ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
16,537 Commits 589 Branches 805 Tags
2df87565643095cc0fedb9d97bc15f4089f3e8ed
Commit Graph

164 Commits

Author SHA1 Message Date
Mark Andrews
a4c4295268 update copyright notice 2006-01-04 23:50:21 +00:00
Mark Andrews
8019162f81 1940. [bug] Fixed a number of error conditions reported by 
Coverity.
 2006-01-04 03:43:20 +00:00
Mark Andrews
5a5d7187e5 1930. [port] HPUX: ia64 support. [RT #15473] 
1929.   [port]          FreeBSD: extend use of PTHREAD_SCOPE_SYSTEM.
 2005-10-14 01:38:51 +00:00
Mark Andrews
242ef7b98a update copyright notice 2005-03-17 03:58:33 +00:00
Mark Andrews
6eb7d9a2cb 1835. [bug] Update dnssec-signzone's usage message. [RT #13657] 2005-03-16 03:09:43 +00:00
Mark Andrews
d1c0ae939a 1803. [bug] dnssec-signzone sometimes failed to remove old 
RRSIGs. [RT #13483]
 2005-03-16 00:10:38 +00:00
Mark Andrews
0f3b0945fb 1740. [bug] Replace rbt's hash algorithm as it performed badly 
with certain zones. [RT #12729]
 2004-10-25 01:36:07 +00:00
Mark Andrews
9ab0d979a0 1704. [port] lwres needed a snprintf() implementation for 
platforms without snprintf().  Add missing
                        "#include <isc/print.h>". [RT #12321]
 2004-08-28 06:27:23 +00:00
Mark Andrews
ffd203bb9d 1699. [bug] dnssec-signzone can generate "not exact" errors 
when resigning. [RT #12281]
 2004-08-20 00:40:38 +00:00
Mark Andrews
e19cca9381 1696. [bug] dnssec-signzone failed to clean out nodes that 
consisted of only NSEC and RRSIG records.
                        [RT #12154]
 2004-08-11 08:56:05 +00:00
Mark Andrews
d6c44967f2 1659. [cleanup] Cleanup some messages that were referring to KEY vs 
DNSKEY, NXT vs NSEC and SIG vs RRSIG.

1658.   [func]          Update dnssec-keygen to default to KEY for HMAC-MD5
                        and DH.  Tighten which options apply to KEY and
                        DNSKEY records.
 2004-06-11 01:17:36 +00:00
Mark Andrews
46278b601d hide ((isc_event_t **) (void *)) cast using a macro, ISC_EVENT_PTR. 2004-04-15 02:10:41 +00:00
Mark Andrews
6790f1d962 1589. [func] DNSSEC lookaside validation. 
enable-dnssec -> dnssec-enable
 2004-03-10 02:55:59 +00:00
Mark Andrews
c3138c6928 doc regen / copyrights 2004-03-08 04:04:47 +00:00
Mark Andrews
a821d5fa3d DNSSEC bis merge from HEAD: 
1581.  [func]          Disable DNSSEC support by default.  To enable
                       DNSSEC specify "enable-dnssec yes;" in named.conf.

1565.  [bug]           CD flag should be copied to outgoing queries unless
                       the query is under a secure entry point in which case
                       CD should be set.

1558.  [func]          New DNSSEC 'disable-algorithms'.  Support entry into
                       child zones for which we don't have a supported
                       algorithm.  Such child zones are treated as unsigned.

1557.  [func]          Implement missing DNSSEC tests for
                       * NOQNAME proof with wildcard answers.
                       * NOWILDARD proof with NXDOMAIN.
                       Cache and return NOQNAME with wildcard answers.

1541.  [func]          NSEC now uses new bitmap format.

1519.  [bug]           dnssec-signzone:nsec_setbit() computed the wrong
                       length of the new bitmap.

