ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,654 Commits 589 Branches 805 Tags
33c548251110c6991d017a1e071959972b6664d1
Commit Graph

819 Commits

Author SHA1 Message Date
Evan Hunt
4db36f766e [v9_10] disallow map zones in response-policy 
4269.	[bug]		Zones using "map" format master files currently
			don't work as policy zones.  This limitation has
			now been documented; attempting to use such zones
			in "response-policy" statements is now a
			configuration error.  [RT #38321]
 2015-12-02 21:10:43 -08:00
Mark Andrews
dbeb3f06ff 4264. [bug] Check const of strchr/strrchr assignments match 
argument's const status. [RT #41150]

(cherry picked from commit 5b1c7ef35b)
 2015-11-20 18:39:57 +11:00
Mark Andrews
f368713d9d 4254. [bug] Address missing lock when getting zone's serial. 
[RT #41072]

(cherry picked from commit 29868ebbe3)
 2015-11-05 17:44:27 +11:00
Evan Hunt
6878c2f64a [v9_10] fix theoretical shutdown race 
4226.	[bug]		Address a theoretical shutdown race in
			zone.c:notify_send_queue(). [RT #38958]
 2015-09-29 15:27:33 -07:00
Mark Andrews
8cbf220a1e 4181. [bug] Queued notify messages could be dequeued from the 
wrong rate limiter queue. [RT #40350]

(cherry picked from commit 70862302f8)
 2015-08-17 10:38:17 +10:00
Mark Andrews
d03dbac02e 4164. [bug] Don't rename slave files and journals on out of memory. 
[RT #40033]

4163.   [bug]           Address compiler warnings. [RT #40024]

(cherry picked from commit 3a49d0ff10)
 2015-07-13 09:48:42 +10:00
Mukund Sivaraman
f69f188b90 Fix a bug printing zone names with '/' character in XML and JSON stats (#39873) 
(cherry picked from commit 08f0129732)

Conflicts:
	bin/tests/system/statistics/clean.sh
 2015-06-29 18:46:36 +05:30
Mark Andrews
be4b9178f0 4143. [bug] serial-query-rate was not effective for notify. 
[RT #39858]
 2015-06-24 20:54:56 +10:00
Evan Hunt
f89d03dc9e [v9_10] further RPZ fixes 
4131.	[bug]		Addressed further problems with reloading RPZ
			zones. [RT #39649]
 2015-06-03 18:19:19 -07:00
Mark Andrews
c9ca5e3c87 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] 
(cherry picked from commit e53e202ef3)
 2015-05-28 13:17:24 +10:00
Tinderbox User
41cb49b786 update copyright notice / whitespace 2015-05-27 23:45:52 +00:00
Mark Andrews
d8161b8756 4127. [protocol] CDS and CDNSKEY need to be signed by the key signing 
key as per RFC 7344, Section 4.1. [RT #37215]

(cherry picked from commit 598b502695)
 2015-05-27 15:36:55 +10:00
Evan Hunt
a6a15bb069 [v9_10] address regression 
4126.	[bug]		Addressed a regression introduced in change #4121.
			[RT #39611]
 2015-05-26 19:11:54 -07:00
Mark Andrews
6a905abeff dns_updatemethod_none is not appropriate for 9.10 2015-04-17 15:45:28 +10:00
Mark Andrews
cc38fe32c0 4104. [bug] Address uninitialized elements. [RT #39252] 
(cherry picked from commit f1a261ba2d)
 2015-04-17 14:06:53 +10:00
Mark Andrews
5c052b2f58 4095. [bug] zone->options2 was not being properly initalized. 
[RT #39228]

(cherry picked from commit 54fe1d05b6)
 2015-04-11 08:04:34 +10:00
Mukund Sivaraman
76d6b3c544 Send notifies immediately for slave zones during startup (#38843) 
(cherry picked from commit 9a7532f836)
 2015-03-25 12:46:39 +05:30
Mukund Sivaraman
ac1ccdd323 Fix a crash due to use-after-free (#38495) 
(cherry picked from commit ebeb4b3e09)
 2015-03-18 06:43:33 +05:30
Mark Andrews
b07543b521 4082. [bug] Incrementally sign large inline zone deltas. 
[RT #37927]

(cherry picked from commit 1b05d22789)
 2015-03-05 10:05:39 +11:00
Mark Andrews
a55c3151b2 4081. [cleanup] Use dns_rdatalist_init consistently. [RT #38759] 
(cherry picked from commit 29d52c001f)
 2015-03-03 16:49:37 +11:00
Mark Andrews
374fce8495 4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708] 
(cherry picked from commit af669cb4fd)

Conflicts:
	bin/named/client.c
	lib/dns/request.c
	lib/dns/view.c
 2015-02-27 10:59:45 +11:00
Evan Hunt
62fd632bcb [v9_10] fix LOADPENDING issues 
4063.	[bug]		Asynchronous zone loads were not handled
			correctly when the zone load was already in
			progress; this could trigger a crash in zt.c.
			[RT #37573]

