ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
22,995 Commits 589 Branches 805 Tags
eb690e00e72085a240db09b2e101d8265fc6edc1
Commit Graph

6913 Commits

Author SHA1 Message Date
Evan Hunt
be7fba8019 [master] adjust max-recursion-queries 
4021.	[bug]		Adjust max-recursion-queries to accommodate
			the need for more queries when the cache is
			empty. [RT #38104]
 2014-12-15 22:28:06 -08:00
Mark Andrews
8ee3233acd adjust comment 2014-12-09 07:41:16 +11:00
Mukund Sivaraman
d225dec89f Clean up after reclimit system test 2014-12-08 21:37:53 +05:30
Tinderbox User
dc5e29a7d2 update copyright notice / whitespace 2014-12-05 23:45:22 +00:00
Mark Andrews
39a5e136fb skip subtest if cryptography not compiled in 2014-12-06 00:48:52 +11:00
Mark Andrews
03fd9cb81c 4020. [bug] Change 3736 broke nsupdate's SOA MNAME discovery 
resulting in updates being sent to the wrong server.
                        [RT #37925]
 2014-12-05 18:26:38 +11:00
Mark Andrews
017aa9aef6 4019. [func] If named is not configured to validate the answer 
then allow fallback to plain DNS on timeout even
                        when we know the server supports EDNS. [RT #37978]
 2014-12-05 17:47:26 +11:00
Mark Andrews
7d42818a3e NS_CLIENTATTR_NOSETFC collided with NS_CLIENTATTR_HAVEECS 2014-12-05 11:56:26 +11:00
Mark Andrews
12065c231e clean up intermediates 2014-12-05 08:28:15 +11:00
Mark Andrews
76b242bb77 pre-sign the zones 2014-12-05 07:28:29 +11:00
Tinderbox User
b9097be03b update copyright notice / whitespace 2014-12-03 23:45:24 +00:00
Mark Andrews
693d70f96f 4017. [testing] Add system test to check lookups to legacy servers 
with broken DNS behaviour. [RT #37965]
 2014-12-04 07:01:52 +11:00
Mukund Sivaraman
c5e9423340 Fix a dig segfault due to bad linked list usage [RT #37591] 
The crash (#37591) seems to happen because the query is taken out of
lookup->q(query->link), and put on lookup->connecting(query->clink).
The code checks query->link where it is detached (-1 in next pointer).
However, there's no need to call send_tcp_connect() there as the queries
are already connecting at that point.
 2014-12-03 16:09:25 +05:30
Tinderbox User
88a2182a1a regen master 2014-12-03 01:04:59 +00:00
Mark Andrews
ea3aa401bc 4015. [bug] Nameservers that are skipped due to them being 
CNAMEs were not being logged. They are now logged
                        to category 'cname' as per BIND 8. [RT #37935]
 2014-12-03 11:34:07 +11:00
Tinderbox User
a3d2295829 update copyright notice / whitespace 2014-12-02 23:45:23 +00:00
Mark Andrews
6444de08d1 4014. [bug] When including a master file origin_changed was 
not being properly set leading to a potentially
                        spurious 'inherited owner' warning. [RT #37919]
 2014-12-03 09:42:30 +11:00
Evan Hunt
aafd2f2637 [master] remove obsolete 'relay' test 2014-12-02 13:57:35 -08:00
Francis Dupont
5c5c6d289d Add a TCP only option to server/peer 2014-12-02 14:17:59 +01:00
Tinderbox User
6472130d32 update copyright notice / whitespace 2014-11-25 23:45:21 +00:00
Mark Andrews
9e69a36ec1 make isc_buffer_t **text 2014-11-26 07:36:53 +11:00
Mark Andrews
e465d54bc9 unchecked putnull 2014-11-25 15:24:00 +11:00
Tinderbox User
523ad879ce update copyright notice / whitespace 2014-11-24 23:53:16 +00:00
Mark Andrews
d040fa2f1c 4011. [bug] master's list port and dscp inheritance was not 
properly implemented. [RT #37792]
 2014-11-24 11:25:06 +11:00
Mark Andrews
092d3b76db 4010. [cleanup] Clear the prefetchable state when initiating a prefetch. 
[RT #37399]
 2014-11-24 11:18:30 +11:00
Mark Andrews
7301df07cf extend the permissible number of queries to 25 from 24 2014-11-24 10:20:39 +11:00
Tinderbox User
ddbd14ec13 regen master 2014-11-22 01:05:01 +00:00
Evan Hunt
92384667ff [master] delv +tcp 
4009.	[func]		delv: added a +tcp option. [RT #37855]
 2014-11-21 09:42:04 -08:00
Mark Andrews
d65fb496fb use perl not awk to do serial additions 2014-11-21 18:08:04 +11:00
Tinderbox User
5d35f07318 update copyright notice / whitespace 2014-11-20 23:45:24 +00:00
Evan Hunt
05e448935c [master] refactor max-recursion-queries 
- the counters weren't set correctly when fetches timed out.
  instead we now pass down a counter object.
 2014-11-19 18:21:02 -08:00
Tinderbox User
4ccffa13aa update copyright notice / whitespace 2014-11-19 23:45:22 +00:00
Mukund Sivaraman
077350a407 Add .gitignore 2014-11-19 15:03:01 +05:30
Evan Hunt
c4f54e5bd1 [master] add max-recursion-queries 
also fixes and documentation for max-recursion-depth
 2014-11-18 22:02:02 -08:00
Mark Andrews
f9ee67d9ce %zu is not universally available 2014-11-19 12:10:06 +11:00
Tinderbox User
e208712faa update copyright notice / whitespace 2014-11-18 23:45:22 +00:00
Evan Hunt
3230429e17 [master] limit recursion depth and iterative queries 
4006.	[security]	A flaw in delegation handling could be exploited
			to put named into an infinite loop.  This has
			been addressed by placing limits on the number
			of levels of recursion named will allow (default 7),
			and the number of iterative queries that it will
			send (default 50) before terminating a recursive
			query (CVE-2014-8500).

