Tinderbox User
4acf5216d7
update copyright notice / whitespace
2015-11-09 23:46:11 +00:00
Evan Hunt
7d984067ee
[v9_9] fix python script versions
...
4257. [cleanup] Python scripts reported incorrect version. [RT #41080 ]
2015-11-08 21:41:04 -08:00
Mark Andrews
73cf46fdad
4244. [bug] The parser was not reporting that use-ixfr is obsolete.
...
[RT #41010 ]
2015-10-29 12:53:56 +11:00
Mark Andrews
b21f98c192
Introduce end-of-line normalization
2015-09-29 08:27:48 +10:00
Mark Andrews
dcaa892d40
document optional class
...
(cherry picked from commit 2592ee16b5
2015-09-18 13:26:03 +10:00
Mark Andrews
18abce5e9c
document that the syslog facility is optional
...
(cherry picked from commit 03fac9f931
2015-09-18 13:15:40 +10:00
Evan Hunt
a1021b8945
[v9_9] spurious spaces in named-checkconf -p
...
4205. [bug] 'named-checkconf -p' could include unwanted spaces
when printing tuples with unset optional fields.
[RT #40731 ]
2015-09-14 08:53:25 -07:00
Mark Andrews
1b92050394
4198. [doc] Add fetch-quota-params, fetches-per-server, and
...
fetches-per-zone to doc/misc/options. [RT #40601 ]
(cherry picked from commit 513f6f6ff5
2015-09-09 18:05:43 +10:00
Mark Andrews
d5265dc115
4196. [doc] Improve how "enum + other" types are documented.
...
[RT #40608 ]
(cherry picked from commit 4ca7391e64
2015-09-09 17:34:17 +10:00
Mark Andrews
428fd64aea
4194. [bug] named-checkconf -p failed to properly print a port
...
range. [RT #40634 ]
(cherry picked from commit fbd9aaa58c
2015-09-09 16:50:31 +10:00
Mark Andrews
b7a02c9e9b
eol -> crlf
2015-08-26 12:42:08 +10:00
Mark Andrews
d7ef667588
4189. [cleanup] Don't exit on overly long tokens in named.conf.
...
[RT #40418 ]
(cherry picked from commit 7d0dfa63cf
2015-08-22 15:08:56 +10:00
Mukund Sivaraman
5cfbc228ca
Bump api versions for 9.9.8b1
2015-07-31 19:42:23 +05:30
Mukund Sivaraman
d6ef589b99
Fix win32 build (UNUSED is present later)
...
(cherry picked from commit 63dcc28d3e
2015-07-31 15:01:20 +05:30
Tinderbox User
835eaef8e3
update copyright notice / whitespace
2015-07-09 23:46:11 +00:00
Evan Hunt
ea36796f82
[v9_9] DDoS mitigation features
...
3938. [func] Added quotas to be used in recursive resolvers
that are under high query load for names in zones
whose authoritative servers are nonresponsive or
are experiencing a denial of service attack.
- "fetches-per-server" limits the number of
simultaneous queries that can be sent to any
single authoritative server. The configured
value is a starting point; it is automatically
adjusted downward if the server is partially or
completely non-responsive. The algorithm used to
adjust the quota can be configured via the
"fetch-quota-params" option.
- "fetches-per-zone" limits the number of
simultaneous queries that can be sent for names
within a single domain. (Note: Unlike
"fetches-per-server", this value is not
self-tuning.)
- New stats counters have been added to count
queries spilled due to these quotas.
These options are not available by default;
use "configure --enable-fetchlimit" (or
--enable-developer) to include them in the build.
See the ARM for details of these options. [RT #37125 ]
2015-07-08 23:00:58 -07:00
Mukund Sivaraman
22f467116c
Fix parsing of NZFs saved by rndc addzone with view specified ( #39845 )
...
(cherry picked from commit 0439bfedd98134e7662e
2015-06-23 15:01:26 +05:30
Mark Andrews
18dd646c3e
update comment as per rt39703
2015-06-05 11:08:27 +10:00
Mark Andrews
fdb83d87d6
4110. [bug] Address memory leaks / null pointer dereferences
...
on out of memory. [RT #39310 ]
(cherry picked from commit b292230ab8
2015-04-29 03:37:25 +10:00
Tinderbox User
fc78ea1f10
update copyright notice / whitespace
2015-04-17 23:46:14 +00:00
Mark Andrews
6433ff7b93
4104. [bug] Address uninitialized elements. [RT #39252 ]
...
(cherry picked from commit f1a261ba2d
2015-04-17 14:09:00 +10:00
Evan Hunt
9ea29ff2ab
[v9_9] prep 9.9.7rc1
2015-01-22 10:35:27 -08:00
Tinderbox User
9cbd625449
update copyright notice / whitespace
2015-01-20 23:47:26 +00:00
Evan Hunt
57f015bd2a
[v9_9] clean up gcc -Wshadow warnings
...
