ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
17,719 Commits 589 Branches 805 Tags
a27b3757fdd8976ce05e37f391ad9e7ac4638e5d
Commit Graph

8132 Commits

Author SHA1 Message Date
Mark Andrews
a27b3757fd 2968. [security] Named could fail to prove a data set was insecure 
before marking it as insecure.  One set of conditions
                        that can trigger this occurs naturally when rolling
                        DNSKEY algorithms.  [RT #22309]
 2010-11-16 01:14:51 +00:00
Mark Andrews
7965c00ca8 check for size equal zero in _format(), replace snprintf of a fixed string with strlcpy 2010-11-16 00:53:36 +00:00
Mark Andrews
432e1ce402 check that grow_headerspace added enough space or re-call it 2010-11-16 00:51:41 +00:00
Mark Andrews
c5a3400f23 REQUIRE that rataset/rdatalist be non NULL 2010-11-16 00:50:28 +00:00
Mark Andrews
a158495f84 INSIST that bucket in no longer ISC_ADB_INVALIDBUCKET after find_*_and_lock calls 2010-11-16 00:49:18 +00:00
Mark Andrews
c2f5ddeeec isc_netaddr_format() check for sies equal 0 2010-11-16 00:43:02 +00:00
Mark Andrews
baab444222 isc_sockaddr_format() check for sies equal 0 2010-11-16 00:42:35 +00:00
Mark Andrews
d775887f01 cfg_obj_asnetprefix() check that the destinations are non NULL before writing to them 2010-11-16 00:41:32 +00:00
Automatic Updater
b3ff8e5ae7 update copyright notice 2010-10-18 23:47:08 +00:00
Mark Andrews
7bce336186 2966. [bug] isc_print_vsnprintf() failed to check if there was 
space available in the buffer when adding a left
                        justified character with a non zero width,
                        (e.g. "%-1c"). [RT #22270]
 2010-10-18 03:59:05 +00:00
Mark Andrews
ed83fa75f5 2963. [security] The allow-query acl was being applied instead of the 
allow-query-cache acl to cache lookups. [RT #22114]
 2010-09-24 05:09:03 +00:00
Automatic Updater
3255640981 update copyright notice 2010-09-15 12:38:36 +00:00
Mark Andrews
506a2177bf 2961. [bug] Be still more selective about the non-authoritative 
answers we apply change 2748 to. [RT #22074]
 2010-09-15 12:21:27 +00:00
Mark Andrews
70ba55161b 2957. [bug] entropy_get() and entropy_getpseudo() failed to match 
the API for RAND_bytes() and RAND_pseudo_bytes()
                        respectively. [RT #21962]
 2010-09-15 03:06:15 +00:00
Mark Andrews
240a7dc59d 2951. [bug] named failed to generate a correct signed response 
in a optout, delegation only zone with no secure
                        delegations. [RT #22007]
 2010-09-07 00:58:36 +00:00
Mark Andrews
e588bfe689 2950. [bug] named failed to perform a SOA up to date check when 
falling back to TCP on UDP timeouts when
                        ixfr-from-differences was set. [RT #21595]
 2010-09-06 04:41:13 +00:00
Mark Andrews
02a211f4c4 2949. [bug] dns_view_setnewzones() contained a memory leak if 
it was called multiple times. [RT #21942]
 2010-09-06 04:31:11 +00:00
Francis Dupont
ec288f1a26 reindent 2010-09-05 12:14:26 +00:00
Automatic Updater
f428e385a4 update copyright notice 2010-08-16 23:46:52 +00:00
Mark Andrews
10f9e687f5 silence redefinition warnings MacOS 2010-08-16 22:41:16 +00:00
Mark Andrews
c6f4972c74 2943. [func] Add support to load new keys into managed zones 
without signing immediately with "rndc loadkeys".
                        Add support to link keys with "dnssec-keygen -S"
                        and "dnssec-settime -S".  [RT #21351]
 2010-08-16 22:21:07 +00:00
Mark Andrews
8bc194b266 2941. [bug] sdb and sdlz (dlz's zone database) failed to support 
DNAME at the zone apex.  [RT #21610]
 2010-08-16 04:49:14 +00:00
Automatic Updater
2b43d1d8c5 update copyright notice 2010-08-13 23:47:04 +00:00
Francis Dupont
7641867b4c fix win32 build 2010-08-13 14:33:31 +00:00
Francis Dupont
bcb444aed0 remove connection aborted error message 2010-08-13 10:45:32 +00:00
Mark Andrews
c73d8c1b72 2938. [bug] When skipping NSEC3 records that don't match the 
current NSEC3PARAM record in use for zone named
                        could dereference a uninitialised pointer attempting
                        to obtain a lock. [RT# 21868]
 2010-08-13 06:46:25 +00:00
Tatuya JINMEI 神明達哉
d0b75b9ff6 define the wrapper function for mem_isovermem(). 
(a regression in rt21818)
 2010-08-12 21:30:26 +00:00
Evan Hunt
9b7efe7aca Removed a leftover UNUSED statement referencing a parameter that doesn't 
exist anymore.
