mirror of
https://git.FreeBSD.org/src.git
synced 2024-12-23 11:18:54 +00:00
0509c045a7
Approved by: re Requested by: security-officer
4158 lines
130 KiB
Plaintext
4158 lines
130 KiB
Plaintext
|
|
--- 8.3.7-REL released --- (Wed Sep 3 21:01:37 PDT 2003)
|
|
|
|
1581. [bug] apply anti-cache poison techniques to negative
|
|
answers.
|
|
|
|
--- 8.3.6-REL released --- (Sun Jun 8 15:11:32 PDT 2003)
|
|
|
|
1547. [port] cope with spurious EINVAL from evRead.
|
|
|
|
1538. [port] linux: not all distributions define IF_NAMESIZE.
|
|
|
|
1502. [port] some IPv6 references were not protected.
|
|
|
|
--- 8.3.5-REL released --- (Mon Jun 2 03:15:53 PDT 2003)
|
|
|
|
1540. [bug] remove potential memory leak from net_data_create().
|
|
|
|
1537. [bug] dig buffer overrun with large command lines.
|
|
|
|
1535. [bug] winnt: large zone transfers failed.
|
|
|
|
1536. [cleanup] use NS_MAXMSG to define TCP buffers.
|
|
|
|
1534. [func] The advertised EDNS UDP buffer size can now be set
|
|
via named.conf (edns-udp-size).
|
|
|
|
1533. [bug] don't artificially restrict the update message size.
|
|
|
|
1532. [bug] use maximum sized answer buffers in res_findzonecut().
|
|
|
|
1530. [bug] nslookup computed incorrect reverse lookup for IPv6.
|
|
|
|
1529. [lint] unused variable in dnsquery.c::main().
|
|
|
|
1528. [bug] getaddrinfo() incorrectly rejected a numeric service
|
|
under certian circumstances.
|
|
|
|
1527. [proto] add ns_t_apl (42).
|
|
|
|
1526. [doc] res_{get,set}servers().
|
|
|
|
1523. [bug] getipnodebyname with AI_ADDRCONFIG set was broken
|
|
on HPUX 11.11. Detect IPv6 interfaces under linux.
|
|
|
|
1519. [port] decunix: conflicting setnetgrent() and innetgr()
|
|
prototypes.
|
|
|
|
1518. [cleanup] silence "No root nameservers for class XX" when
|
|
"forward only;" is set in options.
|
|
|
|
1517. [cleanup] stop using putshort/putlong internally.
|
|
|
|
1513. [bug] use ipnodes.{byname,byaddr} for IPv6 NIS lookups.
|
|
Add support for "YP_MULTI_".
|
|
|
|
1511. [cleanup] don't use argument names in function prototypes.
|
|
|
|
1510. [port] openbsd uses /bsd not /kernel.
|
|
|
|
1506. [bug] named could sometimes set tc incorrectly.
|
|
|
|
1505. [bug] potential overflow if pointer arithmetic wrapped.
|
|
|
|
1503. [bug] named could make unnecessary queries for glue if the
|
|
additional section was full.
|
|
|
|
1501. [port] decunix: OSF 3.2 does not have native 64 bit support.
|
|
|
|
1500. [port] linux: namespace collision.
|
|
|
|
1499. [port] linux: #include <time.h> bin/dig/dig.c
|
|
|
|
1498. [bug] ns_makecanon() could under read its destination buffer
|
|
by one character and fail to properly canonicalise.
|
|
|
|
1497. [bug] res_mkupdate() used compression pointers when it
|
|
shouldn't.
|
|
|
|
1496. [bug] res_mkupdate() didn't support NAPTR.
|
|
|
|
1494. [bug] memory leak on thread destruction if gethostbyname() /
|
|
getnetbyname() have been called by the thread.
|
|
|
|
1493. [bug] check scope for link local servers.
|
|
|
|
1492. [placeholder]
|
|
|
|
1491. [cleanup] indentation problems.
|
|
|
|
1490. [bug] the seek offset was miscalculated when truncating
|
|
the ixfr log.
|
|
|
|
1489. [func] named no longer queries for missing additional A6
|
|
records.
|
|
|
|
1488. [port] decunix: TruCluster support.
|
|
See port/decunix/TruCluster.
|
|
|
|
1487. [bug] getnetgroup() takes (char **) not (const char **).
|
|
|
|
1486. [func] res_query() now generates more/better debug on failure
|
|
|
|
1485. [func] res_send() records the nameserver the response came
|
|
from. Dig retrieves this rather than reporting the
|
|
first address.
|
|
|
|
1484. [bug] dig use sin.sin_port for IPv4.
|
|
|
|
1483. [bug] nslookup could dereference a NULL pointer under certain
|
|
circumstances.
|
|
|
|
1482. [bug] provide local storage for localtime_r result.
|
|
|
|
1481. [bug] tv.tv_sec and time_t are not always the same type.
|
|
|
|
1480. [bug] gethostbyname(), getaddrinfo() could drop address
|
|
if the previous call contained one of the new
|
|
addresses.
|
|
|
|
1479. [func] try known lame servers if all other servers have
|
|
failed.
|
|
|
|
1478. [cleanup] libbind: don't look for A6 records, don't follow
|
|
DNAME record (use the CNAMES), remove some bitstring
|
|
related functions.
|
|
|
|
1477. [cleanup] libbind: namespace cleanup (irs_* to __irs*,
|
|
dst_* to __dst_* and tree_* to __tree*)
|
|
|
|
1476. [bug] dig wasn't using a random query id.
|
|
|
|
1475. [bug] "query-source address <listening interface> port *"
|
|
failed to use a system assigned port as documented.
|
|
|
|
1474. [bug] named wasn't seeing cached NODATA CNAME records.
|
|
|
|
1473. [bug] nslookup: buffer overrun when looking up reverse
|
|
IPv6 addresses under IP6.INT when not found under
|
|
IP6.ARPA.
|
|
|
|
1472. [port] freebsd; current has pselect().
|
|
|
|
1471. [port] 'dig -P' failed on some platforms.
|
|
|
|
1470. [bug] J.ROOT-SERVERS.NET is now 192.58.128.30.
|
|
|
|
1467. [deleted]
|
|
|
|
1461. [func] return referrals for glue (NS/A/AAAA) if recursion is
|
|
disabled (recursion no;).
|
|
|
|
1460. [bug] NS_MD5RSA_MAX_BITS was not correct.
|
|
|
|
1459. [bug] ns_sign2() could fail to compute a correct signature
|
|
if the TSIG ownername was compressed.
|
|
|
|
1458. [bug] host: spurious "Unknown algorithm" message with default
|
|
zone listing. missing white space before '(' in SOA
|
|
format.
|
|
|
|
1457. [bug] bison didn't like ns_parser.y.
|
|
|
|
1456. [doc] document auth-nxdomain default is "no" (see # 524).
|
|
|
|
1455. [bug] named failed to allow a cached NODATA response for
|
|
a ANY query to be retrieved.
|
|
|
|
1454. [contrib] nsverifier from Bob.Whelton@qwest.com.
|
|
|
|
1453. [bug] SOA answers should only be cached for the current
|
|
tick.
|
|
|
|
1452. [bug] don't cache -ve response SOA record.
|
|
|
|
1451. [port] bsdos: maybe_fix_includes is not required.
|
|
|
|
1450. [bug] hint zones don't need to be reloaded when a "child"
|
|
zone is removed.
|
|
|
|
1449. [bug] it was possible to orphan glue records. this could
|
|
lead to panics in stale().
|
|
|
|
1438. [bug] glue from a parent zone beneath a child zone could
|
|
be deleted by loading a child zone.
|
|
|
|
1437. [bug] linux: probe_ipv6 was broken.
|
|
|
|
1436. [port] decunix: update sys/bitypes.h
|
|
|
|
1435. [func] named-xfer: log the zone name when reporting query
|
|
sent.
|
|
|
|
1434. [doc] the man page for dn_expand failed to document eomorig.
|
|
|
|
1433. [lint] remove unused variable.
|
|
|
|
1432. [func] log TSIG key name if used with zone transfer.
|
|
|
|
1431. [func] new category "update-security".
|
|
|
|
1430. [func] libbind: the default nameservers now include ::1/::
|
|
as well as 127.0.0.1/0.0.0.0 if none are specified in
|
|
resolv.conf.
|
|
|
|
1429. [port] libbind: use strlcat/strlcpy if available.
|
|
|
|
1428. [port] eventlib.c: cast tv_sec to long when calling *printf().
|
|
|
|
1427. [func] define INT8SZ
|
|
|
|
1426. [port] res_dprintf() now supports format checking w/ gcc.
|
|
|
|
1425. [bug] 'aa' was not being set appropriately with cross zone
|
|
CNAMES.
|
|
|
|
1424. [cleanup] ip6_str2scopeid() now returns u_int32_t.
|
|
|
|
1423. [bug] 'ndc restart' could fail to restart named if there
|
|
were no arguments to named.
|
|
|
|
1422. [cleanup] optarg() etc. are declared in unistd.h.
|
|
|
|
1421. [bug] clear and check errno when calling strtoul().
|
|
|
|
1420. [cleanup] use %p instead of %#x for printing pointers.
|
|
|
|
1419. [cleanup] getinfo(): kill buflen manipulation.
|
|
|
|
1418. [port] cast pointers to (size_t) when aligning.
|
|
|
|
1417. [cleanup] make1101inaddr(): kill size manipulation.
|
|
|
|
1416. [port] log_vwrite() now supports format checking w/ gcc.
|
|
|
|
1415. [port] irix: probe for in6addr_any.
|
|
|
|
1414. [bug] strtoul() cast (char*) to (unsigned char*).
|
|
|
|
1413. [bug] host: soa values are not signed.
|
|
|
|
1412. [bug] fix numeric port range check in getaddrinfo().
|
|
|
|
1411. [port] freebsd/netbsd/openbsd: #define USE_IFNAMELINKID.
|
|
|
|
1410. [port] probe for sin6_scope_id when probing for IPv6 structs.
|
|
|
|
1409. [bug] dig: reverse6 computed a incorrect nibble string.
|
|
|
|
1408. [cleanup] res_mkquery.c: kill buflen manipulation.
|
|
|
|
1407. [port] namespace clash EV_ERR -> EV_SETERR
|
|
|
|
--- 8.3.4-REL released --- (Thu Nov 14 05:45:26 PST 2002)
|
|
|
|
1469. [bug] buffer length calculation for PX was wrong.
|
|
|
|
1468. [bug] ns_name_ntol() could overwite a zero length buffer.
|
|
|
|
1466. [bug] large ENDS UDP buffer size could trigger a assertion.
|
|
|
|
1465. [bug] possible NULL pointer dereference in db_sec.c
|
|
|
|
1464. [bug] the buffer used to construct the -ve record was not
|
|
big enough for all possible SOA records. use pointer
|
|
arithmetic to calculate the remaining size in this
|
|
buffer.
|
|
|
|
1463. [bug] use serial space arithmetic to determine if a SIG is
|
|
too old, in the future or has internally constistant
|
|
times.
|
|
|
|
1462. [bug] write buffer overflow in make_rr().
|
|
|
|
--- 8.3.3-REL released --- (Wed Jun 26 21:15:43 PDT 2002)
|
|
|
|
1406. [func] log attempts to exploit #1405.
|
|
|
|
1405. [bug] Remote buffer overrun.
|
|
|
|
1404. [func] Log to xfer-in when a named-xfer fails and one of
|
|
the masters returned REFUSED.
|
|
|
|
1403. [bug] named could leak a OPT record when returning a
|
|
negative response.
|
|
|
|
1402. [func] 'ndc restart' will now attempt to preserve the
|
|
arguments named was started with.
|
|
Use 'ndc restart --' to clear the arguements.
|
|
Use 'ndc restart <new arguements>' to restart named
|
|
with a alternate set of arguements.
|
|
|
|
1401. [bug] delay setting need_restart until the response to
|
|
ndc exec has been sent.
|
|
|
|
1400. [func] new ndc command 'args'. returns the arguements that
|
|
named was started with %xx escaped.
|
|
|
|
1399. [bug] #1377 broke linkage for those OS's using -lfl (flex).
|
|
Move -ll/-lfl to LIBL for all platforms.
|
|
|
|
--- 8.3.2-REL released --- (Mon Jun 17 20:24:32 PDT 2002)
|
|
|
|
1398. [doc] update man pages for 'dig', 'dnsquery' and 'host'
|
|
to reflect IPv6 capabilities (nslookup and nsupdate
|
|
were already IPv4/IPv6 agnostic).
|
|
|
|
1397. [func] host: the default lookups now also include AAAA
|
|
records.
|
|
|
|
1396. [func] 'dig -x <ip6>' now works.
|
|
|
|
1395. [bug] 'dig @server' fail to report the IPv6 address of the
|
|
server in error messages.
