upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-04 17:24:47 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
25681 commits 18 branches 854 tags 440 MiB
Commit graph

25681 commits

This branch
This branch
All branches
Author SHA1 Message Date
Tinderbox User
7cb14b610e regen master 2017-10-03 01:07:20 +00:00
Mark Andrews
c85b467dc0 4747. [func] Synthesis of responses from DNSSEC-verified records. 
Stage 3 - synthesize NODATA responses. [RT #40138]
 2017-10-03 11:16:37 +11:00
Tinderbox User
af3f476e77 regen master 2017-10-01 01:08:38 +00:00
Evan Hunt
c0f8a8f30a [master] add configured prefixes to summary 
4746.	[cleanup]	Add configured prefixes to configure summary
			output. [RT #46153]
 2017-09-30 10:01:01 -07:00
Tinderbox User
a57a6dbe62 update copyright notice / whitespace 2017-09-29 23:45:51 +00:00
Tinderbox User
bf50a60e39 newcopyrights 2017-09-29 23:30:10 +00:00
Evan Hunt
3bb6150cae [master] color-coded test output 
4745.	[test]		Add color-coded pass/fail messages to system
			tests when running on terminals that support them.
			[RT #45977]
 2017-09-29 12:20:55 -07:00
Tinderbox User
5fbc5c9225 regen master 2017-09-29 01:08:37 +00:00
Tinderbox User
791aa3e9be update copyright notice / whitespace 2017-09-28 23:45:49 +00:00
Mark Andrews
dc0a792d94 4744. [bug] Suppress trust-anchor-telementry queries if 
validation is disabled. [RT #46131]
 2017-09-29 09:33:06 +10:00
Tinderbox User
83b5464a1f newcopyrights 2017-09-28 23:30:08 +00:00
Evan Hunt
24172bd2ee [master] completed and corrected the crypto-random change 
4724.	[func]		By default, BIND now uses the random number
			functions provided by the crypto library (i.e.,
			OpenSSL or a PKCS#11 provider) as a source of
			randomness rather than /dev/random.  This is
			suitable for virtual machine environments
			which have limited entropy pools and lack
			hardware random number generators.

			This can be overridden by specifying another
			entropy source via the "random-device" option
			in named.conf, or via the -r command line option;
			however, for functions requiring full cryptographic
			strength, such as DNSSEC key generation, this
			cannot be overridden. In particular, the -r
			command line option no longer has any effect on
			dnssec-keygen.

