upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-15 07:02:40 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
26645 commits 18 branches 854 tags 440 MiB
Commit graph

10900 commits

Author SHA1 Message Date
Tinderbox User
18b7760b29 update copyright notice / whitespace 2017-04-24 23:45:33 +00:00
Mark Andrews
8296b23426 add dns_view_getnewzonedir, dns_view_setnewzonedir 2017-04-24 17:26:47 +10:00
Evan Hunt
2dfb992349 [master] new-zones-directory option 
4610.	[func]		The "new-zones-directory" option specifies the
			location of NZF or NZD files for storing
			configuration of zones added by "rndc addzone".
			Thanks to Petr Menšík. [RT #44853]
 2017-04-23 23:16:53 -07:00
Evan Hunt
67e1f8fa4e [master] allow parralel make 
4609.	[cleanup]	Rearrange makefiles to enable parallel execution
			(i.e. "make -j"). [RT #45078]
 2017-04-23 23:04:25 -07:00
Mark Andrews
8c6ed0fe5f 4607. [bug] The memory context's malloced and maxmalloced counters 
were being updated without the appropriate lock being
                        held.  [RT #44869]
 2017-04-24 11:33:30 +10:00
Evan Hunt
6ce8a05f6c [master] update copyrights that had been missed recently 2017-04-23 17:06:00 -07:00
Evan Hunt
5490188e22 [master] add allocate_version64 definition 2017-04-22 23:16:23 -07:00
Tinderbox User
1f6505a424 update copyright notice / whitespace 2017-04-22 23:45:41 +00:00
Mukund Sivaraman
b1568eeedc Add missing types for non-threaded build 2017-04-22 19:58:51 +05:30
Mukund Sivaraman
03be5a6b4e Improve performance for delegation heavy answers and also general query performance (#44029) 2017-04-22 09:22:44 +05:30
Evan Hunt
4c31eda5e1 [master] openssl backward compatibility fix 
4604.	[bug]		Don't use ERR_load_crypto_strings() when building
			with OpenSSL 1.1.0. [RT #45117]
 2017-04-21 18:56:00 -07:00
Evan Hunt
8ee6a6afd8 [master] fix portability issue 2017-04-21 18:16:00 -07:00
Tinderbox User
3618b965d1 update copyright notice / whitespace 2017-04-21 23:45:41 +00:00
Evan Hunt
d26ae7fc08 [master] give threads unique names to assist debugging 
4602.	[func]		Threads are now set to human-readable
			names to assist debugging, when supported by
			the OS. [RT #43234]
 2017-04-21 13:59:40 -07:00
Mukund Sivaraman
239e9dc81c Reject incorrect RSA key lengths during key generation and and sign/verify context creation (#45043) 2017-04-21 17:31:59 +05:30
Mukund Sivaraman
f23c10f925 Adjust RPZ trigger counts only when the entry being deleted exists (#43386) 2017-04-21 17:06:22 +05:30
Mukund Sivaraman
4176d278e2 Fix inconsistencies in inline signing time comparisons (#42112) 2017-04-21 16:43:58 +05:30
Mukund Sivaraman
5d01eab088 Ignore SHA-1 DS digest type when SHA-384 DS digest type is present (#45017) 2017-04-21 16:19:38 +05:30
Evan Hunt
019132b70c [master] fix dispatch.c shutdown race 
4952.	[bug]		A race condition on shutdown could trigger an
			assertion failure in dispatch.c. [RT #43822]
 2017-04-20 17:41:37 -07:00
Tinderbox User
3b443e87a0 update copyright notice / whitespace 2017-04-20 23:45:39 +00:00
Mark Andrews
600b027731 4587. [bug] named-checkzone failed to handle occulted data below 
DNAMEs correctly. [RT #44877]
 2017-04-20 13:28:48 +10:00
Mark Andrews
3742338a7b 4585. [port] win32: Set CompileAS value. [RT #42474] 2017-04-20 12:41:40 +10:00
Mark Andrews
ddac00e3e0 4584. [bug] A number of memory usage statistics were not properly 
reported when they exceeded 4G.  [RT #44750]
 2017-04-20 10:21:00 +10:00
Tinderbox User
a1d1a967da update copyright notice / whitespace 2017-04-17 23:45:35 +00:00
Evan Hunt
28cff4f924 [master] fix out of tree build error 2017-04-17 14:31:44 -07:00
Tinderbox User
5ea0584a94 update copyright notice / whitespace 2017-03-24 23:45:35 +00:00
Mark Andrews
8e8dfc5941 4582. [security] 'rndc ""' could trigger a assertion failure in named. 
(CVE-2017-3138) [RT #44924]
 2017-03-25 02:00:17 +11:00
Mark Andrews
638c7c635d 4580. [bug] 4578 introduced a regression when handling CNAME to 
referral below the current domain. [RT #44850]
 2017-03-14 15:07:00 +11:00
Tinderbox User
db1010fe82 update copyright notice / whitespace 2017-03-10 23:46:18 +00:00
Evan Hunt
ff711c866c [master] change strtoll() to isc_string_touint64() for portability 2017-03-09 15:17:10 -08:00
Evan Hunt
612b2e2c0d [master] timestamp suffixes for log files 
4579.	[func]		Logging channels and dnstap output files can now
			be configured with a "suffix" option, set to
			either "increment" or "timestamp", indicating
			whether to use incrementing numbers or timestamps
			as the file suffix when rolling over a log file.
			[RT #42838]
 2017-03-08 23:20:40 -08:00
Mark Andrews
f240f4a5de Reimplement: 
4578.   [security]      Some chaining (CNAME or DNAME) responses to upstream
                        queries could trigger assertion failures.
                        (CVE-2017-3137) [RT #44734]
 2017-03-01 12:01:16 +11:00
Evan Hunt
a1365a0042 [master] remove unnecessary INSIST 
4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]
 2017-02-23 14:34:33 -08:00
Evan Hunt
18d49392fb [master] use isc_uint32_t instead of uint32_t 2017-02-21 10:45:02 -08:00
Witold Krecicki
0790f8a361 4577. [func] Make qtype of resolver fuzzing packet configurable via command line. [RT #43540] 2017-02-21 03:49:55 -08:00
Tinderbox User
e66aaccfd8 update copyright notice / whitespace 2017-02-20 23:45:32 +00:00
Witold Krecicki
fa9b4de716 4576. [func] The RPZ implementation has been substantially refactored for improved performance and reliability. [RT #43449] 2017-02-20 11:57:28 +01:00
Mark Andrews
87ff6241e4 dns_master_styleflags returns dns_masterstyle_flags_t 2017-02-20 17:39:20 +11:00
Mark Andrews
bd75947af7 reserve block for 9.12 2017-02-15 14:29:33 +11:00
Tinderbox User
f929677ed8 update copyright notice / whitespace 2017-02-08 23:45:32 +00:00
wpk
96912e44b0 4573. [func] Query logic has been substantially refactored (e.g. query_find function has been split into smaller functions) for improved readability, maintainability 2017-02-08 22:15:01 +01:00
Evan Hunt
d8339932af [master] fix memory leak from dnstap-output parsing 2017-02-06 22:13:51 -08:00
Mark Andrews
63f8c891d8 add dns_dt_setupfile 2017-02-07 13:21:20 +11:00
Evan Hunt
c4e4bd6a09 [master] dnstap size and versions options 
4572.	[func]		The "dnstap-output" option can now take "size" and
			"versions" parameters to indicate the maximum size
			a dnstap log file can grow before rolling to a new
			file, and how many old files to retain. [RT #44502]
 2017-02-06 16:34:58 -08:00
Evan Hunt
56cccde22b [master] fix build errors from inline macros (change 4565) 2017-02-06 10:41:45 -08:00
Tinderbox User
61f11922d3 update copyright notice / whitespace 2017-02-04 23:45:35 +00:00
Evan Hunt
650b5e7592 [master] store local and remote addresses in dnstap 
4569.	[func]		Store both local and remote addresses in dnstap
			logging, and modify dnstap-read output format to
			print them. [RT #43595]
 2017-02-03 17:05:58 -08:00
Tinderbox User
39f68aa480 update copyright notice / whitespace 2017-02-03 23:45:33 +00:00
Evan Hunt
f4d20b15a2 [master] silence "unused value" warning 2017-02-03 11:26:37 -08:00
Mark Andrews
c550e75ade 4567. [port] Call getprotobyname and getservbyname prior to calling 
chroot so that shared libraries get loaded. [RT #44537]
 2017-02-03 14:22:03 +11:00
Mark Andrews
4a85cab586 mem_put/mem_get were inconsistent in updating ctx->malloced if ISC_MEM_CHECKOVERRUN was defined 2017-02-03 12:39:35 +11:00
Tinderbox User
194f07c628 update copyright notice / whitespace 2017-02-02 23:45:47 +00:00
Evan Hunt
aace5d0fb3 [master] include ECS in query logging 
4566.	[func]		Query logging now includes the ECS option if one
			was included in the query. [RT #44476]
 2017-02-02 11:54:28 -08:00
Evan Hunt
7769c92946 [master] support autore in inline macro buffer functions 
4565.	[cleanup]	The inline macro versions of isc_buffer_put*()
			did not implement automatic buffer reallocation.
			[RT #44216]
 2017-02-02 11:32:39 -08:00
Mark Andrews
2f5444972a perform more testing on rndc <op> -redirect 2017-02-02 17:25:54 +11:00
Mark Andrews
dfe3068ef3 4563. [bug] Modified zones would occasionally fail to reload. 
[RT #39424]
 2017-02-02 17:11:15 +11:00
Mark Andrews
f783c2d579 4562. [func] Add additional memory statistics currently malloced 
and maxmalloced per memory context. [RT #43593]
 2017-02-02 15:36:38 +11:00
Evan Hunt
6cb5e36ca3 [master] Squashed commit of the following: 
4561.	[port]		Silence a warning in strict C99 compilers. [RT #44414]
 2017-02-01 17:31:11 -08:00
Tinderbox User
ed1f93cc24 update copyright notice / whitespace 2017-01-31 23:45:34 +00:00
Evan Hunt
a2bd99a959 [master] address portability issues 2017-01-30 16:52:18 -08:00
Mark Andrews
1d8995d226 add a REQUIRE to catch the NULL pointer dereference that triggered CVE-2017-3135 2017-01-31 11:20:03 +11:00
Evan Hunt
cd668ea57f [master] change 4558 was incomplete 2017-01-30 14:10:30 -08:00
Tinderbox User
b5808abc69 update copyright notice / whitespace 2017-01-24 23:45:30 +00:00
Mark Andrews
3e9f874e1f win32: add consts 2017-01-24 22:44:25 +11:00
Mark Andrews
25da687db7 4560. [bug] mdig: add -m option to enable memory debugging rather 
than have in on all the time. [RT #44509]