|
|
|
|
1394. [contrib] normalize_zone now handles $TTL.
|
|
|
|
1393. [bug] named: -t and -w could not be used together.
|
|
|
|
1392. [func] report serial(s) in out going transfer operation.
|
|
|
|
--- 8.3.2-RC1 released --- (Thu May 30 23:06:11 PDT 2002)
|
|
|
|
1391. [func] libbind: no longer attempts bit string labels for
|
|
IPv6 reverse resolution. Try IP6.ARPA then IP6.INT
|
|
for nibble style resolution.
|
|
|
|
1390. [port] linux: ss_family vs __ss_family in sockaddr_storage.
|
|
|
|
1389. [port] freebsd: 5.0 uses gid_t rather that int for
|
|
GETGROUPLIST_ARGS
|
|
|
|
1388. [port] bsdi: 4.2 also has struct sockaddr_storage.
|
|
|
|
1387. [bug] nslookup was using inet_ntoa() to print out a IPv6
|
|
address.
|
|
|
|
1386. [bug] escape '(' and ')' when coverting to presentation
|
|
form.
|
|
|
|
1385. [func] server { edns yes_or_no; } is now supported.
|
|
|
|
1384. [bug] nslookup: partial coversion to similar style outputs
|
|
for both -type=aaaa and -type=a.
|
|
|
|
1383. [bug] free() of non-malloced memory in nslookup.
|
|
|
|
1382. [port] cast all instances of yytext in commands.l to (char*)
|
|
to silence compilers on OS's where lex declares it
|
|
as (unsigned char *).
|
|
|
|
1381. [port] hpux 11.22: ansify GetAnswer in getinfo.c to
|
|
silence compiler.
|
|
|
|
1380. [bug] bad declaration of si in tsig_key_from_addr().
|
|
|
|
1379. [port] hpux 11.22: ansify hexstring() and display() in
|
|
addr.c to silence compiler.
|
|
|
|
1378. [bug] const pointer conficts in res_debug.c.
|
|
|
|
1377. [port] hpux 11.22: don't link against -ll unless required.
|
|
|
|
1376. [bug] main_need_num was not last entry in enum.
|
|
main_need_tick nolonger required.
|
|
|
|
1375. [port] hpux: treat all hpux systems as BIG_ENDIAN, don't
|
|
include <sys/mbuf.h>.
|
|
|
|
1374. [port] hpux 11.22 namespace clash DATASIZE -> BIND_DATASIZE.
|
|
|
|
1373. [port] hpux 11.11 interface scaning.
|
|
|
|
1372. [port] solaris: 64 bit binary compatability.
|
|
|
|
1371. [bug] aix4: missing IN6_IS_ADDR_V4COMPAT macro.
|
|
|
|
1370. [bug] If you are using TSIG #1365 introduced the potential
|
|
of a infinite loop.
|
|
|
|
1369. [bug] nslookup failed on platforms that don't have BSD 43
|
|
style sockets.
|
|
|
|
1368. [bug] LINK_INIT and UNLINK were not compatible with
|
|
C++, use LINK_INIT_TYPE and UNLINK_TYPE instead.
|
|
|
|
--- 8.3.2-T1B released --- (Tue May 7 18:49:58 PDT 2002)
|
|
|
|
1367. [bug] gethostans() could get out of sync parsing the
|
|
response if there was a very long CNAME chain.
|
|
|
|
1366. [bug] winnt: dumpdb and stats should now work reliably.
|
|
|
|
1365. [bug] using a valid TSIG with a compressed ownername could
|
|
result a INSIST() failure.
|
|
|
|
1364. [func] "notify explicit;" from BIND 9.
|
|
|
|
1363. [misc] leave the verification of the OPT options to the
|
|
caller.
|
|
|
|
1362. [func] accept SOA MNAME field as legitimate additional
|
|
data.
|
|
|
|
1361. [bug] malformed response to query w/ tsig + edns.
|
|
|
|
1360. [port] darwin: probe for IPv6 support.
|
|
|
|
1359. [bug] xfers_running could become out of sync if a zone
|
|
was removed while it was being transfered.
|
|
|
|
1358. [func] nsupdate can now update IPv6 servers.
|
|
|
|
1357. [func] host now accepts IPv6 addresses.
|
|
|
|
1356. [bug] reserve space for the signature when performing a
|
|
zone transfer.
|
|
|
|
1355. [func] dnsquery now accepts IPv6 addresses.
|
|
|
|
1354. [bug] win32: it was possible to call RegCloseKey() on a
|
|
invalid key.
|
|
|
|
1353. [func] nslookup now accepts IPv6 addresses.
|
|
|
|
1352. [func] dig now accepts IPv6 addresses.
|
|
|
|
1351. [doc] correct some typos in named.conf.5 and corresponding
|
|
html.
|
|
|
|
1350. [bug] get_salen() IPv6 support was broken for OSs w/o sa_len.
|
|
|
|
1349. [support] add highly dangerous compile time option
|
|
NXDOMAIN_ON_DENIAL. it should not be used
|
|
except in testing.
|
|
|
|
1348. [bug] if we don't have enough file descriptors to open
|
|
a socket attempt to close a idle tcp client.
|
|
|
|
1347. [port] bsdi: 4.3 has struct sockaddr_storage.
|
|
|
|
1346. [bug] SERVFAIL can have too many other causes to be used
|
|
say whether a server supports EDNS or not.
|
|
|
|
1345. [port] 64k answer buffers were causing stack space to be
|
|
exceeded for certian OS. Use heap space instead.
|
|
|
|
1344. [bug] getnameinfo() failed to lookup IPv4 mapped /
|
|
compatible addresses.
|
|
|
|
1343. [bug] reference after free for included conf file name.
|
|
|
|
1342. [bug] doaddinfo would not always attempt to fetch missing
|
|
glue when it should have.
|
|
|
|
1341. [bug] an IPv6 only nameserver could generate spurious
|
|
sysquery errors.
|
|
|
|
1340. [port] linux: IN6ADDR_LOOPBACK_INIT, IN6ADDR_ANY_INIT and
|
|
sockaddr_storage not declared by early kernels.
|
|
|
|
1339. [bug] getaddrinfo() could call freeaddrinfo() with an
|
|
invalid pointer.
|
|
|
|
1338. [bug] res_nupdate() failed to update the name servers
|
|
addresses before sending the update.
|
|
|
|
1337. [bug] A6 is expected in the additional section.
|
|
|
|
--- 8.3.1-REL released --- (Thu Jan 31 21:28:59 PST 2002)
|
|
|
|
1336. [bug] cached NXDOMAIN/NODATA responses were being ignored
|
|
when when fetching missing additional data.
|
|
|
|
1335. [func] "allow-query" is now supported for forward zones.
|
|
#define FORWARD_ALLOWS in bin/named/named.h to enable.
|
|
|
|
1334. [bug] rrsetadd() should explictly attach to the databuf
|
|
rather than inheriting the reference count.
|
|
|
|
1333. [bug] potential reference after free.
|
|
|
|
1332. [port] linux: ensure that CC is correctly propgated to
|
|
probe_ipv6.
|
|
|
|
1331. [port] linux: res_init.c failed to compile on certian older
|
|
machines.
|
|
|
|
1330. [contrib] add mysqlBind reference.
|
|
|
|
1329. [bug] named-xfer could incorrectly report a fopen() failure
|
|
as a fdopen() failure.
|
|
|
|
1328. [bug] if fdopen() failed empty files could be left behind.
|
|
|
|
1327. [bug] certian bad delegations could result in a DNS storm.
|
|
|
|
--- 8.3.0-REL released --- (Fri Jan 11 04:00:00 PST 2002)
|
|
|
|
1326. [bug] don't assume statp->_u._ext.ext is valid unless
|
|
RES_INIT is set when calling res_*init().
|
|
|
|
1325. [bug] call res_ndestroy() if RES_INIT is set when
|
|
res_*init() is called.
|
|
|
|
1324. [cleanup] YPKLUDGE in no longer default.
|
|
|
|
1323. [port] winnt: namespace collision #undef the system's EV_ERR.
|
|
|
|
1322. [port] winnt: make __res_nopt() visible externally.
|
|
|
|
1321. [port] Tru64 UNIX V5.1 can return spurious EINVAL on
|
|
close() after connect() failure.
|
|
|
|
1320. [bug] NULL used where zero was required.
|
|
|
|
--- 8.3.0-RC2 released --- (Wed Jan 2 17:14:23 PST 2002)
|
|
|
|
1319. [bug] memory leak when a ixfr update or a re-applied update
|
|
was rejected.
|
|
|
|
1318. [bug] the wrong options level check-names value was used
|
|
when merging ixfr updates.
|
|
|
|
1317. [bug] corrupt update / ixfr updates should result in
|
|
merge errors being reported.
|
|
|
|
1316. [bug] set current_serial in db_ixfr.c:ixfr_getdelta().
|
|
|
|
1315. [bug] use serial space arithmetic when selecting deltas for
|
|
IXFR.
|
|
|
|
1314. [contrib] mdnkit update to 2.2.3
|
|
|
|
1313. [bug] TSIG signed IXFR's wern't correctly verified.
|
|
|
|
1312. [port] winnt: re-order fclose/unlink so that the unlink
|
|
succeeds.
|
|
|
|
1311. [doc] miscellaneous nroff fixes.
|
|
|
|
1310. [func] preferred-glue can now be used to partially order
|
|
the additional section.
|
|
|
|
1309. [bug] It was possible to trigger an INSIST failure with
|
|
certian EDNS responses.
|
|
|
|
1308. [bug] named-xfer could return a false up-to-date status.
|
|
|
|
1307. [bug] "named-xfer -x" didn't attempt to use the specified
|
|
address for all possible masters if earlier connects
|
|
failed.
|
|
|
|
1306. [contrib] nslint upgraded from 2.0.2 to 2.1a3 (by author).
|
|
|
|
1305. [bug] res_nametotype() and res_nametoclass() were broken.
|
|
|
|
1304. [bug] "ndc reload zone" without class was broken.
|
|
|
|
1303. [port] Tru64 UNIX 5.1 does not like __align as a element name.
|
|
|
|
1302. [bug] host failed to handle "." in search list correctly.
|
|
|
|
1301. [bug] max-ixfr-log-size default was unreasonable.
|
|
|
|
1300. [bug] read buffer overflows.
|
|
|
|
1299. [protocol] NAPTR additional section processing.
|
|
|
|
--- 8.3.0-RC1 released --- (Wed Nov 21 20:41:32 PST 2001)
|
|
|
|
1298. [bug] be more aggressive at dropping messages from certian
|
|
well known ports.
|
|
|
|
1297. [bug] hint zones and root stub zones were not being removed
|
|
correctly.
|
|
|
|
1296. [port] MPE/iX workaround recvfrom() not supporting larger
|
|
address buffers required for IPv6.
|
|
|
|
1295. [bug] memory leak: free_flushset().
|
|
|
|
1294. [func] accept and generate EDNS0 queries.
|
|
|
|
1293. [func] allow initial notifies on startup to be suppressed.
|
|
[Kenneth Karoliussen, kenneth@activeisp.com]
|
|
|
|
1292. [func] allow keys to be specified in the masters clause.
|
|
|
|
1291. [func] named-xfer report if response was signed.
|
|
|
|
1290. [bug] named-xfer could report false TSIG failures under
|
|
certian conditions.
|
|
|
|
1289. [bug] don't allow rtt estimates to drop to zero.
|
|
|
|
1288. [bug] non-answering servers rtt estimates were not always
|
|
penalised.
|
|
|
|
1287. [bug] struct __res_state was still broken after #1268.
|
|
|
|
1286. [port] addition platform support for _r functions.
|
|
|
|
1285. [port] pw->pw_class is platform dependant.
|
|
|
|
1284. [port] namespace collision: dprintf -> res_dprintf,
|
|
ERR -> EV_ERR, OK -> EV_OK.
|
|
|
|
1283. [cleanup] gai_strerror() re-written.
|
|
|
|
1282. [bug] non-glue was not being reported on reload.
|
|
|
|
1281. [bug] Remove the INSIST at the end if zone_maint().
|
|
|
|
1280. [func] hostname.bind/txt/chaos now returns the name of
|
|
the machine hosting the nameserver. This is useful
|
|
in diagnosing problems with anycast servers.
|
|
|
|
1279. [bug] dns_ho.c:add_hostent() was not returning the amount
|
|
of memory consumed resulting in garbage address
|
|
being returned. Alignment calculations were
|
|
wasting space. We wern't suppressing duplicate
|
|
addresses.
|
|
|
|
1278. [port] sunos: old sprintf.
|
|
|
|
1277. [port] MPE/iX C.70
|
|
|
|
1276. [bug] host was sorting multiple RRs into the wrong order
|
|
prior to verifying.
|
|
|
|
--- 8.3.0-T2A released --- (Thu Sep 27 18:15:00 PDT 2001)
|
|
|
|
1275. [bug] "ndc trace 0" should behave like "ndc notrace".
