5	update copyright notice / whitespace	2015-03-16 23:45:20 +00:00
Mukund Sivaraman	642e4ac70d	Fix out-of-srcdir build with native pkcs11 (#38831 )	2015-03-16 14:08:46 +05:30
Evan Hunt	da4a7772eb	[master] improve thread support reporting 4083. [cleanup] Print of the number of CPUs and UDP listeners in the log and in "rndc status" output; indicate whether threads are supported in "named -V" output. [RT #38811]	2015-03-04 15:56:33 -08:00
Tinderbox User	811acf52b8	update copyright notice / whitespace	2015-03-04 23:45:21 +00:00
Mark Andrews	1b05d22789	4082. [bug] Incrementally sign large inline zone deltas. [RT #37927]	2015-03-05 09:59:29 +11:00
Francis Dupont	caaff35375	updated OpenSSL PKCS#11 engine patches	2015-03-04 15:15:01 +01:00
Mark Andrews	012ce6857e	use unique query names	2015-03-04 17:12:37 +11:00
Mark Andrews	2e0d8d74d7	handle daylight savings changes	2015-03-04 15:51:31 +11:00
Mark Andrews	d869bc7685	address -Wshaddow of lockfile	2015-03-04 13:49:48 +11:00
Tinderbox User	947d37484e	regen master	2015-03-04 01:04:48 +00:00
Mark Andrews	29d52c001f	4081. [cleanup] Use dns_rdatalist_init consistently. [RT #38759 ]	2015-03-03 16:43:42 +11:00
Evan Hunt	7ae96d8823	[master] add "lock-file" and fix up singleton code 4080. [func] Completed change #4022, adding a "lock-file" option to named.conf to override the default lock file, in addition to the "named -X <filename>" command line option. Setting the lock file to "none" using either method disables the check completely. [RT #37908]	2015-03-02 19:27:54 -08:00
Tinderbox User	3d787a1213	update copyright notice / whitespace	2015-03-02 23:45:21 +00:00
Mukund Sivaraman	10dd5f62f2	Add support for Valgrind's helgrind tool (#38706 ) Also fix one locking issue that helgrind found: Maintain stats->lock while stats->reference is used.	2015-03-02 13:42:20 +05:30
Tinderbox User	5e93bad21b	update copyright notice / whitespace	2015-03-01 23:45:20 +00:00
Tinderbox User	548a24c3d3	regen master	2015-02-28 01:05:06 +00:00
Mark Andrews	0be58dd2da	add $DESCRIPTION	2015-02-28 00:10:56 +11:00
Mark Andrews	0382684a06	add $DESCRIPTION	2015-02-28 00:09:25 +11:00
Mark Andrews	326b84f20e	fix version tests	2015-02-27 17:01:25 +11:00
Mark Andrews	a8da00ef95	4079. [func] Preserve the case of the ownername of records to the RRset level. [RT #37442]	2015-02-27 15:08:38 +11:00
Mark Andrews	be9720ae2c	4077. [test] Add static-stub regression test for DS NXDOMAIN return making the static stub disappear. [RT #38564]	2015-02-27 12:46:45 +11:00
Mark Andrews	bb5df338d9	4076. [bug] Named could crash on shutdown with outstanding reload / reconfig events. [RT #38622]	2015-02-27 12:34:43 +11:00
Mark Andrews	af669cb4fd	4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708 ]	2015-02-27 10:55:55 +11:00
Tinderbox User	c10fda07d6	update copyright notice / whitespace	2015-02-26 23:45:22 +00:00
Evan Hunt	044008f58f	[master] version cleanup 4073. [cleanup] Add libjson-c version number reporting to "named -V"; normalize version number formatting. [RT #38056]	2015-02-26 12:21:10 -08:00
Mukund Sivaraman	1783676a64	Add a --enable-querytrace configure switch for very verbose query tracelogging (#37520 )	2015-02-26 16:51:07 +05:30
Mukund Sivaraman	db93c0def5	Fix a segfault when running nslookup (#38548 )	2015-02-26 14:03:35 +05:30
Evan Hunt	bef771f237	[master] minor python3 portability fix	2015-02-25 17:12:05 -08:00
Evan Hunt	f833abd617	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-02-25 17:11:10 -08:00
Evan Hunt	ca6e60cb70	[master] reorganize nsupdate man page 4069. [doc] Reorganize options in the nsupdate man page. [RT #38516]	2015-02-25 17:05:08 -08:00
Tinderbox User	0eea9763d8	regen master	2015-02-26 01:04:45 +00:00
Evan Hunt	aeff3f0541	[master] include serial number in JSON zone stats 4068. [bug] Serial number was omitted from JSON zone statistics. [RT #38604]	2015-02-25 16:55:25 -08:00
Evan Hunt	8378b0c190	[master] reduce rrl logging noise 4067. [cleanup] Reduce noise from RRL when query logging is disabled. [RT #38648]	2015-02-25 16:44:43 -08:00
Evan Hunt	82c091b7a4	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2015-02-25 16:39:51 -08:00
Evan Hunt	53ae008f27	[master] reorganize options in dig man page 4066. [doc] Reorganize options in the dig man page. [RT #38516]	2015-02-25 16:38:52 -08:00
Tinderbox User	f159b7b5c7	update copyright notice / whitespace	2015-02-25 23:45:22 +00:00
Mukund Sivaraman	5a505fc4c2	Add facility to run system test nameds under Valgrind (#38546 )	2015-02-25 09:06:45 +05:30
Evan Hunt	bfc11b9c65	[master] additional mkeys tests 4065. [test] Additional RFC 5011 tests. [RT #38569]	2015-02-23 21:07:26 -08:00
Evan Hunt	07229d51a6	[master] report library version numbers on win32	2015-02-20 23:23:59 -08:00
Mark Andrews	19ba0bb5fd	remove unnecessary goto's and label	2015-02-19 15:53:20 +11:00
Mark Andrews	2b4860c4dc	rt38571: handle Time::Piece not being supported by perl	2015-02-18 23:49:33 +11:00
Mark Andrews	82c6bce26a	ignore dig's result when expecting 'connection timed out'	2015-02-12 13:44:30 +11:00
Tinderbox User	f6bc0a8608	update copyright notice / whitespace	2015-02-11 23:45:25 +00:00
Mark Andrews	466428be1f	assign sitvalue	2015-02-11 23:43:16 +11:00
Mark Andrews	a6ccc5c9bc	fix sitvalue	2015-02-11 22:57:50 +11:00
Mark Andrews	2ff2145ff5	4061. [bug] Handle timeout in legacy system test. [RT #38573 ]	2015-02-11 16:53:39 +11:00
Tinderbox User	f3affbe2ff	update copyright notice / whitespace	2015-02-10 23:45:23 +00:00
Evan Hunt	a98f70acc8	[master] address valgrind warnings 4059. [bug] Addressed valgrind warnings. [RT #38549]	2015-02-10 14:01:38 -08:00
Tinderbox User	d481ce8bba	update copyright notice / whitespace	2015-02-09 23:45:20 +00:00
Mark Andrews	dd06dbd512	add named.conf	2015-02-08 23:12:44 +11:00
Tinderbox User	659d063f23	regen master	2015-02-08 01:05:11 +00:00
Tinderbox User	8a1d7e8e8f	update copyright notice / whitespace	2015-02-07 23:45:20 +00:00
Mark Andrews	e10d453eb4	add crypto prerequisite	2015-02-08 08:16:54 +11:00
Evan Hunt	ea1f331c75	[master] fix tag mismatch	2015-02-06 17:33:30 -08:00
Tinderbox User	29756974c5	update copyright notice / whitespace	2015-02-06 23:45:21 +00:00
Evan Hunt	fecf151504	[master] better formatting fix	2015-02-06 00:04:19 -08:00
Evan Hunt	29beab1340	[master] fix "initialize with revoked key" test, add missing newline	2015-02-05 23:53:36 -08:00
Evan Hunt	ef3cf42de0	[master] remove a change inadvertently committed	2015-02-05 23:34:14 -08:00
Mark Andrews	e785f9c1c7	4057. [bug] 'dnssec-dsfromkey -T 0' failed to add ttl field. [RT #38565]	2015-02-06 17:01:50 +11:00
Mark Andrews	b1de3a999c	use $PERL	2015-02-06 16:58:39 +11:00
Evan Hunt	591389c7d4	[master] 5011 tests and fixes 4056. [bug] Expanded automatic testing of trust anchor management and fixed several small bugs including a memory leak and a possible loss of key state information. [RT #38458] 4055. [func] "rndc managed-keys" can be used to check status of trust anchors or to force keys to be refreshed, Also, the managed keys data file has easier-to-read comments. [RT #38458]	2015-02-05 17:18:15 -08:00
Tinderbox User	de283bda6a	regen master	2015-02-06 01:04:48 +00:00
Francis Dupont	96bb3555e9	restore mdig.c	2015-02-05 13:34:18 +01:00
Francis Dupont	b2fd46f683	add print.h in mdig.c	2015-02-05 13:25:38 +01:00
Francis Dupont	7768b049c0	add missing mdig.* files	2015-02-05 13:23:35 +01:00
Mark Andrews	f4b1e7b656	isc_net_pton is conditionally built, use inet_pton	2015-02-05 15:20:02 +11:00
Tinderbox User	724df78acd	update copyright notice / whitespace	2015-02-04 23:45:21 +00:00
Mark Andrews	a85cae8232	add <isc/print.h>	2015-02-05 08:22:09 +11:00
Mark Andrews	12c65cbb20	actually add bin/tools/mdig.c	2015-02-05 07:56:05 +11:00
Francis Dupont	1059bc2e42	added mdig tool	2015-02-04 14:22:32 +01:00
Mukund Sivaraman	4eefa351cc	Fix a leak of query fetchlock (#38454 ) 4052. [bug] Fix a leak of query fetchlock. [RT #38454]	2015-02-03 11:42:58 +05:30
Evan Hunt	d8890e779c	[master] silence RPZ log messages 4050. [cleanup] Silence occasional spurious "duplicate query" log messages from RPZ. [RT #38510]	2015-02-02 15:49:36 -08:00
Tinderbox User	be755f4725	update copyright notice / whitespace	2015-01-22 23:45:26 +00:00
Evan Hunt	9175a4ed63	[master] fixed library version reporting - forgot to include a CHANGES note - disabled on windows (it fails to link)	2015-01-22 11:17:03 -08:00
Evan Hunt	84ee90b52d	[master] fix 'total use' accounting 4046. [bug] Accounting of "total use" in memory context statistics was not correct. [RT #38370]	2015-01-22 09:44:24 -08:00
Mark Andrews	b3c4c896e3	initialise fp	2015-01-22 12:14:45 +11:00
Tinderbox User	3e240d6559	regen master	2015-01-22 01:04:47 +00:00
Tinderbox User	39f68d7b64	update copyright notice / whitespace	2015-01-21 23:45:24 +00:00
Evan Hunt	2817aa56ca	[master] "rndc modzone" 4043. [func] "rndc modzone" can be used to modify the configuration of an existing zone, using similar syntax to "rndc addzone". [RT #37895]	2015-01-20 22:34:16 -08:00
Evan Hunt	ff62d4458a	[master] allow shared TCP sockets when connecting 4041. [func] TCP sockets can now be shared while connecting. (This will be used to enable client-side support of pipelined queries.) [RT #38231]	2015-01-20 17:22:31 -08:00
Tinderbox User	d9184858dd	regen master	2015-01-21 01:04:51 +00:00
Evan Hunt	761d135ed6	[master] add TCP pipelining support 4040. [func] Added server-side support for pipelined TCP queries. TCP connections are no longer closed after the first query received from a client. (The new "keep-response-order" option allows clients to be specified for which the old behavior will still be used.) [RT #37821]	2015-01-20 16:14:09 -08:00
Evan Hunt	b77ae24e3e	[master] more windows VS14 compatibility work (completes change #3987)	2015-01-20 15:45:38 -08:00
Tinderbox User	c110d61b17	update copyright notice / whitespace	2015-01-20 23:45:26 +00:00
Evan Hunt	11463c0ac2	[master] clean up gcc -Wshadow warnings 4039. [cleanup] Cleaned up warnings from gcc -Wshadow. [RT #37381]	2015-01-20 13:29:18 -08:00
Mark Andrews	f8eb4e5bfd	4037. [bug] also-notify was ignoring the tsig key when checking for duplicates resulting in some expected notify messages not being sent. [RT #38369]	2015-01-20 16:42:56 +11:00
Tinderbox User	c7940abbd3	update copyright notice / whitespace	2015-01-19 23:45:22 +00:00
Jeremy C. Reed	6e9b7dc9c7	start the testing named with -X named.lock	2015-01-19 12:45:44 -06:00
Mukund Sivaraman	b05a50c852	Make call to open a temporary file name safe during NZF creation (#38331 ) Based on a patch sent in by Tony Finch <dot@dotat.at>. Also fix win32 implementation of isc_file_openunique() to use a random filename instead of using the process id.	2015-01-16 18:29:23 +05:30
Mukund Sivaraman	f91c369b4a	Close FILEs before overwriting NZF file (#38332 ) Based on a patch sent in by Tony Finch <dot@dotat.at>.	2015-01-16 15:23:11 +05:30
Tinderbox User	ef8014e56f	regen master	2015-01-14 01:04:44 +00:00
Tinderbox User	a6ca100924	update copyright notice / whitespace	2015-01-13 23:45:21 +00:00
Evan Hunt	03f979494f	[master] document default DNSKEY TTL - see RT #38268	2015-01-13 09:54:57 -08:00
Tinderbox User	8402f7bfea	regen master	2015-01-13 01:04:50 +00:00
Tinderbox User	2dd6ffb5cb	update copyright notice / whitespace	2015-01-12 23:45:21 +00:00
Mukund Sivaraman	a6f0e9c985	Add NTA persistence (#37087 ) 4034. [func] When added, negative trust anchors (NTA) are now saved to files (viewname.nta), in order to persist across restarts of the named server. [RT #37087]	2015-01-12 09:07:48 +05:30
Tinderbox User	f0cbe180f0	update copyright notice / whitespace	2015-01-10 23:45:22 +00:00
Mark Andrews	7952156995	4032. [bug] Built-in "empty" zones did not correctly inherit the "allow-transfer" ACL from the options or view. [RT #38310]	2015-01-10 22:01:42 +11:00
Tinderbox User	63b0524b96	update copyright notice / whitespace	2015-01-08 23:45:22 +00:00
Evan Hunt	69a838727b	[master] typo in comment	2015-01-08 08:46:59 -08:00
Mark Andrews	d1f1f13c7f	4031. [bug] named-checkconf -z failed to report a missing file with a hint zone. [RT #38294]	2015-01-08 19:19:12 +11:00
Evan Hunt	4069b09224	[master] intialize result correctly	2015-01-07 17:38:00 -08:00
Evan Hunt	5eba0cae0b	[master] initialize result	2015-01-07 17:36:45 -08:00
Tinderbox User	11e9368a22	regen master	2015-01-08 01:04:51 +00:00
Tinderbox User	b129f72d95	update copyright notice / whitespace	2015-01-07 23:45:22 +00:00
Evan Hunt	74eb2f5cbc	[master] rndc showzone / rndc delzone of non-added zones 4030. [func] "rndc delzone" is now applicable to zones that were configured in named.conf, as well as zones that were added via "rndc addzone". (Note, however, that if named.conf is not also modified, the deleted zone will return when named is reloaded.) [RT #37887] 4029. [func] "rndc showzone" displays the current configuration of a specified zone. [RT #37887]	2015-01-06 22:57:57 -08:00
Mark Andrews	b0c18fffd3	4028. [bug] $GENERATE with a zero step was not being caught as a error. A $GENERATE with a / but no step was not being caught as a error. [RT #38262]	2015-01-06 11:31:34 +11:00
Francis Dupont	851f940846	update OpenSSL 1.0.1 patch	2015-01-02 16:07:09 +01:00
Francis Dupont	bb62b71494	update OpenSSL 1.0.0 patch	2015-01-02 15:27:38 +01:00
Francis Dupont	fc2245322a	update OpenSSL 0.9.8 patch	2015-01-02 14:58:49 +01:00
Mark Andrews	511ec77fca	4027. [port] Net::DNS 0.81 compatibility. [RT #38165	2014-12-23 08:37:46 +11:00
Tinderbox User	84d939b211	update copyright notice / whitespace	2014-12-21 23:45:20 +00:00
Mark Andrews	44032d3918	4026. [bug] Fix RFC 3658 reference in dig +sigchase. [RT #38173 ]	2014-12-22 09:40:26 +11:00
Evan Hunt	5deda448e8	[master] fixes for singleton on hpux - hpux returns EADDRINUSE when listening on UDP sockets, so we need to check for that - also need to ensure that subsidiary named processes are shut down in the runtime system test	2014-12-20 00:31:54 -08:00
Evan Hunt	6963c6048f	[master] still needed another -X	2014-12-19 16:57:24 -08:00
Evan Hunt	8249f11121	[master] add -X to lwresd	2014-12-18 22:52:44 -08:00
Tinderbox User	d5ece58e3b	regen master	2014-12-19 01:04:53 +00:00
Mark Andrews	ae454ec746	update copyrights	2014-12-19 10:35:15 +11:00
Mukund Sivaraman	47d837a499	Make named a singleton process [RT#37908] Conflicts: bin/tests/system/conf.sh.in lib/dns/win32/libdns.def.in lib/isc/win32/file.c The merge also needed to update files in legacy and tcp system tests (newly introduced in master after branch was created) to introduce use of lockfile.	2014-12-18 12:31:25 +05:30
Evan Hunt	be7fba8019	[master] adjust max-recursion-queries 4021. [bug] Adjust max-recursion-queries to accommodate the need for more queries when the cache is empty. [RT #38104]	2014-12-15 22:28:06 -08:00
Mark Andrews	8ee3233acd	adjust comment	2014-12-09 07:41:16 +11:00
Mukund Sivaraman	d225dec89f	Clean up after reclimit system test	2014-12-08 21:37:53 +05:30
Tinderbox User	dc5e29a7d2	update copyright notice / whitespace	2014-12-05 23:45:22 +00:00
Mark Andrews	39a5e136fb	skip subtest if cryptography not compiled in	2014-12-06 00:48:52 +11:00
Mark Andrews	03fd9cb81c	4020. [bug] Change 3736 broke nsupdate's SOA MNAME discovery resulting in updates being sent to the wrong server. [RT #37925]	2014-12-05 18:26:38 +11:00
Mark Andrews	017aa9aef6	4019. [func] If named is not configured to validate the answer then allow fallback to plain DNS on timeout even when we know the server supports EDNS. [RT #37978]	2014-12-05 17:47:26 +11:00
Mark Andrews	7d42818a3e	NS_CLIENTATTR_NOSETFC collided with NS_CLIENTATTR_HAVEECS	2014-12-05 11:56:26 +11:00
Mark Andrews	12065c231e	clean up intermediates	2014-12-05 08:28:15 +11:00
Mark Andrews	76b242bb77	pre-sign the zones	2014-12-05 07:28:29 +11:00
Tinderbox User	b9097be03b	update copyright notice / whitespace	2014-12-03 23:45:24 +00:00
Mark Andrews	693d70f96f	4017. [testing] Add system test to check lookups to legacy servers with broken DNS behaviour. [RT #37965]	2014-12-04 07:01:52 +11:00
Mukund Sivaraman	c5e9423340	Fix a dig segfault due to bad linked list usage [RT #37591 ] The crash (#37591) seems to happen because the query is taken out of lookup->q(query->link), and put on lookup->connecting(query->clink). The code checks query->link where it is detached (-1 in next pointer). However, there's no need to call send_tcp_connect() there as the queries are already connecting at that point.	2014-12-03 16:09:25 +05:30
Tinderbox User	88a2182a1a	regen master	2014-12-03 01:04:59 +00:00
Mark Andrews	ea3aa401bc	4015. [bug] Nameservers that are skipped due to them being CNAMEs were not being logged. They are now logged to category 'cname' as per BIND 8. [RT #37935]	2014-12-03 11:34:07 +11:00
Tinderbox User	a3d2295829	update copyright notice / whitespace	2014-12-02 23:45:23 +00:00
Mark Andrews	6444de08d1	4014. [bug] When including a master file origin_changed was not being properly set leading to a potentially spurious 'inherited owner' warning. [RT #37919]	2014-12-03 09:42:30 +11:00
Evan Hunt	aafd2f2637	[master] remove obsolete 'relay' test	2014-12-02 13:57:35 -08:00
Francis Dupont	5c5c6d289d	Add a TCP only option to server/peer	2014-12-02 14:17:59 +01:00
Tinderbox User	6472130d32	update copyright notice / whitespace	2014-11-25 23:45:21 +00:00
Mark Andrews	9e69a36ec1	make isc_buffer_t **text	2014-11-26 07:36:53 +11:00
Mark Andrews	e465d54bc9	unchecked putnull	2014-11-25 15:24:00 +11:00
Tinderbox User	523ad879ce	update copyright notice / whitespace	2014-11-24 23:53:16 +00:00
Mark Andrews	d040fa2f1c	4011. [bug] master's list port and dscp inheritance was not properly implemented. [RT #37792]	2014-11-24 11:25:06 +11:00
Mark Andrews	092d3b76db	4010. [cleanup] Clear the prefetchable state when initiating a prefetch. [RT #37399]	2014-11-24 11:18:30 +11:00
Mark Andrews	7301df07cf	extend the permissible number of queries to 25 from 24	2014-11-24 10:20:39 +11:00
Tinderbox User	ddbd14ec13	regen master	2014-11-22 01:05:01 +00:00
Evan Hunt	92384667ff	[master] delv +tcp 4009. [func] delv: added a +tcp option. [RT #37855]	2014-11-21 09:42:04 -08:00
Mark Andrews	d65fb496fb	use perl not awk to do serial additions	2014-11-21 18:08:04 +11:00
Tinderbox User	5d35f07318	update copyright notice / whitespace	2014-11-20 23:45:24 +00:00
Evan Hunt	05e448935c	[master] refactor max-recursion-queries - the counters weren't set correctly when fetches timed out. instead we now pass down a counter object.	2014-11-19 18:21:02 -08:00
Tinderbox User	4ccffa13aa	update copyright notice / whitespace	2014-11-19 23:45:22 +00:00
Mukund Sivaraman	077350a407	Add .gitignore	2014-11-19 15:03:01 +05:30
Evan Hunt	c4f54e5bd1	[master] add max-recursion-queries also fixes and documentation for max-recursion-depth	2014-11-18 22:02:02 -08:00
Mark Andrews	f9ee67d9ce	%zu is not universally available	2014-11-19 12:10:06 +11:00
Tinderbox User	e208712faa	update copyright notice / whitespace	2014-11-18 23:45:22 +00:00
Evan Hunt	3230429e17	[master] limit recursion depth and iterative queries 4006. [security] A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow (default 7), and the number of iterative queries that it will send (default 50) before terminating a recursive query (CVE-2014-8500). The recursion depth limit is configured via the "max-recursion-depth" option. [RT #35780]	2014-11-17 23:24:44 -08:00
Evan Hunt	c325ff9c79	[master] complete coverity fixes	2014-11-17 17:39:00 -08:00
Mark Andrews	18fa89b01e	check returns from putstr and putnull	2014-11-18 12:21:20 +11:00
Tinderbox User	11dc1b1508	update copyright notice	2014-11-17 23:45:20 +00:00
Evan Hunt	0ada3802ea	[master] awk portability fix	2014-11-17 12:22:18 -08:00
