ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
19,803 Commits 589 Branches 805 Tags
e4e82b398c8bd49ae7c5f8ff7dded7101cc01271
Commit Graph

1503 Commits

Author SHA1 Message Date
Mark Andrews
e4e82b398c 3390. [bug] Silence clang compiler warnings. [RT #30417] 2012-10-06 12:26:50 +10:00
Mark Andrews
ff56cee13c 3364. [security] Named could die on specially crafted record. 
[RT #30416]
 2012-08-24 14:10:48 +10:00
Tinderbox User
4a8fb790b0 update copyright notice 2012-08-21 23:45:12 +00:00
Mark Andrews
19f97857e4 3368. [bug] <dns/iptable.h> and <dns/zone.h> where not C++ safe. 2012-08-21 16:48:32 +10:00
Evan Hunt
2f16faf485 revert rt26429 due to incompatibilities with 9.6 2012-07-25 22:22:16 -07:00
Tinderbox User
2615007d77 update copyright notice 2012-07-25 23:45:12 +00:00
ckb
8d74549a5c 3356. [bug] Cap the TTL of signed RRsets when RRSIGs are 
approaching their expiry, so they don't remain
			in caches after expiry. [RT #26429]
 2012-07-25 17:38:47 -05:00
Tinderbox User
f69f6d9d65 update copyright notice 2012-07-23 23:45:13 +00:00
Mark Andrews
29173e699a 3354. [func] Improve OpenSSL error logging. [RT #29932] 2012-07-23 16:30:55 +10:00
Tinderbox User
ae47f254c7 update copyright notice 2012-06-29 23:45:10 +00:00
Mark Andrews
0b51f38570 reverse bad copyright update 2012-06-29 11:47:25 +10:00
Tinderbox User
a4da60cb18 update copyright notice 2012-06-29 01:21:32 +00:00
Evan Hunt
c92cfa7eae Handle RRSIG signer case consistently 
3329.	[bug]	Handle RRSIG signer-name case consistently: We
		generate RRSIG records with the signer-name in
		lower case.  We accept them with any case, but if
		they fail to validate, we try again in lower case.
		[RT #27451]
 2012-05-17 11:39:23 -07:00
Mark Andrews
fbc355b20c 3307. [bug] Add missing ISC_LANG_BEGINDECLS and ISC_LANG_ENDDECLS. 
[RT #28956]
 2012-04-13 08:46:00 +10:00
Tinderbox User
a3bf29d6c8 update copyright notice 2012-03-10 23:45:08 +00:00
Tinderbox User
d5c5ac0dbb regen v9_6 2012-03-07 01:45:20 +00:00
Evan Hunt
aea84bd0d8 remove cvsignore, add gitignore 2012-03-04 09:08:12 -08:00
Automatic Updater
83255fe881 update copyright notice 2012-01-27 23:45:34 +00:00
Mark Andrews
579f9be3f9 const origin 2012-01-27 12:39:33 +00:00
Mark Andrews
595f2934dc 3268. [bug] Convert RRSIG expiry times to 64 timestamps to work 
out the earliest expiry time. [RT #23311]
 2012-01-27 01:50:09 +00:00
Evan Hunt
e358b9159a 3204. [bug] When a master server that has been marked as 
unreachable but sends a NOTIFY, mark it reachable
			again. [RT #25960]
 2011-11-04 05:52:58 +00:00
Automatic Updater
4d5624b0b4 update copyright notice 2011-11-03 23:45:18 +00:00
Evan Hunt
c1b96d5375 3193. [cleanup] Changed MAXZONEKEYS to DNS_MAXZONEKEYS, moved to 
dnssec.h. [RT #26415]
 2011-11-03 02:58:57 +00:00
Automatic Updater
288d660942 update copyright notice 2011-09-08 23:45:16 +00:00
Evan Hunt
125383b7e3 3149. [tuning] Improve scalability by allocating one zone 
task per 100 zones at startup time.  (The
			BIND9_ZONE_TASKS_HINT environment variable
			which was established as a temporary measure
			in change #3132 is no longer needed or
			used.) [rt25541]
 2011-09-05 07:19:28 +00:00
Evan Hunt
d7eaf06b5a 3124. [bug] Use an rdataset attribute flag to indicate 
negative-cache records rather than using rrtype 0;
			this will prevent problems when that rrtype is
			used in actual DNS packets. [RT #24777]

