Commit Graph

6276 Commits

Author SHA1 Message Date
Mark Andrews
889cc681eb in rdbdb.c:setsigningtime stop breaking heap invariant property unless we are going to restore the invariant property
(cherry picked from commit 6ead410268)
2017-11-24 08:51:14 +11:00
Michał Kępień
bbfa83da40 [v9_9] Refactor reclimit system test
4823.	[test]		Refactor reclimit system test to improve its
			reliability and speed. [RT #46632]

(cherry picked from commit 1fd4803e84)
2017-11-21 10:34:03 +01:00
Tinderbox User
a42d1f9000 update copyright notice / whitespace 2017-11-17 23:47:28 +00:00
Mark Andrews
ae7cb54fe0 remove out of date comment
(cherry picked from commit a197094d76)
2017-11-18 08:52:10 +11:00
Mark Andrews
cae44b160b 4821. [bug] When resigning ensure that the SOA's expire time is
always later that the resigning time of other records.
                        [RT #46473]

4820.   [bug]           dns_db_subtractrdataset should transfer the resigning
                        information to the new header. [RT #46473]

4819.   [bug]           Fully backout the transaction when adding a RRset
                        to the resigning / removal heaps fail. [RT #46473]

(cherry picked from commit 656eed7c9b)
2017-11-18 07:32:10 +11:00
Michał Kępień
c799c10ffe [v9_9] Minor improvements to code handling managed keys
4812.	[bug]		Minor improvements to stability and consistency of code
			handling managed keys. [RT #46468]

(cherry picked from commit 54c1627c6f)
2017-11-09 15:21:04 +01:00
Michał Kępień
dbda79e4ec [v9_9] Prevent junk from being logged when using "also-notify { <ip> key <keyname>; };"
(cherry picked from commit 4034b098d8)
2017-11-08 09:22:34 +01:00
Michał Kępień
7e6fe17488 [v9_9] Backport fix for RT #46055
4803.   [bug]		Backport fix for RT #46055 from RT #46267. [RT #46430]

(cherry picked from commit 406caf7b9c)
2017-10-31 06:13:16 +01:00
Mark Andrews
b746de8891 tmp should be a (struct in_addr) not (struct in_addr *)
(cherry picked from commit 6e02359034)
2017-10-31 10:36:14 +11:00
Evan Hunt
b783e3dfc7 [v9_9] clean up DNS_MESSAGETEXTFLAG comments
(cherry picked from commit 89d1777560)
2017-10-25 21:34:58 -07:00
Tinderbox User
f46bfe0899 update copyright notice / whitespace 2017-10-25 23:55:13 +00:00
Evan Hunt
dcaf355f00 [v9_9] log when update-policy local gets a key match from a remote host
4788.	[cleanup]	When using "update-policy local", log a warning
			when an update matching the session key is received
			from a remote host. [RT #46213]

- this completes change #4762.
2017-10-25 01:09:41 -07:00
Michał Kępień
c6753bad79 [v9_9] Rename nsec3param_salt_totext() to dns_nsec3param_salttotext(), make it public, add unit tests
4786.	[cleanup]	Turn nsec3param_salt_totext() into a public function,
			dns_nsec3param_salttotext(), and add unit tests for it.
			[RT #46289]

(cherry picked from commit 54a43e9bf1)
2017-10-25 09:51:06 +02:00
Michał Kępień
eba17e0581 [v9_9] Remove REQUIRE preventing change 4592 from working
Change 4592 was supposed to replace a REQUIRE with a conditional return.
While the latter was added, the former was not removed.  Remove the
relevant REQUIRE to fix RT #43822 for good.

(cherry picked from commit a94d68ce43)
2017-10-24 21:11:56 +02:00
Evan Hunt
9c1540b207 [v9_9] update B.ROOT-SERVERS.NET 2017-10-24 09:17:36 -07:00
Tinderbox User
2f5154f3b1 update copyright notice / whitespace 2017-10-19 23:49:30 +00:00
Mark Andrews
54eb949c35 s/REQUIRE/ISC_REQUIRE/; include <isc/assertions.h> if ISC_REQUIRE is used; include <isc/likely.h> if ISC_{UN}LIKELY is used
(cherry picked from commit 0fab171196)
2017-10-19 17:00:13 +11:00
Evan Hunt
dd6b511f26 [v9_9] remove reference to ht.h 2017-10-18 19:54:22 -07:00
Mark Andrews
40e08f66a8 4774. [bug] <isc/util.h> was incorrectly included in several
header files. [RT #46311]
2017-10-19 12:54:44 +11:00
Tinderbox User
b17ca7e7f1 update copyright notice / whitespace 2017-10-17 23:53:44 +00:00
Michał Kępień
eb2c3bdfae [v9_9] Doxygen fixes and cleanups
4773.	[doc]		Fixed generating Doxygen documentation for functions
			annotated using certain macros.  Miscellaneous
			Doxygen-related cleanups. [RT #46276]

(cherry picked from commit 5e6d28e1b7)
2017-10-17 08:13:40 +02:00
Tinderbox User
0f155d79a0 update copyright notice / whitespace 2017-10-11 23:48:25 +00:00
Mark Andrews
6568dded83 reserve subscription flags
(cherry picked from commit a9a983781e)
2017-10-12 09:20:31 +11:00
Evan Hunt
c7a13bf188 [v9_9] ignore cache when sending 5011 refresh queries
4771.	[bug]		When sending RFC 5011 refresh queries, disregard
			cached DNSKEY rrsets. [RT #46251]

