ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
20,010 Commits 589 Branches 805 Tags
18daaa26b4aa65249af6ab1fee4f3e1fdcd21311
Commit Graph

4803 Commits

Author SHA1 Message Date
Automatic Updater
d59ca75cd5 update copyright notice 2011-04-11 23:45:26 +00:00
Evan Hunt
9f3931a5f8 Fixed a use of |= where != was intended. (Fortunately with no ill effects.) 2011-04-11 21:11:01 +00:00
Mark Andrews
e4da0ac6e2 9.4-ESV-R5b1 2011-04-08 06:15:03 +00:00
Automatic Updater
366407af39 update copyright notice 2011-04-06 23:45:16 +00:00
Mark Andrews
902a80de5d 3095. [bug] Handle isolated reserved ports in the port range. 
[RT #23957]
 2011-04-06 15:05:24 +00:00
Automatic Updater
7139334653 update copyright notice 2011-03-09 23:45:15 +00:00
Mark Andrews
9414c5bfb2 3065. [bug] RRSIG could have time stamps too far in the future. 
[RT #23356]
 2011-03-09 07:34:52 +00:00
Automatic Updater
6c4933f959 update copyright notice 2011-03-02 23:45:32 +00:00
Mark Andrews
b1be6b9273 3051. [bug] NS records obsure DS records at the bottom of the 
zone if both are present. [RT #23035]
 2011-03-02 04:41:36 +00:00
Automatic Updater
11b8a4afdf update copyright notice 2011-02-27 23:45:16 +00:00
Mark Andrews
920650f048 3040. [bug] Named failed to validate insecure zones where a node 
with a CNAME existed between the trust anchor and the
                        top of the zone. [RT #23338]
 2011-02-23 13:15:39 +00:00
Automatic Updater
50e9e87f65 update copyright notice 2011-01-27 23:45:12 +00:00
Mark Andrews
2531ef9979 3009. [bug] clients-per-query code didn't work as expected with 
particular query patterns. [RT #22972]
 2011-01-27 02:32:52 +00:00
Automatic Updater
576cae3b1e update copyright notice 2011-01-13 04:47:42 +00:00
Mark Andrews
ba185c8215 3007. [bug] Named failed to preserve the case of domain names in 
rdata which is no compressable when writing master
                        files.  [RT #22863]
 2011-01-13 02:18:29 +00:00
Mark Andrews
4ff8895925 9.4-ESV-R4 2010-11-18 01:34:51 +00:00
Automatic Updater
1dfb563662 update copyright notice 2010-11-17 23:45:12 +00:00
Mark Andrews
3a66e0f68c 2786. [bug] Additional could be promoted to answer. [RT #20663] 2010-11-17 10:21:02 +00:00
Automatic Updater
09065d8286 update copyright notice 2010-11-16 23:45:24 +00:00
Mark Andrews
b78658f143 2970. [security] Adding a NO DATA negative cache entry failed to clear 
any matching RRSIG records.  A subsequent lookup of
                        of NO DATA cache entry could trigger a INSIST when the
                        unexpected RRSIG was also returned with the NO DATA
                        cache entry.  [RT #22288]
 2010-11-16 08:01:09 +00:00
Mark Andrews
a407ead333 2968. [security] Named could fail to prove a data set was insecure 
before marking it as insecure.  One set of conditions
                        that can trigger this occurs naturally when rolling
                        DNSKEY algorithms.  [RT #22309]

