upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-26 03:11:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
34574 commits 18 branches 854 tags 440 MiB
Commit graph

34574 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ondřej Surý
efbdf81931
Allow fallback to IDNA2003 processing 
In several cases where IDNA2008 mappings do not exist whereas IDNA2003
mappings do, dig was failing to process the suplied domain name.  Take a
backwards compatible approach, and convert the domain to IDNA2008 form,
and if that fails try the IDNA2003 conversion.

(cherry picked from commit 10923f9d87)
 2022-09-05 10:21:36 +02:00
Arаm Sаrgsyаn
dca244b1c1 Merge branch '3515-mctx-attach-detach-for-isc_mempool_t-v9_16' into 'v9_16' 
[v9_16] Add mctx attach/detach when creating/destroying a memory pool

See merge request isc-projects/bind9!6721
 2022-09-02 11:34:45 +00:00
Aram Sargsyan
5440f79cc4 Add CHANGES note for [GL #3515] 
(cherry picked from commit 362ead8d85)
 2022-09-02 09:05:03 +00:00
Aram Sargsyan
32779aba8a Add mctx attach/detach when creating/destroying a memory pool 
This should make sure that the memory context is not destroyed
before the memory pool, which is using the context.

(cherry picked from commit e97c3eea95)
 2022-09-02 09:05:03 +00:00
Evan Hunt
53fa68b39c Merge branch '3511-quote-yaml-addresses-v9_16' into 'v9_16' 
quote addresses in YAML output

See merge request isc-projects/bind9!6718
 2022-08-31 23:48:10 +00:00
Evan Hunt
91c61b8d2f CHANGES for [GL #3511] 2022-08-31 16:19:39 -07:00
Evan Hunt
28640e37d8 quote addresses in YAML output 
YAML strings should be quoted if they contain colon characters.
Since IPv6 addresses do, we now quote the query_address and
response_address strings in all YAML output.

(cherry picked from commit 66eaf6bb73)
 2022-08-31 16:18:57 -07:00
Evan Hunt
b6d12e3181 Merge branch '3501-dnstap-response-v9_16' into 'v9_16' 
dnstap query_message field was erroneously set with responses

See merge request isc-projects/bind9!6716
 2022-08-31 23:15:57 +00:00
Evan Hunt
5efac2b4d2 CHANGES for [GL #3501] 2022-08-31 15:50:30 -07:00
Evan Hunt
e1fa6cbab8 dnstap query_message field was erroneously set with responses 
The dnstap query_message field was in some cases being filled in
with response messages, along with the response_message field.
The query_message field should only be used when logging requests,
and the response_message field only when logging responses.
 2022-08-31 15:49:25 -07:00
Mark Andrews
af8e0a2ec9 Merge branch '3505-missing-isc_mutex_destroy-v9_16' into 'v9_16' 
Call isc_mutex_destroy(&lasttime_mx); [v9_16]

See merge request isc-projects/bind9!6698
 2022-08-24 07:42:25 +00:00
Mark Andrews
5a66ca501b Call isc_mutex_destroy(&lasttime_mx); 
(cherry picked from commit 8109f495c8b5d7c7f88d581f7905650add0c184e)
 2022-08-24 17:05:00 +10:00
Matthijs Mekking
e3b4794ee7 Merge branch '3500-nsec3-missing-detach-node-9_16' into 'v9_16' 
[v9_16] nsec3.c: Add a missing dns_db_detachnode() call

See merge request isc-projects/bind9!6694
 2022-08-23 11:10:41 +00:00
Matthijs Mekking
31ed140863 Add CHANGES entry for #3500 
There is no need for a release because this case was nearly impossible
to trigger (except for when 'sig-signing-type' was set to 0).

(cherry picked from commit 545ecb64b043617ea609f4f115d280bb5990e221)
 2022-08-23 12:06:06 +02:00
Matthijs Mekking
58d01b821a nsec3.c: Add a missing dns_db_detachnode() call 
There is one case in 'dns_nsec3_activex()' where it returns but forgets
to detach the db node. Add the missing 'dns_db_detachnode()' call.

This case only triggers if 'sig-signing-type' (privatetype) is set to 0
(which by default is not), or if the function is called with 'complete'
is set to 'true' (which at this moment do not exist).