4559.   [bug]           Openssl_link.c didn't compile if ISC_MEM_TRACKLINES
                        was turned off.  [RT #44509]
 2017-01-24 17:48:31 +11:00
Mark Andrews
9f4bf43b79 4558. [bug] Synthesised CNAME before matching DNAME was still 
being cached when it should have been.  [RT #44318]
 2017-01-24 17:40:12 +11:00
Evan Hunt
4f744a027f [master] fix dig +ednsopt padding error 
4556.	[bug]		Sending an EDNS Padding option using "dig
			+ednsopt" could cause a crash in dig. [RT #44462]
 2017-01-19 23:52:41 -08:00
Tinderbox User
6084b738bc update copyright notice / whitespace 2017-01-14 23:45:36 +00:00
Mark Andrews
5dfa5221d5 4554. [bug] Remove double unlock in dns_dispatchmgr_setudp. 
[RT #44336]
 2017-01-14 13:12:00 +11:00
Tinderbox User
7b665158e9 update copyright notice / whitespace 2017-01-13 23:45:35 +00:00
Mark Andrews
b8eee0f48d make e's declaration unconditional. [RT #44324] 2017-01-13 16:10:25 +11:00
Tinderbox User
a9e8198788 update copyright notice / whitespace 2017-01-12 23:45:41 +00:00
Evan Hunt
364f064837 [master] fix function/prototype mismatch in dns_dt_send() 2017-01-12 09:22:53 -08:00
Mark Andrews
d2e1b47d4f 4553. [bug] Named could deadlock there were multiple changes to 
NSEC/NSEC3 parameters for a zone being processed at
                        the same time. [RT #42770]
 2017-01-12 14:25:45 +11:00
Mark Andrews
7b9e28f1a5 4552. [bug] Named could trigger a assertion when sending notify 
messages. [RT #44019]
 2017-01-12 14:12:05 +11:00
Tinderbox User
052551c423 update copyright notice / whitespace 2017-01-10 23:45:34 +00:00
Evan Hunt
2e703d7b61 [master] expand the flags field in dns_master_style 
4550.	[cleanup]	Increased the number of available master file
			output style flags from 32 to 64. [RT #44043]
 2017-01-10 10:40:47 -08:00
Tinderbox User
9748633ce6 update copyright notice / whitespace 2017-01-06 23:45:26 +00:00
Mark Andrews
ea7d5332a6 address memory leak [RT #44072] 2017-01-06 18:48:37 +11:00
Tinderbox User
f557aeef7c update copyright notice / whitespace 2017-01-05 23:45:24 +00:00
Evan Hunt
6d25cd0502 [master] remove inline variable declaration (broke win32) 2017-01-04 11:17:06 -08:00
Evan Hunt
8dd5224034 [master] update libdns.def 2017-01-04 10:46:33 -08:00
Evan Hunt
5804332588 [master] EDNS padding and keepalive support 
4549.	[func]		Added support for the EDNS TCP Keepalive option
			(RFC 7828). [RT #42126]

4548.	[func]		Added support for the EDNS Padding option (RFC 7830).
			[RT #42094]
 2017-01-04 09:16:30 -08:00
Evan Hunt
185d680e1a [master] add support for native pkcs11 on keyper 
4547.	[port]		Add support for --enable-native-pkcs11 on the AEP
			Keyper HSM. [RT #42463]
 2017-01-03 16:42:18 -08:00
Tinderbox User
ed07d7a8f5 update copyright notice / whitespace 2016-12-30 23:46:36 +00:00
Mark Andrews
52e2aab392 4546. [func] Extend the use of const declarations. [RT #43379] 2016-12-30 15:45:08 +11:00
Evan Hunt
b3aebb5890 [master] silence warning 2016-12-28 17:54:16 -08:00
Mark Andrews
6adf421e7e 4510. [security] Named mishandled some responses where covering RRSIG 
records are returned without the requested data
                        resulting in a assertion failure. (CVE-2016-9147)
                        [RT #43548]
 2016-12-29 11:47:19 +11:00
Mark Andrews
2c1c4b99a1 4508. [security] Named incorrectly tried to cache TKEY records which 
could trigger a assertion failure when there was
                            a class mismatch. (CVE-2016-9131) [RT #43522]
 2016-12-29 11:07:40 +11:00
Tinderbox User
4ef83f4333 update copyright notice / whitespace 2016-12-28 23:48:39 +00:00
Mark Andrews
f3bf3905c3 4517. [security] Named could mishandle authority sections that were 
missing RRSIGs triggering an assertion failure.
                        (CVE-2016-9444) [RT # 43632]

(cherry picked from commit 1df30cfd27c5a3c57fce357c54aaf6c702227d51)
 2016-12-29 10:39:51 +11:00
wpk
c4ecf87d21 [master] Remove spurious entry in lib/dns/win32/libdns.def.in 2016-12-28 19:21:36 +01:00
wpk
e910d18007 4545. [func] Make dnstap-read output more functionally usable. 
[RT #43642]

4544.	[func]		Add message/payload size to dnstap-read YAML output.
			[RT #43622]
 2016-12-28 11:57:28 +01:00
Mark Andrews
6f94747270 4543. [bug] dns_client_startupdate now delays sending the update 
request until isc_app_ctxrun has been called.
                        [RT #43976]
 2016-12-28 15:50:22 +11:00
Tinderbox User
c43f150d0a update copyright notice / whitespace 2016-12-26 23:46:20 +00:00
Mark Andrews
8e333f42ef 4540. [bug] Correctly handle ecs entries in dns_acl_isinsecure. 
[RT #43601]
 2016-12-27 09:49:02 +11:00
Mark Andrews
762c4fc5a8 4539. [bug] Referencing a nonexistant zone with rpz could lead 
to a assertion failure when configuring. [RT #43787]
 2016-12-27 08:59:07 +11:00
Mark Andrews
aceabacdb8 4538. [bug] Call dns_client_startresolve from client->task. 
[RT #43896]
 2016-12-27 07:02:33 +11:00
Mark Andrews
e17d2f98be if gen fails remove the file [RT #43949] 2016-12-23 09:19:31 +11:00
Mark Andrews
c1870d0e44 freeaddrinfo is called too early. 2016-12-15 09:38:12 +11:00
Tinderbox User
29916e6d7c update copyright notice / whitespace 2016-12-13 23:46:28 +00:00
Mark Andrews
37a8db0ba4 4535. [bug] Address race condition in setting / testing of 
DNS_REQUEST_F_SENDING. [RT #43889]
 2016-12-14 10:31:26 +11:00
Mark Andrews
def6b33bad 4534. [bug] Only set RD, RA and CD in QUERY responses. [RT #43879] 2016-12-13 16:27:18 +11:00
Mark Andrews
8ca45ba01a 4533. [bug] dns_client_update should terminate on prerequiste 
failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
                        and also on BADZONE.  [RT #43865]
 2016-12-13 15:47:03 +11:00
Mark Andrews
60cb462c56 4530. [bug] Change 4489 broke the handling of CNAME -> DNAME 
in responses resulting in SERVFAIL being returned.
                        [RT #43779]
 2016-12-09 12:50:18 +11:00
Evan Hunt
f2c7ae114a [master] silence DSCP probing error 
4529.	[cleanup]	Silence noisy log warning when DSCP probe fails
			due to firewall rules. [RT #43847]
 2016-12-08 08:44:20 -08:00
Mark Andrews
c1619b8420 4528. [bug] Only set the flag bits for the i/o we are waiting 
for on EPOLLERR or EPOLLHUP. [RT #43617]
 2016-12-08 16:59:46 +11:00
Tinderbox User
16fde7f0b3 regen master 2016-12-07 01:05:34 +00:00
Mark Andrews
1b8ce3b330 4527. [doc] Support DocBook XSL Stylesheets v1.79.1. [RT #43831] 2016-12-07 10:49:55 +11:00
Tinderbox User
8b22817d17 update copyright notice / whitespace 2016-12-05 23:46:20 +00:00
Mark Andrews
df372d967e 4524. [bug] The net zero test was broken causing IPv4 servers 
with addresses ending in .0 to be rejected. [RT #43776]
 2016-12-05 10:46:43 +11:00
Evan Hunt
b4d70a933c [master] expanded time unit test 2016-12-02 12:32:34 -08:00
Mukund Sivaraman
5c843b384d Add doc function for cfg_type_querysource4 and cfg_type_querysource6 (#43768) 2016-12-02 11:16:08 +05:30
Mark Andrews
cab871f1bc 4522. [bug] Handle big gaps in log file version numbers better. 
[RT #38688]
 2016-11-30 10:55:21 +11:00
Tinderbox User
1d7d7cdcda update copyright notice / whitespace 2016-11-29 23:46:09 +00:00
Mark Andrews
4352551d23 4520. [cleanup] Alphabetise more of the grammar when printing it 
out. Fix unbalanced indenting. [RT #43755]
 2016-11-29 15:28:28 +11:00
Mark Andrews
a611e44f9a 4519. [port] win32: handle ERROR_MORE_DATA. [RT #43534] 2016-11-29 11:28:26 +11:00
Tinderbox User
ee47b6607a update copyright notice / whitespace 2016-11-23 23:46:11 +00:00
Evan Hunt
62c85a4a52 [master] allow different time formats: local, iso8601, iso8601-utc 
4518.	[func]		The "print-time" option in the logging configuration
			can now take arguments "local", "iso8601" or
			"iso8601-utc" to indicate the format in which the
			date and time should be logged. For backward
			compatibility, "yes" is a synonym for "local".
			[RT #42585]
 2016-11-22 23:34:47 -08:00
Mark Andrews
358c6ecd26 4516. [bug] isc_socketmgr_renderjson was missing from the 
windows build. [RT #43602]
 2016-11-22 12:07:42 +11:00
Mark Andrews
02c341f282 fix ISC_FORMAT_PRINTF paramaters for socket_log 2016-11-12 02:54:51 +11:00
Mark Andrews
e49d93c22d locks are only need in OpenSSL < 1.1 2016-11-09 10:05:50 +11:00
Mark Andrews
56c6fc0dac only call dns_test_begin once 
(cherry picked from commit f13c7b01746a07bef87a386ceff93ccb2a7488a9)
 2016-11-09 10:03:21 +11:00
Mark Andrews
fed2f7e4c1 remove spurious newline [RT #43585] 2016-11-09 08:26:39 +11:00
Evan Hunt
3ac0165723 [master] typo in comment 2016-11-08 09:06:23 -08:00
Mark Andrews
aa44b4682a copyrights/whitespace 2016-11-03 12:41:00 +11:00
Tinderbox User
e37bc34b31 update copyright notice / whitespace 2016-11-02 23:46:39 +00:00
Evan Hunt
c23255316e [master] typo 2016-11-02 09:43:11 -07:00
Francis Dupont
1c5861fa7b Fixed IP_PMTUDISC_OMIT typos 2016-11-02 09:18:14 +01:00
Mark Andrews
aee76db9e3 add dns_db_getsize, dns_rdataslab_count, dns_zone_getmaxrecords, dns_zone_setmaxrecords 2016-11-02 18:49:02 +11:00
Mark Andrews
a0caf66c97 remove review fprintf 2016-11-02 18:03:33 +11:00
Mark Andrews
2b2b85c897 4507. [bug] Name could incorrectly log 'allows updates by IP 
address, which is insecure' [RT #43432]
 2016-11-02 17:53:19 +11:00
Mark Andrews
a61f252391 4505. [port] Use IP_PMTUDISC_OMIT if available. [RT #35494] 2016-11-02 17:39:52 +11:00
Mark Andrews
5f8412a4cb 4504. [security] Allow the maximum number of records in a zone to 
be specified.  This provides a control for issues
                        raised in CVE-2016-6170. [RT #42143]
 2016-11-02 17:31:27 +11:00
Evan Hunt
1b2e798976 [master] restore dropped #else block 2016-11-01 22:34:33 -07:00
Evan Hunt
6087f87afb [master] make uninstall 
4503.	[cleanup]	"make uninstall" now removes file installed by
			BIND. (This currently excludes Python files
			due to lack of support in setup.py.) [RT #42912]
 2016-11-01 19:17:07 -07:00
Mark Andrews
89286906dc 4502. [func] Report multiple and experimental options when printing 
grammar. [RT #43134]
 2016-11-02 10:04:57 +11:00
Mark Andrews
e200da5044 4500. [bug] Support modifier I64 in isc__print_printf. [RT #43526] 2016-11-02 08:46:02 +11:00
Evan Hunt
3fb62a5a4e [master] use arc4random_stir() when available 
4499.	[port]		MacOSX: silence deprecated function warning
			by using arc4random_stir() when available
			instead of arc4random_addrandom(). [RT #43503]
 2016-11-01 14:00:46 -07:00
Mark Andrews
429b543086 add more LIBRESSL_VERSION_NUMBER checks 2016-11-01 12:36:38 +11:00
Mark Andrews
3d38cfaf8a add more LIBRESSL_VERSION_NUMBER checks 2016-11-01 12:24:22 +11:00
Mark Andrews
ace79092b3 update spelling in comment 2016-11-01 10:50:58 +11:00
Tinderbox User
3bd20c8dd4 update copyright notice / whitespace 2016-10-30 23:46:10 +00:00
Mark Andrews
1fce0951ed 4497. [port] Add support for OpenSSL 1.1.0. [RT #41284] 2016-10-31 10:04:37 +11:00
Mark Andrews
42470b0b87 4496. [func] dig: add +idnout to control whether labels are 
display in punycode or not.  Requires idn support
                        to be enabled at compile time. [RT #43398]
 2016-10-28 12:05:19 +11:00
Mark Andrews
49e94dc8d4 update copyrights 2016-10-28 11:27:49 +11:00
Mark Andrews
f21645e137 4495. [bug] A isc_mutex_init call was it being checked. [RT #43391] 2016-10-28 11:14:38 +11:00
Francis Dupont
13c1dd922d Merged rt43345 libisccfg spuriously depended on libisccc 2016-10-27 14:05:54 +02:00
Mark Andrews
55b78fff62 4492. [bug] irs_resconf_load failed to initialise sortlistnxt 
causing bad writes if resolv.conf contained a
                        sortlist directive. [RT #43459]
 2016-10-27 13:17:58 +11:00
Mark Andrews
8eaf918adf 4491. [bug] Improve message emitted when testing whether sendmsg 
works with TOS/TCLASS fails. [RT #43483]
 2016-10-27 09:02:06 +11:00
Mark Andrews
3b7cb2c5b1 4490. [maint] Added AAAA (2001:500:12::d0d) for G.ROOT-SERVERS.NET. 2016-10-21 22:44:06 +11:00
Mark Andrews
bd6f27f5c3 4489. [security] It was possible to trigger assertions when processing 
a response. (CVE-2016-8864) [RT #43465]
 2016-10-21 14:55:10 +11:00
Witold Krecicki
358dfaee18 4487. [test] Make system tests work on Windows. [RT #42931] 2016-10-19 17:18:42 +02:00
Tinderbox User
0e2fe405f3 update copyright notice / whitespace 2016-10-11 23:46:16 +00:00
Mark Andrews
6bb84df34d fix typo 2016-10-11 17:05:36 +11:00
Mark Andrews
170ced60d8 don't require lctx to be non NULL 
(cherry picked from commit 3793d848bd)
 2016-10-11 17:03:28 +11:00
Mark Andrews
78aa92e5f5 use ISC_LOG_ERROR instead of ISC_LOG_WARNING for bad prefix 2016-10-11 15:06:15 +11:00
Mark Andrews
c5d4cfc8aa 4483. [func] Check prefixes in acls to make sure the address and 
prefix lengths are consistent.  Warn only in
                        BIND 9.11 and earlier. [RT #43367]
 2016-10-11 14:52:28 +11:00
Mark Andrews
61463ab7a4 4482. [bug] Address use before require check and remove extraneous 
dns_message_gettsigkey call in dns_tsig_sign.
                        [RT #43374]
 2016-10-11 14:40:29 +11:00
Evan Hunt
676ac3cc82 [master] add cfg_parse_buffer3() function with linenum parameter 
4482.	[cleanup]	Change #4455 was incomplete. [RT #43252]
 2016-10-10 17:11:21 -07:00
Tinderbox User
8657223ebc update copyright notice / whitespace 2016-10-05 23:45:39 +00:00
Mark Andrews
f77ee20a6c 4474. [bug] win32: call WSAStartup in fromtext_in_wks so that 
getprotobyname and getservbyname work.  [RT #43197]

