upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-19 08:33:44 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
16154 commits 18 branches 883 tags 460 MiB
Commit graph

477 commits

Author SHA1 Message Date
Evan Hunt
813b34ebec 2650. [bug] Assertion failure in dnssec-signzone when trying 
to read keyset-* files. [RT #20075]
 2009-08-14 01:07:00 +00:00
Mark Andrews
50eab6c2aa silence compiler warnings 2009-08-13 04:13:58 +00:00
Mark Andrews
99a0cd0236 fix comment 2009-07-21 03:27:38 +00:00
Tatuya JINMEI 神明達哉
2847ddeaf1 misc. bug fixes including null pointer dereference and memory leak. 
[RT #19953]

I don't update CHANGES as this code has never been publicly released.
 2009-07-21 02:57:39 +00:00
Mark Andrews
520cea04a2 2627. [func] Rationalize dnssec-signzone's signwithkey() calling. 
[RT #19959]
 2009-07-21 01:22:27 +00:00
Automatic Updater
fd0b768f4c regen 2009-07-21 01:13:24 +00:00
Francis Dupont
938dfe6dcd re-indent (to be finished) 2009-07-20 12:11:58 +00:00
Francis Dupont
85f5bb5274 fix extra space after now- in now-revoked 2009-07-20 11:56:35 +00:00
Automatic Updater
52c1cac19a regen 2009-07-20 01:13:18 +00:00
Automatic Updater
26d8ffe715 update copyright notice 2009-07-19 23:47:55 +00:00
Evan Hunt
f73695f9bd fix a merge error from rebasing dnssec-settime (an assignment was left in 
place that was supposed to have been removed--this was already reviewed, I
just merged the fix wrong)
 2009-07-19 16:11:53 +00:00
Evan Hunt
dba9901bb7 update cvsignore 2009-07-19 05:33:10 +00:00
Evan Hunt
2a3574f8d4 windows portability fix (review by mgraff) 2009-07-19 05:26:05 +00:00
Evan Hunt
9edd523c22 more win32 build fixes 2009-07-19 05:06:48 +00:00
Evan Hunt
da520bccdd add settime project files for win32 build 2009-07-19 04:56:47 +00:00
Automatic Updater
0a7ed88633 regen 2009-07-19 04:27:56 +00:00
Evan Hunt
553ead32ff 2636. [func] Simplify zone signing and key maintenance with the 
dnssec-* tools.  Major changes:
			- all dnssec-* tools now take a -K option to
			  specify a directory in which key files will be
			  stored
			- DNSSEC can now store metadata indicating when
			  they are scheduled to be published, acttivated,
			  revoked or removed; these values can be set by
			  dnssec-keygen or overwritten by the new
			  dnssec-settime command
			- dnssec-signzone -S (for "smart") option reads key
			  metadata and uses it to determine automatically
			  which keys to publish to the zone, use for
			  signing, revoke, or remove from the zone
			[RT #19816]
 2009-07-19 04:18:05 +00:00
Automatic Updater
4a979d3577 update copyright notice 2009-07-17 23:47:41 +00:00
Evan Hunt
aeff7de836 2634. [port] win32: Add support for libxml2, enable 
statschannel. [RT #19773]
 2009-07-17 06:25:45 +00:00
Automatic Updater
4a14ce5ba0 regen 2009-07-11 01:12:47 +00:00
Automatic Updater
c6fb85f950 update copyright notice 2009-07-01 23:47:36 +00:00
Automatic Updater
f66c8eed51 update copyright notice 2009-06-30 23:48:01 +00:00
Automatic Updater
0ae35ecf05 regen 2009-06-30 03:32:58 +00:00
Evan Hunt
1bc5499c2a dnssec-revoke docbook fix 2009-06-30 03:20:26 +00:00
Evan Hunt
6210cd4970 update 2009-06-30 02:56:09 +00:00
Evan Hunt
cfb1587eb9 2619. [func] Add support for RFC 5011, automatic trust anchor 
maintenance.  The new "managed-keys" statement can
			be used in place of "trusted-keys" for zones which
			support this protocol.  (Note: this syntax is
			expected to change prior to 9.7.0 final.) [RT #19248]
 2009-06-30 02:53:46 +00:00
Mark Andrews
ce773a54f9 missing unsigned 2009-06-24 01:27:06 +00:00
Evan Hunt
31a6411712 - fix windows build of ddns-confgen 
- fix unix build of arpaname
 2009-06-18 16:02:25 +00:00
Automatic Updater
80383d0360 regen 2009-06-18 01:13:02 +00:00
Automatic Updater
dde8659175 update copyright notice 2009-06-17 23:53:04 +00:00
Automatic Updater
ca67ebfe9e regen 2009-06-17 23:12:09 +00:00
Evan Hunt
b272d38cc5 2612. [func] Add default values for the arguments to 
dnssec-keygen.  Without arguments, it will now
			generate a 1024-bit RSASHA1 zone-signing key,
			or with the -f KSK option, a 2048-bit RSASHA1
			key-signing key. [RT #19300]

