Tinderbox User
1e10f17589
update copyright notice / whitespace
2018-01-17 23:47:52 +00:00
Francis Dupont
a279dace6b
bcmp -> memcmp
2018-01-17 15:33:11 +01:00
Francis Dupont
3c8b6e234c
Merged rt46864 (check MD5 amd SHA1 support)
2018-01-17 14:48:01 +01:00
Tinderbox User
b5c5aed2e1
update copyright notice / whitespace
2018-01-13 23:48:59 +00:00
Mukund Sivaraman
d072be0691
Fix various bugs reported by valgrind --tool=memcheck ( #46978 )
...
(cherry picked from commit f96133826e0374e1c3fd929329d2d6
2018-01-13 11:52:17 +05:30
Tinderbox User
666c04ebc2
update copyright notice / whitespace
2018-01-10 23:53:01 +00:00
Mark Andrews
9758be3259
4862. [bug] The rdata flags for RRSIG was not being properly set
...
when constructing a rdataslab. [RT #46978 ]
(cherry picked from commit 7befb67af4
2018-01-11 09:54:29 +11:00
Tinderbox User
65eb1cc79f
update copyright notice / whitespace
2018-01-09 23:48:12 +00:00
Mark Andrews
7255d990c0
4861. [bug] The isc_crc64 unit test was not endian independent.
...
[RT #46973 ]
(cherry picked from commit 0ce212b9f5
2018-01-10 09:47:03 +11:00
Mark Andrews
c58a814940
4860. [bug] isc_int8_t should be signed char. [RT #46973 ]
...
(cherry picked from commit 21f708c88c
2018-01-10 08:42:33 +11:00
Tinderbox User
0df4e44735
update copyright notice / whitespace
2018-01-04 23:46:47 +00:00
Mark Andrews
9e9bdd1e4a
unconditionally typedef summarystat_t for coverity
...
(cherry picked from commit a0e66ef6dd
2018-01-05 10:11:27 +11:00
Evan Hunt
9b4c653770
[v9_10] block validator deadlock and prevent use-after-free
...
4859. [bug] A loop was possible when attempting to validate
unsigned CNAME responses from secure zones;
this caused a delay in returning SERVFAIL and
also increased the chances of encountering
CVE-2017-3145. [RT #46839 ]
4858. [security] Addresses could be referenced after being freed
in resolver.c, causing an assertion failure.
(CVE-2017-3145) [RT #46839 ]
2018-01-03 19:19:53 -08:00
Tinderbox User
808bb5a170
update copyright notice / whitespace
2018-01-03 23:46:39 +00:00
Mark Andrews
cf0eda222d
missing newline in comment
...
(cherry picked from commit 7258b852cf
2018-01-03 17:11:59 +11:00
Tinderbox User
478c771590
update copyright notice / whitespace
2018-01-02 23:46:49 +00:00
Mark Andrews
743bb3b02b
4852. [bug] Add REQUIRE's and INSIST's to isc_time_formattimestamp,
...
isc_time_formathttptimestamp, isc_time_formatISO8601.
[RT #46892 ]
2018-01-02 10:49:09 +11:00
Tinderbox User
fc5764662b
regen v9_10
2017-12-29 02:29:40 +00:00
Mark Andrews
30a04f1808
initalize sigsize to zero; ATF_CHECK_EQ(sigsize, tsig.siglen);
...
(cherry picked from commit 9f61f6b46b
2017-12-22 08:59:09 +11:00
Mark Andrews
6f19384682
don't attempt to call isc_buffer_free(&buf) twice; don't attempt to call dns_message_destroy(&msg) twice; don't test for key != NULL
...
(cherry picked from commit cb8650d875
2017-12-12 13:25:06 +11:00
Mark Andrews
728cc3be42
4842. [bug] Conditionally compile opensslecdsa_link.c to avoid
...
warnings about unused function. [RT #46790 ]
(cherry picked from commit 63459cdc052d82ed9456
2017-12-07 13:32:40 +11:00
Tinderbox User
4724ccdf11
update copyright notice / whitespace
2017-12-06 23:46:58 +00:00
Mark Andrews
58c86991ee
4841. [bug] Address -fsanitize=undefined warnings. [RT #46786 ]
...
(cherry picked from commit 9d5a0abe81
2017-12-06 21:05:18 +11:00
Mark Andrews
0ebc93648f
4839. [bug] zone.c:zone_sign was not properly determining
...
if there were active KSK and ZSK keys for
a algorithm when update-check-ksk is true
(default) leaving records unsigned with one or
more DNSKEY algorithms. [RT #46774 ]
(cherry picked from commit 00f5ea91cf
2017-12-05 16:12:00 +11:00
Mark Andrews
376a8e1fbc
4838. [bug] zone.c:add_sigs was not properly determining
...
