ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
26,749 Commits 589 Branches 805 Tags
ff7015a0f89366e77d104da1aab561482e9ddc06
Commit Graph

26749 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michał Kępień
ff7015a0f8 Treat records below a DNAME as out-of-zone data 
DNAME records indicate bottom of zone and thus no records below a DNAME
should be DNSSEC-signed or included in NSEC(3) chains.  Add a helper
function, has_dname(), for detecting DNAME records at a given node.
Prevent signing DNAME-obscured records.  Check that DNAME-obscured
records are not signed.

(cherry picked from commit 75c0d85fc4)
 2018-06-13 12:57:03 +02:00
Michał Kępień
f3b5550c2c Merge branch '284-unify-keyfile-to-configuration-conversions-in-system-tests-v9_12' into 'v9_12' 
[v9_12] Unify keyfile-to-configuration conversions in system tests

See merge request isc-projects/bind9!360
 2018-06-13 02:10:50 -04:00
Michał Kępień
2cad382552 Add helper variables in mkeys system test 
The keyfile and key ID for the original managed key do not change
throughout the mkeys system test.  Keep them in helper variables to
prevent calling "cat" multiple times and improve code readability.

(cherry picked from commit 68f056b2a0)
 2018-06-13 07:59:07 +02:00
Michał Kępień
dce66f7635 Replace duplicated code snippet with calls to helper functions 
Reduce code duplication by replacing a code snippet repeated throughout
system tests using "trusted-keys" and/or "managed-keys" configuration
sections with calls to keyfile_to_{managed,trusted}_keys() helper
functions.

(cherry picked from commit 120af964ce)
 2018-06-13 07:58:39 +02:00
Michał Kępień
21d3658bcb Add helper functions for converting keyfile data into configuration sections 
Add a set of helper functions for system test scripts which enable
converting key data from a set of keyfiles to either a "trusted-keys"
section or a "managed-keys" section suitable for including in a
resolver's configuration file.

(cherry picked from commit 2392b8bc7d)
 2018-06-13 07:58:10 +02:00
Michał Kępień
b5478f1281 Merge branch '269-refactor-zone-logging-functions-v9_12' into 'v9_12' 
[v9_12] Refactor zone logging functions

See merge request isc-projects/bind9!357
 2018-06-11 07:06:04 -04:00
Michał Kępień
056e8acc0e Add CHANGES entry 
4969.	[cleanup]	Refactor zone logging functions. [GL #269]

(cherry picked from commit c8de677eae)
 2018-06-11 12:50:11 +02:00
Michał Kępień
b39edab59b Reimplement all zone logging functions using dns_zone_logv() 
In order to decrease code duplication, express the logic contained in
all zone logging functions using dns_zone_logv() calls.

(cherry picked from commit 5c03cd339e)
 2018-06-11 12:50:11 +02:00
Michał Kępień
75959cb369 Add dns_zone_logv() 
Add a new libdns function, dns_zone_logv(), which takes a single va_list
argument rather than a variable number of arguments and can be used as a
base for implementing more specific zone logging functions.

(cherry picked from commit bb2dfb3f49)
 2018-06-11 12:50:11 +02:00
Evan Hunt
1df48d82d2 Merge branch 'fix-strtok' into v9_12 2018-06-09 23:04:00 -07:00
Evan Hunt
74c3b9d3b2 complete strtok fix 2018-06-09 23:03:38 -07:00
Evan Hunt
545b5d1f58 Merge branch 'fix-strtok' into v9_12 2018-06-09 22:31:41 -07:00
Evan Hunt
1734f1b3b9 use strtok() instead of strtok_r() in command line processing 2018-06-09 22:29:31 -07:00
Evan Hunt
3c12722080 Merge branch '293-cleanup-radix' into v9_12 2018-06-08 12:10:50 -07:00
Evan Hunt
f7f20b1202 improve readability of radix code 
- use RADIX_V4, RADIX_V6, RADIX_V4_ECS, and RADIX_V6_ECS as array
  indices instead of 0 through 3.
- remove some unused macros
 2018-06-08 11:55:53 -07:00
Evan Hunt
f11181c255 Merge branch 'validate-glue-v9_12' into 'v9_12' 
ensure that we attempt to validate glue if it's signed

See merge request isc-projects/bind9!300
 2018-06-08 11:50:03 -07:00
Evan Hunt
4afe50f546 CHANGES 
(cherry picked from commit bde9c2ec39)
 2018-06-08 11:50:00 -07:00
Evan Hunt
86787d0ad1 ensure that we attempt to validate glue if it's signed 
- incidentally fixed a bug in the dnssec system test where TTLs in the
  answer section rather than the additional section were being checked

(cherry picked from commit 8d923a05a9)
 2018-06-08 11:49:34 -07:00
Mark Andrews
701548eaad Merge branch '325-add-cfg_parse_buffer4-v9_12' into 'v9_12' 
Resolve "add cfg_parse_buffer4"

Closes #325

See merge request isc-projects/bind9!353
 2018-06-08 17:40:17 +10:00
Mark Andrews
323a2edfc2 add cfg_parse_buffer4 
(cherry picked from commit b313084af2)
 2018-06-08 17:40:16 +10:00
Mark Andrews
4976d24bcb Merge branch '173-option-to-disable-responding-with-cookies-isc-support-12614' into 'v9_12' 
Resolve "option to disable responding with cookies [ISC-Support #12614]"

See merge request isc-projects/bind9!154
 2018-06-08 02:51:21 -04:00
Mark Andrews
5f7a6232d6 add CHANGES and release notes 2018-06-08 16:44:42 +10:00
Mukund Sivaraman
b5265a8cfa Update ARM documentation 2018-06-08 16:37:38 +10:00
Mukund Sivaraman
a5933fa2bb Add system test 2018-06-08 16:34:29 +10:00
Mukund Sivaraman
2930507357 Add a answer-cookie named config option 2018-06-08 16:34:29 +10:00
Mark Andrews
2836d8e952 Merge branch '322-add-support-for-marking-options-as-deprecated-v9_12' into 'v9_12' 
Resolve "add support for marking options as deprecated."