|
|
|
|
1274. [func] inet_{cidr,net}_{pton,ntop}() now have IPv6 support.
|
|
|
|
1273. [bug] AXFR style IXFR responses were not handled properly,
|
|
transfer-format single-answer.
|
|
|
|
1272. [bug] misc: more string format fixes, open va_end(),
|
|
call exit() with positive values, include <string.h>.
|
|
|
|
1271. [func] Resolver, dig: "DNSSEC OK" (DO) support.
|
|
|
|
1270. [port] HP e3000 MPE is big-endian.
|
|
|
|
1269. [func] dig +[no]tr: use relative names when printing
|
|
out a zone transfer ([NO]TRuncate).
|
|
|
|
1268. [bug] struct __res_state to large on 64 bit arch.
|
|
|
|
1267. [port] winnt: pass the root zone as "." to named-xfer
|
|
rather than "".
|
|
|
|
1266. [port] #1230 broke sunos.
|
|
|
|
1265. [func] log type as well as class for denied queries.
|
|
|
|
1264. [bug] get*by*() failed to check if res_init() had been
|
|
called.
|
|
|
|
1263. [func] resolver option: no-tld-query. disables trying
|
|
unqualified as a tld. no_tld_query is also supported
|
|
for FreeBSD compatability.
|
|
|
|
1262. [func] enable NOADDITIONAL code by default.
|
|
|
|
1261. [func] treat class ANY as class IN for access control for
|
|
non-xfr queries.
|
|
|
|
1260. [func] increase nameserver chaining distance from 1 to 3
|
|
(NS_MAX_DISTANCE).
|
|
|
|
1259. [bug] increased loop avoidance with well known ports.
|
|
|
|
1258. [bug] cached NXDOMAIN responses were being ignored when
|
|
selecting servers to query.
|
|
|
|
1257. [support] improved support for parallel make.
|
|
|
|
1256. [port] winnt: support for change #1221
|
|
|
|
1255. [port] winnt: the stat structure does not have st_blksize.
|
|
|
|
1254. [bug] AXFR style IXFR responses were not handled properly.
|
|
|
|
1253. [doc] document support-ixfr.
|
|
|
|
1252. [func] add support gcc's format string checking.
|
|
|
|
1251. [bug] string formats.
|
|
|
|
1250. [bug] dig -t axfr attempted to use UDP not TCP.
|
|
|
|
1249. [doc] miscellaneous nroff fixes.
|
|
|
|
1248. [port] winnt: named-xfer failures. improved recvfrom()
|
|
emulation.
|
|
|
|
1247. [port] winnt: bug in tracking "file" file descriptors
|
|
extend "file" file descriptors support to 2048.
|
|
|
|
1246. [cleanup] defining REPORT_ERRORS in lib/dst caused compile time
|
|
errors.
|
|
|
|
1245. [bug] inet_pton() failed to reject octal input.
|
|
|
|
1244. [bug] memory leaks: zone forwarder table, server key list,
|
|
global forwarder table, query tsig info, unused
|
|
channels, key names, xfr tsig info.
|
|
|
|
1243. [bug] restore message if ns_forw() fails.
|
|
|
|
1242. [bug] call res_ndestroy() in net_data_destroy().
|
|
|
|
1241. [func] named-bootconf now supports HP's "no-round-robin".
|
|
|
|
1240. [bug] buffer overrun, access mode read.
|
|
|
|
1239. [bug] ignore white space after address of nameserver.
|
|
|
|
1238. [port] solaris 2.4: use ioctl(FIONBIO) rather than fcntl().
|
|
|
|
--- 8.3.0-T1A released --- (Wed Jun 20 19:05:01 PDT 2001)
|
|
|
|
1237. [bug] memory leak with "use-id-pool no;".
|
|
|
|
1236. [func] res_setservers(), res_getservers().
|
|
|
|
1235. [bug] don't assume the forwarder has dropped bogus records.
|
|
|
|
1234. [bug] always restart a query if we dropped records when
|
|
parsing.
|
|
|
|
1233. [func] report the address the server learnt the record from
|
|
in lame server messages.
|
|
|
|
1232. [func] opaque rdata support for unknown types.
|
|
|
|
1231. [protocol] IXFR don't test for AA, don't check that the question
|
|
is returned.
|
|
|
|
1230. [port] solaris: sys_nerr and sys_errlist do not exist when
|
|
compiling in 64 bit mode.
|
|
|
|
1229. [placeholder]
|
|
|
|
1228. [bug] don't send cross class additional records.
|
|
|
|
1227. [bug] use after realloc(), non portable pointer arithmetic in
|
|
grmerge().
|
|
|
|
1226. [bug] allow all KEY records in parent zone at bottom of zone
|
|
cut.
|
|
|
|
1225. [bug] HMAC-MD5 key files are now mode 0600.
|
|
|
|
1224. [port] aix: 4.3.3.0 (4.3.2.0?) and later have strndup().
|
|
|
|
1223. [port] winnt: isc_movefile() and syslog() updated.
|
|
|
|
1222. [bug] winnt: zone transfers could fail.
|
|
|
|
1221. [func] add IPv6 transport support to the resolver from the
|
|
KAME project. Includes initial bitstring support.
|
|
|
|
1220. [bug] #1189 broke the command-line programs that relied on
|
|
the fact that HMAC-MD5 keys have keyid 0.
|
|
|
|
1219. [bug] #1183 completely broke inet_nsap_addr(),
|
|
inet_nsap_ntoa() still didn't emit the leading 0x.
|
|
|
|
1218. [bug] long UNIX domain control socket names were not being
|
|
printed in full.
|
|
|
|
1217. [bug] getrgnam()/getgrgid() leaked memory.
|
|
|
|
1216. [bug] #1202 introduced a reference after free bug.
|
|
|
|
1215. [bug] some function declarations wern't protected by
|
|
__BEGIN_DECL/__END_DECL in resolv.h.
|
|
|
|
1214. [port] next: openstep is now supported as well as nextstep.
|
|
|
|
1213. [port] add: SCO Unix 5.0.6.
|
|
|
|
1212. [port] winnt: issues.
|
|
|
|
1211. [func] close "dynamic" file channels when debug is set to
|
|
zero allowing them to be removed and re-opened.
|
|
|
|
1210. [contrib] new h2n from author.
|
|
|
|
1209. [bug] ixfr_getdelta() uninitialised variable used.
|
|
|
|
1208. [bug] parse_cert_rr() passes wrong buffer size to b64_pton().
|
|
|
|
1207. [bug] memory leak: pathname leaked specifing controls unix.
|
|
|
|
1206. [bug] detect corrupted ixfr logs.
|
|
|
|
1205. [bug] memory leak: dynamic update was leaking.
|
|
|
|
1204. [bug] ISO/IEC 9945-1 versions of getpwuid_r(), getpwnam_r(),
|
|
getgrgid_r() and getgrnam_r() were not ISO/IEC 9945-1
|
|
compliant.
|
|
|
|
1203. [bug] memory leak: when following CNAMES from of req_query().
|
|
|
|
1202. [bug] memory leak: when defining keys.
|
|
|
|
1201. [func] reference count all databuf activity.
|
|
|
|
1200. [func] deallocate-on-exit yes; will call abort() if there
|
|
is still active memory.
|
|
|
|
1199. [func] memactive(): report if there is still active memory.
|
|
|
|
1198. [bug] memory leak: include in named.conf leaked file name.
|
|
|
|
1197. [port] MPE/IX port updated by Mark Bixby of the
|
|
HP CSY MPE/iX Internet & Interoperability Team.
|
|
|
|
1196. [port] winnt: path separator.
|
|
|
|
1195. [bug] winnt: fix accept failures.
|
|
|
|
1194. [port] winnt: a CLI tool for controling named 'BINDcmd' now
|
|
exists.
|
|
|
|
1193. [contrib] nslint upgraded from 1.5.1 to 2.0.2 (by author).
|
|
|
|
1192. [port] redo #1147 to cope w/ differing gettimeofday()
|
|
function signatures.
|
|
|
|
1191. [bug] memory leak when removing multiple records via dynamic
|
|
updates.
|
|
|
|
--- 8.2.4-T1B released --- (Thu Apr 19 14:38:30 PDT 2001)
|
|
|
|
1190. [support] Don't accept in a query names which would be rejected
|
|
in responses.
|
|
|
|
1189. [bug] DNSSEC key ids were computed incorrectly.
|
|
|
|
1188. [bug] remember if a notify came in while a zone transfer is
|
|
in progress and perform a refresh check after the
|
|
transfer completes.
|
|
|
|
--- 8.2.4-T1A released --- (Sun Apr 1 12:15:48 PDT 2001)
|
|
|
|
1187. [support] notify delay limit now "nzones" rather than "nzones/5".
|
|
|
|
1186. [port] new port/cygwin contributed by s_c_biggs@bigfoot.com.
|
|
|
|
1185. [contrib] new contrib/mdnkit (V1.3) from author.
|
|
|
|
1184. [bug] dig -T was only delaying after the first batched query.
|
|
|
|
1183. [bug] NSAP processing did not support leading 0x as required
|
|
by RFC 1706.
|
|
|
|
1182. [contrib] new contrib/adm from official ftp site.
|
|
|
|
1181. [contrib] new contrib/host from author.
|
|
|
|
1180. [contrib] new contrib/dnsp from author.
|
|
|
|
1179. [bug] fix memory and file descriptor leaks.
|
|
|
|
1178. [bug] statp->nsort could fail to be re-initialised if
|
|
resolv.conf goes away.
|
|
|
|
1177. [port] winnt: missing call to sockout() in close().
|
|
|
|
1176. [bug] suppress repeated notifies when a nameserver is a
|
|
CNAME.
|
|
|
|
1175. [bug] allow res_{n}update to take a single unlinked element.
|
|
|
|
1174. [doc] rfc2308-type1 applies to answers from the cache.
|
|
|
|
1173. [port] winnt: does not have unix domain sockets.
|
|
|
|
1172. [bug] xfers_deferred could become out of sync.
|
|
|
|
1171. [bug] check the family before using a cached result from
|
|
gethostbyname*().
|
|
|
|
1170. [cleanup] namespace cleanup of prand_conf.
|
|
|
|
1169. [port] fix ctk ORD_32 problem on some HPUX 10.20 systems.
|
|
|
|
1168. [support] note possible HAVE_STRNDUP need for AIX4.
|
|
|
|
1167. [bug] bad $TTL could kill the contributed dns_signer.
|
|
|
|
1166. [func] INITIALZONES tuning for large servers (> 1000 zones).
|
|
|
|
1165. [bug] the resolver could leak a file descriptors under
|
|
certain conditions.
|
|
|
|
1164. [func] ns_critical() is now available.
|
|
|
|
1163. [port] winnt: add strerror.
|
|
|
|
1162. [support] log out of memory during zone transfers.
|
|
|
|
1161. [support] extend "Response from unexpected source" message.
|
|
|
|
1160. [doc] query-source is used for TCP and that the port is
|
|
ignored.
|
|
|
|
1159. [func] add A6, DNAME, SINK and OPT to list of known RR types
|
|
in res_debug.
|
|
|
|
1158. [perf] add more ns_wouldlog() calls on mainline.
|
|
|
|
1157. [bug] don't use a known bogus key name.
|
|
|
|
1156. [support] log possible "TSIG BUG" exploit attempts. Requires
|
|
LOG_TSIG_BUG to be defined in bin/named/named.h.
|
|
|
|
1155. [bug] RFC2317 support was broken in bin/host command again.
|
|
|
|
1154. [support] be more consist with the use of slave vs secondary.
|
|
|
|
1153. [bug] ixfr processing could leave Z_XFER_RUNNING set.
|
|
|
|
1152. [bug] failed to correctly parse the orginal ttl in SIG
|
|
records.
|
|
|
|
1151. [bug] forwarders: it was possible to use freed memory.
|
|
|
|
1150. [support] zone rejected message to error level.
|
|
|
|
1149. [bug] non-glue now logged to category load.
|
|
|
|
1148. [bug] handle notify w/ SOA records better.
|
|
|
|
1147. [support] be more gentle in handling bad system clocks.
|
|
|
|
1146. [port] solaris: 2.4 does not have pthreads.
|
|
|
|
1145. [support] log class w/ denied messages.
|
|
|
|
1144. [bug] only use the query-source address, not port, for TCP
|
|
connections.
|
|
|
|
1143. [doc] document change #924 better (doc/html/controls.html).
|
|
|
|
1142. [bug] DESTDIR is not part of the nslookup help file path.
|
|
|
|
1141. [bug] only reset interval timers if the value has changed.
|
|
|
|
--- 8.2.3-REL released ---
|
|
|
|
1140. [bug] inet_{net_,}ntop() had an off-by-one error.
