Commit Graph
22033 Commits
Author SHA1 Message Date
Evan Hunt 711e833921 [v9_9] add max-recursion-queries
also fixes and documentation for max-recursion-depth

(cherry picked from commit c4f54e5bd1)
(cherry picked from commit b3aa528d7e)
2014-11-18 22:14:55 -08:00
Tinderbox User 7af443fd19 regen v9_9 2014-11-19 01:12:51 +00:00
Tinderbox User dd461ee35b update copyright notice / whitespace 2014-11-18 23:46:09 +00:00
Tinderbox User aa96888c33 newcopyrights 2014-11-18 23:30:45 +00:00
Evan Hunt 776155aeea [v9_9] fix RT number 2014-11-18 08:59:12 -08:00
Evan Hunt 603a0e2637 [v9_9] limit recursion depth and iterative queries
4006.	[security]	A flaw in delegation handling could be exploited
			to put named into an infinite loop.  This has
			been addressed by placing limits on the number
			of levels of recursion named will allow (default 7),
			and the number of iterative queries that it will
			send (default 50) before terminating a recursive
			query (CVE-2014-8500).

			The recursion depth limit is configured via the
			"max-recursion-depth" option.  [RT #35780]
2014-11-17 23:49:07 -08:00
Mark Andrews 16adeb3661 check returns from putstr and putnull
(cherry picked from commit 18fa89b01e)
2014-11-18 13:03:20 +11:00
Evan Hunt 922588e83e [v9_9] fix false positive compiler warning
a "pointer always evaluates to true" warning was blocking
compilation of the radix ATF test when using --enable-developer
with gcc 4.8.2.
2014-11-15 00:55:20 -08:00
Tinderbox User 1c5c7b86fe regen v9_9 2014-11-15 01:14:17 +00:00
Evan Hunt f6e2e95a7d [v9_9] reference leak with AAAA glue but not A
4004.	[bug]		When delegations had AAAA glue but not A, a
			reference could be leaked causing an assertion
			failure on shutdown. [RT #37796]

(cherry picked from commit c4abb19716)
(cherry picked from commit 96b6923a25)
2014-11-14 09:04:52 -08:00
Tinderbox User 9b48b3dc34 regen v9_9 2014-11-06 01:12:47 +00:00
Tinderbox User 8cf35615f6 update copyright notice 2014-11-05 23:46:03 +00:00
Tinderbox User fbcb21acc6 newcopyrights 2014-11-05 23:30:15 +00:00
Evan Hunt b2630b7363 [v9_9] fix nxrrset in nxdomain redirection
4000.	[bug]		NXDOMAIN redirection incorrectly handled NXRRSET
			from the redirect zone. [RT #37722]

(cherry picked from commit 3cc8c7d630)
(cherry picked from commit 56293cd148)
2014-11-04 23:54:25 -08:00
Tinderbox User 8c6b1eae84 regen v9_9 2014-11-05 01:12:39 +00:00
Tinderbox User ea276ca5fa update copyright notice 2014-11-04 23:46:04 +00:00
Tinderbox User de728ec091 newcopyrights 2014-11-04 23:30:21 +00:00
Mark Andrews 7e43c092d4 add missing opening bracket
(cherry picked from commit a31d0513c3)
2014-11-04 17:14:08 +11:00
Mark Andrews c75e6e9756 DNS_STYLEFLAG_NOCRYPTO not supported in 9.9.x 2014-11-04 14:02:42 +11:00
Evan Hunt 1ca411f1c2 [v9_9] spelling 2014-11-03 17:44:24 -08:00
Mark Andrews 4cc275ad08 3998. [bug] isc_radix_search was returning matches that were
to precise. [RT #37680]

