upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-25 02:47:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
21885 commits 18 branches 886 tags 464 MiB
Commit graph

5795 commits

Author SHA1 Message Date
Evan Hunt
0a35160f4e [master] prep 9.10.0a2 2014-01-30 18:02:26 -08:00
Evan Hunt
3249da26fc [master] rationalize external key handling 
3723.	[cleanup]	Imported keys are now handled the same way
			regardless of DNSSEC algorithm. [RT #35215]
 2014-01-30 17:49:32 -08:00
Evan Hunt
d0803df331 [master] fixed geoip in blackhole ACLs 
3722.	[bug]		Using geoip ACLs in a blackhole statement
			could cause a segfault. [RT #35272]
 2014-01-30 17:03:32 -08:00
Tinderbox User
4734976943 update copyright notice 2014-01-30 23:46:20 +00:00
Tinderbox User
04b5785fde update copyright notice 2014-01-29 23:46:19 +00:00
Mark Andrews
63add83a26 3720. [bug] Address compiler warnings. [RT #35261] 2014-01-30 10:33:28 +11:00
Mark Andrews
75d747e1c5 3719. [bug] Address memory leak in in peer.c. [RT #35255] 2014-01-30 07:54:52 +11:00
Tinderbox User
0ff8ed750e update copyright notice 2014-01-27 23:46:24 +00:00
Mark Andrews
ffa83ffb22 doxygen markup 
(cherry picked from commit bc28371004d70b17f0ca872da8bd84e70591eaf4)
 2014-01-28 09:12:58 +11:00
Mark Andrews
b8cf73a3b3 3717. [port] hpux: Treat EOPNOTSUPP as a expected error code when 
probing to see if it is possible to set dscp values
                        on a per packet basis. [RT #35252]

3716.   [bug]           The dns_request code was setting dcsp values when not
                        requested.  [RT #35252]
 2014-01-28 08:25:28 +11:00
Tinderbox User
85167bb10f update copyright notice 2014-01-24 23:46:22 +00:00
Evan Hunt
bff64bf12b [master] correct copyrights and attributions 
see RT #35423 for details; highlights:
    - remove license clauses 3 and 4 from NetBSD code
    - remove advertising clause from historical BSD code
    - add openssl advertising attributions
 2014-01-24 09:46:00 -08:00
Tinderbox User
fbe600459d update copyright notice 2014-01-23 23:46:17 +00:00
Evan Hunt
83f69fcd6e [master] fix a problem with libgeoip 1.5 and higher 
3715.	[bug]		The region and city databases could fail to
			initialize when using some versions of libGeoIP,
			causing assertion failures when named was
			configured to use them. [RT #35427]
 2014-01-23 12:46:02 -08:00
Tinderbox User
aa7b16ec2a update copyright notice 2014-01-21 23:46:16 +00:00
Mark Andrews
8fbf08d961 silence compiler warning 2014-01-22 10:01:01 +11:00
Evan Hunt
1b255a0c4e [master] overlooked some memcpy->memmove changes with pkcs11 merge 2014-01-21 10:08:01 -08:00
Evan Hunt
a40b8e025a [master] remove unnecessary test in name.c 2014-01-20 17:58:47 -08:00
Evan Hunt
d58e33bfab [master] testcrypto.sh in system tests 
3714.	[test]		System tests that need to test for cryptography
			support before running can now use a common
			"testcrypto.sh" script to do so. [RT #35213]
 2014-01-20 16:08:09 -08:00
Evan Hunt
12bf5d4796 [master] address several issues with native pkcs11 2014-01-18 11:51:07 -08:00
Francis Dupont
6972eaffdb fix external key handling 2014-01-17 17:12:20 +01:00
Francis Dupont
1893156781 fix GSSAPI with native PKCS#11 typo [#35207] 2014-01-17 14:32:12 +01:00
Mark Andrews
e20788e121 update copyrights 2014-01-16 15:19:24 +11:00
Tinderbox User
b269de36be update copyright notice 2014-01-15 23:46:24 +00:00
Mark Andrews
702958d202 3708. [bug] Address a portentry locking issue in dispatch.c. 
[RT #35128]
 2014-01-15 15:55:35 +11:00
Mark Andrews
d8b83f0e2b silence compiler warning 2014-01-15 12:40:09 +11:00
Tinderbox User
bf0266f286 update copyright notice 2014-01-14 23:46:22 +00:00
Evan Hunt
ba751492fc [master] native PKCS#11 support 
3705.	[func]		"configure --enable-native-pkcs11" enables BIND
			to use the PKCS#11 API for all cryptographic
			functions, so that it can drive a hardware service
			module directly without the need to use a modified
			OpenSSL as intermediary (so long as the HSM's vendor
			provides a complete-enough implementation of the
			PKCS#11 interface). This has been tested successfully
			with the Thales nShield HSM and with SoftHSMv2 from
			the OpenDNSSEC project. [RT #29031]
 2014-01-14 15:40:56 -08:00
Mark Andrews
07fb9b8330 3704. [protocol] Accept integer timestamps in RRSIG records. [RT #35185] 2014-01-14 16:12:30 +11:00
Tinderbox User
2cf1d5b098 update copyright notice 2014-01-12 23:46:23 +00:00
Mark Andrews
c24b6b4a40 fix for pre C99 compiler 2014-01-13 09:29:25 +11:00
Mark Andrews
fb756ba304 3703. [func] Prefetch about to expire records if they are queried 
for, see prefetch option for details. [RT #35041]
 2014-01-12 21:29:15 +11:00
Tinderbox User
431a83fb29 update copyright notice 2014-01-09 23:46:35 +00:00
Mark Andrews
109f477ed7 silence compiler warning 2014-01-09 15:57:59 +11:00
Evan Hunt
e851ea8260 [master] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
 2014-01-08 16:39:05 -08:00
Tinderbox User
ca8ad4871e update copyright notice 2014-01-06 23:46:06 +00:00
Jeremy C. Reed
c55b7dce48 See ticket 35140 for details. 
Install some include files:

