ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
33,543 Commits 589 Branches 805 Tags
ca52adf81cf101e32be70d8c220c81e8f18704e8
Commit Graph

33543 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Petr Menšík
ca52adf81c Document return codes of dig 
The dig tool reports some states as exit status. Document them briefly
in the manual page.

(cherry picked from commit f20cc30a6a)
 2021-08-12 10:34:46 -07:00
Mark Andrews
5a1fbc3155 Merge branch '2844-rndc-freeze-command-always-fails-perhaps-due-to-in-view-v9_16' into 'v9_16' 
Check 'rndc freeze' with in-view zones works

See merge request isc-projects/bind9!5322
 2021-08-12 04:38:54 +00:00
Mark Andrews
17c0d3f054 Add CHANGES not for [GL #2844] 
(cherry picked from commit 1f8ef7cfe2)
 2021-08-12 04:19:44 +00:00
Mark Andrews
42856b25bd Don't freeze / thaw non-explict in-view zones 
(cherry picked from commit dcdd9a403a)
 2021-08-12 04:19:44 +00:00
Mark Andrews
3376aec286 Check 'rndc freeze' with in-view zones works 
(cherry picked from commit ebc92b799b)
 2021-08-12 04:19:44 +00:00
Mark Andrews
1991f7de92 Merge branch 'marka-remove-print0-run.sh-v9_16' into 'v9_16' 
replace '-print0 | xargs -0' with '-exec ... {} +'

See merge request isc-projects/bind9!5323
 2021-08-12 02:06:43 +00:00
Mark Andrews
e7e6b50300 replace '-print0 | xargs -0' with '-exec ... {} +' 
(cherry picked from commit de88d83a78)
 2021-08-12 11:12:32 +10:00
Matthijs Mekking
8d490656f9 Merge branch '1551-dnssec-signzone-prepublish-zsk-support-v9_16' into 'v9_16' 
dnssec-signzone ZSK smooth rollover (9.16)

See merge request isc-projects/bind9!5321
 2021-08-11 13:42:32 +00:00
Matthijs Mekking
5656143a1f Add release note and change entry for [#1551] 
(cherry picked from commit 1befaa5d45)
 2021-08-11 15:20:43 +02:00
Matthijs Mekking
4fec33fd20 Fix bug in dst_key_copymetadata 
When copying metadata from one dst_key to another, when the source
dst_key has a boolean metadata unset, the destination dst_key will
have a numeric metadata unset instead.

This means that if a key has KSK or ZSK unset, we may be clearing the
Predecessor or Successor metadata in the destination dst_key.

(cherry picked from commit 94bb545087)
 2021-08-11 15:18:10 +02:00
Matthijs Mekking
e43d9f08b9 Add test for dnssec-signzone smooth ZSK roll 
Add a test case to the dnssec system test to check that:
- a zone with a prepublished key is only signed with the active key.
- a zone with an inactive key but valid signatures retains those
  signatures and does not add signatures from successor key.
- signatures are swapped in a zone when signatures of predecessor
  inactive key are within the refresh interval.

(cherry picked from commit 35efbc270f)
 2021-08-11 15:17:55 +02:00
Matthijs Mekking
c3bdc06278 dnssec-signzone ZSK smooth rollover 
When signing with a ZSK, check if it has a predecessor. If so, and if
the predecessor key is sane (same algorithm, key id matches predecessor
value, is zsk), check if the RRset is signed with this key. If so, skip
signing with this successor key. Otherwise, do sign with the successor
key.

This change means we also need to apply the interval to keys that are
not actively signing. In other words, 'expired' is always
'isc_serial_gt(now + cycle, rrsig.timeexpire)'.

Fix a print style issue ("removing signature by ..." was untabbed).

(cherry picked from commit 837adb93d3)
 2021-08-11 15:17:49 +02:00
Matthijs Mekking
7e906f24d3 Merge branch 'matthijs-iterations-typo-dnssec-guide-v9_16' into 'v9_16' 
Fix missing iterations value in dnssec-guide (9.16)

See merge request isc-projects/bind9!5320
 2021-08-11 10:35:22 +00:00
Matthijs Mekking
18c134263e Fix missing iterations value in dnssec-guide 
In the "Migrating from NSEC to NSEC3" section, it says:

    dnssec-policy "standard" {
        nsec3param iterations optout no salt-length 16;
    };

There should be an integer after "iterations". Based on the following
text, the number of iterations should be 10.

(cherry picked from commit 9e109191cc)
 2021-08-11 10:40:35 +02:00
Mark Andrews
ae7aa2664d Merge branch '2830-statistics-system-tests-needs-to-save-named-stats-files-v9_16' into 'v9_16' 
save named.stats files

See merge request isc-projects/bind9!5310
 2021-08-03 01:38:44 +00:00
Mark Andrews
d18bec59cb save named.stats files 
(cherry picked from commit 53afccf42b)
 2021-08-03 10:54:33 +10:00
Michał Kępień
908c3c3a9f Merge branch '2838-indicate-esv-status' into 'v9_16' 
Indicate ESV status of BIND 9.16

See merge request isc-projects/bind9!5308
 2021-07-30 07:51:54 +00:00
Michał Kępień
a9adf172ac Update release notes to indicate ESV status 
BIND 9.16 has been designated as an Extended Support Version.  Update
the release notes accordingly.
 2021-07-29 11:10:20 +02:00
Michał Kępień
34bd40dc32 Update version description in "named -v" output 
BIND 9.16 has been designated as an Extended Support Version.  Update
the version description in "named -v" / "named -V" output accordingly.
 2021-07-29 11:10:20 +02:00
Michal Nowak
a025f0c2d0 Merge branch 'mnowak/fix-pylint-v9_16' into 'v9_16' 
Make kasp2policy.py PyLint-clean

