upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-21 06:09:13 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
6041 commits 18 branches 854 tags 440 MiB
Commit graph

6041 commits

This branch
This branch
All branches
Author SHA1 Message Date
Michael Graff
ef653fbdb1 implement 'notify [ yes | no | explicit ]' 2000-07-24 22:59:44 +00:00
Michael Sawyer
998befa9f3 Copyrights entry for update_test.pl stuff 2000-07-24 22:53:54 +00:00
Michael Sawyer
c5272fb330 Merge update_test.pl into system test scripts 2000-07-24 22:53:40 +00:00
Andreas Gustafsson
a7c6c06fad removed 5-second sleep and unnecessary semicolon 2000-07-24 22:05:16 +00:00
Michael Sawyer
36007b707f 346. [func] Add support for .digrc config file, in the 
user's current directory
 2000-07-24 20:50:44 +00:00
Michael Sawyer
1933e4c41f Allow users to place a .digrc file in the current directory which will 
specify defaults.
 2000-07-24 20:46:55 +00:00
Andreas Gustafsson
6f12e3ca45 Restored the "done" variable removed in 1.150 and made 
the result code check after the loop deal with ISC_R_SUCCESS
instead.  The previous fix had the side effect of keeping multiple
answers to non-ANY queries, causing assertion failures in cache_name()
which is not prepared to deal with this situation
 2000-07-24 20:10:26 +00:00
Andreas Gustafsson
8303a2a9ff bumped recursive client quota from 100 to 1000 2000-07-24 19:06:48 +00:00
Andreas Gustafsson
4abad71e79 bumped recursive client quota from 100 to 1000 2000-07-24 18:45:50 +00:00
Michael Sawyer
a056a85de0 Improve searchlist code 2000-07-24 18:07:03 +00:00
Michael Sawyer
375f19cfb2 345. [bug] Large-scale changes/cleanups to dig: 
* Significantly improve structure handling
                        * Don't pre-load entire batch files
                        * Add name/rr counting/limiting
                        * Fix SIGINT handling
                        * Shorten timeouts to match v8's behavior
 2000-07-24 18:06:35 +00:00
Brian Wellington
1b1775921e If a message is built for one host, which isn't powered on, the tsig object 
wasn't removed until the xfer object was deleted, so when the xfer tried the
second master, it asserted.
 2000-07-24 05:30:30 +00:00
Michael Sawyer
2f0bfccf31 Remove dead REQUIRE 2000-07-22 00:40:39 +00:00
Michael Sawyer
f592550498 Add comments and make a slight REQUIRE change 2000-07-22 00:27:40 +00:00
Michael Sawyer
0371079513 Wire up key option in masters line. 2000-07-21 23:13:59 +00:00
Andreas Gustafsson
3f290e501e don't use initial capital letter in log message 2000-07-21 23:04:44 +00:00
Brian Wellington
c27767a7b9 tsig keys were not properly ref counted 2000-07-21 23:00:31 +00:00
Andreas Gustafsson
9bef4575d7 344. [bug] When shutting down, lwresd sometimes tried 
to shut down its client tasks twice,
                        triggering an assertion.
(fixed in lwresd.c 1.11)
 2000-07-21 22:45:44 +00:00
Brian Wellington
3b2efab212 There's no real difference between the "sring" and "dring" parameters, so 
call them "ring1" and "ring2" instead.  Also remove a bogus assertion.
 2000-07-21 22:38:31 +00:00
Andreas Gustafsson
87f4c7933f 343. [bug] Although zone maintenance SOA queries and 
notify requests were signed with TSIG keys
                        when configured for the server in case,
                        the TSIG was not verified on the response.

 342.   [bug]           The wrong name was being passed to
                        dns_name_dup() when generating a TSIG
                        key using TKEY.
 2000-07-21 22:31:12 +00:00
Brian Wellington
4e160a846f Removed the tsig keyring, since it's no longer needed. 2000-07-21 22:26:08 +00:00
Michael Sawyer
f840a7bd0d Remove unused variable, fix char*[] variable 2000-07-21 22:25:15 +00:00
Brian Wellington
2483a850e8 The call to dns_tsig_verify doesn't need a keyring. 2000-07-21 22:22:55 +00:00
Andreas Gustafsson
5aa7bca733 dns_rbt_printnode() formatted the node name 
into a buffer of 255 char pointers, not 255 chars; changed it
to use dns_name_format()
 2000-07-21 22:08:42 +00:00
James Brister
c35f1e5937 341. [func] Support 'key' clause in named.conf zone masters 
statement:

