ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
26,184 Commits 589 Branches 805 Tags
b480d1eaa81237e239bbeca88c0ee1306bab4438
Commit Graph

6827 Commits

Author SHA1 Message Date
Tinderbox User
fd7a1d9cb9 update copyright notice / whitespace 2018-01-30 23:46:57 +00:00
Mark Andrews
d52acebeb8 4882. [bug] Address potential memory leak in 
dns_update_signaturesinc. [RT #47084]

(cherry picked from commit 7817caa3c7)
 2018-01-30 15:27:51 +11:00
Mark Andrews
0e24c4d100 4881. [bug] Only include dst_openssl.h when OpenSSL is required. 
[RT #47068]

(cherry picked from commit a64503c736)
 2018-01-30 15:21:29 +11:00
Mark Andrews
36d1e278c1 4879. [bug] dns_rdata_caa:value_len is was small. [RT #47086] 
(cherry picked from commit 3ae586b857)
 2018-01-30 11:00:34 +11:00
Tinderbox User
d59b79c94f update copyright notice / whitespace 2018-01-24 23:46:37 +00:00
Evan Hunt
bb0a05e72b [v9_12] change uint to isc_uint 2018-01-24 11:02:57 -08:00
Evan Hunt
7e7a5bb189 [v9_12] update 9.11 api range 2018-01-24 10:23:11 -08:00
Evan Hunt
67b1e54716 [v9_12] address overflow in retry backoff 
4877.	[bug]		Address integer overflow when exponentially
			backing off retry intervals. [RT #47041]

(cherry picked from commit 8b440753b6)
 2018-01-24 09:45:55 -08:00
Mark Andrews
c34b3b98ab 4876. [bug] Address deadlock with accessing a keytable. [RT #47000] 
(cherry picked from commit b575c4ec42)
 2018-01-24 18:56:28 +11:00
Mark Andrews
132e7795f9 4874. [bug] Wrong time display when reporting new keywarntime. 
[RT #47042]

(cherry picked from commit 83d005de61)
 2018-01-24 08:00:25 +11:00
Tinderbox User
6774dbb0ab update copyright notice / whitespace 2018-01-22 23:46:35 +00:00
Mukund Sivaraman
c8eb726046 Don't permit loading meta RR types such as TKEY from master files (#47009) 
(cherry picked from commit 8a4ce20172)
 2018-01-22 14:31:05 +05:30
Tinderbox User
5088140fc7 update copyright notice / whitespace 2018-01-21 23:46:29 +00:00
Mark Andrews
f6911d4295 4869. [bug] Address some cases where NULL with zero length could 
be passed to memmove which is undefined behaviour and
                        can lead to bad optimisation. [RT #46888]

(cherry picked from commit fdd8838bf9)
 2018-01-22 09:37:30 +11:00
Tinderbox User
c2140b163e update copyright notice / whitespace 2018-01-17 23:46:24 +00:00
Francis Dupont
5075f3faef Merged rt46864 (check MD5 amd SHA1 support) 2018-01-17 14:36:06 +01:00
Tinderbox User
b1ef8c1d9c update copyright notice / whitespace 2018-01-15 23:46:48 +00:00
Michał Kępień
893517ec31 [v9_12] Ensure all master definitions in a catalog zone contain an IP address 
4864.	[bug]		named acting as a slave for a catalog zone crashed if
			the latter contained a master definition without an IP
			address. [RT #45999]

(cherry picked from commit ae51a676c9)
 2018-01-15 20:52:37 +01:00
Tinderbox User
eee54aab6e update copyright notice / whitespace 2018-01-12 23:46:21 +00:00
Mukund Sivaraman
0374e1c3fd Fix various bugs reported by valgrind --tool=memcheck (#46978) 
(cherry picked from commit f96133826e)
 2018-01-13 00:37:28 +05:30
Tinderbox User
5f73c315d0 update copyright notice / whitespace 2018-01-10 23:48:07 +00:00
Mark Andrews
b69bb481cf 4862. [bug] The rdata flags for RRSIG was not being properly set 
when constructing a rdataslab. [RT #46978]

(cherry picked from commit 7befb67af4)
 2018-01-11 09:54:06 +11:00
Tinderbox User
77caf49c98 update copyright notice / whitespace 2018-01-04 23:45:53 +00:00
Evan Hunt
2b51d5874c [v9_12] block validator deadlock and prevent use-after-free 
4859.	[bug]		A loop was possible when attempting to validate
			unsigned CNAME responses from secure zones;
			this caused a delay in returning SERVFAIL and
			also increased the chances of encountering
			CVE-2017-3145. [RT #46839]

