mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-29 05:28:00 +00:00
Code Issues Releases Wiki Activity
23,469 Commits 656 Branches 820 Tags
Commit Graph

168 Commits

Author SHA1 Message Date
Mark Andrews
713ad87a7f 1832. [bug] named fails to return BADKEY on unknown TSIG algorithm. 
[RT #13620]
 2005-03-16 01:47:16 +00:00
Mark Andrews
dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Brian Wellington
4b171ebd70 1229. [bug] named would crash if it received a TSIG signed 
query as part of an AXFR response. [RT #2570]
 2002-03-14 18:34:48 +00:00
Andreas Gustafsson
1f1d36a87b Check return values or cast them to (void), as required by the coding 
standards; add exceptions to the coding standards for cases where this is
not desirable
 2001-11-30 01:59:49 +00:00
Danny Mayer
e61793f086 Added LIB*_EXTERNAL_DATA Macros necessary to make lib extern variables globally visible in Win32 2001-11-19 03:08:44 +00:00
Brian Wellington
ff7b9eede9 dns_tsigkey_createfromkey wasn't checking that the key algorithm matched the 
key name.
 2001-09-27 17:49:11 +00:00
Andreas Gustafsson
76c8294c81 format string bugs and improved format string checking [RT #1578] 2001-08-08 22:54:55 +00:00
Brian Wellington
26a5f97dd8 Don't refer to keys as "TSIG keys", since they might be used for rndc only, 
and this could be confusing.
 2001-07-26 20:54:35 +00:00
Brian Wellington
0a9a3d8c6d 904. [bug] The server would leak memory if attempting to use 
an expired TSIG key. [RT #1406]
 2001-06-15 02:24:02 +00:00
David Lawrence
92ef1a9b9d use ISC_MAGIC for all magic numbers, for our friends in EBCDIC land 2001-06-04 19:33:39 +00:00
Danny Mayer
db1bfc3151 htons needs cast for win32 2001-05-06 02:23:06 +00:00
Brian Wellington
5ea0d11ca4 771. [cleanup] TSIG errors related to unsynchronized clocks 
are logged better.
 2001-03-07 20:53:32 +00:00
Brian Wellington
100d0d2ec6 Use a refcount instead of an explicit mutex and integer. 2001-02-13 03:57:06 +00:00
Brian Wellington
9d967288c3 zero length keys from the config file were not being logged as too short to be 
secure.
 2001-01-22 20:27:04 +00:00
Brian Wellington
564c1b8f42 remove the use of abs(), which could have led to false positives because of 
64 to 32 bit truncation.
 2001-01-16 22:47:56 +00:00
Andreas Gustafsson
4755b174df simplified constant names, eliminating the dns_constname structs 2001-01-11 21:07:21 +00:00
Andreas Gustafsson
8c56932f9a yet another potential memory leak 2001-01-11 20:30:51 +00:00
Mark Andrews
19c7cce855 674. [func] Allow messages to be TSIG signed / verified using 
a offset from the current time.
 2001-01-09 23:35:33 +00:00
Brian Wellington
499b34cea0 copyright update 2001-01-09 22:01:04 +00:00
Mark Andrews
0c70ab3065 672. [bug] The wrong time was in the "time signed" field when 
replying with BADTIME error.
 2001-01-09 14:32:44 +00:00
Brian Wellington
6734ac097f #include <isc/print.h> 2000-12-08 03:10:32 +00:00
Brian Wellington
020ebf1190 log the reasons for various verify failures. 2000-12-07 20:13:29 +00:00
Andreas Gustafsson
7863e6bd43 provide a more detailed error message when configuring 
a TSIG key fails [RT #461]
 2000-11-15 00:52:04 +00:00
Mark Andrews
368b37b616 dns_rdata_invalidate -> dns_rdata_reset 2000-10-31 03:22:05 +00:00
Mark Andrews
c03bb27f06 532. [func] Implement DNS UPDATE pseudo records using 
DNS_RDATA_UPDATE flag.

