upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-28 01:28:05 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
24965 commits 18 branches 854 tags 440 MiB
Commit graph

10314 commits

Author SHA1 Message Date
Evan Hunt
b3aebb5890 [master] silence warning 2016-12-28 17:54:16 -08:00
Mark Andrews
6adf421e7e 4510. [security] Named mishandled some responses where covering RRSIG 
records are returned without the requested data
                        resulting in a assertion failure. (CVE-2016-9147)
                        [RT #43548]
 2016-12-29 11:47:19 +11:00
Mark Andrews
2c1c4b99a1 4508. [security] Named incorrectly tried to cache TKEY records which 
could trigger a assertion failure when there was
                            a class mismatch. (CVE-2016-9131) [RT #43522]
 2016-12-29 11:07:40 +11:00
Tinderbox User
4ef83f4333 update copyright notice / whitespace 2016-12-28 23:48:39 +00:00
Mark Andrews
f3bf3905c3 4517. [security] Named could mishandle authority sections that were 
missing RRSIGs triggering an assertion failure.
                        (CVE-2016-9444) [RT # 43632]

(cherry picked from commit 1df30cfd27c5a3c57fce357c54aaf6c702227d51)
 2016-12-29 10:39:51 +11:00
wpk
c4ecf87d21 [master] Remove spurious entry in lib/dns/win32/libdns.def.in 2016-12-28 19:21:36 +01:00
wpk
e910d18007 4545. [func] Make dnstap-read output more functionally usable. 
[RT #43642]