 2010-08-12 04:04:14 +00:00
Automatic Updater
cc4dd0d08d update copyright notice 2010-08-11 23:46:42 +00:00
Tatuya JINMEI 神明達哉
253ae50e09 required ctx is valid in mem_isovermem(). 2010-08-11 23:11:45 +00:00
Tatuya JINMEI 神明達哉
27fe1966c9 2937. [bug] Worked around an apparent race condition in over 
memory conditions.  Without this fix a DNS cache DB or
			ADB could incorrectly stay in an over memory state,
			effectively refusing further caching, which
			subsequently made a BIND 9 caching server unworkable.
			This fix prevents this problem from happening by
			polling the state of the memory context, rather than
			making a copy of the state, which appeared to cause
			a race.  This is a "workaround" in that it doesn't
			solve the possible race per se, but several experiments
			proved this change solves the symptom.  Also, the
			polling overhead hasn't been reported to be an issue.
			This bug should only affect a caching server that
			specifies a finite max-cache-size.  It's also quite
			likely that the bug happens only when enabling threads,
			but it's not confirmed yet. [RT #21818]
 2010-08-11 22:54:58 +00:00
Evan Hunt
cfd262045c 2936. [func] Improved configuration syntax and multiple-view 
support for addzone/delzone feature (see change
			#2930).  Removed "new-zone-file" option, replaced
			with "allow-new-zones (yes|no)".  The new-zone-file
			for each view is now created automatically, with
			a filename generated from a hash of the view name.
			It is no longer necessary to "include" the
			new-zone-file in named.conf; this happens
			automatically.  Zones that were not added via
			"rndc addzone" can no longer be removed with
			"rndc delzone". [RT #19447]
 2010-08-11 18:14:20 +00:00
Automatic Updater
548317f929 update copyright notice 2010-08-10 23:48:19 +00:00
Mark Andrews
712b976a06 2934. [bug] Use ANSI C compliant shift range in lib/isc/entropy.c. [RT #21871] 2010-08-10 09:32:06 +00:00
Automatic Updater
a90aca78aa update copyright notice 2010-07-11 23:46:54 +00:00
Evan Hunt
a207cfc5d1 Removed a duplicate entry in namedconf.c. 2010-07-11 05:44:15 +00:00
Evan Hunt
86dcc40058 2930. [experimental] New "rndc addzone" and "rndc delzone" commads 
allow dynamic addition and deletion of zones.
			To enable this feature, specify a "new-zone-file"
			option at the view or options level in named.conf.
			Zone configuration information for the new zones
			will be written into that file.  To make the new
			zones persist after a restart, "include" the file
			into named.conf in the appropriate view.  (Note:
			This feature is not yet documented, and its syntax
			is expected to change.) [RT #19447]
 2010-07-11 00:12:57 +00:00
Automatic Updater
1b892cf691 update copyright notice 2010-07-09 23:46:51 +00:00
Evan Hunt
bf9b852c3e 2929. [bug] Improved handling of GSS security contexts: 
- added LRU expiration for generated TSIGs
			 - added the ability to use a non-default realm
                         - added new "realm" keyword in nsupdate
			 - limited lifetime of generated keys to 1 hour
			   or the lifetime of the context (whichever is
			   smaller)
			[RT #19737]
 2010-07-09 05:13:15 +00:00
Mark Andrews
ff5864ef42 2928. [bug] Be more selective about the non-authoritative 
answer we apply change 2748 to. [RT #21594]
 2010-07-04 00:48:57 +00:00
Mark Andrews
2cf74a72fd isc_boolean_t -> dns_v4_aaaa_t 2010-06-26 05:30:30 +00:00
Mark Andrews
810656a187 2925. [bug] Named failed to accept uncachable negative responses 
from insecure zones. [RT# 21555]
 2010-06-25 23:50:13 +00:00
Automatic Updater
cf309ffeee update copyright notice 2010-06-25 23:46:51 +00:00
Mark Andrews
bf13e709db 2924. [func] 'rndc secroots' dump a combined summary of the 
current managed keys combined with trusted keys.
                        [RT #20904]
 2010-06-25 03:24:05 +00:00
Automatic Updater
b8d4e96e95 update copyright notice 2010-06-23 23:46:58 +00:00
Mark Andrews
4a8dc5f8ef 2921. [bug] The resolver could attempt to destroy a fetch context 
to soon.  [RT #19878]
 2010-06-23 01:31:43 +00:00
Automatic Updater
b61690dbad update copyright notice 2010-06-22 23:46:52 +00:00
Mark Andrews
48dfee7150 2920. [func] Allow 'filter-aaaa-on-v4' to be applied selectively 
to IPv4 clients.  New acl 'filter-aaaa' (default any).
 2010-06-22 04:03:38 +00:00
Mark Andrews
ae538374fe AAAA not A 2010-06-18 05:36:24 +00:00
Mark Andrews
081b36ff95 2918. [maint] Add AAAA address for I.ROOT-SERVERS.NET. 2010-06-18 02:11:44 +00:00