ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
22,143 Commits 589 Branches 805 Tags
4a11087ee5d6c9bd25d268bbc19f5a7ef50cdba9
Commit Graph

2580 Commits

Author SHA1 Message Date
Tinderbox User
f9db30be50 update copyright notice / whitespace 2015-01-10 23:46:13 +00:00
Mark Andrews
15738c0888 4032. [bug] Built-in "empty" zones did not correctly inherit the 
"allow-transfer" ACL from the options or view.
                        [RT #38310]

(cherry picked from commit 7952156995)
 2015-01-10 22:04:32 +11:00
Tinderbox User
7e35cef570 update copyright notice / whitespace 2015-01-08 23:46:12 +00:00
Mark Andrews
94124ad484 4031. [bug] named-checkconf -z failed to report a missing file 
with a hint zone. [RT #38294]

(cherry picked from commit d1f1f13c7f)
 2015-01-08 19:20:31 +11:00
Mark Andrews
f199e8dd80 4028. [bug] $GENERATE with a zero step was not being caught as a 
error.  A $GENERATE with a / but no step was not being
                        caught as a error. [RT #38262]

(cherry picked from commit b0c18fffd3)
 2015-01-06 11:33:38 +11:00
Mark Andrews
a777df2ff6 4027. [port] Net::DNS 0.81 compatibility. [RT #38165 
(cherry picked from commit 511ec77fca)
 2014-12-23 08:38:21 +11:00
Evan Hunt
398036fa13 [v9_9] Clean up after reclimit system test 2014-12-08 08:52:57 -08:00
Mark Andrews
dba49da2f2 skip subtest if cryptography not compiled in 2014-12-06 00:49:16 +11:00
Mark Andrews
404f3152fa 4019. [func] If named is not configured to validate the answer 
then allow fallback to plain DNS on timeout even
                        when we know the server supports EDNS. [RT #37978]
 2014-12-05 18:12:56 +11:00
Mark Andrews
05f9fa90dd clean up intermediates 2014-12-05 08:27:09 +11:00
Mark Andrews
4c2867ce16 pre-sign the zones 2014-12-05 07:29:39 +11:00
Tinderbox User
19c3ef455b update copyright notice / whitespace 2014-12-03 23:46:11 +00:00
Mark Andrews
f6f0878e11 4018. [bug] Fall back to plain DNS when EDNS queries are being 
dropped was failing. [RT #37965]

4017.   [testing]       Add system test to check lookups to legacy servers
                        with broken DNS behaviour. [RT #37965]
 2014-12-04 07:07:09 +11:00
Mark Andrews
bbc8cca27d 4015. [bug] Nameservers that are skipped due to them being 
CNAMEs were not being logged. They are now logged
                        to category 'cname' as per BIND 8. [RT #37935]

(cherry picked from commit ea3aa401bc)
 2014-12-03 11:47:10 +11:00
Tinderbox User
93d2a8ec28 update copyright notice / whitespace 2014-12-02 23:46:08 +00:00
Mark Andrews
301160944f 4014. [bug] When including a master file origin_changed was 
not being properly set leading to a potentially
                        spurious 'inherited owner' warning. [RT #37919]

(cherry picked from commit 6444de08d1)
 2014-12-03 09:46:28 +11:00
Evan Hunt
f1c0eff9e6 [v9_9] remove obsolete 'relay' test 2014-12-02 13:58:07 -08:00
Tinderbox User
395b2849e9 update copyright notice / whitespace 2014-11-24 23:53:31 +00:00
Mark Andrews
b7397773f5 4011. [bug] master's list port inheritance was not properly 
implemented. [RT #37792]

(cherry picked from commit d040fa2f1c)
 2014-11-24 11:59:16 +11:00
Tinderbox User
b2bcacdf36 update copyright notice / whitespace 2014-11-20 23:46:15 +00:00
Evan Hunt
1d47cb124d [v9_9] refactor max-recursion-queries 
- the counters weren't set correctly when fetches timed out.
  instead we now pass down a counter object.

(cherry picked from commit 05e448935c)
(cherry picked from commit 6c049c57d9)
 2014-11-19 18:38:52 -08:00
Tinderbox User
e211a7b798 update copyright notice / whitespace 2014-11-19 23:46:07 +00:00
Evan Hunt
b6ab355aef [v9_9] fix reclimit test (remove servfail-ttl) 2014-11-19 00:15:22 -08:00
Evan Hunt
711e833921 [v9_9] add max-recursion-queries 
also fixes and documentation for max-recursion-depth

(cherry picked from commit c4f54e5bd1)
(cherry picked from commit b3aa528d7e)
 2014-11-18 22:14:55 -08:00
Tinderbox User
dd461ee35b update copyright notice / whitespace 2014-11-18 23:46:09 +00:00
Evan Hunt
603a0e2637 [v9_9] limit recursion depth and iterative queries 
4006.	[security]	A flaw in delegation handling could be exploited
			to put named into an infinite loop.  This has
			been addressed by placing limits on the number
			of levels of recursion named will allow (default 7),
			and the number of iterative queries that it will
			send (default 50) before terminating a recursive
			query (CVE-2014-8500).

