ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
16,916 Commits 589 Branches 805 Tags
8371f50c6e2b9fb7bda891d7ec4e2736344b60de
Commit Graph

5153 Commits

Author SHA1 Message Date
cvs2git
8371f50c6e This commit was manufactured by cvs2git to create branch 'v9_6'. 2009-10-28 00:56:22 +00:00
Mark Andrews
c6d2578fd6 2741. [func] Allow the dnssec-keygen progress messages to be 
suppressed (dnssec-keygen -q).  Automatically
                        suppress the progress messages when stdin is not
                        a tty. [RT #20474]
 2009-10-28 00:27:10 +00:00
Automatic Updater
990dca4605 update copyright notice 2009-10-27 23:47:45 +00:00
Evan Hunt
95f2377b4f 2739. [cleanup] Clean up API for initializing and clearing trust 
anchors for a view. [RT #20211]
 2009-10-27 22:46:13 +00:00
Mark Andrews
c363a13c50 2729. [func] When constructing a CNAME from a DNAME use the DNAME 
TTL. [RT #20451]
 2009-10-27 22:45:07 +00:00
Mark Andrews
e09cdbac08 2738. [func] Add RSASHA256 and RSASHA512 tests to the dnssec system 
test. [RT #20453]
 2009-10-27 22:25:37 +00:00
Evan Hunt
e3b59e4af7 Minor cleanup in dnssec-* tools 2009-10-27 18:56:49 +00:00
Evan Hunt
312a00fb75 add named-symtbl.c to .cvsignore 2009-10-27 06:06:46 +00:00
Evan Hunt
72cfcb48a7 cleanup ddns.key after nsupdate test 2009-10-27 05:57:06 +00:00
Evan Hunt
0ce9fba8f0 cleanup DLV test 2009-10-27 05:49:50 +00:00
Mark Andrews
9e9e7112f9 2737. [func] UPDATE requests can leak existance information. 
[RT #17261]
 2009-10-27 05:42:25 +00:00
Mark Andrews
63d5a6f680 2736. [func] Improve the performance of NSEC signed zones with 
more than a normal amount of glue below a delegation.
                        [RT #20191]
 2009-10-27 04:46:58 +00:00
Evan Hunt
e8831e51c1 2735. [bug] dnssec-signzone could fail to read keys 
that were specified on the command line with
			full paths, but weren't in the current
			directory. [RT #20421]
 2009-10-27 03:59:45 +00:00
Mark Andrews
af30180834 2734. [port] cygwin: arpaname did not compile. [RT #20473] 2009-10-27 03:05:33 +00:00
Automatic Updater
5f744ebbdc update copyright notice 2009-10-26 23:47:35 +00:00
Evan Hunt
6f9c93a885 2733. [cleanup] Clean up coding style in pkcs11-* tools. [RT #20355] 2009-10-26 23:36:53 +00:00
Evan Hunt
c8aa7ce70d 2732. [func] Add optional filter-aaaa-on-v4 option, available 
if built with './configure --enable-filter-aaaa'.
			Filters out AAAA answers to clients connecting
			via IPv4.  (This is NOT recommended for general
			use.) [RT #20339]
 2009-10-26 23:14:54 +00:00
Evan Hunt
c021499604 2731. [func] Additional work on change 2709. The key parser 
will now ignore unrecognized fields when the
			minor version number of the private key format
			has been increased.  It will reject any key with
			the major version number increased. [RT #20310]
 2009-10-26 21:18:24 +00:00
Francis Dupont
775a8d86d9 keygen progress indication [RT #20284] 2009-10-24 09:46:19 +00:00
Mark Andrews
c07236a635 2729. [func] When constructing a CNAME from a DNAME use the DNAME 
TTL. [RT #20451]
 2009-10-24 04:38:19 +00:00
Evan Hunt
8f0502e922 2728. [bug] dnssec-keygen, dnssec-keyfromlabel and 
dnssec-signzone now warn immediately if asked to
			write into a nonexistent directory. [RT #20278]
 2009-10-24 00:00:06 +00:00
Automatic Updater
8e821eea5f regen 2009-10-23 01:14:48 +00:00
Automatic Updater
510032fdf4 update copyright notice 2009-10-22 23:48:07 +00:00
Evan Hunt
f10a8fa034 2727. [func] The 'key-directory' option can now specify a relative 
path. [RT #20154]
 2009-10-22 03:43:16 +00:00
Evan Hunt
cc6cddfd94 2726. [func] Added support for SHA-2 DNSSEC algorithms, 
RSASHA256 and RSASHA512. [RT #20023]
 2009-10-22 02:21:31 +00:00
Mark Andrews