4544.	[func]		Add message/payload size to dnstap-read YAML output.
			[RT #43622]
 2016-12-28 11:57:28 +01:00
Mark Andrews
6f94747270 4543. [bug] dns_client_startupdate now delays sending the update 
request until isc_app_ctxrun has been called.
                        [RT #43976]
 2016-12-28 15:50:22 +11:00
Tinderbox User
c43f150d0a update copyright notice / whitespace 2016-12-26 23:46:20 +00:00
Mark Andrews
8e333f42ef 4540. [bug] Correctly handle ecs entries in dns_acl_isinsecure. 
[RT #43601]
 2016-12-27 09:49:02 +11:00
Mark Andrews
762c4fc5a8 4539. [bug] Referencing a nonexistant zone with rpz could lead 
to a assertion failure when configuring. [RT #43787]
 2016-12-27 08:59:07 +11:00
Mark Andrews
aceabacdb8 4538. [bug] Call dns_client_startresolve from client->task. 
[RT #43896]
 2016-12-27 07:02:33 +11:00
Mark Andrews
e17d2f98be if gen fails remove the file [RT #43949] 2016-12-23 09:19:31 +11:00
Mark Andrews
c1870d0e44 freeaddrinfo is called too early. 2016-12-15 09:38:12 +11:00
Tinderbox User
29916e6d7c update copyright notice / whitespace 2016-12-13 23:46:28 +00:00
Mark Andrews
37a8db0ba4 4535. [bug] Address race condition in setting / testing of 
DNS_REQUEST_F_SENDING. [RT #43889]
 2016-12-14 10:31:26 +11:00
Mark Andrews
def6b33bad 4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879] 2016-12-13 16:27:18 +11:00
Mark Andrews
8ca45ba01a 4533. [bug] dns_client_update should terminate on prerequiste 
failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
                        and also on BADZONE.  [RT #43865]
 2016-12-13 15:47:03 +11:00
Mark Andrews
60cb462c56 4530. [bug] Change 4489 broke the handling of CNAME -> DNAME 
in responses resulting in SERVFAIL being returned.
                        [RT #43779]
 2016-12-09 12:50:18 +11:00
Evan Hunt
f2c7ae114a [master] silence DSCP probing error 
4529.	[cleanup]	Silence noisy log warning when DSCP probe fails
			due to firewall rules. [RT #43847]
 2016-12-08 08:44:20 -08:00
Mark Andrews
c1619b8420 4528. [bug] Only set the flag bits for the i/o we are waiting 
for on EPOLLERR or EPOLLHUP. [RT #43617]
 2016-12-08 16:59:46 +11:00
Tinderbox User
16fde7f0b3 regen master 2016-12-07 01:05:34 +00:00
Mark Andrews
1b8ce3b330 4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831] 2016-12-07 10:49:55 +11:00
Tinderbox User
8b22817d17 update copyright notice / whitespace 2016-12-05 23:46:20 +00:00
Mark Andrews
df372d967e 4524. [bug] The net zero test was broken causing IPv4 servers 
with addresses ending in .0 to be rejected. [RT #43776]
 2016-12-05 10:46:43 +11:00
Evan Hunt
b4d70a933c [master] expanded time unit test 2016-12-02 12:32:34 -08:00
Mukund Sivaraman
5c843b384d Add doc function for cfg_type_querysource4 and cfg_type_querysource6 (#43768) 2016-12-02 11:16:08 +05:30
Mark Andrews
cab871f1bc 4522. [bug] Handle big gaps in log file version numbers better. 
[RT #38688]
 2016-11-30 10:55:21 +11:00
Tinderbox User
1d7d7cdcda update copyright notice / whitespace 2016-11-29 23:46:09 +00:00
Mark Andrews
4352551d23 4520. [cleanup] Alphabetise more of the grammar when printing it 
out. Fix unbalanced indenting. [RT #43755]
 2016-11-29 15:28:28 +11:00
Mark Andrews
a611e44f9a 4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534] 2016-11-29 11:28:26 +11:00
Tinderbox User
ee47b6607a update copyright notice / whitespace 2016-11-23 23:46:11 +00:00
Evan Hunt
62c85a4a52 [master] allow different time formats: local, iso8601, iso8601-utc 
4518.	[func]		The "print-time" option in the logging configuration
			can now take arguments "local", "iso8601" or
			"iso8601-utc" to indicate the format in which the
			date and time should be logged. For backward
			compatibility, "yes" is a synonym for "local".
			[RT #42585]
 2016-11-22 23:34:47 -08:00
Mark Andrews
358c6ecd26 4516. [bug] isc_socketmgr_renderjson was missing from the 
windows build. [RT #43602]
 2016-11-22 12:07:42 +11:00
Mark Andrews
02c341f282 fix ISC_FORMAT_PRINTF paramaters for socket_log 2016-11-12 02:54:51 +11:00
Mark Andrews
e49d93c22d locks are only need in OpenSSL < 1.1 2016-11-09 10:05:50 +11:00
Mark Andrews
56c6fc0dac only call dns_test_begin once 
(cherry picked from commit f13c7b01746a07bef87a386ceff93ccb2a7488a9)
 2016-11-09 10:03:21 +11:00
Mark Andrews
fed2f7e4c1 remove spurious newline [RT #43585] 2016-11-09 08:26:39 +11:00
Evan Hunt
3ac0165723 [master] typo in comment 2016-11-08 09:06:23 -08:00
Mark Andrews
aa44b4682a copyrights/whitespace 2016-11-03 12:41:00 +11:00
Tinderbox User
e37bc34b31 update copyright notice / whitespace 2016-11-02 23:46:39 +00:00
Evan Hunt
c23255316e [master] typo 2016-11-02 09:43:11 -07:00
Francis Dupont
1c5861fa7b Fixed IP_PMTUDISC_OMIT typos 2016-11-02 09:18:14 +01:00
Mark Andrews
aee76db9e3 add dns_db_getsize, dns_rdataslab_count, dns_zone_getmaxrecords, dns_zone_setmaxrecords 2016-11-02 18:49:02 +11:00
Mark Andrews
a0caf66c97 remove review fprintf 2016-11-02 18:03:33 +11:00
Mark Andrews
2b2b85c897 4507. [bug] Name could incorrectly log 'allows updates by IP 
address, which is insecure' [RT #43432]
 2016-11-02 17:53:19 +11:00
Mark Andrews
a61f252391 4505. [port] Use IP_PMTUDISC_OMIT if available. [RT #35494] 2016-11-02 17:39:52 +11:00
Mark Andrews
5f8412a4cb 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]
 2016-11-02 17:31:27 +11:00
Evan Hunt
1b2e798976 [master] restore dropped #else block 2016-11-01 22:34:33 -07:00
Evan Hunt
6087f87afb [master] make uninstall 
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]
 2016-11-01 19:17:07 -07:00