Commit Graph

25483 Commits

Author SHA1 Message Date
Mark Andrews
44ff35c6cb simplify mask construction
(cherry picked from commit 22fab3199f)
2018-05-03 17:16:10 +02:00
Evan Hunt
0b2f74ef06 Merge branch '208-dig-doc' into 'v9_10'
Resolve "Added -t TYPEnn description to dig"

Closes #208

See merge request isc-projects/bind9!221
2018-04-27 00:01:16 -07:00
Paul Hoffman
efcad103e7 add -t type### description to the dig man page
(cherry picked from commit 2d957c6b9f)
(cherry picked from commit d742db122e)
2018-04-27 00:01:11 -07:00
Evan Hunt
a0ed0e20f2 Merge branch '159-improve-handling-of-inline-signed-zones-with-missing-signing-keys' into 'v9_10'
Improve handling of inline signed zones with missing signing keys

Closes #159

See merge request isc-projects/bind9!133
2018-04-25 12:19:09 -07:00
Michał Kępień
821c27bb7c Add CHANGES entries
4916.	[bug]		Not creating signing keys for an inline signed zone
			prevented changes applied to the raw zone from being
			reflected in the secure zone until signing keys were
			made available. [GL #159]

4915.	[bug]		Bumped signed serial of an inline signed zone was
			logged even when an error occurred while updating
			signatures. [GL #159]

(cherry picked from commit 7d2c09c905)
(cherry picked from commit e4995efe24)
2018-04-25 12:19:04 -07:00
Michał Kępień
fcbdeed802 Apply raw zone deltas to yet unsigned secure zones
When inline signing is enabled for a zone without creating signing keys
for it, changes subsequently applied to the raw zone will not be
reflected in the secure zone due to the dns_update_signaturesinc() call
inside receive_secure_serial() failing.  Given that an inline zone will
be served (without any signatures) even with no associated signing keys
being present, keep applying raw zone deltas to the secure zone until
keys become available in an attempt to follow the principle of least
astonishment.

(cherry picked from commit 6acf326969)
(cherry picked from commit 8a58a60772)
2018-04-25 12:10:26 -07:00
Michał Kępień
c042ec70d2 Only log bumped signed serial after a successful secure zone update
If a raw zone is modified, but the dns_update_signaturesinc() call in
receive_secure_serial() fails, the corresponding secure zone's database
will not be modified, even though by that time a message containing the
bumped signed serial will already have been logged.  This creates
confusion, because a different secure zone version will be served than
the one announced in the logs.  Move the relevant dns_zone_log() call so
that it is only performed if the secure zone's database is modified.

(cherry picked from commit cfbc8e264d)
(cherry picked from commit cdc7ab42b1)
2018-04-25 12:10:26 -07:00
Evan Hunt
94f0b3ec6b Merge branch '171-lgtm-issues-v9_10' into 'v9_10'
Resolve "problems detected by LGTM static analyzer"

Closes #171

See merge request isc-projects/bind9!213
2018-04-22 12:58:50 -07:00
Evan Hunt
636f8d53d8 remove unnecessary comparison
(cherry picked from commit 8b1baa10ee)
(cherry picked from commit f9da5a735e)
2018-04-22 12:58:36 -07:00
Evan Hunt
61121be596 silence warnings about unnecessary comparisons
- these are cases where result has been explicitly set, so
  if (result != ISC_R_SUCCESS) is unnecessary

