upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-27 03:51:16 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
22514 commits 18 branches 854 tags 440 MiB
Commit graph

6700 commits

Author SHA1 Message Date
Evan Hunt
b8a9632333 [master] complete NTA work 
3882.	[func]		By default, negative trust anchors will be tested
			periodically to see whether data below them can be
			validated, and if so, they will be allowed to
			expire early. The "rndc nta -force" option
			overrides this behvaior.  The default NTA lifetime
			and the recheck frequency can be configured by the
			"nta-lifetime" and "nta-recheck" options. [RT #36146]
 2014-06-18 16:50:38 -07:00
Mark Andrews
f5bb5eb7f6 3881. [bug] Address memory leak with UPDATE error handling. 
[RT #36303]
 2014-06-18 11:21:31 +10:00
Tinderbox User
636aadbfe4 update copyright notice 2014-06-17 23:45:20 +00:00
Evan Hunt
a4e76a630e [master] update gitignore files; use rev-parse to get srcid 2014-06-17 13:49:30 -07:00
Tinderbox User
6f12058975 regen master 2014-06-17 01:05:10 +00:00
Mark Andrews
a0d411c05f 3880. [test] Update ans.pl to work with new TSIG support in 
Net::DNS; add additional Net::DNS version prerequisite
                        checks. [RT #36327]
 2014-06-17 10:35:46 +10:00
Mark Andrews
bd7996b047 remove redundent nul setting 2014-06-17 10:26:57 +10:00
Evan Hunt
56510cd031 [master] null terminate strings for coverity 2014-06-16 15:30:11 -07:00
Evan Hunt
e3468c9052 [master] seccomp also needs dup() in the --disable-threads case 2014-06-16 13:52:17 -07:00
Evan Hunt
940b03cef2 [master] release seccomp context when finished 2014-06-16 11:19:40 -07:00
Mukund Sivaraman
4278293107 [10686] Add version printing option to various BIND utilites 
Squashed commit of the following:

commit 95effe9b2582a7eb878ccb8cb9ef51dfc5bbfde7
Author: Evan Hunt <each@isc.org>
Date:   Tue Jun 10 16:52:45 2014 -0700

    [rt10686] move version() to dnssectool.c

commit df205b541d1572ea5306a5f671af8b54b9c5c770
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:38:31 2014 +0530

    Rearrange order of cases

commit cfd30893f2540bf9d607e1fd37545ea7b441e0d0
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:38:08 2014 +0530

    Add version printer to dnssec-verify

commit a625ea338c74ab5e21634033ef87f170ba37fdbe
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:32:19 2014 +0530

    Add version printer to dnssec-signzone

commit d91e1c0f0697b3304ffa46fccc66af65591040d9
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:26:01 2014 +0530

    Add version printer to dnssec-settime

commit 46fc8775da3e13725c31d13e090b406d69b8694f
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:25:48 2014 +0530

    Fix docbook

commit 8123d2efbd84cdfcbc70403aa9bb27b96921bab2
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:20:17 2014 +0530

    Add version printer to dnssec-revoke

commit d0916420317d3e8c69cf1b37d2209ea2d072b913
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:17:54 2014 +0530

    Add version printer to dnssec-keygen

commit 93b0bd5ebc043298dc7d8f446ea543cb40eaecf8
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:14:11 2014 +0530

    Add version printer to dnssec-keyfromlabel

commit 07001bcd9ae2d7b09dd9e243b0ab35307290d05d
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:13:39 2014 +0530

    Update usage help output, docbook

commit 85cdd702f41c96fbc767fc689d1ed97fe1f3a926
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:07:18 2014 +0530

    Add version printer to dnssec-importkey

commit 9274fc61e38205aad561edf445940b4e73d788dc
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:01:53 2014 +0530

    Add version printer to dnssec-dsfromkey

commit bf4605ea2d7282e751fd73489627cc8a99f45a90
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 20:49:22 2014 +0530

