Commit Graph

328 Commits

Author SHA1 Message Date
Mark Andrews
f7c7a87cb4 use %u instead of %d 2018-02-16 18:30:18 +11:00
Tinderbox User
8d5a01a868 update copyright notice / whitespace 2018-01-13 23:50:30 +00:00
Mukund Sivaraman
4f47e5fd63 Fix various bugs reported by valgrind --tool=memcheck (#46978)
(cherry picked from commit f96133826e)
(cherry picked from commit 0374e1c3fd)
(cherry picked from commit 929329d2d6)
(cherry picked from commit d072be0691)
2018-01-13 12:02:18 +05:30
Evan Hunt
f07825440f [master] cleanup strcat/strcpy
4722.	[cleanup]	Clean up uses of strcpy() and strcat() in favor of
			strlcpy() and strlcat() for safety. [RT #45981]

(cherry picked from commit 114f95089c)
(cherry picked from commit 7cd594b842)
(cherry picked from commit e0ddfb109e)
2017-09-13 00:20:09 -07:00
Tinderbox User
0b3fb0379d update copyright notice / whitespace 2017-07-11 01:47:26 +00:00
Mark Andrews
7015ac4491 4435. [tuning] Only set IPV6_USE_MIN_MTU for UDP when the message
will not fit into a single IPv4 encapsulated IPv6
                        UDP packet when transmitted over a Ethernet link.
                        [RT #42871]

(cherry picked from commit 31ffec1541)
2017-07-11 11:42:43 +10:00
Mark Andrews
bcdf316ca5 4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879]
(cherry picked from commit def6b33bad)
2016-12-13 16:38:50 +11:00
Evan Hunt
099cd0454b [v9_9] revert accidental query logging format change
4471.   [cleanup]       Revert a query logging change inadvertently
                        backported from 9.11. [RT #43238]

(cherry picked from commit 00d496d9e20b2c8c1d4a5ce752a1f8efb3009ca0)
(cherry picked from commit b9dc79840e)
2016-09-21 11:27:30 -07:00
Evan Hunt
5b6ef50033 Plug a geoip leak and some cleanup [RT #43106]
(cherry picked from commit a26a62cef2)
(cherry picked from commit af326c2e3f)
(cherry picked from commit a3cee5460d)
2016-08-30 00:41:28 +05:30
Mark Andrews
97c0c6837c simplify poorly written conditional
(cherry picked from commit d055178624)
2016-06-02 10:19:57 +10:00
Tinderbox User
c40fa54eab update copyright notice / whitespace 2016-01-04 23:46:16 +00:00
Evan Hunt
c5109e5850 [v9_9] silence noisy logging
4287.	[bug]		Silence an overly noisy log message when message
			parsing fails. [RT #41374]
2016-01-04 13:07:25 -08:00
Mark Andrews
17747a8059 make macro name match category name
(cherry picked from commit 4d085258cc)
2015-09-29 15:05:53 +10:00
Mark Andrews
33eddc9bc0 4201. [func] The default preferred-glue is now the address record
type of the transport the query was received
                        over.  [RT #40468]

(cherry picked from commit a0ef8211d3)
2015-09-11 13:28:31 +10:00
Evan Hunt
ea36796f82 [v9_9] DDoS mitigation features
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
2015-07-08 23:00:58 -07:00
Mark Andrews
f5386a21a8 4154. [bug] A OPT record should be included with the FORMERR
response when there is a malformed EDNS option.
                        [RT #39647]

4153.   [bug]           Check that non significant ECS bits are zero on
                        receipt. [RT #39647]
2015-07-06 16:34:48 +10:00
Evan Hunt
7faa1a7221 [v9_9] misc x64 VS 2015 CTP fixes [#39308]
(cherry picked from commit ab973ec40c)
(cherry picked from commit 0fdcf394cb)
2015-04-17 15:32:41 -07:00
Mark Andrews
36b67292b3 4075. [bug] Increase nsupdate's input buffer to accomodate
very large RRs. [RT #38689]
2015-02-27 12:26:58 +11:00
Mark Andrews
fc07bc787f 4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708]
(cherry picked from commit af669cb4fd)