4858.	[security]	Addresses could be referenced after being freed
			in resolver.c, causing an assertion failure.
			(CVE-2017-3145) [RT #46839]
 2018-01-03 19:18:29 -08:00
Tinderbox User
82820349cb update copyright notice / whitespace 2018-01-03 23:45:49 +00:00
Mark Andrews
84499d7f41 missing newline in comment 
(cherry picked from commit 7258b852cf)
 2018-01-03 17:11:39 +11:00
Tinderbox User
251446d350 regen v9_12 2017-12-29 02:16:29 +00:00
Mark Andrews
d8cb1587ec initalize sigsize to zero; ATF_CHECK_EQ(sigsize, tsig.siglen); 
(cherry picked from commit 9f61f6b46b)
 2017-12-22 08:58:59 +11:00
Mark Andrews
4d1bbe308d 4847. [bug] dnssec-dnskey-kskonly was not being honoured for 
CDS and CDNSKEY. [RT #46755]
 2017-12-13 12:40:36 +11:00
Mark Andrews
cb8650d875 don't attempt to call isc_buffer_free(&buf) twice; don't attempt to call dns_message_destroy(&msg) twice; don't test for key != NULL 2017-12-12 13:20:56 +11:00
Mark Andrews
63459cdc05 4842. [bug] Conditionally compile opensslecdsa_link.c to avoid 
warnings about unused function. [RT #46790]
 2017-12-07 13:26:21 +11:00
Mark Andrews
9d5a0abe81 4841. [bug] Address -fsanitize=undefined warnings. [RT #46786] 2017-12-06 21:00:14 +11:00
Mark Andrews
00f5ea91cf 4839. [bug] zone.c:zone_sign was not properly determining 
if there were active KSK and ZSK keys for
                        a algorithm when update-check-ksk is true
                        (default) leaving records unsigned with one or
                        more DNSKEY algorithms. [RT #46774]
 2017-12-05 16:09:47 +11:00
Mark Andrews
6fa2a0691e 4838. [bug] zone.c:add_sigs was not properly determining 
if there were active KSK and ZSK keys for
                        a algorithm when update-check-ksk is true
                        (default) leaving records unsigned with one or
                        more DNSKEY algorithms. [RT #46754]
 2017-12-05 09:25:09 +11:00
Mark Andrews
196e01da5f 4837. [bug] dns_update_signatures{inc} (add_sigs) was not 
properly determining if there were active KSK and
                        ZSK keys for a algorithm when update-check-ksk is
                        true (default) leaving records unsigned. [RT #46743]
 2017-12-04 10:03:51 +11:00
Evan Hunt
2f855055ed [master] prep 9.12.0rc1 2017-11-30 14:39:16 -08:00
Evan Hunt
49a8cd6c01 [master] silence compiler warning 2017-11-30 13:55:34 -08:00
Ondřej Surý
a4a148cf9a [master] Type the shifted values to isc_uint32_t so the top bit is unsigned (found by UBSAN) [RT #46740] 2017-11-30 18:23:35 +01:00
Michał Kępień
2c20fc0d13 [master] Fix LMDB support on OpenBSD; clean up and refactor LMDB-related code 
4835.	[cleanup]	Clean up and refactor LMDB-related code. [RT #46718]

4834.	[port]		Fix LMDB support on OpenBSD. [RT #46718]
 2017-11-30 14:34:04 +01:00
Tinderbox User
dc66c4a49c update copyright notice / whitespace 2017-11-29 23:45:31 +00:00
Mark Andrews
9ddf7d6c4c 4833. [bug] isc_event_free should check that the event is not 
linked when called. [RT #46725]

4832.   [bug]           Events were not being removed from zone->rss_events.
                        [RT #46725]
 2017-11-30 10:31:44 +11:00
Mark Andrews
0579a11658 4831. [bug] Convert the RRSIG expirytime to 64 bits for 
comparisions in diff.c:resign. [RT #46710]
 2017-11-29 15:20:23 +11:00
Mark Andrews
a8c1bfd673 map more entry points to <name>64 2017-11-28 14:08:14 +11:00
Mark Andrews
18c7fa2f93 #define update_recordsandbytes update_recordsandbytes64 2017-11-28 13:58:49 +11:00
Tinderbox User
393135d693 update copyright notice / whitespace 2017-11-27 23:46:24 +00:00
Mark Andrews
c22b540e4c restore setting header->heap_index to zero in setsigningtime 2017-11-28 06:46:33 +11:00
Michał Kępień
40a90fbf89 [master] Do not use thread-local storage for storing LMDB reader locktable slots 
4828.	[bug]		Do not use thread-local storage for storing LMDB reader
			locktable slots. [RT #46556]
 2017-11-27 09:48:10 +01:00
Mark Andrews
19f6a63184 More: 
4819.   [bug]           Fully backout the transaction when adding a RRset
                        to the resigning / removal heaps fails. [RT #46473]
 2017-11-27 15:15:41 +11:00
Mark Andrews
14e9925868 add missing entries to .def files [RT #46215] 2017-11-27 13:49:39 +11:00
Mark Andrews
1dc8208a89 silence %lu vs size_t warning by casting to (unsigned long) 2017-11-24 10:25:37 +11:00