    Add -V to nsupdate usage output
 2014-06-16 12:10:38 +05:30
Mark Andrews
48789995c1 use $NSUPDATE 2014-06-15 18:35:19 +10:00
Mark Andrews
f9e47cfe4f Net::DNS 0.76 broke the handling of some packets 2014-06-14 10:11:06 +10:00
Evan Hunt
c1d33c159b [master] wrong dlopen filename caused segfault 
3878.	[bug]		Using the incorrect filename for a DLZ module
			caused a segmentation fault on startup. [RT #36286]
 2014-06-12 19:33:37 -07:00
Mark Andrews
1881aea774 fix test to see if $PERL is set 
(cherry picked from commit 44f0f310d41acc5c772d38353fe35ddacb3fee80)
 2014-06-13 11:47:23 +10:00
Mark Andrews
d4a98c0fb7 die if $Net::DNS::VERSION >= 0.73 2014-06-13 11:25:32 +10:00
Evan Hunt
fb710168ef [master] use correct shared library suffix 2014-06-12 17:06:23 -07:00
Tinderbox User
4ded8003e3 update copyright notice 2014-06-12 23:45:22 +00:00
Evan Hunt
06e0d6bb12 [master] address rpz bugs 
3877.	[bug]		Inserting and deleting parent and child nodes
			in response policy zones could trigger an assertion
			failure. [RT #36272]
 2014-06-11 20:00:19 -07:00
Mark Andrews
b836de821a fail if SIT data is too large 2014-06-12 07:57:19 +10:00
Evan Hunt
fc32eac99f [master] seccomp sandboxing wasn't working in nonthreaded builds 2014-06-10 19:10:46 -07:00
Mark Andrews
9c2cf9e201 update copyrights 2014-06-11 10:28:09 +10:00
Evan Hunt
8d8f9f7f86 [master] suppress unnecessary db lookups in DLZ redirect zones 
3876.	[bug]		Improve efficiency of DLZ redirect zones by
			suppressing unnecessary database lookups. [RT #35835]
 2014-06-10 16:25:26 -07:00
Mark Andrews
20dec973da 4. [test] Check that only "check-names master" is needed for 
updates to be accepted.
 2014-06-10 13:48:57 +10:00
Mark Andrews
32a1fd3dd2 update spf check 2014-06-10 12:28:33 +10:00
Tinderbox User
1b2ae58ef1 update copyright notice 2014-06-09 23:45:20 +00:00
Mark Andrews
3b187cad7a 3873. [protocol] Only warn for SPF without TXT spf record. [RT #36210] 2014-06-10 09:32:43 +10:00
Mark Andrews
b16d99bac1 3872. [bug] Address issues found by static analysis. [RT #36209] 2014-06-10 09:17:15 +10:00
Mukund Sivaraman
79d27f505a [35063] Don't publish an activated key automatically before its publish time 2014-06-04 14:31:42 +05:30
Mark Andrews
ab6fd5e892 initialise matches 2014-06-02 13:53:59 +10:00
Mark Andrews
5360986092 set max 2014-06-02 13:42:58 +10:00
Mark Andrews
3a26e75e3c accept a range of stats values 2014-06-02 08:15:47 +10:00
Tinderbox User
f5c27ecceb regen master 2014-05-31 01:05:50 +00:00
Evan Hunt
0cfb247368 [master] rndc nta 
3867.	[func]		"rndc nta" can now be used to set a temporary
			negative trust anchor, which disables DNSSEC
			validation below a specified name for a specified
			period of time (not exceeding 24 hours).  This
			can be used when validation for a domain is known
			to be failing due to a configuration error on
			the part of the domain owner rather than a
			spoofing attack. [RT #29358]
 2014-05-29 22:22:53 -07:00
Mark Andrews
fa6308bd57 3866. [bug] Named could die on disk full in generate_session_key. 
[RT #36119]
 2014-05-30 14:38:39 +10:00
Mark Andrews
536da846f6 update copyrights 2014-05-30 09:41:33 +10:00
Mark Andrews
44b0e0b1d5 More changes for: 
3864.   [bug]           RPZ didn't work well when being used as forwarder.
                        [RT #36060]
 2014-05-30 08:41:27 +10:00
Evan Hunt
caa252e5ad [master] Fix bin/tests/rbt_test.c, use portable int types 2014-05-29 07:37:13 -07:00
Mark Andrews
3d75189141 3864. [bug] RPZ didn't work well when being used as forwarder. 
[RT #36060]
 2014-05-29 17:02:10 +10:00
Mark Andrews
4694229f60 make a explict edns query so this subtest is independent of other tests 2014-05-29 10:46:44 +10:00
Mark Andrews
800d25b848 3863. [bug] The "E" flag was missing from the query log as a 
unintended side effect of code rearrangement to
                        support EDNS EXPIRE. [RT #36117]
 2014-05-29 08:04:55 +10:00
Mark Andrews
9b819daddf 3862. [cleanup] Return immediately if we are not going to log the 
message in ns_client_dumpmessage.
 2014-05-27 12:16:04 +10:00
Tinderbox User
f5ae3cca1d regen master 2014-05-24 01:05:32 +00:00
Evan Hunt
d51e441520 spelling 2014-05-23 19:32:56 +00:00
Mark Andrews
a0f91e910b 3856. [bug] Configuring libjson without also configuring libxml 
resulting in a REQUIRE assertion when retrieving
                        statistics using json. [RT #36009]
 2014-05-21 12:06:00 +10:00
Tinderbox User
fc74b733bf regen master 2014-05-17 01:05:14 +00:00
Tinderbox User
104f0e51ac update copyright notice 2014-05-16 23:45:21 +00:00
Evan Hunt
896f49f8bd [master] increase and allow configuration of lwresd tasks/clients 
3852.	[func]		Increase the default number of clients available
			for servicing lightweight resolver queries, and
			make them configurable via the "lwres-tasks" and
			"lwres-clients" options.  (Thanks to Tomas Hozza.)
			[RT #35857]
 2014-05-15 22:01:19 -07:00
Evan Hunt
6fa84a3e25 [master] enable libseccomp system call filtering 
3851.	[func]		Allow libseccomp based system-call filtering
			on Linux; use "configure --enable-seccomp" to
			turn it on.  Thanks to Loganaden Velvindron for
			the contribution. [RT #35347]
 2014-05-15 20:29:30 -07:00
Tinderbox User
284d5252c1 update copyright notice 2014-05-15 23:45:22 +00:00