ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
27,028 Commits 589 Branches 805 Tags
5c03cd339e1c02cc0b05b95bb201d79d38129482
Commit Graph

27028 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mark Andrews
e1358d1460 add blank line 2018-05-23 20:46:38 -04:00
Mark Andrews
c91770549f ensure there is a blank line before a changes entry and a release marker 2018-05-23 20:46:38 -04:00
Evan Hunt
2d750a15a9 Merge branch 'generate-notes-txt' into 'master' 
use w3m to generate notes.txt as part of the doc build

See merge request isc-projects/bind9!310
 2018-05-23 12:48:42 -04:00
Evan Hunt
9147a31b94 copyrights 2018-05-23 12:39:40 -04:00
Evan Hunt
7c955e0eb8 use w3m to generate notes.txt as part of the doc build 2018-05-23 12:39:40 -04:00
Mark Andrews
191341af50 Merge branch '273-add-home-arpa-to-list-of-empty-zones-rfc-8375' into 'master' 
Resolve "Add "HOME.ARPA" to list of empty zones (RFC 8375)"

Closes #273

See merge request isc-projects/bind9!297
 2018-05-22 20:57:19 -04:00
Mark Andrews
10dd0b3efe add HOME.ARPA to the list of empty zones 2018-05-23 10:48:30 +10:00
Mark Andrews
4283f9552f fix handling of failed tests 2018-05-23 10:47:42 +10:00
Evan Hunt
29b3a7d842 Merge branch '272-missing-crypto-defines-in-windows-build' into 'master' 
Closes #272

See merge request isc-projects/bind9!308
v9.13.0 		2018-05-22 19:42:35 -04:00
Evan Hunt
1c1a02d244 fix broken win32 code in random.c 2018-05-22 16:32:21 -07:00
Ondřej Surý
7ee8a7e69f address win32 build issues 
- Replace external -DOPENSSL/-DPKCS11CRYPTO with properly AC_DEFINEd
  HAVE_OPENSSL/HAVE_PKCS11
- Don't enforce the crypto provider from platform.h, just from dst_api.c
  and configure scripts
 2018-05-22 16:32:21 -07:00
Ondřej Surý
9b6b11f02a Merge branch '278-prevent-false-negatives-in-rootkeysentinel-system-test' into 'master' 
Prevent false negatives in rootkeysentinel system test

Closes #278

See merge request isc-projects/bind9!301
 2018-05-22 07:59:42 -04:00
Michał Kępień
67e573d718 Fix the name of the variable used in some bad TA checks 2018-05-22 07:46:43 -04:00
Michał Kępień
6327c54c4b Prevent false negatives in rootkeysentinel system test 2018-05-22 07:46:43 -04:00
Ondřej Surý
78f6c1d71f Merge branch '280-remove-fatal-prefix' into 'master' 
Remove "FATAL:" prefix and the newline from FATAL_ERROR call

See merge request isc-projects/bind9!307
 2018-05-22 07:02:17 -04:00
Ondřej Surý
c4a38bd127 Remove extra FATAL prefix from FATAL_ERROR call 2018-05-22 12:31:54 +02:00
Ondřej Surý
9bde348ae8 Merge branch '280-provide-diagnostic-on-failed-RAND_bytes' into 'master' 
Provide more diagnostic output on failed RAND_bytes() call

See merge request isc-projects/bind9!306
 2018-05-22 06:27:05 -04:00
Ondřej Surý
88631dad8f Provide better error message on failed RAND_bytes call 2018-05-22 12:12:25 +02:00
Evan Hunt
f6c213c87d Merge branch 'fix-kit' into 'master' 
use the correct repository, and get archive by tag not hash

See merge request isc-projects/bind9!304
 2018-05-21 16:55:27 -04:00
Evan Hunt
999e3233f3 use the correct repository, and get archive by tag not hash 2018-05-21 13:43:49 -07:00
Evan Hunt
fb8b3ad23d Merge branch 'prep-913' into 'master' 
prepare development release 9.13.0

See merge request isc-projects/bind9!296
 2018-05-21 16:12:19 -04:00
Tinderbox User
9536688b37 regenerate doc 2018-05-21 19:59:45 +00:00
Evan Hunt
df4df8e0d5 begin preparation for 9.13.0 
- tidy up release notes, removing the existing "security fixes" and
  "bug fixes" sections
- add a section in the release notes to discuss the new version
  numbering
- update version, CHANGES, api, and mapapi files
 2018-05-21 11:50:38 -07:00
Mukund Sivaraman
5f5fac6b92 Merge branch '185-fix-changes-entry' into 'master' 
Resolve "[CVE-2018-5737] serve-stale crash"

Closes #185

See merge request isc-projects/bind9!303
 2018-05-21 13:31:41 -04:00
Mukund Sivaraman
bfafcf89b8 Fix CHANGES entry 2018-05-21 22:52:15 +05:30
Evan Hunt
1092590ef4 Merge branch '185-public-fix' into 'master' 
Resolve "[CVE-2018-5737] serve-stale crash"