4039. [cleanup] Cleaned up warnings from gcc -Wshadow. [RT #37381 ]
2015-01-20 14:55:41 -08:00
Evan Hunt
e9d075681d
[v9_9] further win32 fixes
2014-12-29 15:15:51 -08:00
Evan Hunt
5414749e8a
[v9_9] comment out some function names
2014-12-29 13:14:45 -08:00
Evan Hunt
fee6ad726f
[v9_9] prep 9.9.7b1
2014-12-18 13:50:42 -08:00
Mark Andrews
de6522d653
add missing entry points
2014-12-16 23:52:19 +11:00
Mark Andrews
b564e1b737
add missing entries
...
(cherry picked from commit 7799a5edea
2014-12-16 14:42:26 +11:00
Evan Hunt
711e833921
[v9_9] add max-recursion-queries
...
also fixes and documentation for max-recursion-depth
(cherry picked from commit c4f54e5bd1b3aa528d7e
2014-11-18 22:14:55 -08:00
Evan Hunt
603a0e2637
[v9_9] limit recursion depth and iterative queries
...
4006. [security] A flaw in delegation handling could be exploited
to put named into an infinite loop. This has
been addressed by placing limits on the number
of levels of recursion named will allow (default 7),
and the number of iterative queries that it will
send (default 50) before terminating a recursive
query (CVE-2014-8500).
The recursion depth limit is configured via the
"max-recursion-depth" option. [RT #35780 ]
2014-11-17 23:49:07 -08:00
Tinderbox User
e438b6de1e
update copyright notice
2014-09-05 23:46:22 +00:00
Evan Hunt
38398c590a
[v9_9] [rt36786] use INSTALL_PROGRAM for shared libs
...
3947. [cleanup] Set the executable bit on libraries when using
libtool. [RT #36786 ]
(cherry picked from commit f687e639f0
2014-09-05 10:28:57 -07:00
Evan Hunt
95ac626e8d
[v9_9] missed an api change
2014-08-29 18:38:35 -07:00
Mark Andrews
ddf4e45cad
3931. [cleanup] Cleanup how dlz grammer is defined. [RT #36879 ]
...
(cherry picked from commit 1164997311
2014-08-26 15:26:05 +10:00
Mark Andrews
71eb09764a
dlz clauses are not inheritable
...
(cherry picked from commit be5d42f255
2014-08-25 14:53:00 +10:00
Evan Hunt
c0f5302894
[v9_9] prep 9.9.6b2
2014-08-05 22:07:37 -07:00
Mark Andrews
b065c4f75b
alphabetize zone_clauses
2014-08-06 11:56:08 +10:00
Mark Andrews
e3876830c6
3910. [bug] When computing the number of elements required for a
...
acl count_acl_elements could have a short count leading
to a assertion failure. Also zero out new acl elements
in dns_acl_merge. [RT #36675 ]
(cherry picked from commit 3e90f6c373
2014-08-03 10:07:40 +10:00
Mark Andrews
6c4da2c68b
alphabetize server_clauses
2014-07-22 14:01:57 +10:00
Evan Hunt
08f092cc6f
[v9_9] prep 9.9.6b1
2014-06-18 23:59:48 -07:00
Tinderbox User
238d74b059
update copyright notice
2014-04-04 23:45:33 +00:00
Mark Andrews
7908a238dd
3802. [bug] Various header files were not being installed
...
(cherry picked from commit 866606b9c7
2014-04-04 22:06:24 +11:00
Evan Hunt
240614c334
[v9_9] clarify error
...
3779. [cleanup] Clarify the error message when using an option
that was not enabled at compile time. [RT #35504 ]
2014-03-07 16:00:46 -08:00
Tinderbox User
6c69d47e5e
update copyright notice
2014-03-07 23:45:31 +00:00
Evan Hunt
2b4781835c
[v9_9] warn when wrong address family used in listen-on/-v6
...
3778. [bug] Log a warning when the wrong address family is
used in "listen-on" or "listen-on-v6". [RT #17848 ]
(cherry picked from commit 78f79084fc
2014-03-07 11:36:20 -08:00
Evan Hunt
c2d3d0eda5
[v9_9] add no-case-compress
...
3731. [func] Added a "no-case-compress" ACL, which causes
named to use case-insensitive compression
(disabling change #3645 ) for specified
clients. (This is useful when dealing
with broken client implementations that
use case-sensitive name comparisons,
rejecting responses that fail to match the
capitalization of the query that was sent.)
[RT #35300 ]
(cherry picked from commit 166341d554
2014-02-06 19:42:39 -08:00
Mark Andrews
14d98f724e
update copyrights
2014-01-11 07:10:14 +11:00
Evan Hunt
94a726d4b7
[v9_9] prep 9.9.5rc1
2014-01-10 09:20:32 -08:00
Mark Andrews
81a8977eeb
3701. [func] named-checkconf can now suppress the printing of
...
shared secrets by specifying '-x'. [RT #34465 ]
(cherry picked from commit ff6de396a9
2014-01-10 17:39:39 +11:00
