Mark Andrews
abbade6bd1
missing include path elements
2014-12-30 14:15:26 +11:00
Evan Hunt
e9d075681d
[v9_9] further win32 fixes
2014-12-29 15:15:51 -08:00
Evan Hunt
5414749e8a
[v9_9] comment out some function names
2014-12-29 13:14:45 -08:00
Tinderbox User
b644f1cdb8
update copyright notice / whitespace
2014-12-19 23:46:10 +00:00
Mark Andrews
6e140f9d04
4025. [port] bsdi: failed to build. [RT #38047 ]
...
(cherry picked from commit 00bb9b88cecf7e2c365c9f008c049da3802ac415)
2014-12-19 12:04:41 +11:00
Mark Andrews
2bd43c15df
4024. [bug] dns_rdata_opt_first, dns_rdata_opt_next,
...
dns_rdata_opt_current, dns_rdata_txt_first,
dns_rdata_txt_next and dns_rdata_txt_current were
documented but not implemented. These have now been
implemented.
dns_rdata_spf_first, dns_rdata_spf_next and
dns_rdata_spf_current were document but not
implemented. The prototypes for these
functions have been removed. [RT #38068 ]
4023. [bug] win32: socket handling with explict ports and
invoking named with -4 was broken for some
configurations. [RT #38068 ]
(cherry picked from commit 1e0ed0c6f514c7ef12e0
2014-12-19 11:43:40 +11:00
Evan Hunt
fee6ad726f
[v9_9] prep 9.9.7b1
2014-12-18 13:50:42 -08:00
Evan Hunt
2cf8236528
[v9_9] more missing entry points
2014-12-16 14:42:41 -08:00
Evan Hunt
d3ee1c6d57
[v9_9] add more missing entry points
2014-12-16 13:36:03 -08:00
Mark Andrews
632befd3de
add missing entry points
...
(cherry picked from commit eb690e00e7
2014-12-17 00:29:52 +11:00
Mark Andrews
de6522d653
add missing entry points
2014-12-16 23:52:19 +11:00
Evan Hunt
cc1c362e0f
[v9_9] adjust max-recursion-queries
...
4021. [bug] Adjust max-recursion-queries to accommodate
the need for more queries when the cache is
empty. [RT #38104 ]
(cherry picked from commit be7fba8019b0e9108311
2014-12-15 22:38:02 -08:00
Mark Andrews
8f3da05d81
add/sort
2014-12-16 14:45:51 +11:00
Mark Andrews
b564e1b737
add missing entries
...
(cherry picked from commit 7799a5edea
2014-12-16 14:42:26 +11:00
Mark Andrews
d7b10837af
remove non null check
...
(cherry picked from commit 2e98ab2c9d
2014-12-09 19:52:24 +11:00
Mark Andrews
404f3152fa
4019. [func] If named is not configured to validate the answer
...
then allow fallback to plain DNS on timeout even
when we know the server supports EDNS. [RT #37978 ]
2014-12-05 18:12:56 +11:00
Tinderbox User
19c3ef455b
update copyright notice / whitespace
2014-12-03 23:46:11 +00:00
Mark Andrews
f6f0878e11
4018. [bug] Fall back to plain DNS when EDNS queries are being
...
dropped was failing. [RT #37965 ]
4017. [testing] Add system test to check lookups to legacy servers
with broken DNS behaviour. [RT #37965 ]
2014-12-04 07:07:09 +11:00
Mark Andrews
bbc8cca27d
4015. [bug] Nameservers that are skipped due to them being
...
CNAMEs were not being logged. They are now logged
to category 'cname' as per BIND 8. [RT #37935 ]
(cherry picked from commit ea3aa401bc
2014-12-03 11:47:10 +11:00
Mark Andrews
301160944f
4014. [bug] When including a master file origin_changed was
...
not being properly set leading to a potentially
spurious 'inherited owner' warning. [RT #37919 ]
(cherry picked from commit 6444de08d1
2014-12-03 09:46:28 +11:00
Francis Dupont
cb5b973a9e
Hardened OpenSSL digest/HMAC calls [RT #37944 ]
2014-12-02 12:58:05 +01:00
Evan Hunt
03d0fb5be2
[v9_9] win32 build fix
2014-11-20 15:57:17 -08:00
Evan Hunt
e2ed17e190
[v9_9] remove inadvertently-retained content from quota.h
2014-11-20 12:55:39 -08:00
Evan Hunt
1d47cb124d
[v9_9] refactor max-recursion-queries
...
- the counters weren't set correctly when fetches timed out.
instead we now pass down a counter object.
(cherry picked from commit 05e448935c6c049c57d9
2014-11-19 18:38:52 -08:00
Evan Hunt
711e833921
[v9_9] add max-recursion-queries
...
also fixes and documentation for max-recursion-depth
(cherry picked from commit c4f54e5bd1b3aa528d7e
2014-11-18 22:14:55 -08:00
Evan Hunt
603a0e2637
[v9_9] limit recursion depth and iterative queries
...