Evan Hunt	a0b4f6d952	[master] geoip security fixes 4003. [security] When geoip-directory was reconfigured during named run-time, the previously loaded GeoIP data could remain, potentially causing wrong ACLs to be used or wrong results to be served based on geolocation. [RT #37720] 4002. [security] Lookups in GeoIP databases that were not loaded could cause an assertion failure. [RT #37679] 4001. [security] The caching of GeoIP lookups did not always handle address families correctly, potentially resulting in an assertion failure. [RT #37672]	2014-11-16 08:43:22 -08:00
Mark Andrews	ed51a21730	fix ns_smf_add_message	2014-11-15 17:18:10 +11:00
Mark Andrews	eca6a76eda	make inline	2014-11-15 17:03:21 +11:00
Evan Hunt	e32d354f75	[master] allow arbitrary-size rndc output 4005. [func] The buffer used for returning text from rndc commands is now dynamically resizable, allowing arbitrarily large amounts of text to be sent back to the client. (Prior to this change, it was possible for the output of "rndc tsig-list" to be truncated.) [RT #37731]	2014-11-14 15:58:54 -08:00
Evan Hunt	c4abb19716	[master] reference leak with AAAA glue but not A 4004. [bug] When delegations had AAAA glue but not A, a reference could be leaked causing an assertion failure on shutdown. [RT #37796]	2014-11-14 09:02:28 -08:00
Mukund Sivaraman	16c86a4980	Update .gitgnore files (ISC-Bugs #37773 )	2014-11-11 11:47:02 +05:30
Tinderbox User	6d0a639bd0	update copyright notice	2014-11-06 23:45:21 +00:00
Evan Hunt	067c0c38e7	[master] s/mempcy/memmove/	2014-11-06 13:01:59 -08:00
Tinderbox User	369963ad26	regen master	2014-11-06 01:05:06 +00:00
Evan Hunt	3cc8c7d630	[master] fix nxrrset in nxdomain redirection 4000. [bug] NXDOMAIN redirection incorrectly handled NXRRSET from the redirect zone. [RT #37722]	2014-11-04 23:49:56 -08:00
Evan Hunt	ce96d4326c	[master] new mkeys and nzf naming format 3999. [func] "mkeys" and "nzf" files are now named after their corresponding views, unless the view name contains characters that would be incompatible with use in a filename (i.e., slash, backslash, or capital letters). If a view name does contain these characters, the files will still be named using a cryptographic hash of the view name. Regardless of this, if a file using the old name format is found to exist, it will continue to be used. [RT #37704]	2014-11-04 19:43:27 -08:00
Mark Andrews	1feee79e1f	3997. [protocol] Add OPENGPGKEY record. [RT# 37671]	2014-11-04 12:24:39 +11:00
Tinderbox User	def82e8de9	regen master	2014-10-31 01:04:53 +00:00
Tinderbox User	12b386e1a6	update copyright notice	2014-10-30 23:45:21 +00:00
Mark Andrews	f0a54842b1	3994. [func] Dig now supports setting the last unassigned DNS header flag bit (dig +zflag). [RT #37421]	2014-10-31 10:16:00 +11:00
Mark Andrews	0f5144163c	3993. [func] Dig now supports EDNS negotiation by default. (dig +[no]ednsnegotiation). [RT #37604]	2014-10-30 23:13:12 +11:00
Tinderbox User	a3ff24aaa5	regen master	2014-10-30 01:05:12 +00:00
Mark Andrews	f274cbeaed	3992. [func] DiG can now send queries without questions (dig +header-only). [RT #37599]	2014-10-30 11:42:02 +11:00
Mark Andrews	00fb0253c9	3991. [func] Add the ability to buffer logging output by specifying "buffered yes;" when defining a channel. [RT #26561]	2014-10-30 11:37:05 +11:00
Mark Andrews	a5c7cfbac4	3990. [testing] Add tests for unknown DNSSEC algorithm handling. [RT #37541]	2014-10-30 11:05:26 +11:00
Tinderbox User	eaaf00efc0	regen master	2014-10-23 01:04:55 +00:00
Mark Andrews	cb6ec834f1	fix tag mis-match	2014-10-22 12:09:57 +11:00
Tinderbox User	6932de75ef	update copyright notice	2014-10-21 23:45:24 +00:00
Mark Andrews	4140a96f22	3987. [func] Allow the zone serial of a dynamically updatable zone to be updated via rndc. [RT #37404]	2014-10-21 18:15:42 +11:00
Tinderbox User	78ec962d98	regen master	2014-10-21 01:04:47 +00:00
Mark Andrews	40b28f5402	3985. [doc] Describe how +ndots and +search interact in dig. [RT #37529]	2014-10-21 08:05:21 +11:00
Evan Hunt	498b061031	[master] allow 1-week nta-lifetime/nta-recheck 3983. [bug] Change #3940 was incomplete: negative trust anchors could be set to last up to a week, but the "nta-lifetime" and "nta-recheck" options were still limted to one day. [RT #37522]	2014-10-20 13:40:17 -07:00
Evan Hunt	7cf2122e0d	[master] change 3977 altered expected linecount from secroots	2014-10-18 16:50:32 -07:00
Mark Andrews	72775a79fe	3981. [bug] Cache DS/NXDOMAIN independently of other query types. [RT #37467]	2014-10-18 13:09:09 +11:00
Evan Hunt	27174d90cc	[master] fix spurious error in rndc secroots 3977. [cleanup] "rndc secroots" reported a "not found" error when there were no negative trust anchors set. [RT #37506]	2014-10-17 15:41:13 -07:00
Tinderbox User	6478b87fd2	regen master	2014-10-17 01:04:36 +00:00
Jeremy C. Reed	edad003e63	Remove the apostrophe 's from plural acronyms This is to be consistent with our common usage of just using a plural "s" without apostrophe. This was brought up via discussion in ticket 37505. I didn't have this reviewed.	2014-10-16 11:55:51 -05:00
Jeremy C. Reed	697bda73eb	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2014-10-16 11:01:26 -05:00
Jeremy C. Reed	22c1597937	fixes to manual from chucka See ticket #37505	2014-10-16 11:00:13 -05:00
Mark Andrews	44ef2206d7	allow for the set of ttls to be empty	2014-10-16 14:46:44 +11:00
Mark Andrews	d9aaf7acce	make test more robust in the face of server failures	2014-10-16 12:34:12 +11:00
Mark Andrews	79921aeec2	3975. [bug] Don't populate or use the bad cache for queries that don't request or use recursion. [RT #37466]	2014-10-15 11:25:23 +11:00
Jeremy C. Reed	05d4b5a9fc	[master] add -x to the usage output (By the way, -d is also not in the usage nor in the manpage.)	2014-10-13 13:48:15 -07:00
Evan Hunt	1cbc394e7c	[master] add redirect zone to checkconf -z test	2014-10-09 18:30:34 -07:00
Evan Hunt	ca0ee90361	[master] turn off servfail cache in masterformat test	2014-10-09 09:30:46 -07:00
Francis Dupont	1831311ac6	added hooks for gperftools CPU profiler [#37339 ]	2014-10-08 15:14:02 +02:00
Mark Andrews	c12c746e3a	3972. [bug] Fix host's usage statement. [RT #37397 ]	2014-10-07 01:09:49 +11:00
Mark Andrews	c81d56c03e	3971. [bug] Reduce the cascasding failures due to a bad $TTL line in named-checkconf / named-checkzone. [RT #37138]	2014-10-05 08:29:34 +11:00
Mark Andrews	39fb5f2a5d	verifying inline zones work with views requires crypto to be configured	2014-10-04 18:06:04 +10:00
Evan Hunt	12002ea49e	[master] add delv system test 3969. [test] Added 'delv' system test. [RT #36901]	2014-10-02 22:37:20 -07:00
Tinderbox User	7a3f584cfc	update copyright notice	2014-10-02 23:45:25 +00:00
Mark Andrews	6979ebf549	3968. [bug] Silence spurious log messages when using 'named -[46]'. [RT #37308]	2014-10-03 08:05:56 +10:00
Mark Andrews	b24061719c	3967. [test] Add test for inlined signed zone in multiple views with different DNSKEY sets. [RT #35759]	2014-10-03 07:59:44 +10:00
Mark Andrews	9c0589bc8b	3966. [bug] Missing dns_db_closeversion call in receive_secure_db. [RT #35746]	2014-10-03 07:50:09 +10:00
Mark Andrews	a837c939c4	SIG(0) update forwarding testing requires crypto be configured	2014-10-02 11:07:01 +10:00
Tinderbox User	b68a2d272b	regen master	2014-10-02 01:05:48 +00:00
Tinderbox User	3fd181c98f	update copyright notice	2014-10-01 23:45:24 +00:00
Mark Andrews	ed1c845c1d	3964. [func] nsupdate now performs check-names processing. [RT #36266]	2014-10-02 09:35:43 +10:00
Evan Hunt	7b04216015	[master] improve dlzexternal test 3963. [test] Added NXRRSET test cases to the "dlzexternal" system test. [RT #37344]	2014-09-30 17:08:12 -07:00
Mark Andrews	7d891eaf91	3962. [bug] 'dig +topdown +trace +sigchase' address unhandled error conditions. [RT #34663 ]	2014-10-01 10:01:54 +10:00
Tinderbox User	be484acb22	update copyright notice	2014-09-30 23:45:22 +00:00
Mark Andrews	ffeaac1d82	3961. [bug] Forwarding of SIG(0) signed UPDATE messages failed with BADSIG. [RT #37216]	2014-10-01 07:24:16 +10:00
Mark Andrews	c83b91fb63	3960. [bug] 'dig +sigchase' could loop forever. [RT #37220 ]	2014-10-01 07:06:20 +10:00
Tinderbox User	2fb35a6d59	update copyright notice	2014-09-29 23:45:24 +00:00
Mark Andrews	4bc581ca31	use RANDFILE rather than /dev/urandom	2014-09-29 23:39:07 +10:00
Mark Andrews	1c5990c2f9	3958. [bug] Detect when writeable files have multiple references in named.conf. [RT #37172]	2014-09-29 12:10:10 +10:00
Mark Andrews	80169c379d	3957. [bug] "dnssec-keygen -S" failed for ECCGOST, ECDSAP256SHA256 and ECDSAP384SHA384. [RT #37183]	2014-09-29 10:18:54 +10:00
Mark Andrews	10c12aa549	3956. [func] Notify messages are now rate limited by notify-rate and startup-notify-rate instead of serial-query-rate. [RT #24454] 3955. [bug] Notify messages due to changes are no longer queued behind startup notify messages. [RT #24454]	2014-09-29 10:01:08 +10:00
Mark Andrews	6b6d6509f6	3954. [bug] Unchecked mutex init in dlz_dlopen_driver.c [RT #37112 ]	2014-09-27 12:30:00 +10:00
Mark Andrews	9a36fb86f5	3953. [bug] Don't escape semi-colon in TXT fields. [RT #37159 ]	2014-09-27 12:14:20 +10:00
Mark Andrews	27cd03a21c	use more portable awk	2014-09-19 15:00:18 +10:00
Mark Andrews	06e28e50bd	give the nameserver a little longer to response	2014-09-18 10:06:48 +10:00
Mark Andrews	1a5f84d56a	UNTESTED -> SKIPPED	2014-09-16 23:49:52 +10:00
Mark Andrews	f4a9c9226a	silence signed/unsigned warning	2014-09-16 23:46:37 +10:00
Mark Andrews	13a9b42a43	make depend fails in bin/python	2014-09-15 14:06:17 +10:00
Tinderbox User	4fe1df3962	regen master	2014-09-14 01:05:19 +00:00
Mark Andrews	3867312e4c	3951. [func] Add the ability to set yet-to-be-defined EDNS flags to dig (+ednsflags=#). [RT #37142]	2014-09-13 19:13:59 +10:00
Tinderbox User	c25602ed66	regen master	2014-09-13 01:05:26 +00:00
Evan Hunt	8dba0e7d87	[master] [rt36993] work around a bmake bug in BSD 3950. [port] Changed the bin/python Makefile to work around a bmake bug in FreeBSD 10 and NetBSD 6. [RT #36993]	2014-09-12 15:21:47 -07:00
Mark Andrews	48b093c864	update named-checkzone manpage for SPF changes	2014-09-13 07:55:57 +10:00
Tinderbox User	2c69f767d6	update copyright notice	2014-09-10 23:45:21 +00:00
Mark Andrews	947cf282a7	3949. [experimental] Experimental support for draft-andrews-edns1 by sending EDNS(1) queries (define DRAFT_ANDREWS_EDNS1 when building). Add support for limiting the EDNS version advertised to servers: server { edns-version 0; }; Log the EDNS version received in the query log. [RT #35864]	2014-09-10 15:31:40 +10:00
Mark Andrews	5c420ccc29	drop 'I:send many simultaneous updates via a update forwarder' test until re-written using perl	2014-09-07 22:08:45 +10:00
Mark Andrews	76a17033db	also fix the expected count	2014-09-07 20:24:59 +10:00
Mark Andrews	48179343c2	reduce number of nsupdates being simultaeously forked	2014-09-07 20:24:14 +10:00
Mark Andrews	8aa098c633	update copyrights	2014-09-06 09:38:48 +10:00
Tinderbox User	5fa6a064b8	regen master	2014-09-05 19:26:47 +00:00
Evan Hunt	1aa8b80767	[master] fix warnings/doc errors - possible use before assignment in query.c - missing <varlistentry> in ARM	2014-09-04 18:35:30 -07:00
Evan Hunt	c9e976dc43	[master] [rt37057] server-id tests 3944. [test] Added a regression test for "server-id". [RT #37057]	2014-09-04 18:18:36 -07:00
Tinderbox User	948c80ffa8	update copyright notice	2014-09-04 23:45:24 +00:00
Evan Hunt	a878301981	[master] servfail cache 3943. [func] SERVFAIL responses can now be cached for a limited time (configured by "servfail-ttl", default 10 seconds, limit 30). This can reduce the frequency of retries when an authoritative server is known to be failing, e.g., due to ongoing DNSSEC validation problems. [RT #21347]	2014-09-03 23:28:14 -07:00
Mark Andrews	fec7998314	3942. [bug] Wildcard responses from a optout range should be marked as insecure. [RT #37072]	2014-09-04 13:57:50 +10:00
Evan Hunt	c3d0221104	[master] oops, nta lifetime change broke dnssec test	2014-09-03 20:51:32 -07:00
Evan Hunt	3d066288ad	[master] [rt37069] update NTA limit to a week 3940. [func] "rndc nta" now allows negative trust anchors to be set for up to one week. [RT #37069]	2014-09-03 19:00:03 -07:00
Mark Andrews	74717eef53	3939. [func] Improve UPDATE forwarding performance by allowing TCP connections to be shared. [RT #37039]	2014-09-04 10:37:45 +10:00
Mark Andrews	3547641f76	error message was not being returned	2014-08-30 20:26:48 +10:00
Mark Andrews	22e0fcb055	conditional UNUSED(task)	2014-08-30 15:47:25 +10:00
Mark Andrews	1a63fb1d14	update copyrights	2014-08-30 12:27:49 +10:00
Tinderbox User	3278ff814d	update copyright notice	2014-08-29 23:45:22 +00:00
Mark Andrews	25c5d8e89e	#include isc/print.h>	2014-08-29 16:17:35 +10:00
Evan Hunt	f5c24a7f48	[master] add better servfail logging 3937. [func] Added some debug logging to better indicate the conditions causing SERVFAILs when resolving. [RT #35538]	2014-08-28 22:37:55 -07:00
Evan Hunt	d46855caed	[master] ECS authoritative support 3936. [func] Added authoritative support for the EDNS Client Subnet (ECS) option. ACLs can now include "ecs" elements which specify an address or network prefix; if an ECS option is included in a DNS query, then the address encoded in the option will be matched against "ecs" ACL elements. Also, if an ECS address is included in a query, then it will be used instead of the client source address when matching "geoip" ACL elements. This behavior can be overridden with "geoip-use-ecs no;". When "ecs" or "geoip" ACL elements are used to select a view for a query, the response will include an ECS option to indicate which client network the answer is valid for. (Thanks to Vincent Bernat.) [RT #36781]	2014-08-28 22:05:57 -07:00
Evan Hunt	180319f572	[master] fix geoip asnum matching 3935. [bug] "geoip asnum" ACL elements would not match unless the full organization name was specified. They can now match against the AS number alone (e.g., AS1234). [RT #36945]	2014-08-28 21:40:32 -07:00
Mark Andrews	7c73ac5e13	3934. [bug] Catch bad 'sit-secret' in named-checkconf. Improve sit-secrets documentation. [RT #36980]	2014-08-29 14:35:21 +10:00
Evan Hunt	0c2313eb36	[master] fixes to checkconf test, HIP casecompare 3933. [bug] Corrected the implementation of dns_rdata_casecompare() for the HIP rdata type. [RT #36911] 3932. [test] Improved named-checkconf tests. [RT #36911]	2014-08-27 21:36:13 -07:00
Mark Andrews	1164997311	3931. [cleanup] Cleanup how dlz grammer is defined. [RT #36879 ]	2014-08-26 15:01:29 +10:00
Evan Hunt	74745c760c	[master] "rndc nta -r" could hang 3930. [bug] "rndc nta -r" could cause a server hang if the NTA was not found. [RT #36909]	2014-08-25 18:01:26 -07:00
Mark Andrews	905ba39e10	3929. [bug] 'host -a' needed to clear idnoptions. [RT #36963 ]	2014-08-26 08:27:24 +10:00
Evan Hunt	06f329afe1	[master] silence coverity	2014-08-22 18:19:09 -07:00
Tinderbox User	cefd74ae81	regen master	2014-08-23 01:06:12 +00:00
Tinderbox User	fea81a5e0e	update copyright notice	2014-08-22 23:45:27 +00:00
Evan Hunt	087b3e8d90	[master] add to rndc test 3928. [test] Improve rndc system test. [RT #36898]	2014-08-22 16:41:57 -07:00
Evan Hunt	24aaa04401	[master] register pkcs11 error codes in dig 3927. [bug] dig: report PKCS#11 error codes correctly when compiled with --enable-native-pkcs11. [RT #36956]	2014-08-22 10:40:43 -07:00
Jeremy C. Reed	f3150c99d7	add missing -Q from synopsis	2014-08-22 08:22:17 -05:00
Mark Andrews	840d6a4614	3925. [bug] DS lookup of RFC 1918 empty zones failed. [RT #36917	2014-08-22 16:32:19 +10:00
Mark Andrews	d4859b0b2a	3924. [bug] Improve 'rndc addzone' error reporting. RT #35187	2014-08-22 16:18:49 +10:00
Evan Hunt	eeb13c7cd2	[master] don't clear signatures from zone cuts 3922. [bug] When resigning, dnssec-signzone was removing all signatures from delegation nodes. It now retains DS and (if applicable) NSEC signatures. [RT #36946]	2014-08-21 22:56:12 -07:00
Mark Andrews	cef76ee5bd	3921. [bug] AD was inappopriately set on RPZ responses. [RT #36833 ]	2014-08-22 15:45:40 +10:00
Mark Andrews	3d66a979b5	3919. [bug] dig: continue to next line if a address lookup fails in batch mode. [RT #36755]	2014-08-22 15:40:43 +10:00
Tinderbox User	5165c59007	update copyright notice	2014-08-21 23:45:22 +00:00
Mark Andrews	f5695ad0e1	3917. [bug] dig, nslookup and host now continue on names that are too long after applying a search list elements. [RT #36892]	2014-08-21 18:05:55 +10:00
Tinderbox User	e2eaaf8015	update copyright notice	2014-08-18 23:45:21 +00:00
Mark Andrews	a7d4d52874	quiet mode is -q	2014-08-18 19:38:43 +10:00
Mark Andrews	5244e505ad	3915 [bug] Address a assertion if a route event arrived while shutting down. [RT #36887]	2014-08-18 13:17:35 +10:00
Tinderbox User	a24330c480	regen master	2014-08-16 01:06:20 +00:00
Tinderbox User	aebd0e85bf	update copyright notice	2014-08-15 23:45:20 +00:00
Jeremy C. Reed	b0af7cbe92	SEE ALSO cleanup in pkcs11 manuals This sorts them, adds missing from one manual, uses correct section number, and gets rid of a trailing comma. Okayed via RT ticket 36830.	2014-08-15 11:39:55 -05:00
Jeremy C. Reed	821350367e	fix typos or misspellings	2014-08-15 10:35:31 -05:00
Jeremy C. Reed	2f5461d23b	remove the now gone -all switch from flushtree This is for RT ticket #36832. While here update manual page date.	2014-08-15 09:28:37 -05:00
Jeremy C. Reed	474faea7dd	change ecgen to keygen in a few places in manpage I didn't create a CHANGES entry for this as it was trivial and the name of the installed manual didn't change. This is for RT ticket #36830.	2014-08-15 09:16:50 -05:00
Tinderbox User	cd14665cdf	update copyright notice	2014-08-07 23:45:19 +00:00
Evan Hunt	cfe32752a6	[master] [36737] allow zero-length URI and CAA fields 3914. [bug] Allow the URI target and CAA value fields to be zero length. [RT #36737]	2014-08-06 17:40:42 -07:00
Tinderbox User	1e7501fe07	update copyright notice	2014-08-06 23:45:23 +00:00
Mark Andrews	43b9737b11	3911. [func] Implement EDNS EXPIRE option client side. [RT #35925 ]	2014-08-06 11:50:40 +10:00
Tinderbox User	79bb509936	update copyright notice	2014-08-02 23:45:21 +00:00
Mark Andrews	c38341ec43	3908. [bug] rndc now differentiates between a zone in multiple views and a zone that doesn't exist at all. [RT #36691]	2014-08-02 14:43:26 +10:00
Mark Andrews	323bb31d7c	move 'nta -dump'	2014-08-01 10:41:47 +10:00
Mark Andrews	d96f74a3cb	3907. [cleanup] Alphabetise rndc help. [RT#36683]	2014-08-01 10:31:41 +10:00
Tinderbox User	25633bca23	update copyright notice	2014-07-31 23:45:21 +00:00
Mark Andrews	db8369d873	remove trailing whitespace	2014-08-01 00:30:02 +10:00
Mark Andrews	f2a91da02e	adjust range	2014-07-31 20:32:50 +10:00
Mark Andrews	3a55d43527	3904. [func] Add the RPZ SOA to the additional section. [RT36507]	2014-07-31 10:51:48 +10:00
Mark Andrews	bc5db10d72	[rt36611] 3903. [bug] Improve the accuracy of DiG's reported round trip time. [RT 36611]	2014-07-31 07:39:59 +10:00
Mark Andrews	70be388974	[rt36039] 3902. bug] liblwres wasn't handling link-local addresses in nameserver clauses in resolv.conf. [RT #36039]	2014-07-30 23:26:37 +10:00
Evan Hunt	a5e2e389ef	[master] complete change #3882 Parse arguments to "rndc nta" so they can be either long or shortened (i.e., both "-dump" and "-d" will work).	2014-07-29 20:28:42 -07:00
Tinderbox User	d1b499c827	update copyright notice	2014-07-29 23:45:20 +00:00
Evan Hunt	2383eb5272	[master] add CAA rdata support 3056. [protocol] Added support for CAA record type (RFC 6844). [RT #36625]	2014-07-29 08:40:35 -07:00
Mark Andrews	275a8affe7	3899. [bug] "request-ixfr" is only applicable to slave and redirect zones. [RT #36608]	2014-07-25 14:23:14 +10:00
Mark Andrews	ac5ed74860	3897. [bug] RPZ summary information was not properly being updated after a AXFR resulting in changes sometimes being ignored. [RT #35885]	2014-07-22 10:57:58 +10:00
Tinderbox User	d9f0b06dc2	regen master	2014-07-16 01:05:40 +00:00
Mark Andrews	2064e46209	3895. [func] Add the ability to set the DSCP code point to dig. [RT #36546]	2014-07-15 23:27:14 +10:00
