mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-30 14:07:59 +00:00
Code Issues Releases Wiki Activity
5,832 Commits 659 Branches 820 Tags
Commit Graph

5832 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andreas Gustafsson
f405ffddc8 added missing requirements 2000-07-08 17:27:28 +00:00
David Lawrence
5709b77c8c return non-zero if the rcodes differ 2000-07-08 16:37:43 +00:00
David Lawrence
c634c94d67 added "I:" info lines for each stage of the test 2000-07-08 16:37:18 +00:00
David Lawrence
45f0cd2b4b use full dig output; let digcomp sort it all out. in particular, digcomp 
really wants to get the server status.

also added "I:" info lines for each stage of the test
 2000-07-08 16:36:29 +00:00
David Lawrence
2dc34dc3de removed a.root-servers.nil A record as out of zone for .mil 2000-07-08 16:29:47 +00:00
David Lawrence
b575462ccb test that out-of-zone glue records are not returned 2000-07-08 16:29:05 +00:00
David Lawrence
d319a11e58 use full dig output so digcomp can get the server status response 2000-07-08 16:27:24 +00:00
Brian Wellington
66b84e8952 - test insecurity proofs 
- use digcomp.pl's ability to check rcode
- generate less unneeded output
- use separate output files for each test, so that output isn't deleted
 2000-07-08 00:39:17 +00:00
Brian Wellington
71954c9571 I lied. This should be the last change to the setuid() code. Call 
initgroups() from ns_os_inituserinfo, and make sure that Linux initially has
the CAP_SETGID capability set so that it doesn't fail.
 2000-07-08 00:12:21 +00:00
Brian Wellington
c336121fb5 Hopefully the last change to the setuid code. Only call initgroups() 
if getuid() == 0.  Don't call ns_os_changeuser() more than once (it
could happen on Linux).

The code in its current form doesn't check for root before calling
setgid() or setuid(), since they'll fail and print reasonable error
messages (unless -u is supplied with the non-root user that ran named,
in which case it would succeed).  The call to initgroups() would fail for
non root, so it shouldn't be tried.

The previous (as of a few days ago) code just ignored the -u parameter
when named was run as non-root.  This was not good.
 2000-07-07 23:53:35 +00:00
Andreas Gustafsson
5178281071 added draft-ietf-dnsext-message-size-00.txt; 
updated draft-ietf-dnsext-iana-dns* from -00 to -01
 2000-07-07 23:24:06 +00:00
Andreas Gustafsson
722cac3cdc worked around NetBSD /bin/sh bug, making the 
script shorter in the process
 2000-07-07 23:18:51 +00:00
James Brister
475c936d4c 314. [func] Inet controls named.conf statement can now have 
any non-negative number of keys specified.
 2000-07-07 23:11:48 +00:00
James Brister
b4124351ad typo in printing additional-data definition.. 2000-07-07 22:57:53 +00:00
Andreas Gustafsson
8d19e0443d worked around NetBSD /bin/sh bug, making the 
script shorter in the process
 2000-07-07 22:45:22 +00:00
Andreas Gustafsson
ed0a75d4a4 indentation and other style fixes; 
reindented (emacs users please (setq perl-indent 8))
 2000-07-07 22:43:45 +00:00
Andreas Gustafsson
eebcaeb6a0 added CNAME RR for RT #153 regression test 2000-07-07 22:33:20 +00:00
Brian Wellington
6ad837a1ad The rcode comparison check didn't work. It does now. 2000-07-07 22:13:21 +00:00
Brian Wellington
4e5388b459 Clean up the uid switching code again so that setgid() is called in 
ns_os_changeuser().
 2000-07-07 22:10:54 +00:00
Michael Sawyer
0f2fff1389 Print stat lines when needed. 
(This should be able to be safely pulled up.)
 2000-07-07 21:53:47 +00:00
Brian Wellington
1cc90f4ab4 Check that the rcodes in the 2 messages are the same 2000-07-07 21:43:49 +00:00
David Lawrence
d20d22616b A socket result of ISC_R_SUCCESS can still possibly be posted even after 
isc_socket_cancel() has been called.  resquery_senddone() has been fixed
to account for this (there was a race condition because of the faulty
assumption that only ISC_R_CANCELED would be returned after
isc_socket_cancel()).

