mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-29 13:38:26 +00:00
Code Issues Releases Wiki Activity
22,287 Commits 657 Branches 820 Tags
Commit Graph

818 Commits

Author SHA1 Message Date
Mark Andrews
e560fbdf77 3812. [func] Dig now supports sending arbitary EDNS options from 
the command line (+ednsopt=code[:value]). [RT #35584]
 2014-04-18 09:52:12 +10:00
Tinderbox User
b46346eb30 regen master 2014-03-04 01:05:04 +00:00
Tinderbox User
1599ac12be update copyright notice 2014-03-03 23:47:11 +00:00
Evan Hunt
9f5222620c [master] revert the "version" interactive command from nslookup 2014-03-03 10:05:55 -08:00
Evan Hunt
f4ada59b35 [master] don't use strncasecmp for command line option 2014-03-03 09:31:41 -08:00
Evan Hunt
67d01dcacb [master] add "version" options to host/nslookup/nsupdate 
3773.	[func]		"host", "nslookup" and "nsupdate" now have
			options and commands to print the version
                        number.  [RT #26057]
 2014-03-03 09:08:04 -08:00
Evan Hunt
084ba95b08 [master] dig +trace could fail when retrying with TCP 
3770.	[bug]		"dig +trace" could fail with an assertion when it
			needed to fall back to TCP due to a truncated
			response. [RT #24660]
 2014-03-01 15:32:25 -08:00
Tinderbox User
794b79e6bb regen master 2014-02-28 01:07:06 +00:00
Tinderbox User
938440694b update copyright notice 2014-02-27 23:46:22 +00:00
Evan Hunt
1753d3c4d7 [master] correct dates in man pages 2014-02-27 11:43:10 -08:00
Mark Andrews
9e39bafd2e adjust SIT computation 2014-02-24 09:29:49 +11:00
Tinderbox User
0e1dece22e regen master 2014-02-20 19:19:27 +00:00
Evan Hunt
5b7dbbf172 [master] silence win64 warnings 2014-02-19 22:58:09 -08:00
Evan Hunt
9576baafc0 [master] assert if sitok/sitbad are insane 2014-02-19 21:26:31 -08:00
Mark Andrews
f0c00f10a0 report if sit is good/bad 2014-02-20 15:55:09 +11:00
Mark Andrews
16134801ce 3750. [experimental] Partially implement EDNS EXPIRE option as described 
in draft-andrews-dnsext-expire-00.  Retrivial of
                        remaining time to expiry from slave zones is supported.

                        EXPIRE uses an experimental option code (65002) and
                        is subject to change. [RT #35416]
 2014-02-20 14:56:20 +11:00
Mark Andrews
801b958a5c s/DNS_EDNSOPTIONS/DNS_EDNSOPTIONS/ 2014-02-20 14:00:54 +11:00
Mark Andrews
72ba6ba736 define DNS_OPT_EDNSOPTIONS 2014-02-20 13:55:21 +11:00
Evan Hunt
2af7d81efd [master] unbalanced tag 2014-02-19 17:15:51 -08:00
Evan Hunt
d7b9756a21 [master] ENDS client-subnet in dig 
3749.	[func]		"dig +subnet" sends an EDNS client subnet option
			containing the specified address/prefix when
                        querying. (Thanks to Wilmer van der Gaast.)
                        [RT #35415]
 2014-02-19 15:51:02 -08:00
Tinderbox User
1361e03890 update copyright notice 2014-02-19 23:46:31 +00:00
Francis Dupont
f1a6c8e78c WIN32 master fixes 2014-02-19 23:17:52 +01:00
Mark Andrews
ab830e68aa silence unreachable statement by adding #if/#endif 2014-02-20 00:24:56 +11:00
Mark Andrews
b5f6271f4d 3744. [experimental] SIT: send and process Source Identity Tokens 
(which are similar to DNS Cookies by Donald Eastlake)
                        and are designed to help clients detect off path
                        spoofed responses and for servers to detect legitimate
                        clients.

                        SIT use a experimental EDNS option code (65001).

                        SIT can be enabled via --enable-developer or
                        --enable-sit.  It is on by default in Windows.

