ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
21,836 Commits 589 Branches 805 Tags
dfd5f3b388d5720ec29aba87d8af334f59ed6840
Commit Graph

6402 Commits

Author SHA1 Message Date
Tinderbox User
dfd5f3b388 update copyright notice 2014-01-18 23:46:13 +00:00
Evan Hunt
12bf5d4796 [master] address several issues with native pkcs11 2014-01-18 11:51:07 -08:00
Tinderbox User
c0682c2367 update copyright notice 2014-01-17 23:46:32 +00:00
Francis Dupont
e02659b241 applied emacs filled-paragraph (ESC-q) to reindent SUBDIRS 2014-01-17 14:14:30 +01:00
Tinderbox User
dd1ce8b524 regen master 2014-01-17 01:05:10 +00:00
Tinderbox User
1633aead67 update copyright notice 2014-01-16 23:46:28 +00:00
Mark Andrews
db8938c993 3710. [bug] Address double dns_zone_detach when switching to 
using automatic empty zones from regular zones.
                        [RT #35177]
 2014-01-17 10:04:16 +11:00
Evan Hunt
5760095601 [master] skip xfer test with Net::DNS 0.73 2014-01-16 09:50:23 -08:00
Evan Hunt
eb94c78be4 [master] atomic test doesn't need libdns 2014-01-16 09:24:44 -08:00
Francis Dupont
6080262ffe add iscpk11 dep in lwresd system test 2014-01-16 16:06:04 +01:00
Mark Andrews
d1ca4caece make DST_GSSAPI_INC a macro 2014-01-17 00:50:30 +11:00
Francis Dupont
e2258edfef libtoolized pkcs11 Makefile.in files 2014-01-16 10:35:24 +01:00
Mark Andrews
e20788e121 update copyrights 2014-01-16 15:19:24 +11:00
Tinderbox User
6ea2385360 regen master 2014-01-16 01:05:38 +00:00
Mark Andrews
75e5062bc5 #include <isc/print.h> 2014-01-15 12:30:50 +11:00
Tinderbox User
bf0266f286 update copyright notice 2014-01-14 23:46:22 +00:00
Evan Hunt
ba751492fc [master] native PKCS#11 support 
3705.	[func]		"configure --enable-native-pkcs11" enables BIND
			to use the PKCS#11 API for all cryptographic
			functions, so that it can drive a hardware service
			module directly without the need to use a modified
			OpenSSL as intermediary (so long as the HSM's vendor
			provides a complete-enough implementation of the
			PKCS#11 interface). This has been tested successfully
			with the Thales nShield HSM and with SoftHSMv2 from
			the OpenDNSSEC project. [RT #29031]
 2014-01-14 15:40:56 -08:00
Mark Andrews
07fb9b8330 3704. [protocol] Accept integer timestamps in RRSIG records. [RT #35185] 2014-01-14 16:12:30 +11:00
Mark Andrews
fef19ce621 fix for pre C99 compiler 2014-01-13 17:07:52 +11:00
Tinderbox User
2cf1d5b098 update copyright notice 2014-01-12 23:46:23 +00:00
Mark Andrews
fb756ba304 3703. [func] Prefetch about to expire records if they are queried 
for, see prefetch option for details. [RT #35041]
 2014-01-12 21:29:15 +11:00
Tinderbox User
9c8c1a0485 regen master 2014-01-12 01:04:54 +00:00
Tinderbox User
f70a10508f update copyright notice 2014-01-11 23:46:17 +00:00
Evan Hunt
7d2b185f16 [master] new dnssec-coverage options 
3702.	[func]		'dnssec-coverage -l' option specifies a length
			of time to check for coverage; events further into
			the future are ignored.  'dnssec-coverage -z'
			checks only ZSK events, and 'dnssec-coverage -k'
			checks only KSK events.  (Thanks to Peter Palfrader.)
			[RT #35168]
 2014-01-10 17:53:21 -08:00
Tinderbox User
990d0e893f regen master 2014-01-11 01:05:06 +00:00
Tinderbox User
7a50e338b5 regen 2014-01-10 20:22:53 +00:00
Mark Andrews
a7c412f37c update copyrights 2014-01-11 07:07:56 +11:00
Evan Hunt
1bb2f53b9f [master] fix win32 build problems 2014-01-10 10:58:06 -08:00
Mark Andrews
ff6de396a9 3701. [func] named-checkconf can now suppress the printing of 
shared secrets by specifying '-x'. [RT #34465]
 2014-01-10 16:56:36 +11:00
Evan Hunt
57a46f4b19 [master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9 2014-01-09 19:05:46 -08:00
Evan Hunt
789252d55f [master] stats improvements 
3700.	[func]		Allow access to subgroups of XML statistics via
			special URLs http://<server>:<port>/xml/v3/server,
			/zones, /net, /tasks, /mem, and /status.  [RT #35115]