Closes #185

See merge request isc-projects/bind9!302
 2018-05-21 13:02:30 -04:00
Evan Hunt
4b67376e42 update CHANGES 2018-05-21 09:53:46 -07:00
Michał Kępień
46bb4dd124 Detect recursion loops during query processing 
Interrupt query processing when query_recurse() attempts to ask the same
name servers for the same QNAME/QTYPE tuple for two times in a row as
this indicates that query processing may be stuck for an indeterminate
period of time, e.g. due to interactions between features able to
restart query_lookup().
 2018-05-21 09:50:10 -07:00
Michał Kępień
391fac1fc8 Prevent check_stale_header() from leaking rdataset headers 
check_stale_header() fails to update the pointer to the previous header
while processing rdataset headers eligible for serve-stale, thus
enabling rdataset headers to be leaked (i.e. disassociated from a node
and left on the relevant TTL heap) while iterating through a node.  This
can lead to several different assertion failures.  Add the missing
pointer update.
 2018-05-21 09:50:10 -07:00
Mark Andrews
e8dd921ef9 Merge branch '238-isc_net_recvoverflow-support-is-broken' into 'master' 
Resolve "ISC_NET_RECVOVERFLOW support is broken."

Closes #238

See merge request isc-projects/bind9!226
 2018-05-18 01:44:02 -04:00
Mark Andrews
6bff1768cf ISC_SOCKEVENTATTR_TRUNC was not be set 2018-05-18 15:34:48 +10:00
Mark Andrews
ac9d87e325 Merge branch 'placeholder' into 'master' 
add placeholder

See merge request isc-projects/bind9!299
 2018-05-17 22:41:19 -04:00
Mark Andrews
aabd651ae8 add placeholder 2018-05-18 12:32:37 +10:00
Evan Hunt
bb4bfb9ae6 Merge branch '251-documentation-of-rpz-min-update-interval-is-inconsistent-with-implementation' into 'master' 
Resolve "Documentation of RPZ min-update-interval is inconsistent with implementation"

Closes #251

See merge request isc-projects/bind9!277
 2018-05-17 22:12:17 -04:00
Mukund Sivaraman
975afc508d Fix ARM about min-update-interval default for RPZ zones 
Also, use variable names consistent with catz for rpz configuration functions
 2018-05-17 19:02:51 -07:00
Mark Andrews
5a75f5bc91 Merge branch '267-iscpk11libs-is-not-defined-anywhere-resulting-in-dstrandom_test-not-being-built' into 'master' 
Remove dstrandom_test from lib/dns/tests/Atffile

See merge request isc-projects/bind9!292
 2018-05-17 02:20:30 -04:00
Mark Andrews
074f247926 remove dstrandom_test 2018-05-17 16:10:24 +10:00
Mark Andrews
7a8f04b826 Merge branch 'u/fanf2/restore-nsid-logging' into 'master' 
Fix request-nsid log level to match documentation.

See merge request isc-projects/bind9!290
 2018-05-16 23:49:25 -04:00
Tony Finch
adbdedda7a Add CHANGES entry. 
4948.	[bug]		When request-nsid is turned on, EDNS NSID options
			should be logged at level info. Since change 3741
			they have been logged at debug(3) by mistake.
			[GL !290]
 2018-05-16 20:24:24 +01:00
Tony Finch
174cd00290 Fix request-nsid log level to match documentation. 
Since change 3741 (commit 1d761cb4) they have been logged at
debug(3) by mistake.
 2018-05-16 20:20:05 +01:00
Witold Krecicki
5296ecb946 Merge branch '221-new-isc_random-api' into 'master' 
Unify the random number provider

Closes #221

See merge request isc-projects/bind9!269
 2018-05-16 04:05:31 -04:00
Ondřej Surý
e61082015d Add CHANGES entry. 
4947.   [func]          Replace all random functions with isc_random(),
                        isc_random_buf() and isc_random_uniform() API.
                        [GL #221]
 2018-05-16 09:55:56 +02:00
Ondřej Surý
087eab022f Add release notes. 2018-05-16 09:54:35 +02:00
Ondřej Surý
b890abb4f3 Remove -p pseudo-random documentation from dnssec-signzone 2018-05-16 09:54:35 +02:00
Ondřej Surý
b4d6541fe8 Remove genrandom man page 2018-05-16 09:54:35 +02:00
Ondřej Surý
f872cfcb45 Remove -p option usage from rpz test 2018-05-16 09:54:35 +02:00
Ondřej Surý
2b8fab6828 Remove genrandom command and all usage of specific random files throughout the system test suite 2018-05-16 09:54:35 +02:00
Ondřej Surý
3a4f820d62 Replace all random functions with isc_random, isc_random_buf and isc_random_uniform API. 
The three functions has been modeled after the arc4random family of
functions, and they will always return random bytes.

The isc_random family of functions internally use these CSPRNG (if available):

1. getrandom() libc call (might be available on Linux and Solaris)
2. SYS_getrandom syscall (might be available on Linux, detected at runtime)
3. arc4random(), arc4random_buf() and arc4random_uniform() (available on BSDs and Mac OS X)
4. crypto library function:
4a. RAND_bytes in case OpenSSL
4b. pkcs_C_GenerateRandom() in case PKCS#11 library
 2018-05-16 09:54:35 +02:00
Ondřej Surý
74dd289a1c Merge branch '209-glue-is-no-longer-included' into 'master' 
Resolve "Glue is no longer included for non-DNSSEC-signed zones since CHANGE 4596"

Closes #209

See merge request isc-projects/bind9!247
 2018-05-16 02:27:32 -04:00
Mukund Sivaraman
dfd73d7e16 Add CHANGES entry 2018-05-16 08:16:12 +02:00