ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
19,662 Commits 589 Branches 805 Tags
v9.4-ESV-R2
Commit Graph

385 Commits

Author SHA1 Message Date
Automatic Updater
e95ab03354 update copyright notice 2010-02-26 23:46:37 +00:00
Mark Andrews
b6a3b10da7 2852. [bug] Handle broken DNSSEC trust chains better. [RT #15619] 2010-02-26 01:03:56 +00:00
Automatic Updater
8f7aff9340 update copyright notice 2010-01-07 23:46:07 +00:00
Evan Hunt
e4cb322618 2831. [security] Do not attempt to validate or cache 
out-of-bailiwick data returned with a secure
			answer; it must be re-fetched from its original
			source and validated in that context. [RT #20819]
 2010-01-07 17:49:50 +00:00
Automatic Updater
521de9e5dd update copyright notice 2009-11-25 23:46:52 +00:00
Mark Andrews
b4bd8d0662 772. [security] When validating, track whether pending data was from 
the additional section or not and only return it if
                        validates as secure. [RT #20438]
 2009-11-25 04:50:25 +00:00
Automatic Updater
1c52929b3c update copyright notice 2009-09-24 23:46:07 +00:00
Tatuya JINMEI 神明達哉
aaa2233e76 2525. [experimental] New logging category "query-errors" to provide detailed 
internal information about query failures, especially
			about server failures.  (backported as a special
			exception to the general policy) [RT #19027]
 2009-09-24 21:38:52 +00:00
Mark Andrews
bd4803f39e 2649. [bug] Set the domain for forward only zones. [RT #19944] 2009-08-13 04:55:16 +00:00
Mark Andrews
e6c0f07e73 2623. [bug] Named started seaches for DS non-optimally. [RT #19915] 2009-07-13 06:34:13 +00:00
Automatic Updater
ecdc2a81e0 update copyright notice 2009-06-02 23:46:04 +00:00
Mark Andrews
97883e2025 2605. [bug] Accept DS responses from delegation only zones. 
[RT # 19296]
 2009-06-02 06:04:40 +00:00
Automatic Updater
9eb441e7a3 update copyright notice 2009-05-11 02:36:58 +00:00
Mark Andrews
f5724cd00a 2599. [bug] Address rapid memory growth when validation fails. 
[RT #19654]
 2009-05-11 02:32:43 +00:00
Mark Andrews
494bd4366d hunk miss applied 2009-02-28 05:39:35 +00:00
Mark Andrews
416f58db30 2564. [bug] Only take EDNS fallback steps when processing timeouts. 
[RT #19405]
 2009-02-27 23:13:03 +00:00
Mark Andrews
ce4b71f7fc 2552. [bug] zero-no-soa-ttl-cache was not being honoured. 
[RT #19340]
 2009-02-15 23:15:40 +00:00
Mark Andrews
0f4ec602dd spelling 2009-01-19 00:36:29 +00:00
Automatic Updater
9a2ebc4415 update copyright notice 2009-01-05 23:46:21 +00:00
Tatuya JINMEI 神明達哉
42c20e9207 trivial comment cleanups (RT#19118) 2009-01-05 23:22:26 +00:00
Mark Andrews
fdf3321006 2487. [bug] Give TCP connections longer to complete. [RT #18675] 2008-11-20 01:29:33 +00:00
Mark Andrews
66e991fea9 align comment w/ code [RT #18833] 2008-11-20 01:13:51 +00:00
Tatuya JINMEI 神明達哉
99ee58fd4b 2468. [bug] Resolver could try unreachable servers multiple times. 
[RT #18739]
 2008-10-17 22:02:13 +00:00
Mark Andrews
570025855c 2433. [tuning] Set initial timeout to 800ms. 2008-09-04 04:56:52 +00:00
Tatuya JINMEI 神明達哉
8bb981783d comment wording 2008-07-24 04:59:00 +00:00
Mark Andrews
462df43837 2396. [bug] Don't set SO_REUSEADDR for randomized ports. 
[RT #18336]
 2008-07-22 03:51:44 +00:00
Tatuya JINMEI 神明達哉
0edc9d2bf7 2384. [security] Additional support for query port randomization (change 
#2375) including performance improvement and port range
			specification.  [RT #17949, #18098]
 2008-06-24 02:02:51 +00:00
Tatuya JINMEI 神明達哉
014dab1f70 2383. [bug] named could double queries when they resulted in 
SERVFAIL due to overkilling EDNS0 failure detection.
