Mark Andrews
7d0a5cd8c9
4192. [bug] The default rrset-order of random was not always being
...
applied. [RT #40456 ]
(cherry picked from commit 9b956d342e
2015-08-25 14:53:04 +10:00
Mark Andrews
79f23b271e
4191. [protocol] Accept DNS-SD non LDH PTR records in reverse zones
...
as per RFC 6763. [RT #37889 ]
(cherry picked from commit 5855fd79e3
2015-08-25 14:46:41 +10:00
Mark Andrews
f921bb1806
check isc_buffer_allocate result
2015-08-23 19:43:25 +10:00
Tinderbox User
13d451f810
update copyright notice / whitespace
2015-08-22 23:46:11 +00:00
Mark Andrews
fea8a9d56b
4190. [protocol] Accept Active Diretory gc._msdcs.<forest> name as
...
valid with check-names. <forest> still needs to be
LDH. [RT #40399 ]
(cherry picked from commit dc3912f3ca
2015-08-22 15:28:16 +10:00
Mark Andrews
0986b57c10
ignore xmlstats
2015-08-20 14:01:18 +10:00
Mark Andrews
0698d8b473
check for libxml2
2015-08-18 22:05:15 +10:00
Mark Andrews
d610c75100
9.9 doesn't have isc_buffer_reserve
2015-08-18 19:41:35 +10:00
Evan Hunt
ab4fc879d4
[v9_9] improve wire_test.c for large messages
2015-08-17 22:45:15 -07:00
Evan Hunt
05d0d33cb8
[v9_9] timing safe memory comparisons
...
4183. [cleanup] Use timing-safe memory comparisons in cryptographic
code. Also, the timing-safe comparison functions have
been renamed to avoid possible confusion with
memcmp(). [RT #40148 ]
(cherry picked from commit 420a43c8d8
2015-08-17 18:31:11 -07:00
Mark Andrews
d4f07f0f01
use grep/awk rather than xmllint
2015-08-18 10:22:50 +10:00
Evan Hunt
b479d0f857
[v9_9] win32: vs2015 compliance
2015-08-17 11:37:00 -07:00
Tinderbox User
f37017d0f4
update copyright notice / whitespace
2015-08-16 23:46:35 +00:00
Mark Andrews
a8ac264163
address use after free error
...
(cherry picked from commit 6458ad3ab2
2015-08-16 20:30:10 +10:00
Tinderbox User
c8b1b9141e
update copyright notice / whitespace
2015-08-14 23:46:19 +00:00
Mukund Sivaraman
0ada9e238a
Fix assertion failure in parsing UNSPEC(103) RR from text ( #40274 )
...
(cherry picked from commit 984d2bb9e59a88ab054b
2015-08-14 13:35:11 +05:30
Mukund Sivaraman
ee7ee1c4f7
Fix assertion failure in parsing NSAP records from text
...
(cherry picked from commit 474921d7339250173510
2015-08-14 13:15:25 +05:30
Mark Andrews
1b52fc8df0
4176. [bug] Address race issues with lwresd. [RT #40284 ]
...
(cherry picked from commit 563878539a
2015-08-14 15:48:22 +10:00
Tinderbox User
26846a23ab
update copyright notice / whitespace
2015-08-12 23:46:15 +00:00
Evan Hunt
1605488758
[v9_9] handle time units in dnssec-coverage -r
...
4174. [bug] "dnssec-coverage -r" didn't handle time unit
suffixes correctly. [RT #38444 ]
2015-08-12 12:21:20 -07:00
Mark Andrews
b009c5c389
4173. [bug] dig +sigchase was not properly matching the trusted
...
key. [RT #40188 ]
(cherry picked from commit efb028b6c8
2015-08-12 19:12:24 +10:00
Mark Andrews
d9ce8a0667
4172. [bug] Named / named-checkconf didn't handle a view of CLASS0.
...
[RT #40265 ]
(cherry picked from commit 151f1bcd5e
2015-08-12 19:06:41 +10:00
Evan Hunt
171d830be4
[v9_9] use dns_message_totext() in wire_data
2015-08-10 20:51:51 -07:00
Evan Hunt
6a7a54bca0
[v9_9] use libdns functions to convert rcode and opcode to text
2015-08-10 20:29:01 -07:00
Mark Andrews
c8c6367023
address len being shadowed
...
(cherry picked from commit f260e3a188
2015-08-11 13:00:29 +10:00
Tinderbox User
376a0b66a9
update copyright notice / whitespace
2015-08-10 23:46:11 +00:00
Evan Hunt
3b56383dde
[v9_9] add a "wire_test -d" option to read raw binary data
...