Mark Andrews	ccaee7760f	add +ednsopt to -h output	2014-07-10 16:19:33 +10:00
Mark Andrews	39cad8fb7d	update copyrights	2014-07-08 12:40:40 +10:00
Mark Andrews	fce704e751	rename dnssec/ns7/split-rrsig.in	2014-07-08 11:12:32 +10:00
Tinderbox User	1cd80e4825	update copyright notice	2014-07-07 23:45:21 +00:00
Mark Andrews	3c13af3759	3892. [bug] Setting '-t aaaa' in .digrc had unintended side effects. [RT #36452]	2014-07-08 02:00:28 +10:00
Francis Dupont	607c9360f1	update OpenSSL bases (#36447 )	2014-07-07 14:50:29 +02:00
Mark Andrews	d734818278	3891. [bug] Use ${INSTALL_SCRIPT} rather than ${INSTALL_PROGRAM} to install python programs.	2014-07-07 16:05:50 +10:00
Mark Andrews	63e1ac1e09	3890. [bug] RRSIG sets that were not loaded in a single transaction at start up where not being correctly added to re-signing heaps. [RT #36302]	2014-07-07 12:05:01 +10:00
Mark Andrews	e58154a6ec	silence coverity warnings	2014-07-02 15:28:02 +10:00
Evan Hunt	547411428e	[master] add "rndc nta" options to "rndc -h" output	2014-07-01 16:01:59 -07:00
Mark Andrews	6f6b7781d5	save the output of rndc nta so that it can be analysed if there is a failure; more cleanups	2014-06-30 11:41:09 +10:00
Mark Andrews	62275d5306	make test for nsec3param more robust	2014-06-27 15:50:51 +10:00
Mark Andrews	b05ef7092f	update nta failure messages	2014-06-27 11:53:39 +10:00
Mark Andrews	284f6435c2	adjust NTA test timing windows to support slower machines; self tune sleeps bases of actual elapsed time;	2014-06-26 13:37:50 +10:00
Tinderbox User	9f8df2d75c	update copyright notice	2014-06-25 23:45:21 +00:00
Mark Andrews	7205cd2db7	cleanup nsupdate.out	2014-06-25 16:16:34 +10:00
Mark Andrews	eca15167ac	dump unexpected update failures	2014-06-25 16:12:25 +10:00
Mark Andrews	33399d6a14	3888. [func] 'rndc status' now reports the number of automatic zones. [RT #36015]	2014-06-25 13:17:03 +10:00
Mark Andrews	70ee770c69	Net::DNS 0.78 should work when it is released as it contains: Fix rt.cpan.org #96439 Uninitialised decoding object when printing packet	2014-06-25 01:01:50 +10:00
Mark Andrews	1c95f67232	use $PERL	2014-06-24 13:50:14 +10:00
Mark Andrews	bf59efcf0e	3885. [port] Use 'open()' rather than 'file()' to open files in python.	2014-06-23 14:46:34 +10:00
Tinderbox User	5a31767b09	update copyright notice	2014-06-19 23:45:23 +00:00
Evan Hunt	064785ce84	[master] fix seccomp support for i386/nothreads	2014-06-19 09:38:41 -07:00
Evan Hunt	cac2181160	[master] CDS/CDNSKEY rrtypes 3884. [protocol] Add CDS and CDNSKEY record types. [RT #36333]	2014-06-19 00:35:11 -07:00
Mark Andrews	875e869ddc	fix 'result' might be used uninitialized in this function	2014-06-19 11:37:17 +10:00
Tinderbox User	61ab11c0ec	regen master	2014-06-19 01:05:10 +00:00
Evan Hunt	b8a9632333	[master] complete NTA work 3882. [func] By default, negative trust anchors will be tested periodically to see whether data below them can be validated, and if so, they will be allowed to expire early. The "rndc nta -force" option overrides this behvaior. The default NTA lifetime and the recheck frequency can be configured by the "nta-lifetime" and "nta-recheck" options. [RT #36146]	2014-06-18 16:50:38 -07:00
Mark Andrews	f5bb5eb7f6	3881. [bug] Address memory leak with UPDATE error handling. [RT #36303]	2014-06-18 11:21:31 +10:00
Tinderbox User	636aadbfe4	update copyright notice	2014-06-17 23:45:20 +00:00
Evan Hunt	a4e76a630e	[master] update gitignore files; use rev-parse to get srcid	2014-06-17 13:49:30 -07:00
Tinderbox User	6f12058975	regen master	2014-06-17 01:05:10 +00:00
Mark Andrews	a0d411c05f	3880. [test] Update ans.pl to work with new TSIG support in Net::DNS; add additional Net::DNS version prerequisite checks. [RT #36327]	2014-06-17 10:35:46 +10:00
Mark Andrews	bd7996b047	remove redundent nul setting	2014-06-17 10:26:57 +10:00
Evan Hunt	56510cd031	[master] null terminate strings for coverity	2014-06-16 15:30:11 -07:00
Evan Hunt	e3468c9052	[master] seccomp also needs dup() in the --disable-threads case	2014-06-16 13:52:17 -07:00
Evan Hunt	940b03cef2	[master] release seccomp context when finished	2014-06-16 11:19:40 -07:00
Mukund Sivaraman	4278293107	[10686] Add version printing option to various BIND utilites Squashed commit of the following: commit 95effe9b2582a7eb878ccb8cb9ef51dfc5bbfde7 Author: Evan Hunt <each@isc.org> Date: Tue Jun 10 16:52:45 2014 -0700 [rt10686] move version() to dnssectool.c commit df205b541d1572ea5306a5f671af8b54b9c5c770 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:38:31 2014 +0530 Rearrange order of cases commit cfd30893f2540bf9d607e1fd37545ea7b441e0d0 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:38:08 2014 +0530 Add version printer to dnssec-verify commit a625ea338c74ab5e21634033ef87f170ba37fdbe Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:32:19 2014 +0530 Add version printer to dnssec-signzone commit d91e1c0f0697b3304ffa46fccc66af65591040d9 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:26:01 2014 +0530 Add version printer to dnssec-settime commit 46fc8775da3e13725c31d13e090b406d69b8694f Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:25:48 2014 +0530 Fix docbook commit 8123d2efbd84cdfcbc70403aa9bb27b96921bab2 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:20:17 2014 +0530 Add version printer to dnssec-revoke commit d0916420317d3e8c69cf1b37d2209ea2d072b913 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:17:54 2014 +0530 Add version printer to dnssec-keygen commit 93b0bd5ebc043298dc7d8f446ea543cb40eaecf8 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:14:11 2014 +0530 Add version printer to dnssec-keyfromlabel commit 07001bcd9ae2d7b09dd9e243b0ab35307290d05d Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:13:39 2014 +0530 Update usage help output, docbook commit 85cdd702f41c96fbc767fc689d1ed97fe1f3a926 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:07:18 2014 +0530 Add version printer to dnssec-importkey commit 9274fc61e38205aad561edf445940b4e73d788dc Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 21:01:53 2014 +0530 Add version printer to dnssec-dsfromkey commit bf4605ea2d7282e751fd73489627cc8a99f45a90 Author: Mukund Sivaraman <muks@isc.org> Date: Tue Jun 10 20:49:22 2014 +0530 Add -V to nsupdate usage output	2014-06-16 12:10:38 +05:30
Mark Andrews	48789995c1	use $NSUPDATE	2014-06-15 18:35:19 +10:00
Mark Andrews	f9e47cfe4f	Net::DNS 0.76 broke the handling of some packets	2014-06-14 10:11:06 +10:00
Evan Hunt	c1d33c159b	[master] wrong dlopen filename caused segfault 3878. [bug] Using the incorrect filename for a DLZ module caused a segmentation fault on startup. [RT #36286]	2014-06-12 19:33:37 -07:00
Mark Andrews	1881aea774	fix test to see if $PERL is set (cherry picked from commit 44f0f310d41acc5c772d38353fe35ddacb3fee80)	2014-06-13 11:47:23 +10:00
Mark Andrews	d4a98c0fb7	die if $Net::DNS::VERSION >= 0.73	2014-06-13 11:25:32 +10:00
Evan Hunt	fb710168ef	[master] use correct shared library suffix	2014-06-12 17:06:23 -07:00
Tinderbox User	4ded8003e3	update copyright notice	2014-06-12 23:45:22 +00:00
Evan Hunt	06e0d6bb12	[master] address rpz bugs 3877. [bug] Inserting and deleting parent and child nodes in response policy zones could trigger an assertion failure. [RT #36272]	2014-06-11 20:00:19 -07:00
Mark Andrews	b836de821a	fail if SIT data is too large	2014-06-12 07:57:19 +10:00
Evan Hunt	fc32eac99f	[master] seccomp sandboxing wasn't working in nonthreaded builds	2014-06-10 19:10:46 -07:00
Mark Andrews	9c2cf9e201	update copyrights	2014-06-11 10:28:09 +10:00
Evan Hunt	8d8f9f7f86	[master] suppress unnecessary db lookups in DLZ redirect zones 3876. [bug] Improve efficiency of DLZ redirect zones by suppressing unnecessary database lookups. [RT #35835]	2014-06-10 16:25:26 -07:00
Mark Andrews	20dec973da	4. [test] Check that only "check-names master" is needed for updates to be accepted.	2014-06-10 13:48:57 +10:00
Mark Andrews	32a1fd3dd2	update spf check	2014-06-10 12:28:33 +10:00
Tinderbox User	1b2ae58ef1	update copyright notice	2014-06-09 23:45:20 +00:00
Mark Andrews	3b187cad7a	3873. [protocol] Only warn for SPF without TXT spf record. [RT #36210 ]	2014-06-10 09:32:43 +10:00
Mark Andrews	b16d99bac1	3872. [bug] Address issues found by static analysis. [RT #36209 ]	2014-06-10 09:17:15 +10:00
Mukund Sivaraman	79d27f505a	[35063] Don't publish an activated key automatically before its publish time	2014-06-04 14:31:42 +05:30
Mark Andrews	ab6fd5e892	initialise matches	2014-06-02 13:53:59 +10:00
Mark Andrews	5360986092	set max	2014-06-02 13:42:58 +10:00
Mark Andrews	3a26e75e3c	accept a range of stats values	2014-06-02 08:15:47 +10:00
Tinderbox User	f5c27ecceb	regen master	2014-05-31 01:05:50 +00:00
Evan Hunt	0cfb247368	[master] rndc nta 3867. [func] "rndc nta" can now be used to set a temporary negative trust anchor, which disables DNSSEC validation below a specified name for a specified period of time (not exceeding 24 hours). This can be used when validation for a domain is known to be failing due to a configuration error on the part of the domain owner rather than a spoofing attack. [RT #29358]	2014-05-29 22:22:53 -07:00
Mark Andrews	fa6308bd57	3866. [bug] Named could die on disk full in generate_session_key. [RT #36119]	2014-05-30 14:38:39 +10:00
Mark Andrews	536da846f6	update copyrights	2014-05-30 09:41:33 +10:00
Mark Andrews	44b0e0b1d5	More changes for: 3864. [bug] RPZ didn't work well when being used as forwarder. [RT #36060]	2014-05-30 08:41:27 +10:00
Evan Hunt	caa252e5ad	[master] Fix bin/tests/rbt_test.c, use portable int types	2014-05-29 07:37:13 -07:00
Mark Andrews	3d75189141	3864. [bug] RPZ didn't work well when being used as forwarder. [RT #36060]	2014-05-29 17:02:10 +10:00
Mark Andrews	4694229f60	make a explict edns query so this subtest is independent of other tests	2014-05-29 10:46:44 +10:00
Mark Andrews	800d25b848	3863. [bug] The "E" flag was missing from the query log as a unintended side effect of code rearrangement to support EDNS EXPIRE. [RT #36117]	2014-05-29 08:04:55 +10:00
Mark Andrews	9b819daddf	3862. [cleanup] Return immediately if we are not going to log the message in ns_client_dumpmessage.	2014-05-27 12:16:04 +10:00
Tinderbox User	f5ae3cca1d	regen master	2014-05-24 01:05:32 +00:00
Evan Hunt	d51e441520	spelling	2014-05-23 19:32:56 +00:00
Mark Andrews	a0f91e910b	3856. [bug] Configuring libjson without also configuring libxml resulting in a REQUIRE assertion when retrieving statistics using json. [RT #36009]	2014-05-21 12:06:00 +10:00
Tinderbox User	fc74b733bf	regen master	2014-05-17 01:05:14 +00:00
Tinderbox User	104f0e51ac	update copyright notice	2014-05-16 23:45:21 +00:00
Evan Hunt	896f49f8bd	[master] increase and allow configuration of lwresd tasks/clients 3852. [func] Increase the default number of clients available for servicing lightweight resolver queries, and make them configurable via the "lwres-tasks" and "lwres-clients" options. (Thanks to Tomas Hozza.) [RT #35857]	2014-05-15 22:01:19 -07:00
Evan Hunt	6fa84a3e25	[master] enable libseccomp system call filtering 3851. [func] Allow libseccomp based system-call filtering on Linux; use "configure --enable-seccomp" to turn it on. Thanks to Loganaden Velvindron for the contribution. [RT #35347]	2014-05-15 20:29:30 -07:00
Tinderbox User	284d5252c1	update copyright notice	2014-05-15 23:45:22 +00:00
Mark Andrews	01f881c1c5	3849. [bug] Disabling forwarding could trigger a REQUIRE assertion. [RT #35979]	2014-05-15 16:54:32 +10:00
Tinderbox User	b90c4f0646	regen master	2014-05-15 05:05:58 +00:00
Tinderbox User	9cc7fd5e1a	Merge branch 'master' of ssh://repo.isc.org/proj/git/prod/bind9	2014-05-15 05:02:02 +00:00
Tinderbox User	6bcac4b58d	regen master	2014-05-15 04:46:54 +00:00
Mark Andrews	97553eec86	grammar	2014-05-15 14:44:43 +10:00
Mark Andrews	0af902c0df	white space	2014-05-15 14:30:31 +10:00
Mark Andrews	2d0bc1e0f3	+domain was out of order	2014-05-15 14:26:57 +10:00
Tinderbox User	8e16b30787	regen master	2014-05-15 03:57:31 +00:00
Mark Andrews	9c36846e41	3849. [doc] Alphabetized dig's +options. [RT #35992 ]	2014-05-15 13:38:10 +10:00
Mark Andrews	71e9639c1d	ignore dig-symtbl.c, host-symtbl.c and nslookup-symtbl.c	2014-05-15 12:12:50 +10:00
Mark Andrews	a14fe85229	3848. [bug] Adjust 'statistics-channels specified but not effective' error message to account for JSON support. [RT #36008]	2014-05-15 11:12:05 +10:00
Mark Andrews	69530009f1	use portable awk	2014-05-15 00:34:17 +10:00
Tinderbox User	297342940e	regen master	2014-05-14 01:05:10 +00:00
Mark Andrews	05816676bb	3846. [bug] "dig +notcp ixfr=<serial>" should result in a UDP ixfr query. [RT #35980]	2014-05-14 09:59:02 +10:00
Francis Dupont	761f60fc35	use vcredist_x64.exe for 64 bit Windows [#35973 ]	2014-05-13 12:31:50 +02:00
Mark Andrews	2c172a42b3	3842. [bug] Adjust RRL log-only logging category. [RT #35945 ]	2014-05-11 10:59:42 +10:00
Mark Andrews	733898cffe	use sub second sleeps for prefetch disabled test	2014-05-09 15:00:36 +10:00
Mark Andrews	151759e7b7	address suspected race in system test for 'named -L'	2014-05-08 11:10:04 +10:00
Tinderbox User	c381ccf794	update copyright notice	2014-05-07 23:45:21 +00:00
Evan Hunt	60988462e5	[master] use posix-compatible shell in system tests 3839. [test] Use only posix-compatible shell in system tests. [RT #35625]	2014-05-06 22:06:04 -07:00
Mark Andrews	215f02a137	remove resource leak	2014-05-06 20:51:33 +10:00
Mark Andrews	b36fc8294e	3837. [security] A NULL pointer is passed to query_prefetch resulting a REQUIRE assertion failure when a fetch is actually initiated. [ RT #35899] Squashed commit of the following: commit 7f4e1f3917d743089c42cc52ec2c0eea598d2c00 Author: Mukund Sivaraman <muks@isc.org> Date: Sun May 4 22:34:34 2014 +0530 Fix a comment commit 6a35a6a2346013fa8e3798b9b680d8a3031fcb03 Author: Mark Andrews <marka@isc.org> Date: Sun May 4 23:34:25 2014 +1000 pass the correct name to query_prefetch	2014-05-05 10:12:12 +10:00
Evan Hunt	c0c4512020	[master] fixed geoip elements in named ACLs 3835. [bug] Geoip ACL elements didn't work correctly when referenced via named or nested ACLs. [RT #35879]	2014-04-30 20:21:56 -07:00
Mark Andrews	f09f1bf18e	fix filter-aaaa system test to work when crypto is disabled	2014-05-01 12:28:50 +10:00
Mark Andrews	5b56f2e3cc	zero pad date and month fields	2014-05-01 11:41:32 +10:00
Mark Andrews	c2abd6efeb	update copyrights	2014-05-01 10:00:00 +10:00
Mark Andrews	96f07724d6	use SKIPPED exit code (255)	2014-05-01 00:33:11 +10:00
Mark Andrews	23c7871cc7	don't read past end of command line argument	2014-04-30 16:09:16 +10:00
Mark Andrews	b75c645026	have +[no]ttl as a alias for +[no]ttlid	2014-04-30 16:05:18 +10:00
Mark Andrews	3057498bda	add missing default action for +[no]ttl*	2014-04-30 15:59:15 +10:00
Mark Andrews	0172c9fc2c	use +nottlid	2014-04-30 15:53:37 +10:00
Mark Andrews	87344c2cb3	2833. [bug] Cross compiling was broken due to calling genrandom at build time. [RT #35869]	2014-04-30 11:39:43 +10:00
Tinderbox User	e68c527dff	regen master	2014-04-30 01:05:11 +00:00
Evan Hunt	44613d4d86	[master] named -L option for default logfile 3832. [func] "named -L <filename>" causes named to send log messages to the specified file by default instead of to the system log. (Thanks to Tony Finch.) [RT #35845]	2014-04-29 17:17:03 -07:00
Evan Hunt	0dc0b029e9	[master] log query errors at info when query logging is on 3830. [func] When query logging is enabled, log query errors at the same level ('info') as the queries themselves. [RT #35844]	2014-04-29 17:04:21 -07:00
Evan Hunt	cd750f6e74	[master] dig +ttlunits 3829. [func] "dig +ttlunits" causes dig to print TTL values with time-unit suffixes: w, d, h, m, s for weeks, days, hours, minutes, and seconds. (Thanks to Tony Finch.) [RT #35823]	2014-04-29 16:58:36 -07:00
Tinderbox User	f6ea2b1d09	update copyright notice	2014-04-29 23:45:21 +00:00
Evan Hunt	b4ba66ba1e	[master] "dnssec-signzone -N date" 3827. [func] "dnssec-signzone -N date" updates serial number to the current date in YYYYMMDDNN format. [RT #35800]	2014-04-29 16:29:20 -07:00
Mark Andrews	e54767a3c9	change exit code	2014-04-29 22:57:15 +10:00
Mark Andrews	db3f8d175d	silence compiler warnings; style	2014-04-29 21:11:14 +10:00
Mark Andrews	1a158ef6ee	fix testsock6.pl (cherry picked from commit `660195a82c`)	2014-04-29 19:15:55 +10:00
Evan Hunt	54267016bc	[master] add geoip and filter-aaaa to SUBDIRS	2014-04-28 22:41:13 -07:00
Mark Andrews	52c5b74c27	improve error handling in sig_fromfile	2014-04-29 14:41:25 +10:00
Mark Andrews	76884179fd	3823. [func] Log the rpz cname target when rewriting. [RT #35667 ]	2014-04-28 15:18:53 +10:00
Tinderbox User	2d50cce72e	update copyright notice	2014-04-26 23:45:20 +00:00
Evan Hunt	eb1a7730f0	[master] log static-stub correctly when removing 3822. [bug] Log the correct type of static-stub zones when removing them. [RT #35842]	2014-04-26 10:16:37 -07:00
Mark Andrews	4aaaaadeae	silence warnings	2014-04-26 23:42:37 +10:00
Mark Andrews	f4f70bf596	address 'version' reference leak	2014-04-26 23:30:53 +10:00
Tinderbox User	06081a0d61	update copyright notice	2014-04-25 23:45:21 +00:00
Evan Hunt	aefb3e308b	[master] better DDNS in DLZ; mysqldyn 3821. [contrib] Added a new "mysqldyn" DLZ module with dynamic update and transaction support. Thanks to Marty Lee for the contribution. [RT #35656] 3820. [func] The DLZ API doesn't pass the database version to the lookup() function; this can cause DLZ modules that allow dynamic updates to mishandle prerequisite checks. This has been corrected by adding a 'dbversion' field to the dns_clientinfo_t structure. [RT #35656]	2014-04-25 13:06:30 -07:00
Tinderbox User	37f7c4c673	update copyright notice	2014-04-24 23:45:21 +00:00
Mark Andrews	44c6deacdd	additional changes for: 3818. [bug] Stop lying to the optimizer that 'void *arg' is a constant in isc_event_allocate.	2014-04-24 18:59:01 +10:00
Mark Andrews	36e5ac0033	3819. [bug] NSEC3 hashes need to be able to be entered and displayed without padding. This is not a issue for currently defined algorithms but may be for future hash algorithms. [RT #27925]	2014-04-24 18:58:03 +10:00
Mark Andrews	b57445a84b	fix rename	2014-04-24 09:40:49 +10:00
Tinderbox User	e108f2ec64	regen master	2014-04-23 18:28:07 +00:00
Evan Hunt	2ae159b376	[master] globally rename "delve" to "delv" 3817. [func] The "delve" command is now spelled "delv" to avoid a namespace collision with the Xapian project. [RT #35801]	2014-04-23 11:14:12 -07:00
Tinderbox User	953189d30e	update copyright notice	2014-04-22 23:45:19 +00:00
Evan Hunt	1a9932dde1	[master] dig +qr now shows query size 3816. [func] "dig +qr" now reports query size. (Thanks to Tony Finch.) [RT #35822]	2014-04-22 12:38:53 -07:00
Tinderbox User	f39512a917	regen master	2014-04-20 01:05:19 +00:00
Evan Hunt	5978df387c	[master] additional nsupdate doc fix	2014-04-18 18:26:07 -07:00
Evan Hunt	627a9ceb63	[master] fix tags	2014-04-18 18:23:37 -07:00
Evan Hunt	1f73b46904	[master] clarify nsupdate -y 3815. [doc] Clarify "nsupdate -y" usage in man page. [RT #35808]	2014-04-18 15:08:23 -07:00
Evan Hunt	58e291cb8d	[master] setup tsig in dig/host/nslookup (Change #3813 had broken some system tests.)	2014-04-18 07:27:50 -07:00
Evan Hunt	ec3b216506	[master] masterfile-style 3814. [func] The "masterfile-style" zone option controls the formatting of dumped zone files. Options are "relative" (multiline format) and "full" (one record per line). The default is "relative". [RT #20798]	2014-04-17 17:10:29 -07:00
Evan Hunt	4e7973990c	[master] host recognizes /etc/resolv.conf options 3813. [func] "host" now recognizes the "timeout", "attempts" and "debug" options when set in /etc/resolv.conf. (Thanks to Adam Tkac at RedHat.) [RT #21885]	2014-04-17 17:04:51 -07:00
Mark Andrews	e560fbdf77	3812. [func] Dig now supports sending arbitary EDNS options from the command line (+ednsopt=code[:value]). [RT #35584]	2014-04-18 09:52:12 +10:00