 2008-06-17 22:39:53 +00:00
Mark Andrews
29b1ebf435 2376. [bug] Change #2144 was not complete. 2008-05-29 05:30:30 +00:00
Evan Hunt
906685e44d Fully randomize UDP query ports to improve forgery resilience. [rt17949] 2008-05-22 21:16:05 +00:00
Mark Andrews
8735a488ef 2350. [port] win32: IPv6 support. [RT #17797] 2008-04-02 03:09:08 +00:00
Automatic Updater
fcef5293d2 update copyright notice 2008-01-17 23:46:05 +00:00
Automatic Updater
fc36e4d54b update copyright notice 2008-01-15 23:46:02 +00:00
Mark Andrews
87877a464c 2306. [bug] Remove potential race from lib/dns/resolver.c. 
[RT #17470]
 2008-01-15 12:38:20 +00:00
Mark Andrews
69a46dbced 2260. [bug] Reported wrong clients-per-query when increasing the 
value. [RT #17236]
 2007-12-02 21:16:36 +00:00
Shane Kerr
20e7a0cd43 Backed out until 9.4.2 goes from RC to final. 2007-11-01 13:53:27 +00:00
Shane Kerr
e0bd646ca8 Fix logging when increasing client-per-query, for BIND 9.4. 
See RT ticket #17236 for more.
 2007-11-01 13:13:24 +00:00
Mark Andrews
afb61d9bb8 remove #define inline. 9.4.2rc1 has been out long enough that we shouldn't need the #define in 9.4.2rc2 2007-10-31 05:14:59 +00:00
Mark Andrews
8a4538cafc 2238. [bug] It was possible to trigger a REQUIRE when a 
validation was cancelled. [RT #17106]
 2007-09-14 05:52:50 +00:00
Automatic Updater
beb9fabda3 update copyright notice 2007-08-28 07:20:06 +00:00
Mark Andrews
b8d26157f7 2221. [bug] Set the event result code to reflect the actual 
record returned to caller when a cache update is
                        rejected due to a more credible answer existing.
                        [RT #17017]
 2007-08-28 02:24:59 +00:00
Mark Andrews
05abca048c 2197. [bug] Add INSIST to catch negative responses which are 
not setting the event result code appropriately.
                        [RT #16909]
 2007-06-18 02:43:46 +00:00
Mark Andrews
154e92a9e6 2156. [bug] Fix node reference leaks in lookup.c:lookup_find(), 
resolver.c:validated() and resolver.c:cache_name().
                        Fix a memory leak in rbtdb.c:free_noqname().
                        Make lookup.c:lookup_find() robust against
                        event leaks. [RT #16685]
 2007-03-06 00:50:11 +00:00
Mark Andrews
475aa1607a 2144. [cleanup] Suppress logging of SERVFAIL from forwarders. 
[RT #16619]
 2007-02-26 01:14:03 +00:00
Mark Andrews
4772bfcb77 2138. [bug] Lock order reversal in resolver.c. [RT #16653] 2007-02-14 23:41:01 +00:00
Mark Andrews
64d5cc809c update copyright notice 2007-01-08 02:42:00 +00:00
Mark Andrews
9aefa7e508 2126. [bug] Serialise validation of type ANY responses. [RT #16555] 2007-01-08 01:37:53 +00:00
Mark Andrews
2399e06127 2124. [bug] It was possible to dereference a freed fetch 
context. [RT #16584]
 2007-01-08 00:45:12 +00:00
Mark Andrews
b486456a3d 2117. [bug] DNSSEC fixes: named could fail to cache NSEC records 
which could lead to validation failures.  named didn't
                        handle negative DS responses that were in the process
                        of being validated.  Check CNAME bit before accepting
                        NODATA proof. To be able to ignore a child NSEC there
                        must be SOA (and NS) set in the bitmap. [RT #16399]
 2006-12-07 06:50:34 +00:00
Mark Andrews
76ef7b4856 2097. [bug] named could reference a destroyed memory context 
after being reloaded / reconfigured. [RT #16428]
 2006-10-18 04:24:19 +00:00