3123.	[security]	Change #2912 exposed a latent flaw in
			dns_rdataset_totext() that could cause named to
			crash with an assertion failure. [RT #24777]
 2011-06-09 00:16:37 +00:00
Automatic Updater
6f06b66613 update copyright notice 2011-05-28 00:01:52 +00:00
Mark Andrews
4c94ae39a5 move dns_trust_totext from masterdump.c to rdataset.c so that exportlib will build 2011-05-27 05:04:17 +00:00
Automatic Updater
9ff8a0fdd7 update copyright notice 2011-03-03 23:46:02 +00:00
Evan Hunt
58a91f8111 3053. [bug] Under a sustained high query load with a finite 
max-cache-size, it was possible for cache memory
			to be exhausted and not recovered. [RT #23371]
 2011-03-03 04:45:59 +00:00
Automatic Updater
27ee4b8ca4 update copyright notice 2010-12-14 23:46:09 +00:00
Mark Andrews
8c5ba02091 2984. [bug] Don't run MX checks when the target of the MX record 
is ".".  [RT #22645]
 2010-12-14 00:48:23 +00:00
Mark Andrews
12fd7da162 2982. [bug] Reference count dst keys. dst_key_attach() can be used 
increment the reference count.

                        Note: dns_tsigkey_createfromkey() callers should now
                        always call dst_key_free() rather than setting it
                        to NULL on success. [RT #22672]
 2010-12-09 01:12:55 +00:00
Mark Andrews
4df431ecde 2976. [bug] named could die on exit after negotiating a GSS-TSIG 
key.  [RT #3415]
 2010-12-02 23:40:28 +00:00
Automatic Updater
c828f12404 update copyright notice 2010-09-24 08:30:28 +00:00
Mark Andrews
ff826c2844 2964. [bug] view->queryacl was being overloaded. Seperate the 
usage into view->queryacl, view->cacheacl and
                        view->queryonacl. [RT #22114]
 2010-09-24 08:09:08 +00:00
Automatic Updater
8f0cbae84a update copyright notice 2010-07-09 23:45:55 +00:00
Evan Hunt
c81b0a2f65 2929. [bug] Improved handling of GSS security contexts: 
- added LRU expiration for generated TSIGs
			 - added the ability to use a non-default realm
                         - added new "realm" keyword in nsupdate
			 - limited lifetime of generated keys to 1 hour
			   or the lifetime of the context (whichever is
			   smaller)
			[RT #19737]
 2010-07-09 05:15:06 +00:00
Automatic Updater
a55880fd78 update copyright notice 2010-06-04 23:48:25 +00:00
Mark Andrews
8925c70a54 remove trailing comma 2010-06-04 00:15:28 +00:00
Automatic Updater
01565f50ca update copyright notice 2010-05-14 23:47:50 +00:00
Mark Andrews
69ed70d223 2890. [bug] Handle the introduction of new trusted-keys and 
DS, DLV RRsets better. [RT #21097]
 2010-05-14 00:33:23 +00:00
Automatic Updater
3e1ba44c9c update copyright notice 2010-05-10 23:48:14 +00:00
Mark Andrews
2766e7b091 2881. [bug] Reduce the amount of time the rbtdb write lock 
is held when closing a version. [RT #21198]
 2010-05-10 01:42:36 +00:00
Automatic Updater
b67c0e9a49 update copyright notice 2010-02-25 10:56:41 +00:00
Mark Andrews
b8c2fd6c72 2852. [bug] Handle broken DNSSEC trust chains better. [RT #15619] 2010-02-25 05:35:11 +00:00
Automatic Updater
9feb8eda57 update copyright notice 2010-01-15 23:47:34 +00:00
Evan Hunt
3f39cbcc76 2838. [func] Backport support for SHA-2 DNSSEC algorithms, 
RSASHA256 and RSASHA512, from BIND 9.7.  (This
			incorporates changes 2726 and 2738 from that
			release branch.) [RT #20871]
 2010-01-15 19:38:54 +00:00
Automatic Updater
ef413fafe5 update copyright notice 2009-12-30 23:47:31 +00:00
Tatuya JINMEI 神明達哉
450c3bb498 2828. [security] Cached CNAME or DNAME RR could be returned to clients 
without DNSSEC validation. [RT #20737]

9.4-ESV, 9.5.3, 9.6.2, 9.7.0, 9.8.0(?)
 2009-12-30 08:34:30 +00:00