Commit Graph

9775 Commits

Author SHA1 Message Date
Mark Andrews
0faee78f98 9.9.10b1 2016-12-29 13:36:32 +11:00
Evan Hunt
3204e83716 [v9_9] silence warning
(cherry picked from commit b3aebb5890)
2016-12-28 17:54:52 -08:00
Mark Andrews
a14b7f0187 4510. [security] Named mishandled some responses where covering RRSIG
records are returned without the requested data
                        resulting in a assertion failure. (CVE-2016-9147)
                        [RT #43548]

(cherry picked from commit 6adf421e7e)
2016-12-29 11:53:58 +11:00
Mark Andrews
d372472f60 4508. [security] Named incorrectly tried to cache TKEY records which
could trigger a assertion failure when there was
                            a class mismatch. (CVE-2016-9131) [RT #43522]

(cherry picked from commit 2c1c4b99a1)
2016-12-29 11:35:54 +11:00
Tinderbox User
c38b1c7115 update copyright notice / whitespace 2016-12-28 23:58:02 +00:00
Mark Andrews
69cb8ebf15 4517. [security] Named could mishandle authority sections that were
missing RRSIGs triggering an assertion failure.
                        (CVE-2016-9444) [RT # 43632]

(cherry picked from commit 1df30cfd27c5a3c57fce357c54aaf6c702227d51)
2016-12-29 10:46:44 +11:00
Mark Andrews
c161d54a65 4543. [bug] dns_client_startupdate now delays sending the update
request until isc_app_ctxrun has been called.
                        [RT #43976]

(cherry picked from commit 6f94747270)
2016-12-28 15:56:30 +11:00
Tinderbox User
7429284419 update copyright notice / whitespace 2016-12-26 23:51:09 +00:00
Mark Andrews
387a64a898 remove references to catalog-zones 2016-12-27 09:42:45 +11:00
Mark Andrews
c8174a6268 4539. [bug] Referencing a nonexistant zone with rpz could lead
to a assertion failure when configuring. [RT #43787]

(cherry picked from commit 762c4fc5a8)
2016-12-27 09:41:14 +11:00
Mark Andrews
2af18c1396 4538. [bug] Call dns_client_startresolve from client->task.
[RT #43896]

(cherry picked from commit aceabacdb8)
2016-12-27 07:15:23 +11:00
Mark Andrews
7fe83fb929 if gen fails remove the target [RT #43949] 2016-12-23 09:23:13 +11:00
Mark Andrews
0e43b24249 if gen fails remove the file [RT #43949]
(cherry picked from commit e17d2f98be)
2016-12-23 09:21:26 +11:00
Mark Andrews
be7aa3f5a9 freeaddrinfo is called too early.
(cherry picked from commit c1870d0e44)
2016-12-15 09:40:03 +11:00
Tinderbox User
8e87a1592d update copyright notice / whitespace 2016-12-13 23:51:10 +00:00
Mark Andrews
3fe3359031 4535. [bug] Address race condition in setting / testing of
DNS_REQUEST_F_SENDING. [RT #43889]

(cherry picked from commit 37a8db0ba4)
2016-12-14 10:34:43 +11:00
Mark Andrews
bcdf316ca5 4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879]
(cherry picked from commit def6b33bad)
2016-12-13 16:38:50 +11:00
Mark Andrews
0aa9619f9e 4533. [bug] dns_client_update should terminate on prerequiste
failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
                        and also on BADZONE.  [RT #43865]

(cherry picked from commit 8ca45ba01a)
2016-12-13 16:12:45 +11:00
Mark Andrews
2c74ad28ef 4530. [bug] Change 4489 broke the handling of CNAME -> DNAME
in responses resulting in SERVFAIL being returned.
                        [RT #43779]

(cherry picked from commit 60cb462c56)
2016-12-09 12:51:40 +11:00
Tinderbox User
881739ee87 regen v9_9 2016-12-09 01:20:54 +00:00
Tinderbox User
252c8f6395 update copyright notice / whitespace 2016-12-08 23:50:36 +00:00
Mark Andrews
87dbe24a4f 4528. [bug] Only set the flag bits for the i/o we are waiting
for on EPOLLERR or EPOLLHUP. [RT #43617]

