ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
24,302 Commits 589 Branches 805 Tags
e9b393d2f2bf78bb2528b91dfb052012e7ec6bef
Commit Graph

692 Commits

Author SHA1 Message Date
Curtis Blackburn
1cabc776f4 4515. [port] FreeBSD: Find readline headers when they are in 
edit/readline/ instead of readline/. [RT #43658]
 2016-11-18 11:36:30 -08:00
Mark Andrews
f95bc73abb 4513. [cleanup] Minimum Python versions are now 2.7 and 3.2. 
[RT #43566]

(cherry picked from commit 472e99cfa6)
 2016-11-10 09:56:24 +11:00
Evan Hunt
398f8c32f3 [v9_10] make uninstall 
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]

(cherry picked from commit 6087f87afb)
 2016-11-01 19:35:44 -07:00
Evan Hunt
5a8a8387e3 [v9_10] fix backporting error 2016-11-01 19:08:27 -07:00
Evan Hunt
2a5c77691b [v9_10] use arc4random_stir() when available 
4499.	[port]		MacOSX: silence deprecated function warning
			by using arc4random_stir() when available
			instead of arc4random_addrandom(). [RT #43503]

(cherry picked from commit 3fb62a5a4e)
 2016-11-01 14:01:00 -07:00
Evan Hunt
6e09e18400 [v9_10] simplify prereq checks by using feature-test.c 
4498.	[test]		Simplify prerequisite checks in system tests.
			[RT #43516]

(cherry picked from commit 5480a74b70)
(cherry picked from commit 45fd95544c)
 2016-11-01 12:41:48 -07:00
Evan Hunt
a2575e2796 [v9_10] system tests on windows 
4487. [test] Make system tests work on Windows. [RT #42931]
 2016-11-01 09:50:09 -07:00
Mark Andrews
fa43314964 check for LIBRESSL_VERSION_NUMBER 
(cherry picked from commit f53fc4540a)
 2016-11-01 12:07:36 +11:00
Mark Andrews
4bee9dcc78 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 
(cherry picked from commit 1fce0951ed)
 2016-10-31 10:08:08 +11:00
Mark Andrews
f38c4c9c4f 4494. [bug] Look for <editline/readline.h>. [RT #43429] 
(cherry picked from commit 6fbb2b51d8)
 2016-10-27 15:50:10 +11:00
Mark Andrews
e5d2e331b6 4492. [bug] irs_resconf_load failed to initialise sortlistnxt 
causing bad writes if resolv.conf contained a
                        sortlist directive. [RT #43459]

(cherry picked from commit 55b78fff62)
 2016-10-27 13:19:34 +11:00
Mark Andrews
bd8adb3ab1 4488. [port] Darwin: use -framework for Kerberos. [RT #43418] 
(cherry picked from commit 8d6fefac31)
 2016-10-20 10:35:51 +11:00
Mark Andrews
015a3bfe65 further readline changes [RT #43139] 
(cherry picked from commit 09f914d2d4)
 2016-10-12 11:57:45 +11:00
Mark Andrews
93cc2a3b14 don't clobber readline 
(cherry picked from commit ccf0bea98a)
 2016-10-11 17:32:12 +11:00
Mark Andrews
9b6c83df44 4484. [bug] Failure to find readline when requested should be 
fatal to configure. [RT #43328]

(cherry picked from commit 6caac8d9a9)
 2016-10-11 15:16:26 +11:00
Francis Dupont
bf144a9856 regen configure 2016-08-22 14:06:27 +02:00
Mark Andrews
e0449a0a4a 4450. [port] Provide more nuanced HSM support which better matches 
the specific PKCS11 providers capabilities. [RT #42458]

(cherry picked from commit 8ee6f289d8)
 2016-08-19 08:25:54 +10:00
Mark Andrews
5081691d0a remove spurious break 2016-08-01 12:25:49 +10:00
Mark Andrews
c572930400 4425. [bug] arpaname and dnstap-read were not being installed 
into ${prefix}/bin.  Tidy up installation issues
                        with CHANGE 4421. [RT #42910]

(cherry picked from commit 711aff9fa7)
 2016-07-26 07:06:00 +10:00
Mukund Sivaraman
e95d4c17e0 Use GCC builtin for clz in RPZ lookup code (#42818) 
(cherry picked from commit 27038b159b)

# Conflicts:
#	configure
#	configure.in
 2016-07-10 20:01:37 +05:30
Mark Andrews
7eb4402ad8 4404. [misc] Allow krb5-config to be used when configuring gssapi. 
[RT #42580]

(cherry picked from commit c8fb7e488a)
 2016-07-04 15:47:37 +10:00
Mark Andrews
e2209cc82c 4395 [bug] Improve out-of-tree installation of python modules. 
[RT #42586]

