ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
12,227 Commits 589 Branches 805 Tags
3ad4e307b64bcf8baa984e10a4e7549dbeaea31d
Commit Graph

3969 Commits

Author SHA1 Message Date
Brian Wellington
8839b6acbf clean up the shutdown "logic". 2002-02-05 19:46:30 +00:00
Brian Wellington
db462c020e spacing 2002-02-05 19:44:55 +00:00
Brian Wellington
32dd66cc5e spacing 2002-02-05 07:54:08 +00:00
Brian Wellington
ecb55f9962 The code for parsing non-answer messages could get confused if it saw a SIG NS 
before an NS.
 2002-02-05 01:15:21 +00:00
Brian Wellington
18b7133679 more minor cleanups 2002-02-01 20:18:33 +00:00
Brian Wellington
23e4260821 minor cleanup 2002-02-01 20:08:56 +00:00
Brian Wellington
9ecd36e0de RFC 2065 -> RFC 2535 2002-01-31 01:50:46 +00:00
Brian Wellington
0062c1ddfe 1192. [bug] The seconds fields in LOC records were restricted 
to three decimal places.  More decimal places should
			be allowed and silently truncated.
 2002-01-27 20:52:47 +00:00
Mark Andrews
db18d1997e DNS_ZONEFLG_FLUSH was not being cleared. 
dns_zone_flush() could return a misleading result.
If the zone was being dumped incrementaly when dns_zone_flush() was
called ensure that it gets redumped if the were still outstanding
changes.
 2002-01-24 13:45:36 +00:00
Brian Wellington
b6279d0b4b Don't freeze an already frozen zone. 2002-01-24 09:58:42 +00:00
Brian Wellington
b2ca6fd3a8 #1187 was both unclean and broken. Fix it and clean it up. 2002-01-23 08:46:40 +00:00
Mark Andrews
7e715a0fc5 alignment 2002-01-23 03:42:23 +00:00
Andreas Gustafsson
b6e20238b6 Fix RT #2309 differently, allowing rather than rejecting empty 
also-notify clauses
 2002-01-23 02:03:05 +00:00
Brian Wellington
cde7dfea4c 1190. [func] Add the "rndc freeze" and"rndc unfreeze" commands. 
[RT #2394]

Basically, "freeze" disables dynamic updates to a zone, syncs the journal
file into the master file, and removes the journal.  This allows manual
edits of a dynamic zone file without stopping the server, since the
zone is temporarily considered non-dynamic.  "unfreeze" re-enables dynamic
updates to a zone.

So, instead of the old:
	rndc stop
	edit master file
	remove journal
	restart server
you can now do:
	rndc freeze zone
	edit master file
	rndc reload zone
	rndc unfreeze zone
which doesn't require stopping the server.