			The recursion depth limit is configured via the
			"max-recursion-depth" option.  [RT #35780]
 2014-11-17 23:49:07 -08:00
Tinderbox User
8cf35615f6 update copyright notice 2014-11-05 23:46:03 +00:00
Evan Hunt
b2630b7363 [v9_9] fix nxrrset in nxdomain redirection 
4000.	[bug]		NXDOMAIN redirection incorrectly handled NXRRSET
			from the redirect zone. [RT #37722]

(cherry picked from commit 3cc8c7d630)
(cherry picked from commit 56293cd148)
 2014-11-04 23:54:25 -08:00
Mark Andrews
bb4ef32432 3997. [protocol] Add OPENGPGKEY record. [RT# 37671] 2014-11-04 12:25:38 +11:00
Mark Andrews
bfef33cbe3 3990. [testing] Add tests for unknown DNSSEC algorithm handling. 
[RT #37541]

(cherry picked from commit a5c7cfbac4)
 2014-10-30 11:22:17 +11:00
Tinderbox User
bf2b88607b update copyright notice 2014-10-20 23:46:18 +00:00
Mark Andrews
f2b44f6586 3981. [bug] Cache DS/NXDOMAIN independently of other query types. 
[RT #37467]

(cherry picked from commit 72775a79fe)
 2014-10-18 13:10:16 +11:00
Mark Andrews
8b5f53534c allow for the set of ttls to be empty 
(cherry picked from commit 44ef2206d7)
 2014-10-16 14:47:11 +11:00
Mark Andrews
7d00852591 make test more robust in the face of server failures 2014-10-16 12:34:36 +11:00
Mark Andrews
53373a6929 3971. [bug] Reduce the cascasding failures due to a bad $TTL line 
in named-checkconf / named-checkzone. [RT #37138]

(cherry picked from commit c81d56c03e)
 2014-10-05 08:30:37 +11:00
Mark Andrews
cbe35320bf verifying inline zones work with views requires crypto to be configured 2014-10-04 18:08:53 +10:00
Evan Hunt
d1beb33058 [v9_9] remove clone tests from the views system test: inapplicable in 9.9 2014-10-03 07:22:55 -07:00
Tinderbox User
3c516868aa update copyright notice 2014-10-02 23:46:10 +00:00
Mark Andrews
e232d15075 3967. [test] Add test for inlined signed zone in multiple views 
with different DNSKEY sets. [RT #35759]

(cherry picked from commit b24061719c)
 2014-10-03 08:01:54 +10:00
Mark Andrews
302455db78 SIG(0) update forwarding testing requires crypto be configured 
(cherry picked from commit a837c939c4)
 2014-10-02 11:08:02 +10:00
Tinderbox User
aaa24cf075 update copyright notice 2014-09-30 23:47:13 +00:00
Mark Andrews
650404030c 3961. [bug] Forwarding of SIG(0) signed UPDATE messages failed with 
BADSIG.  [RT #37216]

(cherry picked from commit a6869655d6)
 2014-10-01 07:43:17 +10:00
Mark Andrews
57acbfc9c7 3960. [bug] 'dig +sigchase' could loop forever. [RT #37220] 
(cherry picked from commit c83b91fb63)
 2014-10-01 07:18:49 +10:00
Tinderbox User
141adfd898 update copyright notice 2014-09-29 23:46:13 +00:00
Mark Andrews
8f050179ef use RANDFILE rather than /dev/urandom 
(cherry picked from commit 4bc581ca31)
 2014-09-29 23:39:30 +10:00
Mark Andrews
332652409f 3958. [bug] Detect when writeable files have multiple references 
in named.conf. [RT #37172]

(cherry picked from commit 386d6c08167bc048dfd20e3bba051a5f9d3cc545)
 2014-09-29 11:32:52 +10:00
Mark Andrews
0ae15932ae 3957. [bug] "dnssec-keygen -S" failed for ECCGOST, ECDSAP256SHA256 
and ECDSAP384SHA384. [RT #37183]

(cherry picked from commit 80169c379d)
 2014-09-29 10:27:24 +10:00
Mark Andrews
bb2451e0e1 3953. [bug] Don't escape semi-colon in TXT fields. [RT #37159] 
(cherry picked from commit 9a36fb86f5)
 2014-09-27 12:14:57 +10:00
Mark Andrews
288be32d30 give the nameserver a little longer to response 
(cherry picked from commit 06e28e50bd)
 2014-09-18 10:10:05 +10:00
Tinderbox User
e438b6de1e update copyright notice 2014-09-05 23:46:22 +00:00