ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
25,044 Commits 589 Branches 805 Tags
4b0cd81a85f2d02cd2d930ced88431b4fa2aaa30
Commit Graph

3070 Commits

Author SHA1 Message Date
Mark Andrews
b1b5229a47 4556. [security] Combining dns64 and rpz can result in dereferencing 
a NULL pointer (read).  (CVE-2017-3135) [RT#44434]

(cherry picked from commit 5abe80ef13)
 2017-01-24 09:55:51 +11:00
Tinderbox User
31c2480cd4 update copyright notice / whitespace 2017-01-19 23:45:37 +00:00
Mark Andrews
bf0b649993 whitespace 2017-01-19 13:16:04 +11:00
Evan Hunt
66b61a029d [master] more specific date for DLV shutdown warning 2017-01-12 09:10:41 -08:00
Tinderbox User
2067cfdb46 regen master 2017-01-06 01:05:20 +00:00
Tinderbox User
f557aeef7c update copyright notice / whitespace 2017-01-05 23:45:24 +00:00
Tinderbox User
37ae137942 regen master 2017-01-05 01:05:07 +00:00
Evan Hunt
5804332588 [master] EDNS padding and keepalive support 
4549.	[func]		Added support for the EDNS TCP Keepalive option
			(RFC 7828). [RT #42126]