|
|
|
|
1139. [bug] purge_nonglue() should only be fatal on master
|
|
servers.
|
|
|
|
1138. [port] add include/errs.h to various ports.
|
|
winnt: #1130 caused linkage failures.
|
|
|
|
--- 8.2.3-RC5 released ---
|
|
|
|
1137. [bug] rfc1034 escape sequences not processed when replaying
|
|
updates.
|
|
|
|
1136. [port] winnt: named nolonger creates resolv.conf.
|
|
|
|
1135. [bug] fixup from #1130/1132.
|
|
|
|
1134. [port] winnt: SIOCGIFADDR, SIOCGIFFLAGS, SIOCGIFDSTADDR and
|
|
mkstemp() fixes.
|
|
|
|
1133. [bug] sorting of SIG/non-SIG records prior to rrset ordering
|
|
of was broken.
|
|
|
|
--- 8.2.3-RC4 released ---
|
|
|
|
1132. [lint] more #1130.
|
|
|
|
1131. [support] TTL 0 is now allowed in zone files.
|
|
|
|
1130. [lint] massive, massive delinting from "gcc -Wall".
|
|
|
|
1129. [support] "max_log_size_ixfr" is now a scaled number (4m, etc).
|
|
|
|
1128. [contrib] updated mdnkit.
|
|
|
|
1127. [port] winnt: support for more interfaces, dnskeygen.
|
|
|
|
1126. [bug] resolver: close cached file descriptors when socket()
|
|
fails.
|
|
|
|
1125. [bug] when ns_addr_list is rotated, rotate cached file
|
|
descriptors.
|
|
|
|
1124. [bug] the select() timeout was not always being correctly
|
|
computed.
|
|
|
|
1123. [bug] changes to ns_addr_list were not being reflected into
|
|
our private copy.
|
|
|
|
1122. [port] sco: DESTRUN and DESTSBIN can't be the same.
|
|
|
|
1121. [cleanup] re-word "server is ??? priming" status message.
|
|
|
|
1120. [bug] more #1108 fine tuning.
|
|
|
|
1119. [bug] "delete all" RRs were not being printed correctly.
|
|
|
|
1118. [port] winnt: always install the named executable
|
|
|
|
1117. [port] linux: turn off returning ICMP port unreachables.
|
|
|
|
1116. [bug] minor tweak to #1108
|
|
|
|
1115. [bug] fail if tsig transfers are requested but we can't
|
|
communicate the keys to named-xfer.
|
|
|
|
1114. [bug] remove extraneous semi-colon from ns_parser.y
|
|
|
|
--- 8.2.3-T9B released ---
|
|
|
|
1113. [support] show config file name and age in "ndc status"
|
|
|
|
1112. [support] "ndc status" no longer mentions loading of config.
|
|
|
|
1111. [port] some versions of sunos don't have _POSIX_PATH_MAX
|
|
|
|
1110. [bug] zones with Null keys at delegation incorreclty rejected.
|
|
|
|
1109. [support] named-xfer was bombing on non-TSIG'd zones
|
|
|
|
1108. [support] ignore queries that come in during long synch ops
|
|
|
|
1107. [func] allow the default syslog facility to be set by
|
|
adding -DISC_FACILITY=<value> to CDEBUG in Makefile.set.
|
|
|
|
1106. [func] host statistics can now be cleared after they are
|
|
dumped. Use "ndc stats clear".
|
|
|
|
1105. [func] host-statistics-max can be used to set a upper bound
|
|
on the number hosts we collect statistics against.
|
|
|
|
1104. [func] the source of a record is no longer dependent on
|
|
setting "host-statistics yes;"
|
|
|
|
1103. [doc] winnt: updated port specific notes.
|
|
|
|
1102. [port] winnt: BINDctrl fixes
|
|
|
|
1101. [port] winnt: install fixes
|
|
|
|
1100. [bug] named-xfer some memory allocations were not checked.
|
|
|
|
1099. [bug] more missing INIT_LINK's.
|
|
|
|
1098. [support] force gmake to fail if the sub-shell fails.
|
|
|
|
1097. [port] winnt: lower the logging level so that BINDCtrl status
|
|
checks do not cause the eventlog to fillup.
|
|
|
|
1096. [bug] don't pass '-i' to named-xfer unless we are going
|
|
to attempt a IXFR.
|
|
|
|
1095. [bug] dig: report missing arguements.
|
|
|
|
1094. [port] winnt: more cylink fixes, updated install.
|
|
|
|
1093. [bug] winnt: build lib cylink correctly
|
|
|
|
1092. [cleanup] winnt: snmpmib.c is nolonger required
|
|
|
|
1091. [support] winnt: workout the install directory.
|
|
|
|
1090. [bug] winnt: install was copying old over new.
|
|
|
|
1089. [bug] winnt: fix copyright for nameserver.c
|
|
winnt: snmpmib.c not needed in libbind.dsp
|
|
|
|
1088. [bug] #1053 still contained NAPTR problems.
|
|
|
|
--- 8.2.3-T8B released ---
|
|
|
|
1087. [port] sunos/gcc _POSIX_PATH_MAX isn't defined when it should
|
|
be.
|
|
|
|
1086. [doc] malformed man page for heap.
|
|
|
|
1085. [bug] ixfr responses to zones we don't server were malformed.
|
|
|
|
1084. [bug] INIT_LINK before APPEND in four more places.
|
|
|
|
1083. [support] only log "no options before zone" config error
|
|
before FIRST zone [kjd].
|
|
|
|
1082. [bug] have client-side IXFR work in single answer mode [kjd].
|
|
|
|
1081. [bug] have server-side IXFR work in single answer mode [kjd].
|
|
|
|
1080. [support] still do IXFR's even when a file name is not specified
|
|
for zone [kjd].
|
|
|
|
1079. [support] need to have a file name for a hints zone [kjd].
|
|
|
|
1078. [port] WinNT interface enumeration fixes from Danny Mayer.
|
|
|
|
1077. [support] format string audit.
|
|
|
|
1076. [port] now recognize RH7.0's "strndup()"
|
|
|
|
1075. [contrib] add contrib/resparse-1.3 [Henning Schulzrinne @CU]
|
|
|
|
1074. [support] INSIST that lists are correctly managed.
|
|
|
|
1073. [port] Win/NT port work from Danny Mayer. Dig, host and
|
|
nslookup have been added.
|
|
|
|
1072. [port] work around a gcc bug on solaris.
|
|
|
|
1071. [bug] memory leak in res_nsendsigned().
|
|
|
|
1070. [bug] We were accepting non syntactically valis SOA records.
|
|
|
|
1069. [port] movefile() is now part of libbind as isc_movefile(),
|
|
remaining rename() calls converted to isc_movefile().
|
|
|
|
1068. [bug] purge the zone from memory if an error is detected
|
|
on loading.
|
|
|
|
1067. [bug] reload the parent zone if loading the child zone fails,
|
|
the parent zone may otherwise be corrupted.
|
|
|
|
1066. [bug] refresh/retry timer need to be reset after IXFR
|
|
|
|
1065. [bug] IXFR change list could be freed to early.
|
|
|
|
1064. [bug] unchecked memget in sx_send_ixfr().
|
|
|
|
1063. [bug] fix #1041 was incomplete.
|
|
|
|
1062. [bug] host printed out address records multiple times if
|
|
they were at the end of a CNAME chain.
|
|
|
|
1061. [bug] host failed to look for A records for the second an
|
|
subsequent entries in the search list when using
|
|
the default lookup.
|
|
|
|
1060. [bug] $GENERATE did not reject a out of zone LHS.
|
|
|
|
1059. [bug] res_findzonecut() contained a bad debugging printf.
|
|
|
|
1058. [bug] possible NULL pointer de-reference in
|
|
dst_key_to_buffer().
|
|
|
|
1057. [doc] document that bogus causes anti-alias processing.
|
|
|
|
1056. [bug] ns_sprintrrf() could incorrectly print "." as "@".
|
|
|
|
1055. [bug] aa was being cleared on notify "queries" prior to
|
|
testing.
|
|
|
|
1054. [bug] NAPTR records were using name compression.
|
|
|
|
1053. [bug] NAPTR records were not being printed correctly.
|
|
|
|
1052. [bug] UPDATES w/ NAPTR records were failing.
|
|
|
|
1051. [contrib] YADDAS: Yet another DNS database awk script.
|
|
|
|
1050. [bug] named-bootconf did not handle cacheless secondary/stub
|
|
zones. NOTE cacheless secondary/stub zones are not
|
|
recommended.
|
|
|
|
1049. [bug] buffer overruns by 1 in getnameinfo().
|
|
|
|
1048. [bug] ns_ctl_install() was corrupting the server_controls
|
|
list.
|
|
|
|
1047. [bug] req_iquery() wasn't doing a final update on buflenp.
|
|
|
|
1046. [port] Win/NT port improved by its author.
|
|
|
|
--- 8.2.3-T7B released ---
|
|
|
|
1045. [bug] forwarded and initiated TCP queries weren't affected
|
|
by the "query-source" config option, and weren't being
|
|
set nonblocking.
|
|
|
|
1044. [support] add HITCOUNTS compile-time option (from lamont@hp.com).
|
|
|
|
1043. [bug] dnsquery's command line args could overflow buffers.
|
|
|
|
1042. [doc] maintain-ixfr-base had wrong description in
|
|
named.conf(5).
|
|
|
|
1041. [bug] host assumed axfr returned "one-answer" responses.
|
|
|
|
1040. [bug] add d_rcnt processing to update processing.
|
|
|
|
1039. [bug] qcomp wasn't stable.
|
|
|
|
1038. [port] solaris needs a strerror that does not return NULL,
|
|
call isc_strerror instead.
|
|
|
|
1037. [support] soften #1025 -- continue to accept !AA notify req's.
|
|
|
|
1036. [debug] add TKEY debugging support.
|
|
|
|
1035. [bug] ndc's "help" command worked in signal but not channel
|
|
mode.
|
|
|
|
1034. [bug] loc_ntoa() failed to correctly print altitudes in the
|
|
range [-0.99 .. -0.01].
|
|
|
|
1033. [port] Win/NT portability infusion from Larry @NortelNetworks.
|
|
|
|
1032. [bug] fix minor signal buglet introduced in #1029.
|
|
|
|
1031. [bug] nslookup now correctly refuses to accept qtypes AXFR
|
|
or IXFR. (use nslookup "ls", not queries, for this.)
|
|
|
|
1030. [protocol] nslookup "ls" command now uses writev() rather than two
|
|
write()'s, to get msglen and query into same tcp seg.
|
|
|
|
--- 8.2.3-T6B released ---
|
|
|
|
1029. [bug] incredibly busy systems could starve handle_needs().
|
|
|
|
1028. [protocol] unrecognized TSIG was returning NOERROR (now NOTAUTH).
|
|
|
|
1027. [support] INSIST(), ENSURE(), et al, now always have sideeffects.
|
|
|
|
1026. [port] some kernels bogusly return tv_usec>1000000 from
|
|
gettimeofday(). panic and dump core when this happens.
|
|
|
|
1025. [proto] NOTIFY messages should have AA.
|
|
|
|
1024. [bug] we were unwilling to use the last 10 octets of a
|
|
response buffer in certain transaction types.
|
|
|
|
1023. [port] HP-UX 10.20 was looping inside contrib/dnssigner.
|
|
|
|
1022. [port] ensure that all handled signals are unblocked.
|
|
|
|
1021. [bug] the "host" command wasn't properly printing SRV RR's.
|
|
|
|
1020. [contrib] new "updatehosts" (V1.1.0) contributed by author.
|
|
|
|
1019. [port] separate CFLAGS and CPPFLAGS for unusual builds.
|
|
|
|
1018. [bug] When maintain_ixfr_base is set to "no" a zones IXFR
|
|
file was still being written too.
|
|
|
|
1017. [doc] resolver(3) was out of date with respect to recent API
|
|
changes.
|
|
|
|
1016. [bug] nslookup wasn't properly printing SIG RR's.
|
|
|
|
1015. [bug] when merging group information gr_name and gr_passwd
|
|
could be left pointing at freed memory.
|
|
|
|
1014. [bug] iquery: DoS (potential), information leak.
|
|
|
|
1013. [bug] mangled hostent structures returned by
|
|
gethostbyname_r() and friends.
|
|
|
|
1012. [doc] add named-bootconf example to INSTALL.
|
|
|
|
1011. [bug] if spawnxfer() fails we should return immediately.
|
|
|
|
1010. [bug] bad responses to the initial IXFR/SOA query could
|
|
result in using an uninitalised variable.
|
|
|
|
1009. [port] Add support for darwin / Mac OS X
|
|
|
|
1008. [doc] specify allow-query default in named.conf.
|
|
|
|
1007. [bug] only set STREAM_AXFRIXFR if the original query is
|
|
an IXFR.