Had to adjust the test to use RSAMD5 -> RSASH1 as we need to use algorithms
supported by 9.4.
 2010-11-16 04:17:44 +00:00
Mark Andrews
e96e6e8077 9.4-ESV-R3 2010-09-02 07:27:40 +00:00
Mark Andrews
43a1ec8d9f 2869. [bug] Fix arguments to dns_keytable_findnextkeynode() call. 
[RT #20877]
 2010-09-02 07:21:53 +00:00
Mark Andrews
7b67408765 2925. [bug] Named failed to accept uncachable negative responses 
from insecure zones. [RT# 21555]
 2010-06-26 00:11:50 +00:00
Automatic Updater
b45951a046 update copyright notice 2010-06-23 23:45:21 +00:00
Mark Andrews
8310668e43 2921. [bug] The resolver could attempt to destroy a fetch context 
to soon.  [RT #19878]
 2010-06-23 01:48:55 +00:00
Automatic Updater
6c82c34716 update copyright notice 2010-06-04 23:46:02 +00:00
Automatic Updater
bda132bcaf update copyright notice 2010-06-03 23:46:10 +00:00
Mark Andrews
1a677bc3f7 2904. [bug] When using DLV, sub-zones of the zones in the DLV, 
could be incorrectly marked as insecure instead of
                        secure leading to negative proofs failing.  This was
                        a unintended outcome from change 2890. [RT# 21392]
 2010-06-03 00:36:02 +00:00
Mark Andrews
eb12f97615 2900. [bug] The placeholder negative caching element was not 
properly constructed triggering a INSIST in
                        dns_ncache_towire(). [RT #21346]
 2010-06-03 00:21:52 +00:00
Mark Andrews
0cd3b8cc3e 2890. [bug] Handle the introduction of new trusted-keys and 
DS, DLV RRsets better. [RT #21097]
 2010-06-03 00:07:59 +00:00
Mark Andrews
078580a74d 9.4-ESV-R2 2010-05-10 01:56:40 +00:00
Mark Andrews
af9bcac6c5 2876. [bug] Named could return SERVFAIL for negative responses 
from unsigned zones. [RT #21131]
 2010-04-21 04:23:47 +00:00
Mark Andrews
fe5f0e6d28 dns_rdataset_expire/dns_rdataset_settrust 2010-03-03 07:00:38 +00:00
Mark Andrews
31f3215162 dns_resolver_*badcache 2010-03-03 05:02:27 +00:00
Automatic Updater
e95ab03354 update copyright notice 2010-02-26 23:46:37 +00:00
Mark Andrews
b6a3b10da7 2852. [bug] Handle broken DNSSEC trust chains better. [RT #15619] 2010-02-26 01:03:56 +00:00
Automatic Updater
8f7aff9340 update copyright notice 2010-01-07 23:46:07 +00:00
Evan Hunt
e4cb322618 2831. [security] Do not attempt to validate or cache 
out-of-bailiwick data returned with a secure
			answer; it must be re-fetched from its original
			source and validated in that context. [RT #20819]
 2010-01-07 17:49:50 +00:00
Evan Hunt
d7985983b0 2827. [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712] 2009-12-30 06:44:05 +00:00
Mark Andrews
e312c286f8 9.4-ESVrc1 2009-12-11 00:39:13 +00:00
Mark Andrews
a5b9974f4a CHANGES 2009-12-02 23:36:35 +00:00
Automatic Updater
c5614de3f9 update copyright notice 2009-11-26 23:46:11 +00:00
Mark Andrews
54d83f4a68 2790. [bug] Handle DS queries to stub zones. 2009-11-26 03:45:43 +00:00
Automatic Updater
521de9e5dd update copyright notice 2009-11-25 23:46:52 +00:00
Mark Andrews
b4bd8d0662 772. [security] When validating, track whether pending data was from 
the additional section or not and only return it if
                        validates as secure. [RT #20438]
 2009-11-25 04:50:25 +00:00
Mark Andrews
9352b49a12 dns_resolver_logfetch 2009-10-13 02:45:22 +00:00
Mark Andrews
d268d780cc silence signed/unsigned comparision warning 2009-09-25 01:48:28 +00:00
Automatic Updater
1c52929b3c update copyright notice 2009-09-24 23:46:07 +00:00
Mark Andrews
ca202d441e 2689. [bug] Correctly handle snprintf result. [RT #20306] 2009-09-24 22:25:30 +00:00