ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
17,983 Commits 589 Branches 805 Tags
27fbb459d7aff2fc178f8620ce4e154cd9057fc0
Commit Graph

4723 Commits

Author SHA1 Message Date
Mark Andrews
f1c2e9fc96 mark node as from nsec3 tree using 9.6.x method 2010-09-07 01:38:51 +00:00
Mark Andrews
279fa6e621 2951. [bug] named failed to generate a correct signed response 
in a optout, delegation only zone with no secure
                        delegations. [RT #22007]
 2010-09-07 01:15:55 +00:00
Mark Andrews
6039a662c1 9.6-ESV-R2 2010-09-03 03:15:25 +00:00
Mark Andrews
25d78ece28 2869. [bug] Fix arguments to dns_keytable_findnextkeynode() call. 
[RT #20877]
 2010-09-03 02:55:18 +00:00
Mark Andrews
c44bb94bc8 2940. [func] Check that named successfully skips NSEC3 records 
that fail to match the NSEC3PARAM record currently
                        in use. [RT# 21868]
 2010-08-13 07:25:22 +00:00
Automatic Updater
5d718a2f9c update copyright notice 2010-08-12 23:46:25 +00:00
Tatuya JINMEI 神明達哉
302cb51bc4 2937. [bug] Worked around an apparent race condition in over 
memory conditions.  Without this fix a DNS cache DB or
			ADB could incorrectly stay in an over memory state,
			effectively refusing further caching, which
			subsequently made a BIND 9 caching server unworkable.
			This fix prevents this problem from happening by
			polling the state of the memory context, rather than
			making a copy of the state, which appeared to cause
			a race.  This is a "workaround" in that it doesn't
			solve the possible race per se, but several experiments
			proved this change solves the symptom.  Also, the
			polling overhead hasn't been reported to be an issue.
			This bug should only affect a caching server that
			specifies a finite max-cache-size.  It's also quite
			likely that the bug happens only when enabling threads,
			but it's not confirmed yet. [RT #21818]
 2010-08-11 23:42:53 +00:00
Mark Andrews
7a2f2d9ba0 cvs rdiff -r1.2931.2.271 -r1.2931.2.272 bind9/CHANGES 
cvs rdiff -r1.166.34.3 -r1.166.34.4 bind9/bin/named/main.c
cvs rdiff -r1.313.20.18 -r1.313.20.19 bind9/bin/named/query.c
cvs rdiff -r1.80 -r1.80.12.1 bind9/bin/named/include/named/globals.h
cvs rdiff -r1.13 -r1.13.176.1 bind9/bin/tests/system/start.pl
cvs rdiff -r1.53.48.7 -r1.53.48.8 bind9/bin/tests/system/dnssec/tests.sh
cvs rdiff -r1.13 -r1.13.48.1 \
    bind9/bin/tests/system/dnssec/ns3/secure.example.db.in
cvs rdiff -r1.3 -r1.3.48.1 bind9/bin/tests/system/dnssec/ns7/named.conf
cvs rdiff -r0 -r1.2.4.2 bind9/bin/tests/system/dnssec/ns7/named.nosoa \
    bind9/bin/tests/system/dnssec/ns7/nosoa.secure.example.db
cvs rdiff -r1.164.12.21 -r1.164.12.22 bind9/lib/dns/validator.c
 2010-06-26 00:02:45 +00:00
Automatic Updater
4e1806d320 update copyright notice 2010-06-23 23:46:25 +00:00
Mark Andrews
d0e0f26753 2921. [bug] The resolver could attempt to destroy a fetch context 
to soon.  [RT #19878]
 2010-06-23 01:51:30 +00:00
Automatic Updater
e8bfdebfad update copyright notice 2010-06-04 23:49:23 +00:00
Mark Andrews
f18a54a190 remove trailing comma 2010-06-04 00:17:01 +00:00
Mark Andrews
43a3530e26 silence compiler, explict coversion 2010-05-19 09:56:44 +00:00
Mark Andrews
b24553b060 2900. [bug] The placeholder negative caching element was not 
properly constructed triggering a INSIST in
                        dns_ncache_towire(). [RT #21346]
 2010-05-19 06:56:01 +00:00
Automatic Updater
3541849eb2 update copyright notice 2010-05-14 23:48:44 +00:00
Mark Andrews
cccda7f37e 2890. [bug] Handle the introduction of new trusted-keys and 
DS, DLV RRsets better. [RT #21097]
 2010-05-14 03:11:02 +00:00
Mark Andrews
1fc35fe236 9.6-ESV-R1 2010-05-10 03:01:18 +00:00
Mark Andrews
48d417b283 2876. [bug] Named could return SERVFAIL for negative responses 
from unsigned zones. [RT #21131]
 2010-04-21 04:25:51 +00:00
Mark Andrews
a3398dba83 9.6-ESV 2010-03-03 22:06:40 +00:00
Mark Andrews
dbd13430ce 9.6.2 2010-02-18 03:40:09 +00:00
Mark Andrews
1077e73992 silence compiler warning 2010-01-22 02:36:49 +00:00
Automatic Updater
9feb8eda57 update copyright notice 2010-01-15 23:47:34 +00:00
Evan Hunt
9b72b0258e prepare for 9.6.2rc1 release 2010-01-15 21:12:11 +00:00
Evan Hunt
3f39cbcc76 2838. [func] Backport support for SHA-2 DNSSEC algorithms, 
RSASHA256 and RSASHA512, from BIND 9.7.  (This
			incorporates changes 2726 and 2738 from that
			release branch.) [RT #20871]
 2010-01-15 19:38:54 +00:00
Automatic Updater
d889e9701a update copyright notice 2010-01-11 23:47:22 +00:00
Francis Dupont
6720b9fe94 Prevent Linux spurious warnings about fwrite(). [RT #20812] 2010-01-11 11:02:32 +00:00
Automatic Updater
c91b60a119 update copyright notice 2010-01-07 23:47:36 +00:00
Evan Hunt
0f83518a99 2831. [security] Do not attempt to validate or cache 
out-of-bailiwick data returned with a secure
			answer; it must be re-fetched from its original
			source and validated in that context. [RT #20819]
 2010-01-07 17:49:01 +00:00
Automatic Updater
ef413fafe5 update copyright notice 2009-12-30 23:47:31 +00:00
Tatuya JINMEI 神明達哉
450c3bb498 2828. [security] Cached CNAME or DNAME RR could be returned to clients 
without DNSSEC validation. [RT #20737]