|
|
|
|
--- 8.2.3-T5B (RC3) released ---
|
|
|
|
1006. [port] Windows/NT does not have fchown().
|
|
|
|
1005. [bug] RD was sometimes left set, inappropriately.
|
|
|
|
1004. [bug] cached NXT's were corrupted.
|
|
|
|
1003. [bug] correction to #997.
|
|
|
|
1002. [bug] file descriptor leak in res_nclose().
|
|
|
|
1001. [port] some builds were too fast.
|
|
|
|
--- 8.2.3-T4B (RC2) released ---
|
|
|
|
1000. [bug] #996 was wrongly implemented; replacement fix.
|
|
|
|
--- 8.2.3-T3B released ---
|
|
|
|
999. [support] named now makes an effort to create its files with
|
|
ownership as specified by -u and -g command options.
|
|
|
|
998. [support] show version number in NOTIFY log messages.
|
|
|
|
997. [support] forwarders are now used in order by measured RTT.
|
|
|
|
996. [protocol] if answering ixfr with full zone, used qtype axfr.
|
|
|
|
995. [bug] "dig -b" was broken due to missing switch "break;"
|
|
|
|
994. [bug] named-xfer did not handle empty question sections.
|
|
|
|
993. [bug] TSIG AXFR was completely broken in DiG.
|
|
|
|
992. [bug] OPTION_USE_IXFR and OPTION_MAINTAIN_IXFR_BASE had
|
|
non-single-bit flag values in src/bin/named/ns_defs.h.
|
|
|
|
991. [protocol] send A6 glue records in xfr.
|
|
|
|
990. [bug] we could loose track of a bottom of zone cut if the
|
|
write buffer filled up at just the correct moment.
|
|
|
|
989. [bug] apply to "fetch-glue no;" to notify processing. need
|
|
to add A records that would be found this way w/
|
|
also-notify.
|
|
|
|
988. [support] report expired zones when detected in maintainence
|
|
pass.
|
|
|
|
987. [feature] "ndc reconfig -noexpired" skip attempts to load
|
|
expired zoned when reconfiguring.
|
|
|
|
986. [bug] pushlev only needs to be called for axfr/zxfr not ixfr.
|
|
|
|
--- 8.2.3-T2B released ---
|
|
|
|
985. [support] remove "view" command from nslookup (it used mktemp()).
|
|
|
|
984. [bug] always restart processing query from scratch if we
|
|
have chased a CNAME as we might still have the answer
|
|
in the cache once the CNAME has been resolved.
|
|
|
|
983. [support] "notify from non-master server" is now debug, not info.
|
|
|
|
982. [bug] rollback the compression pointers array when a
|
|
RRset/RR does not fit.
|
|
|
|
981. [port] decunix: typedef (u_)int#m_t
|
|
|
|
980. [bug] mishandled memget failure w/ TCP connections.
|
|
|
|
979. [bug] we were failing to call ns_stopxfrs() before calling
|
|
purge_zone() in some cases.
|
|
|
|
978. [port] sco50: setsockopt(SO_REUSEADDR) fails on unix domain
|
|
sockets
|
|
|
|
977. [bug] we should be returning notimpl for update forwarding
|
|
rather than refused. a client receiving refused
|
|
should terminate the update attempt. notimpl should
|
|
just cause the client to skip to the next server.
|
|
|
|
976. [bug] some stats weren't getting incremented, & added a few.
|
|
|
|
975. [support] SLAVE_FORWARD is now redundant and has been removed.
|
|
|
|
974. [port] ultrix with vendor's y2k patch explicitly desupported.
|
|
|
|
973. [bug] some field names added in #935 conflicted with macros.
|
|
|
|
972. [support] restore heartbeat notifies.
|
|
|
|
971. [bug] out of order updates in log.
|
|
|
|
970. [port] solaris: add ipv6 interface scanning support.
|
|
|
|
969. [bug] post process a zone load to remove any non-glue at
|
|
or below bottom of zone.
|
|
|
|
968. [bug] TSIGs failed to verify if the key name was compressed.
|
|
|
|
967. [bug] zones signed by the BIND 9 signer failed to load.
|
|
|
|
--- 8.2.3-T1A released ---
|
|
|
|
966. [bug] nslookup and dig misprinted root zone in $ORIGIN.
|
|
|
|
965. [feature] dig's command line input buffer was rather small.
|
|
|
|
964. [bug] make res_nsearch() behave like res_search() of olde.
|
|
|
|
963. [bug] res_debug::do_section() can no longer spin all VM.
|
|
|
|
962. [bug] another almost-complete rewrite of IXFR from kjd (462)
|
|
|
|
961. [bug] acl "none" now fails to match but doesn't end search.
|
|
|
|
960. [bug] more hesiod library fixes from danny.
|
|
|
|
959. [doc] christos fixed several man page typos and brainos.
|
|
|
|
958. [bug] getnameinfo() should accept experimental/multicast.
|
|
|
|
957. [port] ultrix again. "cd" now presumed to be silent again.
|
|
|
|
956. [bug] multiline was not being cleared correctly.
|
|
|
|
955. [bug] explicit TTL on SOA records were being replaced with
|
|
soa minimum.
|
|
|
|
954. [bug] cannot load a signed root zone.
|
|
|
|
953. [bug] memory overrun in set_zone_ixfr_file().
|
|
|
|
952. [bug] errs was not being correctly adjusted if the included
|
|
master file did not exist in db_load().
|
|
|
|
951. [bug] contrib/dns_signer/signer: write_trim_name
|
|
array bounds write error.
|
|
|
|
950. [bug] hesiod: ctx->res was not being initalised.
|
|
|
|
949. [port] aix32: add prand_conf.h and define WCOREDUMP
|
|
|
|
948. [bug] fixed logic error in a number of expressions causing
|
|
res_ninit() not to be called when it should be.
|
|
|
|
947. [bug] sanity check in dst_read_key() wasn't.
|
|
|
|
946. [port] freebsd: threaded library support.
|
|
|
|
945. [bug] wrong file name logged in ixfr_have_log().
|
|
|
|
944. [doc] add forwarders to zone types master/slave/stub in
|
|
named.conf man page.
|
|
|
|
943. [bug] raise CNAME and OTHER / multiple CNAME logging to
|
|
warning.
|
|
|
|
942. [bug] bad referrals logged for forwarders.
|
|
|
|
941. [bug] lame server detection wasn't checking for SOA record.
|
|
|
|
940. [clarity] unapproved -> denied in log messages.
|
|
|
|
939. [bug] reload_master and purgeandload should write the zone
|
|
if it has been updated.
|
|
|
|
938. [bug] update and ixfr logs could get corrupted. fseek()
|
|
before ftell() on fopen(, "a+") file.
|
|
|
|
937. [support] allow parallel makes to work.
|
|
|
|
936. [protocol] add preliminary A6 glue recognition in ns_req.
|
|
|
|
935. [cleanup] res_nsend() segmented into multiple functions for
|
|
readability. also fixed two file descriptor leaks.
|
|
CAN_RECONNECT is gone, keep one socket per nameserver.
|
|
|
|
934. [bug] Perror and Aerror where incorrect if DEBUG is not
|
|
defined.
|
|
|
|
933. [port] cygwin port added
|
|
|
|
932. [port] sco42 does not have unix domain sockets or gethostid.
|
|
|
|
931. [bug] eventlib was not handling unix domain sockets
|
|
correctly.
|
|
|
|
930. [bug] we wern't using all the potential compression pointers
|
|
in the question section.
|
|
|
|
929. [bug] we were accepting updates (adds) with illegal ttls.
|
|
|
|
928. [bug] if we manage to get a illegal ttl stored, print it
|
|
unsigened.
|
|
|
|
927. [port] hpux: (11.* 10.30) Makefile.set.gcc
|
|
|
|
926. [port] hpux10: gcc needs -D_HPUX_SOURCE and -fPIC
|
|
|
|
925. [protocol] when a slave loads it should notify others (RFC 1996).
|
|
|
|
924. [port] sunos solaris: #define NEED_SECURE_DIRECTORY to
|
|
secure the directory containing unix domain socket
|
|
rather than the socket itself.
|
|
|
|
923. [support] shutup "make clean" about missing threaded directories.
|
|
|
|
922. [bug] removing an cached zone file then performing a
|
|
"ndc reload zone" should force a zone transfer.
|
|
|
|
921. [bug] nsupdate: listuprec was not being initalised.
|
|
|
|
920. [port] aix4: Makefile.set.gcc
|
|
aix4: __P was being defined by <net/radix.h>
|
|
|
|
919 [port] linux: remove one level of symbolic linkage when
|
|
performing make links on port/linux/include
|
|
|
|
918. [bug] update prerequisite could match w/ wildcard.
|
|
|
|
917. [port] irix: make the current IRIX release (6.5) work by
|
|
not patching res_debug.c. see INSTALL if you have
|
|
problems with 6.3.
|
|
|
|
916. [bug] removing / changing a zone type could result in
|
|
Z_NOTIFY being cleared / tested against the wrong zone.
|
|
|
|
915. [bug] evNewWaitList() was not maintaining the prev chain.
|
|
|
|
914. [bug] signal EWOULDBLOCK if EV_POLL'ing with no timers.
|
|
|
|
913. [bug] input could get lost on the server side of a ctl sock.
|
|
|
|
912. [bug] nsupdate now allows explicit 0 TTL's on added RR's.
|
|
|
|
911. [bug] gethostbyname() should not return duplicate addresses.
|
|
|
|
910. [bug] address-sorting logic was exiting early.
|
|
|
|
909. [bug] dig wasn't respecting the +ti and +ret arguments.
|
|
|
|
908. [contrib] Tony Stoneley sent us an updated misc/makezones.
|
|
|
|
907. [port] winnt fixes from Larry at Nortel.
|
|
|
|
906. [bug] res_findzonecut() failed if the NS referred to a CNAME.
|
|
|
|
905. [doc] Minor fix to doc/man/Makefile for getnameinfo
|
|
|
|
904. [bug] bin/host wasn't looking up MX records if no
|
|
-t flags were passed to it.
|
|
|
|
--- 8.2.2-P6 released ---
|
|
|
|
903. [bug] divide by zero bug when querying for SIG records from
|
|
a secure zone.
|
|
|
|
902. [support] don't attempt to set q_fzone if we won't be using it.
|
|
|
|
901. [support] delay notify timer setting until all zones have been
|
|
loaded.
|
|
|
|
900. [port] hpux10 fix call to bison; sco call bison consistenly.
|
|
|
|
899. [bug] dynamically allocate buffer used to display RR rather
|
|
than uses a fixed sized one. grow as needed.
|
|
|
|
898. [bug] if truncation caused no RR's to appear in the answer we
|
|
mis-classified the answer on a NODATA.
|
|
|
|
897. [support] descriptors used by named should not be inherited by
|
|
named-xfer.
|
|
|
|
896. [contrib] add contrib/adm/adm-nxt, an exploit for the NXT bug
|
|
in 8.2 and 8.2.1. as before, we do not recommend its
|
|
use, and we do recommend that you run the latest BIND.
|
|
|
|
--- 8.2.2-P5 released ---
|
|
|
|
895. [port] minor NT build and documentation improvements.
|
|
|
|
894. [bug] incorrect "key" statements in named.conf weren't
|
|
handled properly.
|
|
|
|
--- 8.2.2-P4 released ---
|
|
|
|
893. [bug] DNSSEC logic in bin/host broke -t any
|
|
|
|
892. [bug] multiple SOA on AXFR bug
|
|
|
|
--- 8.2.2-P3 released ---
|
|
|
|
891. [bug] options { also-notify { ... }; }; resulted in wrong
|
|
pointer being memput with the wrong size on reload.
|
|
|
|
890. [port] A/UX portability improved.
|
|
|
|
889. [port] added IPv6 portability for OpenBSD, NetBSD, FreeBSD.
|
|
|
|
--- 8.2.2-P2 released (internal release) ---
|
|
|
|
888. [support] add default: all tag to top src/Makefile so that "make"
|
|
will work properly in some OS'.
|
|
|
|
887. [bug] "dig ... axfr" was printing spurious "TSIG ok" msgs.
|
|
|
|
886. [support] top-level Makefile now included in all tarballs.
|
|
|
|
885. [support] IXFR improvements.
|
|
|
|
884. [bug] some deprecated NXT RR forms weren't ignored properly.
|
|
|
|
883. [support] "host" command can now try to verify dnssec signatures.
|
|
|
|
882. [contrib] dns_signer/ had some last minute problems (by author).
|
|
|
|
881. [bug] possible sprintf() overflow prevented.
|
|
|
|
880. [support] minor tweak to bin/dig/dig.c TSIG code to clarify
|
|
whether res_nsend or res_nsendsigned is being used.
|
|
|
|
879. [support] add "noesw" target to top-level Makefile (for PL1).
|
|
|
|
878. [port] aix4 HAS_INET6_STRUCTS was not being set based on the
|
|
existance of _IN6_ADDR_STRUCT.
