Evan Hunt
7fa388dac3
[v9_11] silence warning
...
(cherry picked from commit b3aebb5890
2016-12-28 17:54:39 -08:00
Mark Andrews
d6080de9be
9.11.1b1
2016-12-29 12:26:27 +11:00
Mark Andrews
701aa95d96
4510. [security] Named mishandled some responses where covering RRSIG
...
records are returned without the requested data
resulting in a assertion failure. (CVE-2016-9147)
[RT #43548 ]
(cherry picked from commit 6adf421e7e
2016-12-29 11:49:06 +11:00
Mark Andrews
b243aa40f9
4508. [security] Named incorrectly tried to cache TKEY records which
...
could trigger a assertion failure when there was
a class mismatch. (CVE-2016-9131) [RT #43522 ]
(cherry picked from commit 2c1c4b99a1
2016-12-29 11:17:14 +11:00
Tinderbox User
2a2618356e
update copyright notice / whitespace
2016-12-28 23:50:44 +00:00
Mark Andrews
2595d1da35
4517. [security] Named could mishandle authority sections that were
...
missing RRSIGs triggering an assertion failure.
(CVE-2016-9444) [RT # 43632]
(cherry picked from commit 1df30cfd27c5a3c57fce357c54aaf6c702227d51)
2016-12-29 10:41:06 +11:00
wpk
397b24d008
[master] Remove spurious entry in lib/dns/win32/libdns.def.in
2016-12-28 19:22:13 +01:00
wpk
b1866070ef
4545. [func] Make dnstap-read output more functionally usable.
...
[RT #43642 ]
4544. [func] Add message/payload size to dnstap-read YAML output.
[RT #43622 ]
2016-12-28 11:58:08 +01:00
Mark Andrews
6b45fd062b
4543. [bug] dns_client_startupdate now delays sending the update
...
request until isc_app_ctxrun has been called.
[RT #43976 ]
(cherry picked from commit 6f94747270
2016-12-28 15:51:47 +11:00
Tinderbox User
cec9fddbaf
update copyright notice / whitespace
2016-12-26 23:47:35 +00:00
Mark Andrews
f1e3dd087b
4540. [bug] Correctly handle ecs entries in dns_acl_isinsecure.
...
[RT #43601 ]
(cherry picked from commit 8e333f42ef
2016-12-27 09:50:08 +11:00
Mark Andrews
23ac7e6634
4539. [bug] Referencing a nonexistant zone with rpz could lead
...
to a assertion failure when configuring. [RT #43787 ]
(cherry picked from commit 762c4fc5a8
2016-12-27 09:13:40 +11:00
Mark Andrews
458e816ed0
4538. [bug] Call dns_client_startresolve from client->task.
...
[RT #43896 ]
(cherry picked from commit aceabacdb8
2016-12-27 07:02:58 +11:00
Mark Andrews
641dede12a
if gen fails remove the file [RT #43949 ]
...
(cherry picked from commit e17d2f98be
2016-12-23 09:20:48 +11:00
Mark Andrews
b8e7abc50e
freeaddrinfo is called too early.
...
(cherry picked from commit c1870d0e44
2016-12-15 09:39:51 +11:00
Tinderbox User
8852646542
update copyright notice / whitespace
2016-12-13 23:47:43 +00:00
Mark Andrews
1160ea4c28
4535. [bug] Address race condition in setting / testing of
...
DNS_REQUEST_F_SENDING. [RT #43889 ]
(cherry picked from commit 37a8db0ba4
2016-12-14 10:33:04 +11:00
Mark Andrews
348d80fb84
4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879 ]
...
(cherry picked from commit def6b33bad
2016-12-13 16:27:49 +11:00
Mark Andrews
45f206e6c1
4533. [bug] dns_client_update should terminate on prerequiste
...
failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
and also on BADZONE. [RT #43865 ]
(cherry picked from commit 8ca45ba01a
2016-12-13 15:48:20 +11:00
Mark Andrews
d77cab69bf
4530. [bug] Change 4489 broke the handling of CNAME -> DNAME
...
in responses resulting in SERVFAIL being returned.
[RT #43779 ]
(cherry picked from commit 60cb462c56
2016-12-09 12:51:09 +11:00
Evan Hunt
f1b29d8428
[v9_11] silence DSCP probing error
...
4529. [cleanup] Silence noisy log warning when DSCP probe fails
due to firewall rules. [RT #43847 ]
(cherry picked from commit f2c7ae114a
2016-12-08 08:44:44 -08:00
Mark Andrews
d0c5ff7f65
4528. [bug] Only set the flag bits for the i/o we are waiting
...
for on EPOLLERR or EPOLLHUP. [RT #43617 ]
(cherry picked from commit c1619b8420
2016-12-08 17:00:37 +11:00
Tinderbox User
7911e6f9de
regen v9_11
2016-12-07 01:09:50 +00:00
Mark Andrews
83a28ca274
4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831 ]
...
