1878 Commits

Author	SHA1	Message	Date
Witold Krecicki	e846f127d6	4362. [func] Changed rndc reconfig behaviour so that newly added ... zones are loaded asynchronously and the loading does not block the server. [RT #41934]	2016-05-05 21:41:12 +02:00
Evan Hunt	370c6e0ac1	[master] add nsip-wait-recurse release note	2016-05-05 09:33:28 -07:00
Mark Andrews	08e36aa5a5	4356. [func] Add the ability to specify whether to wait for ... nameserver addresses to be looked up or not to rpz with a new modifying directive 'nsip-wait-recurse'. [RT #35009]	2016-05-05 16:29:05 +10:00
Tinderbox User	006283c423	regen master	2016-05-05 01:05:35 +00:00
Evan Hunt	66074f152f	[master] log message when using ISC DLV ... 4352. [cleanup] The ISC DNSSEC Lookaside Validation (DLV) service is scheduled to be disabled in 2017. A warning is now logged when named is configured to use it, either explicitly or via "dnssec-lookaside auto;" [RT #42207]	2016-05-04 14:37:25 -07:00
Tinderbox User	3241ddcf93	regen master	2016-04-30 01:05:59 +00:00
Mark Andrews	1bebd86e9f	fix tag mis-match	2016-04-29 11:10:21 +10:00
Evan Hunt	f6096b958c	[master] dnssec-keymgr ... 4349. [contrib] kasp2policy: A python script to create a DNSSEC policy file from an OpenDNSSEC KASP XML file. 4348. [func] dnssec-keymgr: A new python-based DNSSEC key management utility, which reads a policy definition file and can create or update DNSSEC keys as needed to ensure that a zone's keys match policy, roll over correctly on schedule, etc. Thanks to Sebastian Castro for assistance in development. [RT #39211]	2016-04-28 00:16:01 -07:00
Tinderbox User	6b7cba2b10	regen master	2016-03-25 01:05:22 +00:00
Evan Hunt	4d3f9f216a	[master] better relnote for read-only controls option	2016-03-24 16:52:17 -07:00
Evan Hunt	1831596a79	[master] fixes for release notes	2016-03-24 14:40:44 -07:00
Evan Hunt	936bfae6d5	[master] remove pre-9.11.0a1 security fixes from 9.11 release notes	2016-03-24 12:11:53 -07:00
Tinderbox User	e285c11870	regen master	2016-03-24 01:05:08 +00:00
Tinderbox User	6e3f736f73	regenerate	2016-03-23 06:50:54 +00:00
Tinderbox User	46472a450e	regen master	2016-03-23 06:45:14 +00:00
Evan Hunt	bee8d5b202	[master] fix broken tag	2016-03-22 21:38:25 -07:00
Evan Hunt	4488842485	[master] prep 9.11.0a1	2016-03-22 20:00:47 -07:00
Tinderbox User	6a178481cf	regen master	2016-03-17 01:05:26 +00:00
Jeremy C. Reed	6693c9a2f0	fix spelling	2016-03-16 15:41:18 -04:00
Tinderbox User	832fa787d4	regen master	2016-03-11 01:05:28 +00:00
Jeremy C. Reed	10b7784c59	minor grammar fix	2016-03-10 16:51:40 -05:00
Mark Andrews	98c5690bd9	note rrsig regeneration	2016-03-10 17:05:49 +11:00
Tinderbox User	54599d0e4f	update copyright notice / whitespace	2016-03-09 00:56:17 +00:00
Tinderbox User	f9ce6280ce	regen master	2016-03-09 00:39:40 +00:00
Mark Andrews	f2eed65224	use xmlint to process include ... (cherry picked from commit 71e9df17b671f7ef5742967b25a1ab36ec3dd91b)	2016-03-09 11:35:13 +11:00
Tinderbox User	1fb011b1db	regen master	2016-03-08 22:35:32 +00:00
Mark Andrews	3cf2fb29ac	add automatic-interface-scan to ARM grammar ... (cherry picked from commit 90499817bf85543c4c2a1946e146d7aef60331e4)	2016-03-09 08:57:32 +11:00
Tinderbox User	7f9f0b9755	regen master	2016-03-06 01:04:34 +00:00
Mark Andrews	e011df2927	add AVC	2016-03-05 17:56:49 +11:00
Tinderbox User	820739d918	regen master	2016-03-05 01:13:25 +00:00
Mark Andrews	7a3a30e296	add AVC	2016-03-04 18:18:04 +11:00
Evan Hunt	44c86318ed	[master] recursively clean empty interior nodes when deleting database records ... 4324. [bug] When deleting records from a zone database, interior nodes could be left empty but not deleted, damaging search performance afterward. [RT #40997]	2016-03-03 21:13:42 -08:00
Tinderbox User	df3d1c56e4	regen master	2016-02-27 01:04:26 +00:00
Mark Andrews	455c0848f8	4322. [security] Duplicate EDNS COOKIE options in a response could ... trigger an assertion failure. (CVE-2016-2088) [RT #41809]	2016-02-27 11:23:50 +11:00
Tinderbox User	ba38c6b4bc	regen master	2016-02-23 01:04:33 +00:00
Mukund Sivaraman	5995fec51c	Fix resolver assertion failure due to improper DNAME handling (CVE-2016-1286) (#41753)	2016-02-22 12:22:43 +05:30
Tinderbox User	1609eab3ca	regen master	2016-02-19 01:04:16 +00:00
Mark Andrews	a2b15b3305	4318. [security] Malformed control messages can trigger assertions ... in named and rndc. (CVE-2016-1285) [RT #41666]	2016-02-18 12:11:27 +11:00
Tinderbox User	ee2e5fec65	regen master	2016-02-11 01:04:20 +00:00
Tinderbox User	7e5658b04f	regen master	2016-01-30 01:04:18 +00:00
Evan Hunt	b5c22260e5	[master] remove reporter's name per his request	2016-01-29 10:35:14 -08:00
Tinderbox User	6825f304c5	regen master	2016-01-29 01:04:18 +00:00
Tinderbox User	b7f3400f3b	update copyright notice / whitespace	2016-01-28 23:45:29 +00:00
Evan Hunt	e073205a88	[master] openssl 1.0.2f patch ... 4306. [maint] Added a PKCS#11 openssl patch supporting version 1.0.2f [RT #38312]	2016-01-28 13:27:29 -08:00
Evan Hunt	e79e346bf2	[master] correct also-notify grammar	2016-01-27 19:07:31 -08:00
Tinderbox User	1bb7846d29	regen master	2016-01-23 01:04:14 +00:00
Evan Hunt	630b2d0c5a	[master] NOSETFC incorrectly applied ... 4300. [bug] A flag could be set in the wrong field when setting up nonrecursive queries; this could cause the SERVFAIL cache to cache responses it shouldn't. New querytrace logging has been added which identified this error. [RT #41155]	2016-01-22 13:58:11 -08:00
Tinderbox User	6758b59e57	regen master	2016-01-13 01:04:19 +00:00
Evan Hunt	bb5d14d724	[master] millisecond granularity for statschannel timers ... 4290. [func] The timers returned by the statistics channel (indicating current time, server boot time, and most recent reconfiguration time) are now reported with millisecond accuracy. [RT #40082]	2016-01-07 15:34:58 -08:00
Tinderbox User	742cb92338	regen master	2016-01-06 01:04:26 +00:00