ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
Files
72c201733cc5a9722ec882c88e9f650197f84ed2
bind9/lib/dns
History
Michał Kępień 72c201733c Do not check SEP bit for mirror zone trust anchors 
When a mirror zone is verified, the 'ignore_kskflag' argument passed to
dns_zoneverify_dnssec() is set to false.  This means that in order for
its verification to succeed, a mirror zone needs to have at least one
key with the SEP bit set configured as a trust anchor.  This brings no
security benefit and prevents zones signed only using keys without the
SEP bit set from being mirrored, so change the value of the
'ignore_kskflag' argument passed to dns_zoneverify_dnssec() to true.
2019-02-14 11:03:35 +01:00
..
include
cleanup: allow building DS directly from CDNSKEY
2019-02-05 22:57:13 -05:00
rdata
fix AMTRELAY name
2019-02-08 13:54:13 +11:00
tests
fix AMTRELAY name
2019-02-08 13:54:13 +11:00
win32
Remove message catalogs
2019-01-09 23:44:26 +01:00
.gitignore
acl.c
isc_mutex_init returns 'void'
2018-11-22 11:51:49 +00:00
adb.c
clear AD flag when altering response messages
2018-12-06 10:29:11 -08:00
api
prep 9.13.6
2019-02-06 22:13:05 +00:00
badcache.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
byaddr.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
cache.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
callbacks.c
catz.c
add missing DBC checks for catz and add isc_magic checks; add DBC checks to ht.c
2018-11-29 12:39:20 +11:00
client.c
- isc_task_create_bound - create a task bound to specific task queue
2018-11-23 04:34:02 -05:00
clientinfo.c
compress.c
db.c
QNAME miminimization should create a separate fetch context for each fetch -
2018-10-23 12:15:04 +00:00
dbiterator.c
dbtable.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
diff.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
dispatch.c
- isc_task_create_bound - create a task bound to specific task queue
2018-11-23 04:34:02 -05:00
dlz.c
dns64.c
dnsrps.c
silence compiler warning
2018-11-28 12:00:16 -05:00
dnssec.c
add more key maintenance event logging
2019-01-31 12:18:55 -08:00
dnstap.c
set the magic number at the end of dns_dt_create()
2019-01-23 14:12:09 -05:00
dnstap.proto
extend DNSTAP to record UPDATE requests and responses as a separate type
2018-10-03 01:03:56 -07:00
ds.c
cleanup: allow building DS directly from CDNSKEY
2019-02-05 22:57:13 -05:00
dst_api.c
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
dst_internal.h
Remove internal dst memory context that was used just for OpenSSL and was passthrough for malloc and free
2018-10-25 08:16:24 +02:00
dst_openssl.h
dst_parse.c
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
dst_parse.h
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
dst_pkcs11.h
dst_result.c
Remove message catalogs
2019-01-09 23:44:26 +01:00
dyndb.c
gcc defines __SANITIZE_ADDRESS__ and not __ADDRESS_SANITIZER__, use the correct #define
2018-12-19 12:24:59 +01:00
ecdb.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
ecs.c
fixedname.c
forward.c
gen-unix.h
gen-win32.h
gen.c
don't use 'typename' as it is reserved in C++
2018-11-14 13:45:20 -05:00
geoip.c
Add couple more ISC_UNREACHABLE(); found thanks to coccinelle
2018-11-22 09:28:00 -05:00
gssapi_link.c
Remove internal dst memory context that was used just for OpenSSL and was passthrough for malloc and free
2018-10-25 08:16:24 +02:00
gssapictx.c
hmac_link.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
ipkeylist.c
iptable.c
Add small tweaks to the code to fix compilation when ISC assertions are disabled
2018-11-08 12:21:53 +07:00
journal.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
key.c
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
keydata.c
keytable.c
Kyuafile
lib.c
Remove message catalogs
