ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,485 Commits 589 Branches 805 Tags
b75677603dcdfe08e666ed154a604216ba0bb0dc
Commit Graph

6166 Commits

Author SHA1 Message Date
Evan Hunt
6878c2f64a [v9_10] fix theoretical shutdown race 
4226.	[bug]		Address a theoretical shutdown race in
			zone.c:notify_send_queue(). [RT #38958]
 2015-09-29 15:27:33 -07:00
Mark Andrews
36d6fb03c7 Introduce end-of-line normalization 2015-09-29 08:26:56 +10:00
Mark Andrews
2a3ee10260 4221. [bug] Resource leak on DNS_R_NXDOMAIN in fctx_create. 
[RT #40583]

(cherry picked from commit 8d80b4939d)
 2015-09-25 09:19:37 +10:00
Tinderbox User
99be06f28c update copyright notice / whitespace 2015-09-18 23:45:51 +00:00
Mark Andrews
7677f0083f 4217. [protocol] Add support for CSYNC. [RT #40532] 
(cherry picked from commit f6e45a5c54)
 2015-09-18 23:47:54 +10:00
Mark Andrews
6ea2c41bea 4216. [cleanup] Silence static analysis warnings. [RT #40649] 
(cherry picked from commit 705d56b47a)
 2015-09-18 23:31:14 +10:00
Mark Andrews
5641a85a11 4214. [protocol] Add support for TALINK. [RT #40544] 
(cherry picked from commit e0a30050c8)
 2015-09-18 07:45:47 +10:00
Mark Andrews
de8a5c0d3b 4210. [cleanup] Silence use after free false positive. [RT #40743] 
(cherry picked from commit f43e5c8ed2)
 2015-09-17 14:05:51 +10:00
Mark Andrews
44455db0a9 4207. [bug] Handle class mismatches with raw zone files. 
[RT #40746]

(cherry picked from commit 0f2ecf4b5c)
 2015-09-16 10:44:00 +10:00
Mark Andrews
8431a9d3c1 4199. [protocol] Add support for NINFO, RKEY, SINK, TA. 
[RT #40545] [RT #40547] [RT #40561] [RT #40563]

(cherry picked from commit 5a49f61ca9)
 2015-09-11 17:36:18 +10:00
Tinderbox User
03e2c07f24 update copyright notice / whitespace 2015-09-10 23:46:55 +00:00
Mark Andrews
0f6e4cb5bd 4199. [protocol] Add support for NINFO, RKEY, TA. 
[RT #40545] [RT #40547] [RT #40563]

(cherry picked from commit 3dd63ba00f)
 2015-09-10 17:59:44 +10:00
Mark Andrews
9a95c605e8 4199. [protocol] Add support for NINFO, RKEY. [RT #40547] [RT #40563] 
(cherry picked from commit 63874956de)
 2015-09-10 17:08:02 +10:00
Mark Andrews
f00d028c20 4199. [protocol] Add support for RKEY. [RT #40563] 
(cherry picked from commit 8b29fc0b7a)
 2015-09-10 14:53:20 +10:00
Mark Andrews
0d9fcd6afe *.vcxproj.in should use CRLF as EOL 2015-08-27 21:59:45 +00:00
Mark Andrews
f426a1d4ec eol -> crlf 2015-08-26 12:41:25 +10:00
Tinderbox User
2fb8dcf2a8 update copyright notice / whitespace 2015-08-25 23:45:57 +00:00
Evan Hunt
42a6343cbf [v9_10] prep 9.10.3rc1 2015-08-25 11:20:47 -07:00
Mark Andrews
d324bececc 4193. [bug] Handle broken servers that return BADVERS incorrectly. 
[RT #40427]
 2015-08-25 16:54:04 +10:00
Mark Andrews
53d88bc684 4192. [bug] The default rrset-order of random was not always being 
applied. [RT #40456]

(cherry picked from commit 9b956d342e)
 2015-08-25 14:52:51 +10:00
Mark Andrews
e99165ed46 4191. [protocol] Accept DNS-SD non LDH PTR records in reverse zones 
as per RFC 6763. [RT #37889]

(cherry picked from commit 5855fd79e3)
 2015-08-25 14:46:35 +10:00
Mark Andrews
daec213a5c 4190. [protocol] Accept Active Diretory gc._msdcs.<forest> name as 
valid with check-names.  <forest> still needs to be
                        LDH. [RT #40399]

(cherry picked from commit dc3912f3ca)
 2015-08-22 15:28:09 +10:00
Tinderbox User
f21b6da8ff update copyright notice / whitespace 2015-08-19 23:45:50 +00:00
Mark Andrews
0b30f1a160 #include <isc/safe.h> 2015-08-19 05:33:18 +10:00
Mukund Sivaraman
ff82214714 Use unknown format when totext() is not implemented for any RDATA (#40317) 
(cherry picked from commit ec3dbae9eb)
 2015-08-18 20:13:55 +05:30
Mukund Sivaraman
92260722dc Fix RPZ bugs related to wildcard triggers (#40357) 
(cherry picked from commit bf350c9f1a)

