Commit Graph
84 Commits
Author SHA1 Message Date
Evan Hunt 8b205089b7 update file headers to remove copyright years 2018-03-14 16:40:20 -07:00
Mark Andrews 0c27b3fe77 4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00
Witold Krecicki 19d80ce584 4358. [test] Added American Fuzzy Lop harness that allows
feeding fuzzed packets into BIND.
			[RT #41723]
2016-05-05 11:49:38 +02:00
Tinderbox User 53ba272721 update copyright notice / whitespace 2016-02-18 23:45:32 +00:00
Mark Andrews a2b15b3305 4318. [security] Malformed control messages can trigger assertions
in named and rndc. (CVE-2016-1285) [RT #41666]
2016-02-18 12:11:27 +11:00
Mukund Sivaraman 58f7af60e7 Allow non-destructive control channel access using a "read-only" clause (#40498) 2015-11-11 13:46:57 +05:30
Mukund Sivaraman 9b17fd447c Limit rndc query message sizes to 32 KiB (#41073) 2015-11-11 09:56:13 +05:30
Tinderbox User 012142bbe0 update copyright notice / whitespace 2015-05-06 23:45:24 +00:00
Evan Hunt 9e804040a2 [master] add "rndc -r" to print result code
4115.	[func]		"rndc -r" now prints the result code (e.g.,
			ISC_R_SUCCESS, ISC_R_TIMEOUT, etc) after
			running the requested command. [RT #38913]
2015-05-05 16:39:09 -07:00
Evan Hunt e32d354f75 [master] allow arbitrary-size rndc output
4005.	[func]		The buffer used for returning text from rndc
			commands is now dynamically resizable, allowing
			arbitrarily large amounts of text to be sent back
			to the client. (Prior to this change, it was
			possible for the output of "rndc tsig-list" to be
			truncated.) [RT #37731]
2014-11-14 15:58:54 -08:00
Evan Hunt 368aedf188 [master] log when using rndc.key
3767.	[func]		Log explicitly when using rndc.key to configure
			command channel. [RT #35316]
2014-02-27 17:55:04 -08:00
Tinderbox User 431a83fb29 update copyright notice 2014-01-09 23:46:35 +00:00
Evan Hunt e851ea8260 [master] replace memcpy() with memmove().
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
2014-01-08 16:39:05 -08:00
Evan Hunt 2c2be89824 [master] buffer could overflow in rndc zonestatus
3680.	[bug]		Ensure buffer space is available in "rndc zonestatus".
			[RT #35084]
2013-12-02 15:38:24 -08:00
Evan Hunt 4eb998928b [master] algorithm flexibility for rndc
3525.	[func]		Support for additional signing algorithms in rndc:
			hmac-sha1, -sha224, -sha256, -sha384, and -sha512.
			The -A option to rndc-confgen can be used to
			select the algorithm for the generated key.
			(The default is still hmac-md5; this may
			change in a future release.) [RT #20363]
2013-03-13 17:53:11 -07:00
Mark Andrews 3a0da183bb 3520. [bug] 'mctx' was not being referenced counted in some places
where it should have been.  [RT #32794]
2013-03-08 14:38:03 +11:00
Tinderbox User fe43ef9e63 update copyright notice 2013-03-07 23:47:05 +00:00
Evan Hunt c1e88f8d86 [master] fix rndc replay protection
3519.	[func]		Full replay protection via four-way handshake is
			now mandatory for rndc clients. Very old versions
			of rndc will no longer work. [RT #32798]
2013-03-07 15:14:07 -08:00
Mark Andrews c298583db5 3337. [bug] Change #3294 broke support for the multiple keys
in controls. [RT #29694]
2012-06-13 16:25:42 +10:00
Tinderbox User 5fa46bc916 update copyright notice 2012-03-10 23:45:53 +00:00
Mark Andrews 962bf88eec 3294. [bug] isccc/cc.c:table_fromwire failed to free alist on
error. [RT #28265]
2012-03-08 14:28:26 +11:00
Mark Andrews 328e0fee6b 3254. [bug] Set isc_socket_ipv6only() on the IPv6 control channels.
[RT #22249]
2011-12-22 08:07:48 +00:00
Automatic Updater c1aef54e14 update copyright notice 2011-03-12 04:59:49 +00:00
Mark Andrews 0874abad14 3069. [cleanup] Silence warnings messages from clang static analysis.