Evan Hunt	7318bbc262	[master] serial-update-method date; 3811. [func] "serial-update-method date;" sets serial number on dynamic update to today's date in YYYYMMDDNN format. (Thanks to Bradley Forschinger.) [RT #24903]	2014-04-17 16:05:50 -07:00
Francis Dupont	7c7c2fa688	OpenSSL 1.0.1f -> 1.0.1g	2014-04-14 14:50:06 +02:00
Tinderbox User	a7051299c6	update copyright notice	2014-04-10 23:46:10 +00:00
Evan Hunt	92fe6db3e4	[master] use test -r in system tests 3806. [test] Improved system test portability. [RT #35625]	2014-04-09 20:29:52 -07:00
Tinderbox User	914ed533b8	regen master	2014-04-10 01:05:11 +00:00
Evan Hunt	540daf2887	[master] missing manpage install rule for dnssec-importkey	2014-04-09 17:17:25 -07:00
Evan Hunt	baad8d9fd8	[master] allow null "file" for DLZ or alternate db zones 3803. [bug] "named-checkconf -z" incorrectly rejected zones using alternate data sources for not having a "file" option. [RT #35685]	2014-04-07 13:29:56 -07:00
Mark Andrews	5b60bde47b	use perl	2014-04-07 21:53:47 +10:00
Mark Andrews	a4941d6b5e	update check the correct resigning time is reported in zonestatus test to be more portable	2014-04-07 11:50:50 +10:00
Evan Hunt	7ef5dc87b6	[master] detach route socket when shutting down 3800. [bug] A pending event on the route socket could cause an assertion failure when shutting down named. [RT #35674]	2014-04-03 19:48:29 -07:00
Evan Hunt	44fbdddcad	[master] improve command line error reporting 3799. [bug] Improve named's command line error reporting. [RT #35603]	2014-04-03 19:34:48 -07:00
Mark Andrews	0dfd942409	3798. [bug] 'rndc zonestatus' was reporting the wrong re-signing time. [RT #35659]	2014-04-04 11:33:49 +11:00
Mark Andrews	a3799a38e7	#include <pk11/result.h>	2014-04-01 12:47:31 +11:00
Mark Andrews	e6ff1b5127	#include <dns/result.h>	2014-04-01 12:27:59 +11:00
Mark Andrews	51e6164fd6	3796. [bug] Register dns and pkcs#11 error codes. [RT #35629 ]	2014-03-31 15:38:36 +11:00
Tinderbox User	180d8b0eec	update copyright notice	2014-03-30 23:46:03 +00:00
Mukund Sivaraman	ef9334d745	3795. [bug] Make named-checkconf detect raw masterfiles for hint zones and reject them. [RT #35268] Squashed commit of the following: commit 5b0254711d6b77940d6217b9131b9d401df8a866 Author: Mukund Sivaraman <muks@isc.org> Date: Fri Mar 28 02:09:01 2014 +0530 Remove redundant helper function commit a4341c1a2ba830c8cee1def57a533f987f67c3dc Author: Mark Andrews <marka@isc.org> Date: Thu Jan 30 10:08:17 2014 +1100 error out if masterfile-format raw is specified for a hint zone.	2014-03-31 04:55:37 +05:30
Jeremy C. Reed	35094302da	have the install target also do installdirs as other tool's makefiles do. Okayed by each via jabber.	2014-03-28 13:04:02 -05:00
Mark Andrews	c73a7e127f	3792. [func] Provide links to the alternate statistics views when displaying in a browser. [RT #35605] Squashed commit of the following: commit 7ac73b584aa6e026a1deb124257d3a2ed1fc64cc Author: Evan Hunt <each@isc.org> Date: Mon Mar 24 21:47:28 2014 -0700 [rt35605] tweak commit b18bccc570803293f819c04f324f91b446a67756 Author: Mark Andrews <marka@isc.org> Date: Tue Mar 25 14:20:07 2014 +1100 provide links to alternate statistic views	2014-03-25 15:56:40 +11:00
Mark Andrews	09ab38c151	3790. [bug] Handle broken nameservers that send BADVERS in response to unknown EDNS options. Maintain statistics on BADVERS responses.	2014-03-20 05:00:55 +11:00
Mark Andrews	9e9d5e2548	check return value of convert_name	2014-03-16 11:21:32 +11:00
Mark Andrews	9f1959f0a7	silence signed/unsigned comparision warning	2014-03-16 11:14:26 +11:00
Evan Hunt	a7742a8885	[master] silence win64 build warning	2014-03-13 13:30:26 -07:00
Tinderbox User	ec899c963c	regen master	2014-03-13 06:24:13 +00:00
Evan Hunt	22e29471c7	[master] check allow-update in view/options 3787. [bug] The code that checks whether "auto-dnssec" is allowed was ignoring "allow-update" ACLs set at the options or view level. [RT #29536]	2014-03-12 21:36:01 -07:00
Mark Andrews	6f49db82ab	calling $TSIGKEYGEN doesn't work with libtool.	2014-03-13 15:11:46 +11:00
Evan Hunt	acbb301e64	[master] better error output when initializing pkcs11 3786. [func] Provide more detailed error codes when using native PKCS#11. "pkcs11-tokens" now fails robustly rather than asserting when run against an HSM with an incomplete PCKS#11 API implementation. [RT #35479]	2014-03-12 20:52:01 -07:00
Evan Hunt	e9a9bb6b14	[master] balance tag	2014-03-12 18:08:05 -07:00
Tinderbox User	0add14467b	update copyright notice	2014-03-12 23:46:05 +00:00
Evan Hunt	89740699cd	[master] fixed 'fixed' 3784. [bug] Using "rrset-order fixed" when it had not been enabled at compile time caused inconsistent results. It now works as documented, defaulting to cyclic mode. [RT #28104]	2014-03-12 08:45:44 -07:00
Evan Hunt	46bc64f4b1	[master] tsig-keygen 3783. [func] "tsig-keygen" is now available as an alternate command name for "ddns-confgen". It generates a TSIG key in named.conf format without comments. [RT #35503]	2014-03-12 08:29:15 -07:00
Mark Andrews	ca7aeeab71	make constant unsigned	2014-03-12 14:04:29 +11:00
Mark Andrews	bab2bf7dfd	expr length arg is not portable	2014-03-12 13:59:41 +11:00
Mark Andrews	f5375b1b8e	check isc_hex_totext result	2014-03-12 12:58:09 +11:00
Tinderbox User	3c7b4ac451	regen master	2014-03-12 01:05:39 +00:00
Evan Hunt	62258ada48	[master] auto-generate salt 3781. [func] Specifying "auto" as the salt when using "rndc signing -nsec3param" causes named to generate a 64-bit salt at random. [RT #35322]	2014-03-11 08:46:58 -07:00
Evan Hunt	7b46a4aa41	[master] fix negative numbers in $GENERATE 3780. [bug] $GENERATE handled negative numbers incorrectly. [RT #25528]	2014-03-10 11:55:32 -07:00
Tinderbox User	4b1a933811	update copyright notice	2014-03-07 23:47:09 +00:00
Evan Hunt	78f79084fc	[master] warn when wrong address family used in listen-on/-v6 3778. [bug] Log a warning when the wrong address family is used in "listen-on" or "listen-on-v6". [RT #17848]	2014-03-07 11:31:51 -08:00
Evan Hunt	e29c2b3903	[master] fix misuses of isc__buffer functions, update comment	2014-03-06 17:26:21 -08:00
Tinderbox User	e9c7fe450e	update copyright notice	2014-03-06 23:46:08 +00:00
Evan Hunt	741dfd3ccd	[master] tests directory cleanup	2014-03-06 11:11:27 -08:00
Evan Hunt	a2fd1de97d	[master] fix DLZ coredump 3777. [bug] EDNS EXPIRE code could dump core when processing DLZ queries. [RT #35493]	2014-03-06 11:06:30 -08:00
Tinderbox User	0f52ea95d8	regen master	2014-03-06 01:05:38 +00:00
Evan Hunt	431859b442	[master] typo	2014-03-04 21:46:21 -08:00
Tinderbox User	d3ddafd746	regen master	2014-03-05 01:06:28 +00:00
Tinderbox User	cc2a515684	update copyright notice	2014-03-04 23:46:15 +00:00
Evan Hunt	b454c03196	[master] use ANSI prototypes, clean up some casts	2014-03-04 10:42:25 -08:00
Evan Hunt	e7c0d42b11	[master] rndc -q 3776. [bug] "rndc -q" suppresses output from successful rndc commands. Errors are printed on stderr. [RT #21393]	2014-03-04 09:49:57 -08:00
Evan Hunt	7d769b7ba7	[master] don't use keyname from command line if using -S	2014-03-04 09:07:26 -08:00
Evan Hunt	d51456e453	[master] fix API mismatch bug in DLZ 3775. [bug] dlz_dlopen driver could return the wrong error code on API version mismatch, leading to a segfault. [RT #35495]	2014-03-04 08:58:40 -08:00
Tinderbox User	b46346eb30	regen master	2014-03-04 01:05:04 +00:00
Tinderbox User	1599ac12be	update copyright notice	2014-03-03 23:47:11 +00:00
Evan Hunt	9f5222620c	[master] revert the "version" interactive command from nslookup	2014-03-03 10:05:55 -08:00
Evan Hunt	f4ada59b35	[master] don't use strncasecmp for command line option	2014-03-03 09:31:41 -08:00
Evan Hunt	67d01dcacb	[master] add "version" options to host/nslookup/nsupdate 3773. [func] "host", "nslookup" and "nsupdate" now have options and commands to print the version number. [RT #26057]	2014-03-03 09:08:04 -08:00
Tinderbox User	74ae031d9d	regen master	2014-03-02 01:05:20 +00:00
Evan Hunt	262fea6637	[master] fix log level for built in keys 3771. [cleanup] Adjusted log level for "using built-in key" messages. [RT #24383]	2014-03-01 15:51:21 -08:00
Tinderbox User	8ab8cd1fa6	update copyright notice	2014-03-01 23:46:15 +00:00
Evan Hunt	084ba95b08	[master] dig +trace could fail when retrying with TCP 3770. [bug] "dig +trace" could fail with an assertion when it needed to fall back to TCP due to a truncated response. [RT #24660]	2014-03-01 15:32:25 -08:00
Evan Hunt	ec88c1fdff	[master] capture stderr in systests.output - also tidied up runall.sh summary output	2014-02-28 21:59:28 -08:00
Evan Hunt	3ef4b7383a	[master] improved doc for "rndc signing -list" 3769. [doc] Improved documentation of "rndc signing -list". [RT #30652]	2014-02-28 21:29:19 -08:00
Evan Hunt	72aa3b2a4e	[master] add sha-384 to dnssec-checkds 3768. [bug] "dnssec-checkds" was missing the SHA-384 digest algorithm. [RT #34000]	2014-02-28 21:09:24 -08:00
Tinderbox User	e23798e2ab	update copyright notice	2014-02-28 23:46:19 +00:00
Evan Hunt	368aedf188	[master] log when using rndc.key 3767. [func] Log explicitly when using rndc.key to configure command channel. [RT #35316]	2014-02-27 17:55:04 -08:00
Tinderbox User	794b79e6bb	regen master	2014-02-28 01:07:06 +00:00
Evan Hunt	a60bf97f9f	[master] dnssec-keyfromlabel -S and -i 3764. [bug] The dnssec-keygen/settime -S and -i options (to set up a successor key and set the prepublication interval) were missing from dnssec-keyfromlabel. [RT #35394]	2014-02-27 16:25:32 -08:00
Tinderbox User	938440694b	update copyright notice	2014-02-27 23:46:22 +00:00
Evan Hunt	f79ee00c69	[master] use cache in delve 3763. [bug] delve: Cache DNSSEC records to avoid the need to re-fetch them when restarting validation. [RT #35476]	2014-02-27 14:49:01 -08:00
Evan Hunt	1753d3c4d7	[master] correct dates in man pages	2014-02-27 11:43:10 -08:00
Evan Hunt	98922b2b2b	[master] merge several interdependent fixes 3760. [bug] Improve SIT with native PKCS#11 and on Windows. [RT #35433] 3759. [port] Enable delve on Windows. [RT #35441] 3758. [port] Enable export library APIs on windows. [RT #35382]	2014-02-26 19:00:05 -08:00
Mark Andrews	95c3a5e116	merge copyrights	2014-02-27 13:21:27 +11:00
Evan Hunt	061f61dd3b	[master] add files omitted from coverage test	2014-02-26 08:54:21 -08:00
Evan Hunt	3a01ded15d	[master] enable windows python tools 3757. [port] Enable Python tools (dnssec-coverage, dnssec-checkds) to run on Windows. [RT #34355]	2014-02-26 08:43:50 -08:00
Mark Andrews	79bd3cf027	we only use 32 octets	2014-02-26 15:54:23 +11:00
Mark Andrews	ed70f92dd0	use ISC_PLATFORM_USESIT	2014-02-24 09:54:04 +11:00
Mark Andrews	6b8c78d6ab	delve: -p was not affecting servers lernt from resolv.conf	2014-02-24 09:38:28 +11:00
Mark Andrews	9e39bafd2e	adjust SIT computation	2014-02-24 09:29:49 +11:00
Mark Andrews	02a5e3ed85	3755. [func] Add stats counters for known EDNS options + others. [RT #35447]	2014-02-24 09:24:25 +11:00
Mark Andrews	c48c691c4f	check for zone being NULL	2014-02-24 08:52:15 +11:00
Mark Andrews	6d7aa71f2f	encrypt nonce and time	2014-02-24 07:16:00 +11:00
Francis Dupont	35bcef6631	fixed ENABLE_LTR typos	2014-02-23 09:37:32 +01:00
Mark Andrews	cc00679829	wait for zone to transfer	2014-02-23 14:06:15 +11:00
Mark Andrews	89b23dc57e	silence compiler warning	2014-02-23 11:44:12 +11:00
Tinderbox User	892503bd48	regen master	2014-02-21 17:38:07 +00:00
Evan Hunt	f0f3f595b1	[master] delve man page improvements	2014-02-21 08:33:17 -08:00
Evan Hunt	999926955b	[master] fix test error	2014-02-21 08:05:40 -08:00
Evan Hunt	6ce1aa1902	[master] tag mismatch	2014-02-20 20:59:24 -08:00
Evan Hunt	2059d7950b	[master] missing man pages, named-rrchecker had wrong name	2014-02-20 20:46:25 -08:00
Tinderbox User	20a96edbf9	update copyright notice	2014-02-20 23:46:35 +00:00
Tinderbox User	0e1dece22e	regen master	2014-02-20 19:19:27 +00:00
Evan Hunt	bce9696c7a	[master] fix win32 installer 3754. [cleanup] win32: Installer now places files in the Program Files area rather than system services. [RT #35361]	2014-02-20 10:11:06 -08:00
Mark Andrews	80b37f909a	increment dns_nsstatscounter_recursclients when prefetching	2014-02-21 01:40:54 +11:00
Mark Andrews	caac342072	add @ISC_OPENSSL_LIBS@	2014-02-21 00:35:22 +11:00
Mark Andrews	c62ead1ae7	check the result of dns_zone_getdb call	2014-02-20 20:33:46 +11:00
Evan Hunt	5b7dbbf172	[master] silence win64 warnings	2014-02-19 22:58:09 -08:00
Mark Andrews	47cb20eae1	add EDNS EXPIRE processing on ixfr and axfr out	2014-02-20 17:51:31 +11:00
Evan Hunt	83eecff731	[master] adjust default -U 3751. [tuning] The default setting for the -U option (setting the number of UDP listeners per interface) has been adjusted to improve performance. [RT #35417]	2014-02-19 21:54:43 -08:00
Evan Hunt	9576baafc0	[master] assert if sitok/sitbad are insane	2014-02-19 21:26:31 -08:00
Mark Andrews	f0c00f10a0	report if sit is good/bad	2014-02-20 15:55:09 +11:00
Mark Andrews	16134801ce	3750. [experimental] Partially implement EDNS EXPIRE option as described in draft-andrews-dnsext-expire-00. Retrivial of remaining time to expiry from slave zones is supported. EXPIRE uses an experimental option code (65002) and is subject to change. [RT #35416]	2014-02-20 14:56:20 +11:00
Mark Andrews	801b958a5c	s/DNS_EDNSOPTIONS/DNS_EDNSOPTIONS/	2014-02-20 14:00:54 +11:00
Mark Andrews	72ba6ba736	define DNS_OPT_EDNSOPTIONS	2014-02-20 13:55:21 +11:00
Mark Andrews	86a85a3bbd	don't error on rpz percentage checks as they fail inconsistently on virtual machines	2014-02-20 12:22:14 +11:00
Evan Hunt	2af7d81efd	[master] unbalanced tag	2014-02-19 17:15:51 -08:00
Mark Andrews	e676a59686	update copyrights	2014-02-20 10:53:11 +11:00
Evan Hunt	d7b9756a21	[master] ENDS client-subnet in dig 3749. [func] "dig +subnet" sends an EDNS client subnet option containing the specified address/prefix when querying. (Thanks to Wilmer van der Gaast.) [RT #35415]	2014-02-19 15:51:02 -08:00
Tinderbox User	1361e03890	update copyright notice	2014-02-19 23:46:31 +00:00
Francis Dupont	f1a6c8e78c	WIN32 master fixes	2014-02-19 23:17:52 +01:00
Mark Andrews	e0c6a3944d	silence Function returns no value	2014-02-20 00:27:36 +11:00
Mark Andrews	ab830e68aa	silence unreachable statement by adding #if/#endif	2014-02-20 00:24:56 +11:00
Mark Andrews	f45c36fb19	add client cookie in hmacsha*	2014-02-19 20:19:36 +11:00
Mark Andrews	7e2e41df67	3748. [func] Use delve to test dns_client interfaces. [RT #35383 ]	2014-02-19 19:33:21 +11:00
Evan Hunt	35f6a21f5f	[master] max-zone-ttl 3746. [func] New "max-zone-ttl" option enforces maximum TTLs for zones. If loading a zone containing a higher TTL, the load fails. DDNS updates with higher TTLs are accepted but the TTL is truncated. (Note: Currently supported for master zones only; inline-signing slaves will be added.) [RT #38405]	2014-02-18 23:26:50 -08:00
Evan Hunt	6a3fa181d1	[master] add "--with-tuning=large" option 3745. [func] "configure --with-tuning=large" adjusts various compiled-in constants and default settings to values suited to large servers with abundant memory. [RT #29538]	2014-02-18 22:36:14 -08:00
Mark Andrews	b5f6271f4d	3744. [experimental] SIT: send and process Source Identity Tokens (which are similar to DNS Cookies by Donald Eastlake) and are designed to help clients detect off path spoofed responses and for servers to detect legitimate clients. SIT use a experimental EDNS option code (65001). SIT can be enabled via --enable-developer or --enable-sit. It is on by default in Windows. RRL processing as been updated to know about SIT with legitimate clients not being rate limited. [RT #35389]	2014-02-19 12:53:42 +11:00
Mark Andrews	43c1433ef2	add attributes to fatal, warn and delve_log	2014-02-19 07:25:29 +11:00
Mark Andrews	657f0f11ac	use return rather than exit	2014-02-19 07:15:27 +11:00
Evan Hunt	9201e2b2f2	[master] remove extra isc_buffer_init	2014-02-17 18:21:37 -08:00
Tinderbox User	3fd910dec5	update copyright notice	2014-02-17 23:46:29 +00:00
Mark Andrews	38eabfcee7	3743. [bug] delegation-only flag wasn't working in forward zone declarations despite being documented. This is needed to support turning off forwarding and turning on delegation only at the same name. [RT #35392]	2014-02-18 10:09:07 +11:00
Evan Hunt	5efcb3a3e2	[master] fix test errors - require 5.006_001 - cut off the least significant figures of rrsig dates before comparison to avoid integer overflow	2014-02-17 08:40:02 -08:00
Mark Andrews	846cb7015b	unchecked isc_mem_get calls; fix loop over getaddrinfo results	2014-02-18 02:07:37 +11:00
Mark Andrews	0e8cfb69d1	a4 and a6 were being referenced out of scope	2014-02-18 01:53:21 +11:00
Mark Andrews	5114325978	3742. [port] linux: libcap support: curval was used before it was declared. [RT #35387]	2014-02-18 00:27:15 +11:00
Evan Hunt	e6b626cc7a	[master] include <isc/string.h>	2014-02-16 16:30:47 -08:00
Tinderbox User	72141595cf	update copyright notice	2014-02-16 23:46:32 +00:00
Mark Andrews	d8f5f53a03	add #include <isc/print.h>	2014-02-17 09:19:25 +11:00
Evan Hunt	7ba88e2a95	[master] fix dnssec test errors	2014-02-16 14:14:56 -08:00
Evan Hunt	72fd845d5a	[master] remove accidentally committed changes	2014-02-16 13:59:19 -08:00
Evan Hunt	792915beb0	[master] fix accidental dig breakage	2014-02-16 13:42:42 -08:00
Evan Hunt	cd38c8c1bb	[master] fixed mistake with delve +short	2014-02-16 13:25:53 -08:00
Evan Hunt	b412cb5334	[master] include <signal.h> not <sys/signal.h>	2014-02-16 13:11:26 -08:00
Evan Hunt	1d761cb453	[master] delve 3741. [func] "delve" (domain entity lookup and validation engine): A new tool with dig-like semantics for performing DNS lookups, with internal DNSSEC validation, using the same resolver and validator logic as named. This allows easy validation of DNSSEC data in environments with untrustworthy resolvers, and assists with troubleshooting of DNSSEC problems. (Note: not yet available on win32.) [RT #32406]	2014-02-16 13:03:17 -08:00
Evan Hunt	31f6244cc2	[master] tcp and udp stats counters 3739. [func] Added per-zone stats counters to track TCP and UDP queries. [RT #35375]	2014-02-15 20:57:00 -08:00
Francis Dupont	fb3ecd89ca	retries -> split in could not parse	2014-02-16 02:08:55 +01:00
Francis Dupont	a3a74b30b3	spurious space	2014-02-16 02:07:33 +01:00
Mark Andrews	2729aea3c1	3738. [bug] --enable-openssl-hash failed to build. [RT #35343 ]	2014-02-13 15:09:08 +11:00
Tinderbox User	665a24faf6	regen master	2014-02-13 01:05:15 +00:00
Tinderbox User	1124950b35	update copyright notice	2014-02-12 23:46:27 +00:00
Mark Andrews	5deedd7057	use unsigned constants	2014-02-13 07:48:44 +11:00
Evan Hunt	79a1c7502d	[master] typos in dig man page	2014-02-12 10:32:20 -08:00
Evan Hunt	842a3e6d0e	[master] try multiple addresses per server name in nsupdate 3736. [bug] nsupdate: When specifying a server by name, fall back to alternate addresses if the first address for that name is not reachable. [RT #25784]	2014-02-11 21:29:10 -08:00
Evan Hunt	dbb012765c	[master] merge libiscpk11 to libisc 3735. [cleanup] Merged the libiscpk11 library into libisc to simplify dependencies. [RT #35205]	2014-02-11 21:20:28 -08:00
Mark Andrews	6b66ee9147	define and use BACKTRACECFLAGS	2014-02-12 09:07:54 +11:00
Tinderbox User	6874b16e4a	update copyright notice	2014-02-10 23:46:26 +00:00
Mark Andrews	d7729155df	3734. [bug] Improve building with libtool. [RT #35314 ]	2014-02-10 15:01:06 +11:00
Mark Andrews	850b5e8093	Add Linux support to: 3733. [func] Improve interface scanning support. Interface information will be automatically updated if the OS supports routing sockets (MacOS, *BSD, Linux). Use "automatic-interface-scan no;" to disable. Add "rndc scan" to trigger a scan. [RT #23027]	2014-02-10 09:46:54 +11:00
Tinderbox User	f2016fcecf	regen master	2014-02-08 01:05:40 +00:00
Tinderbox User	81f58902eb	update copyright notice	2014-02-07 23:46:39 +00:00
Mark Andrews	fc9c44a8b0	move unreachable code inside #ifdef block	2014-02-08 09:49:03 +11:00