3699.	[bug]		Improvements to statistics channel XSL stylesheet:
			the stylesheet can now be cached by the browser;
			section headers are omitted from the stats display
			when there is no data in those sections to be
			displayed; counters are now right-justified for
			easier readability. [RT #35117]
 2014-01-09 18:46:25 -08:00
Tinderbox User
431a83fb29 update copyright notice 2014-01-09 23:46:35 +00:00
Mark Andrews
d4eb30fa2d stop spamming system logs 2014-01-09 16:23:40 +11:00
Evan Hunt
080977753e [master] Merge branch 'master' of ssh://repo/proj/git/prod/bind9 2014-01-08 18:28:49 -08:00
Tinderbox User
b29285b88f regen master 2014-01-09 01:05:03 +00:00
Evan Hunt
e851ea8260 [master] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
 2014-01-08 16:39:05 -08:00
Tinderbox User
869a7fe8e0 update copyright notice 2014-01-08 23:46:09 +00:00
Evan Hunt
2f0c7f1de7 [master] removed reference to "auto-dnssec create" 2014-01-08 11:33:25 -08:00
Francis Dupont
89bf0dc793 update OpenSSL patches (1.0.0k -> 1.0.0l, 1.0.1e -> 1.0.1f) [#35158] 2014-01-07 12:16:35 +01:00
Mark Andrews
d0e3216c21 3697. [bug] Handle "." as a search list element when IDN support 
is enabled. [RT #35133]
 2014-01-06 12:34:28 +11:00
Tinderbox User
e8914b47a2 update copyright notice 2014-01-05 23:46:12 +00:00
Mark Andrews
e9649ece3b 3696. [bug] dig failed to handle AXFR style IXFR responses which 
span multiple messages. [RT #35137]
 2014-01-06 06:22:30 +11:00
Tinderbox User
9c61ab2c99 update copyright notice 2013-12-21 23:46:16 +00:00
Evan Hunt
c14ba71070 [master] warn if key-directory doesn't exist 
3694.	[bug]		Warn when a key-directory is configured for a zone,
			but does not exist or is not a directory. [RT #35109]
 2013-12-20 14:57:03 -08:00
Mark Andrews
fa467e60c5 3693. [security] memcpy was incorrectly called with overlapping 
ranges resulting in malformed names being generated
                        on some platforms.  This could cause INSIST failures
                        when serving NSEC3 signed zones.  [RT #35120]
 2013-12-20 10:58:32 +11:00
Tinderbox User
7c329be7c0 update copyright notice 2013-12-15 23:46:14 +00:00
Tinderbox User
eade480b33 update copyright notice 2013-12-13 23:46:17 +00:00
Evan Hunt
0606c47750 [master] correct dispatch address/port check 
3690.	[bug]		Iterative responses could be missed when the source
			port for an upstream query was the same as the
			listener port (53). [RT #34925]
 2013-12-12 22:39:12 -08:00
Evan Hunt
9b895f30f1 [master] fix insecure delegation across static-stub zones 
3689.	[bug]		Fixed a bug causing an insecure delegation from one
			static-stub zone to another to fail with a broken
			trust chain. [RT #35081]
 2013-12-12 22:19:33 -08:00
Tinderbox User
3f9791eac4 regen master 2013-12-12 01:05:00 +00:00