ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
25,880 Commits 589 Branches 805 Tags
625f656aa8fdf50a26af4db6ad02f11012a02140
Commit Graph

25880 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mukund Sivaraman
625f656aa8 When processing delzone, write one zone config per line to the NZF (#46323) 2017-10-29 07:40:20 +05:30
Tinderbox User
278b68ced5 update copyright notice / whitespace 2017-10-28 23:45:38 +00:00
Michał Kępień
c6c1193e39 [master] Improve clarity of keytable unit tests 
4799.	[cleanup]	Improve clarity of keytable unit tests. [RT #46407]
 2017-10-28 19:59:40 +02:00
Evan Hunt
8f532a13cb [master] update xsl version number 2017-10-27 19:19:04 -07:00
Tinderbox User
497f3f913e regen master 2017-10-28 01:12:35 +00:00
Mark Andrews
01139573bc update copyrights 2017-10-28 10:56:21 +11:00
Mark Andrews
4cbaa08602 allow for numbered namedX.args 2017-10-28 10:53:20 +11:00
Evan Hunt
c9f8165a06 [master] tag initializing keys 
4798.	[func]		Keys specified in "managed-keys" statements
			are tagged as "initializing" until they have been
			updated by a key refresh query. If initialization
			fails it will be visible from "rndc secroots".
			[RT #46267]
 2017-10-27 15:49:44 -07:00
Evan Hunt
1d57d460d4 [master] change rndc-confgen default algorithm 
this completes change 4785. the CHANGES note has been revised:

4785.	[func]		The hmac-md5 algorithm is no longer recommended for
			use with RNDC keys.  The default in rndc-confgen
			is now hmac-sha256. [RT #42272]
 2017-10-27 10:56:43 -07:00
Evan Hunt
959d294067 [master] remove isc-hmac-fixup 
4797.	[func]		Removed "isc-hmac-fixup", as the versions of BIND that
			had the bug it worked around are long past end of
			life. [RT #46411]
 2017-10-27 09:56:11 -07:00
Brian Conry
864bc6b56e [master] Increase the maximum TCP keepalive timeout to 65535 
4796.	[bug]		Increase the maximum configurable TCP keepalive
			timeout to 65535. [RT #44710]
 2017-10-27 14:58:48 +02:00
Evan Hunt
06049b1c6c [master] stats counter for priming queries 
4795.	[func]		A new statistics counter has been added to track
			priming queries. [RT #46313]
 2017-10-26 21:38:43 -07:00
Evan Hunt
3b4f23cdbf [master] dnssec-checkds -s 
4794.	[func]		"dnssec-checkds -s" specifies a file from which
			to read a DS set rather than querying the parent.
			[RT #44667]
 2017-10-26 21:05:11 -07:00
Tinderbox User
08f18efba2 update copyright notice / whitespace 2017-10-26 23:45:58 +00:00
Mark Andrews
f808b5e0d2 .md for MKD 2017-10-27 10:40:32 +11:00
Tinderbox User
a4bf990ed7 newcopyrights 2017-10-26 23:30:10 +00:00
Mark Andrews
c341e524dc address resource leak [RT #46413] 2017-10-27 09:58:55 +11:00
Evan Hunt
63270d33f1 [master] some improvements in doc/dev [RT #46011] 
- add info about rdatasets, etc, to dev.md (thanks to Tony Finch)
- convert rdata.html to markdown
 2017-10-25 23:30:10 -07:00
Mark Andrews
09baa0cbb1 use 'grep -w' to reduce false negatives 2017-10-26 16:14:30 +11:00
Mark Andrews
87387d8a41 4793. [bug] nsupdate -[46] could overflow the array of server 
addresses. [RT #46402]
 2017-10-26 16:00:24 +11:00
Evan Hunt
5c76f3664c [master] enable ISC_BUFFER_USEINLINE to be overridden 2017-10-25 21:42:56 -07:00
Evan Hunt
5b69d3da83 [master] check file and tree headers when loading map files 
4792.	[bug]		Fix map file header correctness check. [RT #38418]
 2017-10-25 21:37:00 -07:00
Evan Hunt
89d1777560 [master] clean up DNS_MESSAGETEXTFLAG comments 2017-10-25 21:33:24 -07:00
Tinderbox User
d3e8e9bdbb regen master 2017-10-26 01:09:30 +00:00
Mark Andrews
3056d6f532 use consistent filename 2017-10-26 11:43:20 +11:00
Mark Andrews
96ebb55501 update 2017-10-26 11:38:34 +11:00
Tinderbox User
8e2a8a3855 update copyright notice / whitespace 2017-10-25 23:47:47 +00:00
Evan Hunt
81570e84a2 [master] fix some documentation errors [RT #45527] 2017-10-25 11:02:26 -07:00
Evan Hunt
6a59e53a69 [master] fixed libdns doc 
4791.	[doc]		Fixed outdated documentation about export libraries.
			[RT #46341]
 2017-10-25 10:55:34 -07:00
Mark Andrews
2bbca9594f 4790. [bug] nsupdate could trigger a require when sending a 
update to the second address of the server.
                        [RT #45731]
 2017-10-26 00:29:52 +11:00
Evan Hunt
eb2ef7b53e [master] check new-zones-directory 
4789.	[cleanup]	Check writability of new-zones-directory. [RT #46308]
 2017-10-25 01:19:46 -07:00
Evan Hunt
aebdc6cd7d [master] log when update-policy local gets a key match from a remote host 
4788.	[cleanup]	When using "update-policy local", log a warning
			when an update matching the session key is received
			from a remote host. [RT #46213]

