ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,355 Commits 589 Branches 805 Tags
3fe33590315cd5ab2af1f1b49e5ac36c9c195991
Commit Graph

65 Commits

Author SHA1 Message Date
Tinderbox User
ff69a0423e update copyright notice / whitespace 2016-11-08 23:57:34 +00:00
Mark Andrews
964e19cea8 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 2016-11-09 09:59:32 +11:00
Mark Andrews
507ffb566b bracket mismatch; window openssl version check 2015-12-06 23:10:31 +11:00
Mark Andrews
31085192d6 4264. [bug] Check const of strchr/strrchr assignments match 
argument's const status. [RT #41150]

(cherry picked from commit 5b1c7ef35b)
 2015-11-20 18:41:10 +11:00
Mark Andrews
db5b6b7150 4340. [port] Fix LibreSSL compatibility. [RT #40977] 
(cherry picked from commit f824c65d1f)
 2015-10-19 10:46:43 +11:00
Mark Andrews
2726af6715 #include <isc/safe.h> 2015-08-19 05:35:09 +10:00
Mark Andrews
88045c98ea Revert "#include <isc/safe.h>" 
This reverts commit e901c42e9f.
 2015-08-18 21:23:22 +10:00
Mark Andrews
e901c42e9f #include <isc/safe.h> 2015-08-18 19:43:19 +10:00
Evan Hunt
05d0d33cb8 [v9_9] timing safe memory comparisons 
4183.	[cleanup]	Use timing-safe memory comparisons in cryptographic
			code. Also, the timing-safe comparison functions have
			been renamed to avoid possible confusion with
			memcmp(). [RT #40148]

(cherry picked from commit 420a43c8d8)
 2015-08-17 18:31:11 -07:00
Evan Hunt
0d83784a75 [v9_9] address buffer accounting error 
4168.	[security]	A buffer accounting error could trigger an
			assertion failure when parsing certain malformed
			DNSSEC keys. (CVE-2015-5722) [RT #40212]

(cherry picked from commit ce9f893e21)
 2015-08-07 13:22:40 -07:00
Mark Andrews
c303b3a033 add INSIST to silence coverity 
(cherry picked from commit 03089dd420)
 2015-05-30 17:37:42 +10:00
Tinderbox User
2a71b08491 update copyright notice / whitespace 2015-05-28 23:46:13 +00:00
Mark Andrews
4adbc24505 4129. [port] Address API changes in OpenSSL 1.1.0. [RT #39532] 
(cherry picked from commit 8bb630c751)
 2015-05-28 14:41:59 +10:00
Mark Andrews
64b34aee39 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] 
(cherry picked from commit e53e202ef3)
 2015-05-28 13:26:19 +10:00
Tinderbox User
864ca7ce33 update copyright notice 2014-01-09 23:45:53 +00:00
Evan Hunt
8c7ce6d3e6 [v9_9] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]

