]>
granicus.if.org Git - pdns/log
James Cloos [Tue, 17 Mar 2015 17:26:58 +0000 (13:26 -0400)]
Add regression test for OPENPGPKEY.
Signed-off-by: James Cloos <cloos@jhcloos.com>
(cherry picked from commit
003c18d2f82f4fc36ff7b35b6560dfdf477ec878 )
James Cloos [Mon, 16 Mar 2015 17:53:44 +0000 (13:53 -0400)]
Use the variable name d_keyring for the OPENPGPKEY RDATA.
Signed-off-by: James Cloos <cloos@jhcloos.com>
(cherry picked from commit
3fd06ce5b9f6aa684788584d1d8cdd36eb24d7df )
James Cloos [Fri, 13 Mar 2015 22:45:58 +0000 (18:45 -0400)]
Add support for OPENPGPKEY RRTYPE.
OPENPGPKEY is defined in draft-ietf-dane-openpgpkey.
The IANA has assigned RRTYPE 61.
Its content is a single binary blob, its presentation is a single hex blob.
Thanks to Aki Tuomi, JP Mens and Peter van Dijk for bug reports and insights.
Signed-off-by: James Cloos <cloos@jhcloos.com>
Kees Monshouwer [Mon, 12 Oct 2015 15:08:17 +0000 (17:08 +0200)]
Merge pull request #1 from arjenz/patch-1
Fix typo
Arjen Zonneveld [Mon, 12 Oct 2015 15:04:06 +0000 (17:04 +0200)]
Fix typo
Kees Monshouwer [Sat, 5 Sep 2015 10:16:10 +0000 (12:16 +0200)]
limit NSEC3 iterations in bindbackend
Pieter Lexis [Wed, 30 Sep 2015 11:07:18 +0000 (13:07 +0200)]
Merge pull request #2767 from pieterlexis/3.4.7-html-escape
Prevent XSS by escaping user input
Pieter Lexis [Wed, 2 Sep 2015 12:14:02 +0000 (14:14 +0200)]
Prevent XSS by escaping user input
Additionally, escape "'s so no attributes can be inserted into webpages.
Thanks to Pierre Jaury and Damien Cauquil at Sysdream for pointing this
out.
Pieter Lexis [Tue, 29 Sep 2015 14:49:54 +0000 (16:49 +0200)]
Merge pull request #2753 from cmouse/geoip-patches-3.4.7
Geoip patches 3.4.7
Aki Tuomi [Wed, 16 Sep 2015 13:09:56 +0000 (16:09 +0300)]
Update boost and libgeoip-dev
Aki Tuomi [Wed, 16 Sep 2015 13:00:18 +0000 (16:00 +0300)]
Use BOOST_FOREACH instead of C++11
Aki Tuomi [Wed, 16 Sep 2015 09:16:30 +0000 (12:16 +0300)]
Fix geoip test suite
Aki Tuomi [Mon, 14 Sep 2015 08:39:05 +0000 (11:39 +0300)]
Update test suite
Now tests direct and indirect response.