(cherry picked from commit 82a50a619a)
 2016-10-05 12:29:23 +11:00
Mark Andrews
fe4d0fbc7c 4473. [bug] Only call fsync / _commit on regular files. [RT #43196] 2016-10-05 12:20:02 +11:00
Witold Krecicki
f78603b534 [master] Fix a minor bug in isc_netaddr_masktoprefixlen 2016-09-27 11:14:56 +02:00
Mark Andrews
b25638d9be sync with v9_11 for 9.11.0rc3 
(cherry picked from commit 47f8b47b8d)
 2016-09-26 18:49:24 +05:30
Mark Andrews
d9bc0a865e 4470. [bug] Reset message with intent parse before 
calling dns_dispatch_getnext. [RT #43229]
 2016-09-20 21:12:16 +10:00
Mark Andrews
4f713200f8 sync with 9.11.0rc2 2016-09-20 20:54:27 +10:00
Mark Andrews
df17290113 4468. [bug] Address ECS option handling issues. [RT #43191] 2016-09-14 08:22:15 +10:00
Mark Andrews
2bd0922cf9 4467. [security] It was possible to trigger a assertion when rendering 
a message. [RT #43139]
 2016-09-09 11:29:48 +10:00
Mark Andrews
61ca100b80 4466. [bug] Interface scanning didn't work on a Windows system 
without a non local IPv6 addresses. [RT #43130]
 2016-09-08 14:25:20 +10:00
Mark Andrews
58d622d96d 4462. [bug] Don't describe a returned EDNS COOKIE as "good" 
when there isn't a valid server cookie. [RT #43167]
 2016-09-08 11:34:19 +10:00
Mark Andrews
8eceb0bffe 4461. [bug] win32: not all external data was properly marked 
as external data for windows dll. [RT #43161]
 2016-09-07 14:12:11 +10:00
Mark Andrews
e7bb78349f sync w/ 9.11.0rc1 2016-08-31 12:15:55 +10:00
Mark Andrews
9d11e46714 silence unused variable 'pollstate' warning [RT #43109] 2016-08-30 14:25:41 +10:00
Mukund Sivaraman
becac651e8 Update assertions to be more correct, and also remove use of a reserved word (#43090) 
Note: this doesn't actually fix #43090.
 2016-08-29 18:52:55 +05:30
Mark Andrews
c55b572ccf 4457. [maint] Added AAAA (2001:500:a8::e) for E.ROOT-SERVERS.NET. 2016-08-29 10:15:12 +10:00
Mark Andrews
63fe88e8d8 4456. [doc] Add DOCTYPE and lang attribute to <html> tags. 
[RT #42587]
 2016-08-26 15:14:04 +10:00
Mark Andrews
8560e8486a add isc_lex_setsourceline 2016-08-26 03:15:32 +00:00
Evan Hunt
02fb764681 [master] pass source file and line to dyndb load function 
4455.	[cleanup]	Allow dyndb modules to correctly log the filename
			and line number when processing configuration text
			from named.conf. [RT #43050]
 2016-08-25 18:08:26 -07:00
Tinderbox User
fba207e51a update copyright notice / whitespace 2016-08-25 23:45:37 +00:00
Mark Andrews
7535dd93a1 rename ioqversion -> generation; move increment before fstrm_iothr_destroy 2016-08-24 22:06:00 -04:00
Mark Andrews
726cddb564 4454. [bug] 'rndc dnstap -reopen' had a race issue. [RT #43089] 2016-08-25 10:03:22 +10:00
Mark Andrews
f431bf02a6 4453. [bug] Prefetching of DS records failed to update their 
RRSIGs. [RT #42865]
 2016-08-25 09:51:31 +10:00
Mark Andrews
888dc0fb4f update copyrights / whitespace 2016-08-23 09:48:35 +10:00
Francis Dupont
76a3f42977 Added print.h include 2016-08-22 14:25:10 +02:00
Francis Dupont
fc41d120f0 Merged rt43077 (new RSA verify unit test) 2016-08-22 14:10:21 +02:00
Francis Dupont
2f08617da9 Merged rt43076 (log PKCS#11 provider load failure) 2016-08-22 13:59:53 +02:00
Tinderbox User
34da98377c update copyright notice / whitespace 2016-08-19 01:23:21 +00:00
Evan Hunt
6d2963e4d4 [master] clarify README.site 2016-08-18 17:52:49 -07:00
Mark Andrews
8ee6f289d8 4450. [port] Provide more nuanced HSM support which better matches 
the specific PKCS11 providers capabilities. [RT #42458]
 2016-08-19 08:02:51 +10:00
Mark Andrews
dec17fb662 install isc/errno.h 2016-08-18 22:12:14 +10:00
Mark Andrews
6e4788dd12 4448. [bug] win32: ::1 was not being found when iterating 
interfaces. [RT #42993]
 2016-08-18 21:58:13 +10:00
Mark Andrews
81ace51190 add dns_dt_getstats 2016-08-18 12:21:28 +10:00
Mark Andrews
934837913f 4447. [tuning] Allow the fstrm_iothr_init() options to be set using 
named.conf to control how dnstap manages the data
                        flow. [RT #42974]
 2016-08-18 11:16:06 +10:00
Evan Hunt
46e7763d19 [master] check for STALE rdatasets in cache search 
4446.	[bug]		The cache_find() and _findrdataset() functions
			could find rdatasets that had been marked stale.
			[RT #42853]
 2016-08-17 11:44:24 -07:00
Evan Hunt
3390d74e33 [master] fix dyndb issues; isc_errno_toresult() 
4445.	[cleanup]	isc_errno_toresult() can now be used to call the
			formerly private function isc__errno2result().
			[RT #43050]

4444.	[bug]		Fixed some issues related to dyndb: A bug caused
			braces to be omitted when passing configuration text
			from named.conf to a dyndb driver, and there was a
			use-after-free in the sample dyndb driver. [RT #43050]