9.4-ESV, 9.5.3, 9.6.2, 9.7.0, 9.8.0(?)
 2009-12-30 08:34:30 +00:00
Evan Hunt
c7c6605eb0 2827. [security] Bogus NXDOMAIN could be cached as if valid. [RT #20712] 2009-12-30 06:44:45 +00:00
Mark Andrews
ae787010e1 2823. [bug] rbtdb.c:getsigningtime() was missing locks. [RT #20781] 2009-12-29 22:12:35 +00:00
Evan Hunt
65bbefae47 2819. [cleanup] Removed unnecessary DNS_POINTER_MAXHOPS define 
[RT #20771]
 2009-12-24 00:34:59 +00:00
Mark Andrews
669b1ee4d8 2814. [func] Provide a definitive error message when a master 
zone is not loaded. [RT #20757]
 2009-12-21 04:32:42 +00:00
Mark Andrews
b1c2fed160 dns_dnssec_selfsigns 2009-12-03 05:42:39 +00:00
Mark Andrews
8b7fa47bf2 2797. [bug] Don't decrement the dispatch manager's maxbuffers. 
[RT #20613]
 2009-12-02 23:26:28 +00:00
Mark Andrews
ce0d2caf1b 9.6.2b1 2009-12-02 23:03:04 +00:00
Mark Andrews
820251a036 display NSEC3DSA/NSEC3RSASHA1 keytype in .private comment 2009-11-29 23:21:27 +00:00
Automatic Updater
1beb3ce612 update copyright notice 2009-11-26 23:47:33 +00:00
Mark Andrews
432b145c6e 2790. [bug] Handle DS queries to stub zones. 2009-11-26 03:36:45 +00:00
Mark Andrews
bda68146b0 declarations before statements 2009-11-26 02:35:43 +00:00
Automatic Updater
0a9fcb1124 update copyright notice 2009-11-25 23:48:42 +00:00
Evan Hunt
c8ae58f9f8 2789. [bug] Fixed an INSIST in dispatch.c [RT #20576] 2009-11-25 05:55:10 +00:00
Mark Andrews
eb5f89b06e 2786. [bug] Additional could be promoted to answer. [RT #20663] 2009-11-25 02:25:56 +00:00
Mark Andrews
eb60656b9b 2784. [bug] TC was not always being set when required glue was 
dropped. [RT #234186]
 2009-11-24 03:25:53 +00:00
Automatic Updater
8b39e41b24 update copyright notice 2009-11-18 23:47:24 +00:00
Mark Andrews
e7f4d4e09d 2772. [security] When validating, track whether pending data was from 
the additional section or not and only return it if
                        validates as secure. [RT #20438]
 2009-11-18 00:15:38 +00:00
Mark Andrews
7dc66d649a 2765. [bug] Skip masters for which the TSIG key cannot be found. 
[RT #20595]
 2009-11-12 23:39:23 +00:00
Automatic Updater
a1b08748d8 update copyright notice 2009-11-04 23:47:25 +00:00
Mark Andrews
450d4ae030 spelling 2009-11-04 04:21:57 +00:00