(cherry picked from commit e00eb55cd2)
(cherry picked from commit 0dcff8f93c)
2018-04-22 12:58:36 -07:00
Evan Hunt
bda3ea150f add header guards in files that were missing them
(cherry picked from commit 4247477b61)
(cherry picked from commit 7f61e9d50e)
2018-04-22 12:58:36 -07:00
Evan Hunt
e5670b1627 add header guard when generating bind.keys.h
(cherry picked from commit bfbe6925df)
(cherry picked from commit f7755696a5)
2018-04-22 12:58:36 -07:00
Evan Hunt
843f19ee7f change "key" to "tsigkey" to silence "short global name" warning
(cherry picked from commit 0cc7aa250e)
(cherry picked from commit 9d99bf0f4b)
2018-04-22 12:58:36 -07:00
Evan Hunt
2f5ec44952 fix shadowed global variables
(cherry picked from commit 9ca3ab1168)
(cherry picked from commit 694a1486ca)
2018-04-22 12:58:36 -07:00
Evan Hunt
03e2d9d6de fix duplicate include guard in dnsconf.h
- IMHO we should consider removing dnsconf.c and deprecating the
  /etc/dns.conf file, though, as I don't think it's likely anyone
  is using it

(cherry picked from commit a08ba418ef)
(cherry picked from commit b9db91aa64)
2018-04-22 12:58:35 -07:00
Evan Hunt
5920350ef1 Merge branch '193-fix-variable-definitions-in-bin-tests-Makefile.in-v9_10' into 'v9_10'
Fix variable definitions in bin/tests/Makefile.in

Closes #193

See merge request isc-projects/bind9!183
2018-04-10 20:04:48 -07:00
Evan Hunt
3e67bc0048 Alter distclean rule to prevent recursing into the same directory twice
Commit f87e0c03ee removed the "system" directory from the TESTDIRS
variable in bin/tests/Makefile.in in an attempt to fix "make distclean"
which was broken since commit 0d784de16a.  However, this change
prevented any system tests from being run when "make test" is invoked.

We now put it back into both SUBDIRS and TESTDIRS, but with a modified
rule to check for the existence of a Makefile in each subdirectory before
trying to run make there. This prevents "make distclean" from trying to
run again in a directory where it's already been run.

(cherry picked from commit 93ee6b8a22)
2018-04-10 20:04:48 -07:00
Michał Kępień
01d45c1ebb Fail CI pipeline when "make test" does not run any system tests
Apart from ensuring "make test" returns 0, also check whether any system
test output was generated as a result of running it.  This prevents the
CI job running system tests from succeeding unless it actually tests
something.

(cherry picked from commit 80ab2c0f22)
2018-04-10 20:04:47 -07:00
Mark Andrews
d039a7db5f Merge branch 'ssl-double-free-v9_10' into 'v9_10'
Fix double free after keygen error in dnssec-keygen

Closes #109

See merge request isc-projects/bind9!70
2018-04-06 14:27:00 +10:00
Ondřej Surý
1606680016 Add CHANGES entry
(cherry picked from commit ef2b2a6c92)
2018-04-06 14:26:47 +10:00
Ondřej Surý
d416af9b15 A couple of more cleanups after free in opensslrsa_generate()
(cherry picked from commit d2b3188c61)
2018-04-06 14:26:04 +10:00
Petr Mensik
5a13cc651c Do not assign NULL conditionally in OpenSSL < 1.1, make it always explicit.
(cherry picked from commit edaafacf36)
2018-04-06 14:26:04 +10:00
Petr Mensik
05bed6173b Fix double free on RSA_generate_key_ex failure
(cherry picked from commit 01cc622e7b)
2018-04-06 14:26:03 +10:00
Mark Andrews
15fd756139 system should only be in SUBDIRS
(cherry picked from commit 342e146fe3)
2018-04-06 13:26:11 +10:00
Mark Andrews
c8a8645f96 Merge branch '167-coverity-dereferencing-a-null-pointer-in-lib-dns-tests-rbt_test-c-v9_10' into 'v9_10'
Resolve "coverity: Dereferencing a null pointer in lib/dns/tests/rbt_test.c"

Closes #167

See merge request isc-projects/bind9!150
2018-03-20 09:55:50 +11:00
Mukund Sivaraman
b6e2633ca8 Check return value of isc_mem_get()
(cherry picked from commit de3a4af1bf)
2018-03-20 09:55:50 +11:00
Mark Andrews
b283e8d04e fix temporary file name to have subtest number
(cherry picked from commit e12453f43c88bac722fb511b62f12303735b788c)
2018-03-19 23:12:26 +11:00
Mark Andrews
f69fd9911a synchronise test descriptions with master 2018-03-19 23:01:55 +11:00
Mark Andrews
5f349f3f5d Merge branch 'fixtypo-v9_10' into 'v9_10'
fix typo

