mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-28 13:08:06 +00:00
Code Issues Releases Wiki Activity
16,778 Commits 660 Branches 820 Tags
Commit Graph

159 Commits

Author SHA1 Message Date
Vernon Schryver
5d9922e86f Allow the optional filter-aaaa-on-v4 option in view statements to close #20635 2009-11-28 15:57:37 +00:00
Mark Andrews
1d0ebb4cf2 2765. [bug] Skip masters for which the TSIG key cannot be found. 
[RT #20595]
 2009-11-12 23:30:36 +00:00
Evan Hunt
95f2377b4f 2739. [cleanup] Clean up API for initializing and clearing trust 
anchors for a view. [RT #20211]
 2009-10-27 22:46:13 +00:00
Tatuya JINMEI 神明達哉
307d208450 2660. [func] Add a new set of DNS libraries for non-BIND9 
applications.  See README.libdns. [RT #19369]
 2009-09-01 00:22:28 +00:00
Evan Hunt
cfb1587eb9 2619. [func] Add support for RFC 5011, automatic trust anchor 
maintenance.  The new "managed-keys" statement can
			be used in place of "trusted-keys" for zones which
			support this protocol.  (Note: this syntax is
			expected to change prior to 9.7.0 final.) [RT #19248]
 2009-06-30 02:53:46 +00:00
Tatuya JINMEI 神明達哉
40d0f115a6 2604. [func] Add support for DNS rebinding attack prevention through 
new options, deny-answer-addresses and
			deny-answer-aliases.  Based on contributed code from
			JD Nurmi, Google. [RT #18192]
 2009-05-29 22:22:37 +00:00
Tatuya JINMEI 神明達哉
d9059b0c38 2537. [func] Added more statistics counters including those on socket 
I/O events and query RTT histograms.  [RT #18802]
 2009-01-27 22:30:00 +00:00
Automatic Updater
9e0d0a279b update copyright notice 2009-01-09 23:47:46 +00:00
Tatuya JINMEI 神明達哉
7781f25078 2526. [func] New named option "attach-cache" that allows multiple 
views to share a single cache to save memory and
			improve lookup efficiency. [RT 18905]
 2009-01-09 22:24:37 +00:00
Mark Andrews
538a0a40a2 2380. [bug] dns_view_find() was not returning NXDOMAIN/NXRRSET 
proofs which, in turn, caused validation failures
                        for insecure zones immediately below a secure zone
                        the server was authoritative for. [RT #18112]
 2008-06-17 03:14:20 +00:00
Evan Hunt
5a17fe2916 Default values of zone ACLs were re-parsed each time a new zone was 
configured, causing an overconsumption of memory. [rt18092]
 2008-05-21 23:17:21 +00:00
Automatic Updater
59b6d8259a update copyright notice 2008-05-13 23:47:01 +00:00
Evan Hunt
c72279e756 "rndc freeze" could trigger an assertion in named when called on a 
nonexistent zone. [rt18050]
 2008-05-13 01:20:24 +00:00
Mark Andrews
8907d8fa04 2355. [func] Extend the number statistics counters available. 
[RT #17590]
 2008-04-03 05:55:52 +00:00
Automatic Updater
e672951ed2 update copyright notice 2008-04-01 23:47:10 +00:00
Mark Andrews
cffe96e267 2346. [func] Memory statistics now cover all active memory contexts 
in increased detail. [RT #17580]
 2008-03-31 05:00:30 +00:00
Automatic Updater
ec5347e2c7 update copyright notice 2007-06-18 23:47:57 +00:00
Mark Andrews
40aadb6a14 2179. [func] 'rndc command zone' will now find 'zone' if it is 
unique to all the views. [RT #16821]
 2007-05-15 02:38:34 +00:00
Mark Andrews
819b98479e 2165. [func] Allow the destination address of a query to determine 
if we will answer the query or recurse.
                        allow-query-on, allow-recursion-on and
                        allow-query-cache-on. [RT #16291]
 2007-03-29 06:36:31 +00:00
Automatic Updater
1b5a345334 update copyright notice 2007-03-06 02:12:39 +00:00
Mark Andrews
a56f5ada43 2157. [func] dns_db_transfernode() created. [RT #16685] 
2156.   [bug]           Fix node reference leaks in lookup.c:lookup_find(),
                        resolver.c:validated() and resolver.c:cache_name().
                        Fix a memory leak in rbtdb.c:free_noqname().
                        Make lookup.c:lookup_find() robust against
                        event leaks. [RT #16685]
 2007-03-06 00:38:58 +00:00
Mark Andrews
186e7f37c9 2122. [func] Experimental http server and statistics support 
for named via xml.
 2006-12-21 06:03:37 +00:00
Mark Andrews
cfe92110ce 2007. [func] It is now possible to explicitly enable DNSSEC 
validation.  default dnssec-validation no; to
                        be changed to yes in 9.5.0.  [RT #15674]
 2006-03-09 23:21:54 +00:00
Mark Andrews
08c9026166 1953. [func] Named now falls back to advertising EDNS with a 
512 byte receive buffer if the initial EDNS queries
                        fail.  [RT #14852]

