ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
17,793 Commits 589 Branches 805 Tags
b8a9a7bef2c3060204c68aef4f3fce04afc1aaee
Commit Graph

4983 Commits

Author SHA1 Message Date
Automatic Updater
b8a9a7bef2 update copyright notice 2010-12-08 23:51:56 +00:00
Mark Andrews
e334405421 2981. [func] Partial DNS64 support (AAAA synthesis). [RT #21991] 2010-12-08 02:46:17 +00:00
Mark Andrews
8aee18709f 2980. [bug] named didn't properly handle UPDATES that changed the 
TTL of the NSEC3PARAM RRset. [RT #22363]
 2010-12-07 02:53:34 +00:00
Mark Andrews
cc83084441 s/dns_key_free/dst_key_free/ 2010-12-03 12:03:22 +00:00
Automatic Updater
326a702a35 update copyright notice 2010-12-02 23:46:56 +00:00
Mark Andrews
c87f15dac8 2976. [bug] named die on exit after negotiating a GSS-TSIG key. [RT #3415] 2010-12-02 23:22:42 +00:00
Mark Andrews
97664670d0 2975. [bug] rbtdb.c:cleanup_dead_nodes_callback() aquired the 
wrong lock which could lead to server deadlock.
                        [RT #22614]
 2010-12-02 04:58:13 +00:00
Automatic Updater
e085624e0f update copyright notice 2010-11-30 23:46:55 +00:00
Evan Hunt
b5b934a0bb 2974. [bug] Some vaild UPDATE requests could fail due to a 
consistency check examining the existing version
			of the zone rather than the new version resulting
			from the UPDATE. [RT #22413]
 2010-11-30 02:27:08 +00:00
Automatic Updater
33cc94f04c update copyright notice 2010-11-17 23:47:09 +00:00
Evan Hunt
8eb30f8dd3 2971. [bug] Fixed a bug that caused journal files not to be 
compacted on Windows systems as a result of
			non-POSIX-compliant rename() semantics. [RT #22434]
 2010-11-17 00:27:54 +00:00
Mark Andrews
d48730a446 2970. [security] Adding a NO DATA negative cache entry failed to clear 
any matching RRSIG records.  A subsequent lookup of
                        of NO DATA cache entry could trigger a INSIST when the
                        unexpected RRSIG was also returned with the NO DATA
                        cache entry.  [RT #22288]
 2010-11-16 06:46:44 +00:00
Mark Andrews
cd9d825a71 remove accidental commit 2010-11-16 05:38:31 +00:00
Mark Andrews
a27b3757fd 2968. [security] Named could fail to prove a data set was insecure 
before marking it as insecure.  One set of conditions
                        that can trigger this occurs naturally when rolling
                        DNSKEY algorithms.  [RT #22309]
 2010-11-16 01:14:51 +00:00
Mark Andrews
7965c00ca8 check for size equal zero in _format(), replace snprintf of a fixed string with strlcpy 2010-11-16 00:53:36 +00:00
Mark Andrews
c5a3400f23 REQUIRE that rataset/rdatalist be non NULL 2010-11-16 00:50:28 +00:00
Mark Andrews
a158495f84 INSIST that bucket in no longer ISC_ADB_INVALIDBUCKET after find_*_and_lock calls 2010-11-16 00:49:18 +00:00
Mark Andrews
ed83fa75f5 2963. [security] The allow-query acl was being applied instead of the 
allow-query-cache acl to cache lookups. [RT #22114]
 2010-09-24 05:09:03 +00:00
Automatic Updater
3255640981 update copyright notice 2010-09-15 12:38:36 +00:00
Mark Andrews
506a2177bf 2961. [bug] Be still more selective about the non-authoritative 
answers we apply change 2748 to. [RT #22074]
 2010-09-15 12:21:27 +00:00
Mark Andrews
70ba55161b 2957. [bug] entropy_get() and entropy_getpseudo() failed to match 
the API for RAND_bytes() and RAND_pseudo_bytes()
                        respectively. [RT #21962]
 2010-09-15 03:06:15 +00:00
Mark Andrews
240a7dc59d 2951. [bug] named failed to generate a correct signed response 
in a optout, delegation only zone with no secure
                        delegations. [RT #22007]
 2010-09-07 00:58:36 +00:00
Mark Andrews
e588bfe689 2950. [bug] named failed to perform a SOA up to date check when 
falling back to TCP on UDP timeouts when
                        ixfr-from-differences was set. [RT #21595]
 2010-09-06 04:41:13 +00:00
Mark Andrews
02a211f4c4 2949. [bug] dns_view_setnewzones() contained a memory leak if 
it was called multiple times. [RT #21942]
 2010-09-06 04:31:11 +00:00
Francis Dupont
ec288f1a26 reindent 2010-09-05 12:14:26 +00:00
Automatic Updater
f428e385a4 update copyright notice 2010-08-16 23:46:52 +00:00
Mark Andrews
c6f4972c74 2943. [func] Add support to load new keys into managed zones 
without signing immediately with "rndc loadkeys".
