upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-02 21:40:43 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
22532 commits 18 branches 854 tags 440 MiB
Commit graph

6659 commits

Author SHA1 Message Date
Mark Andrews
d610c75100 9.9 doesn't have isc_buffer_reserve 2015-08-18 19:41:35 +10:00
Evan Hunt
ab4fc879d4 [v9_9] improve wire_test.c for large messages 2015-08-17 22:45:15 -07:00
Evan Hunt
05d0d33cb8 [v9_9] timing safe memory comparisons 
4183.	[cleanup]	Use timing-safe memory comparisons in cryptographic
			code. Also, the timing-safe comparison functions have
			been renamed to avoid possible confusion with
			memcmp(). [RT #40148]

(cherry picked from commit 420a43c8d8)
 2015-08-17 18:31:11 -07:00
Mark Andrews
d4f07f0f01 use grep/awk rather than xmllint 2015-08-18 10:22:50 +10:00
Evan Hunt
b479d0f857 [v9_9] win32: vs2015 compliance 2015-08-17 11:37:00 -07:00
Tinderbox User
f37017d0f4 update copyright notice / whitespace 2015-08-16 23:46:35 +00:00
Mark Andrews
a8ac264163 address use after free error 
(cherry picked from commit 6458ad3ab2)
 2015-08-16 20:30:10 +10:00
Tinderbox User
c8b1b9141e update copyright notice / whitespace 2015-08-14 23:46:19 +00:00
Mukund Sivaraman
0ada9e238a Fix assertion failure in parsing UNSPEC(103) RR from text (#40274) 
(cherry picked from commit 984d2bb9e5)
(cherry picked from commit 9a88ab054b)
 2015-08-14 13:35:11 +05:30
Mukund Sivaraman
ee7ee1c4f7 Fix assertion failure in parsing NSAP records from text 
(cherry picked from commit 474921d733)
(cherry picked from commit 9250173510)
 2015-08-14 13:15:25 +05:30
Mark Andrews
1b52fc8df0 4176. [bug] Address race issues with lwresd. [RT #40284] 
(cherry picked from commit 563878539a)
 2015-08-14 15:48:22 +10:00
Tinderbox User
26846a23ab update copyright notice / whitespace 2015-08-12 23:46:15 +00:00
Evan Hunt
1605488758 [v9_9] handle time units in dnssec-coverage -r 
4174.	[bug]		"dnssec-coverage -r" didn't handle time unit
			suffixes correctly. [RT #38444]
 2015-08-12 12:21:20 -07:00
Mark Andrews
b009c5c389 4173. [bug] dig +sigchase was not properly matching the trusted 
key. [RT #40188]

(cherry picked from commit efb028b6c8)
 2015-08-12 19:12:24 +10:00
Mark Andrews
d9ce8a0667 4172. [bug] Named / named-checkconf didn't handle a view of CLASS0. 
[RT #40265]

(cherry picked from commit 151f1bcd5e)
 2015-08-12 19:06:41 +10:00
Evan Hunt
171d830be4 [v9_9] use dns_message_totext() in wire_data 2015-08-10 20:51:51 -07:00
Evan Hunt
6a7a54bca0 [v9_9] use libdns functions to convert rcode and opcode to text 2015-08-10 20:29:01 -07:00
Mark Andrews
c8c6367023 address len being shadowed 
(cherry picked from commit f260e3a188)
 2015-08-11 13:00:29 +10:00
Tinderbox User
376a0b66a9 update copyright notice / whitespace 2015-08-10 23:46:11 +00:00
Evan Hunt
3b56383dde [v9_9] add a "wire_test -d" option to read raw binary data 
4169.	[test]		Added a 'wire_test -d' option to read input as
			raw binary data, for use as a fuzzing harness.
			[RT #40312]
 2015-08-10 14:45:05 -07:00
Evan Hunt
eca0e613de [v9_9] fix an awk portability issue 2015-08-03 14:22:15 -07:00
Tinderbox User
1c74d995a4 update copyright notice / whitespace 2015-08-02 23:46:06 +00:00
Evan Hunt
f73bed07b5 [v9_9] reduce code duplication 2015-08-02 12:21:14 -07:00
Tinderbox User
aa1535671f regen v9_9 2015-07-10 01:12:20 +00:00
Tinderbox User
835eaef8e3 update copyright notice / whitespace 2015-07-09 23:46:11 +00:00
Evan Hunt
ea36796f82 [v9_9] DDoS mitigation features 
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
 2015-07-08 23:00:58 -07:00
Mark Andrews
1ffb96f3dd add comment about +trace and @server 
(cherry picked from commit 2561b2dd84)
 2015-07-09 12:12:38 +10:00
Mark Andrews
2f01090351 4159. [cleanup] Alphabetize dig's help output. [RT #39966] 2015-07-08 09:56:48 +10:00
Tinderbox User
d23960eb33 update copyright notice / whitespace 2015-07-07 23:46:10 +00:00
Mark Andrews
f5386a21a8 4154. [bug] A OPT record should be included with the FORMERR 
response when there is a malformed EDNS option.
                        [RT #39647]

