ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
16,409 Commits 589 Branches 805 Tags
af20baa9600965efaa6ad1abdba53b0902e84b8d
Commit Graph

7855 Commits

Author SHA1 Message Date
Mark Andrews
af20baa960 silence compiler warning/enforce const [RT #20390] 2009-10-12 05:50:52 +00:00
Automatic Updater
8667770ad2 update copyright notice 2009-10-10 23:47:58 +00:00
Evan Hunt
3727725bb7 2710. [func] New 'dnssec-signzone -x' flag and 'dnskey-ksk-only' 
zone option cause a zone to be signed with only KSKs
			signing the DNSKEY RRset, not ZSKs.  This reduces
			the size of a DNSKEY answer.  [RT #20340]
 2009-10-10 01:48:00 +00:00
Mark Andrews
0d9fb986c5 silence comiler warning 2009-10-10 01:13:39 +00:00
Automatic Updater
8a07de2f03 update copyright notice 2009-10-09 23:48:09 +00:00
Evan Hunt
315a1514a5 2709. [func] Added some data fields, currently unused, to the 
private key file format, to allow implementation
			of explicit key rollover in a future release
			without impairing backward or forward compatibility.
			[RT #20310]
 2009-10-09 06:09:21 +00:00
Mark Andrews
d1bcaec0d6 2708. [func] Insecure to secure and NSEC3 parameter changes via 
update are now fully supported and no longer require
                        defines to enable.  We now no longer overload the
                        NSEC3PARAM flag field, nor the NSEC OPT bit at the
                        apex.  Secure to insecure changes are controlled by
                        by the named.conf option 'secure-to-insecure'.

                        Warning: If you had previously enabled support by
                        adding defines at compile time to BIND 9.6 you should
                        ensure that all changes that are in progress have
                        completed prior to upgrading to BIND 9.7.  BIND 9.7
                        is not backwards compatible.
 2009-10-09 00:33:39 +00:00
Mark Andrews
bb4e0bd8e8 silence ininitialised 2009-10-08 23:58:14 +00:00
Mark Andrews
0838b3c02f Recompute check_ksk as it may have changed 2009-10-08 23:55:57 +00:00
Automatic Updater
15bbb8a129 update copyright notice 2009-10-08 23:48:10 +00:00
Mark Andrews
2847930722 2708. [func] Insecure to secure and NSEC3 parameter changes via 
update are now fully supported and no longer require
                        defines to enable.  We now no longer overload the
                        NSEC3PARAM flag field, nor the NSEC OPT bit at the
                        apex.  Secure to insecure changes are controlled by
                        by the named.conf option 'secure-to-insecure'.