Patch for dyndb driver submitted by Petr Spacek at Red Hat.
 2016-08-17 11:37:57 -07:00
Mark Andrews
4cb2ad343f use explict casts to silence truncation warnings 2016-08-16 12:29:09 +10:00
Mark Andrews
7872d4d1c0 4443. [func] Set TCP_MAXSEG in addition to IPV6_USE_MIN_MTU on 
TCP sockets. [RT #42864]
 2016-08-16 07:42:25 +10:00
Mark Andrews
42a14518ac don't return void 2016-08-16 07:33:25 +10:00
Francis Dupont
fcb2309a9a Fixed trivial typo 2016-08-15 17:13:13 +02:00
Mukund Sivaraman
131307a70e Fix RPZ CIDR tree insertion bug (#43035) 2016-08-15 14:17:02 +05:30
Tinderbox User
2799701c32 update copyright notice / whitespace 2016-08-12 23:45:28 +00:00
Mark Andrews
a977bc4c8e 4440. [func] Enable TCP fast open support when available on the 
server side. [RT #42866]
 2016-08-12 15:31:33 +10:00
Mark Andrews
c7e021e2e6 4439. [bug] Address race conditions getting ownernames of nodes. 
[RT #43005]
 2016-08-12 14:08:48 +10:00
Mark Andrews
d260d5ef4c add isc_ratelimiter_setpushpop 2016-08-12 12:39:25 +10:00
Mark Andrews
5734cd3943 4438. [func] Use LIFO rather than FIFO when processing startup 
notify and refresh queries. [RT #42825]
 2016-08-12 11:33:48 +10:00
Mark Andrews
78e31dd187 4437. [func] Minimal-responses now has two additional modes 
no-auth and no-auth-recursive which suppress
                        adding the NS records to the authority section
                        as well as the associated address records for the
                        nameservers. [RT #42005]
 2016-08-12 10:48:51 +10:00
Mark Andrews
aaeed646fe Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9 2016-08-12 10:06:42 +10:00
Mark Andrews
bb900e62bf 4436. [func] Return TLSA records as additional data for MX and SRV 
lookups. [RT #42894]
 2016-08-12 10:03:23 +10:00
Tinderbox User
e29263c656 update copyright notice / whitespace 2016-08-11 23:45:29 +00:00
Mark Andrews
31ffec1541 4435. [tuning] Only set IPV6_USE_MIN_MTU for UDP when the message 
will not fit into a single IPv4 encapsulated IPv6
                        UDP packet when transmitted over a Ethernet link.
                        [RT #42871]
 2016-08-12 09:41:59 +10:00
Evan Hunt
d06aed77ff [master] remove spurious newline in EDNS EXPIRE logging 
Patch submitted by Tony Finch (dot@dotat.at).
 2016-08-10 09:25:48 -07:00
Mark Andrews
632e67baa6 4431. [bug] named-checkconf now checks the rate-limit clause. 
[RT #42970]
 2016-08-08 23:52:40 +10:00
Mark Andrews
c1915935cf 4429. [bug] Address potential use after free on fclose() error. 
[RT #42976]
 2016-08-08 09:50:34 +10:00
Mark Andrews
c4153b554d 4428. [bug] The "test dispatch getnext" unit test could fail 
in a threaded build. [RT #42979]
 2016-08-08 09:35:17 +10:00
Mark Andrews
969e4ba50c sync with 9.11.0.b3 2016-07-30 07:14:31 +10:00
Tinderbox User
3e6b0b4931 update copyright notice / whitespace 2016-07-22 23:46:17 +00:00
Mark Andrews
6655b7db13 add dns_keytable_forall 2016-07-22 20:33:51 +10:00
Mark Andrews
f20179857a 4424. [experimental] Named now sends _ta-XXXX.<trust-anchor>/NULL queries 
to provide feedback to the trust-anchor administrators
                        about how key rollovers are progressing as per
                        draft-ietf-dnsop-edns-key-tag-02.  This can be
                        disabled using 'trust-anchor-telemetry no;'.
                        [RT #40583]
 2016-07-22 20:02:17 +10:00
Evan Hunt
45cf2311b9 [master] add aaaa for b.root-servers.net 
4423.	[maint]		Added missing IPv6 address 2001:500:84::b for
			B.ROOT-SERVERS.NET. [RT #42898]

Patch submitted by Xoze Vazquez Perez (xose.vazquez@gmail.com).
 2016-07-21 20:01:23 -07:00
Tinderbox User
2bc4d454e1 update copyright notice / whitespace 2016-07-21 23:46:03 +00:00
Evan Hunt
eca74c52c1 [master] store "addzone" zone config in a NZD database 
4421.	[func]		When built with LMDB (Lightning Memory-mapped
			Database), named will now use a database to store
			the configuration for zones added by "rndc addzone"
			instead of using a flat NZF file. This improves
			performance of "rndc delzone" and "rndc modzone"
			significantly. Existing NZF files will
			automatically by converted to NZD databases.
			To view the contents of an NZD or to roll back to
			NZF format, use "named-nzd2nzf". To disable
                        this feature, use "configure --without-lmdb".
                        [RT #39837]
 2016-07-21 11:13:37 -07:00
Witold Krecicki
e4d4de075a 4419. [bug] Don't cause undefined result if the label of an 
entry in catalog zone is changed. [RT #42708]
 2016-07-21 13:08:50 +02:00
Witold Krecicki
2eff13a562 4418. [bug] Fix a compiler warning in GSSAPI code. [RT #42879] 2016-07-21 12:15:55 +02:00
Tinderbox User
2ac08fab22 regen master 2016-07-21 07:34:19 +00:00
Mark Andrews
30e4fbdfb5 consolidate copyrights 2016-07-21 17:24:07 +10:00
Tinderbox User
6807a2dc3c regen master 2016-07-21 07:11:01 +00:00
Mark Andrews
813e9f7ee2 copyright 2016-07-21 17:00:44 +10:00
Evan Hunt
ad2611f9af [master] fix isc_atomic_xadd() on MIPS 
4414.	[bug]		Corrected a bug in the MIPS implementation of
			isc_atomic_xadd(). [RT #41965]

Submitted by Lamont Jones (lamont@debian.org). Closes Debian issue #406409.
 2016-07-19 11:10:43 -07:00
Mark Andrews
203b6934f4 sync w/ 9.11.0b2 2016-07-14 15:13:57 +10:00
Mark Andrews
63e58ad048 4413. [bug] GSSAPI negotiation could fail if GSS_S_CONTINUE_NEEDED 
was returned. [RT #42733]
 2016-07-14 15:06:28 +10:00
Mark Andrews
fef0080f14 Windows doesn't like LLU use ULL instead 2016-07-14 11:15:46 +10:00
Mukund Sivaraman
e65cd99461 Some general cleanup (#42827) 2016-07-13 14:15:22 +05:30
Mukund Sivaraman
4116177ac4 Make fixes for GCC 6 (#42721) 2016-07-13 13:55:50 +05:30
Evan Hunt
ffa622d7a3 [master] rndc dnstap -roll 
4411.	[func]		"rndc dnstap -roll" automatically rolls the
			dnstap output file; the previous version is
			saved with ".0" suffix, and earlier versions
			with ".1" and so on. An optional numeric argument
			indicates how many prior files to save. [RT #42830]
 2016-07-13 01:12:47 -07:00
Mark Andrews
a2101037d9 4410. [bug] Address use after free and memory leak with dnstap. 
[RT #42746]
 2016-07-13 16:56:11 +10:00
Tinderbox User
3e0b34d0ac update copyright notice / whitespace 2016-07-11 23:46:33 +00:00
Mark Andrews
557c7221fd 4409. [bug] DNS64 should exlude mapped addresses by default when 
a exclude acl is not defined. [RT #42810]
 2016-07-11 14:11:34 +10:00
Mark Andrews
ec5e01747a 4408. [func] Continue waiting for expected response when we the 
response we get does not match the request. [RT #41026]
 2016-07-11 13:36:16 +10:00
Mukund Sivaraman
27038b159b Use GCC builtin for clz in RPZ lookup code (#42818) 2016-07-10 19:47:37 +05:30
Mark Andrews
d811a7d9ef 4405. [bug] Change 4342 introduced a regression where you could 
not remove a delegation in a NSEC3 signed zone using
                        OPTOUT via nsupdate. [RT #42702]
 2016-07-06 10:13:15 +10:00
Evan Hunt
44cb1a4859 [master] remove spurious license text 2016-07-05 15:41:09 -07:00
Evan Hunt
30ca620976 [master] clarify some comments 2016-07-05 10:54:56 -07:00
Mark Andrews
96987fd6f7 add 9.11.0b1 release marker to master 2016-07-05 08:19:59 +10:00
Mark Andrews
700e08fcc4 #include <stdlib.h> 2016-06-29 11:38:45 +10:00
Mark Andrews
ecfa005085 4403. [bug] Rename variables and arguments that shadow: basename, 
clone and gai_error.
 2016-06-28 21:25:30 -04:00
Tinderbox User
33d0a7767d regen master 2016-06-27 05:29:38 +00:00
Mark Andrews
0c27b3fe77 4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00
Mark Andrews
980c504b30 fix null pointer comparisons 2016-06-26 17:23:58 +10:00
Mark Andrews
8927a982bd update copyrights / whitespace 2016-06-24 16:23:26 +10:00
Mark Andrews
9f5443280f 4397. [bug] Update Windows python support. [RT #42538] 2016-06-24 16:04:10 +10:00
Mark Andrews
c49e944317 add dns_dt_reopen 2016-06-24 11:20:10 +10:00
Mark Andrews
7d262a3647 4394. [func] Add rndc command "dnstap-reopen" to close and 
reopen dnstap output filed. [RT #41803]
 2016-06-24 09:37:04 +10:00
Mark Andrews
5ba7394a4f complete the NULL pointer fixes 2016-06-23 12:50:47 +10:00
Mark Andrews
96d49a84ff 4493. [bug] Address potential NULL pointer dereferences in 
dnstap code.
 2016-06-23 12:18:03 +10:00
Tinderbox User
601645a1e8 update copyright notice / whitespace 2016-06-22 23:45:21 +00:00
Mark Andrews
10966da999 4402. [func] Collect statistics for RSSAC02v3 traffic-volume, 
traffic-sizes and rcode-volume reporting. [RT #41475]
 2016-06-23 08:44:54 +10:00
Francis Dupont
393c978065 Added missing catz/ipkeylist symbols to libdns.def.in 2016-06-22 16:31:14 +02:00
Witold Krecicki
4681ab1fc2 4387. [test] Rewritten test suite for catalog zones. [RT #42676] 
4386.	[func]		Support for master entries with TSIG keys in catalog
			zones. [RT #42577]
 2016-06-22 10:50:09 +02:00
Mark Andrews
b56bd9b59f 4387. [bug] Change 4336 was not complete leading to SERVFAIL 
being return as NS records expired. [RT #42683]
 2016-06-22 15:26:38 +10:00
Mark Andrews
a3a12fa575 seed is not always used rt42703 2016-06-22 11:12:15 +10:00
Tinderbox User
9f76893bbc update copyright notice / whitespace 2016-06-20 23:45:20 +00:00
Mark Andrews
2a26c17af9 add isc_buffer_dup and isc_buffer_putdecint 2016-06-21 00:28:25 +10:00
Mark Andrews
278f78a45b use ISC_PRINT_QUADFORMAT 2016-06-21 00:25:52 +10:00
Witold Krecicki
3f06b888ae 4385. [func] Add support for allow-query and allow-transfer ACLs 
to catalog zones. [RT #42578]
 2016-06-20 13:39:44 +02:00
Mark Andrews
4c3be616f9 Revert "4384. [bug] isc_buffer_reallocate returns wrong result when passed" 
This reverts commit 01a0206c40.
 2016-06-16 21:15:56 +10:00
Mark Andrews
01a0206c40 4384. [bug] isc_buffer_reallocate returns wrong result when passed 
a smaller length than what is already allocated.
                        [RT #42612]
 2016-06-16 11:37:43 +10:00
Francis Dupont
e211ffb1f1 Check isc_timer_reset return 2016-06-04 09:08:48 +02:00
Francis Dupont
aee6412db2 Address CID 1362495: tbuf covered by an INSIST so never NULL 2016-06-04 08:49:10 +02:00
Evan Hunt
8a5140ab3f [master] type mismatch 2016-06-02 10:24:39 -07:00
Tinderbox User
1c6d1ca335 update copyright notice / whitespace 2016-06-01 23:45:30 +00:00
Evan Hunt
1a7fb9fb50 [master] ipkeylist.h was in the wrong makefile 2016-06-01 16:12:11 -07:00
Witold Krecicki
ce2dc26bc5 [master] disable isc_ht_32 unit test as it doesn't make sense 2016-06-01 15:19:35 +02:00
Francis Dupont
3933e5c763 Merged rt42563 (ht.c fixes) 2016-06-01 14:49:01 +02:00
Francis Dupont
2020043d8c Index must be a size_t vs 32 bits 2016-06-01 12:01:06 +02:00
Francis Dupont
2a8aa10492 Merged rt42505 (misc DNSSEC bugs) 2016-06-01 09:18:49 +02:00
Mark Andrews
b621958613 cast to size_t [RT #42537] 2016-06-01 13:54:09 +10:00
Evan Hunt
314cb50d1a [master] add header files to Makefile 2016-05-31 19:01:29 -07:00
Evan Hunt
68b22fa9d7 [master] remove isc_ht_walk from libisc.def 2016-05-31 18:54:22 -07:00
Tinderbox User
7336a12983 update copyright notice / whitespace 2016-05-31 23:45:29 +00:00
Witold Krecicki
e5e402efa7 Merge branch 'master' of repo.isc.org:/proj/git/prod/bind9 2016-06-01 00:30:32 +02:00
Witold Krecicki
b9a56a7f10 [master] update API 2016-06-01 00:29:48 +02:00
Mark Andrews
bba8eb9426 add isc_ht_iter_currentkey and isc_ht_iter_delcurrent_next 2016-06-01 08:28:00 +10:00
Witold Krecicki
1c1ab955ed Catalog zones: use iterators instead of isc_ht_walk [RT #42529] 2016-05-31 23:01:53 +02:00
Evan Hunt
3d0b7d5cc3 [master] zone-directory option for catalog zones 
4380.	[experimental]	Added a "zone-directory" option to "catalog-zones"
			syntax, allowing local masterfiles for slaves
			that are provisioned by catalog zones to be stored
			in a directory other than the server's working
			directory. [RT #42527]
 2016-05-31 10:36:27 -07:00
Mark Andrews
3d1b4bf278 add isc_sha224_data, isc_sha224_end, v isc_sha384_end, isc_sha512_data and isc_sha512_end 2016-05-31 14:29:55 +10:00
Tinderbox User
106368eb50 update copyright notice / whitespace 2016-05-30 23:45:27 +00:00
Mark Andrews
d4609e9eea Address errors found by Coverity in catalog zones implementation. [RT #42532] 2016-05-31 08:12:51 +10:00
Francis Dupont
affa9c9825 Fixed WIN32 (VS 2010 32 bits) compiling problems 2016-05-30 17:10:08 +02:00
Tinderbox User
262bebd081 update copyright notice / whitespace 2016-05-27 23:45:23 +00:00
Witold Krecicki
57651e2c85 [master] fixed bug in isc_ht_iter_next 2016-05-27 19:57:27 +02:00
Mark Andrews
9268297baa 4379. [bug] An INSIST could be triggered if a zone contains 
RRSIG records with expiry fields that loop
                        using serial number arithmetic. [RT #40571]
 2016-05-27 15:24:30 +10:00
Evan Hunt
531074d11a [master] fixed some test failures 2016-05-26 21:29:54 -07:00
Evan Hunt
7dbcb6fb90 [master] #include <string.h> 2016-05-26 19:21:28 -07:00
Evan Hunt
6c2a76b3e2 [master] copyrights, win32 definitions 2016-05-26 12:36:17 -07:00
Witold Krecicki
7a00d69909 4376. [experimental] Added support for Catalog Zones, a new method for 
provisioning secondary servers in which a list of
                        zones to be served is stored in a DNS zone and can
                        be propagated to slaves via AXFR/IXFR. [RT #41581]