About everyone here at the secure dynamic update workshop wanted this.
It will be documented soon.
 2002-01-22 22:05:59 +00:00
Andreas Gustafsson
915c16e8aa typo in comment 2002-01-22 21:52:32 +00:00
Brian Wellington
2ca2e1a1ce 1188. [bug] Dynamic updates of a signed zone would fail if 
some of the zone private keys were unavailable.
 2002-01-22 13:04:45 +00:00
Brian Wellington
84185d19c7 1187. [bug] named was incorrectly returning DNSSEC records 
in negative responses when the DO bit was not set.
 2002-01-22 09:07:30 +00:00
Brian Wellington
8569ab045a 1182. [bug] The server could throw an assertion failure when 
constructing a negative response packet.
 2002-01-21 16:26:06 +00:00
Brian Wellington
a5c077e40c 1181. [func] Add the "key-directory" configuration statement, 
which allows the server to look for online signing
			keys in alternate directories.
 2002-01-21 11:00:25 +00:00
Brian Wellington
930ecd3756 style 2002-01-21 09:47:09 +00:00
Brian Wellington
97527fc03c 1179. [func] Add SIG(0) support to nsupdate. 2002-01-21 07:59:15 +00:00
Mark Andrews
c46f10e4a1 Use as_textregion.base not as_pointer. [RT #2385] 2002-01-21 01:07:32 +00:00
Mark Andrews
e1c2a8b9c1 1178. [func] Follow and cache (if appropriate) A6 and other 
data chains to completion in the additional section.
 2002-01-17 00:16:30 +00:00
Brian Wellington
3a8d4a316e openssl 0.9.6a and higher don't have the RSA locking bug that earlier versions 
did, so don't disable precomputation.  Note that while this was fixed for
RSA, other algorithms still don't do locking when performing precomputation,
and thus we still disable it.
 2002-01-15 22:09:45 +00:00
Mark Andrews
b7064914ca 1177. [func] Report view when loading zones if it is not a 
standard view (_default or _bind). [RT #2270]
 2002-01-15 06:42:15 +00:00
Olafur Gudmundsson
90e303b114 Adding function isc_region_compare and using in instead of compare_region in lib/dns 2002-01-05 07:05:28 +00:00
Brian Wellington
b7dca533e0 avoid calling set_offsets() in dns_name_copy() if possible. 2001-12-28 20:59:27 +00:00
Mark Andrews
0fa218cc7c reduce the log level of connection reset from error to info. 2001-12-27 05:07:26 +00:00
Mark Andrews
da5d1cf1b1 1164. [bug] "Not Implemented" should be reported as NOTIMP. 2001-12-19 12:16:47 +00:00
Brian Wellington
0118965e19 fix large DH key generation, hopefully for the last time. 2001-12-18 06:05:41 +00:00
Brian Wellington
1898837a5e Add the well-known 1536 bit prime from draft-ietf-dnsext-rfc2539bis-dhk-01.txt 2001-12-12 17:18:52 +00:00
Brian Wellington
9af8851b85 whitespace style 2001-12-12 17:09:39 +00:00
Brian Wellington
0cb27602e5 1160. [bug] Generating Diffie-Hellman keys longer than 1024 
bits could fail. [RT #2241]
 2001-12-12 16:43:24 +00:00
Mark Andrews
5af6873693 tag slave zones when loading 2001-12-11 20:52:41 +00:00
Mark Andrews
ff1b064f5e 1159. [bug] MD and MF are not permitted to be loaded by RFC1123. 2001-12-11 20:37:16 +00:00
Brian Wellington
efc01ed4ad fix comment 2001-12-08 02:14:46 +00:00
Brian Wellington
708f3fd049 Added the DNS_DBFIND_FORCENXT flag to dns_db_find, which causes the lookup 
to search for NXT records, even if the zone is not marked as secure.
 2001-12-08 00:37:07 +00:00
Mark Andrews
880723fb13 1157. [func] match-clients and match-destinations now accept 
keys. [RT #2045]
 2001-12-06 04:38:51 +00:00
Mark Andrews
e23cb8a303 RUNTIME_CHECK(dns_rdata_tostruct()) 
if isc_time_add() fails, issue warning message and retry with a half interval,
this should only happen if we are approaching time wrap around (2038 for UNIX
systems).
 2001-12-05 03:21:23 +00:00
Andreas Gustafsson
ee515ce130 commented 2001-12-05 03:05:30 +00:00
Mark Andrews
fefbb64a75 1155. [func] Recover from master files being removed from under 
us.
 2001-12-04 05:17:53 +00:00
Brian Wellington
41e50ece38 add dns_name_hashbylabel() and make the rbt use it. 2001-12-04 01:32:44 +00:00
Andreas Gustafsson
5d727330e4 brace style 2001-12-03 19:44:08 +00:00
Brian Wellington
b7415ddd79 let isc_lex_destroy() close sources. 2001-11-30 18:26:46 +00:00
Mark Andrews
5e8f2512a6 leave isc_lex_destroy() to close any open streams. 2001-11-30 03:14:50 +00:00
Brian Wellington
2e4bec457d Before signing with a key, make sure that it's not the public-only part. 
A sane crypto toolkit would catch this and return an error, but openssl
unceremoniously seg faults.
 2001-11-30 02:11:04 +00:00
Andreas Gustafsson
1f1d36a87b Check return values or cast them to (void), as required by the coding 
standards; add exceptions to the coding standards for cases where this is
not desirable
 2001-11-30 01:59:49 +00:00
Andreas Gustafsson
242bba8991 1151. [bug] nslookup failed to check that the arguments to 
the port, timeout, and retry options were
                        valid integers and in range. [RT #2099]

1150.   [bug]           named incorrectly accepted TTL values
                        containing plus or minus signs, such as
                        1d+1h-1s.

1149.   [func]          New function isc_parse_uint32().
 2001-11-30 01:02:18 +00:00
Mark Andrews
ef29912666 1147. [func] Set IPV6_IPV6ONLY on IPv6 sockets if supported by 
the OS.  listen-on-v6 { any; }; should no longer
                        result in IPv4 queries be accepted.  Similarly
                        control { inet :: ... }; should no longer result
                        in IPv4 connections being accepted.  This can be
                        overridden at compile time by defining
                        ISC_ALLOW_MAPPED=1.
 2001-11-29 13:14:33 +00:00
Andreas Gustafsson
bfbea562e6 new function dns_diff_applysilently() [RT #2157] 2001-11-29 00:15:35 +00:00