(cherry picked from commit ebe54c7d2221c6a0a4b3d96bcae3280c823a45e6)
 2014-01-08 16:38:56 -08:00
Tinderbox User
a960d3a679 update copyright notice 2013-11-13 23:45:54 +00:00
Mark Andrews
2e4548087a 3642. [func] Allow externally generated DNSKEY to be imported 
into the DNSKEY management framework.  A new tool
                        dnssec-importkey is used to this. [RT #34698]
 2013-11-13 12:54:37 +11:00
Evan Hunt
152c393671 [v9_9] silence noisy OpenSSL logging 
3402.	[bug]		Correct interface numbers for IPv4 and IPv6 interfaces.
(cherry picked from commit 0e37e9e3d7)
 2012-10-24 13:00:06 -07:00
Mark Andrews
1cb0b6f8df cleanup unused variables 2012-07-24 12:20:59 +10:00
Mark Andrews
62eeb6c836 3354. [func] Improve OpenSSL error logging. [RT #29932] 2012-07-23 15:09:42 +10:00
Mark Andrews
acebc2457c 3339. [func] Allow the maximum supported rsa exponent size to be 
specified: "max-rsa-exponent-size <value>;" [RT #29228]
 2012-06-20 21:34:24 +10:00
Tinderbox User
5abefae88a update copyright notice 2012-03-10 23:45:42 +00:00
Evan Hunt
c9481a4625 set $Id$ 2012-03-07 08:18:58 -08:00
Mark Andrews
8473cd921e pkey is only used if USE_ENGINE is defined or USE_EVP is 1 2011-03-11 02:59:37 +00:00
Mark Andrews
19f4b069dc 3068. [bug] Named failed to build with a OpenSSL without engine 
support. [RT #23473]
 2011-03-11 01:11:54 +00:00
Automatic Updater
135bcc2e42 update copyright notice 2011-01-11 23:47:14 +00:00
Mark Andrews
433e06a25c 3006. [func] Allow dynamically generated TSIG keys to be preserved 
across restarts of named.  Initially this is for
                        TSIG keys generated using GSSAPI. [RT #22639]
 2011-01-10 05:32:04 +00:00
Mark Andrews
8a0943e125 silence compiler warnings. [RT #20472] 2009-10-30 05:08:23 +00:00
Mark Andrews
4c53f98dbd RFC5702 2009-10-28 21:08:18 +00:00
Automatic Updater
990dca4605 update copyright notice 2009-10-27 23:47:45 +00:00
Mark Andrews
e09cdbac08 2738. [func] Add RSASHA256 and RSASHA512 tests to the dnssec system 
test. [RT #20453]
 2009-10-27 22:25:37 +00:00
Francis Dupont
775a8d86d9 keygen progress indication [RT #20284] 2009-10-24 09:46:19 +00:00
Automatic Updater
510032fdf4 update copyright notice 2009-10-22 23:48:07 +00:00
Evan Hunt
cc6cddfd94 2726. [func] Added support for SHA-2 DNSSEC algorithms, 
RSASHA256 and RSASHA512. [RT #20023]
 2009-10-22 02:21:31 +00:00
Mark Andrews
3c5e54941f 2718. [bug] The space calculations in opensslrsa_todns() were 
incorrect. [RT #20394]
 2009-10-20 02:59:19 +00:00
Francis Dupont
8b78c993cb explicit engine rt20230a 2009-10-05 17:30:49 +00:00
Francis Dupont
6839f8b6df cleanup USE_EVP_RSA (RT #20044) 2009-09-23 11:16:50 +00:00
Francis Dupont
1f821c1058 merge rt19294 2009-09-07 12:58:33 +00:00
Mark Andrews
bbc204a237 2669. [func] Update PKCS#11 support to support Keyper HSM. 
Update PKCS#11 patch to be against openssl-0.9.8i.
 2009-09-03 04:09:58 +00:00
Mark Andrews
97a2451eea 2653. [bug] Treat ENGINE_load_private_key() failures as key 
not found rather than out of memory.  [RT #18033]
 2009-08-18 07:45:14 +00:00
Evan Hunt
553ead32ff 2636. [func] Simplify zone signing and key maintenance with the 
dnssec-* tools.  Major changes:
			- all dnssec-* tools now take a -K option to
			  specify a directory in which key files will be
			  stored
			- DNSSEC can now store metadata indicating when
			  they are scheduled to be published, acttivated,
			  revoked or removed; these values can be set by
			  dnssec-keygen or overwritten by the new
			  dnssec-settime command
			- dnssec-signzone -S (for "smart") option reads key
			  metadata and uses it to determine automatically
			  which keys to publish to the zone, use for
			  signing, revoke, or remove from the zone
			[RT #19816]
 2009-07-19 04:18:05 +00:00
Francis Dupont
47b7dfffe5 spelling 2009-01-17 14:45:17 +00:00
Automatic Updater
03faa7804e update copyright notice 2009-01-14 23:48:00 +00:00
Francis Dupont
fa7ef31685 integrate -P1 patch 2009-01-14 17:28:47 +00:00
Mark Andrews
6098d364b6 2448. [func] Add NSEC3 support. [RT #15452] 2008-09-24 02:46:23 +00:00
Automatic Updater
e672951ed2 update copyright notice 2008-04-01 23:47:10 +00:00
Mark Andrews
dec509888a don't use C99 declarations 2008-04-01 00:03:31 +00:00
Francis Dupont
2a31bd5310 add EVP and PKCS11 2008-03-31 14:42:51 +00:00
Automatic Updater
70e5a7403f update copyright notice 2007-06-19 23:47:24 +00:00