Mark Andrews	2870ee1fe5	use exit 255	2014-02-08 09:43:16 +11:00
Mark Andrews	404d7c966c	fix typo in comment	2014-02-08 09:37:32 +11:00
Mark Andrews	62ec9fd168	3733. [func] Improve interface scanning support. Interface information will be automatically updated if the OS supports routing sockets. Use "automatic-interface-scan no;" to disable. Add "rndc scan" to trigger a scan. [RT #23027]	2014-02-07 17:16:37 +11:00
Mark Andrews	0584ab7e9c	#include <isc/util.h>	2014-02-07 16:46:11 +11:00
Evan Hunt	7983f6f77a	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-02-06 19:41:48 -08:00
Evan Hunt	166341d554	[master] add no-case-compress 3731. [func] Added a "no-case-compress" ACL, which causes named to use case-insensitive compression (disabling change #3645) for specified clients. (This is useful when dealing with broken client implementations that use case-sensitive name comparisons, rejecting responses that fail to match the capitalization of the query that was sent.) [RT #35300]	2014-02-06 19:37:26 -08:00
Tinderbox User	bbbf2e27d3	regen master	2014-02-07 02:03:45 +00:00
Mark Andrews	11d8c966ea	fix closing tag	2014-02-07 12:26:16 +11:00
Mark Andrews	a928b54fa9	silence unused parameter	2014-02-07 11:47:32 +11:00
Evan Hunt	dd19c1a352	[master] report T_SKIPPED from t_dst	2014-02-06 16:21:38 -08:00
Evan Hunt	a165a17a81	[master] dnssec-keygen fixes 3730. [cleanup] Added "never" as a synonym for "none" when configuring key event dates in the dnssec tools. [RT #35277] 3729. [bug] dnssec-kegeyn could set the publication date incorrectly when only the activation date was specified on the command line. [RT #35278]	2014-02-06 15:59:14 -08:00
Tinderbox User	7fa75f8e0e	update copyright notice	2014-02-06 23:46:25 +00:00
Evan Hunt	08c67b5b7a	[master] improved native-pkcs11 doc 3728. [doc] Expanded native-PKCS#11 documentation, specifically pkcs11: URI labels. [RT #35287]	2014-02-06 15:40:00 -08:00
Evan Hunt	62cce60a15	[master] better error message when exceeding RPZ zone limit 3726. [cleanup] Clarified the error message when attempting to configure more than 32 response-policy zones. [RT #35283]	2014-02-06 15:26:54 -08:00
Tinderbox User	0666e6db54	update copyright notice	2014-01-31 23:46:22 +00:00
Evan Hunt	48def18179	[master] silence coverity warnings - remove dead code in server.c - initialize a struct tm.c	2014-01-31 09:34:37 -08:00
Evan Hunt	d0803df331	[master] fixed geoip in blackhole ACLs 3722. [bug] Using geoip ACLs in a blackhole statement could cause a segfault. [RT #35272]	2014-01-30 17:03:32 -08:00
Tinderbox User	4734976943	update copyright notice	2014-01-30 23:46:20 +00:00
Tinderbox User	04b5785fde	update copyright notice	2014-01-29 23:46:19 +00:00
Mark Andrews	63add83a26	3720. [bug] Address compiler warnings. [RT #35261 ]	2014-01-30 10:33:28 +11:00
Mark Andrews	75d747e1c5	3719. [bug] Address memory leak in in peer.c. [RT #35255 ]	2014-01-30 07:54:52 +11:00
Mark Andrews	61932ed917	copyright cleanups	2014-01-29 14:05:46 +11:00
Tinderbox User	88cffc09ae	regen master	2014-01-25 01:04:57 +00:00
Tinderbox User	85167bb10f	update copyright notice	2014-01-24 23:46:22 +00:00
Evan Hunt	bff64bf12b	[master] correct copyrights and attributions see RT #35423 for details; highlights: - remove license clauses 3 and 4 from NetBSD code - remove advertising clause from historical BSD code - add openssl advertising attributions	2014-01-24 09:46:00 -08:00
Tinderbox User	fbe600459d	update copyright notice	2014-01-23 23:46:17 +00:00
Evan Hunt	83f69fcd6e	[master] fix a problem with libgeoip 1.5 and higher 3715. [bug] The region and city databases could fail to initialize when using some versions of libGeoIP, causing assertion failures when named was configured to use them. [RT #35427]	2014-01-23 12:46:02 -08:00
Mark Andrews	db519a99ce	remove src files not available for 'make depend'	2014-01-22 10:49:18 +11:00
Tinderbox User	aa7b16ec2a	update copyright notice	2014-01-21 23:46:16 +00:00
Evan Hunt	d58e33bfab	[master] testcrypto.sh in system tests 3714. [test] System tests that need to test for cryptography support before running can now use a common "testcrypto.sh" script to do so. [RT #35213]	2014-01-20 16:08:09 -08:00
Evan Hunt	e45d0508c3	[master] skip unnecesary also-notify data 3713. [bug] Save memory by not storing "also-notify" addresses in zone objects that are configured not to send notify requests. [RT #35195]	2014-01-20 15:53:51 -08:00
Tinderbox User	dfd5f3b388	update copyright notice	2014-01-18 23:46:13 +00:00
Evan Hunt	12bf5d4796	[master] address several issues with native pkcs11	2014-01-18 11:51:07 -08:00
Tinderbox User	c0682c2367	update copyright notice	2014-01-17 23:46:32 +00:00
Francis Dupont	e02659b241	applied emacs filled-paragraph (ESC-q) to reindent SUBDIRS	2014-01-17 14:14:30 +01:00
Tinderbox User	dd1ce8b524	regen master	2014-01-17 01:05:10 +00:00
Tinderbox User	1633aead67	update copyright notice	2014-01-16 23:46:28 +00:00
Mark Andrews	db8938c993	3710. [bug] Address double dns_zone_detach when switching to using automatic empty zones from regular zones. [RT #35177]	2014-01-17 10:04:16 +11:00
Evan Hunt	5760095601	[master] skip xfer test with Net::DNS 0.73	2014-01-16 09:50:23 -08:00
Evan Hunt	eb94c78be4	[master] atomic test doesn't need libdns	2014-01-16 09:24:44 -08:00
Francis Dupont	6080262ffe	add iscpk11 dep in lwresd system test	2014-01-16 16:06:04 +01:00
Mark Andrews	d1ca4caece	make DST_GSSAPI_INC a macro	2014-01-17 00:50:30 +11:00
Francis Dupont	e2258edfef	libtoolized pkcs11 Makefile.in files	2014-01-16 10:35:24 +01:00
Mark Andrews	e20788e121	update copyrights	2014-01-16 15:19:24 +11:00
Tinderbox User	6ea2385360	regen master	2014-01-16 01:05:38 +00:00
Mark Andrews	75e5062bc5	#include <isc/print.h>	2014-01-15 12:30:50 +11:00
Tinderbox User	bf0266f286	update copyright notice	2014-01-14 23:46:22 +00:00
Evan Hunt	ba751492fc	[master] native PKCS#11 support 3705. [func] "configure --enable-native-pkcs11" enables BIND to use the PKCS#11 API for all cryptographic functions, so that it can drive a hardware service module directly without the need to use a modified OpenSSL as intermediary (so long as the HSM's vendor provides a complete-enough implementation of the PKCS#11 interface). This has been tested successfully with the Thales nShield HSM and with SoftHSMv2 from the OpenDNSSEC project. [RT #29031]	2014-01-14 15:40:56 -08:00
Mark Andrews	07fb9b8330	3704. [protocol] Accept integer timestamps in RRSIG records. [RT #35185 ]	2014-01-14 16:12:30 +11:00
Mark Andrews	fef19ce621	fix for pre C99 compiler	2014-01-13 17:07:52 +11:00
Tinderbox User	2cf1d5b098	update copyright notice	2014-01-12 23:46:23 +00:00
Mark Andrews	fb756ba304	3703. [func] Prefetch about to expire records if they are queried for, see prefetch option for details. [RT #35041]	2014-01-12 21:29:15 +11:00
Tinderbox User	9c8c1a0485	regen master	2014-01-12 01:04:54 +00:00
Tinderbox User	f70a10508f	update copyright notice	2014-01-11 23:46:17 +00:00
Evan Hunt	7d2b185f16	[master] new dnssec-coverage options 3702. [func] 'dnssec-coverage -l' option specifies a length of time to check for coverage; events further into the future are ignored. 'dnssec-coverage -z' checks only ZSK events, and 'dnssec-coverage -k' checks only KSK events. (Thanks to Peter Palfrader.) [RT #35168]	2014-01-10 17:53:21 -08:00
Tinderbox User	990d0e893f	regen master	2014-01-11 01:05:06 +00:00
Tinderbox User	7a50e338b5	regen	2014-01-10 20:22:53 +00:00
Mark Andrews	a7c412f37c	update copyrights	2014-01-11 07:07:56 +11:00
Evan Hunt	1bb2f53b9f	[master] fix win32 build problems	2014-01-10 10:58:06 -08:00
Mark Andrews	ff6de396a9	3701. [func] named-checkconf can now suppress the printing of shared secrets by specifying '-x'. [RT #34465]	2014-01-10 16:56:36 +11:00
Evan Hunt	57a46f4b19	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-01-09 19:05:46 -08:00
Evan Hunt	789252d55f	[master] stats improvements 3700. [func] Allow access to subgroups of XML statistics via special URLs http://<server>:<port>/xml/v3/server, /zones, /net, /tasks, /mem, and /status. [RT #35115] 3699. [bug] Improvements to statistics channel XSL stylesheet: the stylesheet can now be cached by the browser; section headers are omitted from the stats display when there is no data in those sections to be displayed; counters are now right-justified for easier readability. [RT #35117]	2014-01-09 18:46:25 -08:00
Tinderbox User	431a83fb29	update copyright notice	2014-01-09 23:46:35 +00:00
Mark Andrews	d4eb30fa2d	stop spamming system logs	2014-01-09 16:23:40 +11:00
Evan Hunt	080977753e	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2014-01-08 18:28:49 -08:00
Tinderbox User	b29285b88f	regen master	2014-01-09 01:05:03 +00:00
Evan Hunt	e851ea8260	[master] replace memcpy() with memmove(). 3698. [cleanup] Replaced all uses of memcpy() with memmove(). [RT #35120]	2014-01-08 16:39:05 -08:00
Tinderbox User	869a7fe8e0	update copyright notice	2014-01-08 23:46:09 +00:00
Evan Hunt	2f0c7f1de7	[master] removed reference to "auto-dnssec create"	2014-01-08 11:33:25 -08:00
Francis Dupont	89bf0dc793	update OpenSSL patches (1.0.0k -> 1.0.0l, 1.0.1e -> 1.0.1f) [#35158 ]	2014-01-07 12:16:35 +01:00
Mark Andrews	d0e3216c21	3697. [bug] Handle "." as a search list element when IDN support is enabled. [RT #35133]	2014-01-06 12:34:28 +11:00
Tinderbox User	e8914b47a2	update copyright notice	2014-01-05 23:46:12 +00:00
Mark Andrews	e9649ece3b	3696. [bug] dig failed to handle AXFR style IXFR responses which span multiple messages. [RT #35137]	2014-01-06 06:22:30 +11:00
Tinderbox User	9c61ab2c99	update copyright notice	2013-12-21 23:46:16 +00:00
Evan Hunt	c14ba71070	[master] warn if key-directory doesn't exist 3694. [bug] Warn when a key-directory is configured for a zone, but does not exist or is not a directory. [RT #35109]	2013-12-20 14:57:03 -08:00
Mark Andrews	fa467e60c5	3693. [security] memcpy was incorrectly called with overlapping ranges resulting in malformed names being generated on some platforms. This could cause INSIST failures when serving NSEC3 signed zones. [RT #35120]	2013-12-20 10:58:32 +11:00
Tinderbox User	7c329be7c0	update copyright notice	2013-12-15 23:46:14 +00:00
Tinderbox User	eade480b33	update copyright notice	2013-12-13 23:46:17 +00:00
Evan Hunt	0606c47750	[master] correct dispatch address/port check 3690. [bug] Iterative responses could be missed when the source port for an upstream query was the same as the listener port (53). [RT #34925]	2013-12-12 22:39:12 -08:00
Evan Hunt	9b895f30f1	[master] fix insecure delegation across static-stub zones 3689. [bug] Fixed a bug causing an insecure delegation from one static-stub zone to another to fail with a broken trust chain. [RT #35081]	2013-12-12 22:19:33 -08:00
Tinderbox User	3f9791eac4	regen master	2013-12-12 01:05:00 +00:00
Tinderbox User	de77dcc2c1	update copyright notice	2013-12-11 23:47:38 +00:00
Evan Hunt	4e1d84a33c	typo	2013-12-11 14:00:07 -08:00
Evan Hunt	0bbe3273a2	[master] dnssec-signzone -Q 3686. [func] "dnssec-signzone -Q" drops signatures from keys that are still published but no longer active. [RT #34990]	2013-12-11 13:25:21 -08:00
Evan Hunt	445a354e63	[master] fix 'rndc refresh' in inline-signing zones 3685. [bug] "rndc refresh" didn't work correctly with slave zones using inline-signing. [RT #35105]	2013-12-11 12:59:04 -08:00
Mark Andrews	99c3e8e09c	cleanup	2013-12-10 09:31:38 +11:00
Mark Andrews	06a0b00bb6	use snprintf; check the result of putstr	2013-12-10 08:55:26 +11:00
Mark Andrews	cc35438d96	install named-rrchecker (cherry picked from commit 918be56b8c4dbc6c993f2aee883fc5cc0a40ee73)	2013-12-09 12:41:08 +11:00
Tinderbox User	79812068ff	update copyright notice	2013-12-06 23:47:28 +00:00
Mark Andrews	7d65cbaca0	3684. [bug] The list of included files would grow on reload. [RT 35090]	2013-12-07 09:44:45 +11:00
Mark Andrews	53f70575bd	silence compiler warnings	2013-12-06 17:38:25 +11:00
Mark Andrews	2bdfb330af	update copyrights	2013-12-05 15:04:53 +11:00
Tinderbox User	4f9cb7bd58	regen master	2013-12-05 01:04:59 +00:00
Tinderbox User	5465b124f1	update copyright notice	2013-12-04 23:46:51 +00:00
Evan Hunt	bee9a28af0	[master] clearer "not found" message for rndc commands 3683. [cleanup] Add a more detailed "not found" message to rndc commands which specify a zone name. [RT #35059]	2013-12-04 12:47:56 -08:00
Curtis Blackburn	8009525601	3682. [bug] Correct the behavior of rndc retransfer to allow inline-signing slave zones to retain NSEC3 parameters instead of reverting to NSEC [RT #34745]	2013-12-04 12:26:20 -06:00
Mark Andrews	545b8a7295	remove redundent assignment	2013-12-04 16:12:43 +11:00
Mark Andrews	c3c8823fed	3681. [port] Update the Windows build system to support feature selection and WIN64 builds. This is a work in progress. [RT #34160]	2013-12-04 12:47:23 +11:00
Evan Hunt	2c2be89824	[master] buffer could overflow in rndc zonestatus 3680. [bug] Ensure buffer space is available in "rndc zonestatus". [RT #35084]	2013-12-02 15:38:24 -08:00
Evan Hunt	fb507315d4	[master] dig could miss tcp connections when cleaning up 3679. [bug] dig could fail to clean up TCP sockets still waiting on connect(). [RT #35074]	2013-12-02 13:34:23 -08:00
Mark Andrews	49ae04f6ee	3677. [bug] 'nsupdate' leaked memory if 'realm' was used multiple times. [RT #35073]	2013-11-28 06:45:30 +11:00
Evan Hunt	d999ca28d4	[master] check hint files in named-checkconf -z 3676. [bug] "named-checkconf -z" now checks zones of type hint and redirect as well as master. [RT #35046]	2013-11-25 12:26:53 -08:00
Evan Hunt	2667746d5d	[master] silence warning	2013-11-18 16:01:39 -08:00
Evan Hunt	5255b631b1	[master] previous commit incomplete	2013-11-18 15:59:53 -08:00
Evan Hunt	2b57986603	[master] win32 portability fix	2013-11-18 15:46:24 -08:00
Evan Hunt	b21865572d	[master] add named-rrchecker to win32 build	2013-11-18 14:58:15 -08:00
Mark Andrews	225146b2c8	3674. [bug] RPZ zeroed ttls if the query type was '*'. [RT #35026 ]	2013-11-18 11:22:59 +11:00
Mark Andrews	ced4f794cf	check expected responses	2013-11-15 13:22:48 +11:00
Mark Andrews	3ac9ef6a6d	move forwarder server to 10.53.0.5	2013-11-15 13:16:51 +11:00
Tinderbox User	c8714f6798	Merge branch 'master' of ssh://repo.isc.org/proj/git/prod/bind9	2013-11-15 01:01:24 +00:00
Tinderbox User	432d8fa3b4	update copyright notice	2013-11-14 23:46:24 +00:00
Mark Andrews	0b565f6060	adjust EDNS query returned status warning message	2013-11-14 22:38:29 +11:00
Evan Hunt	434bfc3dfa	[master] "in-view" zone option 3673. [func] New "in-view" zone option allows direct sharing of zones between views. [RT #32968]	2013-11-13 20:35:40 -08:00
Mark Andrews	9800974419	fix dereference before null check warning	2013-11-14 12:31:25 +11:00
Tinderbox User	2a663662d1	Merge branch 'master' of ssh://repo.isc.org/proj/git/prod/bind9	2013-11-14 01:01:16 +00:00
Evan Hunt	0618287859	[master] allow setting local addr in dns_client 3672. [func] Local address can now be specified when using dns_client API. [RT #34811]	2013-11-13 10:52:22 -08:00
Mark Andrews	c4004ada2a	adjust sync point	2013-11-13 15:44:54 +11:00
Tinderbox User	03c0efc689	regen master	2013-11-13 01:04:50 +00:00
Mark Andrews	6b0434299b	3671. [bug] Don't allow dnssec-importkey overwrite a existing non-imported private key.	2013-11-13 12:01:09 +11:00
Tinderbox User	3b7b634d56	update copyright notice	2013-11-12 23:46:31 +00:00
Jeremy C. Reed	f4bd7d27a6	Fix misspellings. Spell out month date while here.	2013-11-12 07:08:44 -06:00
Jeremy C. Reed	0bda84553a	Fix misspelling (at least use common spelling).	2013-11-12 07:08:02 -06:00
Jeremy C. Reed	8012d70ea4	Fix misspelling. Spell out month date while here.	2013-11-12 07:06:13 -06:00
Mark Andrews	eb5e0b8dec	3670. [bug] Address read after free in server side of lwres_getrrsetbyname. [RT #29075]	2013-11-12 15:00:03 +11:00
Mark Andrews	04e33823c4	address uninitialised variable	2013-11-09 14:08:40 +11:00
Mark Andrews	015f044f7f	remove copyright noticed	2013-11-09 13:55:49 +11:00
Tinderbox User	97c299486a	update copyright notice	2013-11-08 23:46:19 +00:00
Tinderbox User	ca5ee98300	regen master	2013-11-08 01:04:47 +00:00
Tinderbox User	56474e9d28	update copyright notice	2013-11-07 23:46:18 +00:00
Tinderbox User	3afd0ff662	regen master	2013-11-07 01:04:45 +00:00
Mark Andrews	2048955015	3667. [func] dig: add support to keep the TCP socket open between successive queries (+[no]keepopen). [RT #34918]	2013-11-07 10:50:01 +11:00
Mark Andrews	49c1e0d18d	3666. [func] Add a tool, named-rrchecker, for checking the syntax of individual resource records. This tool is intended to be called by provisioning systems so that the front end does not need to be upgraded to support new DNS record types. [RT #34778]	2013-11-07 10:41:47 +11:00
Mark Andrews	938aea1dc4	address memory leak in change #3662 , force format matching, attempt to address coverity false positives	2013-10-26 10:04:36 +11:00
Francis Dupont	7aa21a491d	Update OpenSSL PKCS#11 patches. [RT #34855 ]	2013-10-25 17:51:39 +02:00
Mark Andrews	7f0e47b3c2	%ld.%06g -> %ld.%06d	2013-10-25 12:53:24 +11:00
Tinderbox User	ecc420b283	update copyright notice	2013-10-24 23:46:20 +00:00
Mark Andrews	6100b17699	3662. [bug] 'host' could die if a UPD query timed out. [RT #34870 ]	2013-10-25 10:09:33 +11:00
Tinderbox User	77b7c54f1a	regen master	2013-10-13 01:04:48 +00:00
Mark Andrews	cbadc440b9	typos	2013-10-13 11:12:43 +11:00
Mark Andrews	a379c8c108	3659. [port] solaris: don't add explict dependancies/rules for python programs as make won't use the implicit rules. [RT #34835]	2013-10-02 14:01:12 +10:00
Mark Andrews	7433a204d3	3658. [port] linux: Address platform specific compilation issue when libcap-devel is installed. [RT #34838]	2013-09-26 15:26:43 +10:00
Mark Andrews	1a4725bef2	3657. [port] Some readline clones don't accept NULL pointers when calling add_history. [RT #34842]	2013-09-26 08:25:09 +10:00
Mark Andrews	c9ee72cb3a	3656. [bug] Treat a all zero netmask as invalid when generating the localnets acl. [RT #34687]	2013-09-26 07:40:34 +10:00
Mark Andrews	fb623f9a07	3655. [cleanup] Simplify TCP message processing when requesting a zone transfer. [RT #34825]	2013-09-25 09:57:34 +10:00
Mark Andrews	00043fc284	3653. [func] Create delegations for all "children" of empty zones except "forward first". [RT #34826]	2013-09-25 09:40:21 +10:00
Mark Andrews	50c67f588e	remove blank (cherry picked from commit 75aa3c6f2ada5dcc657d0858ee4544c7997d9840)	2013-09-23 09:47:30 +10:00
Mark Andrews	9a7f89279e	remove unnecessary assignment	2013-09-22 23:21:54 +10:00
Mark Andrews	9fa2a0deed	3652. [bug] Address bug with rpz-drop policy. [RT #34816 ]	2013-09-21 17:27:43 +10:00
Tinderbox User	bcbb556868	update copyright notice	2013-09-19 23:46:20 +00:00
Evan Hunt	c7965f84c2	[master] comment nzf files 3649. [cleanup] Include a comment in .nzf files, giving the name of the associated view. [RT #34765]	2013-09-19 15:37:09 -07:00
Mark Andrews	88a6dc33b7	only generate DSA/ECDSA signatures in named if we have a source of randomness and only on specific platforms	2013-09-19 10:40:38 +10:00
Mark Andrews	7667dd1a03	call zone_settimer; sub test failure was not being detected (cherry picked from commit `ebd7900670`)	2013-09-18 12:57:46 +10:00
Mark Andrews	2c089bf6d2	whitspace	2013-09-16 10:14:07 +10:00
Tinderbox User	a989ffdbb3	update copyright notice	2013-09-10 23:46:14 +00:00
Evan Hunt	78f20eda3c	[master] clean up tests, update .gitignore	2013-09-09 19:37:17 -07:00
Mark Andrews	5bdb12d2c6	assignment not read	2013-09-09 14:05:04 +10:00
Mark Andrews	3d3aa9cde6	use -r rather then -f	2013-09-09 12:19:30 +10:00
Mark Andrews	23c73a1848	only test dsa if we have a random device	2013-09-09 11:42:58 +10:00
Tinderbox User	ea37fee48a	regen master	2013-09-06 01:04:47 +00:00
Tinderbox User	63737247d1	update copyright notice	2013-09-05 23:46:16 +00:00
