upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-04 17:24:47 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
40506 commits 18 branches 854 tags 440 MiB
Commit graph

40506 commits

This branch
This branch
All branches
Author SHA1 Message Date
Tom Krizek
a65b654a23
Don't type-check the flaky plugin with mypy 
Since we execute mypy for bin/tests/system/isctest package, this is now
needed because the flaky package doesn't have type hints.
 2024-01-10 14:57:20 +01:00
Tom Krizek
f314f1b432
Move custom pytest markers into isctest module 
Keep our pytest code more organized by moving the shared code for custom
pytest markers into a dedicated isctest/mark.py module.
 2024-01-10 14:57:13 +01:00
Tom Krizek
d87da207fb Merge branch 'tkrizek/nsupdate-test-flaky-on-freebsd' into 'main' 
Allow nsupdate test rerun on FreeBSD

See merge request isc-projects/bind9!8638
 2024-01-10 13:43:08 +00:00
Tom Krizek
124882476b
Allow nsupdate test rerun on FreeBSD 
The "exceeded time limit waiting for literal 'too many DNS UPDATEs
queued' in ns1/named.run" is prone to fail due to a timing issue.
Despite out efforts to stabilize it, the check still often fails on
FreeBSD in our CI. Allow the test to be re-run on this platform.
 2024-01-10 13:18:04 +01:00
Mark Andrews
f737ca0542 Merge branch '4522-dig-in-9-19-19-accept-weird-source-and-destination-ports-within-the-proxy-statement' into 'main' 
Resolve "Dig in 9.19.19 accept weird source- and destination-ports within the "proxy"-statement"

Closes #4522

See merge request isc-projects/bind9!8626
 2024-01-10 00:05:24 +00:00
Mark Andrews
bb75676f90 Error if proxy ports are too big 2024-01-09 23:27:45 +00:00
Arаm Sаrgsyаn
c60fad36dc Merge branch 'aram/tests-dighost-fix-intermittent-failure' into 'main' 
Make digdelv test work in different network envs (continued)

See merge request isc-projects/bind9!8636
 2024-01-09 14:33:22 +00:00
Aram Sargsyan
96f63a9f0b Make digdelv test work in different network envs (continued) 
This commit complements the 1e7d832342
commit.
 2024-01-09 13:40:38 +00:00
Tom Krizek
741de8ef6d Merge branch 'tkrizek/xfer-test-dnssec-validation-no' into 'main' 
Add missing dnssec-validation to ns4 in xfer test

See merge request isc-projects/bind9!8630
 2024-01-08 18:49:17 +00:00
Tom Krizek
68234372a5
Add missing dnssec-validation to ns4 in xfer test 
This file was missing explicit dnssec-validation. Seems like it was
missed in our previous efforts, probably because of the different
filename / extension. Rename it to end with *.in to reflect that it is a
template file used by copy_setports.
 2024-01-08 18:43:45 +01:00
Tom Krizek
98b55bb85e Merge branch '4521-timeout-in-dig-not-handled-in-rndc-system-test' into 'main' 
Resolve "Timeout in dig not handled in system tests"

Closes #4521

See merge request isc-projects/bind9!8623
 2024-01-08 17:39:03 +00:00
Tom Krizek
7b77574b6d
Handle dig timing out gracefully in upforwd 2024-01-08 17:03:36 +01:00
Tom Krizek
cc7c4760aa
Handle dig timing out gracefully in staticstub 2024-01-08 17:03:36 +01:00
Tom Krizek
2341934f7d
Handle dig timing out gracefully in sortlist 2024-01-08 17:03:36 +01:00
Tom Krizek
99799fba60
Handle dig timing out gracefully in rpz 2024-01-08 17:03:36 +01:00
Tom Krizek
de569ad97a
Handle dig timing out gracefully in rootkeysentinel 2024-01-08 17:03:36 +01:00
Tom Krizek
606985d775
Handle dig timing out gracefully in qmin 2024-01-08 17:03:35 +01:00
Tom Krizek
c983449e5e
Handle dig timing out gracefully in padding 2024-01-08 17:03:35 +01:00
Tom Krizek
3c7291248c
Handle dig timing out gracefully in nsupdate 2024-01-08 17:03:35 +01:00
Tom Krizek
410aa5aeab
Handle dig timing out gracefully in names 2024-01-08 17:03:35 +01:00
Tom Krizek
0bf25138b6
Handle dig timing out gracefully in masterfile 2024-01-08 17:03:35 +01:00
Tom Krizek
8ece026848
Handle dig timing out gracefully in logfileconfig 2024-01-08 17:03:34 +01:00
Tom Krizek
2cc90a815e
Handle dig timing out gracefully in legacy 2024-01-08 17:03:34 +01:00
Tom Krizek
c6b267ce4d
Handle dig timing out gracefully in keepalive 2024-01-08 17:03:34 +01:00
Tom Krizek
fcce010045
Handle dig timing out gracefully in dnstap 2024-01-08 17:03:34 +01:00
Tom Krizek
343b3f0f84
Handle dig timing out gracefully in cookie 2024-01-08 17:03:33 +01:00
Tom Krizek
445ec7cc0f
Handle dig timing out gracefully in autosign 2024-01-08 17:03:33 +01:00
Tom Krizek
ddb41798d5
Handle dig timing out gracefully in auth 2024-01-08 17:03:33 +01:00
Tom Krizek
0d5df1fc02
Handle dig timing out gracefully in allow-query 2024-01-08 17:03:33 +01:00
Mark Andrews
4351076d48
Handle dig timing out gracefully in serve-stale 2024-01-08 17:03:32 +01:00
Mark Andrews
02d9f2eeb9
Handle dig timing out gracefully in rndc 2024-01-08 17:03:31 +01:00
Michal Nowak
cf56a27fbf Merge branch 'mnowak/set-up-version-and-release-notes-for-bind-9.19.21' into 'main' 
Set up version and release notes for BIND 9.19.21