d2a8d00228 2724. [bug] Updates to a existing node in secure zone using NSEC 
were failing. [RT #20448]
 2009-10-22 01:55:55 +00:00
Mark Andrews
ab23f14a30 silence compiler warnings. [RT #20412] 2009-10-20 03:31:06 +00:00
Mark Andrews
859cfb24bf silence compiler warnings. [RT #20412] 2009-10-20 03:30:07 +00:00
Mark Andrews
06e7340198 2719. [func] Skip trusted/managed keys for unsupported algorithms. 
[RT #20392]
 2009-10-20 03:15:06 +00:00
Mark Andrews
e5ad562a79 2716. [bug] nslookup debug mode didn't return the ttl. [RT #20414] 2009-10-20 01:11:22 +00:00
Mark Andrews
4b30598fb9 2716. [bug] nslookup debug mode didn't return the ttl. [RT #20414] 2009-10-20 01:04:03 +00:00
Automatic Updater
5a24d24c8f regen 2009-10-17 01:14:35 +00:00
Jeremy Reed
eec29cfd40 Fix typo as reported by SUN Guonian <sun@cnnic.cn>. 
This was seen in 9.7.0a3.
No CHANGES entry as is too minor.
 2009-10-16 15:37:01 +00:00
Automatic Updater
d060d8669f regen 2009-10-16 04:20:49 +00:00
Evan Hunt
8f7de3db7e Respinning to fix memory leak in dnssec-signzone. (Also adopting doc changes.) 2009-10-16 02:59:41 +00:00
Mark Andrews
1ed01b3390 silence compiler warning 2009-10-14 22:07:13 +00:00
Automatic Updater
ef9ee92543 update copyright notice 2009-10-13 23:48:12 +00:00
Evan Hunt
5c0fd37335 changes needed for win32 build 2009-10-13 02:39:38 +00:00
Evan Hunt
19ac4707ee changes needed for win32 build 2009-10-13 00:55:51 +00:00
Automatic Updater
97639003b0 update copyright notice 2009-10-12 23:48:02 +00:00
Automatic Updater
3b2c6af63e regen 2009-10-12 23:16:15 +00:00
Evan Hunt
c00929ed9f additional doc improvement 2009-10-12 23:02:32 +00:00
Evan Hunt
77b8f88f14 2712. [func] New 'auto-dnssec' zone option allows zone signing 
to be fully automated in zones configured for
			dynamic DNS.  'auto-dnssec allow;' permits a zone
			to be signed by creating keys for it in the
			key-directory and using 'rndc sign <zone>'.
			'auto-dnssec maintain;' allows that too, plus it
			also keeps the zone's DNSSEC keys up to date
			according to their timing metadata. [RT #19943]
 2009-10-12 20:48:12 +00:00
Automatic Updater
8de0d8a690 regen 2009-10-11 01:14:49 +00:00
Automatic Updater
8667770ad2 update copyright notice 2009-10-10 23:47:58 +00:00
Evan Hunt
3727725bb7 2710. [func] New 'dnssec-signzone -x' flag and 'dnskey-ksk-only' 
zone option cause a zone to be signed with only KSKs
			signing the DNSKEY RRset, not ZSKs.  This reduces
			the size of a DNSKEY answer.  [RT #20340]
 2009-10-10 01:48:00 +00:00
Evan Hunt
315a1514a5 2709. [func] Added some data fields, currently unused, to the 
private key file format, to allow implementation
			of explicit key rollover in a future release
			without impairing backward or forward compatibility.
			[RT #20310]
 2009-10-09 06:09:21 +00:00
Automatic Updater
b05106c7e6 regen 2009-10-09 01:14:47 +00:00
Automatic Updater
15bbb8a129 update copyright notice 2009-10-08 23:48:10 +00:00
Mark Andrews
2847930722 2708. [func] Insecure to secure and NSEC3 parameter changes via 
update are now fully supported and no longer require
                        defines to enable.  We now no longer overload the
                        NSEC3PARAM flag field, nor the NSEC OPT bit at the
                        apex.  Secure to insecure changes are controlled by
                        by the named.conf option 'secure-to-insecure'.

                        Warning: If you had previously enabled support by
                        adding defines at compile time to BIND 9.6 you should
                        ensure that all changes that are in progress have
                        completed prior to upgrading to BIND 9.7.  BIND 9.7
                        is not backwards compatible.
 2009-10-08 23:13:07 +00:00