bind9

Author	SHA1	Message	Date
Evan Hunt	f592d2f76c	[v9_11] further restrict update-policy local 4762. [func] "update-policy local" is now restricted to updates from local addresses. (Previously, other addresses were allowed so long as updates were signed by the local session key.) [RT #45492]	2017-10-06 15:43:18 -07:00
Mark Andrews	1c8aa38b53	4759. [func] Add logging channel "trust-anchor-telementry" to record trust-anchor-telementry in incoming requests. Both _ta-XXXX.<anchor>/NULL and EDNS KEY-TAG options are logged. [RT #46124] (cherry picked from commit `b41c1aacbc`)	2017-10-06 13:53:50 +11:00
Evan Hunt	43d53a4e4b	[v9_11] fix topology doc 4758. [doc] Remove documentation of unimplemented "topology". [RT #46161]	2017-10-05 18:52:11 -07:00
Tinderbox User	a0fb6a0980	regen v9_11	2017-10-06 01:15:42 +00:00
Evan Hunt	e9cb871d0b	[v9_11] revise style guide information on bracing	2017-10-05 11:28:16 -07:00
Mark Andrews	2732d4922c	4754. [bug] dns_zone_setview needs a two stage commit to properly handle errors. [RT #45841]	2017-10-05 13:41:49 +11:00
Evan Hunt	73b52dd1f0	[v9_11] fix tag	2017-10-04 18:44:26 -07:00
Evan Hunt	1a35af8e47	[v9_11] remove spurious control character	2017-10-03 19:41:57 -07:00
Tinderbox User	a134177ed9	update copyright notice / whitespace	2017-10-03 23:46:31 +00:00
Evan Hunt	d5bd8bb71a	[v9_11] de-DLV 4749. [func] The ISC DLV service has been shut down, and all DLV records have been removed from dlv.isc.org. - Removed references to ISC DLV in documentation - Removed DLV key from bind.keys - No longer use ISC DLV by default in delv [RT #46155]	2017-10-03 00:43:19 -07:00
Tinderbox User	81aae25057	regen v9_11	2017-09-22 01:15:14 +00:00
Tinderbox User	c05cfdba6a	update copyright notice / whitespace	2017-09-21 23:50:32 +00:00
Evan Hunt	71f3cd81dd	[v9_11] fix typos	2017-09-21 10:13:19 -07:00
Tinderbox User	e9777ae6f9	regen v9_11	2017-09-20 01:17:06 +00:00
Mark Andrews	4ae32a6f72	remove unimplement rate-limit option [RT #46030 ] (cherry picked from commit `fb088a00cf`)	2017-09-19 13:15:53 +10:00
Tinderbox User	acce4b333d	update copyright notice / whitespace	2017-09-18 23:52:43 +00:00
Michał Kępień	b351a58647	[v9_11] Improve handling of TCP_FASTOPEN on FreeBSD 4726. [port] Prevent setsockopt() errors related to TCP_FASTOPEN from being logged on FreeBSD if the kernel does not support it. Notify the user when the kernel does support TCP_FASTOPEN, but it is disabled by sysctl. Add a new configure option, --disable-tcp-fastopen, to disable use of TCP_FASTOPEN altogether. [RT #44754] (cherry picked from commit `c2179857de`)	2017-09-18 08:34:53 +02:00
Tinderbox User	9700e6d72c	regen v9_11	2017-08-30 01:21:44 +00:00
Tinderbox User	dfae459e8c	regen v9_11	2017-08-25 01:20:31 +00:00
Mark Andrews	a64daf673d	4688. [protocol] Check and display EDNS KEY TAG options (RFC 8145) in messages. [RT #44804] (cherry picked from commit `07741d43c8`)	2017-08-25 08:47:19 +10:00
Tinderbox User	3b0259a957	regen v9_11	2017-08-22 01:20:35 +00:00