See merge request isc-projects/bind9!5306
 2021-07-28 09:11:18 +00:00
Michal Nowak
4e09411371 Make kasp2policy.py PyLint-clean 
PyLint 2.9.5 reported the following errors:
    contrib/kasp/kasp2policy.py:25:0: R0402: Use 'from ply import yacc' instead (consider-using-from-import)
    contrib/kasp/kasp2policy.py:26:0: R0402: Use 'from ply import lex' instead (consider-using-from-import)
 2021-07-28 11:05:41 +02:00
Matthijs Mekking
86e9981240 Merge branch '2836-parental-agents-documentation-missing-string-net-v9_16' into 'v9_16' 
Fix parental-agents documentation

See merge request isc-projects/bind9!5305
 2021-07-27 13:06:48 +00:00
Matthijs Mekking
575436c3cb Fix parental-agents documentation 
There is a missing string "net" in the ARM in the parental-agents
example.

(cherry picked from commit 8d75ec8300)
 2021-07-27 14:11:38 +02:00
Michal Nowak
f45bf73a92 Merge branch 'v9_16_19-release' into 'v9_16' 
Merge 9.16.19 release branch

See merge request isc-projects/bind9!5299
 2021-07-26 09:51:48 +00:00
Michał Kępień
1a58574393 Add a missing CHANGES entry for BIND 9.16.17 2021-07-23 09:43:46 +02:00
Michał Kępień
4433315351 Fix version number in a backported release note 2021-07-23 09:43:46 +02:00
Michal Nowak
c775e62a86 Set up release notes for BIND 9.16.20 2021-07-23 09:43:46 +02:00
Tinderbox User
d7d81bf2c8 Merge branch 'prep-release' into v9_16_19-release 2021-07-23 09:43:46 +02:00
Tinderbox User
e2fb29ad71 prep 9.16.19 2021-07-23 09:43:46 +02:00
Tinderbox User
b22548d8be Add prereq.sh script for the "checkds" system test 2021-07-23 09:43:46 +02:00
Michał Kępień
1f152dbf78 Merge branch 'michal/prepare-documentation-for-bind-9.16.19' into 'v9_16_19-release' 
Prepare documentation for BIND 9.16.19

See merge request isc-private/bind9!309
 2021-07-23 09:43:45 +02:00
Michał Kępień
018e887bd8 Prepare release notes for BIND 9.16.19 2021-07-23 09:43:45 +02:00
Michał Kępień
53351f3d2a Add release note for GL #2758 2021-07-23 09:43:45 +02:00
Michał Kępień
8d5c429816 Add release note for GL #2686 2021-07-23 09:43:45 +02:00
Michał Kępień
36906b1bb2 Reorder release notes 2021-07-23 09:43:45 +02:00
Michal Nowak
f122497c72 Tweak and reword release notes 2021-07-23 09:43:45 +02:00
Michal Nowak
17e5161dea Tweak and reword recent CHANGES entries 2021-07-23 09:43:45 +02:00
Michał Kępień
e7b1d49b76 Restore release note for GL #2780 2021-07-23 09:43:45 +02:00
Mark Andrews
e2733fe401 Merge branch '2735-bind-9-16-must-stop-named-delete-jnl-files-for-signed-zones-to-be-updated-v9_16' into 'v9_16' 
Remove spurious early exit

See merge request isc-projects/bind9!5301
 2021-07-22 23:39:17 +00:00
Mark Andrews
af13320917 Add CHANGES note for [GL #2735] 
(cherry picked from commit ba950cf193)
 2021-07-23 09:20:26 +10:00
Mark Andrews
18fc3319bc Check that reload with deleted journal works 
(cherry picked from commit cf8aadfeb6)
 2021-07-23 09:20:26 +10:00
Mark Andrews
d51b8f7228 Check that restart with zone changes and deleted journal works 
(cherry picked from commit 163fb0b825)
 2021-07-23 09:20:25 +10:00
Mark Andrews
da13526669 Order the diff from dns_db_diffx so that deletes proceed adds 
for the same rdataset.  This allows the diff when passed to
dns_diff_apply to succeed.

(cherry picked from commit 76453961bd)
 2021-07-23 09:20:25 +10:00
Mark Andrews
8a81830001 Check reload of dnssec-policy zone works 
(cherry picked from commit c7fc13a9fa)
 2021-07-23 09:20:25 +10:00
Mark Andrews
d50a1ade1c Remove spurious early exit 
(cherry picked from commit 9c9ee59fa7)
 2021-07-23 09:20:25 +10:00
Mark Andrews
1dab5a0cde Merge branch '2542-inline-loadtime-not-recorded-v9_16' into 'v9_16' 
Record load time when a inline zone file has been touched

See merge request isc-projects/bind9!5300
 2021-07-22 22:23:30 +00:00
Mark Andrews
c539da031f Add CHANGES for [GL #2542] 
(cherry picked from commit 10d3a48e2f)
 2021-07-23 07:49:21 +10:00
Mark Andrews
0ffdca4e83 Check that load time was recorded for unchanged inline zone 
subsequent reloads should not report 'ixfr-from-differences: unchanged'

(cherry picked from commit b84c057130)
 2021-07-23 07:49:21 +10:00
Mark Andrews
37f6b31017 Record load time when a inline zone file has been touched 
(cherry picked from commit 194e47cb0d)
 2021-07-23 07:49:21 +10:00
Michal Nowak
b201b97dbf Merge branch '2473-run-respdiff-as-part-of-daily-runs-v9_16' into 'v9_16' 
[v9_16] Run respdiff also for scheduled and web pipelines

See merge request isc-projects/bind9!5297
 2021-07-22 13:01:08 +00:00