(cherry picked from commit b976c39c07)
2014-11-04 12:41:07 +11:00
Mark Andrews 9cce4721d1 3997. [protocol] Add OPENGPGKEY record. [RT# 37671] 2014-11-04 12:29:05 +11:00
Mark Andrews bb4ef32432 3997. [protocol] Add OPENGPGKEY record. [RT# 37671] 2014-11-04 12:25:38 +11:00
Tinderbox User 1f187fbd99 regen v9_9 2014-11-01 01:12:50 +00:00
Tinderbox User 2c0599bc2b update copyright notice 2014-10-31 23:46:07 +00:00
Mark Andrews 8230887cc6 add end of life statement 2014-10-31 13:07:11 +11:00
Tinderbox User 93aad46789 regen v9_9 2014-10-31 01:12:42 +00:00
Mark Andrews 14a1fe655c 3996. [bug] Address use after free on out of memory error in
keyring_add. [RT #37639]

(cherry picked from commit c2f8108123)
2014-10-31 11:45:01 +11:00
Mark Andrews 241cf99bf5 3995. [bug] receive_secure_serial holds the zone lock for too
long. [RT #37626]

(cherry picked from commit 4e59131f18)
(cherry picked from commit 1083f358ae)
2014-10-31 11:40:05 +11:00
Tinderbox User 746988f77e newcopyrights 2014-10-30 23:30:21 +00:00
Evan Hunt 49229ccd13 [v9_9] document that serial-query-rate has a floor of 1/second 2014-10-30 14:34:14 -07:00
Mark Andrews bfef33cbe3 3990. [testing] Add tests for unknown DNSSEC algorithm handling.
[RT #37541]

(cherry picked from commit a5c7cfbac4)
2014-10-30 11:22:17 +11:00
Mark Andrews b73923f773 3989. [cleanup] Remove redundent dns_db_resigned calls. [RT #35748]
(cherry picked from commit eb5243365c)
2014-10-30 10:55:10 +11:00
Tinderbox User 9ee669c4e9 regen v9_9 2014-10-23 01:12:23 +00:00
Evan Hunt 6feaa8f8ce [v9_9] [rt36892] relnote 2014-10-22 10:41:07 -07:00
Evan Hunt 4c51565533 [v9_9] [rt37138] relnote 2014-10-22 10:33:54 -07:00
Evan Hunt 16509a7653 [v9_9] [rt37159] relnote 2014-10-22 10:24:38 -07:00
Evan Hunt 5a0ca17eb1 [v9_9] [rt37172] relnote 2014-10-22 10:20:32 -07:00
Evan Hunt dd48ddde16 [v9_9] [rt37506] relnote 2014-10-22 10:02:35 -07:00
Evan Hunt 7e81b22be6 [v9_9] more relnotes backfill 2014-10-21 22:59:06 -07:00
Tinderbox User c64d8daa09 update copyright notice 2014-10-21 23:46:11 +00:00
Tinderbox User 8b8a1aecea newcopyrights 2014-10-21 23:30:10 +00:00
Evan Hunt 1dd21a4900 [v9_9] fix typo misspellings
(cherry picked from commit 7caeff39c2)
(cherry picked from commit 0e9950f9df)
2014-10-21 16:10:10 -07:00
Francis Dupont 88f53e412b Handle VS14 incompatible changes [RT #37380] 2014-10-21 09:36:43 +02:00
Tinderbox User 428d860f9b regenerate 2014-10-21 06:53:08 +00:00
Tinderbox User e00da9b8bc regen v9_9 2014-10-21 06:49:41 +00:00
Evan Hunt 26ab7458b5 [v9_9] [rt37398] version string in ARM page footers
3986.	[doc]		Add the BIND version number to page footers
			in the ARM. [RT #37398]

(cherry picked from commit dd66b77417)
2014-10-20 23:35:35 -07:00
Tinderbox User 6ec35cff80 regen v9_9 2014-10-21 01:12:23 +00:00
Mark Andrews 403f5b4052 update 2014-10-21 11:18:05 +11:00
Tinderbox User bf2b88607b update copyright notice 2014-10-20 23:46:18 +00:00