                        RRL processing as been updated to know about SIT with
                        legitimate clients not being rate limited. [RT #35389]
 2014-02-19 12:53:42 +11:00
Tinderbox User
72141595cf update copyright notice 2014-02-16 23:46:32 +00:00
Evan Hunt
792915beb0 [master] fix accidental dig breakage 2014-02-16 13:42:42 -08:00
Evan Hunt
1d761cb453 [master] delve 
3741.	[func]		"delve" (domain entity lookup and validation engine):
			A new tool with dig-like semantics for performing DNS
			lookups, with internal DNSSEC validation, using the
			same resolver and validator logic as named. This
			allows easy validation of DNSSEC data in environments
			with untrustworthy resolvers, and assists with
			troubleshooting of DNSSEC problems. (Note: not yet
			available on win32.) [RT #32406]
 2014-02-16 13:03:17 -08:00
Francis Dupont
fb3ecd89ca retries -> split in could not parse 2014-02-16 02:08:55 +01:00
Mark Andrews
2729aea3c1 3738. [bug] --enable-openssl-hash failed to build. [RT #35343] 2014-02-13 15:09:08 +11:00
Tinderbox User
665a24faf6 regen master 2014-02-13 01:05:15 +00:00
Tinderbox User
1124950b35 update copyright notice 2014-02-12 23:46:27 +00:00
Evan Hunt
79a1c7502d [master] typos in dig man page 2014-02-12 10:32:20 -08:00
Evan Hunt
dbb012765c [master] merge libiscpk11 to libisc 
3735.	[cleanup]	Merged the libiscpk11 library into libisc
			to simplify dependencies. [RT #35205]
 2014-02-11 21:20:28 -08:00
Tinderbox User
88cffc09ae regen master 2014-01-25 01:04:57 +00:00
Tinderbox User
85167bb10f update copyright notice 2014-01-24 23:46:22 +00:00
Evan Hunt
bff64bf12b [master] correct copyrights and attributions 
see RT #35423 for details; highlights:
    - remove license clauses 3 and 4 from NetBSD code
    - remove advertising clause from historical BSD code
    - add openssl advertising attributions
 2014-01-24 09:46:00 -08:00
Mark Andrews
e20788e121 update copyrights 2014-01-16 15:19:24 +11:00
Evan Hunt
ba751492fc [master] native PKCS#11 support 
3705.	[func]		"configure --enable-native-pkcs11" enables BIND
			to use the PKCS#11 API for all cryptographic
			functions, so that it can drive a hardware service
			module directly without the need to use a modified
			OpenSSL as intermediary (so long as the HSM's vendor
			provides a complete-enough implementation of the
			PKCS#11 interface). This has been tested successfully
			with the Thales nShield HSM and with SoftHSMv2 from
			the OpenDNSSEC project. [RT #29031]
 2014-01-14 15:40:56 -08:00
Evan Hunt
e851ea8260 [master] replace memcpy() with memmove(). 
3698.	[cleanup]	Replaced all uses of memcpy() with memmove().
			[RT #35120]
 2014-01-08 16:39:05 -08:00
Mark Andrews
d0e3216c21 3697. [bug] Handle "." as a search list element when IDN support 
is enabled. [RT #35133]
 2014-01-06 12:34:28 +11:00
Tinderbox User
e8914b47a2 update copyright notice 2014-01-05 23:46:12 +00:00
Mark Andrews
e9649ece3b 3696. [bug] dig failed to handle AXFR style IXFR responses which 
span multiple messages. [RT #35137]
 2014-01-06 06:22:30 +11:00
Mark Andrews
c3c8823fed 3681. [port] Update the Windows build system to support feature 
selection and WIN64 builds.  This is a work in
                        progress. [RT #34160]
 2013-12-04 12:47:23 +11:00
Evan Hunt
fb507315d4 [master] dig could miss tcp connections when cleaning up 
3679.	[bug]		dig could fail to clean up TCP sockets still
			waiting on connect(). [RT #35074]
 2013-12-02 13:34:23 -08:00
Evan Hunt
5255b631b1 [master] previous commit incomplete 2013-11-18 15:59:53 -08:00
Evan Hunt
2b57986603 [master] win32 portability fix 2013-11-18 15:46:24 -08:00
Tinderbox User
c8714f6798 Merge branch 'master' of ssh://repo.isc.org/proj/git/prod/bind9 2013-11-15 01:01:24 +00:00
Mark Andrews
0b565f6060 adjust EDNS query returned status warning message 2013-11-14 22:38:29 +11:00
Tinderbox User
03c0efc689 regen master 2013-11-13 01:04:50 +00:00
Jeremy C. Reed
8012d70ea4 Fix misspelling. 
Spell out month date while here.
 2013-11-12 07:06:13 -06:00