See merge request isc-projects/bind9!148
2018-03-19 22:57:21 +11:00
Mark Andrews
0b2826e996 fix typo
(cherry picked from commit 6e4b5f2345)
2018-03-19 22:57:21 +11:00
Mark Andrews
1a6526c29a Merge branch '166-statistics-system-test-numbering-is-bad-v9_10' into 'v9_10'
Resolve "statistics system test numbering is bad"

Closes #166

See merge request isc-projects/bind9!146
2018-03-19 20:37:05 +11:00
Mark Andrews
3e02dc4462 fix numbering of tests and make consistent
(cherry picked from commit dd5dff3096)
2018-03-19 20:36:08 +11:00
Ondřej Surý
a558614ee1 Update libtool files to 2.4.6
(cherry picked from commit fe06778be7)
2018-03-19 13:01:23 +11:00
Ondřej Surý
7fe8cab10d Merge branch '164-remove-openssl-warning-v9_10' into 'v9_10'
[v9_10] Remove useless OpenSSL warning from configure script

See merge request isc-projects/bind9!142
2018-03-17 10:50:19 -04:00
Ondřej Surý
1ff0c8d21e Remove obsolete OpenSSL version check
(cherry picked from commit e9571d29af)
2018-03-17 14:35:04 +00:00
Evan Hunt
d3927f276e Merge branch 'copyrights' into v9_10 2018-03-15 18:50:01 -07:00
Evan Hunt
89d3cfb4e8 update file headers 2018-03-15 18:49:47 -07:00
Evan Hunt
c8fd19059d ensure COPYRIGHT file retains years; edit file headers for consistency 2018-03-15 18:48:46 -07:00
Evan Hunt
ef0f309c96 Merge branch '157-cleanup-win-libtests-v9_10' into 'v9_10'
Resolve "Windows build fails"

Closes #157

See merge request isc-projects/bind9!131
2018-03-15 13:47:23 -07:00
Evan Hunt
6a31f097ba remove references to lib/tests in the windows build
(cherry picked from commit e2bb9824f8)
2018-03-15 13:47:23 -07:00
Evan Hunt
1d6c79af6e Merge branch '154-fix-atomic-test-v9_10' into 'v9_10'
Resolve "Build failure on OSX with --disable-atomic --enable-developer"

Closes #154

See merge request isc-projects/bind9!130
2018-03-15 12:09:40 -07:00
Evan Hunt
2b22c3bd4f add an 'untested' case when none of the atomic operations are available
- this fixes a build failure introduced in change 4913 when
  compiling with ATF and --disable-atomic

(cherry picked from commit 1b3eac926e)
2018-03-15 12:09:40 -07:00
Evan Hunt
0f0d279c55 Merge branch 'fix-copyrights' into v9_10 2018-03-14 21:13:06 -07:00
Evan Hunt
7044b67b67 update file headers to remove copyright years 2018-03-14 21:12:08 -07:00
Evan Hunt
083519b1e5 Update scripts in util/ to drop the year information from the individual source files. 2018-03-14 21:07:58 -07:00
Evan Hunt
9853cc49ab Merge branch 'fix-relnotes-v910' into v9_10 2018-03-14 15:00:54 -07:00
Evan Hunt
934414d77d Update EoL information 2018-03-14 14:57:38 -07:00
Evan Hunt
f9749be395 Merge branch 'branchsync' into 'v9_10'
update branchsync to deal with merge commits

See merge request isc-projects/bind9!127
2018-03-14 14:43:10 -07:00
Evan Hunt
03e9c1d461 updated branchsync to deal with merge commits
(cherry picked from commit fccf8ca2f6)
2018-03-14 14:42:24 -07:00
Ondřej Surý
1cdcae1183 Fix whitespaces 2018-03-14 12:44:08 +01:00