The interaction of resquery_response() with the dispatcher now has to be
closely reviewed to make sure it does not have a similar problem with
a canceled query.  If the faulty assumption hadn't been faulty, it was
fine, but now I'm not so sure.
 2000-07-07 19:43:14 +00:00
Brian Wellington
0308460880 Some of the lwres functions weren't calling lwres_conf_parse. 2000-07-07 19:43:10 +00:00
Brian Wellington
674a8f811e Don't die when lwres_conf_parse() returns failure. 2000-07-07 19:19:09 +00:00
Brian Wellington
68aa880dd5 remove unnecessary calls to fcntl(). 2000-07-07 19:10:00 +00:00
Brian Wellington
d8c8722f28 313. [bug] When parsing resolv.conf, don't terminate on an 
error.  Instead, parse as much as possible, but
                        still return an error if one was found.
 2000-07-07 18:58:46 +00:00
Brian Wellington
03968c0f5e removed dead code 2000-07-07 18:28:58 +00:00
Brian Wellington
1e8c2e72e7 remove extra spaces in I: lines 2000-07-07 18:25:20 +00:00
Brian Wellington
4b7167e96a 312. [bug] Increase the number of allowed elements in the 
resolv.conf search path from 6 to 8.  If there
                        are more than this, ignore the remainder rather
                        than returning a failure in lwres_conf_parse.
 2000-07-07 18:24:11 +00:00
Brian Wellington
a4b496f2ab 311. [bug] lwres_conf_parse failed when the first line of 
resolv.conf was empty or a comment.
 2000-07-07 18:16:46 +00:00
James Brister
524c8ea0dc typo in print statement. 2000-07-07 14:30:00 +00:00
James Brister
952e9025b0 310. [func] Changes to named.conf "controls" statement (inet 
subtype only)

                          - support "keys" clause

                                controls {
                                   inet * port 1024
                                        allow { any; } keys { "foo"; }
                                }

                          - allow "port xxx" to be left out of statement,
                            in which case it defaults to omapi's default port
                            of 953.
 2000-07-07 13:56:14 +00:00
Brian Wellington
6c3bd0545a If the test timed out, R:FAIL was being printed twice, and the error 
message was missing the I: prefix.
 2000-07-07 07:15:04 +00:00
Brian Wellington
25496cebad If trying to validate a key set that happens to be a security root, the 
validation should only consist of checking that each key in the key set
is also in the list of security root keys.

Strangeness occurs when the key set is signed, since the key set is marked
as secure, but the sig set is not, since it wasn't used in the validation
process.  This means that a query for a key set at a security root will
have the AD bit set if the key set is unsigned and not if the key set is signed.
 2000-07-07 00:44:01 +00:00
Brian Wellington
20e597d71c remove spaces from I: statements 2000-07-07 00:41:18 +00:00
David Lawrence
3658cf5419 comment cleanup (missing "not", spaces where tabs should have been) 2000-07-07 00:25:47 +00:00
David Lawrence
9fb4b3f08a Do not return an exact match from dns_rbt_findnode() when the exact 
match does not have associated data and DNS_RBTFIND_EMPTYDATA is not set.
Return DNS_R_PARTIALMATCH instead if there is a superdomain with
data, or ISC_R_NOTFOUND if no superdomain has data.

Make dns_rbt_findname() honor DNS_RBTFIND_EMPTYDATA, per the rbt.h
documentation that has been saying it will.  It didn't.
 2000-07-06 23:54:45 +00:00
Brian Wellington
d52cd4a9fa Properly fill in sa_family and sa_len (if present). Also fix a bug in 
test_noop (you'd really think a noop test would be bug free).
 2000-07-06 22:28:44 +00:00
Brian Wellington
861df15904 The includes were in the wrong order, causing digital unix to fail. 2000-07-06 22:13:15 +00:00
Brian Wellington
23efeb1a58 Check LWRES_PLATFORM_HAVESALEN, not ISC_PLATFORM_HAVESALEN 2000-07-06 21:42:05 +00:00
Brian Wellington
23ce1c7cca Lots of the comments were wrong. 2000-07-06 20:05:13 +00:00
Michael Sawyer
fec9cc90e6 Corrected cleanup 2000-07-06 19:54:02 +00:00
Michael Sawyer
03967f5ba6 Remove unneeded file 2000-07-06 19:46:20 +00:00
Michael Sawyer
f7b7a2448c use runall.sh and cleanall.sh 2000-07-06 19:40:57 +00:00
Michael Sawyer
2c65255baa Missing quotes 2000-07-06 19:37:47 +00:00
Michael Sawyer
ea1fabfe76 SUBDIRS entry corrected and brought up to date 2000-07-06 19:34:27 +00:00
Andreas Gustafsson
2c9fdfdfbe added script for running all system tests in sequence 2000-07-06 19:32:37 +00:00
Brian Wellington
b67a6d9657 If a zone is specified by the user, use it as the suffix for relative names. 2000-07-06 19:29:40 +00:00
Andreas Gustafsson
c1db6a381f added draft-ietf-dnsext-iana-dns-00.txt (already expired) 2000-07-06 18:32:36 +00:00
Andreas Gustafsson
457a63f3b8 missing colon in glue_test rule 2000-07-06 04:36:55 +00:00