                                masters {
                                        10.0.0.1 port 666 key "foo";
                                        10.0.0.2 ;
                                };
 2000-07-21 21:25:01 +00:00
Andreas Gustafsson
baf50a7210 removed unsightly spaces 2000-07-21 21:21:26 +00:00
Andreas Gustafsson
b6dcb3d243 print_name() formatted text into a buffer of 256 
character pointers, not 256 characters; also changed it to
use dns_name_format()
 2000-07-21 21:13:40 +00:00
Brian Wellington
87ab7fb07d The keys weren't properly freed. Also added a "-p port" option and did 
some other cleanup.
 2000-07-21 21:02:46 +00:00
Andreas Gustafsson
c3c57248e0 missing NULL initialization 2000-07-21 21:02:15 +00:00
Brian Wellington
a49acbf201 Store tsig keys in an rbt, not a list. 2000-07-21 20:53:59 +00:00
Michael Sawyer
b6e3718b20 Should really allocate memory before trying to use it. 2000-07-21 20:51:44 +00:00
Brian Wellington
42b98b222c The call to dns_tsigkey_setdeleted is no longer needed. 2000-07-21 20:38:30 +00:00
Andreas Gustafsson
e30c4dbe6f typos 2000-07-21 20:37:01 +00:00
Brian Wellington
84a47e20ae If the request was signed with a tsig key, verify the signature on the 
response.
 2000-07-21 20:33:13 +00:00
Brian Wellington
4be64854b4 The wrong name was being duped when a tsig key was generated using tkey. 2000-07-21 20:32:12 +00:00
Michael Sawyer
5813d091e9 Spacing changes 
replace memset with slightly more portable NULL initialization
properly NULL masterkeynames when zone is created
 2000-07-21 20:10:03 +00:00
Michael Sawyer
9b72c4648f Internal code for masters with key entries. Not wired into config yet. 2000-07-21 18:47:23 +00:00
Michael Sawyer
8bf0f722f8 Count and possibly limit how many names and rr's in a xfr. 
(Needed by GDIB folks)
 2000-07-20 19:41:44 +00:00
Michael Sawyer
390132bd98 Run resolver test in make tests 2000-07-20 19:38:05 +00:00
Brian Wellington
d6e6858bb9 If dns_request_getresponse() fails, log it. 2000-07-20 19:34:16 +00:00
Brian Wellington
a5e73f3e9d Having a non-noerror value inn the tsig error field should always return 
DNS_R_TSIGERRORSET in dns_tsig_verify.  Change the result text to reflect
this.
 2000-07-20 19:32:57 +00:00
Brian Wellington
e860332b07 A call to isc_mem_put could pass a different size than was gotten. Use 
isc_mem_allocate instead.
 2000-07-20 17:58:59 +00:00
Michael Sawyer
26cebf3482 Slight bug in batch processing 2000-07-20 17:56:20 +00:00
Andreas Gustafsson
b7ebc6a127 minor tweak to hash function of previous change 2000-07-20 01:15:25 +00:00
Andreas Gustafsson
f969863d54 replaced the hash function in dns_name_hash() by one 
that is simpler, faster, and produces a much more even distribution,
particularly when the data to hash ends with a null byte like domain
names often do
 2000-07-20 01:14:48 +00:00
Andreas Gustafsson
dae5ce6ddb 340. [bug] The top-level COPYRIGHT file was missing from 
the distribution.
 2000-07-20 00:41:50 +00:00
Andreas Gustafsson
9a8fea7bc8 When handling the response to an ANY query in a secure zone, deal with 
the multiple answer RRsets by validating each one separately.  Also,
eliminated the "done" variable in answer_response() because in the
rare situations where it got set to ISC_TRUE, it caused the function
to return prematurely by exiting a loop with a result of ISC_R_SUCCESS
and hitting a "if (result != ISC_R_NOMORE) return (result);" test
immediately following following the loop.

This should fix [RT #109], "ANY query in secure zone crashes server".
 2000-07-20 00:06:28 +00:00
Andreas Gustafsson
99eba32b06 Removed the code added in revision 1.57: 
"Store CNAMEs and their SIGs (if any) in their own name structure on
  the name list.  I.e. do not mix CNAMEs with non-CNAME data.  Do the
  same thing for DNAMEs."

because it caused DNSSEC validation of responses to ANY queries at
nodes with CNAME records to fail, and no one was able to figure out
why it was added in the first place.  As a beneficial side effect,
findname() now finds names even if they have attribute bits set
differently from the one being searched for.  This supersedes
the fix of revision 1.133.
 2000-07-20 00:05:32 +00:00
Andreas Gustafsson
aa5940281a When handling the response to an ANY query in a secure zone, deal with 
the multiple answer RRsets by validating each one separately.  Also,
eliminated the "done" variable in answer_response() because in the
rare situations where it got set to ISC_TRUE, it caused the function
to return prematurely by exiting a loop with a result of ISC_R_SUCCESS
and hitting a "if (result != ISC_R_NOMORE) return (result);" test
immediately following following the loop.

This should fix [RT #109], "ANY query in secure zone crashes server".
 2000-07-19 23:19:05 +00:00
Andreas Gustafsson
c7d445ce7f edited 2000-07-19 20:34:40 +00:00