4375.   [func]          Add support for automatic reallocation of isc_buffer
                        to isc_buffer_put* functions. [RT #42394]
 2016-05-26 21:23:19 +02:00
Mark Andrews
ede52ba98d 4373. [bug] Address undefined behaviour in getaddrinfo. [RT #42479] 2016-05-26 12:05:37 +10:00
Mark Andrews
a0f5a5e3c5 4372. [bug] Address undefined behaviour in libt_api. [RT #42480] 2016-05-26 11:57:16 +10:00
Evan Hunt
0cbe448914 [master] minimal-any 
4371.	[func]		New "minimal-any" option reduces the size of UDP
			responses for qtype ANY by returning a single
			arbitrarily selected RRset instead of all RRsets.
			Thanks to Tony Finch. [RT #41615]
 2016-05-25 13:54:34 -07:00
Mukund Sivaraman
7472cd350f Don't use %z format specifier that caused crash with rndc stats on some Visual Studio builds 2016-05-19 19:17:47 +05:30
Mark Andrews
049a49c295 4367. [bug] Remove unnecessary assignment of loadtime in 
zone_touched. [RT #42440]
 2016-05-18 12:39:50 +10:00
Mark Andrews
26f652d387 simplify 2016-05-18 10:40:20 +10:00
Mark Andrews
75167fb746 silence compiler warning 2016-05-17 17:33:59 +10:00
Mark Andrews
4ba89a0cfb 9.11.0a2 2016-05-17 13:33:55 +10:00
Mark Andrews
e2047969de 4366. [bug] Address race condition when updating rbtnode bit 
fields. [RT #42379]
 2016-05-17 13:13:45 +10:00
Tinderbox User
05cf9e3285 update copyright notice / whitespace 2016-05-11 23:45:23 +00:00
Mark Andrews
f9ce106cd4 add timestamp target 2016-05-12 09:19:34 +10:00
Tinderbox User
f89adb2c2a update copyright notice / whitespace 2016-05-05 23:45:48 +00:00
Evan Hunt
28053af04c [master] nanosecond-accurate file modification times 
4361.	[cleanup]	Where supported, file modification times returned
			by isc_file_getmodtime() are now accurate to the
			nanosecond. [RT #41968]
 2016-05-05 12:22:26 -07:00
Mark Andrews
5ac427050f 4360. [bug] Silence spurious 'bad key type' message when there is 
a existing TSIG key. [RT #42195]
 2016-05-05 22:27:08 +10:00
Mark Andrews
594d15df25 4359. [bug] Inherited 'also-notify' lists were not being checked 
by named-checkconf. [RT #42174]
 2016-05-05 21:59:09 +10:00
Mark Andrews
374dacca76 add isc_httpd_setfinishhook 2016-05-05 20:51:44 +10:00
Witold Krecicki
19d80ce584 4358. [test] Added American Fuzzy Lop harness that allows 
feeding fuzzed packets into BIND.
			[RT #41723]
 2016-05-05 11:49:38 +02:00
Mark Andrews
08e36aa5a5 4356. [func] Add the ability to specify whether to wait for 
nameserver addresses to be looked up or not to
                        rpz with a new modifying directive 'nsip-wait-recurse'.                         [RT #35009]
 2016-05-05 16:29:05 +10:00
Mark Andrews
402c63495c 4354. [bug] Check that the received HMAC length matches the 
expected length prior to check the contents on the
                        control channel.  This prevents a OOB read error.
                        [RT #42215]
 2016-05-05 14:19:37 +10:00
Evan Hunt
699f790c49 [master] update pkcs11 headers 
4353.	[cleanup]	Update PKCS#11 header files. [RT #42175]
 2016-05-04 15:55:03 -07:00
Tinderbox User
adb31d0b10 update copyright notice / whitespace 2016-04-15 04:53:03 +00:00
Evan Hunt
91499fdb48 [master] fix build error on x86_64 solaris 2016-04-14 19:23:23 -07:00
Evan Hunt
3cd204c4a4 [master] fixed revoked key regression 
4436.	[bug]		Fixed a regression introduced in change #4337 which
			caused signed domains with revoked KSKs to fail
			validation. [RT #42147]
 2016-04-14 18:52:52 -07:00
Tinderbox User
6ad05c5f46 update copyright notice / whitespace 2016-04-13 23:45:17 +00:00
Evan Hunt
5fdf476b32 [master] fix dns_dtmsg_t type redefinition 2016-04-13 10:12:21 -07:00
Tinderbox User
854a865e16 update copyright notice / whitespace 2016-04-05 23:45:16 +00:00
Mark Andrews
7660b370c3 4344. [port] Address openssl version differences. [RT #42059] 2016-04-06 04:31:06 +10:00
Mark Andrews
651be63a11 4343. [bug] dns_dnssec_syncupdate misdeclared in <dns/dnssec.h>. 
[RT #42090]
 2016-04-06 03:31:49 +10:00
Mark Andrews
dd185fb371 attempt to create a node at the flushtree name 2016-03-27 08:25:44 +11:00
Tinderbox User
c19f42a378 update copyright notice / whitespace 2016-03-24 23:45:21 +00:00
Evan Hunt
cb05fb63be [master] windows: copy missing HTML man pages into zips 2016-03-24 12:26:40 -07:00
Mark Andrews
f442a31fb3 add meminfo.h to list of header files to install 2016-03-24 15:12:14 +11:00
Mark Andrews
ba343be1a1 add nta.h to list of header files to install 2016-03-24 15:10:45 +11:00
Mark Andrews
6214c3c93a 4341. [bug] 'rndc flushtree' could fail to clean the tree if there 
wasn't a node at the specified name. [RT #41846]
 2016-03-24 11:31:25 +11:00
Tinderbox User
a63461cc4b update copyright notice / whitespace 2016-03-23 23:45:22 +00:00
Evan Hunt
bca79675ee [master] fix x64 NOP, silence set but not used warning 2016-03-23 12:34:56 -07:00
Evan Hunt
05b7b63f17 [master] more ECS handling fixes 2016-03-23 09:59:42 -07:00
Evan Hunt
395e6865d5 [master] fix ECS with family==0 
4341.	[bug]		Correct the handling of ECS options with
			address family 0. [RT #41377]
 2016-03-23 08:54:46 -07:00
Evan Hunt
11a3f0a049 [master] disallow out-of-range descriptors in isc_socket_fdwatchcreate() 2016-03-22 18:05:32 -07:00
Evan Hunt
cf24cbd837 [master] adaptive RW locks 
3440.	[performance]	Implement adaptive read-write locks, reducing the
			overhead of locks that are only held briefly.
			[RT #37329]
 2016-03-22 17:59:21 -07:00
Evan Hunt
741cf3d24e [master] remove obsolete unit test 2016-03-22 17:45:58 -07:00
Tinderbox User
2b9cf58c57 update copyright notice / whitespace 2016-03-22 23:45:15 +00:00
Mark Andrews
558278974e 4338. [bug] Reimplement change 4324 as it wasn't properly doing 
all the required book keeping. [RT #41941]
 2016-03-23 10:38:05 +11:00
Evan Hunt
132a571179 [master] fix mkeys TTL 0 issue 
4337.	[bug]		The previous change exposed a latent flaw in
			key refresh queries for managed-keys when
			a cached DNSKEY had TTL 0. [RT #41986]
 2016-03-22 12:12:32 -07:00
Tinderbox User
27def92931 update copyright notice / whitespace 2016-03-21 23:45:22 +00:00
Mark Andrews
0993cd5f22 4336. [bug] Don't emit records with zero ttl unless the records 
were learnt with a zero ttl. [RT #41687]
 2016-03-21 13:22:21 +11:00
Mark Andrews
b8dcc13bc5 4335. [bug] zone->view could be detached too early. [RT #41942] 2016-03-21 12:02:00 +11:00
Tinderbox User
8e4d56d45d update copyright notice / whitespace 2016-03-11 23:45:20 +00:00
Mark Andrews
1add4a7939 4333. [maint] L.ROOT-SERVERS.NET is now 199.7.83.42 and 
2001:500:9f::42.
 2016-03-11 20:36:48 +11:00
Tinderbox User
4a7004f3ce update copyright notice / whitespace 2016-03-10 23:45:16 +00:00
Mark Andrews
7c52595464 4331. [func] When loading managed signed zones detect if the 
RRSIG's inception time is in the future and regenerate
                        the RRSIG immediately. [RT #41808]
 2016-03-10 17:01:08 +11:00
Mark Andrews
33a4294f44 4330. [protocol] Identify the PAD option as "PAD" when printing out 
a message.
 2016-03-10 16:53:06 +11:00
Tinderbox User
b3fb6947aa update copyright notice / whitespace 2016-03-09 23:45:20 +00:00
Mark Andrews
31a1cbf101 silence compiler false positive 2016-03-10 08:43:28 +11:00
Mark Andrews
0c7a7793a5 silence compiler warning 
(cherry picked from commit fa8b66c5f4e6589c6574be0d42b94fbd3084326e)
 2016-03-09 15:02:43 +11:00
Mark Andrews
f5e7794860 silence compiler warning 
(cherry picked from commit 37a931d774)
 2016-03-09 14:43:47 +11:00
Mark Andrews
0e5c8a65a2 silence compiler warning 2016-03-09 12:37:49 +11:00
Mark Andrews
93ca5ee4c4 update copyrights 2016-03-08 16:21:19 +11:00
Mark Andrews
56d1de40e4 add dns_name_isrfc1918 and dns_name_isula 2016-03-08 12:00:27 +11:00
Tinderbox User
0a3a65e3cc update copyright notice / whitespace 2016-03-07 23:45:22 +00:00
Mark Andrews
d6357f09aa 4329. [func] Warn about a common misconfiguration when forwarding 
RFC 1918 zones. [RT #41441]
 2016-03-08 10:11:23 +11:00
Mukund Sivaraman
8dbf9ceb8c Repack dns_rbtnode struct to gain some space (reduce packing holes) (#41854) 2016-03-07 16:11:37 +05:30
Evan Hunt
868b3166b8 [master] silence coverity warning 2016-03-05 19:50:42 -08:00
Mukund Sivaraman
f5cb0dd58b Fix rbt_remove_empty unittest 
(reviewed by Evan on Jabber)
 2016-03-05 13:53:56 +05:30
Tinderbox User
220ba6da87 update copyright notice / whitespace 2016-03-04 23:45:23 +00:00
Mukund Sivaraman
080b51f164 Revert DEFAULT_NODE_LOCK_COUNT back to 7 (#40997) 2016-03-04 16:28:22 +05:30
Mukund Sivaraman
2457a4b245 Check if threads support is available 2016-03-04 14:05:22 +05:30
Mukund Sivaraman
051197362b Use libisc thread functions 2016-03-04 13:58:39 +05:30
Mukund Sivaraman
59328c7674 Add dns_name_fromwire() benchmark 2016-03-04 13:43:45 +05:30
Mukund Sivaraman
275265ab27 Log query and depth counters during fetches when querytrace is enabled (#41787) 2016-03-04 13:25:37 +05:30
Evan Hunt
d4ed29b019 [rt41656] line length 
(cherry picked from commit 6957e9451cc7bf89d44716dfe4266281867e00e5)
 2016-03-04 13:01:54 +05:30
Mark Andrews
8398f00156 4326. [protocol] Add support for AVC. [RT #41819 2016-03-04 18:11:41 +11:00
Mukund Sivaraman
9da98335c1 Code cleanups (#41656) 2016-03-04 12:18:17 +05:30
Evan Hunt
44c86318ed [master] recursively clean empty interior nodes when deleting database records 
4324.	[bug]		When deleting records from a zone database, interior
			nodes could be left empty but not deleted, damaging
			search performance afterward. [RT #40997]
 2016-03-03 21:13:42 -08:00
Tinderbox User
f254ab049e update copyright notice / whitespace 2016-03-02 23:45:17 +00:00
Mark Andrews
ce7216c40a 4223. [bug] Improve HTTP header processing on statschannel. 
[RT #41674]
 2016-03-02 11:04:59 +11:00
Mark Andrews
c7aae79b62 silence may be used when unset false positive 2016-02-29 11:24:15 +11:00
Mark Andrews
2de89ee9de Part 2 of: 
4319.   [security]      Fix resolver assertion failure due to improper
                        DNAME handling when parsing fetch reply messages.
                        (CVE-2016-1286) [RT #41753]
 2016-02-29 07:16:48 +11:00
Mark Andrews
455c0848f8 4322. [security] Duplicate EDNS COOKIE options in a response could 
trigger an assertion failure. (CVE-2016-2088)
                        [RT #41809]
 2016-02-27 11:23:50 +11:00
Mark Andrews
f9da4a8e54 4321. [bug] Zones using mapped files containing out-of-zone data 
could return SERVFAIL instead of the expected NODATA
                        or NXDOMAIN results. [RT #41596]
 2016-02-24 11:13:24 +11:00
Tinderbox User
62735fcde3 update copyright notice / whitespace 2016-02-23 23:45:35 +00:00
Mukund Sivaraman
293a9e9978 Fix allocation for "none" ACL that caused assertion failure (#41745) 2016-02-23 12:51:34 +05:30
Mukund Sivaraman
5995fec51c Fix resolver assertion failure due to improper DNAME handling (CVE-2016-1286) (#41753) 2016-02-22 12:22:43 +05:30
Tinderbox User
53ba272721 update copyright notice / whitespace 2016-02-18 23:45:32 +00:00
Mark Andrews
a2b15b3305 4318. [security] Malformed control messages can trigger assertions 
in named and rndc. (CVE-2016-1285) [RT #41666]
 2016-02-18 12:11:27 +11:00
Mukund Sivaraman
5ac25749e7 Add missing win32 defs 2016-02-12 14:54:52 +05:30
Evan Hunt
93c211afc9 [master] fixed a regression in dyndb due to change #4277 2016-02-12 00:22:45 -08:00
Mark Andrews
d372f426ca 4317. [bug] Age all unused servers on fetch timeout. [RT #41597] 2016-02-12 12:32:58 +11:00
Mark Andrews
b91d11bfcc copyrights / whitespace 2016-02-11 10:44:21 +11:00
Mukund Sivaraman
79a55d4f4d Add option to tools to print RRs in unknown presentation format (#41595) 2016-02-09 15:39:02 +05:30
Mukund Sivaraman
9267cc8e83 Remove nodechain from dns_rbt_addnode() (#41246) 2016-02-08 15:10:50 +05:30
Mukund Sivaraman
614ce1b65f Add tests for hash function, and comment dns_rbt_addnode() (#41179) 
No CHANGES entry necessary.
 2016-02-08 14:52:08 +05:30
Mark Andrews
8d00c5ab2c 4312. [bug] dig's unknown dns and edns flags (MBZ value) logging 
was not consistent. [RT #41600]
 2016-02-02 14:19:22 +11:00
Tinderbox User
8b074bef0c update copyright notice / whitespace 2016-02-01 23:45:25 +00:00
Mukund Sivaraman
d1dbf6b20f Use __built_expect() where available (#41411) 2016-02-01 08:59:49 +05:30
Tinderbox User
3947e3625a update copyright notice / whitespace 2016-01-31 23:45:23 +00:00
Evan Hunt
3fe17d62e3 [master] remove "none" from log messages when parsing global config 
4309.	[cleanup]	Remove the spurious "none" filename from log messages
			when processing built-in configuration. [RT #41594]
 2016-01-31 10:17:13 -08:00
Evan Hunt
30370d905e [master] removed /Gy- from VS project files 
4302.	[port]		win32: fixed a build error in VS 2015. [RT #41426]
 2016-01-27 15:27:57 -08:00
Evan Hunt
7f7eb969f5 [master] print syncpublish and syncdelete in key file comments 2016-01-25 08:03:07 -08:00
Tinderbox User
7d4f45f6bd update copyright notice / whitespace 2016-01-21 23:45:23 +00:00
Mark Andrews
1d383fd4b2 4299. [bug] Check that exactly totallen bytes are read when 
reading a RRset from raw files in both single read
                        and incremental modes. [RT #41402]
 2016-01-21 15:33:08 +11:00
Mark Andrews
3ecc17d551 4298. [bug] dns_rpz_add errors in loadzone were not being 
propogated up the call stack. [RT #41425]
 2016-01-21 14:43:04 +11:00
Evan Hunt
2879ee2c72 [master] fix unchecked result 
4295.	[bug]		An unchecked result in dns_message_pseudosectiontotext()
			could allow incorrect text formatting of EDNS EXPIRE
			options. [RT #41437]
 2016-01-20 17:19:19 -08:00
Mark Andrews
73fbd4c9d3 4293. [bug] Address memory leak on priming query creation failure. 
[RT #41512]
 2016-01-20 16:38:11 +11:00
Tinderbox User
16201b15a6 update copyright notice / whitespace 2016-01-17 23:45:21 +00:00
Evan Hunt
b4ccec331d [master] added sockaddr.h 
4291.	[cleanup]	Added a required include to dns/forward.h. [RT #41474]
 2016-01-14 10:27:09 -08:00
Francis Dupont
bdd9d37c96 Fixed small bugs in WIN32 legacy 2016-01-13 15:22:52 +01:00
Evan Hunt
bb5d14d724 [master] millisecond granularity for statschannel timers 
4290.	[func]		The timers returned by the statistics channel
			(indicating current time, server boot time, and
			most recent reconfiguration time) are now reported
			with millisecond accuracy. [RT #40082]
 2016-01-07 15:34:58 -08:00
Tinderbox User
feb1ccdaf1 update copyright notice / whitespace 2016-01-05 23:45:26 +00:00
Evan Hunt
0302fcbf7e [master] check addrlen/scopelen fit within family address length 2016-01-05 13:39:44 -08:00
Evan Hunt
1330ae5fc2 [master] check ECS address length 2016-01-05 12:17:54 -08:00
Francis Dupont
f2453ece5b Silent WIN64 warnings 2016-01-05 18:37:31 +01:00
Evan Hunt
c8b968f414 [master] fix use after free on xfr timeout 
4289.	[bug]		The server could crash due to memory being used
			after it was freed if a zone transfer timed out.
			[RT #41297]
 2016-01-04 22:05:23 -08:00
Evan Hunt
41494939b6 [master] fixed bogus server regression 
4288.	[bug]		Fixed a regression in resolver.c:possibly_mark()
			which caused known-bogus servers to be queried
			anyway. [RT #41321]
 2016-01-04 15:47:16 -08:00
Francis Dupont
7e9140c6b1 Updated copyrights (2) 2016-01-05 00:34:53 +01:00
Francis Dupont
343aeac717 Updated WIN32 files (rt40877) 2016-01-04 17:27:31 +01:00
Tinderbox User
0796eca5f7 update copyright notice / whitespace 2015-12-31 11:45:08 +00:00
Mark Andrews
292eb9c4e4 4286. [security] render_ecs errors were mishandled when printing out 
a OPT record resulting in a assertion failure.
                        (CVE-2015-8705) [RT #41397]