Mark Andrews	cb69994ff8	3645. [protocol] Use case sensitive compression when responding to queries. [RT #34737]	2013-09-05 12:22:34 +10:00
Evan Hunt	690bd6bf5d	[master] fix inline test, add importkey to win32 build	2013-09-04 18:56:50 -07:00
Tinderbox User	d2bdd5b314	regen master	2013-09-05 01:04:31 +00:00
Tinderbox User	473d3168f0	update copyright notice	2013-09-04 23:46:16 +00:00
Tinderbox User	c986916269	regen master	2013-09-04 22:49:18 +00:00
Mark Andrews	5b9469c0db	test for ECDSAP256SHA256 support	2013-09-04 22:33:31 +10:00
Mark Andrews	0c91911b4d	3642. [func] Allow externally generated DNSKEY to be imported into the DNSKEY management framework. A new tool dnssec-importkey is used to this. [RT #34698]	2013-09-04 13:53:02 +10:00
Mark Andrews	b5f4cc132e	3641. [bug] Handle changes to sig-validity-interval settings better. [RT #34625]	2013-09-04 13:45:00 +10:00
Mark Andrews	8afea636ab	3640. [bug] ndots was not being checked when searching. Only continue searching on NXDOMAIN responses. Add the ability to specify ndots to nslookup. [RT #34711]	2013-09-04 13:24:11 +10:00
Mark Andrews	d6f99498d6	3639. [bug] Treat type 65533 (KEYDATA) as opaque except when used in a key zone. [RT #34238]	2013-09-04 13:14:06 +10:00
Mark Andrews	92f2cf45ce	style	2013-09-01 17:08:09 +10:00
Tinderbox User	4b2c089cd8	update copyright notice	2013-08-19 23:46:14 +00:00
Mark Andrews	601d1a9aad	remove dead code	2013-08-19 12:43:47 +10:00
Mark Andrews	997c2c5116	3636. [bug] Automatic empty zones now behave better with forward only "zones" beneath them. [RT #34583]	2013-08-19 09:18:28 +10:00
Tinderbox User	33d6c4a086	update copyright notice	2013-08-16 23:46:11 +00:00
Mark Andrews	e548e07a9a	3636. [bug] Automatic empty zones now behave better with forward only "zones" beneath them. [RT #34583]	2013-08-16 13:54:23 +10:00
Tinderbox User	377b774598	update copyright notice	2013-08-15 23:46:17 +00:00
Mark Andrews	7cd9d53c8c	don't print out result as it is not meaningful here	2013-08-16 09:44:30 +10:00
Mark Andrews	d1e22676de	3635. [bug] Signatures were not being removed from a zone with only KSK keys for a algorithm. [RT #24439]	2013-08-15 13:37:07 +10:00
Mark Andrews	0e1dfb8ff5	3634. [func] Report build-id in rndc status. Report build-id when building from a git repository. [RT #20422]	2013-08-15 12:41:52 +10:00
Mark Andrews	8e091f3d3e	3633. [cleanup] Refactor OPT processing in named to make it easier to support new EDNS options. [RT #34414]	2013-08-15 12:01:12 +10:00
Mark Andrews	7ace327795	3632. [bug] Signature from newly inactive keys were not being removed. [RT #32178]	2013-08-15 10:48:05 +10:00
Mark Andrews	06ace051e7	3631. [bug] Remove spurious warning about missing signatures when qtype is SIG. [RT #34600]	2013-08-15 08:04:58 +10:00
Tinderbox User	9054d0bb03	regen master	2013-08-13 01:04:39 +00:00
Mark Andrews	75ae74f8fd	3629. [func] Allow the printing of cryptographic fields in DNSSEC records by dig to be suppressed (dig +nocrypto). [RT #34534]	2013-08-12 15:37:51 +10:00
Mark Andrews	16bd30ae69	3628. [func] Report DNSKEY key id's when dumping the cache. [RT #34533]	2013-08-12 14:38:26 +10:00
Mark Andrews	df0892aea6	3627. [bug] RPZ changes were not effective on slaves. [RT #34450 ]	2013-08-09 13:23:01 +10:00
Tinderbox User	f378953f3b	update copyright notice	2013-08-07 23:46:12 +00:00
Mark Andrews	f45f654185	3625. [bug] Don't send notify messages to machines outside of the test setup.	2013-08-07 15:48:55 +10:00
Evan Hunt	3cea62e3df	[master] fix bad test output when server fails	2013-07-25 11:15:53 -07:00
Evan Hunt	d640b4a0ab	[master] perf: eliminate cache stats attach/detach 3622. [tuning] Eliminate an unnecessary lock when incrementing cache statistics. [RT #34339]	2013-07-25 10:51:31 -07:00
Tinderbox User	44c016134f	update copyright notice	2013-07-13 23:46:06 +00:00
Evan Hunt	9a32b8d8f8	[master] add a sleep to prevent intermittent test failure	2013-07-13 15:30:56 -07:00
Evan Hunt	960958c610	[master] silence warning	2013-07-12 19:05:09 -07:00
Tinderbox User	50464a3398	update copyright notice	2013-07-12 23:46:05 +00:00
Evan Hunt	421d4a0647	[master] rpz work 3620. [func] Added "rpz-client-ip" policy triggers, enabling RPZ responses to be configured on the basis of the client IP address; this can be used, for example, to blacklist misbehaving recursive or stub resolvers. [RT #33605] 3619. [bug] Fixed a bug in RPZ with "recursive-only no;" [RT #33776]	2013-07-12 14:46:47 -07:00
Evan Hunt	0b4ed61d20	[master] added missing file	2013-07-12 00:01:33 -07:00
Tinderbox User	dbd8673fa0	update copyright notice	2013-07-11 23:46:13 +00:00
Evan Hunt	0949306cb9	[master] check include file mtimes 3618. [func] "rndc reload" now checks modification times of include files as well as master files to determine whether to skip reloading a zone. [RT #33936]	2013-07-11 16:32:36 -07:00
Evan Hunt	964bdcd7ad	[master] don't go nonresponsive during "rndc reload" 3617. [bug] Named was failing to answer queries during "rndc reload" [RT #34098]	2013-07-11 10:54:21 -07:00
Evan Hunt	c174d5c13c	[master] portability fix 3614. [port] Check for <linux/types.h>. [RT #34162]	2013-07-10 20:44:58 -07:00
Tinderbox User	77b1d950a6	update copyright notice	2013-07-10 23:46:10 +00:00
Evan Hunt	1d26c6b9b8	[master] count the test cases correctly	2013-07-09 22:52:43 -07:00
Evan Hunt	927e4c9fec	[master] address race conditions with removing inline zones 3513. [bug] named could crash when deleting inline-signing zones with "rndc delzone". [RT #34066]	2013-07-09 17:39:21 -07:00
Tinderbox User	892506b681	update copyright notice	2013-07-08 23:46:07 +00:00
Evan Hunt	26bda028ad	[master] add missing binaries to BINDInstall 3610. [cleanup] win32: Some executables had been omitted from the installer. [RT #34116]	2013-07-08 10:31:42 -07:00
Mark Andrews	9d69017bc6	3607. [bug] dnssec-keygen had broken 'Invalid keyfile' error message. [RT #34045]	2013-07-03 15:41:48 +10:00
Evan Hunt	4ba84a5bdb	[master] use egrep as solaris doesn't like grep -E	2013-07-01 14:08:31 -07:00
Tinderbox User	ccee394812	regen master	2013-07-01 17:56:30 +00:00
Evan Hunt	9d4ec6d2c5	[master] "flushtree -all" no longer optional Updated CHANGES note: 3606. [func] "rndc flushtree" now flushes matching records in the address database and bad cache as well as the DNS cache. (Previously only the DNS cache was flushed.) [RT #33970]	2013-06-30 18:53:48 -07:00
Mark Andrews	ea899f501b	check if target == NULL	2013-06-30 21:46:19 +10:00
Tinderbox User	94479b3834	regen master	2013-06-27 01:04:50 +00:00
Tinderbox User	9c5faa2ba8	update copyright notice	2013-06-26 23:46:14 +00:00
Evan Hunt	9fa5a723e1	[master] "rndc flushtree -all <name>" 3606. [func] "rndc flushtree -all" flushes matching records in the ADB and bad cache as well as the DNS cache. (Without the "-all" option, flushtree will still only flush records from the DNS cache.) [RT #33970]	2013-06-26 14:59:32 -07:00
Evan Hunt	f42c0dcca8	[master] win32 fixes 3605. [port] win32: Addressed several compatibility issues with newer versions of Visual Studio. [RT #33916] Squashed commit of the following: commit 4127af15f85da90cf2bd3a0c5a558daae89e833a Author: Francis Dupont <fdupont@isc.org> Date: Tue Jun 25 22:41:53 2013 +0200 make the last change to be text commit 21ef4891b9ee3e3aefb45d4c80d5cb7ec78f264f Author: Curtis Blackburn <ckb@isc.org> Date: Tue Jun 25 12:35:08 2013 -0500 [rt33916] re-worded for easier reading commit 83828e47e62fea4070441e645ba8fed338255ceb Author: Francis Dupont <fdupont@isc.org> Date: Mon Jun 24 16:08:11 2013 +0200 introduce a VCRedistPath env var commit 0337f2554f168993a65945e78c2879e9bfca5293 Author: Francis Dupont <fdupont@isc.org> Date: Sun Jun 23 01:23:26 2013 +0200 _adjust_fdiv for VS < 2010 commit 375fdd5c06be276b0ff0ad589c0e22b809339fe9 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 16:27:04 2013 +0200 move to MSVC v1600 as it still breaks on VS 2010 commit bfcaf72071e9d8df1d0ce0c5f05b69acd51bf698 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:57:35 2013 +0200 WIN32: avoid addrinfo redef commit 18504c3e50b11e66a0b573c7cb3d61094bfa5b52 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:54:38 2013 +0200 WIN32: fseek/ftell commit f9a4fdccc5ab1c74c64412fb76da7dfd161787b2 Author: Francis Dupont <fdupont@isc.org> Date: Thu Jun 20 15:13:01 2013 +0200 fix WIN32 error redefs in net.h (isc ad lwres libs)	2013-06-26 14:38:35 -07:00
Francis Dupont	1761ecb90f	Added to PKCS#11 openssl patches a value len attribute in DH derive key. [RT #33928]	2013-06-24 09:32:52 +02:00
Evan Hunt	31d95f1095	[master] typo in dig	2013-06-19 15:21:20 -07:00
Mark Andrews	945ce145e0	Use extended regular expression as HPUX doesn't like grep -w '$TXT\\|ANY$'	2013-06-17 12:59:50 +10:00
Evan Hunt	be3f14af79	[master] fix system test failure - needed to specify session key file	2013-06-15 01:39:23 -07:00
Tinderbox User	53e8ebc8f0	update copyright notice	2013-06-14 23:46:13 +00:00
Evan Hunt	b7e40659ef	[master] rebuild resigning heaps when loading map files 3597. [bug] Ensure automatic-resigning heaps are reconstructed when loading zones in map format. [RT #33381]	2013-06-14 10:16:10 -07:00
Evan Hunt	8f1e278931	[master] updated win32 build 3596. [port] Updated win32 build documentation, added dnssec-verify. [RT #22067]	2013-06-13 17:31:41 -07:00
Tinderbox User	1443158c11	update copyright notice	2013-06-13 23:46:13 +00:00
Tinderbox User	91a45a8ad5	regen master	2013-06-13 01:04:55 +00:00
Mark Andrews	8e15d5eb3a	3593. [func] Update EDNS processing to better track remote server capabilities. [RT #30655]	2013-06-12 11:31:30 +10:00
Tinderbox User	0ccb0e98c7	regen master	2013-06-12 01:04:55 +00:00
Evan Hunt	c51e6991fd	[master] corrected closing tag	2013-06-10 18:48:30 -07:00
Evan Hunt	1b2a4ce2b1	[master] move rndc command documentation to "man rndc" 3592. [doc] Moved documentation of rndc command options to the rndc man page. [RT #33506]	2013-06-10 14:23:14 -07:00
Tinderbox User	1ec9fe2c3c	update copyright notice	2013-06-08 23:46:57 +00:00
Evan Hunt	89be55dc90	[master] improve RRL handling of deferrals and slipped NXDOMAIN 3590. [bug] When using RRL on recursive servers, defer rate-limiting until after recursion is complete; also, use correct rcode for slipped NXDOMAIN responses. [RT #33604]	2013-06-08 13:17:33 -07:00
Mark Andrews	c6eb92beb1	3589. [func] Report serial numbers in when starting zone transfers. Report accepted NOTIFY requests including serial. [RT# 33037]	2013-06-08 09:49:03 +10:00
Evan Hunt	bf0441a339	[master] fix memory leak in sigchase 3588. [bug] dig: addressed a memory leak in the sigchase code that could cause a shutdown crash. [RT #33733]	2013-06-07 11:15:36 -07:00
Tinderbox User	fb05b13c6f	update copyright notice	2013-06-06 23:46:20 +00:00
Mark Andrews	8144dc702b	3587. [func] 'named -g' now checks the logging configuration but does not use it. [RT #33473]	2013-06-06 11:08:16 +10:00
Mark Andrews	7ee225cf90	3586. [buf] Handle errors in xmlDocDumpFormatMemoryEnc. [RT #33706 ]	2013-06-06 10:55:08 +10:00
Tinderbox User	099fa63e55	update copyright notice	2013-06-05 23:46:14 +00:00
Evan Hunt	5f1dc0d505	[master] add "-clean" option to "rndc delzone" 3585. [func] "rndc delzone -clean" option removes zone files when deleting a zone. [RT #33570]	2013-06-04 21:26:29 -07:00
Mark Andrews	1e34fe9044	3582. [bug] Silence false positive warning regarding missing file directive for inline slave zones. [RT #33662]	2013-06-04 11:34:03 +10:00
Curtis Blackburn	30d6dc14e9	3581. [bug] Changed the tcp-listen-queue default to 10. [RT #33029 ]	2013-06-03 14:00:03 -05:00
Mark Andrews	0193e63da9	3579. [maint] Updates to PKCS#11 openssl patches, supporting versions 0.9.8y, 1.0.0k, 1.0.1e [RT #33463]	2013-05-30 12:40:13 +10:00
Mark Andrews	17a00ff54c	3578. [bug] 'rndc -c file' now fails if 'file' does not exist. [RT #33571]	2013-05-30 11:09:29 +10:00
Tinderbox User	6d4487398e	update copyright notice	2013-05-29 23:46:19 +00:00
Mark Andrews	5f238c3c64	3577. [bug] Handle zero TTL values better. [RT #33411 ]	2013-05-29 18:10:11 +10:00
Evan Hunt	f3c8e48b95	[master] change RRL log category 'query-errors' 3575. [func] Changed the logging category for RRL events from 'queries' to 'query-errors'. [RT #33540]	2013-05-21 12:20:54 -07:00
Tinderbox User	197486d6a9	regen master	2013-05-16 01:04:57 +00:00
Mark Andrews	744589ff64	3574. [doc] The 'hostname' keyword was missing from server-id description in the named.conf man page. [RT #33476]	2013-05-15 13:01:52 +10:00
Evan Hunt	58e3c41441	[master] fix typo	2013-05-14 19:42:19 -07:00
Tinderbox User	be899a549d	update copyright notice	2013-05-10 23:46:06 +00:00
Curtis Blackburn	428dd5c588	3573. [bug] "rndc addzone" and "rndc delzone" incorrectly handled zone names containing punctuation marks and other nonstandard characters. [RT #33419]	2013-05-10 16:12:27 -05:00
Tinderbox User	2147c42301	update copyright notice	2013-05-03 23:46:12 +00:00
Evan Hunt	af9f195c9e	[master] add product description 3568. [cleanup] Add a product description line to the version file, to be reported by named -v/-V. [RT #33366]	2013-05-03 15:08:45 -07:00
Evan Hunt	e47208b6fb	[master] silence ccc-analyzer 3567. [bug] Silence clang static analyzer warnings. [RT #33365]	2013-05-03 14:31:27 -07:00
Evan Hunt	34f3693b93	[master] log forwarded updates 3566. [func] Log when forwarding updates to master. [RT #33240]	2013-05-03 14:05:32 -07:00
Evan Hunt	1a076410c2	[master] fix corrupt map file handling 3564. [bug] Improved handling of corrupted map files. [RT #33380]	2013-05-03 14:00:12 -07:00
Evan Hunt	03b5d2689d	[master] add hash to map files 3562. [func] Update map file header format to include a SHA-1 hash of the database content, so that corrupted map files can be rejected at load time. [RT #32459]	2013-05-01 22:20:02 -07:00
Mark Andrews	93aba6dcec	3561. [bug] dig: issue a warning if an EDNS query returns FORMERR or NOTIMP. Adjust usage message. [RT #33363]	2013-05-01 14:53:16 +10:00
Tinderbox User	7105104b6e	update copyright notice	2013-04-30 06:39:16 +00:00
Tinderbox User	055fd5fcba	update copyright notice	2013-04-30 05:03:43 +00:00
Tinderbox User	954e43e605	update copyright notice	2013-04-30 04:51:59 +00:00
Tinderbox User	7be2f6d5df	regen master	2013-04-30 04:23:14 +00:00
Mark Andrews	26bb3b7a67	3559. [func] Check that both forms of Sender Policy Framework records exist or do not exist. [RT #33355]	2013-04-30 13:49:41 +10:00
Tinderbox User	5655174c2c	update copyright notice	2013-04-29 23:46:13 +00:00
Mark Andrews	bbc868ccbb	undo conditional compile	2013-04-29 17:01:06 +10:00
Mark Andrews	f49613e8a7	add #ifdef DLZ	2013-04-29 16:51:23 +10:00
Mark Andrews	9a785712f1	3558. [bug] IXFR of a DLZ stored zone was broken. [RT #33331 ]	2013-04-29 15:46:54 +10:00
Mark Andrews	ec8a802114	3557. [bug] Reloading redirect zones was broken. [RT #33292 ]	2013-04-29 15:20:09 +10:00
Tinderbox User	7bf14f4945	regen master	2013-04-29 01:04:45 +00:00
Tinderbox User	9f40a78322	update copyright notice	2013-04-28 23:46:07 +00:00
Tinderbox User	3caa22fe4d	regen master	2013-04-28 01:04:43 +00:00
Evan Hunt	be0982e9e4	[master] correct man volume for isc-hmac-fixup	2013-04-27 16:40:43 -07:00
Evan Hunt	0e932023c4	[master] resume overriding rrl test failures	2013-04-25 20:02:59 -07:00
Evan Hunt	a6d43d18b1	[master] fixed several RRL issues 3554. [bug] RRL failed to correctly rate-limit upward referrals and failed to count dropped error responses in the statistics. [RT #33225]	2013-04-25 14:42:44 -07:00
Mark Andrews	d3c8ba219f	3552. [bug] Wrong getopt option string for 'nsupdate -r'. [RT# 33280]	2013-04-19 23:46:41 +10:00
Mark Andrews	b4914b3d69	3551. [bug] resolver.querydscp[46] were uninitialized. [RT #32686 ]	2013-04-19 12:36:02 +10:00
Mark Andrews	78e179da20	egrep was not precise enough	2013-04-13 22:34:35 +10:00
Tinderbox User	08df939613	update copyright notice	2013-04-11 23:46:07 +00:00
Mark Andrews	45b727f651	silence coverity warnings	2013-04-11 17:07:50 +10:00
Evan Hunt	b99bfa184b	[master] unify internal and export libraries 3550. [func] Unified the internal and export versions of the BIND libraries, allowing external clients to use the same libraries as BIND. [RT #33131]	2013-04-10 13:49:57 -07:00
Mark Andrews	cc444c73d5	add sleep 1 to loop	2013-04-10 21:35:36 +10:00
Tinderbox User	526cc7c2c0	update copyright notice	2013-04-09 23:46:07 +00:00
Mark Andrews	1cc4695f0d	3547. [bug] Some malformed unknown rdata records were not properly detected and rejected. [RT #33129]	2013-04-08 09:55:14 +10:00
Mark Andrews	3a6d62c59f	3546. [func] Add EUI48 and EUI64 types. [RT #33082 ]	2013-04-05 09:07:28 +11:00
Mark Andrews	c2838610c6	s/-e/-x/	2013-04-05 07:37:40 +11:00
Tinderbox User	f9adb48aea	update copyright notice	2013-04-03 23:46:07 +00:00
Mark Andrews	085496379f	add SAMPLE to the list of varables to be exported (cherry picked from commit `cf3e838fd3`)	2013-04-04 07:27:21 +11:00
Mark Andrews	8013077aa7	3541. [bug] The parts if libdns was not being properly initialized in when built in libexport mode. [RT #33028]	2013-04-03 17:27:40 +11:00
Tinderbox User	d458ef4acb	update copyright notice	2013-04-02 23:46:03 +00:00
Tinderbox User	49f29a1d55	add dnssec-coverage docs	2013-04-02 04:24:55 +00:00
Evan Hunt	73b3019760	[master] address windows build warnings	2013-03-28 15:37:47 -07:00
Evan Hunt	96139421d6	[master] win32 portability fixes	2013-03-26 23:01:13 -07:00
Tinderbox User	313b0ea9f2	update copyright notice	2013-03-23 23:46:06 +00:00
Mark Andrews	464e32079c	address warnings	2013-03-23 19:41:34 +11:00
Evan Hunt	67adc03ef8	[master] add DSCP support 3535. [func] Add support for setting Differentiated Services Code Point (DSCP) values in named. Most configuration options which take a "port" option (e.g., listen-on, forwarders, also-notify, masters, notify-source, etc) can now also take a "dscp" option specifying a code point for use with outgoing traffic, if supported by the underlying OS. [RT #27596]	2013-03-22 14:05:33 -07:00
Evan Hunt	4bf686cf5d	[master] zone parsing broken with embedded null 3534. [bug] Extra text after an embedded NULL was ignored when parsing zone files. [RT #32699]	2013-03-21 19:30:10 -07:00
Tinderbox User	ad67363430	update copyright notice	2013-03-21 23:46:12 +00:00
Mark Andrews	15d970cb23	remove broken redundant test	2013-03-21 12:38:16 +11:00
Tinderbox User	f9aef05653	regen master	2013-03-21 01:04:40 +00:00
Mark Andrews	4ce2b98434	add files generated by configure	2013-03-21 10:23:16 +11:00
Mark Andrews	06a05efc07	3529. [func] Named now listens on both IPv4 and IPv6 interfaces by default. Named previously only listened on IPv4 interfaces by default unless named was running in IPv6 only mode. [RT #32945]	2013-03-21 10:16:12 +11:00
Evan Hunt	831f59eb43	[master] add dnssec-coverage tool 3528. [func] New "dnssec-coverage" command scans the timing metadata for a set of DNSSEC keys and reports if a lapse in signing coverage has been scheduled inadvertently. (Note: This tool depends on python; it will not be built or installed on systems that do not have a python interpreter.) [RT #28098]	2013-03-20 14:39:13 -07:00
Evan Hunt	a13aa526be	[master] add xml/v2 and xml/v3 URIs 3527. [compat] Add a URI to allow applications to explicitly request a particular XML schema from the statistics channel, returning 404 if not supported. [RT #32481]	2013-03-18 20:40:40 -07:00
Mark Andrews	030993f41b	version 3.1	2013-03-19 13:12:34 +11:00
Tinderbox User	be8fedce2a	update copyright notice	2013-03-16 23:46:03 +00:00
Evan Hunt	741ebf1004	[master] make dst test work outside srcdir 3526. [cleanup] Set up dependencies for unit tests correctly during build. [RT #32803]	2013-03-15 07:35:56 -07:00
Tinderbox User	cfa2326b5c	update copyright notice	2013-03-14 23:46:11 +00:00
Tinderbox User	b2f07642fd	regen master	2013-03-14 01:04:33 +00:00