1952.   [func]          The maximum EDNS UDP response named will send can
                        now be set in named.conf (max-udp-size).  This is
                        independent of the advertised receive buffer
                        (edns-udp-size). [RT #14852]
 2006-01-05 00:01:46 +00:00
Mark Andrews
acb4f52369 update copyright notice 2006-01-04 23:50:24 +00:00
Mark Andrews
fabf2ee6b0 1947. [func] It is now possible to configure named to accept 
expired RRSIGs.  Default "dnssec-accept-expired no;".
                        Setting "dnssec-accept-expired yes;" leaves named
                        vulnerable to replay attacks.  [RT #14685]
 2006-01-04 02:35:49 +00:00
Mark Andrews
03e200df5d 1913. [func] Integrate contibuted DLZ code into named. [RT #11382] 2005-09-05 00:12:29 +00:00
Mark Andrews
18d0b5e54b 1900. [port] freebsd: pthread_mutex_init can fail if it runs out 
of memory. [RT #14995]
 2005-07-12 01:00:20 +00:00
Rob Austein
ab023a6556 1851. [doc] Doxygen comment markup. [RT #11398] 2005-04-27 04:57:32 +00:00
Mark Andrews
e89e09eda8 update copyrights 2005-01-17 04:11:34 +00:00
Mark Andrews
7502c66006 1796. [func] "rndc freeze/thaw" now freezes/thaws all zones. 2005-01-14 03:28:09 +00:00
Mark Andrews
4ae404824b set the cache DB in the view's additional cache object so that 
additional sections for a (DNS) cached response can also be stored
  in the additional cache. [RT #13339]
 2004-12-29 23:01:13 +00:00
Tatuya JINMEI 神明達哉
d0eb2cc33c 1526. [func] Implemented "additional section caching (or acache)", 
an internal cache framework for additional section
			content to improve response performance.  Several
			configuration options were provided to control the
			behavior.
 2004-12-21 10:45:20 +00:00
Mark Andrews
50105afc55 1589. [func] DNSSEC lookaside validation. 
enable-dnssec -> dnssec-enable
 2004-03-10 02:19:58 +00:00
Mark Andrews
dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Mark Andrews
89783da064 1581. [func] Disable DNSSEC support by default. To enable 
DNSSEC specify "enable-dnssec yes;" in named.conf.
 2004-02-17 03:40:23 +00:00
Mark Andrews
4efe32b8bb 1521. [bug] dns_view_createresolver() failed to check the 
result from isc_mem_create(). [RT# 9294]
 2003-10-03 02:19:31 +00:00
Mark Andrews
93d6dfaf66 1516. [func] Roll the DNSSEC types to RRSIG, NSEC and DNSKEY. 2003-09-30 06:00:40 +00:00
Mark Andrews
62091d9b54 wrong element delonly -> rootexclude 2003-09-19 13:27:18 +00:00
Mark Andrews
68a918e038 rootexlude -> rootexclude 
free and initialise rootdelonly & rootexclude
buy -> by
 2003-09-19 13:17:21 +00:00
Mark Andrews
0b1da8124c 1510. [func] New view option "root-delegation-only". Apply 
delegation-only check to all TLDs and root.
                        Note there are some TLDs that are NOT delegation
                        only (e.g. DE and MUSEUM) these can be excluded
                        from the checks buy using exclude.

                        root-delegation-only exclude { "DE"; "MUSEUM"; };
 2003-09-19 12:39:49 +00:00
Mark Andrews
20d90a3753 1506. [bug] Wrong return type for dns_view_isdelegationonly(). 2003-09-17 15:01:26 +00:00
Mark Andrews
4607e7a9b8 1504. [func] New zone type "delegation-only". 2003-09-17 05:24:43 +00:00
Mark Andrews
1e107b3d7b 1495. [cleanup] Replace hash functions with universal hash. 2003-07-25 02:22:26 +00:00
Mark Andrews
53cf671865 1445. [bug] DNS_ADBFIND_STARTATROOT broke stub zones. This has 
been replaced with DNS_ADBFIND_STARTATZONE which
                        causes the search to start using the closest zone.

1444.   [func]          dns_view_findzonecut2() allows you to specify if the
                        cache should be searched for zonecuts.
developer: marka
reviewer: explorer
 2003-02-26 22:54:29 +00:00
Mark Andrews
49a940dc68 1402. [cleanup] A6 has been moved to experimental and is no longer 
fully supported.
developer: jinmei
reviewer: marka
 2002-11-27 09:52:58 +00:00
Mark Andrews
ba4aec8c18 1375. [func] 'rndc dumpdb' now dumps the adb cache along with the 
data cache.
 2002-09-10 02:06:49 +00:00
Mark Andrews
de49761421 1330. [bug] 'rndc stop' failed to cause zones to be flushed 
sometimes. [RT #3157]
 2002-06-19 07:14:48 +00:00
Mark Andrews
c4a9ce445c 1274. [func] preferred-glue option from BIND 8.3. 2002-04-26 00:40:37 +00:00
Mark Andrews
2dd99c098c 1234. [bug] 'rrset-order' and 'sortlist' should be additive 
not exclusive.

1223.   [func]          'rrset-order' partially works 'cyclic' and 'random'
                        are supported.
 2002-03-07 13:46:41 +00:00