(cherry picked from commit 3e0c1603a8)
 2015-12-31 22:19:46 +11:00
Mark Andrews
1b3d211802 4285. [security] Specific APL data could trigger a INSIST. 
(CVE-2015-8704) [RT #41396]
 2015-12-31 13:43:21 +11:00
Tinderbox User
7321d8df7b update copyright notice / whitespace 2015-12-27 23:45:24 +00:00
Evan Hunt
fbed5f0f44 [master] fix geoip options 
4284.	[bug]		Some GeoIP options were incorrectly documented
			using abbreviated forms which were not accepted by
			named.  The code has been updated to allow both
			long and abbreviated forms. [RT #41381]
 2015-12-26 10:50:32 -08:00
Mark Andrews
bed6e9d614 4383. [bug] OPENSSL_config is no longer re-callable. [RT #41348] 2015-12-24 10:31:07 +11:00
Mark Andrews
27deca2bf0 don't mix IPv4 and IPv6 capability bits 2015-12-17 08:17:00 +11:00
Curtis Blackburn
9effea437d [rt41269] additional tests for dig and delv, 
fix for --disable-ipv6 on osx,
              fixes for tests with --disable-ipv6
 2015-12-15 11:58:28 -08:00
Mark Andrews
f647c0df9f 4281. [bug] Teach dns_message_totext about BADCOOKIE. [RT #41257] 2015-12-15 19:49:40 +11:00
Mukund Sivaraman
ecc06cbc32 Use optimal message sizes to improve compression in AXFRs (#40996) 2015-12-15 13:24:14 +05:30
Mark Andrews
94c7301f6f 4279. [test] Don't use fixed ports when unit testing. [RT #41194] 2015-12-15 12:50:32 +11:00
Tinderbox User
6d27aeb4e2 update copyright notice / whitespace 2015-12-11 23:45:22 +00:00
Mark Andrews
564968bc0a whitespace 2015-12-11 14:29:18 +11:00
Tinderbox User
2a37470065 update copyright notice / whitespace 2015-12-09 23:45:23 +00:00
Evan Hunt
f21d2ee372 [master] comments 2015-12-09 08:54:04 -08:00
Mukund Sivaraman
22f379298c Disable the RBT benchmark unittest 2015-12-09 19:15:46 +05:30
Mukund Sivaraman
5d79b60fc5 Improve performance of RBT (#41165) 2015-12-09 19:10:55 +05:30
Tinderbox User
6c1f9f5c71 update copyright notice / whitespace 2015-12-07 23:45:25 +00:00
Mark Andrews
322e6b5be7 4276. [protocol] Add support for SMIMEA. [RT #40513] 2015-12-08 08:16:41 +11:00
Mukund Sivaraman
27bc16fcdc Lazily initialize dns_compress->table only when compression is enabled (#41189) 2015-12-07 12:48:57 +05:30
Mukund Sivaraman
5b13a593fe Speed up typemap_fromtext() (#41196) 2015-12-07 12:34:57 +05:30
Mark Andrews
95bef099e9 4273. [bug] Only call dns_test_begin() and dns_test_end() once each 
in nsec3_test as it fails with GOST if called multiple
                        times.
 2015-12-07 17:52:37 +11:00
Mark Andrews
a12a21a843 bracket mismatch; window openssl version check 2015-12-06 23:05:47 +11:00
Evan Hunt
226dd20bbd [master] isc__taskmgr_pause() could deadlock 
4271.	[test]		Unit tests could deadlock in isc__taskmgr_pause().
			[RT #41235]
 2015-12-03 20:49:28 -08:00
Evan Hunt
4071efbec0 [master] disallow map zones in response-policy 
4269.	[bug]		Zones using "map" format master files currently
			don't work as policy zones.  This limitation has
			now been documented; attempting to use such zones
			in "response-policy" statements is now a
			configuration error.  [RT #38321]
 2015-12-02 21:10:09 -08:00
Tinderbox User
f30a3f28db update copyright notice / whitespace 2015-11-30 23:45:24 +00:00
Mark Andrews
8e73941f33 4265. [bug] Address unchecked isc_mem_get calls. [RT #41187] 2015-11-30 10:29:29 +11:00
Tinderbox User
af0bea7aa7 update copyright notice / whitespace 2015-11-20 23:45:23 +00:00
Mark Andrews
5b1c7ef35b 4264. [bug] Check const of strchr/strrchr assignments match 
argument's const status. [RT #41150]
 2015-11-20 18:38:24 +11:00
李昶
65f6e2f909 Cleanup in journal_open() correctly (#41129) 2015-11-19 11:20:59 +05:30
Mukund Sivaraman
7bc21557f3 Fix bug in epoll_ctl() usage causing blocked connections (#41067) 2015-11-19 11:01:45 +05:30
Tinderbox User
69b10c86b9 update copyright notice / whitespace 2015-11-18 23:45:27 +00:00
Mark Andrews
c2955d0abd win32: new -> newtable 
(cherry picked from commit 5060d8639e932680456ab07519687d68298be5e0)
 2015-11-18 15:44:46 +11:00
Mark Andrews
268c4e79c4 4261. [maint] H.ROOT-SERVERS.NET is 198.97.190.53 and 2001:500:1::53. 
[RT #40556]
 2015-11-17 13:16:44 +11:00
Mark Andrews
6b9f38958c update 9.9.x range 2015-11-17 12:45:21 +11:00
Francis Dupont
dd784c18ef Merged VS 2015 64 bit warnings (#40373) 2015-11-16 17:47:10 +01:00
Mark Andrews
0d44dd6131 add dns_message_setclass 2015-11-16 14:27:08 +11:00
Mark Andrews
c8821d124c 4260. [security] Insufficient testing when parsing a message allowed 
records with an incorrect class to be be accepted,
                        triggering a REQUIRE failure when those records
                        were subsequently cached. (CVE-2015-8000) [RT #4098]
 2015-11-16 13:12:20 +11:00
Mark Andrews
2df63247be check dns_test_begin result 2015-11-11 22:38:39 +11:00
Mukund Sivaraman
58f7af60e7 Allow non-destructive control channel access using a "read-only" clause (#40498) 2015-11-11 13:46:57 +05:30
Tinderbox User
3865e18d3d update copyright notice / whitespace 2015-11-09 23:45:22 +00:00
Evan Hunt
e13d04fda9 [master] fix python script versions 
4257.	[cleanup]	Python scripts reported incorrect version. [RT #41080]
 2015-11-08 21:34:24 -08:00
Tinderbox User
4ba2689c1f update copyright notice / whitespace 2015-11-05 23:45:25 +00:00
Mark Andrews
f4b1a7e063 add dns_compress_disable 2015-11-06 00:15:23 +11:00
Witold Krecicki
bfd4b9e11a 4255. [func] Add 'message-compression' option to disable DNS compression in responses. [RT #40726] 2015-11-05 12:19:04 +01:00
Mark Andrews
29868ebbe3 4254. [bug] Address missing lock when getting zone's serial. 
[RT #41072]
 2015-11-05 17:43:30 +11:00
Mark Andrews
2f450fcd29 4253. [bug] Address fetch context reference count handling error 
on socket error.  [RT#40945]
 2015-11-05 17:10:10 +11:00
Mark Andrews
e939674d53 4252. [func] Add support for automating the generation CDS and 
CDNSKEY rrsets to named and dnssec-signzone.
                        [RT #40424]
 2015-11-05 12:09:48 +11:00
Evan Hunt
09f82f5079 [master] log TSIG key on xfrin 
4250.	[func]		Log the TSIG key in use during inbound zone
			transfers. [RT #41075]
 2015-11-02 20:13:13 -08:00
Tinderbox User
d4a69308f5 update copyright notice / whitespace 2015-10-29 23:45:34 +00:00
Evan Hunt
702e9f43bc [master] typo 2015-10-29 15:50:36 -07:00
Mark Andrews
7c38fa994b 0xf5f5f5f5f5f5f5f5 is a LLU 2015-10-30 08:11:48 +11:00
Mark Andrews
8475bed9de 4249. [func] Improve error reporting of TSIG / SIG(0) records in 
the wrong location. [RT #40953]
 2015-10-29 17:03:03 +11:00
Evan Hunt
821ff5e8fa [master] isc_atomic_storeq()/stats improvements 
4248.	[func]		Add an isc_atomic_storeq() function, use it in
			stats counters to improve performance.
			[RT #39972] [RT #39979]
 2015-10-28 22:19:18 -07:00
Mark Andrews
72ac929f2b 4244. [bug] The parser was not reporting that use-ixfr is obsolete. 
[RT #41010]
 2015-10-29 12:51:17 +11:00
Mark Andrews
a70fc47e9d 4243. [func] Improved stats reporting from Timothe Litt. [RT #38941] 2015-10-28 09:45:46 +11:00
Mark Andrews
c07c0517ca remove trailing blank line 2015-10-22 16:37:12 +11:00
Mark Andrews
79f0eedd65 cleanup trailing whitespace 2015-10-22 16:24:03 +11:00
Mark Andrews
30eec077db cleanup trailing white space in SGML like files 2015-10-22 16:09:46 +11:00
Mark Andrews
f824c65d1f 4340. [port] Fix LibreSSL compatibility. [RT #40977] 2015-10-19 10:43:58 +11:00
Mark Andrews
ffafab1328 remove redundant geoip.c in DNSSRCS 2015-10-16 23:21:20 +11:00
Mark Andrews
20ac20d6e8 remove INSIST and unconditionally call isc_stdio_close 2015-10-16 17:23:35 +11:00
Tinderbox User
43cc3edce9 update copyright notice / whitespace 2015-10-15 23:45:22 +00:00
Mark Andrews
6588a2b404 4238. [bug] Don't send to servers on net zero (0.0.0.0/8). 
[RT #40947]
 2015-10-16 08:00:15 +11:00
Mark Andrews
567196d10a INSIST(f != NULL) to silence coverity false positive 2015-10-16 07:17:25 +11:00
Evan Hunt
61d789916f [master] silence coverity warnings 2015-10-08 09:56:48 -07:00
Evan Hunt
0110f71a78 [master] dyndb.h renamed 2015-10-08 09:26:20 -07:00
Evan Hunt
0316be2d77 [master] restore test for unknown meta types 
- this test was incorrectly removed from the 9.11 branch some time ago,
  but has remained in the maintenance branches
 2015-10-07 00:28:17 -07:00
Tinderbox User
fd2597f756 regen master 2015-10-07 04:11:09 +00:00
Tinderbox User
010a51c427 regen master 2015-10-07 01:06:58 +00:00
Tinderbox User
19c7b1a029 update copyright notice / whitespace 2015-10-06 23:45:23 +00:00
Tinderbox User
2eeb74d1cf regen master 2015-10-06 05:45:21 +00:00
Evan Hunt
14a656f94b [master] upgrade doc toolchain 
4237.	[doc]		Upgraded documentation toolchain to use DocBook 5
			and dblatex. [RT #40766]
 2015-10-05 21:59:35 -07:00
Mark Andrews
09e42eb9e9 add <stdlib.h> for exit(3) 2015-10-06 14:10:49 +11:00
Tinderbox User
244d11a227 update copyright notice / whitespace 2015-10-03 23:45:23 +00:00
Evan Hunt
4a84f8899b [master] silence "missing initializer" warning 2015-10-02 18:47:33 -07:00
Tinderbox User
a625502bdd update copyright notice / whitespace 2015-10-02 23:45:32 +00:00
Evan Hunt
48b2a92da2 [master] missing .def entries, print.h 2015-10-02 14:38:59 -07:00
Francis Dupont
9a94a77a62 Added dns_master_styleflags 2015-10-02 23:01:18 +02:00
Evan Hunt
b66b333f59 [master] dnstap 
4235.	[func]		Added support in named for "dnstap", a fast method of
			capturing and logging DNS traffic, and a new command
			"dnstap-read" to read a dnstap log file.  Use
			"configure --enable-dnstap" to enable this
			feature (note that this requires libprotobuf-c
			and libfstrm). See the ARM for configuration details.