4169. [test] Added a 'wire_test -d' option to read input as
raw binary data, for use as a fuzzing harness.
[RT #40312 ]
2015-08-10 14:45:05 -07:00
Evan Hunt
eca0e613de
[v9_9] fix an awk portability issue
2015-08-03 14:22:15 -07:00
Tinderbox User
1c74d995a4
update copyright notice / whitespace
2015-08-02 23:46:06 +00:00
Evan Hunt
f73bed07b5
[v9_9] reduce code duplication
2015-08-02 12:21:14 -07:00
Tinderbox User
aa1535671f
regen v9_9
2015-07-10 01:12:20 +00:00
Tinderbox User
835eaef8e3
update copyright notice / whitespace
2015-07-09 23:46:11 +00:00
Evan Hunt
ea36796f82
[v9_9] DDoS mitigation features
...
3938. [func] Added quotas to be used in recursive resolvers
that are under high query load for names in zones
whose authoritative servers are nonresponsive or
are experiencing a denial of service attack.
- "fetches-per-server" limits the number of
simultaneous queries that can be sent to any
single authoritative server. The configured
value is a starting point; it is automatically
adjusted downward if the server is partially or
completely non-responsive. The algorithm used to
adjust the quota can be configured via the
"fetch-quota-params" option.
- "fetches-per-zone" limits the number of
simultaneous queries that can be sent for names
within a single domain. (Note: Unlike
"fetches-per-server", this value is not
self-tuning.)
- New stats counters have been added to count
queries spilled due to these quotas.
These options are not available by default;
use "configure --enable-fetchlimit" (or
--enable-developer) to include them in the build.
See the ARM for details of these options. [RT #37125 ]
2015-07-08 23:00:58 -07:00
Mark Andrews
1ffb96f3dd
add comment about +trace and @server
...
(cherry picked from commit 2561b2dd84
2015-07-09 12:12:38 +10:00
Mark Andrews
2f01090351
4159. [cleanup] Alphabetize dig's help output. [RT #39966 ]
2015-07-08 09:56:48 +10:00
Tinderbox User
d23960eb33
update copyright notice / whitespace
2015-07-07 23:46:10 +00:00
Mark Andrews
f5386a21a8
4154. [bug] A OPT record should be included with the FORMERR
...
response when there is a malformed EDNS option.
[RT #39647 ]
4153. [bug] Check that non significant ECS bits are zero on
receipt. [RT #39647 ]
2015-07-06 16:34:48 +10:00
Mark Andrews
d19dfe8793
make test work for both old and new stats
2015-07-01 10:58:59 +10:00
Tinderbox User
2a77c900b6
update copyright notice / whitespace
2015-06-30 23:46:07 +00:00
Mukund Sivaraman
eb2c433d1f
Add prereq.sh check for --enable-newstats
2015-06-30 14:45:27 +05:30
Mukund Sivaraman
d927c02041
Fix build for configure --enable-newstats
2015-06-30 14:45:26 +05:30
Mukund Sivaraman
fc0797977d
Fix a bug printing zone names with '/' character in XML and JSON stats ( #39873 )
...
(cherry picked from commit 08f0129732f69f188b90
2015-06-30 14:45:13 +05:30
Tinderbox User
8780da5841
update copyright notice / whitespace
2015-06-29 23:46:07 +00:00
Mark Andrews
6f02a4e2a6
4147. [bug] Filter-aaaa / filter-aaaa-on-v4 / filter-aaaa-on-v6
...
was returning referrals rather than nodata responses
when the AAAA records were filtered. [RT #39843 ]
(cherry picked from commit 4a61eae651
2015-06-29 15:49:19 +10:00
Tinderbox User
2f74d016c6
update copyright notice / whitespace
2015-06-23 23:46:05 +00:00
Mukund Sivaraman
22f467116c
Fix parsing of NZFs saved by rndc addzone with view specified ( #39845 )
...
(cherry picked from commit 0439bfedd98134e7662e
2015-06-23 15:01:26 +05:30
Tinderbox User
6cd76847a1
update copyright notice / whitespace
2015-06-12 23:46:19 +00:00
Witold Krecicki
ece6e87818
rndc reconfig reports configuration errors the same way rndc reload does [RT #39635 ]
2015-06-12 11:13:36 +02:00
Tinderbox User
ceed6cbf1a
regen v9_9
2015-06-05 01:12:25 +00:00
Evan Hunt
b2d3001654
[v9_9] dig option cleanups
...
4132. [cleanup] dig: added +rd as a synonym for +recurse,
added +class as an unabbreviated alternative
to +cl. [RT #39686 ]
2015-06-04 08:56:11 -07:00