(cherry picked from commit 0cf6c18ccb2205a1fc81431f908c8310f6136bbb)
 2022-08-23 12:05:38 +02:00
Mark Andrews
9e7c12d3b7 Merge branch 'bug/main/delv-cfg_parser_reset-v9_16' into 'v9_16' 
Reset parser before parsing of internal trust anchor [v9_16]

See merge request isc-projects/bind9!6687
 2022-08-19 05:40:59 +00:00
Mark Andrews
414b35aabd Add CHANGES entry for [GL !6468] 
(cherry picked from commit 23a8c15cb2efd3486a4e7ea41c1581cb2ed07912)
 2022-08-19 15:21:24 +10:00
Petr Menšík
ba9a140e1f Reset parser before parsing of internal trust anchor 
It might be reused if /etc/bind.keys exists, but failed correct parsing.
Release traces of previous parsing attempt of different data.

(cherry picked from commit dc07394c4724c1e1235af85dd8c044af70da93ae)
 2022-08-19 15:20:59 +10:00
Michal Nowak
4858e4235d Merge branch 'mnowak/freebsd-13.1-v9_16' into 'v9_16' 
[v9_16] Add FreeBSD 13.1

See merge request isc-projects/bind9!6684
 2022-08-18 15:58:05 +00:00
Michal Nowak
87dc26e494
Add FreeBSD 13.1 
(cherry picked from commit bc425be55e1736d4f2ffada5e8d76f96b08c8351)
 2022-08-18 17:34:08 +02:00
Michal Nowak
16458122a8 BIND 9.16.32 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmLsQt8PHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFQZwQAKcgEyE1zTzfX1g1XNeTgScVX/Dl4Ypat53i
 uvlLXPArgy3cq6EOaXaQ6HZhAGjvxdOo706vQnpRSkcqvC+ekoiBabNUedyyh+B5
 cdArlHJ7vaoWlj0PLolphApe1nTKM/68U5QEhM02GpF0NpmxXfGiTDDQNrTnyXiU
 nnCZevyqjqpEinQ8BfWWtuypUicf74J+hgydU4qYUYpYtyNEnR7xIpMQtPvnujFb
 /8Vfg9fZUaXiuIyAxDLtkXwuV5cEzcApWUnjJegx3QLcHUaYadGkUX5Ks7pV9Ivp
 36o9GY7Q0AQkyvanp7ajSUBEtCNLDcGL5Qh2NiTUY0NUr2uPqlEbLbaAqqhYWiBy
 uj0PQhdY9OV66wZPaOySFcMGVGyoNJYtD3J3so+fb2mwvDJmcOiJPxxRUOkMHE29
 TOwz1WoUrfHxxdGHgenXZE/jWcTW8kgC8208Hbfpdcpu4PPU6/7Giur8Ouo3gd+D
 +oI7H4WKwKpHXbqHoV9XbYAasQsHC7jPH/VgTEUEP+UoaE9mJG8Y59mWD+aTP7fz
 1QQmFpjNRMX4CEM2uQPnGNEwAx9tIR0hzBc/pqAQCC5fLG7X012V+odKO1gQUkGw
 ko4qOGugbvjzJP8u4N3acKcYvTH+ATNaBPG4lNe1RGUV+6Fwki4BqeqYxJOKcHm2
 hsNyWFBz
 =sS9Q
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmL+DLcACgkQJKPoRjru
 XlaQyxAAkhFMdOjRuu/zaoWzRGlwnD77yyChEFh9IhC/h/qYhEnrg+ddKrofcprA
 dciI3ZMeiZq7pzmhdL1zvGomk6HWm6H6DwrTlpIGnFlTgs9hqEGvv3diron1nGjD
 FE3qjVFPfKJza8Lqzdpz1KZF5TKd3pwID77qN50ZmQSMorUpu/NZSIvbnl0KZLHH
 GjWfAlGc7/L1HaFpRFRgFCpSBNXNoKVvhFF5E1E3ky/qdAZ8YqzsQE9sgHSVag/W
 iUjfzqKUwhgY5obbpalO1+U8y5C/BfE/QcUPF+zGcJy54ue2o9P7M6iwN8+DSwGj
 MunmAMUzzLJHjK7wPnPasxQk9obBShuhQBbEiGL4hD0XUnlNTawzsChCGARk39yU
 qOjFnP3fDxhRdMZiaRNSWl6ZkzvomaAGVupPSh+i0xSUJCGjXw+b5dLC0ImXVuID
 ZaZfqgXNJHoRY6Q5Ixkj2s53gNeuwzoSUCxi082d3909lf+ABYMm+jo03YYHINvm
 hgnAKonkrpV2BqAF7Fyokf9PRRyt6L7hcrj+dAwfO8osKpfU881zrluxJeL8a2Wb
 lSBw8Y9+rnYN9auUioD+VusfORyM13hC6YXpnq3NTKsPv2zRy6UWVGCXHuWCAH2c
 x/U6hy85tSnYFvtMrJ0gzIRx0v+J1RQDKDT3RSkCyl6oQtvxSiI=
 =uwFk
 -----END PGP SIGNATURE-----