if there were active KSK and ZSK keys for
a algorithm when update-check-ksk is true
(default) leaving records unsigned with one or
more DNSKEY algorithms. [RT #46754 ]
(cherry picked from commit 6fa2a0691e677f507de7
2017-12-05 09:39:36 +11:00
Mark Andrews
5623f65cc4
4837. [bug] dns_update_signatures{inc} (add_sigs) was not
...
properly determining if there were active KSK and
ZSK keys for a algorithm when update-check-ksk is
true (default) leaving records unsigned. [RT #46743 ]
(cherry picked from commit 196e01da5fbf459d24a1
2017-12-04 10:09:29 +11:00
Tinderbox User
3beaa67016
update copyright notice / whitespace
2017-11-30 23:48:18 +00:00
Tinderbox User
5ad36b898d
update copyright notice / whitespace
2017-11-29 23:46:59 +00:00
Mark Andrews
d2bd6061ee
4833. [bug] isc_event_free should check that the event is not
...
linked when called. [RT #46725 ]
4832. [bug] Events were not being removed from zone->rss_events.
[RT #46725 ]
(cherry picked from commit 9ddf7d6c4c
2017-11-30 10:39:02 +11:00
Mark Andrews
42c82f1e6d
4831. [bug] Convert the RRSIG expirytime to 64 bits for
...
comparisions in diff.c:resign. [RT #46710 ]
(cherry picked from commit 0579a11658
2017-11-29 15:20:56 +11:00
Tinderbox User
4c40d4ca56
update copyright notice / whitespace
2017-11-28 23:47:03 +00:00
Mark Andrews
bcaca54fcc
4829. [bug] isc_heap_delete did not zero the index value when
...
the heap was created with a callback to do that.
[RT #46709 ]
(cherry picked from commit 65a483106e
2017-11-28 18:57:03 +11:00
Mark Andrews
c5c4b2c78d
map more entry points to <name>64
2017-11-28 14:18:46 +11:00
Mark Andrews
50b6f54ba8
#define update_recordsandbytes update_recordsandbytes64
2017-11-28 14:14:35 +11:00
Tinderbox User
796d7d08c0
update copyright notice / whitespace
2017-11-27 23:48:26 +00:00
Mark Andrews
f55ce15ae3
restore setting header->heap_index to zero in setsigningtime
...
(cherry picked from commit c22b540e4c
2017-11-28 06:47:44 +11:00
Mark Andrews
063500972f
More:
...
4819. [bug] Fully backout the transaction when adding a RRset
to the resigning / removal heaps fails. [RT #46473 ]
(cherry picked from commit 19f6a63184
2017-11-27 15:23:08 +11:00
Mark Andrews
72148d1505
add missing symbols
2017-11-27 15:01:13 +11:00
Mark Andrews
95cee77d5d
4817. [cleanup] Use DNS_NAME_INITABSOLUTE and DNS_NAME_INITNONABSOLUTE.
...
[RT #45433 ]
2017-11-27 13:26:27 +11:00
Mark Andrews
71829419e8
silence %lu vs size_t warning by casting to (unsigned long)
...
(cherry picked from commit 1dc8208a89
2017-11-24 10:26:43 +11:00
Mark Andrews
80238870db
in rdbdb.c:setsigningtime stop breaking heap invariant property unless we are going to restore the invariant property
...
(cherry picked from commit 6ead410268
2017-11-24 08:51:08 +11:00
Mark Andrews
1bb97e8000
silence compiler warning [RT #46471 ]
2017-11-23 17:03:42 +11:00
Michał Kępień
1fd4803e84
[v9_10] Refactor reclimit system test
...
4823. [test] Refactor reclimit system test to improve its
reliability and speed. [RT #46632 ]
(cherry picked from commit 6035d557c4
2017-11-21 10:33:53 +01:00
Tinderbox User
fce2f40be2
update copyright notice / whitespace
2017-11-17 23:46:28 +00:00
Mark Andrews
f0313a348f
remove out of date comment
...
(cherry picked from commit a197094d76
2017-11-18 08:52:04 +11:00
Mark Andrews
8b7fcd2aee
4821. [bug] When resigning ensure that the SOA's expire time is
...
always later that the resigning time of other records.
[RT #46473 ]
4820. [bug] dns_db_subtractrdataset should transfer the resigning
information to the new header. [RT #46473 ]
4819. [bug] Fully backout the transaction when adding a RRset
to the resigning / removal heaps fail. [RT #46473 ]
(cherry picked from commit 656eed7c9b
2017-11-18 07:22:29 +11:00
Tinderbox User
e96332743a
update copyright notice / whitespace
2017-11-14 23:46:58 +00:00
Mark Andrews
03e9a9f3c3
Revert "more DNS_NAME_INITABSOLUTE cases"
...
This reverts commit ad6f6a1cbf
2017-11-14 12:19:00 +11:00
Mark Andrews
ad6f6a1cbf
more DNS_NAME_INITABSOLUTE cases
...
(cherry picked from commit e2f9dcfd86
2017-11-14 11:54:54 +11:00
Tinderbox User
72189c1df2
update copyright notice / whitespace
2017-11-13 23:47:00 +00:00