|
|
|
|
877. [port] freebsd + KAME need a different Makefile.set
|
|
see INSTALL notes.
|
|
|
|
876. [port] IPv6 probe for MPE/IX, NetBSD.
|
|
|
|
875. [bug] bad NAPTR RRs could be loaded from zone files.
|
|
|
|
874. [port] update irix_patch in irix port.
|
|
|
|
873. [port] add SRC/tools to sco's make [std]links.
|
|
|
|
--- 8.2.2-REL released ---
|
|
|
|
872. [bug] named-xfer could free() a string twice.
|
|
|
|
871. [port] linux support for broken IPv6.
|
|
|
|
870. [port] more NT fixes and improvements from larry at bay.
|
|
|
|
869. [bug] disable client side IXFR (in named-xfer) for now.
|
|
|
|
868. [bug] updated named-bootconf to handle case insensitive parts
|
|
of named.boot. added stubs support. class was not
|
|
being reset.
|
|
|
|
867. [support] updated INSTALL notes.
|
|
|
|
866. [port] More NT fixes from larry at bay.
|
|
|
|
865. [port] add #include <limits.h> to next's port_before.h
|
|
|
|
864. [port] change solaris' Makefile.set files to use yacc and lex.
|
|
also clean up install and binary paths.
|
|
|
|
863. [bug] lib/isc/ctl_srvr.c needed fcntl.h #included
|
|
|
|
--- 8.2.2-T8B (RC2) released ---
|
|
|
|
862. [port] another NT infusion from larry over at bay.
|
|
|
|
861. [support] improve support for tsig'd updates.
|
|
|
|
860. [port] add IPv6 probing to: decunix hpux irix lynxos mpe
|
|
netbsd qnx rhapsody sco50
|
|
|
|
859. [bug] set control sockets to close-on-exec;
|
|
potential file descriptor leaks in ctl_srvr.
|
|
|
|
858. [bug] make ns_samename() and use it instead of strcasecmp().
|
|
|
|
857. [bug] unset update-log can lead to debugging msg mishaps.
|
|
|
|
--- 8.2.2-T7B (RC1) released ---
|
|
|
|
856. [bug] IXFR finally works and is reenabled.
|
|
|
|
855. [port] more win/nt changes from bay.
|
|
|
|
854. [bug] /etc/hosts lines longer than 8K can crash gethostent().
|
|
|
|
853. [bug] another linked list bug shaken out of ns_update.
|
|
|
|
852. [bug] compiled in pathname for nslookup help file was wrong.
|
|
|
|
851. [bug] ns_update had an off by 2 bug when checking names in
|
|
SRV records causing unexpected failures.
|
|
|
|
850. [bug] empty updates triggered an overambitious INSIST().
|
|
|
|
--- 8.2.2-T6B released ---
|
|
|
|
849. [support] print rcode on failed UPDATE messages.
|
|
|
|
848. [port] paths.h and port_before.h tweaks from SCO for unixware7.
|
|
|
|
847. [port] add SRC/irix_patch to make links in IRIX
|
|
|
|
846. [support] restore some diagnotics lost when #634 was done.
|
|
|
|
845. [support] WATSQ patch from Ted Rule of Flextech Television.
|
|
|
|
844. [support] added src/DNSSEC with a note about BIND-8.1.2 interop.
|
|
|
|
843. [bug] IXFR fixes.
|
|
|
|
842. [bug] pointer arithmetic on (void *) not ANSI C.
|
|
|
|
841. [port] sco50: make install: libport.a not longer exists.
|
|
|
|
840. [bug] turning on touch_timer() in ctl_clnt.c found a bug.
|
|
|
|
839. [contrib] new version of contrib/host (from author).
|
|
|
|
838. [support] improve error reporting; remove lint.
|
|
|
|
837. [bug] bin/host/host.c was not RFC2317 compliant.
|
|
|
|
836. [port] hpux portability and speed improvements.
|
|
|
|
835. [port] some shell's "cd" produce output - fix in port/systype.
|
|
|
|
--- 8.2.2-T5A released ---
|
|
|
|
834. [support] massive changes to dynupd API.
|
|
|
|
833. [port] more Win/NT.
|
|
|
|
832. [feature] boolean: treat-cr-as-space. If yes, BIND will treat
|
|
'\r' the same as it treats ' ' and '\t' in zone files.
|
|
|
|
831. [bugs] DNSSEC/CAIRN workshop results (in addition to #826):
|
|
- invalid size passed into b64_ntop in SIG parser
|
|
- Invalid TSIG keys are now logged and ignored
|
|
instead of panicing.
|
|
- trusted-keys didn't work if a trailing dot
|
|
was present
|
|
- a DST problem that occurs when one of the
|
|
multiprecision integers begins with a 0 byte.
|
|
- TSIG signed truncated responses were mishandled.
|
|
- minor RFC2535 changes.
|
|
|
|
830. [doc] Minor updates to INSTALL
|
|
|
|
829. [support] we need to cache SOA NXDOMAIN queries if only for a
|
|
clock tick.
|
|
|
|
828. [support] multiple zone warning clearer.
|
|
|
|
827. [bug] the ctl interface was clearing already-cleared timers.
|
|
|
|
826. [contrib] various improvements to contrib/dns_signer (from TIS).
|
|
|
|
825. [support] change __NAMESER and __RES to 19991006.
|
|
|
|
824. [port] sco50 needed #define __BIND_RES_TEXT in port_after.h
|
|
|
|
823. [bug] named-xfer missed a SIG text format change
|
|
|
|
822. [bug] TSIG signed truncated responses crashed the server
|
|
|
|
821. [bug] potential reference after free bugs.
|
|
|
|
820. [port] ultrix finally works again.
|
|
|
|
819. [bug] removed test for missing glue from nslookup()
|
|
as it got false matches. There is no simple
|
|
test for missing glue.
|
|
|
|
818. [bug] back out #790, there was no memory leak.
|
|
|
|
817. [port] Solaris needed #define BSD_COMP in port_before.h.
|
|
|
|
--- 8.2.2-T4B released ---
|
|
|
|
816. [bug] you could not raise the number of available file
|
|
descriptors after the first call to res_send() and
|
|
make use of them.
|
|
|
|
815. [feature] report version via command line option (-v).
|
|
|
|
814. [feature] getipnodebyname, getipnodebyaddr and freehostent added.
|
|
These are RFC 2553 newcomers to the RFC 2133 set.
|
|
|
|
813. [support] better diagnostics when trying to clean up old
|
|
unix control socket.
|
|
|
|
812. [bug] uninitalised variable.
|
|
|
|
811. [port] sco50 make links was not linking resolv.h.diffs
|
|
|
|
810. [bug] zone transfer did not transfer all DNSSEC records
|
|
at delegation points.
|
|
|
|
809. [support] res_[n]sendupdate has died before it could be used.
|
|
|
|
808. [bug] res_send() wasn't checking for EINTR after select().
|
|
|
|
807. [support] it's now possible to send TSIG'd updates.
|
|
|
|
806. [support] ns_parserr() was uncompressing from the wrong base
|
|
in a certain corner case trod on by res_findzonecut().
|
|
|
|
805. [bug] only set SO_LINGER if required by the OS,
|
|
#define DO_SO_LINGER to do so.
|
|
|
|
804. [bug] another swath of IXFR fixes.
|
|
|
|
803. [port] Compaq Tru64 UNIX 4.0B with ZK3's experimental IPv6 kit
|
|
installed will at least build, but hasn't been tested.
|
|
|
|
802. [support] we no longer cache NXDOMAIN if the QTYPE was SOA.
|
|
|
|
801. [bug] our negative caching logic would log spurious errors
|
|
if the response had an empty question section.
|
|
|
|
800. [bug] #764 was too aggressive in one case.
|
|
|
|
799. [port] ultrix is a still-moving target.
|
|
|
|
798. [support] QRYLOG now logs the QCLASS
|
|
|
|
797. [bug] closing a thread which had called get*by*() would
|
|
leak memory.
|
|
|
|
796. [support] deallocate_on_exit now frees memory allocated by irs.
|
|
|
|
795. [port] solaris 2.4 SO_REUSEADDR generates errors on
|
|
unix domain sockets.
|
|
|
|
794. [bug] ixfr_have_log() was logging wrong file name.
|
|
|
|
793. [bug] clean_cache() was not alway removing complete RRsets.
|
|
|
|
792. [bug] deallocate-on-exit caused references to freed memory.
|
|
|
|
791. [support] MEMCLUSTER_DEBUG had an array size error.
|
|
|
|
790. [bug] fix minor memory leak in ixfr code.
|
|
|
|
789. [bug] #669 was too aggressive. more than cached data was
|
|
removed.
|
|
|
|
788. [bugs] improvements to tsig and dnssec.
|
|
|
|
787. [port] win/nt lint.
|
|
|
|
786. [port] IRIX and emul_ioctl().
|
|
|
|
785. [bug] #780 broke A record update support.
|
|
|
|
784. [bugs] still trying to get IXFR working again.
|
|
|
|
--- 8.2.2-T3B released ---
|
|
|
|
783. [support] make res_send() more friendly to the java scheduler.
|
|
|
|
782. [support] dangling cnames aren't errors, stop logging them.
|
|
|
|
781. [support] add -n option to ndc command, to run nonstandard named.
|
|
|
|
780. [bug] UPDATE did not support the AAAA RR.
|
|
|
|
779. [bug] miscellaneous IXFR fixes.
|
|
|
|
778. [support] don't complain to syslog about negative caching RRs.
|
|
|
|
--- 8.2.2-T2B released ---
|
|
|
|
777. [bug] getword() didn't increment lineno at EOF.
|
|
|
|
776. [bug] the NOERROR_NODATA cookie overlapped a valid rcode.
|
|
|
|
775. [protocol] we weren't sending properly formated FORMERR responses.
|
|
|
|
774. [bug] UPDATE did not support the SRV RR.
|
|
|
|
773. [bug] named-xfer was calling inet_ntoa in one printf.
|
|
|
|
772. [typo] Typo in ns_parser.y on maybe_zero_port: line.
|
|
|
|
771. [lint] UNLINK now performs a INIT_LINK so explicit INIT_LINK's
|
|
are nolonger needed after UNLINK.
|
|
|
|
770. [protocol] dynamic update prerequisites were inappropiately
|
|
matching wildcards, at variance with RFC 2136.
|
|
|
|
769. [bug] ordering of CNAMES was driven by original query type.
|
|
|
|
768. [support] MINROOTS is now a configuration option "min-roots".
|
|
|
|
767. [clarity] adjust XFR log messages to be more clear about cause.
|
|
|
|
766. [support] add "serial-queries" option to dynamify MAXQSERIAL.
|
|
|
|
765. [feature] added evInitID() and evTestID() for NOTIFY work.
|
|
|
|
764. [bug] DNSSEC changed the semantics of match() without
|
|
changing all the call sites that cared about it.
|
|
|
|
763. [bug] NOTIFY events caused by dynamic update weren't being
|
|
deferred, and multiple NOTIFY events weren't being
|
|
coalesced.
|
|
|
|
762. [support] don't rotate log file versions on server startup.
|
|
|
|
761. [port] named-xfer's openlog() was unconditionally using the
|
|
LOG_CONS option. now it does what named does.
|
|
|
|
--- 8.2.2-T1A released ---
|
|
|
|
760. [port] preliminary win/nt from baynetworks (thanks!)
|
|
|
|
759. [support] new compile time option BIND_IXFR, defaults to "off",
|
|
since our testing has shown up some problems with it.
|
|
|
|
758. [feature] new "ndc reconfig" command only finds new/gone zones,
|
|
doesn't stat() master files or qserial() slave SOA's.
|
|
|
|
757. [support] FORCED_RELOAD is no longer optional.
|
|
|
|
756. [support] fixed output format of hmac keys; removed DST chaff.
|
|
|
|
755. [feature] "also-notify" is now a global option.
|
|
|
|
754. [bug] the control socket was not checked for event lib
|
|
compatability.
|
|
|
|
753. [feature] "ndc help" now returns one line command summaries.
|
|
|
|
752. [feature] "ndc trace" now takes an optional "level" argument.
|
|
|
|
751. [support] debugging output could segfault in ns_print.c::addstr.
|
|
|
|
750. [port] A/UX 3.1.1.
|
|
|
|
749. [port] #9 has now been done for all Makefiles.
|
|
|
|
748. [feature] "transfer-source" is now a global option.
|
|
|
|
747. [support] SORT_RESPONSE is no longer a compile time option, since
|
|
the behaviour can be turned off at runtime with the
|
|
"rrset_order fixed;" option.
|
|
|
|
746. [bug] don't bother rescanning the interfaces if setuid!=root.
|
|
|
|
745. [protocol] IXFR transmission was just plain wrong in some cases.