Merge tag 'v9_16_32' into v9_16

BIND 9.16.32
 2022-08-18 11:55:55 +02:00
Mark Andrews
1686b34023 Merge branch '3494-dnssec-awk-test-is-not-precise-enough-v9_16' into 'v9_16' 
Improve awk tests to prevent false negatives [v9_16]

See merge request isc-projects/bind9!6677
 2022-08-18 04:39:13 +00:00
Mark Andrews
69be4d3bdc Improve awk tests to prevent false negatives 
The old code could incorrectly match "INSOA" in the RRSIG rdata
when looking for the SOA record.

(cherry picked from commit 2fc5f6fb2831697c79f75c50a769449ac561aad0)
 2022-08-18 13:43:47 +10:00
Michal Nowak
f59757d0be Merge branch 'mnowak/coverity-scan-2022.06-v9_16' into 'v9_16' 
[v9_16] Use Coverity Scan 2022.06

See merge request isc-projects/bind9!6674
 2022-08-17 14:04:39 +00:00
Michal Nowak
6bf3d890b5
Use Coverity Scan 2022.06 
(cherry picked from commit 3d683c704e271f1c8107a5b108c93db4bde7db7f)
 2022-08-17 16:02:27 +02:00
Arаm Sаrgsyаn
ee28d4bd32 Merge branch '3492-fix-tkey.c-buildquery-cleanup-v9_16' into 'v9_16' 
[v9_16] Fix tkey.c:buildquery() function's error handling

See merge request isc-projects/bind9!6671
 2022-08-17 09:10:49 +00:00
Aram Sargsyan
30b1be4e59 Add CHANGES note for [GL #3492] 
(cherry picked from commit 8dd12db505892640d885e81dc6701607da1df67f)
 2022-08-17 08:46:31 +00:00
Aram Sargsyan
eb72c81e6a Fix tkey.c:buildquery() function's error handling 
Add the missing cleanup code.

(cherry picked from commit 4237ab9550eeaea7121e3e3392fd14c26b5150f0)
 2022-08-17 08:46:31 +00:00
Michal Nowak
1c6dbb5993 Merge branch 'mnowak/openbsd-7.1-v9_16' into 'v9_16' 
[v9_16] Add OpenBSD 7.1

See merge request isc-projects/bind9!6667
 2022-08-16 15:21:05 +00:00
Michal Nowak
591d58be6e
Add OpenBSD 7.1 
(cherry picked from commit 7edf8ab47cfd0cc3a633e941b2880ee11d75d6cd)
 2022-08-16 17:17:34 +02:00
Michal Nowak
88aa703c75 Merge branch 'mnowak/configure-find-newer-python-versions' into 'v9_16' 
Teach configure to find Python 3.9, 3.10, and 3.11

See merge request isc-projects/bind9!6662
 2022-08-15 13:50:23 +00:00
Michal Nowak
d92b9a02b1
Teach configure to find Python 3.9, 3.10, and 3.11 
FreeBSD does not have python3 symlink, and ./configure relies on finding
python3.X binaries instead.
 2022-08-15 15:11:27 +02:00
Evan Hunt
80604b856d Merge branch '3488-prevent-adb-dump-race-v9_18-v9_16' into 'v9_16' 
Lock the address entry bucket when dumping ADB namehook

See merge request isc-projects/bind9!6658
 2022-08-13 00:48:17 +00:00
Evan Hunt
5aa4adc8e5 Lock the address entry bucket when dumping ADB namehook 
When dumping an ADB address entry associated with a name,
the name bucket lock was held, but the entry bucket lock was
not; this could cause data races when other threads were updating
address entry info. (These races are probably not operationally
harmful, but they triggered TSAN error reports.)

