bind9

Author	SHA1	Message	Date
Mark Andrews	daa73eae70	silence punned messages	2004-02-03 00:59:05 +00:00
Mark Andrews	35541328a8	1558. [func] New DNSSEC 'disable-algorithms'. Support entry into child zones for which we don't have a supported algorithm. Such child zones are treated as unsigned. 1557. [func] Implement missing DNSSEC tests for * NOQNAME proof with wildcard answers. * NOWILDARD proof with NXDOMAIN. Cache and return NOQNAME with wildcard answers.	2004-01-14 02:06:51 +00:00
Mark Andrews	9991accfe2	sync options string with reality	2004-01-05 05:14:51 +00:00
Mark Andrews	185fd22738	1541. [func] NSEC now uses new bitmap format.	2003-12-13 04:20:44 +00:00
Mark Andrews	0f98d5c83e	repeated words	2003-11-02 22:49:10 +00:00
Mark Andrews	94be8e357c	1519. [bug] dnssec-signzone:nsec_setbit() computed the wrong length of the new bitmap.	2003-10-01 04:10:26 +00:00
Mark Andrews	3970098dcd	regen documentation	2003-09-30 06:13:33 +00:00
Mark Andrews	93d6dfaf66	1516. [func] Roll the DNSSEC types to RRSIG, NSEC and DNSKEY.	2003-09-30 06:00:40 +00:00
Mark Andrews	5eb91bd90e	silence compiler warnings (HPUX/11i)	2003-07-25 00:01:16 +00:00
Mark Andrews	492c2a9c24	nxt_setbit() could generate bad bit masks setting the DS bit in the NXT record would result in a bad signature being generated.	2003-04-17 03:45:49 +00:00
Mark Andrews	b587e1d83f	spelling	2003-02-07 01:13:13 +00:00
Mark Andrews	b0c15bd979	1415. [func] DS TTL now derived from NS ttl. NXT TTL now derived from SOA MINIMUM. 1414. [func] Support for KSK flag.	2003-01-18 02:40:59 +00:00
Mark Andrews	bf7f253e30	1413. [func] Explictly request the (re-)generation of DS records from keysets (dnssec-signzone -g). developer: marka reviewer: explorer	2003-01-18 00:24:09 +00:00
Mark Andrews	f4cbe536b1	cygwin support	2002-12-27 03:29:37 +00:00
Mark Andrews	93e353425a	1403. [func] dnssec-signzone, dnssec-keygen, dnssec-makekeyset dnssec-signkey now report their version in the usage message.	2002-12-03 05:01:34 +00:00
Michael Graff	4411b9b6e7	pull down rt3507 (work by Mark, checked by me)	2002-11-12 21:52:44 +00:00
Mark Andrews	9977600381	1396. [func] dnssec-signzone: adjust the default signing time by 1 hour to allow for clock skew.	2002-11-04 00:16:05 +00:00
Mark Andrews	c54c1eaf26	1251. [func] Generate DNSSEC wildcard proofs.	2002-07-19 03:50:42 +00:00
Mark Andrews	8d77066ba0	1342. [bug] dnssec-signzone usage message was misleading. 1341. [bug] If the last RRset in a zone is glue, dnssec-signzone would incorrectly duplicate its output and sign it.	2002-07-01 07:37:38 +00:00
Mark Andrews	0b09763c35	1328. [func] DS (delegation signer) support.	2002-06-17 04:01:37 +00:00
Mark Andrews	e1cbf95aec	regen	2002-02-20 04:31:44 +00:00
Mark Andrews	a7038d1a05	copyrights	2002-02-20 03:35:59 +00:00
Brian Wellington	6c62c34a5b	signing the root zone didn't work.	2002-02-05 05:16:11 +00:00
Brian Wellington	2ca556300b	1180. [func] dnssec-keygen should always generate keys with protocol 3 (DNSSEC), since it's less confusing that way.	2002-01-21 10:13:20 +00:00
Brian Wellington	e57e32e575	restructuring - build the nxt chain independently from the signing process	2001-12-08 00:38:40 +00:00
Brian Wellington	8740bb8af0	remove #defines that shouldn't be there.	2001-12-07 01:55:42 +00:00
Andreas Gustafsson	1f1d36a87b	Check return values or cast them to (void), as required by the coding standards; add exceptions to the coding standards for cases where this is not desirable	2001-11-30 01:59:49 +00:00
Brian Wellington	6785447aaf	use dns_diff_applysilently	2001-11-29 00:39:07 +00:00
Brian Wellington	8771fbe4a2	1142. [bug] dnssec-signzone would fail to delete temporary files in some failure cases. [RT #2144]	2001-11-27 22:08:58 +00:00
Brian Wellington	d9af67ef70	add RSA to the secalgs list in rdata.c (as a synonym for RSAMD5), remove the special case code in dnssec-keygen to parse RSA.	2001-11-15 19:44:52 +00:00
Brian Wellington	47b4920f08	add the undocumented -S (simple output format) option	2001-11-15 00:51:23 +00:00
Brian Wellington	08e4f1ac94	oops, inadvertantly checked in a change here.	2001-11-14 22:14:19 +00:00
Brian Wellington	b493dfe8bc	Add bind9_getaddresses(), a consistent version of the get_address function from dig/host/nslookup, nsupdate, and rndc. This should make it easier to have the various programs support multiple addresses for a hostname.	2001-11-14 22:08:38 +00:00
Brian Wellington	0e40083fdd	@DNS_OPENSSL_LIBS@ -> @DNS_CRYPTO_LIBS@	2001-11-06 20:05:13 +00:00
Brian Wellington	5fc04b8135	add an assertion check (which will never be triggered)	2001-10-26 21:08:03 +00:00
Brian Wellington	b9043a19e2	missing ISC_TF	2001-10-22 23:49:13 +00:00
Brian Wellington	05a1fd6093	more minor cleanup	2001-10-18 22:36:52 +00:00
Brian Wellington	f6132a5038	minor code restructure	2001-10-18 00:40:50 +00:00
Andreas Gustafsson	d25365515e	consistently begin error messages with a lower case letter	2001-10-11 22:53:46 +00:00
Brian Wellington	ce1d4c7aeb	Print an error when creating a zone key with an algorithm that is not allowed for a zone key.	2001-10-11 22:19:15 +00:00
Andreas Gustafsson	94ce9c52fb	Improve error messages printed by dnssec tools when compiled without crypto support (patch from Olafur)	2001-10-04 23:48:16 +00:00
Brian Wellington	f2d88ed98c	clarify help text	2001-09-25 22:47:02 +00:00
Brian Wellington	39504d4517	remove dead code, consolidate dupliacted code.	2001-09-21 00:17:01 +00:00
Brian Wellington	87647e12e9	more minor cleanups	2001-09-21 00:02:20 +00:00
Brian Wellington	3bf31a5161	misc cleanup	2001-09-20 21:51:05 +00:00
Mark Andrews	c2bc56dc65	Move configuration checking to libbind9.	2001-09-20 15:17:07 +00:00
Andreas Gustafsson	2f734e0a7e	sizeof style	2001-09-19 23:08:24 +00:00
Brian Wellington	b4c38fdd69	cleanups and rewrites	2001-09-19 21:24:34 +00:00
Brian Wellington	97f4d2e8f4	typo	2001-09-19 21:00:35 +00:00
Brian Wellington	19d684e84f	fix potential memory leak	2001-09-19 19:22:28 +00:00

1 2 3 4 5 ...

305 Commits