ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
16,118 Commits 589 Branches 805 Tags
b73fda80357fa0dccad6d80cf8bddf7c241cf050
Commit Graph

7755 Commits

Author SHA1 Message Date
Evan Hunt
33a31c5cab fix a comment ("ddns.key" should have been changed to "session.key"). 2009-07-31 23:43:23 +00:00
Evan Hunt
a3288b425a 2642. [bug] nsupdate could dump core on solaris when reading 
improperly formatted key files.  [RT #20015]
 2009-07-29 23:45:24 +00:00
Evan Hunt
9069215eac 2641. [bug] Fixed an error in parsing update-policy syntax, 
added a regression test to check it. [RT #20007]
 2009-07-29 17:52:00 +00:00
Mark Andrews
6a1a8186af 2638. [bug] Silence compiler warnings in gssapi code. [RT #19954] 2009-07-21 06:53:09 +00:00
Mark Andrews
f1de96a386 char mechbuf[17] -> unsigned char mechbuf[17] 2009-07-20 01:55:37 +00:00
Automatic Updater
26d8ffe715 update copyright notice 2009-07-19 23:47:55 +00:00
Evan Hunt
9edd523c22 more win32 build fixes 2009-07-19 05:06:48 +00:00
Evan Hunt
b1fa84a099 win32 build fixes 2009-07-19 04:50:15 +00:00
Evan Hunt
553ead32ff 2636. [func] Simplify zone signing and key maintenance with the 
dnssec-* tools.  Major changes:
			- all dnssec-* tools now take a -K option to
			  specify a directory in which key files will be
			  stored
			- DNSSEC can now store metadata indicating when
			  they are scheduled to be published, acttivated,
			  revoked or removed; these values can be set by
			  dnssec-keygen or overwritten by the new
			  dnssec-settime command
			- dnssec-signzone -S (for "smart") option reads key
			  metadata and uses it to determine automatically
			  which keys to publish to the zone, use for
			  signing, revoke, or remove from the zone
			[RT #19816]
 2009-07-19 04:18:05 +00:00
Automatic Updater
4a979d3577 update copyright notice 2009-07-17 23:47:41 +00:00
Evan Hunt
3967528c77 2635. [bug] isc_inet_ntop() incorrectly handled 0.0/16 addresses. 
[RT #19716]
 2009-07-17 22:01:44 +00:00
Evan Hunt
aeff7de836 2634. [port] win32: Add support for libxml2, enable 
statschannel. [RT #19773]
 2009-07-17 06:25:45 +00:00
Mark Andrews
2792e226c7 2633. [bug] Handle 15 bit rand() functions. [RT #19783] 2009-07-16 05:52:46 +00:00
Automatic Updater
3e12c54de2 update copyright notice 2009-07-14 23:47:54 +00:00
Evan Hunt
08f860f800 2630. [func] Improved syntax for DDNS autoconfiguration: use 
"update-policy local;" to switch on local DDNS in a
			zone.  [RT #19875]
 2009-07-14 22:54:57 +00:00
Automatic Updater
fd4dcaddae update copyright notice 2009-07-13 23:47:42 +00:00
Evan Hunt
943cbe8ae5 2627. [bug] Named aborted if the same key was included in 
trusted-keys more than once. [RT #19918]
 2009-07-13 21:53:03 +00:00
Evan Hunt
ef370118d5 2626. [bug] Multiple trusted-keys could trigger an assertion 
failure. [RT #19914]
 2009-07-13 21:49:57 +00:00
Mark Andrews
5b7525f51f 2625. [bug] Missing UNLOCK in rbtdb.c. [RT #19865] 2009-07-13 07:03:47 +00:00
Mark Andrews
6d5852f318 2623. [bug] Named started seaches for DS non-optimally. [RT #19915] 2009-07-13 06:24:27 +00:00
Automatic Updater
4a14ce5ba0 regen 2009-07-11 01:12:47 +00:00
Automatic Updater
b655c721b6 update copyright notice 2009-07-10 23:47:58 +00:00
Mark Andrews
98e8948bd7 2622. [bug] Printing of named.conf grammar was broken. [RT #19919] 2009-07-10 07:33:21 +00:00
Automatic Updater
c8da39c6c7 update copyright notice 2009-07-02 23:47:26 +00:00
Mark Andrews
109580e7e5 2920. [bug] Delay thawing the zone until the reload of it has 
completed successfully.  [RT #19750]
 2009-07-02 07:39:03 +00:00
Automatic Updater
c6fb85f950 update copyright notice 2009-07-01 23:47:36 +00:00
Automatic Updater
f66c8eed51 update copyright notice 2009-06-30 23:48:01 +00:00
Evan Hunt
cfb1587eb9 2619. [func] Add support for RFC 5011, automatic trust anchor 
maintenance.  The new "managed-keys" statement can
			be used in place of "trusted-keys" for zones which
			support this protocol.  (Note: this syntax is
			expected to change prior to 9.7.0 final.) [RT #19248]
 2009-06-30 02:53:46 +00:00
Mark Andrews
01dbc4fc00 2618. [bug] The sdb and sdlz db_interator_seek() methods could 
loop infinitely. [RT #19847]
 2009-06-26 06:21:03 +00:00
Automatic Updater
eddfb6120c update copyright notice 2009-06-25 23:48:02 +00:00
Mark Andrews
86739ab72c Editorial nits. [RT #19815] 2009-06-25 05:28:34 +00:00
Mark Andrews
76110b31fe 2615. [bug] "__attribute__((unused))" was in the wrong place 
for ia64 gcc builds. [RT #19854]
 2009-06-24 02:22:50 +00:00
Evan Hunt
b272d38cc5 2612. [func] Add default values for the arguments to 
dnssec-keygen.  Without arguments, it will now
			generate a 1024-bit RSASHA1 zone-signing key,
			or with the -f KSK option, a 2048-bit RSASHA1
			key-signing key. [RT #19300]