Aki Tuomi [Mon, 14 Sep 2015 08:37:09 +0000 (11:37 +0300)]
Set scopemask for result during reply
Aki Tuomi [Fri, 11 Sep 2015 09:17:12 +0000 (12:17 +0300)]
Rectify records
Aki Tuomi [Fri, 11 Sep 2015 08:18:14 +0000 (11:18 +0300)]
Return result directly if available
Pieter Lexis [Tue, 15 Sep 2015 10:04:34 +0000 (12:04 +0200)]
Merge pull request #2748 from cmouse/gpgsql-truth-3.4.6
Handle NULL and boolean properly in gPGSql (auth 3.4.7)
Aki Tuomi [Sun, 13 Sep 2015 16:45:32 +0000 (19:45 +0300)]
Handle NULL and boolean properly in gPGSql
Peter van Dijk [Wed, 26 Aug 2015 09:29:18 +0000 (11:29 +0200)]
Merge pull request #2706 from mind04/auth-3.4.6
log answer packets only if log-dns-details is enabled
Kees Monshouwer [Wed, 26 Aug 2015 08:29:14 +0000 (10:29 +0200)]
log answer packets only if log-dns-details is enabled
Peter van Dijk [Tue, 25 Aug 2015 17:58:24 +0000 (19:58 +0200)]
Merge pull request #2696 from cmouse/unknown-edns-3.4.6
Unknown edns 3.4.6
Aki Tuomi [Mon, 17 Aug 2015 18:52:17 +0000 (21:52 +0300)]
Add test for EDNS handling
Aki Tuomi [Mon, 17 Aug 2015 18:10:33 +0000 (21:10 +0300)]
Add EDNS unknown version handling
Peter van Dijk [Mon, 24 Aug 2015 18:19:33 +0000 (20:19 +0200)]
drop dnsdist manpage from rpm packages
Peter van Dijk [Mon, 24 Aug 2015 16:38:15 +0000 (18:38 +0200)]
kill another dnsdist manpage
Peter van Dijk [Mon, 24 Aug 2015 16:31:42 +0000 (18:31 +0200)]
drop dnsdist.1 manpage from semistatic debian packages
Peter van Dijk [Mon, 24 Aug 2015 15:49:29 +0000 (17:49 +0200)]
Merge pull request #2700 from mind04/auth-3.4.6
auth 3.4.6 - closes #2695
Kees Monshouwer [Mon, 24 Aug 2015 15:06:57 +0000 (17:06 +0200)]
remove dnsdist manpage from tar.bz2
Peter van Dijk [Mon, 24 Aug 2015 14:42:32 +0000 (16:42 +0200)]
plug memleak
Kees Monshouwer [Mon, 24 Aug 2015 14:19:54 +0000 (16:19 +0200)]
sync boost.m4 macro with upstream
Peter van Dijk [Mon, 24 Aug 2015 14:26:25 +0000 (16:26 +0200)]
avoid superfluous backend recycling
Peter van Dijk [Mon, 24 Aug 2015 12:31:56 +0000 (14:31 +0200)]
Merge pull request #2699 from mind04/auth-3.4.6
Auth 3.4.6
Kees Monshouwer [Mon, 24 Aug 2015 10:04:08 +0000 (12:04 +0200)]
remove dnsdist from tools
Pieter Lexis [Wed, 5 Aug 2015 12:44:54 +0000 (14:44 +0200)]
Support gcc 5.2 detection for boost
bert hubert [Mon, 22 Jun 2015 09:25:58 +0000 (11:25 +0200)]
make trailing/leading spaces stand out in pdnssec check_zone
Peter van Dijk [Mon, 24 Aug 2015 09:11:45 +0000 (11:11 +0200)]
Merge pull request #2698 from PowerDNS/revert-2674-search-api-3.4.6
Revert "Search API for 3.4.6"
Peter van Dijk [Mon, 24 Aug 2015 08:01:20 +0000 (10:01 +0200)]
Revert "Search API for 3.4.6"
Pieter Lexis [Fri, 7 Aug 2015 10:12:28 +0000 (12:12 +0200)]
Merge pull request #2674 from cmouse/search-api-3.4.6
Search API for 3.4.6
Aki Tuomi [Sat, 1 Aug 2015 05:11:08 +0000 (08:11 +0300)]
Update tests
Aki Tuomi [Wed, 5 Aug 2015 16:22:36 +0000 (19:22 +0300)]
Add search records/comments to gOracle backend
Aki Tuomi [Wed, 5 Aug 2015 16:22:27 +0000 (19:22 +0300)]
Add search records/comments to gMySQL backend
Aki Tuomi [Wed, 5 Aug 2015 16:22:17 +0000 (19:22 +0300)]
Add search records/comments to gPgSQL backend
Aki Tuomi [Wed, 5 Aug 2015 16:22:07 +0000 (19:22 +0300)]
Add search records/comments to gSQLite3
Aki Tuomi [Fri, 31 Jul 2015 20:28:44 +0000 (23:28 +0300)]
Add support for searchRecords to bind backend
Aki Tuomi [Thu, 30 Jul 2015 17:23:29 +0000 (20:23 +0300)]
Add support for searchRecords to RemoteBackend
Aki Tuomi [Thu, 30 Jul 2015 16:26:11 +0000 (19:26 +0300)]
Use searchRecords and searchComments in search-data
Aki Tuomi [Fri, 31 Jul 2015 19:38:55 +0000 (22:38 +0300)]
Add SimpleMatch matcher
This utility class lets you do simple * and ? based matching.