(cherry picked from commit 4840ef4581)
 2016-06-24 12:50:36 +10:00
Evan Hunt
84d5e1dbe2 [v9_10] prevent spurious warning when configuring native-pkcs11 2016-06-02 10:27:53 -07:00
Evan Hunt
19a4cb16fc [v9_10] nanosecond-accurate file modification times 
4361.	[cleanup]	Where supported, file modification times returned
			by isc_file_getmodtime() are now accurate to the
			nanosecond. [RT #41968]
 2016-05-05 12:22:49 -07:00
Mark Andrews
81747c015f break from loop if we have found a good python 2016-05-01 08:23:50 +10:00
Evan Hunt
9e9cc8f04e [v9_10] more python2/3 compatibility fixes; use setup.py to install 2016-04-29 14:44:57 -07:00
Evan Hunt
fa7311e107 [v9_10] refactor python tools 
4348.	[cleanup]	Refactor dnssec-coverage and dnssec-checkds
			functionality into an "isc" python module. [RT #39211]
 2016-04-28 19:45:35 -07:00
Evan Hunt
8ef05e6beb [v9_10] fix build error due to incorrect readline probing 2016-04-14 13:46:40 -07:00
Evan Hunt
a17b07d466 [v9_10] fix AES configuration for cross-compiling 2016-03-22 18:01:27 -07:00
Mark Andrews
e16a55154e don't run 'make clean' if --no-create is specified 
(cherry picked from commit 6e3839e1bb)
 2016-03-18 08:30:23 +11:00
Mukund Sivaraman
b15dde2889 Code cleanups (#41656) 
(cherry picked from commit 9da98335c1)
 2016-03-04 12:23:32 +05:30
Mukund Sivaraman
6e2e0f72b1 Use __built_expect() where available (#41411) 
(cherry picked from commit d1dbf6b20f)
 2016-02-01 09:07:12 +05:30
Evan Hunt
d91ba32696 [v9_10] add uname data to named -V 
4308.	[func]		Added operating system details to "named -V"
			output. [RT #41452]
 2016-01-30 11:07:53 -08:00
Mark Andrews
fb4529baa2 bracket mismatch; window openssl version check 2015-12-06 23:08:14 +11:00
Mark Andrews
9168a21871 4270. [security] Update allowed OpenSSL versions as named is 
potentially vulnerable to CVE-2015-3193.

(cherry picked from commit 10d7ab44cc)
 2015-12-04 10:29:13 +11:00
Evan Hunt
5faabe4b61 [v9_10] mention --enable-full-report in config summary output 2015-12-02 14:03:18 -08:00
Evan Hunt
fbf5b36b69 [v9_10] fix python script versions 
4257.	[cleanup]	Python scripts reported incorrect version. [RT #41080]
 2015-11-08 21:36:27 -08:00
Evan Hunt
db67a07ab8 [v9_10] isc_atomic_storeq()/stats improvements 
4248.	[func]		Add an isc_atomic_storeq() function, use it in
			stats counters to improve performance.
			[RT #39972] [RT #39979]
 2015-10-28 22:19:58 -07:00
Evan Hunt
ed3f67b837 [v9_10] fix statschannel with no libjson 
4246.	[test]		Ensure the statschannel system test runs when BIND
			is not built with libjson. [RT #40944]

(cherry picked from commit aa9b64060f)
 2015-10-28 21:07:46 -07:00
Mark Andrews
c791d1ca39 use /usr/local/share/xsl/docbook-ns on freebsd 2015-10-07 15:05:10 +11:00
Evan Hunt
cb2b92bcd0 [v9_10] upgrade doc toolchain 
4237.	[doc]		Upgraded documentation toolchain to use DocBook 5
			and dblatex. [RT #40766]
 2015-10-05 22:00:42 -07:00
Mark Andrews
2927965e50 address linking issues 
(cherry picked from commit 1a0e5b0504)
 2015-09-30 12:40:59 +10:00
Mar Andrews
e53155e038 4225. [port] freebsd/openbsd: Use '${CC} -shared' for building 
shared libraries. [RT #39557]

(cherry picked from commit 87e7d08a8b)
 2015-09-30 01:58:16 +10:00
Evan Hunt
e62bd7e975 [v9_10] add debian/ubuntu path for docbook-xsl to configure 2015-09-14 20:20:15 -07:00
Mark Andrews
dad0cbeed4 check for libxml2 2015-08-18 22:20:28 +10:00
Evan Hunt
cbfa8eddc5 [v9_10] better reporting of xml/json unavailability 
- error if "configure --with-libxml2" but the library isn't available
- log a warning on startup if only JSON or only XML can be served
 2015-08-12 21:59:36 -07:00
Evan Hunt
83d0b1ab69 [v9_10] DDoS mitigation features 
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
 2015-07-08 22:55:31 -07:00
Mukund Sivaraman
f69f188b90 Fix a bug printing zone names with '/' character in XML and JSON stats (#39873) 
(cherry picked from commit 08f0129732)

Conflicts:
	bin/tests/system/statistics/clean.sh
 2015-06-29 18:46:36 +05:30
Mark Andrews
9cc1d6b878 4133. [port] Update how various json libraries are handled. 
[RT #39646]

(cherry picked from commit 8a9bac8dec)
 2015-06-05 10:17:10 +10:00
Mark Andrews
c35424ca79 all of NEED*PRINT are needed if %z is not supported 
(cherry picked from commit 7507c1826f)
 2015-05-22 22:14:01 +10:00