4548.	[func]		Added support for the EDNS Padding option (RFC 7830).
			[RT #42094]
 2017-01-04 09:16:30 -08:00
Tinderbox User
ed07d7a8f5 update copyright notice / whitespace 2016-12-30 23:46:36 +00:00
Mark Andrews
52e2aab392 4546. [func] Extend the use of const declarations. [RT #43379] 2016-12-30 15:45:08 +11:00
Tinderbox User
4ef83f4333 update copyright notice / whitespace 2016-12-28 23:48:39 +00:00
Mark Andrews
d376792dae 4531. [security] 'is_zone' was not being properly updated by redirect2 
and subsequently preserved leading to an assertion
                        failure. (CVE-2016-9778) [RT #43837]
 2016-12-29 10:25:01 +11:00
Mark Andrews
5093e8d482 4542. [func] Allow rndc to manipulate redirect zones with using 
-redirect as the zone name (use "-redirect." to
                        manipulate a zone named "-redirect"). [RT #43971]
 2016-12-28 11:36:31 +11:00
Tinderbox User
d029dfe95c update copyright notice / whitespace 2016-12-27 23:46:44 +00:00
Mark Andrews
e20db12918 4541. [bug] rndc addzone should properly reject non master/slave 
zones. [RT #43665]
 2016-12-28 10:27:56 +11:00
Mark Andrews
8e333f42ef 4540. [bug] Correctly handle ecs entries in dns_acl_isinsecure. 
[RT #43601]
 2016-12-27 09:49:02 +11:00
Mark Andrews
762c4fc5a8 4539. [bug] Referencing a nonexistant zone with rpz could lead 
to a assertion failure when configuring. [RT #43787]
 2016-12-27 08:59:07 +11:00
Mark Andrews
a678e70481 4536. [bug] ISC_SOCKEVENTATTR_USEMINMTU was not being cleared 
when reusing the event structure. [RT #43885]
 2016-12-14 10:42:38 +11:00
Mark Andrews
def6b33bad 4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879] 2016-12-13 16:27:18 +11:00
Tinderbox User
16fde7f0b3 regen master 2016-12-07 01:05:34 +00:00
Mark Andrews
1b8ce3b330 4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831] 2016-12-07 10:49:55 +11:00
Mark Andrews
c9ee977f31 added -T keepstderr to keep stderr open when daemonizing [RT #43736] 2016-12-05 10:38:16 +11:00
Evan Hunt
6bdb70057d [master] log as error if entropy unavailable 
4521.	[cleanup]	Log it as an error if an entropy source is not
			found and there is no fallback available. [RT #43659]
 2016-11-29 11:30:31 -08:00
Evan Hunt
62c85a4a52 [master] allow different time formats: local, iso8601, iso8601-utc 
4518.	[func]		The "print-time" option in the logging configuration
			can now take arguments "local", "iso8601" or
			"iso8601-utc" to indicate the format in which the
			date and time should be logged. For backward
			compatibility, "yes" is a synonym for "local".
			[RT #42585]
 2016-11-22 23:34:47 -08:00
Tinderbox User
8d8839b3a0 regen master 2016-11-03 01:06:32 +00:00
Mark Andrews
5f8412a4cb 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]
 2016-11-02 17:31:27 +11:00
Evan Hunt
6087f87afb [master] make uninstall 
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]
 2016-11-01 19:17:07 -07:00
Mark Andrews
9bfebc4a6a check for LIBRESSL_VERSION_NUMBER 
(cherry picked from commit b2c1d6f0a2)
 2016-11-01 12:49:23 +11:00
Mark Andrews
1fce0951ed 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 2016-10-31 10:04:37 +11:00
Mark Andrews
856c77cc40 s/,/;/ 2016-10-26 22:38:24 +11:00
Witold Krecicki
358dfaee18 4487. [test] Make system tests work on Windows. [RT #42931] 2016-10-19 17:18:42 +02:00
Tinderbox User
0b15ee0705 regen master 2016-10-16 01:06:28 +00:00
Mark Andrews
7551ec1ebe add managed keys to view section 2016-10-16 08:15:15 +11:00
Evan Hunt
676ac3cc82 [master] add cfg_parse_buffer3() function with linenum parameter 
4482.	[cleanup]	Change #4455 was incomplete. [RT #43252]
 2016-10-10 17:11:21 -07:00
Mark Andrews
7fbe85c6d7 4472. [bug] Named could fail to find the correct NSEC3 records when 
a zone was update between looking for the answer and
                        looking for the NSEC3 records proving non-existance
                        of the answer. [RT #43247]
 2016-10-05 10:35:18 +11:00
Evan Hunt
c4b7db4932 [master] render querylog format consistent, and add a release note 
4471.	[cleanup]	Render client/query logging format consistent for
			ease of log file parsing. (Note that this affects
			"querylog" format: there is now an additional field
			indicating the client object address.) [RT #43238]
 2016-09-22 14:48:56 -07:00
Mark Andrews
df17290113 4468. [bug] Address ECS option handling issues. [RT #43191] 2016-09-14 08:22:15 +10:00
Mark Andrews
f1977af0d3 4465. [bug] Don't use "%z" as Windows doesn't support it. 
[RT #43131]
 2016-09-08 14:16:56 +10:00
Mark Andrews
8eceb0bffe 4461. [bug] win32: not all external data was properly marked 
as external data for windows dll. [RT #43161]
 2016-09-07 14:12:11 +10:00
Evan Hunt
a26a62cef2 [master] fix tcp client memory leak 
4459.	[bug]		TCP client objects created to handle pipeline queries
			were not cleaned up correctly, causing uncontrolled
			memory growth. [RT #43106]
 2016-08-29 11:56:36 -07:00
Mark Andrews
63fe88e8d8 4456. [doc] Add DOCTYPE and lang attribute to <html> tags. 
[RT #42587]
 2016-08-26 15:14:04 +10:00
Evan Hunt
02fb764681 [master] pass source file and line to dyndb load function 
4455.	[cleanup]	Allow dyndb modules to correctly log the filename
			and line number when processing configuration text
			from named.conf. [RT #43050]
 2016-08-25 18:08:26 -07:00
Mark Andrews
726cddb564 4454. [bug] 'rndc dnstap -reopen' had a race issue. [RT #43089] 2016-08-25 10:03:22 +10:00
Tinderbox User
b297f5cdd5 regen master 2016-08-19 01:04:52 +00:00
Mark Andrews
8ee6f289d8 4450. [port] Provide more nuanced HSM support which better matches 
the specific PKCS11 providers capabilities. [RT #42458]
 2016-08-19 08:02:51 +10:00
Mark Andrews
934837913f 4447. [tuning] Allow the fstrm_iothr_init() options to be set using 
named.conf to control how dnstap manages the data
                        flow. [RT #42974]
 2016-08-18 11:16:06 +10:00
Tinderbox User
a7115b8b4d regen master 2016-08-12 01:04:57 +00:00
Mark Andrews
78e31dd187 4437. [func] Minimal-responses now has two additional modes 
no-auth and no-auth-recursive which suppress
                        adding the NS records to the authority section
                        as well as the associated address records for the
                        nameservers. [RT #42005]
 2016-08-12 10:48:51 +10:00
Mark Andrews
31ffec1541 4435. [tuning] Only set IPV6_USE_MIN_MTU for UDP when the message 
will not fit into a single IPv4 encapsulated IPv6
                        UDP packet when transmitted over a Ethernet link.
                        [RT #42871]
 2016-08-12 09:41:59 +10:00
Mark Andrews
bf2238b064 4434. [protocol] Return EDNS EXPIRE option for master zones in addition 
to slave zones. [RT #43008]
 2016-08-12 09:31:41 +10:00