[RT #20256]
2011-03-11 06:11:27 +00:00
Mark Andrews 240e53b132 2396. [bug] Don't set SO_REUSEADDR for randomized ports.
[RT #18336]
part 2
2008-07-23 23:27:54 +00:00
Mark Andrews 9de0f9b0ae 2396. [bug] Don't set SO_REUSEADDR for randomized ports.
[RT #18336]
2008-07-22 03:43:04 +00:00
Automatic Updater 2f012d936b update copyright notice 2008-01-18 23:46:58 +00:00
Automatic Updater 2f99b54e8e update copyright notice 2008-01-17 23:47:00 +00:00
Mark Andrews 546c2bf791 2308. [cleanup] Silence Coverity warning in bin/named/controlconf.c.
[RT #17495]
2008-01-17 02:57:16 +00:00
Evan Hunt c7e266b7e5 Add support for O(1) ACL processing, based on radix tree code originally
written by kevin brintnall. [RT #16288]
2007-09-12 01:09:08 +00:00
Automatic Updater ec5347e2c7 update copyright notice 2007-06-18 23:47:57 +00:00
Mark Andrews cdce8b88c6 update copyright notice 2007-02-14 00:27:27 +00:00
Mark Andrews 96ea716328 2134. [func] Additional statistics support. [RT #16666] 2007-02-13 02:49:08 +00:00
Mark Andrews cfcb0881d1 2111. [bug] Fix a number of errors reported by Coverity.
[RT #16507]
2006-12-07 04:46:27 +00:00
Mark Andrews 45e1bd6358 1991. [cleanup] The configuration data, once read, should be treated
as readonly.  Expand the use of const to enforce this
                        at compile time. [RT #15813]
2006-02-28 02:39:52 +00:00
Mark Andrews 26e2a07a0b update copyright notice 2006-01-27 23:57:46 +00:00
Mark Andrews c6d4f78152 1973. [func] TSIG HMACSHA1, HMACSHA224, HMACSHA256, HMACSHA384 and
HMACSHA512 support. [RT #13606]
2006-01-27 02:35:15 +00:00
Mark Andrews ade83e60fa silence ambigious else 2005-11-30 03:36:45 +00:00
Mark Andrews 2674e1a455 1940. [bug] Fixed a number of error conditions reported by
Coverity.
2005-11-30 03:33:49 +00:00
Mark Andrews 4e1d3e67cd 1914. [bug] Strings returned from cfg_obj_asstring() should be
treated as read-only.  The prototype for
                        cfg_obj_asstring() has been updated to reflect this.
                        [RT #15256]
2005-08-23 02:36:11 +00:00
Rob Austein ab023a6556 1851. [doc] Doxygen comment markup. [RT #11398] 2005-04-27 04:57:32 +00:00
Mark Andrews 4423c99613 1814. [func] UNIX domain controls are now supported. 2005-02-23 01:09:23 +00:00
Mark Andrews abeb45c775 update copyrights 2005-01-12 01:56:12 +00:00
Mark Andrews ad5bc22a81 1797. [func] named-checkconf now check acls to verify that they
only refer to existing acls. [RT #13101]
2005-01-11 03:46:11 +00:00
Mark Andrews dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Mark Andrews 72ddc4cef9 1480. [bug] Provide replay protection for rndc commands. Full
replay protection requires both rndc and named to
                        be updated.  Partial replay protection (limited
                        exposure after restart) is provided if just named
                        is updated.
2003-07-17 06:24:44 +00:00
Mark Andrews a7038d1a05 copyrights 2002-02-20 03:35:59 +00:00
Andreas Gustafsson 669e9657c7 Split off the named.conf grammar into a source module separate
from the configuration parser, to facilitate reuse of the latter for
parsing non-BIND configuration files
2002-01-04 02:32:16 +00:00
Brian Wellington b541c10d04 1141. [bug] When named rejected a control message, it would
leak a file descriptor and memory.
2001-11-27 21:51:31 +00:00
Andreas Gustafsson 5cd7e9d4db 1083. [bug] The default control channel listened on the
wildcard adress, not the loopback as documented.
2001-10-31 19:35:19 +00:00