			The recursion depth limit is configured via the
			"max-recursion-depth" option.  [RT #35780]
 2014-11-17 23:24:44 -08:00
Evan Hunt
c325ff9c79 [master] complete coverity fixes 2014-11-17 17:39:00 -08:00
Mark Andrews
18fa89b01e check returns from putstr and putnull 2014-11-18 12:21:20 +11:00
Tinderbox User
11dc1b1508 update copyright notice 2014-11-17 23:45:20 +00:00
Evan Hunt
0ada3802ea [master] awk portability fix 2014-11-17 12:22:18 -08:00
Evan Hunt
a0b4f6d952 [master] geoip security fixes 
4003.	[security]	When geoip-directory was reconfigured during
			named run-time, the previously loaded GeoIP
			data could remain, potentially causing wrong
			ACLs to be used or wrong results to be served
			based on geolocation. [RT #37720]

4002.	[security]	Lookups in GeoIP databases that were not
			loaded could cause an assertion failure.
			[RT #37679]

4001.	[security]	The caching of GeoIP lookups did not always
			handle address families correctly, potentially
			resulting in an assertion failure. [RT #37672]
 2014-11-16 08:43:22 -08:00
Mark Andrews
ed51a21730 fix ns_smf_add_message 2014-11-15 17:18:10 +11:00
Mark Andrews
eca6a76eda make inline 2014-11-15 17:03:21 +11:00
Evan Hunt
e32d354f75 [master] allow arbitrary-size rndc output 
4005.	[func]		The buffer used for returning text from rndc
			commands is now dynamically resizable, allowing
			arbitrarily large amounts of text to be sent back
			to the client. (Prior to this change, it was
			possible for the output of "rndc tsig-list" to be
			truncated.) [RT #37731]
 2014-11-14 15:58:54 -08:00
Evan Hunt
c4abb19716 [master] reference leak with AAAA glue but not A 
4004.	[bug]		When delegations had AAAA glue but not A, a
			reference could be leaked causing an assertion
			failure on shutdown. [RT #37796]
 2014-11-14 09:02:28 -08:00
Mukund Sivaraman
16c86a4980 Update .gitgnore files (ISC-Bugs #37773) 2014-11-11 11:47:02 +05:30
Tinderbox User
6d0a639bd0 update copyright notice 2014-11-06 23:45:21 +00:00
Evan Hunt
067c0c38e7 [master] s/mempcy/memmove/ 2014-11-06 13:01:59 -08:00
Tinderbox User
369963ad26 regen master 2014-11-06 01:05:06 +00:00