2611.	[func]		Add -l option to dnssec-dsfromkey to generate
			DLV records instead of DS records. [RT #19300]
 2009-06-17 06:51:44 +00:00
Mark Andrews
b577875266 missing line breaks 2009-06-17 04:29:43 +00:00
Evan Hunt
76786c2904 - assorted changes needed for windows build 
- began versioning for 9.7.0a1
 2009-06-12 02:33:21 +00:00
Automatic Updater
754cb8a2b3 update copyright notice 2009-06-11 23:47:56 +00:00
Automatic Updater
b6306ef56e update copyright notice 2009-06-10 23:47:47 +00:00
Evan Hunt
18ad4708eb commit windows build changes needed for DDNS patch 2009-06-10 23:36:57 +00:00
Evan Hunt
351b62535d 2609. [func] Simplify the configuration of dynamic zones: 
- add ddns-confgen command to generate
			  configuration text for named.conf
			- add zone option "ddns-autoconf yes;", which
			  causes named to generate a TSIG session key
			  and allow updates to the zone using that key
			- add '-l' (localhost) option to nsupdate, which
			  causes nsupdate to connect to a locally-running
			  named process using the session key generated
			  by named
			[RT #19284]
 2009-06-10 00:27:22 +00:00
Mark Andrews
afbe695de3 "got insecure response; parent indicates it should be secure" wrongly emitted [RT #19800] 2009-06-09 22:57:09 +00:00
Mark Andrews
3d785d7666 dns_dnssec_selfsigns 2009-06-04 04:58:10 +00:00
Automatic Updater
39844d4710 update copyright notice 2009-06-04 02:56:47 +00:00
Mark Andrews
2534a73a59 2608. [func] Perform post signing verification checks in 
dnssec-signzone.  These can be disabled with -P.

                        The post sign verification test ensures that for each
                        algorithm in use there is at least one non revoked
                        self signed KSK key.  That all revoked KSK keys are
                        self signed.  That all records in the zone are signed
                        by the algorithm.  [RT #19653]
 2009-06-04 02:13:37 +00:00
Mark Andrews
f05a6b110f 2607. [bug] named could incorrectly delete NSEC3 records for 
empty nodes when processing a update request.
                        [RT #19749]
 2009-06-04 01:43:41 +00:00
Mark Andrews
0bc3af9834 2606. [bug] "delegation-only" was not being accepted in 
delegation-only type zones. [RT #19717]
 2009-06-03 00:04:38 +00:00
Automatic Updater
dc0c165ce3 update copyright notice 2009-06-02 23:47:50 +00:00
Mark Andrews
5422cf284f 2605. [bug] Accept DS responses from delegation only zones. 
[RT # 19296]
 2009-06-02 05:51:44 +00:00
Automatic Updater
e6ada020f5 update copyright notice 2009-05-29 23:47:49 +00:00
Tatuya JINMEI 神明達哉
40d0f115a6 2604. [func] Add support for DNS rebinding attack prevention through 
new options, deny-answer-addresses and
			deny-answer-aliases.  Based on contributed code from
			JD Nurmi, Google. [RT #18192]
 2009-05-29 22:22:37 +00:00
Mark Andrews
7be6336565 2602. [port] win32: fix debugging command line build of libisccfg. 
[RT #19767]
 2009-05-29 01:16:31 +00:00