Tinderbox User	e57ec8c501	regen v9_11	2017-08-18 01:20:17 +00:00
Tinderbox User	7db794030a	regen v9_11	2017-08-15 01:21:22 +00:00
Tinderbox User	61ceead03b	regen v9_11	2017-08-10 01:21:31 +00:00
Evan Hunt	5007b353e4	[v9_11] grammar error and missing reference to filter-aaaa-on-v6 (cherry picked from commit `b2a5df8d4b`)	2017-08-09 15:05:36 -07:00
Tinderbox User	bfb7b680bf	regen v9_11	2017-08-01 01:16:08 +00:00
Tinderbox User	15f02725a8	sync	2017-08-01 01:09:50 +00:00
Evan Hunt	1073e2001c	[v9_11] revise CHANGES note and add release note	2017-07-31 10:36:00 -07:00
Tinderbox User	d95b19f839	regen v9_11	2017-07-29 01:18:02 +00:00
Evan Hunt	d1c18780d3	[v9_11] remove unnecessary acronym expansions	2017-07-28 12:23:40 -07:00
Tinderbox User	a9ea295696	regenerate	2017-07-16 22:28:27 +00:00
Tinderbox User	0b89eee616	regen v9_11	2017-07-16 21:23:32 +00:00
Tinderbox User	363b21045b	regen v9_11	2017-07-16 01:14:20 +00:00
Evan Hunt	d4098be27b	[v9_11] update relnotes to mention termination of windows XP support	2017-07-15 13:56:54 -07:00
Tinderbox User	8c72455146	regen v9_11	2017-07-15 01:18:18 +00:00
Evan Hunt	3ba9f5804c	[v9_11] add a release note for TSIG regression	2017-07-14 14:52:29 -07:00
Tinderbox User	c48fdfda7a	regen v9_11	2017-07-11 03:49:36 +00:00
Mark Andrews	e55c767c89	note change in AD setting on some truncated answers (cherry picked from commit `56d8312a48`)	2017-07-11 13:29:33 +10:00
Mark Andrews	66afb7c86a	add note about .local (cherry picked from commit `9987992232`)	2017-07-11 12:45:02 +10:00
Tinderbox User	c956167155	regen v9_11	2017-07-10 07:35:15 +00:00
Tinderbox User	38a5df33f4	regen v9_11	2017-07-10 06:24:26 +00:00
Tinderbox User	35255451d4	regen v9_11	2017-06-29 00:33:13 +00:00
Tinderbox User	550d3276d0	regen v9_11	2017-06-28 01:17:23 +00:00
Evan Hunt	a03f4b1ea4	[v9_11] address TSIG bypass/forgery vulnerabilities 4643. [security] An error in TSIG handling could permit unauthorized zone transfers or zone updates. (CVE-2017-3142) (CVE-2017-3143) [RT #45383] (cherry picked from commit `581c1526ab`)	2017-06-27 11:39:33 -07:00
Tinderbox User	8008316c9f	regen v9_11	2017-06-26 03:15:58 +00:00
Tinderbox User	421ba11f3f	regen v9_11	2017-06-14 01:15:32 +00:00
Evan Hunt	214b53880b	[v9_11] prevent reload failure due to LMDB database perms 4638. [bug] Reloading or reconfiguring named could fail on some platforms when LMDB was in use. [RT #45203] (cherry picked from commit `bf05e66bb3`)	2017-06-13 12:01:29 -07:00
Tinderbox User	51da15c886	regen v9_11	2017-05-31 01:15:21 +00:00
Evan Hunt	c28e44f3f8	[v9_11] quote service registry paths 4532. [security] The BIND installer on Windows used an unquoted service path, which can enable privilege escalation. (CVE-2017-3141) [RT #45229] (cherry picked from commit `967a3b9419`)	2017-05-30 13:38:22 -07:00
Evan Hunt	3440cf9c60	[v9_11] fix rpz formerr loop 4531. [security] Some RPZ configurations could go into an infinite query loop when encountering responses with TTL=0. (CVE-2017-3140) [RT #45181]	2017-05-30 12:35:06 -07:00

1 2 3 4 5 ...

5377 Commits