ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,381 Commits 589 Branches 805 Tags
de7ba81cb4e777282827deb06fe7113a852635b5
Commit Graph

745 Commits

Author SHA1 Message Date
Evan Hunt
cd6122b164 [v9_10] timing safe memory comparisons 
4183.	[cleanup]	Use timing-safe memory comparisons in cryptographic
			code. Also, the timing-safe comparison functions have
			been renamed to avoid possible confusion with
			memcmp(). [RT #40148]

(cherry picked from commit 420a43c8d8)
 2015-08-17 18:28:27 -07:00
Tinderbox User
2ce9b9310a regen v9_10 2015-05-29 01:08:42 +00:00
Tinderbox User
b3623d80ab update copyright notice / whitespace 2015-05-28 23:45:50 +00:00
Mark Andrews
c9ca5e3c87 4128. [bug] Address issues raised by Coverity 7.6. [RT #39537] 
(cherry picked from commit e53e202ef3)
 2015-05-28 13:17:24 +10:00
Tinderbox User
1d6dbadbc4 regen v9_10 2015-05-28 01:08:38 +00:00
Tinderbox User
41cb49b786 update copyright notice / whitespace 2015-05-27 23:45:52 +00:00
Mark Andrews
d8161b8756 4127. [protocol] CDS and CDNSKEY need to be signed by the key signing 
key as per RFC 7344, Section 4.1. [RT #37215]

(cherry picked from commit 598b502695)
 2015-05-27 15:36:55 +10:00
Francis Dupont
1db36edf82 added print.h includes 2015-05-23 14:46:47 +02:00
Mark Andrews
2f088f0896 4098. [bug] Address use-after-free issue when using a 
predecessor key with dnssec-settime. [RT #39272]

(cherry picked from commit bc8f82492d)
 2015-04-15 12:33:52 +10:00
Mark Andrews
a55c3151b2 4081. [cleanup] Use dns_rdatalist_init consistently. [RT #38759] 
(cherry picked from commit 29d52c001f)
 2015-03-03 16:49:37 +11:00
Tinderbox User
02c3c73c9b update copyright notice / whitespace 2015-02-27 23:45:52 +00:00
Mark Andrews
374fce8495 4074. [cleanup] Cleaned up more warnings from gcc -Wshadow. [RT #38708] 
(cherry picked from commit af669cb4fd)

Conflicts:
	bin/named/client.c
	lib/dns/request.c
	lib/dns/view.c
 2015-02-27 10:59:45 +11:00
Mark Andrews
6a383a6318 4057. [bug] 'dnssec-dsfromkey -T 0' failed to add ttl field. 
[RT #38565]

(cherry picked from commit e785f9c1c7)
 2015-02-06 17:02:36 +11:00
Tinderbox User
3817256ab9 update copyright notice / whitespace 2015-01-20 23:47:01 +00:00
Evan Hunt
1ef4faabd5 [v9_10] clean up gcc -Wshadow warnings 
4039.	[cleanup]	Cleaned up warnings from gcc -Wshadow. [RT #37381]
 2015-01-20 13:43:35 -08:00
Tinderbox User
37cff9600e regen v9_10 2015-01-14 01:08:26 +00:00
Tinderbox User
fcdfeaa0c2 update copyright notice / whitespace 2015-01-13 23:45:46 +00:00
Evan Hunt
fa2cf1a85e [v9_10] document default DNSKEY TTL 
- see RT #38268
 2015-01-13 09:55:21 -08:00
Mark Andrews
c85116cb56 3957. [bug] "dnssec-keygen -S" failed for ECCGOST, ECDSAP256SHA256 
and ECDSAP384SHA384. [RT #37183]

(cherry picked from commit 80169c379d)
 2014-09-29 10:19:52 +10:00
Tinderbox User
868bab4830 regen v9_10 2014-09-05 01:09:53 +00:00
Evan Hunt
a1b0157ae0 [v9_10] don't clear signatures from zone cuts 
3922.	[bug]		When resigning, dnssec-signzone was removing
			all signatures from delegation nodes. It now
			retains	DS and (if applicable) NSEC signatures.
			[RT #36946]

(cherry picked from commit eeb13c7cd2)
 2014-08-21 22:56:33 -07:00
Mark Andrews
6353009b28 silence coverity warnings 
(cherry picked from commit e58154a6ec)
 2014-07-02 15:28:23 +10:00
Tinderbox User
7f2be18e4a regen v9_10 2014-06-17 01:09:20 +00:00
Mukund Sivaraman
ccba3c9ffd [10686] Add version printing option to various BIND utilites 
Squashed commit of the following:

commit 95effe9b2582a7eb878ccb8cb9ef51dfc5bbfde7
Author: Evan Hunt <each@isc.org>
Date:   Tue Jun 10 16:52:45 2014 -0700

    [rt10686] move version() to dnssectool.c

commit df205b541d1572ea5306a5f671af8b54b9c5c770
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:38:31 2014 +0530

    Rearrange order of cases

commit cfd30893f2540bf9d607e1fd37545ea7b441e0d0
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:38:08 2014 +0530

    Add version printer to dnssec-verify

commit a625ea338c74ab5e21634033ef87f170ba37fdbe
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:32:19 2014 +0530

    Add version printer to dnssec-signzone

commit d91e1c0f0697b3304ffa46fccc66af65591040d9
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:26:01 2014 +0530

    Add version printer to dnssec-settime

commit 46fc8775da3e13725c31d13e090b406d69b8694f
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:25:48 2014 +0530