Conflicts:
	CHANGES
	bin/tests/system/rpzrecurse/tests.sh
 2015-08-18 19:48:42 +05:30
Evan Hunt
cd6122b164 [v9_10] timing safe memory comparisons 
4183.	[cleanup]	Use timing-safe memory comparisons in cryptographic
			code. Also, the timing-safe comparison functions have
			been renamed to avoid possible confusion with
			memcmp(). [RT #40148]

(cherry picked from commit 420a43c8d8)
 2015-08-17 18:28:27 -07:00
Tinderbox User
b177b5fed7 update copyright notice / whitespace 2015-08-17 23:46:10 +00:00
Mukund Sivaraman
25747be3cb Use mnemonics for RR class and type comparisons (#40297) 
(cherry picked from commit b0ba1a6059)
 2015-08-17 12:25:46 +05:30
Mark Andrews
8cbf220a1e 4181. [bug] Queued notify messages could be dequeued from the 
wrong rate limiter queue. [RT #40350]

(cherry picked from commit 70862302f8)
 2015-08-17 10:38:17 +10:00
Tinderbox User
becbacfb68 update copyright notice / whitespace 2015-08-14 23:45:57 +00:00
Mukund Sivaraman
9a88ab054b Fix assertion failure in parsing UNSPEC(103) RR from text (#40274) 
(cherry picked from commit 984d2bb9e5)
 2015-08-14 13:31:43 +05:30
Mukund Sivaraman
9250173510 Fix assertion failure in parsing NSAP records from text 
(cherry picked from commit 474921d733)
 2015-08-14 13:12:04 +05:30
Mark Andrews
9a44ac1838 4175. [bug] TKEY with GSS-API keys needed bigger buffers. 
[RT #40333]

(cherry picked from commit 9dc5ef7f24)
 2015-08-14 08:20:26 +10:00
Evan Hunt
1ca1a3f4df [v9_10] address VS2015 compiler warning 2015-08-13 14:58:50 -07:00
Tinderbox User
73b5671cdf update copyright notice / whitespace 2015-08-12 23:45:54 +00:00
Evan Hunt
1d18ee80ea [v9_10] fix tsig class checks 
4171.	[bug]		Fixed incorrect class checks in TSIG RR
			implementation. [RT #40287]
 2015-08-11 22:17:00 -07:00
Evan Hunt
a51bed6650 [v9_10] fix length check in OPENPGPKEY 
4170.	[security]	An incorrect boundary check in the OPENPGPKEY
			rdatatype could trigger an assertion failure.
			[RT #40286]
 2015-08-11 20:02:39 -07:00
Tinderbox User
979d849b60 update copyright notice / whitespace 2015-08-07 23:45:57 +00:00
Evan Hunt
7163ce122d [v9_10] address buffer accounting error 
4168.	[security]	A buffer accounting error could trigger an
			assertion failure when parsing certain malformed
			DNSSEC keys. (CVE-2015-5722) [RT #40212]

(cherry picked from commit ce9f893e21)
 2015-08-07 13:23:03 -07:00
Mukund Sivaraman
8ddb21cd82 Bump api versions 2015-07-31 12:33:36 +05:30
Mark Andrews
38df037565 badcookie has a offical code point of 23 
(cherry picked from commit 46e7fc51b8)
 2015-07-27 15:22:42 +10:00
Mark Andrews
0b08938f80 4165. [bug] An failure to reset a value to NULL in tkey.c could 
result in an assertion failure. (CVE-2015-5477)
                        [RT #40046]

(cherry picked from commit dbb064aa79)
 2015-07-14 14:49:15 +10:00
Tinderbox User
dae3e8def6 update copyright notice / whitespace 2015-07-13 23:45:49 +00:00
Mark Andrews
d03dbac02e 4164. [bug] Don't rename slave files and journals on out of memory. 
[RT #40033]

4163.   [bug]           Address compiler warnings. [RT #40024]

(cherry picked from commit 3a49d0ff10)
 2015-07-13 09:48:42 +10:00
Tinderbox User
a704920204 update copyright notice / whitespace 2015-07-09 23:45:51 +00:00
Evan Hunt
83d0b1ab69 [v9_10] DDoS mitigation features 
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
 2015-07-08 22:55:31 -07:00
Tinderbox User
fc5aaa5e11 update copyright notice / whitespace 2015-07-07 23:45:48 +00:00
Mark Andrews
bb7971417a 4157. [protocol] Update experimental SIT code to use the EDNS COOKIE 
option code point (10).  This is the minimal change
                        required to use the new code point. [RT #39928]
 2015-07-07 15:43:04 +10:00
Mark Andrews
6eb68161a9 add warning not about handling malformed option content 
(cherry picked from commit bd08b82891)
 2015-07-07 10:25:30 +10:00