Evan Hunt	4eb998928b	[master] algorithm flexibility for rndc 3525. [func] Support for additional signing algorithms in rndc: hmac-sha1, -sha224, -sha256, -sha384, and -sha512. The -A option to rndc-confgen can be used to select the algorithm for the generated key. (The default is still hmac-md5; this may change in a future release.) [RT #20363]	2013-03-13 17:53:11 -07:00
Mark Andrews	1f06836037	make work without json	2013-03-14 11:13:39 +11:00
Evan Hunt	feb067b25a	[master] add JSON statistics channel 3524. [func] Added an alternate statistics channel in JSON format, when the server is built with the json-c library: http://[address]:[port]/json. [RT #32630]	2013-03-13 14:24:50 -07:00
Evan Hunt	72c86c105a	[master] DLZ modules: filesystem, ldap, wildcard 3523. [contrib] Ported filesystem and ldap DLZ drivers to dynamically-loadable modules, and added the "wildcard" module based on a contribution from Vadim Goncharov <vgoncharov@nic.ru>. [RT #23569]	2013-03-11 17:03:46 -07:00
Evan Hunt	21a7fde6ba	[master] handle servfail at DLZ zone apex 3522. [bug] DLZ lookups could fail to return SERVFAIL when they ought to. [RT #32685]	2013-03-11 15:54:03 -07:00
Mark Andrews	fae66f41c5	wait for upstream transfer to complete	2013-03-08 17:14:03 +11:00
Mark Andrews	3a0da183bb	3520. [bug] 'mctx' was not being referenced counted in some places where it should have been. [RT #32794]	2013-03-08 14:38:03 +11:00
Tinderbox User	fe43ef9e63	update copyright notice	2013-03-07 23:47:05 +00:00
Evan Hunt	c1e88f8d86	[master] fix rndc replay protection 3519. [func] Full replay protection via four-way handshake is now mandatory for rndc clients. Very old versions of rndc will no longer work. [RT #32798]	2013-03-07 15:14:07 -08:00
Mark Andrews	550c92405f	3515. [port] '%T' is not portable in strftime(). [RT #32763 ]	2013-03-06 15:34:10 +11:00
Tinderbox User	40b42978b9	update copyright notice	2013-03-05 23:46:17 +00:00
Mark Andrews	f3350b6718	silence compiler warnings	2013-03-05 23:41:22 +11:00
Mark Andrews	ab8ea5c51e	check that the lwresd server has started before querying it (cherry picked from commit 661f1197a200bdd3d2411e9b02a46b93fb1fb083)	2013-03-05 17:24:19 +11:00
Mark Andrews	6d3f44700d	silence compiler warning	2013-03-05 14:49:31 +11:00
Tinderbox User	7b5130bd12	update copyright notice	2013-03-04 23:46:20 +00:00
Evan Hunt	beeb5a03d9	[master] bump stats version	2013-03-04 13:12:39 -08:00
Evan Hunt	33b8db1bb3	[master] fix keysizes in confgen 3514. [bug] The ranges for valid key sizes in ddns-confgen and rndc-confgen were too constrained. Keys up to 512 bits are now allowed for most algorithms, and up to 1024 bits for hmac-sha384 and hmac-sha512. [RT #32753]	2013-03-04 12:14:01 -08:00
Evan Hunt	19b037bcb9	[master] dig -u: microsecond time output 3513. [func] "dig -u" prints times in microseconds rather than milliseconds. [RT #32704]	2013-03-04 12:09:28 -08:00
Evan Hunt	9ffd0f0270	[master] "rndc validation check" 3512. [func] "rndc validation check" reports the current status of DNSSEC validation. [RT #21397]	2013-03-04 12:00:51 -08:00
Tinderbox User	5da851d171	update copyright notice	2013-03-01 23:46:19 +00:00
Evan Hunt	4f9f8fa052	[master] add "config-time" to stats/status 3510. [func] "rndc status" and XML statistics channel now report server start and reconfiguration times. [RT #21048]	2013-03-01 15:07:40 -08:00
Curtis Blackburn	53a4e18582	3509. [cleanup] Added a product line to version file to allow for easy naming of different products (BIND vs BIND ESV, for example). [RT #32755]	2013-03-01 16:24:12 -06:00
Mark Andrews	3fadb11b94	SIZE_MAX is not available on all platforms	2013-03-01 01:12:17 +00:00
Mark Andrews	8e5fce1f9c	update copyrights	2013-03-01 10:39:29 +11:00
Tinderbox User	25bccd181c	regen	2013-02-28 23:31:38 +00:00
Mark Andrews	8a896bc645	fix configure.in to remove warnings when running autoconf only compile geoip.o when requested. silence compiler warnings	2013-03-01 09:58:32 +11:00
Evan Hunt	fbe155373c	[master] change text when no graph visible	2013-02-28 11:03:20 -08:00
Evan Hunt	2b8dac9916	[master] fix XSL glitch with empty query data 3507. [bug] Statistics channel XSL had a glitch when attempting to chart query data before any queries had been received. [RT #32620]	2013-02-28 09:58:13 -08:00
Evan Hunt	2a184ff865	[master] accept >4g max-{,a}cache-size 3506. [func] When setting "max-cache-size" and "max-acache-size", the keyword "unlimited" is no longer defined as equal to 4 gigabytes (except on 32-bit platforms); it means literally unlimited. [RT #32358] 3505. [bug] When setting "max-cache-size" and "max-acache-size", larger values than 4 gigabytes could not be set explicitly, though larger sizes were available when setting cache size to 0. This has been corrected; the full range is now available. [RT #32358]	2013-02-28 09:29:12 -08:00
Mark Andrews	189efe774e	check isc_task_beginexclusive result	2013-02-28 13:23:05 +11:00
Evan Hunt	501941f0b6	[master] add geoip support 3504. [func] Add support for ACLs based on geographic location, using MaxMind GeoIP databases. Based on code contributed by Ken Brownfield <kb@slide.com>. [RT #30681]	2013-02-27 17:19:39 -08:00
Mark Andrews	3acc5d636e	move declaration of dumparg	2013-02-28 11:21:54 +11:00
Tinderbox User	bea3baa50c	update copyright notice	2013-02-27 23:46:03 +00:00
Mark Andrews	f7c4825501	silence compiler warning by adding a assertion	2013-02-28 09:47:49 +11:00
Mark Andrews	90e1d62889	check that inlineslave.bk and inlineslave.bk.signed exist	2013-02-28 09:01:16 +11:00
Evan Hunt	85f89d58a5	[master] zone-statistics no => none 3502. [func] zone-statistics: "no" is now a synonym for "none", instead of "terse". [RT #29165]	2013-02-27 13:37:54 -08:00
Evan Hunt	c805bfa11a	[master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-02-27 12:08:07 -08:00
Evan Hunt	40a7e85f3e	[master] better zone-statistics syntax 3501. [func] zone-statistics now takes three options: full, terse, and none. "yes" and "no" are retained as synonyms for full and terse, respectively. [RT #29165]	2013-02-27 11:53:58 -08:00
Mark Andrews	a8af512dc3	fix assignment not read	2013-02-28 06:48:06 +11:00
Mark Andrews	cab2b0d941	remove unreachable line	2013-02-28 06:47:26 +11:00
Mark Andrews	b3d3dd301b	ensure test starting conditions are met	2013-02-27 17:02:16 +11:00
Evan Hunt	68357e5241	[master] avoid double-free in rrl - RRL could assert when freeing qname - also, changed test addresses from 192.168/16 to 192.0/16	2013-02-26 19:15:11 -08:00
Evan Hunt	d654c95c96	[master] force 0 exit status from rrl system test RRL system test seems to be highly dependent on system speed. We are leaving it running and reporting results, but forcing it to return PASS unless one or more of the servers crashed or could not start.	2013-02-26 18:46:57 -08:00
Mark Andrews	609b8d0817	update copyrights	2013-02-27 12:27:58 +11:00
Tinderbox User	b9a067ba40	update copyright notice	2013-02-26 23:45:57 +00:00
Mark Andrews	30314ce9c5	'!' is not portable.	2013-02-26 23:11:43 +11:00
Mark Andrews	bdc7cf66ff	3498. [bug] zone statistics for zones which matched a potential empty zone could have their zone-statistics setting overridden. reviewed via jabber.	2013-02-26 15:47:26 +11:00
Mark Andrews	118bdfd8c4	3497. [func] When deleting a slave/stub zone using 'rndc delzone' report the files that were being used so they can be cleaned up if desired. [RT #27899] Squashed commit of the following: commit 0e4e69d0c3153fe94aaa375b908cf7e3e45b5059 Author: Mark Andrews <marka@isc.org> Date: Thu Feb 21 17:01:44 2013 +1100 report the zones to be removed rather than removing them commit 5d247ac592eef64c4c467d99af4983b8c1ff998f Author: Mark Andrews <marka@isc.org> Date: Wed Feb 20 15:05:47 2013 +1100 remove slave/stub files when deleting a zone using delzone	2013-02-26 14:48:21 +11:00
Tinderbox User	f97d56e757	update copyright notice	2013-02-25 23:46:03 +00:00
Evan Hunt	94315060c2	[master] RPZ speedup (phase 2, multiple RPZ's) 3495. [func] Support multiple response-policy zones, while improving RPZ performance. [RT #32476]	2013-02-25 12:46:51 -08:00
Evan Hunt	55e5c51e66	[master] DNS RRL 3494. [func] DNS RRL: Blunt the impact of DNS reflection and amplification attacks by rate-limiting substantially- identical responses. [RT #28130]	2013-02-25 12:45:56 -08:00
Tinderbox User	573d78f3d5	update copyright notice	2013-02-21 23:45:56 +00:00
Evan Hunt	df925e6c66	[master] add zone memory context pools 3492. [bug] Fixed a regression in zone loading performance due to lock contention. [RT #30399]	2013-02-20 21:39:05 -08:00
Evan Hunt	a81ae06ed3	[master] forbid inline-signing slave with no file 3491. [bug] Slave zones using inline-signing must specify a file name. [RT #31946]	2013-02-20 14:01:31 -08:00
Evan Hunt	2425d8bb7c	[master] truncate logged rdata if too long 3490. [bug] When logging RDATA during update, truncate if it's too long. [RT #32365] cherry picked from: commit 16ddb566e5a5b57bf925adef2b5543dddc1de49b commit cd97e0c23b09f38aac49aabab66ee13c68b7a3f3 commit d087fa982649c081d58c5bb16e63da3428e2b89d commit d0795bdffef57612dd7654ffd09c9f4216eee2c8	2013-02-20 13:54:52 -08:00
Mark Andrews	3c7df84b20	3488. [bug] Use after free error with DH generated keys. [RT #32649 ]	2013-02-18 20:26:26 +11:00
Tinderbox User	32dc577940	update copyright notice	2013-02-16 23:46:02 +00:00
Mark Andrews	c9297d3759	3487. [bug] Change 3444 was not complete. There was a additional place where the NOQNAME proof needed to be saved. [RT #32629] Squashed commit of the following: commit cdef844f57bd3eb30b1f77135b89b6f9360e8bee Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:27:14 2013 +1100 whitespace commit 60eb7e3f6cdd102d6aaf0fb4ada8c552576e4502 Author: Mark Andrews <marka@isc.org> Date: Sat Feb 16 00:19:51 2013 +1100 return noqname proof with +cd and dlv	2013-02-16 07:45:43 +11:00
Evan Hunt	0b8bd3a4ae	[master] address TKEY bugs 3486. [bug] named could crash when using TKEY-negotiated keys that had been deleted and then recreated. [RT #32506] commit 6a48b9999766d26cddc7cef275cd984b7d53c014 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:59:46 2013 -0800 [rt32506] don't dump key if dump is unimplemented commit d0ae0f44b460bab2e8bb24bba683d3ef69ec1765 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 14:42:25 2013 -0800 [rt32506] make sure LRU needs adjusting before adjusting it commit 0437f8f06b1cb72a6d5e3c30f27febca23846d95 Author: Evan Hunt <each@isc.org> Date: Tue Jan 29 12:28:28 2013 -0800 [rt32506] demonstrate bugs in tkey test	2013-02-15 10:19:50 -08:00
Evan Hunt	6330174f80	[master] fixed another readline link error	2013-02-15 10:15:09 -08:00
Evan Hunt	ef37222aaf	[master] fixed readline link error, ubuntu 13.04	2013-02-15 10:08:19 -08:00
Mark Andrews	1d3c89483c	check for view->adbstats != NULL rather than view->resstats	2013-02-12 17:09:11 +11:00
Tinderbox User	4486374631	update copyright notice	2013-02-08 23:45:50 +00:00
Evan Hunt	855f5935ad	[master] clarify "server counters" section in XSL	2013-02-08 15:16:10 -08:00
Evan Hunt	b748b5e2c2	[master] fix cache/ADB stats in new stats schema new stats that were added for 9.10 (changes 3319-3326) were not all updated when the new statistics schema was merged (change 3418). 3484. [bug] Some statistics were incorrectly rendered in XML. [RT #32587]	2013-02-08 14:53:14 -08:00
Evan Hunt	cdd99263f2	[master] whitespace	2013-02-08 11:43:17 -08:00
Tinderbox User	543ab56b01	update copyright notice	2013-02-07 23:45:51 +00:00
JINMEI Tatuya	ab7a67829f	dig +nssearch now prints name servers that don't have address records.	2013-02-07 14:14:26 -08:00
Tinderbox User	8bbfb495a2	regen master	2013-01-26 01:04:30 +00:00
Tinderbox User	17131a9459	update copyright notice	2013-01-25 23:45:56 +00:00
Tinderbox User	43b9448395	regen master	2013-01-25 01:04:51 +00:00
Curtis Blackburn	ca385a75a8	fixed CHANGES	2013-01-24 16:37:53 -06:00
Curtis Blackburn	c91c439f80	3475. [func] expand logging when adding records via DDNS update [RT #32365]	2013-01-24 16:35:23 -06:00
Evan Hunt	6225380ca6	[master] check signing time on signed db - rndc zonestatus now checks the signing time on the signed, not raw, db when looking at inline-signing zones 3476. [bug] "rndc zonestatus" could report a spurious "not found" error on inline-signing zones. [RT #29226]	2013-01-24 14:24:59 -08:00
Evan Hunt	c9611b4573	[master] change "fast" to "map" 3475. [cleanup] Changed name of 'map' zone file format (previously 'fast'). [RT #32458]	2013-01-24 14:20:48 -08:00
Tinderbox User	dd59fe01c9	regen master	2013-01-24 01:04:22 +00:00
Evan Hunt	8f7d23a25c	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-01-23 15:48:47 -08:00
Tinderbox User	3aaa526a94	update copyright notice	2013-01-23 23:45:55 +00:00
Evan Hunt	ffff5d6792	[master] fix dns_request_createvia assert 3474. [bug] nsupdate could assert when the local and remote address families didn't match. [RT #22897]	2013-01-23 15:39:05 -08:00
Evan Hunt	9a0dd99a75	[master] fix incorrect nsec3 check - check for NSEC3 in empty nodes when not due to optout delegations - fixed typo in output ("Bad record NSEC record") - incidentally fixed an error in signzone that caused an incorrect warning about missing DNSKEYs when using -S and -3 together 3473. [bug] dnssec-signzone/verify could incorrectly report an error condition due to an empty node above an opt-out delegation lacking an NSEC3. [RT #32072]	2013-01-23 14:56:00 -08:00
Evan Hunt	2154c01912	[master] default -U to ncpus, not to -n 3471. [bug] The number of UDP dispatches now defaults to the number of CPUs even if -n has been set to a higher value. [RT #30964]	2013-01-22 18:07:05 -08:00
Evan Hunt	a0a1003895	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2013-01-22 16:13:09 -08:00
Evan Hunt	214836c184	[master] dump masterfile after successful xfrin 3470. [bug] Slave zones could fail to dump when successfully refreshing after an initial failure. [RT #31276]	2013-01-22 15:49:50 -08:00
Tinderbox User	b95504f9a7	update copyright notice	2013-01-22 23:45:48 +00:00
Evan Hunt	cbd1fa092e	[master] DLZ fixes - handle malformed answers from DLZ better: - handle dlz_lookup errors better: when the first lookup of a name returns an unexpected failure code, we return it to the caller rather than continuing on to look up the wildcard. we now only continue processing if the return from the first lookup was either ISC_R_SUCCESS or ISC_R_NOTFOUND. - improved backward-compatibility for dlz_version: added a DLZ_DLOPEN_AGE value indicating how many versions back from the current DLZ_DLOPEN_VERSION named will support	2013-01-22 15:13:08 -08:00
Tinderbox User	0a8a14d513	update copyright notice	2013-01-21 23:45:48 +00:00
Evan Hunt	a631c8d9b8	[master] prevent ixfr/ns1 being removed	2013-01-21 14:16:15 -08:00
Evan Hunt	30a7cf3957	[master] add 10.53.0.8 address	2013-01-21 12:36:41 -08:00
Tinderbox User	5ac5300fdf	update copyright notice	2013-01-17 23:46:25 +00:00
Evan Hunt	71f8edccba	[master] fix DNS64 with RPZ-remapped A records 3468. [security] RPZ rules to generate A records (but not AAAA records) could trigger an assertion failure when used in conjunction with DNS64. [RT #32141]	2013-01-17 11:23:30 -08:00
Curtis Blackburn	c8803902d6	[bug] Added checks in dnssec-keygen and dnssec-settime to check for delete date < inactive date. [RT #31719]	2013-01-17 10:59:16 -06:00
Tinderbox User	dc3d68d6fe	update copyright notice	2013-01-11 23:46:02 +00:00
Mark Andrews	c8bfcec3c9	silence compiler warning	2013-01-11 17:38:58 +11:00
Mark Andrews	b5d3508e8a	silence compiler warning	2013-01-11 17:30:21 +11:00
Evan Hunt	b3d116c299	[master] fixed clientinfo version check 3466. [contrib] Corrected the DNS_CLIENTINFOMETHODS_VERSION check in DLZ example driver. [RT #32275]	2013-01-10 19:57:21 -08:00
Evan Hunt	dc6cea0448	[master] update openssl pkcs11 patches 3464. [maint] Updates to PKCS#11 openssl patches, supporting versions 0.9.8x, 1.0.0j, 1.0.1c [RT #29749]	2013-01-10 18:21:50 -08:00
Tinderbox User	48cbc7cd1e	regen master	2013-01-11 01:04:23 +00:00
Tinderbox User	5c6b95ba1b	update copyright notice	2013-01-10 23:46:00 +00:00
Tinderbox User	d8620c7234	regen master	2013-01-10 20:19:56 +00:00
Evan Hunt	3b9d9ad58b	[master] doc clarification about dig & resolv.conf	2013-01-10 11:48:46 -08:00
Mark Andrews	4801931443	3461. [bug] Negative responses could incorrectly have AD=1 set. [RT #32237]	2013-01-10 23:09:08 +11:00
Mark Andrews	dab4aac006	3460. [bug] Only link against readline where needed. [RT #29810 ]	2013-01-10 17:34:28 +11:00
Evan Hunt	578e319607	[master] add -J option to checkzone/compilezone 3459. [func] Added -J option to named-checkzone/named-compilezone to specify the path to the journal file. [RT #30958]	2013-01-09 16:56:46 -08:00
Tinderbox User	b941edbeb5	update copyright notice	2013-01-09 23:45:53 +00:00
Mark Andrews	c07c2a862e	3458. [bug] Return FORMERR when presented with a overly long domain named in a request. [RT #29682]	2013-01-10 10:30:15 +11:00
Mark Andrews	f1c1aab2c9	3457. [protocol] Add ILNP records (NID, LP, L32, L64). [RT #31836 ]	2013-01-10 08:26:31 +11:00
Mark Andrews	1a592aae29	test eighth interface	2013-01-09 19:08:59 +11:00
Tinderbox User	afe7d4b934	update copyright notice	2013-01-08 23:45:50 +00:00
Mark Andrews	fc0bfa07c7	3453. [bug] 'rndc addzone' of a zone with 'inline-signing yes;' failed. [RT #31960]	2013-01-09 07:40:27 +11:00
Tinderbox User	49503f1d9f	update copyright notice	2013-01-05 23:45:47 +00:00
Mark Andrews	25b95d31ce	3450. [bug] Stop logfileconfig system test spam system logs. [RT #32315] Squashed commit of the following: commit ad40744e2c7dc253b70857bb229def5dd194b418 Author: Mark Andrews <marka@isc.org> Date: Fri Jan 4 17:24:45 2013 +1100 logfileconfig spams the system log files	2013-01-06 07:56:10 +11:00
Tinderbox User	6fe42ff85c	update copyright notice	2013-01-04 23:45:53 +00:00
Evan Hunt	cb0a74fd8d	[master] show signzone errors in pkcs11 test	2013-01-03 19:55:34 -08:00
Evan Hunt	222d38735f	[master] allow-query-on works now 3448. [bug] The allow-query-on ACL was not processed correctly. [RT #29486]	2013-01-03 15:13:45 -08:00
Tinderbox User	d91e5a75df	update copyright notice	2013-01-02 23:45:51 +00:00
Tinderbox User	fd6efb2c62	regen	2013-01-02 23:30:08 +00:00
Tinderbox User	19e593a7a5	regen master	2013-01-02 01:04:26 +00:00
Tinderbox User	024cf50d12	update copyright notice	2013-01-01 23:45:47 +00:00
Tinderbox User	b7d5c2f26d	regen	2013-01-01 23:30:07 +00:00
Tinderbox User	cafd7a121f	regen master	2013-01-01 01:04:27 +00:00
Mark Andrews	ae395e5f97	remove extranous rdata in nxrrset call as it is not ingnored in Net::DNS 0.70	2012-12-21 14:16:41 +11:00
Mark Andrews	ab91ece513	sign_tcp_continuation doesn't work with the newer versions of Net:DNS. Code has been submitted so we don't need to use the sign_tcp_continuation hack in future.	2012-12-21 12:58:58 +11:00
Tinderbox User	9191b6c9e8	update copyright notice	2012-12-20 23:45:48 +00:00
Mark Andrews	b372587363	TSIG no longer has a mac_size method; arcount no longer need to be adjusted	2012-12-21 00:30:14 +11:00
Mark Andrews	f127a35b6c	adjust test to account for blank owner after origin now being rejected	2012-12-19 14:37:56 +11:00
Mark Andrews	4040ff974c	-H not -i sets iterations	2012-12-19 14:18:05 +11:00
Mark Andrews	58c543d840	remove redundant $ORIGINs	2012-12-19 13:34:31 +11:00
Mark Andrews	8462dfb880	3443. [bug] The NOQNAME proof was not being returned from cached insecure responses. [RT #21409]	2012-12-19 09:55:02 +11:00
Mark Andrews	03958ad4b9	3442. [port] Net::DNS 0.69 introduced a non backwards compatible change. [RT #32216]	2012-12-19 08:46:36 +11:00
Mark Andrews	b6f22cc32f	Net::DNS 0.{70,71} doesn't force the TTL to zero for yxrrset, nxrrset and rr_del	2012-12-18 11:43:46 +11:00
Mark Andrews	6301757d64	don't wipe out named.run when restarting	2012-12-14 17:39:22 +11:00
Mark Andrews	040dc29236	throw fatal error on realloc failure	2012-12-10 10:16:28 +11:00
Tinderbox User	b8e2e5dd86	update copyright notice	2012-12-08 23:45:51 +00:00
Mark Andrews	ecf5a60f1e	isc_buffer_init -> isc_buffer_constinit	2012-12-09 07:14:27 +11:00