    Fix docbook

commit 8123d2efbd84cdfcbc70403aa9bb27b96921bab2
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:20:17 2014 +0530

    Add version printer to dnssec-revoke

commit d0916420317d3e8c69cf1b37d2209ea2d072b913
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:17:54 2014 +0530

    Add version printer to dnssec-keygen

commit 93b0bd5ebc043298dc7d8f446ea543cb40eaecf8
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:14:11 2014 +0530

    Add version printer to dnssec-keyfromlabel

commit 07001bcd9ae2d7b09dd9e243b0ab35307290d05d
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:13:39 2014 +0530

    Update usage help output, docbook

commit 85cdd702f41c96fbc767fc689d1ed97fe1f3a926
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:07:18 2014 +0530

    Add version printer to dnssec-importkey

commit 9274fc61e38205aad561edf445940b4e73d788dc
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 21:01:53 2014 +0530

    Add version printer to dnssec-dsfromkey

commit bf4605ea2d7282e751fd73489627cc8a99f45a90
Author: Mukund Sivaraman <muks@isc.org>
Date:   Tue Jun 10 20:49:22 2014 +0530

    Add -V to nsupdate usage output

(cherry picked from commit 4278293107)
 2014-06-16 12:14:41 +05:30
Tinderbox User
a7051299c6 update copyright notice 2014-04-10 23:46:10 +00:00
Tinderbox User
914ed533b8 regen master 2014-04-10 01:05:11 +00:00
Evan Hunt
540daf2887 [master] missing manpage install rule for dnssec-importkey 2014-04-09 17:17:25 -07:00
Evan Hunt
acbb301e64 [master] better error output when initializing pkcs11 
3786.	[func]		Provide more detailed error codes when using
			native PKCS#11. "pkcs11-tokens" now fails robustly
			rather than asserting when run against an HSM with
			an incomplete PCKS#11 API implementation. [RT #35479]
 2014-03-12 20:52:01 -07:00
Evan Hunt
b454c03196 [master] use ANSI prototypes, clean up some casts 2014-03-04 10:42:25 -08:00
Evan Hunt
7d769b7ba7 [master] don't use keyname from command line if using -S 2014-03-04 09:07:26 -08:00
Tinderbox User
e23798e2ab update copyright notice 2014-02-28 23:46:19 +00:00
Tinderbox User
794b79e6bb regen master 2014-02-28 01:07:06 +00:00
Evan Hunt
a60bf97f9f [master] dnssec-keyfromlabel -S and -i 
3764.	[bug]		The dnssec-keygen/settime -S and -i options
			(to set up a successor key and set the prepublication
			interval) were missing from dnssec-keyfromlabel.
			[RT #35394]
 2014-02-27 16:25:32 -08:00
Tinderbox User
938440694b update copyright notice 2014-02-27 23:46:22 +00:00
Evan Hunt
1753d3c4d7 [master] correct dates in man pages 2014-02-27 11:43:10 -08:00
Evan Hunt
3a01ded15d [master] enable windows python tools 
3757.	[port]		Enable Python tools (dnssec-coverage,
			dnssec-checkds) to run on Windows. [RT #34355]
 2014-02-26 08:43:50 -08:00
Evan Hunt
6ce1aa1902 [master] tag mismatch 2014-02-20 20:59:24 -08:00
Tinderbox User
0e1dece22e regen master 2014-02-20 19:19:27 +00:00
Evan Hunt
35f6a21f5f [master] max-zone-ttl 
3746.	[func]		New "max-zone-ttl" option enforces maximum
			TTLs for zones. If loading a zone containing a
			higher TTL, the load fails. DDNS updates with
			higher TTLs are accepted but the TTL is truncated.
			(Note: Currently supported for master zones only;
			inline-signing slaves will be added.) [RT #38405]
 2014-02-18 23:26:50 -08:00
Mark Andrews
2729aea3c1 3738. [bug] --enable-openssl-hash failed to build. [RT #35343] 2014-02-13 15:09:08 +11:00
Mark Andrews
5deedd7057 use unsigned constants 2014-02-13 07:48:44 +11:00
Evan Hunt
dbb012765c [master] merge libiscpk11 to libisc 
3735.	[cleanup]	Merged the libiscpk11 library into libisc
			to simplify dependencies. [RT #35205]
 2014-02-11 21:20:28 -08:00
Tinderbox User
81f58902eb update copyright notice 2014-02-07 23:46:39 +00:00
Tinderbox User
bbbf2e27d3 regen master 2014-02-07 02:03:45 +00:00
Mark Andrews
11d8c966ea fix closing tag 2014-02-07 12:26:16 +11:00
Evan Hunt
a165a17a81 [master] dnssec-keygen fixes 
3730.	[cleanup]	Added "never" as a synonym for "none" when
			configuring key event dates in the dnssec tools.
			[RT #35277]

3729.	[bug]		dnssec-kegeyn could set the publication date
			incorrectly when only the activation date was
			specified on the command line. [RT #35278]
 2014-02-06 15:59:14 -08:00
Evan Hunt
08c67b5b7a [master] improved native-pkcs11 doc 
3728.	[doc]		Expanded native-PKCS#11 documentation,
			specifically pkcs11: URI labels. [RT #35287]
 2014-02-06 15:40:00 -08:00
Evan Hunt
12bf5d4796 [master] address several issues with native pkcs11 2014-01-18 11:51:07 -08:00
Tinderbox User
dd1ce8b524 regen master 2014-01-17 01:05:10 +00:00
Mark Andrews
e20788e121 update copyrights 2014-01-16 15:19:24 +11:00