 531.   [func]          Rdata really should be initalized before being
                        assigned to (dns_rdata_fromwire(), dns_rdata_fromtext(),
                        dns_rdata_clone(), dns_rdata_fromregion()),
                        check that it is.
 2000-10-25 04:26:57 +00:00
Brian Wellington
0e5d6900bd Various hacks to allow (at some point in the future) interoperability 
with Windows 2000's broken implementation of TKEY.
 2000-10-12 00:40:52 +00:00
Brian Wellington
d1cbf71409 clean up suspicious looking and incorrect uses of dns_name_fromregion 2000-10-07 00:09:28 +00:00
Brian Wellington
dd27011f02 locks weren't being destroyed. 2000-09-25 17:46:39 +00:00
Brian Wellington
6e5fa98df0 A call to isc_mem_put could (in some cases) be called with an invalid size. 2000-09-21 21:29:16 +00:00
Brian Wellington
5c29047792 minor dst api change 2000-09-12 09:59:28 +00:00
Brian Wellington
8447ecf6fd Check for NULL before checking for key size. 2000-09-08 07:51:28 +00:00
Brian Wellington
70d950d16e Log a warning if TSIG keys are too short (where too short is less than 8 bytes). 2000-09-07 20:34:04 +00:00
Brian Wellington
a00c5e2151 gss-tsig support 2000-08-17 02:08:27 +00:00
David Lawrence
beea173d49 Rewrote the INSIST in dns_tsigkey_create() so that dstalg was guaranteed to 
be set, even when INSISTS() are turned off.
 2000-08-16 00:18:30 +00:00
Brian Wellington
1e2749dba8 Yet more minor cleanup. 2000-08-14 22:00:00 +00:00
Brian Wellington
f2338a0d6a Minor tsig cleanup. 2000-08-14 18:13:11 +00:00
David Lawrence
40f53fa8d9 Trailing whitespace trimmed. Perhaps running "perl util/spacewhack.pl in your 
own CVS tree will help minimize CVS conflicts.  Maybe not.
Blame Graff for getting me to trim all trailing whitespace.
 2000-08-01 01:33:37 +00:00
David Lawrence
003e911541 tsig.c:136: warning: unused variable `tmp' -- removed 2000-07-31 21:07:11 +00:00
Brian Wellington
da786e7937 Sending a TSIG signed query with a TSIG algorithm that's not 
HMAC-MD5.SIG-ALG.REG.INT shouldn't crash the server.  Also, the description
of dns_tsigkey_create was wrong in at least one place, and the function
incorrectly returned an undocumented result.
 2000-07-28 23:27:01 +00:00
Brian Wellington
ddbc279e7b Removed some cruft and a crash. 2000-07-28 00:01:59 +00:00
David Lawrence
15a4474541 word wrap copyright notice at column 70 2000-07-27 09:55:03 +00:00
Brian Wellington
3b2efab212 There's no real difference between the "sring" and "dring" parameters, so 
call them "ring1" and "ring2" instead.  Also remove a bogus assertion.
 2000-07-21 22:38:31 +00:00
Brian Wellington
a49acbf201 Store tsig keys in an rbt, not a list. 2000-07-21 20:53:59 +00:00
Brian Wellington
4be64854b4 The wrong name was being duped when a tsig key was generated using tkey. 2000-07-21 20:32:12 +00:00
Brian Wellington
a5e73f3e9d Having a non-noerror value inn the tsig error field should always return 
DNS_R_TSIGERRORSET in dns_tsig_verify.  Change the result text to reflect
this.
 2000-07-20 19:32:57 +00:00
Brian Wellington
49c8a96fba Don't require that tsig keys must be on a keyring. Also some other cleanup. 2000-07-18 00:46:03 +00:00
Brian Wellington
809fdfba22 TSIG AXFR verify failed when talking to a BIND 8 server. 2000-06-23 00:48:28 +00:00
Brian Wellington
3aec811249 fixed memory leak on TSIG BADSIG 2000-06-06 23:44:13 +00:00
Brian Wellington
b70f6ae9d0 missing call to dst_context_destroy 2000-06-05 20:01:07 +00:00
Brian Wellington
4fe8755480 Use the new DST API 2000-06-02 18:59:33 +00:00