Conflicts:
	bin/named/client.c
	lib/dns/request.c
	lib/dns/view.c

(cherry picked from commit 374fce8495)

Conflicts:
	bin/named/statschannel.c
	lib/dns/rbtdb.c
	lib/dns/request.c
	lib/dns/resolver.c
	lib/isc/unix/file.c
2015-02-27 11:05:33 +11:00
Evan Hunt
7e64c7630c [v9_9] reduce rrl logging noise
4067.	[cleanup]	Reduce noise from RRL when query logging is
			disabled. [RT #38648]

(cherry picked from commit 8378b0c190)
2015-02-25 16:45:07 -08:00
Mukund Sivaraman
015371d584 Fix a leak of query fetchlock (#38454)
4052.	[bug]		Fix a leak of query fetchlock. [RT #38454]

Conflicts:
	CHANGES
2015-02-03 11:54:16 +05:30
Tinderbox User
9cbd625449 update copyright notice / whitespace 2015-01-20 23:47:26 +00:00
Evan Hunt
57f015bd2a [v9_9] clean up gcc -Wshadow warnings
4039.	[cleanup]	Cleaned up warnings from gcc -Wshadow. [RT #37381]
2015-01-20 14:55:41 -08:00
Mark Andrews
f6f0878e11 4018. [bug] Fall back to plain DNS when EDNS queries are being
dropped was failing. [RT #37965]

4017.   [testing]       Add system test to check lookups to legacy servers
                        with broken DNS behaviour. [RT #37965]
2014-12-04 07:07:09 +11:00
Mark Andrews
846f608d29 3862. [cleanup] Return immediately if we are not going to log the
message in ns_client_dumpmessage.

(cherry picked from commit 9b819daddf)
2014-05-27 12:22:48 +10:00
Mark Andrews
2fd5f9a326 s/DNS_EDNSOPTIONS/DNS_EDNSOPTIONS/
(cherry picked from commit 801b958a5c)
2014-05-08 11:43:45 +10:00
Mark Andrews
375dac22e4 define DNS_OPT_EDNSOPTIONS
(cherry picked from commit 72ba6ba736)
2014-05-08 11:39:56 +10:00
Tinderbox User
6e1a48501e update copyright notice 2014-02-07 23:45:57 +00:00
Evan Hunt
c2d3d0eda5 [v9_9] add no-case-compress
3731.	[func]		Added a "no-case-compress" ACL, which causes
			named to use case-insensitive compression
			(disabling change #3645) for specified
			clients. (This is useful when dealing
			with broken client implementations that
			use case-sensitive name comparisons,
			rejecting responses that fail to match the
			capitalization of the query that was sent.)
			[RT #35300]

(cherry picked from commit 166341d554)
2014-02-06 19:42:39 -08:00
Mark Andrews
3b38a23089 3681. [port] Update the Windows build system to support feature
selection and WIN64 builds.  This is a work in
                        progress. [RT #34160]

(cherry picked from commit c3c8823fed)

Conflicts:
	CHANGES
	bin/check/win32/checktool.dsp.in
	bin/dnssec/win32/dnssectool.dsp.in
	bin/dnssec/win32/importkey.dsp.in
	bin/dnssec/win32/importkey.mak.in
	bin/named/geoip.c
	bin/named/include/named/geoip.h
	bin/tools/win32/rrchecker.dsp.in
	bin/tools/win32/rrchecker.mak.in
	config.h.win32
	lib/dns/geoip.c
	lib/dns/master.c
	lib/dns/win32/libdns.dsp.in
	lib/dns/win32/libdns.mak.in
	lib/isc/mem.c
	lib/isc/stats.c
	lib/isc/win32/file.c
	lib/isc/win32/libisc.def.in
	lib/isc/win32/libisc.mak.in
	lib/isc/win32/stdio.c
	lib/isccc/cc.c
	win32utils/BuildAll.bat
	win32utils/BuildSetup.bat
	win32utils/legacy/BINDBuild.dsw.in
	win32utils/makeversion.pl
	win32utils/setpk11provider.pl
	win32utils/updatelibxml2.pl
	win32utils/win32-build.txt
2013-12-04 13:48:45 +11:00
Mark Andrews
4713b1f369 3645. [protocol] Use case sensitive compression when responding to
queries. [RT #34737]