2019-01-09 23:44:26 +01:00
log.c
lookup.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
Makefile.in
Remove message catalogs
2019-01-09 23:44:26 +01:00
mapapi
master.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
masterdump.c
Add tests for dumpdb stale ttl
2019-01-31 09:35:49 +01:00
message.c
remove the 'new_tsigkey' exception, allow TSIG to be set any time
2019-01-30 11:46:11 -08:00
name.c
isc_mutex_init returns 'void'
2018-11-22 11:51:49 +00:00
ncache.c
allow for up 100 records or 64K of data to be in a ncache entry
2019-01-09 15:53:32 +11:00
nsec3.c
Move REQUIRE outside comment unsupported alg
2018-12-19 12:54:57 +01:00
nsec.c
Turn (int & flag) into (int & flag) != 0 when implicitly typed to bool
2018-11-08 12:21:53 +07:00
nta.c
uninitalize memory read on error path
2018-11-14 15:26:27 -05:00
openssl_link.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
openssldh_link.c
convert query_test
2018-11-14 20:17:04 -08:00
opensslecdsa_link.c
Add generic message digest API (isc_md) to replace specific MD functions md5/sha1/sha256
2018-10-25 08:15:42 +02:00
openssleddsa_link.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
opensslrsa_link.c
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
order.c
peer.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
pkcs11.c
pkcs11ecdsa_link.c
Make sure null atributes are never used
2019-01-16 15:48:37 -05:00
pkcs11eddsa_link.c
Add generic message digest API (isc_md) to replace specific MD functions md5/sha1/sha256
2018-10-25 08:15:42 +02:00
pkcs11rsa_link.c
Make sure null atributes are never used
2019-01-16 15:48:37 -05:00
portlist.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
private.c
Turn (int & flag) into (int & flag) != 0 when implicitly typed to bool
2018-11-08 12:21:53 +07:00
rbt.c
rbtdb.c
Print in dump-file stale ttl
2019-01-30 14:11:12 -08:00
rbtdb.h
rcode.c
maybe_numeric failed to handle NUL in text region.
2019-01-09 18:33:42 +11:00
rdata.c
Ensure base64/base32/hex fields in DNS records that should be non-empty are.
2019-01-09 18:04:21 +11:00
rdatalist_p.h
rdatalist.c
rdataset.c
refactor filter-aaaa implementation
2018-12-06 10:29:10 -08:00
rdatasetiter.c
rdataslab.c
request.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
resolver.c
If possible don't use forwarders when priming the resolver.
2019-01-16 17:41:13 -05:00
result.c
Remove message catalogs
2019-01-09 23:44:26 +01:00
rootns.c
rpz.c
add missing DBC checks for catz and add isc_magic checks; add DBC checks to ht.c
2018-11-29 12:39:20 +11:00
rriterator.c
rrl.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
sdb.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
sdlz.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
soa.c
spnego_asn1.c
spnego_asn1.pl
spnego.asn1
spnego.c
spnego.h
ssu_external.c
ssu.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
stats.c
- Make isc_mutex_destroy return void
2018-11-22 11:52:08 +00:00
tcpmsg.c
time.c
timer.c
tkey.c
Change #4148 wasn't complete
2019-01-31 09:01:23 -08:00
tsec.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
tsig_p.h
tsig.c
Harden checks
2019-01-30 11:46:43 -08:00
ttl.c
update.c
Hint the compiler with ISC_UNREACHABLE(); that code after INSIST(0); cannot be reached
2018-11-08 12:22:17 +07:00
validator.c
Remove RSAMD5 support
2018-12-11 11:32:24 +01:00
version.c
view.c
name change from "hook modules" to "plugins"
2018-12-06 10:36:50 -08:00
xfrin.c
Prevent races when waiting for log messages
2019-02-14 10:41:56 +01:00
zone_p.h
zone.c
Do not check SEP bit for mirror zone trust anchors
2019-02-14 11:03:35 +01:00
zonekey.c
zoneverify.c
Turn (int & flag) into (int & flag) != 0 when implicitly typed to bool
2018-11-08 12:21:53 +07:00
zt.c
Add a comment explaining a mirror zone glitch
2019-02-08 05:49:22 -05:00