See merge request isc-projects/bind9!8627
 2024-01-08 11:57:10 +00:00
Michal Nowak
1c7159c94e Set up release notes for BIND 9.19.21 2024-01-08 12:40:52 +01:00
Michal Nowak
168438c215 Update BIND version to 9.19.21-dev 2024-01-08 12:40:52 +01:00
Michał Kępień
9074bfa38d Merge branch 'michal/add-placeholder-entries-to-CHANGES' into 'main' 
Add placeholder entries to CHANGES

See merge request isc-projects/bind9!8625
 2024-01-05 09:05:44 +00:00
Michał Kępień
82ecaabb12
Add placeholder entries to CHANGES 
Add placeholders for the following issues:

  - [GL #4182]
  - [GL #4234]
  - [GL #4281]
  - [GL #4334]
  - [GL #4356]
  - [GL #4383]
 2024-01-05 09:22:39 +01:00
Aydın Mercan
e112d0775e Merge branch 'aydin/isc_header_atomic_fix' into 'main' 
Use and check for <isc/atomic.h> instead of <stdatomic.h> directly

See merge request isc-projects/bind9!8582
 2024-01-03 17:47:53 +00:00
Aydın Mercan
ca9a05f9ce Check for atomic operations consistency in checklibs.sh 
isc/atomic.h and its defined macros should be preferred over
stdatomic.h and explicit atomic operations.

Fix the redundant stdatomic.h header in histo.c found by the introduced
check.
 2024-01-03 17:04:31 +00:00
Aydın Mercan
294329da3a Use <isc/atomic.h> instead of <stdatomic.h> directly in <isc/types.h> 2024-01-03 17:04:31 +00:00
Mark Andrews
7d170900bf Merge branch '4466-cds-is-stuck-on-an-old-key' into 'main' 
Resolve "CDS is stuck on an old key."

Closes #4466

See merge request isc-projects/bind9!8565
 2024-01-03 01:47:52 +00:00
Mark Andrews
531420bac0 Add CHANGES note for [GL #4466] 2024-01-03 12:09:12 +11:00
Mark Andrews
882b1a4449 Set the DNSKEY TTLs to match the dnssec policy 
This prevents the DNSKEY records being updated and the statistics
not matching as a consequence
 2024-01-03 12:09:12 +11:00
Mark Andrews
7a6570a911 Create keys with TTLs that match the policies TTL 2024-01-03 12:09:12 +11:00
Mark Andrews
16a720357b Make $TTL match dnskey-ttl 2024-01-03 12:09:11 +11:00
Matthijs Mekking
b770740b44 Write new DNSKEY TTL to key file 
When the current DNSKEY TTL does not match the one from the policy,
write the new TTL to disk.
 2024-01-03 12:09:11 +11:00
Mark Andrews
27e74b2e4b Only create private records for DNSKEYs that have changed 
We don't need to create private records for DNSKEY records that
have only had their TTL's changed.
 2024-01-03 12:09:11 +11:00
Mark Andrews
d601a90ea3 sync_secure_db failed to handle some TTL changes 
If the DNSKEY, CDNSKEY or CDS RRset had different TTLs then the
filtering of these RRset resulted in dns_diff_apply failing with
"not exact". Identify tuple pairs that are just TTL changes and
allow them through the filter.
 2024-01-03 12:09:11 +11:00
Mark Andrews
21be35c54e Use the current CDS and CDNSKEY TTLs 
When adding new CDS and CDNSKEY records use the existing RRset
TTL if they already exist.
 2024-01-03 12:09:11 +11:00
Mark Andrews
dcb7799061 Update the DNSKEY, CDNSKEY and CDS TTLs to match dnskey-ttl 
If the TTLs of the DNSKEY, CDNSKEY and CDS do not match the
dnskey-ttl update them by removing all records and re-adding
them with the correct TTL.
 2024-01-03 12:09:11 +11:00
Mark Andrews
f894bf661f Test dnssec-policy dnskey-ttl behaviour 
If the dnskey-ttl in the dnssec-policy doesn't match the DNSKEY's
ttl then the DNSKEY, CDNSKEY and CDS rrset should be updated by
named to reflect the expressed policy.  Check that named does this
by creating a zone with a TTL that does not match the policy's TTL
and check that it is correctly updated.
 2024-01-03 12:09:11 +11:00