(cherry picked from commit cb69994ff8)
2013-09-18 16:07:43 +10:00
Mark Andrews
e27df13867 3633. [cleanup] Refactor OPT processing in named to make it easier
to support new EDNS options. [RT #34414]

(cherry picked from commit 8e091f3d3e)
2013-08-15 12:08:07 +10:00
Tinderbox User
00f7494211 update copyright notice 2013-06-08 23:45:45 +00:00
Evan Hunt
6260eef2be [v9_9] backport RRL to 9.9.x
This incorporates the following changes, plus a new configure
option "--enable-rrl" to turn them on:

3575.	[func]		Changed the logging category for RRL events from
			'queries' to 'query-errors'. [RT #33540]

3554.	[bug]		RRL failed to correctly rate-limit upward
			referrals and failed to count dropped error
			responses in the statistics. [RT #33225]

3545.	[bug]		RRL slip behavior was incorrect when set to 1.
			[RT #33111]

3518.	[bug]		Increase the size of dns_rrl_key.s.rtype by one bit
			so that all dns_rrl_rtype_t enum values fit regardless
			of whether it is teated as signed or unsigned by
			the compiler. [RT #32792]

3494.	[func]		DNS RRL: Blunt the impact of DNS reflection and
			amplification attacks by rate-limiting substantially-
			identical responses. To enable, use "configure
			--enable-rrl". [RT #28130]
2013-06-07 12:47:11 -07:00
Mark Andrews
e8a622d76a silence clang --analyze warnings 2012-11-30 18:51:22 +11:00
Evan Hunt
2589af5868 [v9_9] silence coverity warnings
3401.	[bug]		Addressed Coverity warnings. [RT #31484]
(cherry picked from commit 47c5b8af92)
2012-10-23 22:12:15 -07:00
Mark Andrews
bf6acccf9d 3390. [bug] Silence clang compiler warnings. [RT #30417] 2012-10-06 13:21:18 +10:00
Mark Andrews
04c540e23b 3370. [bug] Address use after free while shutting down. [RT #30241] 2012-08-22 19:20:21 +10:00
Mark Andrews
9a9f67d54b 3273. [bug] AAAA responses could be returned in the additional
section even when filter-aaaa-on-v4 was in use.
                        [RT #27292]
2012-04-27 13:02:03 +10:00
Mark Andrews
b1d55de4fa 3296. [bug] Named could die with a INSIST failure in
client.c:exit_check. [RT #28346]
2012-03-15 11:48:57 +11:00
Tinderbox User
5abefae88a update copyright notice 2012-03-10 23:45:42 +00:00
Tinderbox User
c201888c2a regen v9_9 2012-03-07 01:59:30 +00:00
Evan Hunt
f94af76649 Revert "added gitignore, removed cvsignore"
This reverts commit e8ae173655.
2012-03-05 08:24:17 -08:00
Evan Hunt
e8ae173655 added gitignore, removed cvsignore 2012-03-03 23:24:11 -08:00
Evan Hunt
77d048b03e 3215. [bug] 'rndc recursing' could cause a core dump. [RT #26495] 2011-11-09 22:05:09 +00:00
Evan Hunt
83c0ef8815 3210. [bug] Canceling the oldest query due to recursive-client
overload could trigger an assertion failure. [RT #26463]
2011-11-07 23:03:09 +00:00
Evan Hunt
fd0cb18761 3199. [func] When logging client information, include the name
being queried. [RT #25944]
2011-11-03 21:14:22 +00:00
Evan Hunt
f704fa0ca6 3178. [bug] A race condition introduced by change #3163 could
cause an assertion failure on shutdown. [RT #26271]
2011-10-25 16:21:21 +00:00
Automatic Updater
0e11ca0f0b update copyright notice 2011-10-11 23:46:45 +00:00
Evan Hunt
793814f807 3164. [func] Enable DLZ modules to retrieve client information,
so that responses can be changed depending on the
			source address of the query. [RT #25768]
2011-10-11 00:09:03 +00:00