(cherry picked from commit 7acc2f2156)
 2015-02-25 16:11:10 -08:00
Evan Hunt
1088ad4cb9 [v9_10] set mkeytimers from #defines 2015-02-23 21:11:40 -08:00
Tinderbox User
d5bad8c9b9 update copyright notice / whitespace 2015-02-10 23:45:50 +00:00
Evan Hunt
f87d4ca084 [v9_10] 5011 fixes 
4056.	[bug]		Fixed several small bugs in automatic trust anchor
			management, including a memory leak and a possible
			loss of key state information. [RT #38458]
 2015-02-10 12:59:38 -08:00
Evan Hunt
6bd82ee4a5 [v9_10] avoid crash due to managed-key rollover 
4053.	[security]	Revoking a managed trust anchor and supplying
			an untrusted replacement could cause named
			to crash with an assertion failure.
			(CVE-2015-1349) [RT #38344]
 2015-02-03 18:25:58 -08:00
Mark Andrews
9b02bf01a1 4045. [bug] Skip to next master on dns_request_createvia4 failure. 
[RT #25185]

(cherry picked from commit 875574f1e4)
 2015-01-22 15:57:16 +11:00
Tinderbox User
3817256ab9 update copyright notice / whitespace 2015-01-20 23:47:01 +00:00
Evan Hunt
1ef4faabd5 [v9_10] clean up gcc -Wshadow warnings 
4039.	[cleanup]	Cleaned up warnings from gcc -Wshadow. [RT #37381]
 2015-01-20 13:43:35 -08:00
Mark Andrews
4b499125a9 4037. [bug] also-notify was ignoring the tsig key when checking 
for duplicates resulting in some expected notify
                        messages not being sent. [RT #38369]

(cherry picked from commit f8eb4e5bfd)
 2015-01-20 16:46:06 +11:00
Evan Hunt
96b6923a25 [v9_10] reference leak with AAAA glue but not A 
4004.	[bug]		When delegations had AAAA glue but not A, a
			reference could be leaked causing an assertion
			failure on shutdown. [RT #37796]

(cherry picked from commit c4abb19716)
 2014-11-14 09:04:44 -08:00
Tinderbox User
53b878cd1c update copyright notice 2014-10-31 23:45:48 +00:00
Mark Andrews
1083f358ae 3995. [bug] receive_secure_serial holds the zone lock for too 
long. [RT #37626]

(cherry picked from commit 4e59131f18)
 2014-10-31 11:39:45 +11:00
Mark Andrews
ab7a781bc3 3989. [cleanup] Remove redundent dns_db_resigned calls. [RT #35748] 
(cherry picked from commit eb5243365c)
 2014-10-30 10:54:26 +11:00
Evan Hunt
5c409ba290 [v9_10] correctly validate 5011 trust anchors 
3976.	[bug]		When refreshing managed-key trust anchors, clear
			any cached trust so that they will always be
			revalidated with the current set of secure
			roots. [RT #37506]

(cherry picked from commit eb6d61d5e0)
 2014-10-17 15:41:55 -07:00
Mark Andrews
9fe54596cc 3966. [bug] Missing dns_db_closeversion call in receive_secure_db. 
[RT #35746]

(cherry picked from commit 9c0589bc8b)
 2014-10-03 07:51:45 +10:00
Tinderbox User
d5a5ca7225 update copyright notice 2014-09-30 23:46:53 +00:00
Mark Andrews
a6869655d6 3961. [bug] Forwarding of SIG(0) signed UPDATE messages failed with 
BADSIG.  [RT #37216]
 2014-10-01 07:37:27 +10:00
Tinderbox User
1c536f8e6f update copyright notice 2014-09-28 23:45:47 +00:00
Mark Andrews
319659fc23 3955. [bug] Notify messages due to changes are no longer queued 
behind startup notify messages. [RT #24454]
 2014-09-29 09:32:22 +10:00
Mark Andrews
b38ca786e1 update named-checkzone manpage for SPF changes 2014-09-13 07:56:13 +10:00
Mark Andrews
77dbd56ad7 silence coverity, explicitly ignore dns_peer_gettransferdscp result 2014-07-18 12:55:24 +10:00
Mark Andrews
555137ee1f 3873. [protocol] Only warn for SPF without TXT spf record. [RT #36210] 
(cherry picked from commit 634f66c659dade56502b55b1bbd514e5cfcae185)
 2014-06-10 09:30:04 +10:00
Mark Andrews
eac1484001 suppress clang static analysis warning 
(cherry picked from commit e188b84bc4)
 2014-05-11 10:48:23 +10:00
Mark Andrews
64f015935f 3841. [cleanup] Refactor zone.c:add_opt to use dns_message_buildopt. 
[RT #35924]

(cherry picked from commit faa01edd13)
 2014-05-08 09:39:06 +10:00
Evan Hunt
de03407445 [v9_10] restore changes post 9.10.0 
This reverts commit 2bb45e9515.
 2014-04-25 16:29:32 -07:00
Evan Hunt
2bb45e9515 [v9_10] revert so 9.10.0 can be tagged 
(changes for 9.10.1 were inadvertently committed early)
 2014-04-25 16:27:03 -07:00
Mark Andrews
7ce6651a2a 3819. [bug] NSEC3 hashes need to be able to be entered and 
displayed without padding.  This is not a issue for
                        currently defined algorithms but may be for future
                        hash algorithms. [RT #27925]

(cherry picked from commit 36e5ac0033)
 2014-04-24 19:12:00 +10:00
Evan Hunt
bbd5c0ab33 [master] fix possible assertion in save_nsec3param() 
3793.	[bug]		zone.c:save_nsec3param() could assert when out of
			memory. [RT #35621]
 2014-03-26 13:12:35 -07:00
Mark Andrews
c1f26bd63c silence clang compiler warnings 2014-03-26 16:20:31 +11:00