|
|
|
|
744. [support] allow the calling location of strings to be recorded.
|
|
|
|
743. [feature] $GENERATE now supports more record types, and options.
|
|
|
|
742. [port] port/sco50 was using /usr/local/etc for its ndc socket.
|
|
|
|
741. [port] HPUX needed __BIND_RES_TEXT.
|
|
|
|
740. [bug] #634 had the unfortunate side effect of disabling IXFR.
|
|
|
|
739. [port] probe for IPv6 structures, solaris openbsd freebsd
|
|
|
|
738. [bug] invalidate pointers back into linked list when element
|
|
is removed.
|
|
|
|
737. [port] solaris: expr is sensitive to LC_COLLATE
|
|
|
|
736. [bug] potential single file descriptor leak opening
|
|
/dev/random.
|
|
|
|
735. [bug] memory leak: having rrset-order set and reconfiguring
|
|
the server results in a memory leak.
|
|
|
|
734. [port] linux only fills in as many entries as will fill the
|
|
buffer with SIOCGIFCONF.
|
|
|
|
733. [bug] RD is not being set on first message to first forwarder
|
|
resulting in false "Lame Server" reports and degraded
|
|
service.
|
|
|
|
732. [bug] errors reading keys from master files could cause the
|
|
the server to drop core.
|
|
|
|
731. [bug] highestFD was not reflecting the highest value the
|
|
library could cope with.
|
|
|
|
730. [port] rand() does not modify the LSB on BSD based systems.
|
|
|
|
729. [bug] allow-query responses were dependent upon cache
|
|
contents.
|
|
|
|
728. [bug] it wasn't possible to specify the flags of trusted keys
|
|
in hex, which was inconvenient since dig prints hex.
|
|
|
|
727. [bug] TSIG keys weren't properly shared with named-xfer if
|
|
the zone named contained a slash (/).
|
|
|
|
726. [bug] TSIG keys weren't reloaded correctly with 'ndc reload'.
|
|
|
|
725. [bug] only the first key in an acl was matched correctly.
|
|
|
|
724. [bug] "ndc restart" needed a short delay before checking
|
|
for the health of a newly started name server.
|
|
|
|
723. [bug] TSIG signed zone transfer failed on especially
|
|
large zones.
|
|
|
|
722. [doc] the example named.conf file had invalid TSIG usage.
|
|
|
|
721. [bug] duplicate records were tripping the cname-and-otherdata
|
|
test, which wasn't necessary since they'll be ignored.
|
|
|
|
720. [port] solaris doesn't have gethostid() the way we build.
|
|
|
|
719. [lint] lots of lint fixed by bob and paul.
|
|
|
|
718. [bug] multiple CNAME support was not cycling the cnames in
|
|
an RRset properly.
|
|
|
|
717. [bug] wrong /bin/ps flags in solaris prand_conf.h. minor
|
|
tweak to ports/prand_conf/prand_conf.c to ensure proper
|
|
flags in future ports.
|
|
|
|
716. [bug] log files are now closed/reopened on a size basis.
|
|
|
|
715. [clarity] root servers don't need to be primed.
|
|
|
|
714. [typo] extra "q" in a message in ns_maint.c.
|
|
|
|
--- 8.2.1 released ---
|
|
|
|
713. [bug] don't loop on untimely eof within config file.
|
|
|
|
712. [port] hp-ux signals; aix bit types.
|
|
|
|
711. [perf] don't call find_zone() four times from within qnew().
|
|
|
|
--- 8.2.1-t7b released ---
|
|
|
|
710. [bug] can fetch zone from own address if port is different.
|
|
|
|
709. [bug] make sure zones are properly reinited when they die.
|
|
|
|
708. [bug] end marker or sizeof, but not both please.
|
|
|
|
--- 8.2.1-t7a released ---
|
|
|
|
707. [port] AIX, HPUX, SunOS.
|
|
|
|
706. [feature] zone forwarding can now be applied to master, slave
|
|
and stub zones as well as forward zones.
|
|
|
|
705. [bug] some zone options were not being copied.
|
|
|
|
704. [bug] very obscure problem fixed in res_update().
|
|
|
|
703. [bug] single-zone reload was stomping freed memory.
|
|
|
|
--- 8.2.1-t6b released ---
|
|
|
|
702. [port] solaris vs. enum; linux vs. IPv6.
|
|
|
|
701. [bug] NOTIFY rejection logic still wasn't correct.
|
|
|
|
700. [bug] complete #697
|
|
|
|
--- 8.2.1-t5b (rc2) released ---
|
|
|
|
699. [bug] if getting the ixfr change log fails send a axfr style
|
|
response.
|
|
|
|
698. [bug] res_notify() was rejecting valid NOTIFY messages.
|
|
re-organise code so that logged messages are more
|
|
appropriate.
|
|
|
|
697. [port] linux.
|
|
some versions define _GNU_SOURCE in features.h
|
|
some version require the compiler to set the byte order
|
|
when probing for IPv6 structures.
|
|
|
|
696. [bug] don't use NULL file pointer if IXFR transaction log
|
|
cannot be opened due to permission errors.
|
|
|
|
695. [lint] another considerable amount of lint was removed.
|
|
|
|
694. [bug] only the last two forwarders would be used.
|
|
|
|
693. [bug] nsfwdadd() needed to continue outer loop.
|
|
|
|
692. [bug] RD was not being cleared by ns_forw(). this could
|
|
cause DNS storms between lame servers.
|
|
|
|
691. [bug] We still had some leftover named-xfer ixfr tmp files.
|
|
|
|
690. [bug] return IXFR in question section of AXFR style IXFR
|
|
response.
|
|
|
|
689. [bug] we now return "up to date" response to IXFR queries
|
|
when required.
|
|
|
|
688. [bug] UDP IXFR now tells the client to use TCP.
|
|
|
|
687. [bug] IXFR was incorrectly reporting errors on DNSSEC RRs.
|
|
|
|
686. [port] hpux Makefile.set improvement (+O2 -> +ESlit).
|
|
|
|
685. [feature] mark recursive queries in query log.
|
|
|
|
684. [bug] named-xfer now ignores out-of-class glue.
|
|
|
|
--- 8.2.1-t4b (RC1) released ---
|
|
|
|
683. [lint] considerable lint was removed.
|
|
|
|
682. [perf] another round of performance tweaks from HP (thanks!).
|
|
|
|
681. [bug] SIG wasn't being ignored when generating NOTIFY msgs.
|
|
|
|
680. [feature] delay parent reload as long as we can after removing
|
|
child zone to save multiple parent reloads.
|
|
|
|
679. [port] port probe now recognizes SCO 5.0.5.
|
|
|
|
678. [doc] not all man pages were being installed.
|
|
|
|
677. [feature] lost feature "allow-recursion" added back in.
|
|
|
|
676. [bug] "100" was too small for ndc message sizes.
|
|
|
|
675. [bug] we weren't storing a (needed) extra copy of the zname.
|
|
|
|
674. [bug] SIGTERM wasn't working the first time it was sent.
|
|
|
|
--- 8.2.1-t3b released ---
|
|
|
|
673. [bug] nslookup wasn't accepting _ at the beginning of names.
|
|
|
|
672. [bug] ndc was only passing the verb across the command
|
|
channel and not the arguements. Reload of a single
|
|
zone "really" works now.
|
|
|
|
671. [feature] you can reload multiple zones with a single ndc reload
|
|
command. e.g. ndc reload zone1 zone2 ...
|
|
|
|
670. [bug] db_load did not work unless a RR had the class defined.
|
|
|
|
669. [bug] the cache is now purged when a forwarder is {re}loaded.
|
|
|
|
668. [bug] complete #652.
|
|
|
|
667. [bug] allow-query wasn't being allowed for stub zones.
|
|
|
|
666. [usability] only try to chown()/chmod() a control socket when the
|
|
owner or permissions _change_ between reloads.
|
|
|
|
665. [bug] "options topology" is now possible to set.
|
|
|
|
664. [security] add important solaris-related security note to README.
|
|
|
|
663. [bug] "ndc -q" now turns off initial header and EOF printing.
|
|
|
|
--- 8.2.1-t2b released ---
|
|
|
|
662. [usability] src/conf/ added, containing some of ISC's config files.
|
|
|
|
661. [protocol] we weren't sending AAAA RR's as AXFR glue.
|
|
|
|
660. [port] IRIX.
|
|
|
|
659. [contrib] author-submitted changes to dnssigner, new cider2named.
|
|
|
|
658. [protocol] print better messages wrt TSIG. add p_rcode().
|
|
remove _res_resultcodes[]. improve key handling.
|
|
|
|
657. [port] apply cpp to /usr/include/netinet/in.h to work out if
|
|
struct sockaddr_in6 and struct in6_addr/inaddr6 are
|
|
defined.
|
|
|
|
656. [bug] Classless IN-ADDR support was broken.
|
|
|
|
655. [bug] major overhaul of IXFR code.
|
|
|
|
654. [bug] dynamic update of non top of zone SOA now ZONEERR.
|
|
|
|
653. [feature] check-names now applied dynamic updates as if
|
|
the zone was being loaded. REFUSED returned.
|
|
|
|
652. [port/bug] many operating systems allow more descriptors than
|
|
their default FD_SETSIZE has room for. we catch this
|
|
now, both by asking the operating system not to do this
|
|
and by treating as invalid any out-of-range descriptor.
|
|
|
|
651. [protocol] any soft failures in res_send() will now cause the
|
|
final return value to be TRY_AGAIN. previously the
|
|
last server response received was the one returned.
|
|
|
|
650. [doc] resolver.5 man page clarified and corrected; res_init()
|
|
made to do what the man page now says it does.
|
|
|
|
649. [port] make header files c++ compatible.
|
|
|
|
648. [bug] multiple options definitions of allow-query /
|
|
allow-transfer / sortlist / blackist / topology
|
|
are not allowed. warn rather than silently applying
|
|
the last definition.
|
|
|
|
647. [bug] options max-ixfr-log-size was not being applied.
|
|
|
|
646. [feature] memcluster debugging support improved.
|
|
-DRECORD_MEMCLUSTER to enable.
|
|
|
|
645. [bug] memory leaks
|
|
|
|
644. [bug] res_update() could not delete the first CNAME
|
|
in a chain.
|
|
|
|
643. [bug] res_update() did not correctly handle labels
|
|
with periods.
|
|
|
|
642. [port] SCO 5.0 portability improved.
|
|
|
|
641. [feature] $TTL now takes TTLs of the form 1w6d7h32m20s.
|
|
|
|
640. [bug] was returning NODATA rather than NXDOMAIN after a
|
|
dynamic update removed the last RR from a childless
|
|
node.
|
|
|
|
639. [bug] another fix for "rrset_order fixed".
|
|
|
|
--- 8.2.1-t1a released ---
|
|
|
|
638. [bug] ixfr was still creating the wrong file names sometimes.
|
|
|
|
637. [bug] bin/dnsquery/dnsquery.c wasn't init'ing the resolver
|
|
correctly befloew calling gethostbyname().
|
|
|
|
636. [port] inet_ntoa() had to go back to being non-const for now.
|
|
|
|
635. [bug] AXFR wasn't forcing an autoincrement of SOA.SERIAL
|
|
following a batch of UPDATE requests.
|
|
|
|
634. [feature] check all master soa's and use best serial, rather
|
|
than trying them in order and grabbing the first
|
|
one who answers with one better than the local one.
|
|
|
|
633. [port] SunOS 4.1.4 has a broken recvfrom() with non-blocking
|
|
sockets.
|
|
|
|
632. [bug] res_mkupdate() signed/unsigned stupidity.
|
|
|
|
631. [bug] HMAC-MD5 fixes
|
|
|
|
630. [bug] NSTATS output was spaceless.
|
|
|
|
629. [misc] improvements to TSIG error logging.
|
|
|
|
628. [bug] "rrset_order fixed" was LIFO rather than FIFO.
|
|
|
|
627. [bug] TSIG signed zone transfers broken.
|
|
|
|
626. [bug] multiple CNAME support was broken.
|
|
|
|
625. [bug] key names are really domains so they need to be
|
|
made canonical.
|
|
|
|
624. [bug] ns_name_pton() accepted domains of the form
|
|
"example.." when it should have rejected them.
|
|
|
|
623. [feature] it is occasionally useful to know the local address
|
|
used to perform a zone transfer. this is now logged.
|
|
|
|
622. [bug] missing check for malloc() failures in strndup().
|
|
|
|
621. [bug] various things were wrong with nslookup's "ls -d" cmd.
|
|
|
|
620. [feature] forwarders are now retried like queries to the
|
|
delegated nameservers. forward only should be
|
|
more robust as a result.
|
|
|
|
619. [protocol] don't refresh TTL's from delegation information.
|
|
|
|
618. [feature] ndc is now quiet and verbose when it should be.
|
|
|
|
617. [bug] SOA counters now have minima as well as maxima.