			Thanks to Robert Edmonds of Farsight Security.
			[RT #40211]
 2015-10-02 12:32:42 -07:00
Witold Krecicki
a239044323 4234. [func] Add deflate compression in statistics channel HTTP 
server. [RT #40861]
 2015-10-02 10:45:10 +02:00
Mark Andrews
1b1f6d21c7 curr_srtt = curr->srtt 2015-10-02 07:45:45 +10:00
Mark Andrews
b959848051 compare curr_srtt and best_srtt 2015-10-01 22:12:56 +10:00
Mark Andrews
30f8d5e386 remove deadcode; move NULL assignment arlier 2015-10-01 22:12:02 +10:00
Tinderbox User
551e0d486d update copyright notice / whitespace 2015-09-30 23:45:36 +00:00
Mark Andrews
24231afa05 4229. [bug] A variable could be used uninitalised in 
dns_update_signaturesinc. [RT #40784]
 2015-09-30 15:28:57 +10:00
Mark Andrews
8a0b6b3901 4228. [bug] Address race condition in dns_client_destroyrestrans. 
[RT #40605]
 2015-09-30 14:58:31 +10:00
Mark Andrews
2a12984ce6 4227. [bug] Silence static analysis warnings. [RT #40828 2015-09-30 14:14:47 +10:00
Tinderbox User
55cfbf322d update copyright notice / whitespace 2015-09-29 23:45:32 +00:00
Evan Hunt
40c619daee [master] fix theoretical shutdown race 
4226.	[bug]		Address a theoretical shutdown race in
			zone.c:notify_send_queue(). [RT #38958]
 2015-09-29 15:27:12 -07:00
Evan Hunt
a00f9e2f50 [master] merge dyndb 
4224.	[func]		Added support for "dyndb", a new interface for loading
			zone data from an external database, developed by
			Red Hat for the FreeIPA project.