- this completes change #4762.
 2017-10-25 00:58:11 -07:00
Michał Kępień
910a01550a [master] Rename nsec3param_salt_totext() to dns_nsec3param_salttotext(), make it public, add unit tests 
4786.	[cleanup]	Turn nsec3param_salt_totext() into a public function,
			dns_nsec3param_salttotext(), and add unit tests for it.
			[RT #46289]
 2017-10-25 09:46:18 +02:00
Evan Hunt
65314b0fd8 [master] "enable-filter-aaaa" no longer optional 
4786.	[func]		The "filter-aaaa-on-v4" and "filter-aaaa-on-v6"
			options are no longer conditionally compiled.
			[RT #46340]
 2017-10-25 00:33:51 -07:00
Mark Andrews
80739779fc read dig.out.ns3.test$n rather than dig.out.ns2.test$n 2017-10-25 15:02:36 +11:00
Tinderbox User
a53e03205a regen master 2017-10-25 01:08:58 +00:00
Tinderbox User
ea055a82cd update copyright notice / whitespace 2017-10-24 23:47:14 +00:00
Tinderbox User
89c95e7141 newcopyrights 2017-10-24 23:30:30 +00:00
Mark Andrews
79e78994d0 add missing semicolon 2017-10-25 10:29:10 +11:00
Evan Hunt
21761bfe79 [master] deprecate HMAC in dnssec-keygen, MD5 in rndc-confgen 
4785.	[func]		The hmac-md5 algorithm is no longer recommended for
			use with RNDC keys. For compatibility reasons, it
			it is still the default algorithm in rndc-confgen,
			but this will be changed to hmac-sha256 in a future
			release. [RT #42272]

4784.	[func]		The use of dnssec-keygen to generate HMAC keys is
			deprecated in favor of tsig-keygen.  dnssec-keygen
			will print a warning when used for this purpose.
			All HMAC algorithms will be removed from
			dnssec-keygen in a future release. [RT #42272]
 2017-10-24 15:35:13 -07:00
Mark Andrews
969d923536 4783. [test] dnssec: 'check that NOTIFY is sent at the end of 
NSEC3 chain generation failed' required more time
                        on some machines for the IXFR to complete. [RT #46388]
 2017-10-25 09:21:14 +11:00
Mark Andrews
6b8e4d6e69 4782. [test] dnssec: 'checking positive and negative validation 
with negative trust anchors' required more time to
                        complete on some machines. [RT #46386]
 2017-10-25 09:13:05 +11:00
Michał Kępień
a94d68ce43 [master] Remove REQUIRE preventing change 4592 from working 
Change 4592 was supposed to replace a REQUIRE with a conditional return.
While the latter was added, the former was not removed.  Remove the
relevant REQUIRE to fix RT #43822 for good.
 2017-10-24 21:11:31 +02:00
Evan Hunt
7810817b71 [master] update B.ROOT-SERVERS.NET 2017-10-24 09:17:08 -07:00
Mark Andrews
b49042a6a5 report test number 2017-10-24 15:02:00 +11:00
Evan Hunt
b1042e011c [master] zone "file" option was undocumented 2017-10-23 19:39:56 -07:00
Evan Hunt
0207f6ff9e [master] omit NS from authority section if it was in answer 
4780.	[bug]		When answering ANY queries, don't include the NS
			RRset in the authority section if it was already
			in the answer section. [RT #44543]
 2017-10-23 19:16:27 -07:00
Mark Andrews
65f8b51893 remove named.memstats and named.run 2017-10-24 12:51:03 +11:00
Mark Andrews
5bead588b7 report if named.run or named.memstats not removed after successful test 2017-10-24 12:45:13 +11:00
Mark Andrews
3f2e5f840a update 2017-10-24 10:41:13 +11:00