(cherry picked from commit 1b8ce3b330
2016-12-07 10:50:50 +11:00
Tinderbox User
9a4743fca8
update copyright notice / whitespace
2016-12-05 23:47:38 +00:00
Mark Andrews
5be93f5dff
4524. [bug] The net zero test was broken causing IPv4 servers
...
with addresses ending in .0 to be rejected. [RT #43776 ]
(cherry picked from commit df372d967e
2016-12-05 10:47:38 +11:00
Mukund Sivaraman
6ae22c4119
Add doc function for cfg_type_querysource4 and cfg_type_querysource6 ( #43768 )
...
(cherry picked from commit 5c843b384d
2016-12-02 11:17:14 +05:30
Mark Andrews
74d98566ed
4522. [bug] Handle big gaps in log file version numbers better.
...
[RT #38688 ]
(cherry picked from commit cab871f1bc
2016-11-30 11:00:49 +11:00
Tinderbox User
2a2335a013
update copyright notice / whitespace
2016-11-29 23:47:26 +00:00
Mark Andrews
0c2d891abe
4520. [cleanup] Alphabetise more of the grammar when printing it
...
out. Fix unbalanced indenting. [RT #43755 ]
(cherry picked from commit 4352551d23
2016-11-29 15:33:37 +11:00
Mark Andrews
fd017eea63
4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534 ]
...
(cherry picked from commit a611e44f9a
2016-11-29 11:29:23 +11:00
Mark Andrews
6ef1cdec9a
4516. [bug] isc_socketmgr_renderjson was missing from the
...
windows build. [RT #43602 ]
(cherry picked from commit 358c6ecd26
2016-11-22 12:08:26 +11:00
Mark Andrews
e0f1907562
locks are only need in OpenSSL < 1.1
2016-11-09 10:06:34 +11:00
Mark Andrews
704f73353d
only call dns_test_begin once
...
(cherry picked from commit f13c7b01746a07bef87a386ceff93ccb2a7488a9)
(cherry picked from commit 56c6fc0dac
2016-11-09 10:03:47 +11:00
Mark Andrews
a135cb62d3
remove spurious newline [RT #43585 ]
...
(cherry picked from commit fed2f7e4c1
2016-11-09 08:27:27 +11:00
Evan Hunt
0fdb1e5cb7
[v9_11] typo in comment
2016-11-08 09:06:30 -08:00
Tinderbox User
9ab989b88c
update copyright notice / whitespace
2016-11-02 23:48:10 +00:00
Mark Andrews
68770381db
add dns_db_getsize, dns_rdataslab_count, dns_zone_getmaxrecords, dns_zone_setmaxrecords
...
(cherry picked from commit aee76db9e3
2016-11-03 09:48:40 +11:00
Mark Andrews
744c1db635
4504. [security] Allow the maximum number of records in a zone to
...
be specified. This provides a control for issues
raised in CVE-2016-6170. [RT #42143 ]
(cherry picked from commit 5f8412a4cb
2016-11-03 09:48:26 +11:00
Evan Hunt
b7ae121eff
[v9_11] typo
2016-11-02 09:43:01 -07:00
Francis Dupont
66f169daf5
Fixed IP_PMTUDISC_OMIT typos
2016-11-02 09:19:45 +01:00
Mark Andrews
2ea4ed1726
remove review fprintf
...
(cherry picked from commit a0caf66c97
2016-11-02 18:04:20 +11:00
Mark Andrews
6db55b4ff9
4507. [bug] Name could incorrectly log 'allows updates by IP
...
address, which is insecure' [RT #43432 ]
(cherry picked from commit 2b2b85c897
2016-11-02 17:54:37 +11:00
Mark Andrews
2ac8829a8a
4505. [port] Use IP_PMTUDISC_OMIT if available. [RT #35494 ]
...
(cherry picked from commit a61f252391
2016-11-02 17:40:27 +11:00
Evan Hunt
e1477f467f
[v9_11] restore dropped #else block
2016-11-01 22:34:45 -07:00
Evan Hunt
8a5809527e
[v9_11] make uninstall
...
4503. [cleanup] "make uninstall" now removes file installed by
BIND. (This currently excludes Python files
due to lack of support in setup.py.) [RT #42912 ]
(cherry picked from commit 6087f87afb
2016-11-01 19:17:23 -07:00
Mark Andrews
bd19cef223
4502. [func] Report multiple and experimental options when printing
...
grammar. [RT #43134 ]
(cherry picked from commit 89286906dc
2016-11-02 12:50:39 +11:00
Mark Andrews
a0e34c90ea
4500. [bug] Support modifier I64 in isc__print_printf. [RT #43526 ]
...
(cherry picked from commit e200da5044
2016-11-02 08:46:39 +11:00
Evan Hunt
669e108d67
[v9_11] use arc4random_stir() when available
...
4499. [port] MacOSX: silence deprecated function warning
by using arc4random_stir() when available
instead of arc4random_addrandom(). [RT #43503 ]
(cherry picked from commit 3fb62a5a4e
2016-11-01 14:00:54 -07:00
Evan Hunt
6552f33198
[v9_11] 4496. [func] dig: add +idnout to control whether labels are
...
display in punycode or not. Requires idn support
to be enabled at compile time. [RT #43398 ]
(cherry picked from commit 42470b0b87
2016-10-31 20:17:28 -07:00