(cherry picked from commit b2597ce86b)
(cherry picked from commit b8d1e3cd5d)
2017-10-11 14:37:30 -07:00
Evan Hunt
ccad706f63 [v9_9] reduce unnecessary priming queries
4770.	[bug]		Cache additional data from priming queries as glue.
			Previously they were ignored as unsigned
			non-answer data from a secure zone, and never
			actually got added to the cache, causing hints
			to be used frequently for root-server
			addresses, which triggered re-priming. [RT #45241]

(cherry picked from commit 5de02a075b)
(cherry picked from commit 6216df5ccd)
(cherry picked from commit 07e25984b8)
2017-10-11 09:21:21 -07:00
Michał Kępień
89e10f4b41 [v9_9] Sync draft-durand-doa-over-dns snippet in lib/dns/tests/rdata_test.c with draft version -03 2017-10-09 10:53:15 +02:00
Evan Hunt
474caa0473 [v9_9] add missing names 2017-10-06 17:39:15 -07:00
Tinderbox User
ab0f4f3a40 update copyright notice / whitespace 2017-10-06 23:48:57 +00:00
Evan Hunt
5cdb31e8df [v9_9] further restrict update-policy local
4762.	[func]		"update-policy local" is now restricted to updates
                from local addresses. (Previously, other addresses
                were allowed so long as updates were signed by the
                local session key.) [RT #45492]
2017-10-06 15:42:54 -07:00
Michał Kępień
c32a80e1d6 [v9_9] Add support for DOA
4761.	[protocol]	Add support for DOA. [RT #45612]

(cherry picked from commit 4ee1fbe056)
2017-10-06 13:00:00 +02:00
Tinderbox User
e862384f39 update copyright notice / whitespace 2017-10-05 23:48:31 +00:00
Mark Andrews
6085a44615 4754. [bug] dns_zone_setview needs a two stage commit to properly
handle errors. [RT #45841]

(cherry picked from commit 2732d4922c)
2017-10-05 16:55:11 +11:00
Mark Andrews
ab94222d2f cast to unsigned int
(cherry picked from commit 34efd9ad93)
2017-10-05 13:35:45 +11:00
Tinderbox User
16a6c249b5 update copyright notice / whitespace 2017-10-03 23:48:38 +00:00
Mark Andrews
068bd10a3a 4748. [cleanup] Sprintf to snprintf coversions. [RT #46132]
(cherry picked from commit a009d03a1a)
2017-10-03 15:00:57 +11:00
Tinderbox User
cc7dac87cf update copyright notice / whitespace 2017-09-27 23:49:17 +00:00
Mark Andrews
2b9e2952ed switch to using snprintf from sprintf
(cherry picked from commit d386eb54c6)
2017-09-28 07:16:33 +10:00
Mukund Sivaraman
d182652781 Use stdatomic.h in acache code (#46085)
Part of change 4728.

(cherry picked from commit d0d2ba9546)
(cherry picked from commit b85bb66388)
2017-09-27 15:01:32 +05:30
Mark Andrews
4828d6c34f tcp test got reversed
(cherry picked from commit b4c31c8795)
2017-09-27 15:20:33 +10:00
Mark Andrews
80dd4971d9 4739. [cleanup] Address clang static analysis warnings. [RT #45952]
(cherry picked from commit f9f3f20d2d)
2017-09-27 13:19:37 +10:00
Michał Kępień
696c2a7571 [v9_9] Comment NSEC3-related code and fix a few minor issues
4736.	[cleanup]	(a) Added comments to NSEC3-related functions in
			lib/dns/zone.c.  (b) Refactored NSEC3 salt formatting
			code.  (c) Minor tweaks to lock and result handling.
			[RT #46053]

(cherry picked from commit acc3728c47)
2017-09-26 11:29:24 +02:00
Tinderbox User
a7741835cc regen v9_9 2017-09-21 07:51:57 +00:00
Tinderbox User
01bad075b6 regen v9_9 2017-09-21 04:07:03 +00:00
Mark Andrews
799bb89429 explicitly list test programs 2017-09-21 13:07:12 +10:00
Tinderbox User
288dd11e7a update copyright notice / whitespace 2017-09-19 23:51:07 +00:00
Mukund Sivaraman
d90adc2def Fix out of bounds access in DHCID totext() method (#46001)
(cherry picked from commit 98998f3ddd)
(cherry picked from commit 027a4a5b5d)
(cherry picked from commit 71a86a75d9)
2017-09-19 19:34:46 +05:30
Mukund Sivaraman
d347cf40c8 Don't use memset() to wipe memory (#45947)
(cherry picked from commit d5707676e4)
(cherry picked from commit b5252fcde5)
(cherry picked from commit aaf04460a0)

# Conflicts:
#	lib/dns/pkcs11dh_link.c
#	lib/dns/pkcs11dsa_link.c
#	lib/dns/pkcs11gost_link.c
#	lib/dns/pkcs11rsa_link.c
#	lib/isc/hmacmd5.c
#	lib/isc/hmacsha.c
#	lib/isc/md5.c
#	lib/isc/sha1.c
#	lib/isc/sha2.c
2017-09-19 18:59:48 +05:30
Tinderbox User
de1ba63361 update copyright notice / whitespace 2017-09-18 23:58:51 +00:00
Michał Kępień
c0ef11fb2e [v9_9] Prevent possible infinite signing loop after retransferring an inline-signed slave using NSEC3
4727.	[bug]		Retransferring an inline-signed slave using NSEC3
			around the time its NSEC3 salt was changed could result
			in an infinite signing loop. [RT #45080]

(cherry picked from commit 4ceebc8874)
2017-09-18 09:30:56 +02:00
Mark Andrews
b66c89c0e0 don't use strlcat with non NUL terminated strings rt45981_stage3
(cherry picked from commit dc71aa898a)
2017-09-15 13:15:01 +10:00