1516.  [func]          Roll the DNSSEC types to RRSIG, NSEC and DNSKEY.
 2004-03-08 02:08:05 +00:00
Mark Andrews
a09e55f624 update copyrights 2004-03-06 10:22:54 +00:00
Mark Andrews
57b54234cd sizeof style 2003-09-11 00:18:18 +00:00
Mark Andrews
6aba9ae3cb 1403. [func] dnssec-signzone, dnssec-keygen, dnssec-makekeyset 
dnssec-signkey now report their version in the
                        usage message.
 2003-08-25 04:41:17 +00:00
Mark Andrews
39c8267888 1396. [func] dnssec-signzone: adjust the default signing time by 
1 hour to allow for clock skew.
 2003-08-22 06:40:04 +00:00
Mark Andrews
d930eaf77b 1331. [func] Generate DNSSEC wildcard proofs. 2003-08-18 07:35:54 +00:00
Mark Andrews
9052beb238 pullup 
Check return values or cast them to (void), as required by the coding
standards; add exceptions to the coding standards for cases where this is
not desirable
 2003-08-11 05:28:23 +00:00
Mark Andrews
72ceb8a6cc pullup: 
@Add bind9_getaddresses(), a consistent version of the get_address function
from dig/host/nslookup, nsupdate, and rndc.  This should make it
easier to have the various programs support multiple addresses for a hostname.
 2003-08-08 03:40:09 +00:00
Mark Andrews
854e4a3bfc 981. [func] The dnssec tools can now take multiple '-r randomfile' 
arguments.
 2003-08-01 23:50:46 +00:00
Mark Andrews
a7efbe70e7 merge 9.2.2 back into v9_2 2003-03-06 04:38:29 +00:00
Brian Wellington
818d9fec02 pullup: 
Improve error messages printed by dnssec tools when compiled
without crypto support (patch from Olafur)
 2001-10-05 00:21:48 +00:00
Danny Mayer
a9c57ae221 Bug fixes to support win32 2001-07-22 06:09:42 +00:00
Brian Wellington
1ba1b5242e pass DST_TYPE_PUBLIC | DST_TYPE_PRIVATE when both the public and private key 
should be read.
 2001-05-10 06:04:58 +00:00
Brian Wellington
bdfb3735ac check for DNS_R_SEENINCLUDE 2001-05-08 03:20:42 +00:00
Brian Wellington
c9c630ee84 If signing a zone fails, remove the partial file. [RT #1131] 2001-03-31 02:12:26 +00:00
Brian Wellington
bb74e8ce7b output the signed data into a temp file, then rename at the end. 2001-03-31 01:46:13 +00:00
Brian Wellington
70d08aea0a 800. [bug] dnssec-signzone produced incorrect statistics for 
large zones.  [RT #1133]
 2001-03-30 18:02:34 +00:00
Brian Wellington
45e22378fc dns_name_tofilenametext() now downcases the name, which means the callers 
don't need to.
 2001-03-27 23:43:15 +00:00
Brian Wellington
7d7215baf8 Add dns_name_tofilenametext(), and use it in the dnssec tools. 2001-03-27 22:57:48 +00:00
Brian Wellington
d566e8ea7b open databases with the root as origin when possible. 2001-03-27 22:08:39 +00:00
Brian Wellington
b03c1bf72f Make sure to create all keyset- and signedkey- files with downcased names; 
downcase names before looking for signedkey- files in dnssec-signzone.
 2001-03-23 03:59:00 +00:00
Brian Wellington
b43d1c1f46 Don't die if a child's key is in the zone and a signedkey file is present. 2001-01-12 23:36:03 +00:00
Brian Wellington
7dec36c225 677. [bug] dnssec-signzone would occasionally use the wrong ttl 
for database operations and fail. [RT #643]
 2001-01-12 01:38:21 +00:00
Brian Wellington
499b34cea0 copyright update 2001-01-09 22:01:04 +00:00
Andreas Gustafsson
5ccb842cda lined up columns in signing performance statistics output 
and made all the lines use colons consistently
 2000-12-15 19:26:54 +00:00
Andreas Gustafsson
7e044d7367 fixed several bugs in signing performance statistics printing 2000-12-15 19:19:56 +00:00
Andreas Gustafsson
cbd600f1ba spacing 2000-12-15 19:07:07 +00:00
Olafur Gudmundsson
acc63b06d9 [615] dnssec-signzone did not like child signed keysets with multiple 
signatures. (coredump)
[616] After consulting with Andreas I added some more timing statistics
	when statistics are requesed.
 2000-12-15 05:58:08 +00:00
Brian Wellington
31874cf824 Print the version of dnssec-signzone in a comment in the signed zone. 2000-12-12 20:21:34 +00:00
Mark Andrews
88a6fef494 init dns_rdata_t's 2000-12-11 23:09:47 +00:00
Brian Wellington
253f774e35 608. [func] dnssec-signzone now adds a comment to the zone 
with the time the file was signed.
 2000-12-11 22:55:25 +00:00
Brian Wellington
78838d3e0c 8 space -> tab conversion 2000-12-11 19:24:30 +00:00
Brian Wellington
911ed0d3be Split journal.[ch] into journal.[ch] and diff.[ch] 2000-12-09 02:17:12 +00:00
Brian Wellington
aeab541554 (void) , not () 2000-12-07 23:00:59 +00:00
Brian Wellington
64ee08a355 If there are no signing keys, don't make sure that the SIG bit is turned on 
when building NXTs.
 2000-12-07 21:49:11 +00:00
Brian Wellington
c9d7e543d0 597. [func] dnssec-signzone is now multithreaded. 2000-12-07 01:41:14 +00:00