2611.	[func]		Add -l option to dnssec-dsfromkey to generate
			DLV records instead of DS records. [RT #19300]
 2009-06-17 06:51:44 +00:00
Mark Andrews
996b4d8982 fix bad test to determine if both ksk's and zsk's are present. [RT #19802] 2009-06-09 22:54:21 +00:00
Automatic Updater
1c51f79aba regen 2009-06-06 01:12:32 +00:00
Jeremy Reed
6a550cb83c Please bump date on manpage. So we know we aren't using 2000 docs. 
For -P: clean up sentence and clarify that the option skips the tests.

(This is for RT19653. No CHANGES entry added for this minor fix.)
 2009-06-05 21:59:43 +00:00
Mark Andrews
988023d8bc missing unsigned 2009-06-05 06:59:03 +00:00
Automatic Updater
6283056805 regen 2009-06-05 01:12:33 +00:00
Automatic Updater
9f4702d025 update copyright notice 2009-06-04 23:47:53 +00:00
Mark Andrews
97573334cb fix up bad merge 2009-06-04 04:33:11 +00:00
Automatic Updater
39844d4710 update copyright notice 2009-06-04 02:56:47 +00:00
Mark Andrews
2534a73a59 2608. [func] Perform post signing verification checks in 
dnssec-signzone.  These can be disabled with -P.

                        The post sign verification test ensures that for each
                        algorithm in use there is at least one non revoked
                        self signed KSK key.  That all revoked KSK keys are
                        self signed.  That all records in the zone are signed
                        by the algorithm.  [RT #19653]
 2009-06-04 02:13:37 +00:00
Automatic Updater
54cdd2b307 update copyright notice 2009-05-07 23:47:44 +00:00
Francis Dupont
ddac1a2b98 reserve -F 2009-05-07 09:33:52 +00:00
Mark Andrews
98b2be76fc 2567. [bug] dst__privstruct_writefile() could miss write errors. 
write_public_key() could miss write errors.
                        dnssec-dsfromkey could miss write errors.
                        [RT #19360]
 2009-03-02 03:01:04 +00:00
Automatic Updater
389d1c1cb9 update copyright notice 2009-02-17 23:47:46 +00:00
Mark Andrews
52dec6996a 2559. [bug] dnssec-dsfromkey could compute bad DS records when 
reading from a K* files.  [RT #19357]
 2009-02-17 00:16:45 +00:00
Francis Dupont
86e018c2bc spelling 2009-01-17 10:26:17 +00:00
Automatic Updater
0cfbb9285a update copyright notice 2009-01-06 23:47:57 +00:00
Francis Dupont
1879dbe0d9 dnssec-signzone needs strtoul() - 19129 2009-01-06 09:14:03 +00:00
Mark Andrews
8bf0c05627 2515. [port] win32: build dnssec-dsfromkey and dnssec-keyfromlabel. 
[RT #19063]
 2008-12-14 21:14:54 +00:00