			This can be disabled by building with
			"configure --disable-crypto-rand".
			[RT #31459] [RT #46047]
 2017-09-28 10:09:22 -07:00
Mark Andrews
86e5d14e82 improve forensics 2017-09-28 22:14:30 +10:00
Mark Andrews
768f6c995f add dns_name_istat to lib/dns/win32/libdns.def.in 2017-09-28 17:52:09 +10:00
Mark Andrews
f735293431 4743. [func] Exclude trust-anchor-telementry queries from 
synth-from-dnssec processing. [RT #46123]
 2017-09-28 16:40:45 +10:00
Mark Andrews
e00fdad191 4742. [func] Synthesis of responses from DNSSEC-verified records. 
Stage 2 - synthesis of records from wildcard data.
                        If the dns64 or filter-aaaa* is configured then the
                        involved lookups are currently excluded. [RT #40138]
 2017-09-28 15:16:26 +10:00
Tinderbox User
e880197f31 update copyright notice / whitespace 2017-09-27 23:45:52 +00:00
Tinderbox User
6d5608c14d newcopyrights 2017-09-27 23:30:08 +00:00
Mark Andrews
d386eb54c6 switch to using snprintf from sprintf 2017-09-28 07:15:46 +10:00
Mukund Sivaraman
abb8813a33 Make isc_refcount_current() atomically read the counter value (#46074) 2017-09-27 15:09:04 +05:30
Mark Andrews
2495de04a5 use %u and cast to unsigned int 2017-09-27 17:57:07 +10:00
Mark Andrews
42ee853c23 check for ISC_R_EOF 2017-09-27 16:19:07 +10:00
Mark Andrews
73074e954a 4740. [cleanup] Avoid triggering format-truncated warnings. [RT #46107] 2017-09-27 16:02:02 +10:00
Mark Andrews
b4c31c8795 tcp test got reversed 2017-09-27 15:19:34 +10:00
Mark Andrews
f9f3f20d2d 4739. [cleanup] Address clang static analysis warnings. [RT #45952] 2017-09-27 10:27:09 +10:00
Mark Andrews
744061a03b 4738. [port] win32: strftime mishandles %Z. [RT #46039] 2017-09-26 23:32:40 +10:00
Mark Andrews
08151d7fce 4737. [cleanup] Address Coverity warnings. [RT #46012] 2017-09-26 23:21:49 +10:00
Michał Kępień
acc3728c47 [master] Comment NSEC3-related code and fix a few minor issues 
4736.	[cleanup]	(a) Added comments to NSEC3-related functions in
			lib/dns/zone.c.  (b) Refactored NSEC3 salt formatting
			code.  (c) Minor tweaks to lock and result handling.
			[RT #46053]
 2017-09-26 11:28:28 +02:00
Mukund Sivaraman
eb1e4cce6c Refactor 
Reviewed on Jabber by Evan.
 2017-09-26 14:54:36 +05:30
Mark Andrews
2919a6d34b 4735. [bug] Add @ISC_OPENSSL_LIBS@ to isc-config. [RT #46078] 2017-09-23 14:57:27 +10:00
Evan Hunt
e02abf7ed8 [master] contrib: dns-over-tls sample configurations 
4734.	[contrib]	Added sample configuration for DNS-over-TLS in
			contrib/dnspriv.
 2017-09-22 15:11:44 -07:00
Mukund Sivaraman
fb9712f639 Use stdint.h only when stdatomic.h is in use (stdint.h isn't available everywhere) 2017-09-22 15:14:04 +05:30
Mark Andrews
6138c5a5e4 #include <isc/string.h> as it includes both <string.h> and <strings.h> if they both exist 2017-09-22 18:08:54 +10:00
Mark Andrews
3148dee766 correct ./.gitattributes 2017-09-22 14:32:02 +10:00
Tinderbox User
81c9fdd472 regen master 2017-09-22 01:07:54 +00:00
Tinderbox User
8200eb4c60 update copyright notice / whitespace 2017-09-21 23:47:11 +00:00
Tinderbox User
83df1994f2 newcopyrights 2017-09-21 23:30:17 +00:00
Evan Hunt
2278a14b52 [master] fix typos 2017-09-21 10:12:53 -07:00
Mark Andrews
af7ded82e0 alphabetise 2017-09-21 17:48:26 +10:00
Tinderbox User
243b3ec486 regen master 2017-09-21 07:23:48 +00:00
Mark Andrews
f8c82bbf39 #include <stdint.h> 2017-09-21 14:18:59 +10:00
Mark Andrews
e8703033c5 atomic_compare_exchange_strong_explicit's second argument should not be atomic_* 2017-09-21 13:41:22 +10:00
Mark Andrews
d17cf1cade explicitly list test programs 2017-09-21 12:56:33 +10:00
Tinderbox User
cd8e7e8bf8 regen master 2017-09-21 01:10:02 +00:00
Evan Hunt
7300f231d6 [master] remove duplicated word 2017-09-20 12:16:30 -07:00
Evan Hunt
7a2112ff7d [master] fix memory growth problem 
4733.	[bug]		Change #4706 introduced a bug causing TCP clients
			not be reused correctly, leading to unconstrained
			memory growth. [RT #46029]
 2017-09-20 12:12:02 -07:00
Mukund Sivaraman
924d93d4e7 Update configure message to be same as for older branches 2017-09-20 13:40:03 +05:30
Mukund Sivaraman
0c03a0fb2d Show configure message for "checking whether to use OpenSSL hash functions..." 2017-09-20 13:37:52 +05:30
Tinderbox User
db22b3ea1f regen master 2017-09-20 01:08:59 +00:00
Tinderbox User
ffbe6b9537 update copyright notice / whitespace 2017-09-19 23:46:23 +00:00