Aki Tuomi [Wed, 5 Aug 2015 16:05:57 +0000 (19:05 +0300)]
Use searchRecords and searchComments in GSQL
Aki Tuomi [Wed, 5 Aug 2015 15:49:07 +0000 (18:49 +0300)]
Add searchRecords and searchComments API call
Pieter Lexis [Wed, 5 Aug 2015 10:32:49 +0000 (12:32 +0200)]
Merge pull request #2647 from pieterlexis/auth-346-sunos-boost
Fix boost detection on SunOS
Pieter Lexis [Tue, 4 Aug 2015 11:36:22 +0000 (13:36 +0200)]
Merge pull request #2667 from cmouse/update-yahttp-3.4.6
Update YaHTTP to v0.1.7
Aki Tuomi [Sat, 1 Aug 2015 03:39:40 +0000 (06:39 +0300)]
Update YaHTTP to v0.1.7
Pieter Lexis [Mon, 20 Jul 2015 10:48:38 +0000 (12:48 +0200)]
Fix boost detection on SunOS (thanks @UX-admin)
Pieter Lexis [Fri, 19 Jun 2015 09:37:57 +0000 (11:37 +0200)]
Merge pull request #2607 from cmouse/update-yahttp-3.4.6
Update YaHTTP to v0.1.6
Aki Tuomi [Thu, 18 Jun 2015 14:34:09 +0000 (17:34 +0300)]
Update YaHTTP to v0.1.6
Peter van Dijk [Fri, 5 Jun 2015 11:40:03 +0000 (13:40 +0200)]
Merge pull request #2561 from pieterlexis/fix-overly-long-name
Limit the maximum length of a qname
Peter van Dijk [Fri, 5 Jun 2015 10:01:46 +0000 (12:01 +0200)]
Merge pull request #2558 from mind04/pdnssec1
pdnssec: check for glue and delegations in parent zones
Pieter Lexis [Tue, 2 Jun 2015 13:26:42 +0000 (15:26 +0200)]
Limit the maximum length of a qname
Kees Monshouwer [Mon, 1 Jun 2015 08:24:09 +0000 (10:24 +0200)]
pdnssec: log missing glue as warning
Kees Monshouwer [Sat, 30 May 2015 23:11:12 +0000 (01:11 +0200)]
pdnssec: check for glue and delegations in parent zones
Pieter Lexis [Fri, 29 May 2015 10:18:35 +0000 (12:18 +0200)]
Merge pull request #2552 from pieterlexis/3.4.5-boost-detection-gcc-51
Our Boost check doesn't recognize gcc 5.1 yet
Ruben Kerkhof [Sat, 9 May 2015 18:01:11 +0000 (20:01 +0200)]
Our Boost check doesn't recognize gcc 5.1 yet
(cherry picked from commit
016ed2c126c19ebdd39697465d1d07c7ef06c4fc )
Closes #2548
Pieter Lexis [Mon, 18 May 2015 10:54:01 +0000 (12:54 +0200)]
Merge pull request #2513 from rubenk/for-3.4.5
For 3.4.5
Peter van Dijk [Mon, 18 May 2015 10:38:49 +0000 (12:38 +0200)]
Merge pull request #2530 from cmouse/fix-pkcs11-ecdsa-3.4.5
Remove three bytes from PKCS#11 ECPoint string
Peter van Dijk [Mon, 18 May 2015 10:38:14 +0000 (12:38 +0200)]
Merge pull request #2533 from cmouse/support-debian-default-3.4.5
Support debian default 3.4.5
Peter van Dijk [Mon, 18 May 2015 10:36:42 +0000 (12:36 +0200)]
Merge pull request #2535 from cmouse/warn-if-pkcs11-hashing-fails-3.4.5
Emit error if hashing fails on PKCS#11 token
Aki Tuomi [Sun, 17 May 2015 14:10:16 +0000 (17:10 +0300)]
Emit error if hashing fails on PKCS#11 token
Aki Tuomi [Fri, 24 Apr 2015 15:41:42 +0000 (18:41 +0300)]
Add ability to prevent powerdns from starting in SysV script
Aki Tuomi [Fri, 24 Apr 2015 15:18:47 +0000 (18:18 +0300)]
Support /etc/default/pdns-recursor
Aki Tuomi [Fri, 24 Apr 2015 15:16:33 +0000 (18:16 +0300)]
Support default directory on debian/ubuntu
Aki Tuomi [Sat, 16 May 2015 20:57:45 +0000 (23:57 +0300)]
Add sanity checks
Aki Tuomi [Sat, 16 May 2015 20:44:49 +0000 (23:44 +0300)]
Remove three bytes from PKCS#11 ECPoint string
The CKA_EC_POINT is defined as 'DER encoded X9.62 octet string',
which means it has DER preamble and also compression indicator.