Mark Andrews	fe898ea0ee	DIG -> $DIG	2012-12-08 15:35:01 +11:00
Mark Andrews	e85702ce5b	3438. [bug] Don't accept unknown data escape in quotes. [RT #32031 ] Squashed commit of the following: commit 7ad3daade513c94a1c92ee7c91c112f161d13ef4 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 15:03:44 2012 +1100 look at the second token to determine if a TXT record in of unknown format or not commit 7df32138462646f6aee84ffa56d02ac24ec8d672 Author: Mark Andrews <marka@isc.org> Date: Mon Dec 3 12:42:18 2012 +1100 '"\#"' was incorrectly being treated as a unknown data escape sequence.	2012-12-08 14:05:32 +11:00
Mark Andrews	6f7abb89ec	3437. [bug] isc_buffer_init -> isc_buffer_constinit to initialise buffers with constant data. [RT #32064] Squashed commit of the following: commit 3433b96bf11f8c90ccbe412f01d02a6d8bbc2d33 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:41:16 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit c22dbcc1122a0a44f7b46068e0ccbc25353a57d5 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:38:39 2012 +1100 isc_buffer_init -> isc_buffer_constinit commit 900820416c45c1887d0d22d7a010df60a903bd56 Author: Mark Andrews <marka@isc.org> Date: Sat Dec 8 12:24:19 2012 +1100 remove isc_buffer_reconstinit commit f815711c17b05f9961786a90b9bae902d3c01494 Author: Mark Andrews <marka@isc.org> Date: Wed Dec 5 15:42:57 2012 +1100 add isc_buffer_constinit	2012-12-08 12:48:57 +11:00
Tinderbox User	aae306e914	update copyright notice	2012-12-07 23:45:48 +00:00
Mark Andrews	a28f8028dc	put declarations at start of block	2012-12-07 23:49:03 +11:00
Tinderbox User	222f5e0697	update copyright notice	2012-12-06 23:45:48 +00:00
Evan Hunt	abff0f462a	[master] pass client info to DLZ findzone method 3434. [bug] Pass client info to the DLZ findzone() entry point in addition to lookup(). This makes it possible for a database to answer differently whether it's authoritative for a name depending on the address of the client. [RT #31775]	2012-12-06 12:59:36 -08:00
Evan Hunt	177be355d4	[master] handle ISC_R_NOMORE correctly 3433. [bug] dlz_findzone() did not correctly handle ISC_R_NOMORE. [RT #31172]	2012-12-06 12:41:58 -08:00
Evan Hunt	2b8bed6681	[master] multiple-dlz/dlz-nxdomain 3432. [func] Multiple DLZ databases can now be configured. DLZ databases are searched in the order configured, unless set to "search no", in which case a zone can be configured to be retrieved from a particular DLZ database by using a "dlz <name>" option in the zone statement. DLZ databases can support type "master" and "redirect" zones. [RT #27597]	2012-12-06 12:39:52 -08:00
Evan Hunt	de5890da9b	[master] support all algorithms in ddns-confgen 3431. [bug] ddns-confgen: Some valid key algorithms were not accepted. [RT #31927]	2012-12-05 16:36:58 -08:00
Mark Andrews	377e7f19ef	silence clang --analyser false positive	2012-12-05 11:43:07 +11:00
Mark Andrews	3ff483ed84	loop 'I:checking expired signatures were updated' test	2012-12-03 09:30:38 +11:00
Mark Andrews	68ba0155ab	silence clang --analyze warning	2012-12-01 09:19:29 +11:00
Mark Andrews	0524248a3b	signed/unsigned comparision	2012-11-30 23:35:34 +11:00
Mark Andrews	4151109b94	silence clang --analyze warnings	2012-11-30 18:50:38 +11:00
Tinderbox User	600cfd566a	update copyright notice	2012-11-29 23:45:50 +00:00
Evan Hunt	706219e547	[master] add timezone to dig 3428. [cleanup] dig: Add timezone to date output. [RT #2269]	2012-11-29 09:07:28 -08:00
Mark Andrews	d2d3c7e02b	use consistent type in sizeof and ultimate type cast	2012-11-30 00:58:59 +11:00
Evan Hunt	2f21adbc6a	[master] fix dig +trace output 3427. [bug] dig +trace incorrectly displayed name server addresses instead of names. [RT #31641]	2012-11-28 19:05:50 -08:00
Tinderbox User	d9eb3dcfa1	update copyright notice	2012-11-28 23:45:44 +00:00
Mark Andrews	bde9e26d13	add -U 4	2012-11-29 08:12:51 +11:00
Evan Hunt	a1dbf90381	[master] remove libgen.h from dnssec tools we no longer use basename() or dirname()	2012-11-27 19:45:51 -08:00
Mark Andrews	53e52b463e	adjust looping threshold from 10 to 15	2012-11-28 12:05:56 +11:00
Evan Hunt	8f9a5ae817	[master] correct checkds test	2012-11-27 15:03:55 -08:00
Evan Hunt	4d077be135	[master] clarify dnssec-checkds output 3426. [bug] dnssec-checkds: Clearer output when records are not found. [RT #31968]	2012-11-27 14:52:36 -08:00
Mark Andrews	b13b452020	3424. [func] dnssec-dsfromkey now emits the hash without spaces. [RT #31951] Squashed commit of the following: commit 7369da0369e1de1fe6c5b5f84df8848b9a0984eb Author: Mark Andrews <marka@isc.org> Date: Fri Nov 23 17:24:04 2012 +1100 dupped/created reversed in log message commit 0cef5faaf3ac22b00ed0f95b6bb7a146cf4cac15 Author: Mark Andrews <marka@isc.org> Date: Fri Nov 23 13:40:14 2012 +1100 remove space from DS hash	2012-11-27 14:22:28 +11:00
Mark Andrews	c22f43b829	limit the number of udp dispatches when testing to 4	2012-11-26 22:11:27 +11:00
Tinderbox User	0a330c717a	regen master	2012-11-26 01:04:39 +00:00
Mark Andrews	b79fc6723b	address dnssec-checkds man page issues	2012-11-26 09:44:26 +11:00
Mark Andrews	8c9d5521e7	3423. [bug] "rndc signing -nsec3param" didn't accept the full range of possible values. Address portability issues. [RT #31938] Squashed commit of the following: commit cdc417909d514903363796085ab3114ef24b7e30 Author: Mark Andrews <marka@isc.org> Date: Thu Nov 22 10:06:01 2012 +1100 address hpux sscanf issues, iterations is a 16 bit field, use %hu rather than %hhd as the values are unsigned	2012-11-22 10:14:41 +11:00
ckb	2786b6c53f	3422. [bug] Added a clear error message for when the SOA does not match the referral. [RT #31281]	2012-11-21 16:44:34 -06:00
Mark Andrews	20b95f5ff6	3421. [bug] Named loops when re-signing if all keys are offline. [RT #31916] Squashed commit of the following: commit f47af0ca6793687b9c8d08fd44b0c091ba5a4f9a Author: Mark Andrews <marka@isc.org> Date: Wed Nov 21 17:45:21 2012 +1100 dns_dns_zonediff_t -> dns_zonediff_t, clarify comment commit 344edefc3ee90856a7ff990abe7971925ba843b2 Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:12:26 2012 +1100 commit the zone changes if a keep was marked as being offline commit cad2c2446ebfc20b6d8c4f6dd0d6596d7106cc0f Author: Mark Andrews <marka@isc.org> Date: Tue Nov 20 13:08:29 2012 +1100 check for looping when re-signing expiring.example	2012-11-21 17:48:57 +11:00
Mark Andrews	8737e0d006	HPUX doesn't support 128 threads	2012-11-18 00:25:39 +11:00
Mark Andrews	c3c30fc43c	force integer output	2012-11-17 23:58:50 +11:00
Mar Andrews	c3b9fad5e3	3420. [bug] Address VPATH compilation issues. [RT #31879 ]	2012-11-17 09:33:46 +00:00
Tinderbox User	38bc0509a7	regen	2012-11-14 23:30:09 +00:00
ckb	aecadaf3b1	3418. [func] New XML schema (version 3.0) for the statistics channel adds query type statistics at the zone level, and flattens the XML tree and uses compressed format to optimize parsing. Includes new XSL that permits charting via the Google Charts API on browsers that support javascript in XSL. The old XML schema has been deprecated. [RT #30023] 3417. [placeholder]	2012-11-14 12:44:15 -06:00
Tinderbox User	bb6f850a5d	update copyright notice	2012-11-13 23:45:44 +00:00
Mark Andrews	55670a1e55	3416. [bug] Named could die on shutdown if running with 128 UDP dispatches per interface. [RT #31743] Squashed commit of the following: commit 1a97c755f8496f65024af0f634c1acf59a0a4252 Author: Mark Andrews <marka@isc.org> Date: Wed Nov 7 07:14:36 2012 +1100 add regression test for RT31743 commit 7b16b5f77fad39478168aac25742823f2fcd825b Author: Mark Andrews <marka@isc.org> Date: Fri Nov 2 23:57:24 2012 +1100 array bounds error when shutting down interface	2012-11-14 07:47:58 +11:00
Mark Andrews	4326ea8b66	use stop.pl to ensure old server is fully shutdown before starting new server	2012-11-08 07:38:13 +11:00
Mark Andrews	30a86ca430	add missing ARPANAME definition	2012-11-06 15:29:01 +11:00
Mark Andrews	4786e693a7	3413. [func] Record the number of DNS64 AAAA RRsets that have been synthesized. [RT #27636] Squashed commit of the following: commit b375c287a3d95ed2eb29977d4347d845f393add7 Author: Evan Hunt <each@isc.org> Date: Wed Oct 24 21:28:04 2012 -0700 [rt27636] add dns64 responses stat counter	2012-11-01 14:23:14 +11:00
Tinderbox User	fcd7c22fdf	update copyright notice	2012-10-31 23:45:49 +00:00
Mark Andrews	bbf31e6b62	More coverity fixes: 3410. [bug] Addressed Coverity warnings. [RT #31626] Squashed commit of the following: commit 6fec07bbb69ead784063052f2099674f8b52c6b3 Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 18:14:35 2012 +1100 use strl{cat,cpy} commit 19a5d3766f3dbc8a2944b21640a8226a89aae7ba Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 14:38:55 2012 +1100 address unchecked xmlTextWriter* calls	2012-11-01 10:22:11 +11:00
Mark Andrews	e7d8a61783	More for: 3410. [bug] Addressed Coverity warnings. [RT #31626 Squashed commit of the following: commit d94f5463f508773a7b027230cd81b61cf8c9cfce Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 11:52:32 2012 +1100 <string.h> -> <isc/string.h> commit d707d6fb739c6e6df90a864141b418a13d3bccc8 Author: Mark Andrews <marka@isc.org> Date: Tue Oct 30 11:48:20 2012 +1100 address coverity warnings	2012-10-30 12:01:39 +11:00
Tinderbox User	0837549bd6	update copyright notice	2012-10-29 23:46:34 +00:00
Mark Andrews	cb761bbd5f	<sys/errno.h> -> <errno.h>	2012-10-30 09:22:57 +11:00
Mark Andrews	f83542787f	3410. [bug] Addressed Coverity warnings. [RT #31626 ] Squashed commit of the following: commit bce2efe66d69d60b746b85df49974ca341723169 Author: Mark Andrews <marka@isc.org> Date: Mon Oct 29 12:59:25 2012 +1100 use 'static dns_rdata_xxxx_t xxxx' commit 704d3c29acbf2dd350a26f2df82a57cb077ba72e Author: Mark Andrews <marka@isc.org> Date: Mon Oct 29 12:35:16 2012 +1100 return ISC_R_NOTFOUND if private record length does not make sense commit 7596610c12c5685336fc0909860173d2fae359af Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:41:17 2012 +1100 check private->length == 5 commit 3836365a3e3e83b057bd940350f032279e080296 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:40:50 2012 +1100 properly set private->length commit a295778ac53109d39ef3a8b233751100edae678b Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:13:30 2012 +1100 check dns_rdata_tostruct result commit e33c37ca9112159e0b2363615bb018d27fa7d1a5 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 21:10:43 2012 +1100 check remove/fopen/chmod return values commit 3a675e0666aae25d1c51f51ec7bd3fbe25545aae Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:59:10 2012 +1100 check isc_socket_accept result commit 696923344f4b07ce0dba4cf2675b1cbb6eba7e8e Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:55:40 2012 +1100 change variable scopes commit b9e9d9ad58270271003e463f10744e0ceaf9ad97 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:53:19 2012 +1100 check inet_pton return value commit 70698e9589da77e3745efb6ea24b8830addd6ae4 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:52:40 2012 +1100 break -> /* NOTREACHED */ commit 88de9de2e8e201ab2fef16a868f241e8206ea826 Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:52:06 2012 +1100 strcpy -> strlcpy commit 6ba79c7cec0e48014cdfa76e8a9406b7a921556e Author: Mark Andrews <marka@isc.org> Date: Sat Oct 27 20:51:26 2012 +1100 check dns_rdata_tostruct return values	2012-10-29 20:04:59 +11:00
Evan Hunt	f46168b879	[master] allow dnssec options in inline-signing slaves 3408. [bug] Some DNSSEC-related options (update-check-ksk, dnssec-loadkeys-interval, dnssec-dnskey-kskonly) are now legal in slave zones as long as inline-signing is in use. [RT #31078]	2012-10-26 16:14:59 -07:00
Evan Hunt	9c659b618f	Merge branch 'master' of ssh://repo/proj/git/prod/bind9	2012-10-24 18:03:54 -07:00
Tinderbox User	a3fb84bd1b	update copyright notice	2012-10-24 23:46:51 +00:00
Evan Hunt	4b3d727d96	[master] remove spurious signatures from glue 3404. [bug] dnssec-signzone: When re-signing a zone, remove RRSIG and NSEC records from nodes that used to be in-zone but are now below a zone cut. [RT #31556]	2012-10-24 15:46:59 -07:00
ckb	24d8211904	[rt25085] 3402. [bug] Correct interface numbers for IPv4 and IPv6 interfaces. [RT #25085]	2012-10-24 14:47:29 -05:00
Evan Hunt	47c5b8af92	[master] silence coverity warnings 3401. [bug] Addressed Coverity warnings. [RT #31484]	2012-10-23 22:04:06 -07:00
Evan Hunt	bcf966e614	[rt31494] add gitID to kit.sh generated tarballs	2012-10-22 12:56:47 -07:00
Tinderbox User	c37fbb91e3	update copyright notice	2012-10-18 23:46:07 +00:00
Mark Andrews	de0fd68097	3398. [bug] SOA parameters were not being updated with inline signed zones if the zone was modified while the server was offline. [RT #29272]	2012-10-19 10:25:06 +11:00
ckb	f3f76f009b	3397. [bug] dig crashed when using +nssearch with +tcp. [RT #25298 ]	2012-10-18 17:50:07 -05:00
Mark Andrews	0fbd29837a	3396. [bug] OPT records were incorrectly removed from signed, truncated responses. [RT #31439]	2012-10-18 13:25:06 +11:00
Tinderbox User	3d4ce9ea27	update copyright notice	2012-10-16 23:46:15 +00:00
Mark Andrews	1c8f2b6dcd	3395. [protocol] Add RFC 6598 reverse zones to built in empty zones list, 64.100.IN-ADDR.ARPA ... 127.100.IN-ADDR.ARPA. [RT #31336]	2012-10-16 12:31:28 +11:00
Mark Andrews	415df3c9c0	test for directory existance before calling find	2012-10-16 10:56:42 +11:00
Mark Andrews	7786d6542b	3393. [bug] 'host -C' could core dump if REFUSED was received. [RT #31381]	2012-10-16 10:42:24 +11:00
Mark Andrews	4b17401c9c	add test support for dropping edns messages (-T dropedns); ignoring edns in queries (-T noedns); variable max UDP (-T maxudp=value)	2012-10-16 10:23:08 +11:00
Mark Andrews	71dfdcbfae	3392. [func] Keep statistics on REFUSED responses. [RT #31412 ]	2012-10-16 10:21:22 +11:00
Mark Andrews	1721e1f2a6	Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9	2012-10-07 11:35:56 +11:00
Tinderbox User	15c7a1bf20	update copyright notice	2012-10-06 23:46:11 +00:00
Mark Andrews	20783a3baf	remove empty directories when cleaning	2012-10-06 17:27:38 +10:00
Mark Andrews	dbf693fdfd	3391. [bug] DNSKEY that encountered a CNAME failed. [RT #31262 ]	2012-10-06 14:56:33 +10:00
Mark Andrews	611dc88768	3390. [bug] Silence clang compiler warnings. [RT #30417 ]	2012-10-06 14:20:45 +10:00
Tinderbox User	aa444144ad	regen master	2012-10-04 01:05:27 +00:00
Tinderbox User	7ce7ecf6bc	update copyright notice	2012-10-03 23:46:17 +00:00
Evan Hunt	41bbb34bc2	fix coverity issues 3388. [bug] Fixed several Coverity warnings. [RT #30996]	2012-10-02 23:44:03 -07:00
Mark Andrews	ecd851b832	add dsdigest	2012-10-03 14:04:48 +10:00
Mark Andrews	22a711df5e	add bin/tests/system/dsdigest/prereq.sh.in	2012-10-03 13:59:50 +10:00
Mark Andrews	058e44186b	3387. [func] Support for a DS digest can be disabled at runtime with disable-ds-digests. [RT #21581]	2012-10-03 12:38:43 +10:00
Tinderbox User	8e3eb3600a	update copyright notice	2012-10-02 23:46:09 +00:00
Mark Andrews	aa49af836c	3385. [bug] named-checkconf didn't detect missing master lists in also-notify clauses. [RT #30810]	2012-10-02 13:06:02 +10:00
Tinderbox User	adb113e235	update copyright notice	2012-09-29 23:46:01 +00:00
Mark Andrews	cc0a2f0283	Add undocumented '-T delay=value' to allow for simulation of remote servers	2012-09-29 13:07:09 +10:00
Evan Hunt	c872f39a00	fixed an exploitable hang bug 3383. [security] A certain combinations of records in the RBT could cause named to hang while populating the additional section of a response. [RT #31090]	2012-09-26 17:09:43 -07:00
Mark Andrews	fec1c61918	3380. [bug] named could die if a non-existant master list was referenced in a also-notify. [RT #31004]	2012-09-26 15:28:46 +10:00
Evan Hunt	05284949f7	handle nonexistent managed-keys-directory 3378. [bug] Handle missing 'managed-keys-directory' better. [RT #30625]	2012-09-25 18:19:17 -07:00
Mark Andrews	2d68e392f3	copyright style	2012-09-20 10:42:24 +10:00
Mark Andrews	953414e971	make tests less timing sensitive by spining	2012-09-18 14:49:58 +10:00
Mark Andrews	5f26ffc2b4	3375. [bug] 'rndc dumpdb' failed on empty caches. [RT #30808 ]	2012-09-14 07:53:19 +10:00
Tinderbox User	14725aff16	update copyright notice	2012-09-12 23:46:13 +00:00
Mark Andrews	82f37b2665	use binary mode for raw/fast	2012-09-12 17:24:45 +10:00
Mark Andrews	59fdf31195	turn binary mode on for raw/fast	2012-09-12 15:28:20 +10:00
Mark Andrews	4118cd4276	3371. [bug] AD=1 should behave like DO=1 when deciding whether to add NS RRsets to the additional section or not. [RT #30479]	2012-08-31 11:20:38 +10:00
Mark Andrews	d0522678a1	don't call out to the internet when running test	2012-08-30 13:53:41 +10:00
Tinderbox User	9b20c5d7ff	regen master	2012-08-24 01:06:01 +00:00
Mark Andrews	26dde51a93	silence warning	2012-08-24 10:42:44 +10:00
Mark Andrews	69eee72e82	unsigned constant	2012-08-24 10:36:29 +10:00
Mark Andrews	f94f6b3c59	unsigned constants	2012-08-24 07:33:32 +10:00
Mark Andrews	8e0a15f42f	3370. [bug] Address use after free while shutting down. [RT #30241 ]	2012-08-22 19:19:30 +10:00
Mark Andrews	d1f43359e4	3379. [bug] nsupdate terminated unexpectedly in interactive mode if built with readline support. [RT #29550]	2012-08-22 13:38:51 +10:00
Tinderbox User	0c156cfa39	update copyright notice	2012-08-17 23:46:06 +00:00
Mark Andrews	076bda8c2e	we didn't catch a zero option at the global level when views are active	2012-08-17 13:40:17 +10:00
Mark Andrews	cfb5aa26dc	silence "t_names.c:130:7: warning: The left expression of the compound assignment is an uninitialized value. The computed value will also be garbage"	2012-08-17 07:23:06 +10:00
Tinderbox User	36a3d08a72	update copyright notice	2012-08-15 23:46:02 +00:00
Evan Hunt	85705b4b5a	allow "forward" and "forwarders" in static-stub 3363. [bug] Need to allow "forward" and "fowarders" options in static-stub zones; this had been overlooked. [RT #30482]	2012-08-15 13:08:15 -07:00
Tinderbox User	23554e8479	update copyright notice	2012-08-14 23:46:02 +00:00
Evan Hunt	820fdd61dd	properly range-check fields that do not allow 0 3362. [bug] Setting some option values to 0 in named.conf could trigger an assertion failure on startup. [RT #27730]	2012-08-13 22:39:42 -07:00
Evan Hunt	8f6d6d72e8	support '-' salt in rndc signing -nsec3param 3361. [bug] "rndc signing -nsec3param" didn't work correctly when salt was set to '-' (no salt). [RT #30099]	2012-08-13 22:24:36 -07:00
Evan Hunt	3f755529ee	address memory leak with bad tsig secret 3359. [bug] An improperly-formed TSIG secret could cause a memory leak. [RT #30607]	2012-08-10 20:15:59 -07:00
Tinderbox User	953692fa1e	update copyright notice	2012-07-25 23:46:04 +00:00
ckb	e7857b5ee0	3356. [bug] Cap the TTL of signed RRsets when RRSIGs are approaching their expiry, so they don't remain in caches after expiry. [RT #26429]	2012-07-25 17:06:34 -05:00
Mark Andrews	3ce2018dfa	3355. [port] Use more portable awk in verify system test.	2012-07-25 12:59:45 +10:00
Tinderbox User	0b637179cc	update copyright notice	2012-07-23 23:46:06 +00:00
Mark Andrews	6eb6af6732	3354. [func] Improve OpenSSL error logging. [RT #29932 ]	2012-07-23 15:08:21 +10:00
Mark Andrews	c965b18690	3353. [bug] Use a single task for task exclusive operations. [RT #29872]	2012-07-19 23:00:21 +10:00
Mark Andrews	16de4bca76	add verify system test	2012-07-19 13:11:42 +10:00
Vernon Schryver	929621dd7d	undo rogue merge on bin/tests/.gitignore add bin/named/include/.gitignore so that `git add` and other commands will not whine about changes in the bin/named/include/named directory	2012-07-09 19:16:11 +00:00
Evan Hunt	b123be9195	fix copyrights in checkds test	2012-07-06 14:24:24 -07:00
ckb	14d4dd1053	added cleanup of test files	2012-07-06 10:00:45 -05:00
Tinderbox User	291a670d12	update copyright notice	2012-07-05 23:45:48 +00:00
ckb	c514f38c80	Conflicts: lib/dns/dst_parse.c lib/isc/win32/file.c	2012-07-05 16:07:31 -05:00

... 24 25 26 27 28 ...

8425 commits