4153.   [bug]           Check that non significant ECS bits are zero on
                        receipt. [RT #39647]
 2015-07-06 16:34:48 +10:00
Mark Andrews
d19dfe8793 make test work for both old and new stats 2015-07-01 10:58:59 +10:00
Tinderbox User
2a77c900b6 update copyright notice / whitespace 2015-06-30 23:46:07 +00:00
Mukund Sivaraman
eb2c433d1f Add prereq.sh check for --enable-newstats 2015-06-30 14:45:27 +05:30
Mukund Sivaraman
d927c02041 Fix build for configure --enable-newstats 2015-06-30 14:45:26 +05:30
Mukund Sivaraman
fc0797977d Fix a bug printing zone names with '/' character in XML and JSON stats (#39873) 
(cherry picked from commit 08f0129732)

Conflicts:
	bin/tests/system/statistics/clean.sh

(cherry picked from commit f69f188b90)

Conflicts:
	bin/named/statschannel.c
	bin/tests/system/statistics/clean.sh
	bin/tests/system/statistics/ns1/named.conf
	bin/tests/system/statistics/tests.sh

Conflicts:
	CHANGES
 2015-06-30 14:45:13 +05:30
Tinderbox User
8780da5841 update copyright notice / whitespace 2015-06-29 23:46:07 +00:00
Mark Andrews
6f02a4e2a6 4147. [bug] Filter-aaaa / filter-aaaa-on-v4 / filter-aaaa-on-v6 
was returning referrals rather than nodata responses
                        when the AAAA records were filtered.  [RT #39843]

(cherry picked from commit 4a61eae651)
 2015-06-29 15:49:19 +10:00
Tinderbox User
2f74d016c6 update copyright notice / whitespace 2015-06-23 23:46:05 +00:00
Mukund Sivaraman
22f467116c Fix parsing of NZFs saved by rndc addzone with view specified (#39845) 
(cherry picked from commit 0439bfedd9)

Conflicts:
	bin/named/server.c
	bin/tests/system/addzone/tests.sh

(cherry picked from commit 8134e7662e)

Conflicts:
	CHANGES
 2015-06-23 15:01:26 +05:30
Tinderbox User
6cd76847a1 update copyright notice / whitespace 2015-06-12 23:46:19 +00:00
Witold Krecicki
ece6e87818 rndc reconfig reports configuration errors the same way rndc reload does [RT #39635] 2015-06-12 11:13:36 +02:00
Tinderbox User
ceed6cbf1a regen v9_9 2015-06-05 01:12:25 +00:00
Evan Hunt
b2d3001654 [v9_9] dig option cleanups 
4132.	[cleanup]	dig: added +rd as a synonym for +recurse,
			added +class as an unabbreviated alternative
			to +cl. [RT #39686]
 2015-06-04 08:56:11 -07:00
Mark Andrews
0abb12c694 unlock T4_mx 
(cherry picked from commit b704d25ff3)
 2015-05-30 17:54:59 +10:00
Tinderbox User
007cc2f36f regen v9_9 2015-05-29 01:12:09 +00:00
Tinderbox User
11884ddefe Merge branch 'v9_9' of ssh://repo.isc.org/proj/git/prod/bind9 into v9_9 2015-05-29 01:08:49 +00:00
Tinderbox User
2a71b08491 update copyright notice / whitespace 2015-05-28 23:46:13 +00:00
Mark Andrews
263a38f27b Revert "link against ISC_OPENSSL_LIBS" 
This is not needed for 9.9.x.

This reverts commit 6035a1c215.
 2015-05-28 13:57:01 +10:00
Mark Andrews
64b34aee39 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] 
(cherry picked from commit e53e202ef3)
 2015-05-28 13:26:19 +10:00
Tinderbox User
baecf74879 regen v9_9 2015-05-28 01:12:04 +00:00