(cherry picked from commit f841f545b7)
 2022-08-12 17:17:43 -07:00
Michal Nowak
1c1c0e3dca Merge branch '3348-move-pkcs11-interface-test-to-debian-v9_16' into 'v9_16' 
[v9_16] Move OpenSSL-based PKCS#11 interface job to Debian "bullseye"

See merge request isc-projects/bind9!6654
 2022-08-12 06:50:33 +00:00
Michal Nowak
b4b865aacd
Move OpenSSL-based PKCS#11 interface job to Debian "bullseye" 
Fedora 36 uses OpenSSL 3.0.2 by default, but the OpenSSL engine API
which we use for PKCS#11 is deprecated in OpenSSL 3.0.0. For the
keyfromlabel system test to work operating system with OpenSSL 1.1 needs
to be used.

(cherry picked from commit 2eecebdea91868be571e3c7a5fb3324505fbd2ff)
 2022-08-12 08:07:22 +02:00
Matthijs Mekking
cd43fa723c Merge branch '2982-servfail-servestale-duplicate-queries-v9_16' into 'v9_16' 
[v9_16] Don't enable serve-stale on duplicate queries

See merge request isc-projects/bind9!6643
 2022-08-09 09:02:31 +00:00
Matthijs Mekking
294431b8f8 Add release note and change entry for #2982 
News worthy.

(cherry picked from commit 2bd448676604f6b9e1a01c5b0615f45c3b35ffed)
 2022-08-09 09:38:23 +02:00
Matthijs Mekking
dd7dde5743 Don't enable serve-stale on duplicate queries 
When checking if we should enable serve-stale, add an early out case
when the result is an error signalling a duplicate query or a query
that would be dropped.

(cherry picked from commit 059a4c2f4d9d3cff371842f43208d021509314fa)
 2022-08-09 09:37:49 +02:00
Michał Kępień
44e0164b6c Merge branch 'michal/set-up-version-and-release-notes-for-bind-9.16.33' into 'v9_16' 
Set up version and release notes for BIND 9.16.33

See merge request isc-projects/bind9!6634
 2022-08-05 06:40:40 +00:00
Michał Kępień
571a5b7cca Set up release notes for BIND 9.16.33 2022-08-05 06:58:17 +02:00
Michał Kępień
72b16782e6 Update BIND version to 9.16.33-dev 2022-08-05 06:58:17 +02:00
Michał Kępień
56f3439263 Merge branch 'prep-release' into v9_16_32-release 2022-08-05 00:06:08 +02:00
Michał Kępień
d4afcf3dfb prep 9.16.32 2022-08-05 00:06:08 +02:00
Michał Kępień
8ff8f2c1ca Merge branch 'michal/prepare-documentation-for-bind-9.16.32' into 'v9_16_32-release' 
Prepare documentation for BIND 9.16.32

See merge request isc-private/bind9!420
 2022-08-04 22:04:12 +00:00
Michał Kępień
c2ca99b710 Tweak and reword release notes 2022-08-04 23:59:36 +02:00
Michał Kępień
814d9f7bc8 Prepare release notes for BIND 9.16.32 2022-08-04 23:59:36 +02:00
Arаm Sаrgsyаn
c863061a13 Merge branch '3461-fetches-per-zone-final-log-message-v9_16' into 'v9_16' 
[v9_16] Resolve "Do a better job of logging when fetches-per-zone is triggered"

See merge request isc-projects/bind9!6626
 2022-08-01 14:46:29 +00:00
Aram Sargsyan
23bf8afbcb Add CHANGES and release notes for [GL #3461] 
(cherry picked from commit 0d64f55f5dee7ffee76ddc1e4df15514ab7882c9)
 2022-08-01 14:01:37 +00:00
Aram Sargsyan
c0db0d7a8e Improve fetch limit logging 
When initially hitting the `fetches-per-zone` value, a log message
is being generated for the event of dropping the first fetch, then
any further log events occur only when another fetch is being dropped
and 60 seconds have been passed since the last logged message.

That logic isn't ideal because when the counter of the outstanding
fetches reaches zero, the structure holding the counters' values will
get deleted, and the information about the dropped fetches accumulated
during the last minute will not be logged.

Improve the fcount_logspill() function to makie sure that the final
values are getting logged before the counter object gets destroyed.

(cherry picked from commit 039871ceb767088205563965f7aae622a3f77082)
 2022-08-01 14:01:26 +00:00