dns/client.h
dns/tsec.h
irs/resconf.h
irs/types.h
(I noticed these when building DHCP using installed BIND9.)

This was okayed during the 2014-01-02 BIND9 phone meeting.
 2014-01-06 14:20:31 -06:00
Evan Hunt
2b258a1f5b [master] dispatch.c race 
3695.	[bug]		Address a possible race in dispatch.c. [RT #35107]
 2013-12-23 09:50:18 -08:00
Tinderbox User
1baa4729ce update copyright notice 2013-12-16 23:46:18 +00:00
Mark Andrews
a2ca594252 sort and one file per line 2013-12-17 10:35:45 +11:00
Mark Andrews
161e803a56 3692. [bug] Two calls to dns_db_getoriginnode were fatal if there 
was no data at the node. [RT #35080]
 2013-12-17 09:08:59 +11:00
Evan Hunt
0606c47750 [master] correct dispatch address/port check 
3690.	[bug]		Iterative responses could be missed when the source
			port for an upstream query was the same as the
			listener port (53). [RT #34925]
 2013-12-12 22:39:12 -08:00
Evan Hunt
9b895f30f1 [master] fix insecure delegation across static-stub zones 
3689.	[bug]		Fixed a bug causing an insecure delegation from one
			static-stub zone to another to fail with a broken
			trust chain. [RT #35081]
 2013-12-12 22:19:33 -08:00
Mark Andrews
1bdc17e54e remove from load_rpzs 2013-12-12 13:53:10 +11:00
Mark Andrews
e4d0018d4c 3688. [bug] loadnode could return a freed node on out of memory. 
[RT #35106]
 2013-12-12 12:49:44 +11:00
Tinderbox User
de77dcc2c1 update copyright notice 2013-12-11 23:47:38 +00:00
Mark Andrews
00112618bc 3687. [bug] Address null pointer dereference in zone_xfrdone. 
[RT #35042]
 2013-12-12 10:38:35 +11:00
Evan Hunt
0bbe3273a2 [master] dnssec-signzone -Q 
3686.	[func]		"dnssec-signzone -Q" drops signatures from keys
			that are still published but no longer active.
			[RT #34990]
 2013-12-11 13:25:21 -08:00
Mark Andrews
8539d19c04 handle underflow now that n is unsigned 
(cherry picked from commit 536ac53126)
 2013-12-10 07:24:44 +11:00
Mark Andrews
131333682c silence compiler warning 
(cherry picked from commit b14c6a1caf)
 2013-12-10 07:24:44 +11:00