			DynDB drivers fully implement the BIND database
			API, and are capable of significantly better
			performance and functionality than DLZ drivers,
			while taking advantage of advanced database
			features not available in BIND such as multi-master
			replication.

			Thanks to Adam Tkac and Petr Spacek of Red Hat.
			[RT #35271]
 2015-09-28 23:12:35 -07:00
Mark Andrews
7867d18ce0 Introduce end-of-line normalization 2015-09-29 08:25:35 +10:00
Mark Andrews
85e7a259a4 re-organise sort to use best_srtt and curr_srtt 2015-09-29 08:06:21 +10:00
Mark Andrews
d8e6cd0f8b use HAVE_SYS_SYSCTL_H 2015-09-29 07:26:04 +10:00
Francis Dupont
1d96b1a5ad Removed unused addrbuf 2015-09-28 17:32:40 +02:00
Francis Dupont
722ed14020 Fixed status vs statex 2015-09-28 17:30:07 +02:00
Francis Dupont
29d9a2927c Fixed project files 2015-09-28 15:46:33 +02:00
Francis Dupont
6066985ca8 Fixed isc_meminfo_totalphys return cast (size_t is *not* 64 bit) 2015-09-28 15:34:24 +02:00
Francis Dupont
b39bbe3c95 Fixed missing #include "config.h" 2015-09-28 14:50:18 +02:00
Francis Dupont
c4baee15c8 Fixed missing from libisccfg.def 2015-09-28 14:47:20 +02:00
Witold Krecicki
e6d0a391f5 4223. [func] Add support for setting max-cache-size to percentage 
of available physical memory, set default to 90%.
			[RT #38442]
 2015-09-28 11:08:50 +02:00
Mark Andrews
98a7f8c7ae 4222. [func] Bias IPv6 servers when selecting the next server to 
query. [RT #40836]
 2015-09-28 18:57:19 +10:00
Mark Andrews
8d80b4939d 4221. [bug] Resource leak on DNS_R_NXDOMAIN in fctx_create. 
[RT #40583]
 2015-09-25 09:18:43 +10:00
Mark Andrews
a21c415687 4219. [bug] Set event->result to ISC_R_WOULDBLOCK on EWOULDBLOCK, 
EGAIN when these soft error are not retried for
                        isc_socket_send*().
 2015-09-21 17:22:53 +10:00
Tinderbox User
9268c62bd0 update copyright notice / whitespace 2015-09-18 23:45:23 +00:00
Mark Andrews
4dd41c7d59 4218. [bug] Potential null pointer dereference on out of memory if mmap is not supported. [RT #40777] 2015-09-19 07:12:02 +10:00
Mark Andrews
f6e45a5c54 4217. [protocol] Add support for CSYNC. [RT #40532] 2015-09-18 23:45:12 +10:00
Mark Andrews
705d56b47a 4216. [cleanup] Silence static analysis warnings. [RT #40649] 2015-09-18 23:30:01 +10:00
Mark Andrews
2592ee16b5 document optional class 2015-09-18 13:25:31 +10:00
Mark Andrews
03fac9f931 document that the syslog facility is optional 2015-09-18 13:12:50 +10:00
Mark Andrews
e0a30050c8 4214. [protocol] Add support for TALINK. [RT #40544] 2015-09-18 07:43:43 +10:00
Mark Andrews
741b63c869 4212. [func] Re-query if we get a bad client cookie returned over 
UDP. [RT #40748]
 2015-09-17 14:20:32 +10:00
Mark Andrews
f43e5c8ed2 4210. [cleanup] Silence use after free false positive. [RT #40743] 2015-09-17 14:05:19 +10:00
Mark Andrews
0f2ecf4b5c 4207. [bug] Handle class mismatches with raw zone files. 
[RT #40746]
 2015-09-16 10:43:22 +10:00
Evan Hunt
226339ed43 [master] spurious spaces in named-checkconf -p 
4205.	[bug]		'named-checkconf -p' could include unwanted spaces
			when printing tuples with unset optional fields.
			[RT #40731]
 2015-09-14 08:50:17 -07:00
Mark Andrews
5a49f61ca9 4199. [protocol] Add support for NINFO, RKEY, SINK, TA. 
[RT #40545] [RT #40547] [RT #40561] [RT #40563]
 2015-09-11 17:35:01 +10:00
Evan Hunt
4523c3b371 [master] incorrect result code in isccc 
4202.	[bug]		isccc_cc_fromwire() could return an incorrect
			result. [RT #40614]
 2015-09-11 00:04:25 -07:00
Mark Andrews
3fa134363f 4200. [cleanup] win32: update BINDinstall to be BIND release 
independent. [RT #38915]
 2015-09-11 12:25:39 +10:00
Tinderbox User
f28c6dc514 update copyright notice / whitespace 2015-09-10 23:46:28 +00:00
Mark Andrews
3dd63ba00f 4199. [protocol] Add support for NINFO, RKEY, TA. 
[RT #40545] [RT #40547] [RT #40563]
 2015-09-10 17:58:29 +10:00
Mark Andrews
63874956de 4199. [protocol] Add support for NINFO, RKEY. [RT #40547] [RT #40563] 2015-09-10 17:07:05 +10:00
Mark Andrews
8b29fc0b7a 4199. [protocol] Add support for RKEY. [RT #40563] 2015-09-10 14:50:20 +10:00
Evan Hunt
d37f4738f4 [master] clean up dead code 2015-09-09 08:38:23 -07:00
Mark Andrews
4ca7391e64 4196. [doc] Improve how "enum + other" types are documented. 
[RT #40608]

4195.   [bug]           'max-zone-ttl unlimited;' was broken. [RT #40608]
 2015-09-09 17:02:11 +10:00
Mark Andrews
fbd9aaa58c 4194. [bug] named-checkconf -p failed to properly print a port 
range.  [RT #40634]
 2015-09-09 16:49:11 +10:00
Mark Andrews
3b83676e07 *.vcxproj.in should use CRLF as EOL 2015-08-27 21:57:18 +00:00
Evan Hunt
bcae9a15c1 [master] s/the the/the/ 2015-08-27 14:11:27 -07:00
Mark Andrews
91f66e374b eol -> crlf 2015-08-26 12:43:08 +10:00
Mark Andrews
7ec3c447fd copy notes.pdf to Build\Releasei and link to it from index.html 2015-08-26 12:11:07 +10:00
Tinderbox User
0d5b7ed79d update copyright notice / whitespace 2015-08-25 23:45:27 +00:00
Mark Andrews
02093e4c3b 4193. [bug] Handle broken servers that return BADVERS incorrectly. 
[RT #40427]
 2015-08-25 16:52:43 +10:00
Mark Andrews
9b956d342e 4192. [bug] The default rrset-order of random was not always being 
applied. [RT #40456]
 2015-08-25 14:52:27 +10:00
Mark Andrews
5855fd79e3 4191. [protocol] Accept DNS-SD non LDH PTR records in reverse zones 
as per RFC 6763. [RT #37889]
 2015-08-25 14:46:06 +10:00
Mark Andrews
dc3912f3ca 4190. [protocol] Accept Active Diretory gc._msdcs.<forest> name as 
valid with check-names.  <forest> still needs to be
                        LDH. [RT #40399]
 2015-08-22 15:27:33 +10:00
Mark Andrews
7d0dfa63cf 4189. [cleanup] Don't exit on overly long tokens in named.conf. 
[RT #40418]
 2015-08-22 15:08:22 +10:00
Mark Andrews
18ba804f3a 4188. [bug] Support HTTP/1.0 client properly on the statistics 
channel. [RT #40261]
 2015-08-20 09:55:28 +10:00
Tinderbox User
161b5249b9 update copyright notice / whitespace 2015-08-19 23:45:23 +00:00
Tinderbox User
0d63efe476 update copyright notice / whitespace 2015-08-18 23:45:26 +00:00