4006. [security] A flaw in delegation handling could be exploited
to put named into an infinite loop. This has
been addressed by placing limits on the number
of levels of recursion named will allow (default 7),
and the number of iterative queries that it will
send (default 50) before terminating a recursive
query (CVE-2014-8500).
The recursion depth limit is configured via the
"max-recursion-depth" option. [RT #35780 ]
2014-11-17 23:49:07 -08:00
Evan Hunt
922588e83e
[v9_9] fix false positive compiler warning
...
a "pointer always evaluates to true" warning was blocking
compilation of the radix ATF test when using --enable-developer
with gcc 4.8.2.
2014-11-15 00:55:20 -08:00
Evan Hunt
f6e2e95a7d
[v9_9] reference leak with AAAA glue but not A
...
4004. [bug] When delegations had AAAA glue but not A, a
reference could be leaked causing an assertion
failure on shutdown. [RT #37796 ]
(cherry picked from commit c4abb1971696b6923a25
2014-11-14 09:04:52 -08:00
Tinderbox User
ea276ca5fa
update copyright notice
2014-11-04 23:46:04 +00:00
Mark Andrews
7e43c092d4
add missing opening bracket
...
(cherry picked from commit a31d0513c3
2014-11-04 17:14:08 +11:00
Mark Andrews
c75e6e9756
DNS_STYLEFLAG_NOCRYPTO not supported in 9.9.x
2014-11-04 14:02:42 +11:00
Mark Andrews
4cc275ad08
3998. [bug] isc_radix_search was returning matches that were
...
to precise. [RT #37680 ]
(cherry picked from commit b976c39c07
2014-11-04 12:41:07 +11:00
Mark Andrews
bb4ef32432
3997. [protocol] Add OPENGPGKEY record. [RT# 37671]
2014-11-04 12:25:38 +11:00
Tinderbox User
2c0599bc2b
update copyright notice
2014-10-31 23:46:07 +00:00
Mark Andrews
14a1fe655c
3996. [bug] Address use after free on out of memory error in
...
keyring_add. [RT #37639 ]
(cherry picked from commit c2f8108123
2014-10-31 11:45:01 +11:00
Mark Andrews
241cf99bf5
3995. [bug] receive_secure_serial holds the zone lock for too
...
long. [RT #37626 ]
(cherry picked from commit 4e59131f181083f358ae
2014-10-31 11:40:05 +11:00
Mark Andrews
b73923f773
3989. [cleanup] Remove redundent dns_db_resigned calls. [RT #35748 ]
...
(cherry picked from commit eb5243365c
2014-10-30 10:55:10 +11:00
Tinderbox User
c64d8daa09
update copyright notice
2014-10-21 23:46:11 +00:00
Francis Dupont
88f53e412b
Handle VS14 incompatible changes [RT #37380 ]
2014-10-21 09:36:43 +02:00
Mark Andrews
f2b44f6586
3981. [bug] Cache DS/NXDOMAIN independently of other query types.
...
[RT #37467 ]
(cherry picked from commit 72775a79fe
2014-10-18 13:10:16 +11:00
Evan Hunt
7b4063bd24
[v9_9] add diffie-hellman key unit test
...
3978. [test] Added a unit test for Diffie-Hellman key
computation, completing change #3974 . [RT #37477 ]
(cherry picked from commit 188690149bbc59dcd76e
2014-10-17 15:58:29 -07:00
Evan Hunt
d1d6b9c1b3
[v9_9] correctly validate 5011 trust anchors
...
3976. [bug] When refreshing managed-key trust anchors, clear
any cached trust so that they will always be
revalidated with the current set of secure
roots. [RT #37506 ]
(cherry picked from commit eb6d61d5e05c409ba290
2014-10-17 15:42:02 -07:00
Tinderbox User
bff9e4ff82
update copyright notice
2014-10-16 23:46:04 +00:00
Mark Andrews
a83faea899
initialize rdataset->private7
...
(cherry picked from commit ca77632f65
2014-10-16 11:25:11 +11:00
Tinderbox User
9c4c75ddbf
update copyright notice
2014-10-13 23:46:06 +00:00
Mark Andrews
8b85186a3f
3974. [bug] handle DH_compute_key() failure correctly in
...
openssldh_link.c. [RT #37477 ]
(cherry picked from commit 58a1051e92
2014-10-13 23:42:43 +11:00
Mark Andrews
db7f16f51c
silence compiler warning
...
(cherry picked from commit bbec761a67
2014-10-08 17:47:59 +11:00
Tinderbox User
027014d649
update copyright notice
2014-10-04 23:46:05 +00:00
Mark Andrews
53373a6929
3971. [bug] Reduce the cascasding failures due to a bad $TTL line
...
in named-checkconf / named-checkzone. [RT #37138 ]
(cherry picked from commit c81d56c03e
2014-10-05 08:30:37 +11:00
Mark Andrews
aaf8ae4297
3966. [bug] Missing dns_db_closeversion call in receive_secure_db.
...
[RT #35746 ]
(cherry picked from commit 9c0589bc8b
2014-10-03 07:52:17 +10:00