So we remove these from the result string, and pass it along,
to get valid ECPoint value for DNS use.
bert hubert [Wed, 6 May 2015 18:48:17 +0000 (20:48 +0200)]
be careful reading empty lines in our config parser and prevent integer overflow. 1 line diff.
(cherry picked from commit
83281a74766e31ff7197c7ebc4a331e9dad89e8f )
Florian Obser [Thu, 7 May 2015 14:16:10 +0000 (16:16 +0200)]
use hostname -f || hostname consistently
(cherry picked from commit
e0febdd0bb7ebee5d60de0fc448164a2bee067aa )
Aki Tuomi [Mon, 27 Apr 2015 06:44:43 +0000 (09:44 +0300)]
Delete backend when cleaning up Distributor
Fixes CID
1155295
(cherry picked from commit
5d47a576a653cbff02ddb496b24875c3e9ce5572 )
Aki Tuomi [Mon, 27 Apr 2015 06:40:17 +0000 (09:40 +0300)]
Initialize all scalar fields in SOAData
Fixes several CIDs in coverity.
(cherry picked from commit
34201169a567de201cb8d0f0972374c10328eafe )
Aki Tuomi [Mon, 27 Apr 2015 06:34:01 +0000 (09:34 +0300)]
Initialize file descriptors to -1
Fixes CID1295469
(cherry picked from commit
2307c007b772cf05a33f54b34c7a313555599810 )
Ruben Kerkhof [Sat, 9 May 2015 11:57:19 +0000 (13:57 +0200)]
prevent crash after --list-modules
Probably caused by calls to destructors in dynamically loaded libraries. Just stop calling them.
(cherry picked from commit
44ac5977adaf092d10ae5ce3df572ff9c06e71cf )
Florian Obser [Wed, 6 May 2015 16:41:59 +0000 (18:41 +0200)]
we need unistd.h here
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
(cherry picked from commit
34ed5f948fd3b9571fa13399992fb6aea911ff4f )
Florian Obser [Wed, 6 May 2015 16:40:46 +0000 (18:40 +0200)]
we need errno.h here
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
(cherry picked from commit
61d75286efb320afb31847c2fcc28ad9c89c491f )
Ruben Kerkhof [Tue, 28 Apr 2015 10:22:58 +0000 (12:22 +0200)]
Look for mbedtls before polarssl
PolarSSL has been renamed to mbed TLS
Fixes #2336
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
(cherry picked from commit
933de4e3a2797f6362c9bc24fa69aaeaad171d1b )
Ruben Kerkhof [Wed, 6 May 2015 15:19:12 +0000 (17:19 +0200)]
Detect Lua on OpenBSD
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
(cherry picked from commit
3c9143a3e907d70c9967d725ac76c1602769f023 )
Ruben Kerkhof [Fri, 16 Jan 2015 12:14:43 +0000 (13:14 +0100)]
Let pkg-config determine botan dependency libs
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
(cherry picked from commit
4adc8c71051a86d134439f94d300eac16051e158 )
bert hubert [Tue, 6 Jan 2015 11:49:31 +0000 (12:49 +0100)]
kill some further mallocs and add note to remind us not to add them back
Conflicts:
pdns/dnsparser.cc
Pieter Lexis [Tue, 28 Apr 2015 09:08:52 +0000 (11:08 +0200)]
Merge pull request #2458 from cmouse/remotebackend-move-test-socket-3.4.5
