ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
19,854 Commits 589 Branches 805 Tags
v9.4-ESV-R3
Commit Graph

19854 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Automatic Updater
49644c0c8f update copyright notice 2010-01-08 23:51:44 +00:00
Automatic Updater
b05b66d498 newcopyrights 2010-01-08 23:30:43 +00:00
Automatic Updater
57c21001f1 newcopyrights 2010-01-08 23:30:16 +00:00
Automatic Updater
0094f4294c auto update 2010-01-08 23:19:23 +00:00
Automatic Updater
3072385d81 update 2010-01-08 18:17:28 +00:00
Evan Hunt
03e5afa4c0 2835. [bug] Key inactivity dates were inadvertently stored in 
the private key file with the outdated tag
			"Unpublish" rather than "Inactive".  This has been
			fixed; however, any existing keys that had Inactive
			dates set will now need to have them reset, using
			'dnssec-settime -I'. [RT #20868]
 2010-01-08 17:15:36 +00:00
Automatic Updater
ef3c8caac4 update 2010-01-08 01:16:41 +00:00
Automatic Updater
fdd80e9a55 regen 2010-01-08 01:14:09 +00:00
Automatic Updater
948e39419a update 2010-01-08 00:20:33 +00:00
Automatic Updater
df8b539ccf update 2010-01-08 00:16:26 +00:00
Automatic Updater
a30c7003af update copyright notice 2010-01-07 23:48:54 +00:00
Automatic Updater
8f7aff9340 update copyright notice 2010-01-07 23:46:07 +00:00
Automatic Updater
f9119ad8f6 newcopyrights 2010-01-07 23:30:41 +00:00
Automatic Updater
30b978f75d newcopyrights 2010-01-07 23:30:10 +00:00
Automatic Updater
47f74b8c33 auto update 2010-01-07 23:18:51 +00:00
Automatic Updater
dee1a91739 update 2010-01-07 22:16:49 +00:00
Evan Hunt
0f66aced26 2834. [bug] HMAC-SHA* keys that were longer than the algorithm 
digest length were used incorrectly, leading to
			interoperability problems with other DNS
			implementations.  This has been corrected.
			(Note: If an oversize key is in use, and
			compatibility is needed with an older release of
			BIND, the new tool "isc-hmac-fixup" can convert
			the key secret to a form that will work with all
			versions.) [RT #20751]
 2010-01-07 21:52:12 +00:00
Automatic Updater
da42475564 update 2010-01-07 19:16:40 +00:00
Evan Hunt
8ebf67b7f0 2833. [cleanup] Fix usage messages in dnssec-keygen and dnssec-settime. 
[RT #20851]
 2010-01-07 19:13:59 +00:00
Shawn Routhier
7c25b5f311 Modify "struct stat" in lib/export/samples/nsprobe.c to avoid redefinition in 
some OSes - rt20831
 2010-01-07 18:31:34 +00:00
Automatic Updater
fbae39e299 update 2010-01-07 18:15:39 +00:00
Evan Hunt
e4cb322618 2831. [security] Do not attempt to validate or cache 
out-of-bailiwick data returned with a secure
			answer; it must be re-fetched from its original
			source and validated in that context. [RT #20819]
 2010-01-07 17:49:50 +00:00
Automatic Updater
8997313968 update 2010-01-07 17:17:01 +00:00
cvs2git
9300b13653 This commit was manufactured by cvs2git to create branch 'v9_4'. 2010-01-07 16:48:24 +00:00
Evan Hunt
597642c0ba 2831. [security] Do not attempt to validate or cache 
out-of-bailiwick data returned with a secure
			answer; it must be re-fetched from its original
			source and validated in that context. [RT #20819]
 2010-01-07 16:48:23 +00:00
Automatic Updater
4715754ba9 update 2010-01-07 00:19:43 +00:00
Automatic Updater
247f299fb0 update copyright notice 2010-01-06 23:48:47 +00:00
Automatic Updater
b29e5c56eb newcopyrights 2010-01-06 23:30:45 +00:00
Automatic Updater
76e65f9151 update 2010-01-06 01:16:55 +00:00
Evan Hunt
b1fbf2a4db fix spacing 2010-01-06 00:53:45 +00:00
Automatic Updater
f977f347f0 update 2010-01-06 00:19:50 +00:00
Automatic Updater
3ee1371212 update copyright notice 2010-01-05 23:48:37 +00:00
Automatic Updater
0977f3f39e newcopyrights 2010-01-05 23:30:42 +00:00
Automatic Updater
0261624e84 auto update 2010-01-05 23:18:43 +00:00
Automatic Updater
f9205dd2ef update 2010-01-05 16:17:10 +00:00
Evan Hunt
564d687132 missing newline in dnssec-signzone usage 2010-01-05 15:31:58 +00:00
Automatic Updater
fa0736a341 update 2010-01-05 00:19:28 +00:00
Automatic Updater
842920c7db update copyright notice 2010-01-04 23:48:51 +00:00
Automatic Updater
205c10066a newcopyrights 2010-01-04 23:30:43 +00:00
Automatic Updater
9ee9011747 update 2010-01-04 23:17:18 +00:00
Evan Hunt
d3a6cd7c7e 2830. [bug] Changing the OPTOUT setting could take multiple 
passes. [RT #20813]
 2010-01-04 22:47:58 +00:00
Evan Hunt
845bb3195a 2829. [bug] Fixed potential node inconsistency in rbtdb.c. 
[RT #20808]
 2010-01-04 22:30:14 +00:00
Automatic Updater
7549cd6daa update 2009-12-31 00:20:02 +00:00
Automatic Updater
32b105a341 update 2009-12-31 00:16:26 +00:00
Automatic Updater
400615c294 update copyright notice 2009-12-30 23:49:14 +00:00
Automatic Updater
51ae9cb9f8 update copyright notice 2009-12-30 23:46:04 +00:00
Automatic Updater
6473a5d888 newcopyrights 2009-12-30 23:30:48 +00:00
Automatic Updater
4698bf7f37 newcopyrights 2009-12-30 23:30:18 +00:00
Automatic Updater
75f83bc01d update 2009-12-30 09:15:35 +00:00
Tatuya JINMEI 神明達哉
59721b321d 2828. [security] Cached CNAME or DNAME RR could be returned to clients 
without DNSSEC validation. [RT #20737]

9.4-ESV, 9.5.3, 9.6.2, 9.7.0, 9.8.0(?)

Additional notes specific to 9.4-ESV:
- I needed to explicitly enable dnssec-validation in "pending" system tests
  because it's disabled by default for 9.4.  This is not a problem of this
  patch - the test was broken for 9.4 when it was first introduced.  Another
  reason why we need more detailed tests.
- I modified the test case for 9.4 so that it allows pending-additional-to-answer
   promotion as 9.4 doesn't include this bug fix.
 2009-12-30 08:55:48 +00:00