Evan Hunt
fd75aaa2b9
[master] change tag
2014-02-19 07:51:22 -08:00
Mark Andrews
e0c6a3944d
silence Function returns no value
2014-02-20 00:27:36 +11:00
Mark Andrews
ab830e68aa
silence unreachable statement by adding #if/#endif
2014-02-20 00:24:56 +11:00
Mark Andrews
969728a667
--with-openssl=no failed
2014-02-19 20:25:12 +11:00
Mark Andrews
f45c36fb19
add client cookie in hmacsha*
2014-02-19 20:19:36 +11:00
Mark Andrews
7e2e41df67
3748. [func] Use delve to test dns_client interfaces. [RT #35383 ]
2014-02-19 19:33:21 +11:00
Evan Hunt
7f5bdf7f40
[master] fix dns_resolver_destroyfetch race
...
3747. [bug] A race condition could lead to a core dump when
destroying a resolver fetch object. [RT #35385 ]
2014-02-18 23:32:02 -08:00
Evan Hunt
35f6a21f5f
[master] max-zone-ttl
...
3746. [func] New "max-zone-ttl" option enforces maximum
TTLs for zones. If loading a zone containing a
higher TTL, the load fails. DDNS updates with
higher TTLs are accepted but the TTL is truncated.
(Note: Currently supported for master zones only;
inline-signing slaves will be added.) [RT #38405 ]
2014-02-18 23:26:50 -08:00
Mark Andrews
880c48d818
set ISC_OPENSSL_LIBS to DST_OPENSSL_LIBS for want_openssl_aes=yes
2014-02-19 18:14:13 +11:00
Evan Hunt
db955e6f01
[master] add SIT and the new stats counters to README
2014-02-18 22:52:06 -08:00
Evan Hunt
6a3fa181d1
[master] add "--with-tuning=large" option
...
3745. [func] "configure --with-tuning=large" adjusts various
compiled-in constants and default settings to
values suited to large servers with abundant
memory. [RT #29538 ]
2014-02-18 22:36:14 -08:00
Mark Andrews
fb507b955e
test for AES_encrypt and fall back to sha256
2014-02-19 15:22:31 +11:00
Mark Andrews
0a5927a14f
add 3rd
2014-02-19 13:33:24 +11:00
Mark Andrews
08d4b8d120
update SIT description
2014-02-19 13:15:40 +11:00
Evan Hunt
96a3590505
[master] edit
2014-02-18 17:59:43 -08:00
Mark Andrews
b5f6271f4d
3744. [experimental] SIT: send and process Source Identity Tokens
...
(which are similar to DNS Cookies by Donald Eastlake)
and are designed to help clients detect off path
spoofed responses and for servers to detect legitimate
clients.
SIT use a experimental EDNS option code (65001).
SIT can be enabled via --enable-developer or
--enable-sit. It is on by default in Windows.
RRL processing as been updated to know about SIT with
legitimate clients not being rate limited. [RT #35389 ]
2014-02-19 12:53:42 +11:00
Mark Andrews
43c1433ef2
add attributes to fatal, warn and delve_log
2014-02-19 07:25:29 +11:00
Mark Andrews
657f0f11ac
use return rather than exit
2014-02-19 07:15:27 +11:00
Evan Hunt
9201e2b2f2
[master] remove extra isc_buffer_init
2014-02-17 18:21:37 -08:00
Tinderbox User
c96e7744e0
regen master
2014-02-18 01:05:03 +00:00
Tinderbox User
3fd910dec5
update copyright notice
2014-02-17 23:46:29 +00:00
Tinderbox User
6025cbbe84
newcopyrights
2014-02-17 23:30:14 +00:00
Mark Andrews
38eabfcee7
3743. [bug] delegation-only flag wasn't working in forward zone
...
declarations despite being documented. This is
needed to support turning off forwarding and turning
on delegation only at the same name. [RT #35392 ]
2014-02-18 10:09:07 +11:00
Mark Andrews
7b9cb698dd
update descrition
2014-02-18 10:03:52 +11:00
Evan Hunt
88af212a4d
[master] correct delegation-only doc
2014-02-17 14:22:53 -08:00
Evan Hunt
5efcb3a3e2
[master] fix test errors
...