Move remotebackend-unix test socket to testsdir
Aki Tuomi [Tue, 28 Apr 2015 08:40:52 +0000 (11:40 +0300)]
Use tabs instead of spaces
Pieter Lexis [Tue, 28 Apr 2015 08:28:09 +0000 (10:28 +0200)]
Merge pull request #2457 from cmouse/remotebackend-pipe-defer-launch-3.4.5
Defer launch of coprocess until first question
Aki Tuomi [Fri, 24 Apr 2015 14:44:16 +0000 (17:44 +0300)]
Move remotebackend-unix test socket to testsdir
Aki Tuomi [Fri, 24 Apr 2015 14:36:12 +0000 (17:36 +0300)]
Defer launch of coprocess until first question
Do not launch coprocess in ctor as if that fails for some reason,
like delays, it can prevent PowerDNS from starting at all.
Peter van Dijk [Thu, 23 Apr 2015 08:06:53 +0000 (10:06 +0200)]
Merge pull request #2445 from mind04/3.4.4
make makeRelative() case insensitive
Kees Monshouwer [Wed, 22 Apr 2015 18:47:04 +0000 (20:47 +0200)]
add some missing toLower() and add a test for makeRelative()
Kees Monshouwer [Wed, 22 Apr 2015 17:31:31 +0000 (19:31 +0200)]
make makeRelative() case insensitive
Peter van Dijk [Tue, 21 Apr 2015 15:18:02 +0000 (17:18 +0200)]
Merge pull request #2439 from mind04/3.4.4-2
3.4.4 2
Peter van Dijk [Tue, 21 Apr 2015 14:19:00 +0000 (16:19 +0200)]
Merge pull request #2438 from mind04/3.4.4
3.4.4
Kees Monshouwer [Fri, 27 Mar 2015 19:19:36 +0000 (20:19 +0100)]
pdnssec: warn for insecure wildcards in opt-out zones
Kees Monshouwer [Tue, 24 Mar 2015 13:29:22 +0000 (14:29 +0100)]
allow "pdnssec set-nsec3 ZONE" for insecure zones
this saves on one rectify when securing a NSEC3 zone
Christian Hofstaedtler [Tue, 17 Mar 2015 23:03:32 +0000 (00:03 +0100)]
Test fix: actually update serial in rfc2136handler
(cherry picked from commit
effecfa731fb4315419aa312d148117935d38517 )
Christian Hofstaedtler [Thu, 5 Mar 2015 20:35:50 +0000 (21:35 +0100)]
Fix API tests after changing SOA-EDIT-API default
(cherry picked from commit
b0af91053d2cf3209342008de7aaadbb97eaf2da )
Christian Hofstaedtler [Thu, 26 Feb 2015 22:30:31 +0000 (23:30 +0100)]
Change SOA-EDIT-API to work like SOA-EDIT-DNSUPDATE
The SOA-EDIT-DNSUPDATE behaviour makes for a better ruleset for
incremental updates, like they are done via the API.
Also SOA-EDIT-API now defaults to DEFAULT, if it's not given at all
during zone creation (over the API).
(cherry picked from commit
a6448d959c9c83b0b985d460f54102878792459b )
Christian Hofstaedtler [Tue, 24 Feb 2015 22:46:27 +0000 (23:46 +0100)]
API (Auth): fix hosting of root zone
As discovered by @jpmens in #2216, the API could not create the root
zone, and listing zones would also fail when the root zone was present.
This corrects those bugs, plus another that prevented reading the root
zone, and adds a small API test set for the root zone.
Fixes #2216.
(cherry picked from commit
406497f50ca776c26db3df4a56bf560095c4db32 )