Closes #322

See merge request isc-projects/bind9!351
 2018-06-08 15:55:56 +10:00
Mark Andrews
60a703550e Add support for marking a option as deprecated. 
(cherry picked from commit befff9452c)
 2018-06-08 15:55:56 +10:00
Witold Krecicki
3b191620bb Merge branch 'XX-dont-fetch-keys-when-fuzzing-v9_12' into 'v9_12' 
Don't fetch DNSKEY when fuzzing resolver

See merge request isc-projects/bind9!350
 2018-06-06 09:57:10 -04:00
Witold Kręcicki
2e1a704378 Don't fetch DNSKEY when fuzzing resolver 
(cherry picked from commit cb3208aa43)
 2018-06-06 15:50:33 +02:00
Mark Andrews
ae20d1d215 Merge branch '240-multiple-rrsigs-on-some-records-in-signed-zone-even-though-only-one-key-is-ever-active-at-a-time-v9_12' into 'v9_12' 
Resolve "Multiple RRSIGs on some records in signed zone even though only one key is ever active at a time"

Closes #240

See merge request isc-projects/bind9!231
 2018-06-06 17:09:00 +10:00
Mark Andrews
00f1956c9e add CHANGES note 
(cherry picked from commit ba7a343156)
 2018-06-06 17:05:47 +10:00
Mark Andrews
1783fa5aba add duplicate signature test 
(cherry picked from commit 0db5b087ed)
 2018-06-06 17:05:47 +10:00
Mark Andrews
69340b5ac5 add support -T sigvalinsecs 
(cherry picked from commit 87a3dc8ab9)
 2018-06-06 17:05:43 +10:00
Mark Andrews
c1e342cedb only sign with other keys when deleting a key if there are not already existing signature for the deleted algorithm 
(cherry picked from commit 0667bf7ae7)
 2018-06-06 16:54:03 +10:00
Evan Hunt
d636534ea8 Merge branch 'v9_12' of gitlab.isc.org:isc-projects/bind9 into v9_12 2018-06-05 21:53:06 -07:00
Mark Andrews
ace0af0fd8 Merge branch '316-move-named-t-processing-to-its-own-function-v9_12' into 'v9_12' 
Resolve "move named -T processing to its own function"

Closes #316

See merge request isc-projects/bind9!343
 2018-06-06 14:48:41 +10:00
Mark Andrews
937e700bd5 add CHANGES 
(cherry picked from commit ef7401e4a7)
 2018-06-06 14:48:21 +10:00
Mark Andrews
475bb0e332 move -T parsing to its own function 
(cherry picked from commit b491ceeb50)
 2018-06-06 14:47:54 +10:00
Evan Hunt
4be2773736 Merge branch '302-use-ip-for-ifconfig' into 'v9_12' 
Resolve "ifconfig.sh doesn't work on centos7"

Closes #302

See merge request isc-projects/bind9!330
 2018-06-05 21:45:21 -07:00
Evan Hunt
7f16672ab8 CHANGES 
(cherry picked from commit 71f2335f5a)
 2018-06-05 21:45:12 -07:00
Evan Hunt
3e1a0c2b62 use "ip" on linux, falling back to "ifconfig" when it isn't available 
(cherry picked from commit d7c5400798)
 2018-06-05 21:44:45 -07:00
Evan Hunt
e4487b160c expand address range in ifconfig.sh to include more than one subnet 
(cherry picked from commit 41b29a436b)
 2018-06-05 21:44:45 -07:00
Evan Hunt
f448be27c5 clean up CHANGES numbers 2018-06-04 19:44:59 -07:00
Evan Hunt
3911b187e3 Merge branch '310-check-changes-needs-to-be-called-for-v9_12' into 'v9_12' 
Resolve "check-changes needs to be called for v9_12"

See merge request isc-projects/bind9!337
 2018-06-04 19:26:16 -07:00
Mark Andrews
022b2b481f call util/check-changes in setup 
(cherry picked from commit c0e69cc406)
 2018-06-04 19:26:08 -07:00
Mark Andrews
0111295ff0 Merge branch '281-dont-insert-extra-space-between-nsec3-nexthash-and-typemap-v9_12' into 'v9_12' 
Resolve "9.11.3-S1 totext_nsec3 inserts a redundant white space between next hash and type map [ISC-support #12887]"

See merge request isc-projects/bind9!313
 2018-06-04 13:02:19 +10:00
Mark Andrews
6640898fa9 Add CHANGES note 
(cherry picked from commit f98d8115e3)
 2018-06-04 13:02:09 +10:00
Mukund Sivaraman
8af1d5916f Add NSEC3 fromtext/totext unittests 
(cherry picked from commit b0d9198e03)
 2018-06-04 13:01:18 +10:00
Mukund Sivaraman
ac7c74425e Don't insert 2nd space between NSEC3 nexthash and typemap fields 
(cherry picked from commit d4ea1edd2c)
 2018-06-04 13:01:18 +10:00
Evan Hunt
fb9e5221bc Merge branch 'serve-stale-doc-and-logging' into 'v9_12' 
Serve stale doc and logging

See merge request isc-projects/bind9!323
 2018-05-28 17:26:22 -07:00