- require 5.006_001
- cut off the least significant figures of rrsig dates before
comparison to avoid integer overflow
2014-02-17 08:40:02 -08:00
Mark Andrews
846cb7015b
unchecked isc_mem_get calls; fix loop over getaddrinfo results
2014-02-18 02:07:37 +11:00
Mark Andrews
0e8cfb69d1
a4 and a6 were being referenced out of scope
2014-02-18 01:53:21 +11:00
Mark Andrews
5114325978
3742. [port] linux: libcap support: curval was used before it
...
was declared. [RT #35387 ]
2014-02-18 00:27:15 +11:00
Mark Andrews
823eadf26d
#include <isc/string.h>
2014-02-17 12:22:42 +11:00
Evan Hunt
e6b626cc7a
[master] include <isc/string.h>
2014-02-16 16:30:47 -08:00
Mark Andrews
2253be7b9a
remove mklib.bat.in
2014-02-17 11:05:24 +11:00
Tinderbox User
72141595cf
update copyright notice
2014-02-16 23:46:32 +00:00
Tinderbox User
950d203b64
newcopyrights
2014-02-16 23:30:20 +00:00
Evan Hunt
83d59691e3
[master] update README
2014-02-16 14:34:11 -08:00
Mark Andrews
d8f5f53a03
add #include <isc/print.h>
2014-02-17 09:19:25 +11:00
Evan Hunt
7ba88e2a95
[master] fix dnssec test errors
2014-02-16 14:14:56 -08:00
Evan Hunt
72fd845d5a
[master] remove accidentally committed changes
2014-02-16 13:59:19 -08:00
Evan Hunt
792915beb0
[master] fix accidental dig breakage
2014-02-16 13:42:42 -08:00
Evan Hunt
cd38c8c1bb
[master] fixed mistake with delve +short
2014-02-16 13:25:53 -08:00
Evan Hunt
b412cb5334
[master] include <signal.h> not <sys/signal.h>
2014-02-16 13:11:26 -08:00
Tinderbox User
c3c1aec44c
regenerate
2014-02-16 21:09:10 +00:00
Tinderbox User
6d382c9fce
regen master
2014-02-16 21:08:15 +00:00
Evan Hunt
1d761cb453
[master] delve
...
3741. [func] "delve" (domain entity lookup and validation engine):
A new tool with dig-like semantics for performing DNS
lookups, with internal DNSSEC validation, using the
same resolver and validator logic as named. This
allows easy validation of DNSSEC data in environments
with untrustworthy resolvers, and assists with
troubleshooting of DNSSEC problems. (Note: not yet
available on win32.) [RT #32406 ]
2014-02-16 13:03:17 -08:00
Evan Hunt
14bf4702f3
[master] fixed some dlz configure options
...
3740. [contrib] Minor fixes to configure --with-dlz-bdb,
--with-dlz-postgres and --with-dlz-odbc. [RT #35340 ]
2014-02-15 21:10:07 -08:00
Evan Hunt
31f6244cc2
[master] tcp and udp stats counters
...
3739. [func] Added per-zone stats counters to track TCP and
UDP queries. [RT #35375 ]
2014-02-15 20:57:00 -08:00
Francis Dupont
fb3ecd89ca
retries -> split in could not parse
2014-02-16 02:08:55 +01:00
Francis Dupont
a3a74b30b3
spurious space
2014-02-16 02:07:33 +01:00
Tinderbox User
56af756b6c
update copyright notice
2014-02-14 23:46:27 +00:00
Tinderbox User
79b627f399
newcopyrights
2014-02-14 23:30:13 +00:00