(cherry picked from commit c1619b8420)
2016-12-08 17:00:55 +11:00
Tinderbox User
298442a447 regen v9_9 2016-12-07 01:21:30 +00:00
Mark Andrews
3cf6fa831e 4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831]
(cherry picked from commit 1b8ce3b330)
2016-12-07 11:00:40 +11:00
Tinderbox User
1912945682 update copyright notice / whitespace 2016-12-05 23:51:33 +00:00
Mark Andrews
8b094c484c 4524. [bug] The net zero test was broken causing IPv4 servers
with addresses ending in .0 to be rejected. [RT #43776]

(cherry picked from commit df372d967e)
2016-12-05 10:50:36 +11:00
Mukund Sivaraman
67b62f0062 Add doc function for cfg_type_querysource4 and cfg_type_querysource6 (#43768)
(cherry picked from commit 5c843b384d)
(cherry picked from commit 6ae22c4119)
(cherry picked from commit 150ff959d1)
2016-12-02 11:30:13 +05:30
Evan Hunt
510e50591a [v9_9] fix merge error 2016-11-29 17:51:46 -08:00
Mark Andrews
c7948d9050 4522. [bug] Handle big gaps in log file version numbers better.
[RT #38688]

(cherry picked from commit cab871f1bc)
2016-11-30 11:29:34 +11:00
Mark Andrews
ef3856d2b2 4520. [cleanup] Alphabetise more of the grammar when printing it
out. Fix unbalanced indenting. [RT #43755]

(cherry picked from commit 4352551d23)
2016-11-29 15:50:27 +11:00
Mark Andrews
c04ad8ac8a 4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534]
(cherry picked from commit a611e44f9a)
2016-11-29 11:31:06 +11:00
Mark Andrews
2b97639b9b use isc_mem_create2 2016-11-09 16:24:48 +11:00
Mark Andrews
01b507f4b4 missing semicolon 2016-11-09 15:49:33 +11:00
Tinderbox User
ff69a0423e update copyright notice / whitespace 2016-11-08 23:57:34 +00:00
Mark Andrews
193c1e2618 back port alway use a private memory pool with openssl 2016-11-09 10:22:35 +11:00
Mark Andrews
8176815e04 back port alway use a private memory pool with openssl 2016-11-09 10:17:28 +11:00
Mark Andrews
964e19cea8 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 2016-11-09 09:59:32 +11:00
Mark Andrews
344911083f remove spurious newline [RT #43585]
(cherry picked from commit fed2f7e4c1)
2016-11-09 08:27:37 +11:00
Evan Hunt
1671fc195c [v9_9] typo in comment 2016-11-08 09:06:40 -08:00
Tinderbox User
fc6f778fd8 update copyright notice / whitespace 2016-11-03 23:51:28 +00:00
Tinderbox User
a06917d08f update copyright notice / whitespace 2016-11-02 23:51:39 +00:00
Mark Andrews
bd3a5fe9c1 add dns_db_getsize, dns_rdataslab_count, dns_zone_getmaxrecords, dns_zone_setmaxrecords
(cherry picked from commit aee76db9e3)
2016-11-03 10:48:33 +11:00
Mark Andrews
51fe40fd59 4504. [security] Allow the maximum number of records in a zone to
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]

(cherry picked from commit 5f8412a4cb)
2016-11-03 10:46:37 +11:00
Evan Hunt
5106233113 [v9_9] typo 2016-11-02 09:43:22 -07:00
Francis Dupont
187c8c80cc Fixed IP_PMTUDISC_OMIT typos 2016-11-02 09:22:58 +01:00
Mark Andrews
a4156963f0 4507. [bug] Name could incorrectly log 'allows updates by IP
address, which is insecure' [RT #43432]

(cherry picked from commit 2b2b85c897)
2016-11-02 18:22:04 +11:00
Mark Andrews
2a6337f7bf 4505. [port] Use IP_PMTUDISC_OMIT if available. [RT #35494]
(cherry picked from commit a61f252391)
2016-11-02 17:41:59 +11:00
Evan Hunt
bd97809fdf [v9_9] restore dropped #else block 2016-11-01 22:34:59 -07:00
Evan Hunt
60814deed8 [v9_9] make uninstall
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]

(cherry picked from commit 6087f87afb)
(cherry picked from commit 398f8c32f3)
2016-11-01 20:22:35 -07:00
Mark Andrews
43af4ab515 4502. [func] Report multiple and experimental options when printing
grammar. [RT #43134]

(cherry picked from commit 89286906dc)
2016-11-02 13:37:23 +11:00