                        Warning: If you had previously enabled support by
                        adding defines at compile time to BIND 9.6 you should
                        ensure that all changes that are in progress have
                        completed prior to upgrading to BIND 9.7.  BIND 9.7
                        is not backwards compatible.
 2009-10-08 23:13:07 +00:00
Evan Hunt
246c504f90 2706. [bug] Loading a zone with a very large NSEC3 salt could 
trigger an assert. [RT #20368]
 2009-10-06 21:20:45 +00:00
Automatic Updater
e74245134d update copyright notice 2009-10-06 04:40:14 +00:00
Automatic Updater
464f9144fe update copyright notice 2009-10-05 23:48:27 +00:00
Evan Hunt
ea845a6b72 Rebase all of the API files to interface=60, as this is the first 
beta of a new major release.
 2009-10-05 22:01:26 +00:00
Evan Hunt
3ff75c89eb 2704. [bug] Serial of dynamic and stub zones could be inconsistent 
with their SOA serial.  [RT #19387]
 2009-10-05 19:39:20 +00:00
Francis Dupont
3c52c4e44c 20230 update 2009-10-05 17:39:36 +00:00
Francis Dupont
8b78c993cb explicit engine rt20230a 2009-10-05 17:30:49 +00:00
Automatic Updater
4fa2649d57 update copyright notice 2009-10-03 23:48:10 +00:00
Evan Hunt
c36ba263d6 2699. [bug] Missing lock in rbtdb.c. [RT #20037] 2009-10-03 22:39:27 +00:00
Evan Hunt
1210799345 Add /* NOTREACHED */ comments 2009-10-03 18:03:54 +00:00
Automatic Updater
edb08fdf7b update copyright notice 2009-10-01 23:48:08 +00:00
Mark Andrews
cf7432f747 2697. [port] win32: ensure that S_IFMT, S_IFDIR, S_IFCHR and 
S_IFREG are defined after including <isc/stat.h>.
                        [RT #20309]
 2009-10-01 04:43:30 +00:00
Mark Andrews
eb95d2e917 2696. [bug] named failed to successfully process some valid 
acl constructs. [RT #20308]
 2009-10-01 04:06:37 +00:00
Shawn Routhier
bafa76b324 Updates to fdwatch code to support DHCP/DDNS code, ticket rt20253. 2009-10-01 01:30:01 +00:00
Automatic Updater
61dd99bfae update copyright notice 2009-09-29 23:48:04 +00:00
Francis Dupont
debd489a44 noreturn RT #20257 2009-09-29 15:06:07 +00:00
Mark Andrews
1e733ffc11 2792. [port] win32: 32/64 bit cleanups. [RT #128244] 2009-09-29 04:38:23 +00:00
Automatic Updater
627f3e0805 update copyright notice 2009-09-25 23:48:13 +00:00
Mark Andrews
ff850b81c8 2690. [bug] win32: fix isc_thread_key_getspecific() prototype. 
[RT #20315]
 2009-09-25 05:48:17 +00:00
Mark Andrews
ef830a7750 use (char *) for {get,set}sockopt argument 2009-09-25 02:44:06 +00:00
Mark Andrews
11144f86dc silence signed/unsigned comparision warning 2009-09-25 01:42:09 +00:00
Automatic Updater
b4336342d1 update copyright notice 2009-09-24 23:48:13 +00:00
Mark Andrews
0f869e8d52 2689. [bug] Correctly handle snprintf result. [RT #20306] 2009-09-24 22:19:08 +00:00
Francis Dupont
c59a7b0629 missing updates in recent changes 2009-09-24 14:39:17 +00:00
Mark Andrews
69338455d9 2688. [bug] Use INTERFACE_F_POINTTOPOINT, not IFF_POINTOPOINT, 
to decide to fetch the destination address. [RT #20305]
 2009-09-24 06:37:50 +00:00
Evan Hunt
53c22b8e0d 2685. [bug] Fixed dnssec-signzone -S handling of revoked keys. 
Also, added warnings when revoking a ZSK, as this is
			not defined by protocol (but is legal).  [RT #19943]
 2009-09-23 16:01:57 +00:00
Francis Dupont
6839f8b6df cleanup USE_EVP_RSA (RT #20044) 2009-09-23 11:16:50 +00:00
Francis Dupont
adb6972f01 minor fix, cf 20295 2009-09-22 08:38:14 +00:00
Tatuya JINMEI 神明達哉
790e471f6e 2681. [bug] IPSECKEY RR of gateway type 3 was not correctly 
decoded [RT #20269].

BIND 9.7.0, 9.6.2, 9.5.2, 9.4.4
 2009-09-18 21:55:21 +00:00
Tatuya JINMEI 神明達哉
148e9f3feb removed a non-existent .h. gmake (which is assumed to be used to build 
the exportlib) ignores it so it doesn't cause a trouble in practice, but
should still better be fixed.

(found by Shawn, I confirmed it.)
 2009-09-18 07:18:04 +00:00
Evan Hunt
b843f577bb 2677. [func] Changes to key metadata behavior: 
- Keys without "publish" or "active" dates set will
			  no longer be used for smart signing.  However,
			  those dates will be set to "now" by default when
			  a key is created; to generate a key but not use
			  it yet, use dnssec-keygen -G.
			- New "inactive" date (dnssec-keygen/settime -I)
			  sets the time when a key is no longer used for
			  signing but is still published.
			- The "unpublished" date (-U) is deprecated in
			  favor of "deleted" (-D).
			[rt20247]
 2009-09-14 18:45:45 +00:00
Automatic Updater
6d7e30b030 update copyright notice 2009-09-10 23:48:00 +00:00
Evan Hunt
f267b27f0e 2675. [bug] dnssec-signzone could crash if the key directory 
did not exist. [RT #20232]
 2009-09-10 05:09:31 +00:00
Evan Hunt
0e7cb68ea0 fix implicit memset() declaration 2009-09-10 02:18:40 +00:00
Evan Hunt
dbabab1f37 rt20045: 
- sync_keyzone() could leak ISC_R_NOMORE, causing zone_postload() to think
  it had failed
- journal roll-forward on key zones complained about having the wrong
  number of SOA records
- dns_soa_buildrdata() could return a pointer to memory allocated on the
  stack
 2009-09-10 01:47:09 +00:00
Automatic Updater
d8b801bd19 update copyright notice 2009-09-08 23:41:50 +00:00
Francis Dupont
e7de5dcef6 typo, cf RT20219 2009-09-08 13:04:29 +00:00
Francis Dupont
1f821c1058 merge rt19294 2009-09-07 12:58:33 +00:00
Mark Andrews
0b8385f5c5 2670. [bug] Unexpected connect failures failed to log enough 
information to be useful. [RT #20205]
 2009-09-07 02:08:51 +00:00