                        Add support to link keys with "dnssec-keygen -S"
                        and "dnssec-settime -S".  [RT #21351]
 2010-08-16 22:21:07 +00:00
Mark Andrews
8bc194b266 2941. [bug] sdb and sdlz (dlz's zone database) failed to support 
DNAME at the zone apex.  [RT #21610]
 2010-08-16 04:49:14 +00:00
Automatic Updater
2b43d1d8c5 update copyright notice 2010-08-13 23:47:04 +00:00
Francis Dupont
7641867b4c fix win32 build 2010-08-13 14:33:31 +00:00
Mark Andrews
c73d8c1b72 2938. [bug] When skipping NSEC3 records that don't match the 
current NSEC3PARAM record in use for zone named
                        could dereference a uninitialised pointer attempting
                        to obtain a lock. [RT# 21868]
 2010-08-13 06:46:25 +00:00
Evan Hunt
9b7efe7aca Removed a leftover UNUSED statement referencing a parameter that doesn't 
exist anymore.
 2010-08-12 04:04:14 +00:00
Tatuya JINMEI 神明達哉
27fe1966c9 2937. [bug] Worked around an apparent race condition in over 
memory conditions.  Without this fix a DNS cache DB or
			ADB could incorrectly stay in an over memory state,
			effectively refusing further caching, which
			subsequently made a BIND 9 caching server unworkable.
			This fix prevents this problem from happening by
			polling the state of the memory context, rather than
			making a copy of the state, which appeared to cause
			a race.  This is a "workaround" in that it doesn't
			solve the possible race per se, but several experiments
			proved this change solves the symptom.  Also, the
			polling overhead hasn't been reported to be an issue.
			This bug should only affect a caching server that
			specifies a finite max-cache-size.  It's also quite
			likely that the bug happens only when enabling threads,
			but it's not confirmed yet. [RT #21818]
 2010-08-11 22:54:58 +00:00
Evan Hunt
cfd262045c 2936. [func] Improved configuration syntax and multiple-view 
support for addzone/delzone feature (see change
			#2930).  Removed "new-zone-file" option, replaced
			with "allow-new-zones (yes|no)".  The new-zone-file
			for each view is now created automatically, with
			a filename generated from a hash of the view name.
			It is no longer necessary to "include" the
			new-zone-file in named.conf; this happens
			automatically.  Zones that were not added via
			"rndc addzone" can no longer be removed with
			"rndc delzone". [RT #19447]
 2010-08-11 18:14:20 +00:00
Evan Hunt
86dcc40058 2930. [experimental] New "rndc addzone" and "rndc delzone" commads 
allow dynamic addition and deletion of zones.
			To enable this feature, specify a "new-zone-file"
			option at the view or options level in named.conf.
			Zone configuration information for the new zones
			will be written into that file.  To make the new
			zones persist after a restart, "include" the file
			into named.conf in the appropriate view.  (Note:
			This feature is not yet documented, and its syntax
			is expected to change.) [RT #19447]
 2010-07-11 00:12:57 +00:00
Automatic Updater
1b892cf691 update copyright notice 2010-07-09 23:46:51 +00:00
Evan Hunt
bf9b852c3e 2929. [bug] Improved handling of GSS security contexts: 
- added LRU expiration for generated TSIGs
			 - added the ability to use a non-default realm
                         - added new "realm" keyword in nsupdate
			 - limited lifetime of generated keys to 1 hour
			   or the lifetime of the context (whichever is
			   smaller)
			[RT #19737]
 2010-07-09 05:13:15 +00:00
Mark Andrews
ff5864ef42 2928. [bug] Be more selective about the non-authoritative 
answer we apply change 2748 to. [RT #21594]
 2010-07-04 00:48:57 +00:00
Mark Andrews
810656a187 2925. [bug] Named failed to accept uncachable negative responses 
from insecure zones. [RT# 21555]
 2010-06-25 23:50:13 +00:00
Automatic Updater
cf309ffeee update copyright notice 2010-06-25 23:46:51 +00:00
Mark Andrews
bf13e709db 2924. [func] 'rndc secroots' dump a combined summary of the 
current managed keys combined with trusted keys.
                        [RT #20904]
 2010-06-25 03:24:05 +00:00
Automatic Updater
b8d4e96e95 update copyright notice 2010-06-23 23:46:58 +00:00
Mark Andrews
4a8dc5f8ef 2921. [bug] The resolver could attempt to destroy a fetch context 
to soon.  [RT #19878]
 2010-06-23 01:31:43 +00:00
Mark Andrews
48dfee7150 2920. [func] Allow 'filter-aaaa-on-v4' to be applied selectively 
to IPv4 clients.  New acl 'filter-aaaa' (default any).
 2010-06-22 04:03:38 +00:00
Mark Andrews
ae538374fe AAAA not A 2010-06-18 05:36:24 +00:00
Mark Andrews
081b36ff95 2918. [maint] Add AAAA address for I.ROOT-SERVERS.NET. 2010-06-18 02:11:44 +00:00
Automatic Updater
e40d5d6b71 update copyright notice 2010-06-09 23:50:58 +00:00
Mark Andrews
76117ff568 CHANGES 2010-06-09 01:43:09 +00:00
Automatic Updater
3f2280d2fc update copyright notice 2010-06-04 23:51:14 +00:00
Mark Andrews
ec58c4ca54 remove trailing comma 2010-06-04 00:12:54 +00:00