Ondřej Surý bac40394d5 Fix update-policy per-type max quota bypass via counter desynchronization ... The prescan and main update loops in DNS UPDATE processing both used the same counter to index the maxbytype[] quota array. The prescan loop always incremented the counter, but the main loop had 14 continue paths that skipped the increment. This allowed an authenticated DDNS client to craft an UPDATE message with padding records (e.g. CNAME+A pairs that trigger CNAME-conflict skips) to shift the counter and read wrong quota entries, bypassing per-type record limits entirely. Fix by incrementing the counter unconditionally at the start of each iteration in the main loop.		2026-03-28 10:07:49 +01:00
..
include	Move ns_highwater_recursclients to highwater stats	2026-03-26 10:19:25 +01:00
.gitignore	Add support for User Statically Defined Tracing (USDT) probes	2023-08-21 18:39:53 +02:00
client.c	Add low contention stats counter	2026-03-26 10:19:25 +01:00
hooks.c	use a standard CLEANUP macro	2025-12-03 13:45:43 -08:00
interfacemgr.c	switch to RETERR where it wasn't being used	2025-12-03 13:45:43 -08:00
listenlist.c	Use ControlStatementsExceptControlMacros for SpaceBeforeParens	2025-08-19 07:58:33 +02:00
meson.build	Use unique names for probes.d files	2025-09-24 13:18:13 +02:00
notify.c	Improve efficiency of ns_client_t reset	2025-07-10 07:19:47 +02:00
probes-ns.d	Use unique names for probes.d files	2025-09-24 13:18:13 +02:00
query.c	Move ns_highwater_recursclients to highwater stats	2026-03-26 10:19:25 +01:00
server.c	Add low contention stats counter	2026-03-26 10:19:25 +01:00
stats.c	Add low contention stats counter	2026-03-26 10:19:25 +01:00
tests	Move all the unit tests to /tests/<libname>/	2022-05-28 14:53:02 -07:00
update.c	Fix update-policy per-type max quota bypass via counter desynchronization	2026-03-28 10:07:49 +01:00
xfrout.c	Log serial when IXFR version not in journal	2025-12-10 15:24:29 +00:00