|
|
|
|
616. [bug] needs were not always processed in a timely fashion.
|
|
|
|
615. [bug] ns_shutdown() memput() the wrong amount of memory
|
|
when freeing the zones array.
|
|
|
|
614. [feature] ndc can now reload single zones including the root
|
|
zone.
|
|
|
|
613. [bug] check for old unix domain socket / fifo prior to
|
|
attempting to establish control channel. error
|
|
message no longer just noise.
|
|
|
|
612. [port] Solaris UNIX domain sockets return different error
|
|
codes and also may use FIFOs.
|
|
|
|
611. [bug] extend control timeout to 10 minutes. reloads can
|
|
take a long time.
|
|
|
|
610. [bug] when reloading via the control channel we were
|
|
reporting that we were about to reload after the
|
|
reload was performed. Ensure message is set prior
|
|
to reloading.
|
|
|
|
609. [bug] zoneTypeString() could be called with NULL pointer.
|
|
|
|
608. [bug] set various pointers to NULL after associated
|
|
memory has been released to prevent accidental use.
|
|
|
|
607. [bug] finddata() was returning SIG's inappropriately.
|
|
|
|
606. [bug] fix two memory leaks in db_sec.c.
|
|
|
|
605. [feature] better error reporting from named-xfer.
|
|
|
|
604. [bug] fix a bug in the handling of $TTL's absence.
|
|
|
|
603. [port] add contributed/untested rhapsody port.
|
|
|
|
602. [bug] multiple "type hint" zones are now supported.
|
|
|
|
601. [bug] z_ftime wasn't being reset when fopen() failed.
|
|
|
|
600. [bug] gen_res_get() was initializing the wrong variable.
|
|
|
|
599. [bug] "ndc reload" exercised an uninitialized variable.
|
|
|
|
598. [bug] "nslookup reports danger" was reported ambiguously.
|
|
|
|
597. [bug] we weren't priming the cache in forward-only mode.
|
|
|
|
596. [bugs] many small bugs in DNSSEC handling were fixed.
|
|
|
|
595. [bug] nsupdate failed to support quite a few rr types:
|
|
sig,key,nxt,eid,numloc,srv,atma,naptr,kx,cert
|
|
|
|
594. [proto] BADID removed per I-D.
|
|
|
|
593. [bug] mk_update() didn't support SIG.
|
|
|
|
592. [bug] lcl_pr and lcl_ho were using uninitialized bufsizes.
|
|
|
|
591. [port] linux.
|
|
|
|
590. [port] irix.
|
|
|
|
589. [doc] hesiod(3) man page contrib'd in 1996 finally put in.
|
|
|
|
588. [bug] too many lame servers at once was fatal.
|
|
|
|
--- 8.2 released ---
|
|
|
|
587. [perf] uses about 5% less memory than 8.1.2 now.
|
|
|
|
586. [perf] faster at tcp, therefore less blocking on udp.
|
|
|
|
585. [misc] various releng lint.
|
|
|
|
584. [bug] IXFR wasn't doing DNSSEC RRtypes.
|
|
|
|
583. [bug] dnskeygen now fully qualifies its names; better usage.
|
|
|
|
582. [port] irix needed some patches applied during the build.
|
|
|
|
581. [bug] match_order() could dump core after "ndc reload".
|
|
|
|
580. [bug] ip_match_is_none() could dump core.
|
|
|
|
579. [bug] state names were off by one in src/lib/isc/ctl_srvr.c.
|
|
|
|
578. [misc] try without "transfer-source" if axfr connect() fails.
|
|
|
|
577. [contrib] sqlbind-8.
|
|
|
|
576. [bug] insecure updates weren't supported.
|
|
|
|
575. [doc] better documentation of key, trusted-key, zone pubkey.
|
|
|
|
574. [bug] was freeing freed memory on exit.
|
|
|
|
573. [port] nextstep.
|
|
|
|
572. [misc] centralize the name hashing logic (widen in some cases)
|
|
|
|
571. [perf] the new db_marshal() code was taking too much memory.
|
|
|
|
570. [perf] the lame server storage was taking too much memory.
|
|
|
|
569. [bug] src/lib/isc/ctl_srvr.c had an incomplete assertion.
|
|
|
|
568. [doc] Brent Baccala contributed an nsupdate man page.
|
|
|
|
567. [port] mpe, nextstep.
|
|
|
|
566. [protocol] upgrade to tsig draft 08.
|
|
|
|
565. [lint] use right relative paths for dnssafe includes in dst.
|
|
|
|
564. [bug] default security level for update rr's wasn't set.
|
|
|
|
563. [bug] debugging output in dprint_key_info() could panic us.
|
|
|
|
562. [perf] 8.2-t6b used 30% more memory on root name servers than
|
|
8.1.2 did. most of that was db_marshal hash tables.
|
|
|
|
--- 8.2-T6B released ---
|
|
|
|
561. [bug] DST more graceful in handling unsupported algorithms.
|
|
|
|
560. [feature] lame server ttl now a configuration option. Re-enable
|
|
lame server negative caching.
|
|
|
|
559. [bug] sysquery() was still using the child's name when it
|
|
switched to using the parent's NS list causing false
|
|
lame server reports.
|
|
|
|
558. [bug] disable lame server negative caching for the present.
|
|
|
|
557. [bug] undersized tcp messages are now detected early.
|
|
|
|
556. [bug] DNSSEC fine tuning.
|
|
|
|
555. [bug] the named.conf lexer was depending on two characters
|
|
worth of putback buffer, ansi c guarantees one char.
|
|
|
|
554. [port] port to "next" contributed by jack bryans.
|
|
|
|
553. [contrib] added "snoof", another script kiddie toy.
|
|
|
|
552. [bug] allow-query didn't interact well with external cnames.
|
|
|
|
551. [bug] validate_zone could crash the server.
|
|
|
|
550. [lint] ns_maint was using ns_log_default, not ns_log_in_xfer.
|
|
|
|
549. [port] netbsd and openbsd improved. prand_conf improved.
|
|
|
|
548. [bug] ns_resp was using the wrong logging category.
|
|
|
|
547. [bug] dig was reinit'ing its resolver flags incorrectly.
|
|
|
|
546. [bug] nsupdate didn't handle HINFO,ISDN,TXT,X25 correctly.
|
|
|
|
545. [feature] added dnssafe back in.
|
|
|
|
544. [feature] removed DES encryption support.
|
|
|
|
543. [port] cleaned cylink of non used definitons in headerfiles.
|
|
|
|
542. [bug] include/dst no longer needed
|
|
|
|
541. [bug] CERT records are allowed to have alg == 0.
|
|
|
|
540. [doc] Removed outdated doc/secure, updated dnssigner
|
|
documentation, updated dnskeygen.1
|
|
|
|
539. [bug] db_dump() was misparsing CERT records.
|
|
|
|
538. [feature] The KEY set is along with SOA, NS, A, AAAA records.
|
|
|
|
537. [bug] Multiple signatures are handled correctly.
|
|
|
|
536. [bug] SIG record expiration should be checked when the
|
|
SIG is verified.
|
|
|
|
535. [bug] Queries for SIG records of non-authoritative
|
|
names should not look in the cache or cache the
|
|
results.
|
|
|
|
534. [bug] DNSSEC SIG records are dropped when they don't
|
|
sign any data correctly.
|
|
|
|
533. [bug] SIG and NXT records are correctly handled when
|
|
received in responses by named
|
|
|
|
532. [bug] dynamic update data is now always considered
|
|
insecure, rather than having no security status.
|
|
|
|
531. [bug] dynamic update can again remove all data associated
|
|
with a name (type ANY, class ANY).
|
|
|
|
530. [lint] downgraded "ctl: unexpected eof" from error to debug.
|
|
|
|
529. [port] unixware 7 port received.
|
|
|
|
528. [bug] timeouts could make ctl_srvr dump core.
|
|
|
|
527. [bug] we were not reliably reaping our children.
|
|
|
|
526. [bug] Cached CNAMES pointing to servers returning Type 3/4
|
|
NXDOMAIN are translated to Type 3 NODATA responses.
|
|
|
|
525. [bug] nscount could be short if we had to recurse after
|
|
following a cname and we got a negative response.
|
|
NS rrset got split between AU and AD sections.
|
|
|
|
524. [protocol] RFC 2308 support added.
|
|
|
|
523. [feature] mark lame servers as such and don't use them for NTTL.
|
|
|
|
522. [port] solaris 7 is now known to work.
|
|
|
|
521. [port] sunos4 should be supported now.
|
|
|
|
520. [bug] inet_pton() was allowing some bad ipv6 addresses in.
|
|
|
|
519. [bug] refuse duplicate also-notify's; optimize logging.
|
|
|
|
518. [port] hpux portability fixes.
|
|
|
|
517. [contrib] dnswalk wasn't copying with 8.* "dig" output.
|
|
|
|
516. [port] MPE portability fix.
|
|
|
|
--- 8.2-T5B released ---
|
|
|
|
515. [security] lib/dnssafe code removed; now a separate patch.
|
|
|
|
514. [port] freebsd patches.
|
|
|
|
513. [bug] memory leak in res_mkupdate().
|
|
|
|
512. [bug] $GENERATE could use an unset ttl.
|
|
|
|
511. [bug] $TTL warning test was wrong.
|
|
|
|
510. [port] bugs and things found by the netbsd folks.
|
|
|
|
509. [bug] The labels field in the SIG record may be less than
|
|
the number of labels in the domain name if the
|
|
owner of the SIG is a wildcard.
|
|
|
|
508. [bug] rrset ordering contained an off-by-one error
|
|
|
|
507. [bug] NXT set processing was not distinguishing
|
|
between the upper and lower sets at delegation
|
|
points.
|
|
|
|
506. [contrib] more script-kiddie toys, this time contrib/adm.
|
|
|
|
505. [bug] the ixfr changes to named-xfer destabilized stubs.
|
|
|
|
504. [port] some IRIX problems fixed.
|
|
|
|
503. [bug] ixfr wasn't correctly setting up its qsp.
|
|
|
|
--- 8.2-T4A released ---
|
|
|
|
502. [bug] some config file parsing was still using malloc().
|
|
|
|
501. [feature] named sets the AD bit in the header when returning
|
|
authenticated data
|
|
|
|
500. [bug] dst_verify_data returns the documented error codes
|
|
|
|
499. [bug] verify_set now verifies the correct data
|
|
|
|
498. [bug] ixfr was not completely finished.
|
|
|
|
497. [bug] don't put zone 0 on the free list.
|
|
|
|
496. [bug] Losing all but last RR of RRset.
|
|
|
|
495. [port] random portability noise.
|
|
|
|
494. [bug] sysquery() should not let nlookup() change its data.
|
|
|
|
493. [feature] add "options ... rrset_order ... cyclic|random|etc".
|
|
this allows round robin to be turned off selectively,
|
|
or replaced with pseudorandom ordering, or whatever.
|
|
|
|
492. [bug] src/bin/named/db_sec.c was memputting objects twice.
|
|
|
|
491. [feature] add IRP (Information Retrieval Protocol) and daemon.
|
|
this is functionally similar to solaris "nscd".
|
|
|
|
490. [bug] lib/isc/ctl_srvr.c couldn't overlap read and write.
|
|
(also: add session context set/get.)
|
|
|
|
489. [bug] "cname and other data" was more complex than thought.
|
|
|
|
488. [port] some netbsd portability stuff. (still not working?)
|
|
|
|
487. [port] digital unix 3.2 wasn't working (4.0d was though).
|
|
|
|
486. [feature] add "sortlist", which may yet be merged/renamed into
|
|
the "topology" verb.
|
|
|
|
485. [bug] do not complain about default TTLs unless a master.
|
|
|
|
484. [contrib] add contrib/z0ne, a useful tool for crackers.
|
|
|
|
483. [contrib] add contrib/query-loc[-*] to look up LOC RR's.
|
|
|
|
482. [bug] all RR's must now be of the same class as the zone.
|
|
|
|
481. [bug] outbound zone transfers are killed on any UPDATE.
|
|
|
|
--- 8.2-T3A released ---
|
|
|
|
480. [bug] ns_update was corrupting TXT records
|
|
|
|
479. [bug] res_mkupdate was not handling WKS, HINFO, TXT,
|
|
X25, ISDN, NSAP and LOC records.
|
|
|
|
478. [bug] name_pack could leave a bad compression pointer.
|
|
|
|
477. [port] improved support for FreeBSD 3.0.
|
|
|
|
476. [bug] BSDI contributed some fixes to the /etc/group parsing.
|
|
|
|
475. [bug] another memory leak in hesiod_resolve().
|
|
|
|
474. [bug] SRV RR names were being compressed on output.
|
|
|
|
473. [feature] IXFR is no longer optional and has been cleaned up.
|
|
|
|
472. [bug] IXFR was disabling USE_PID_FILE.
|
|
|
|
471. [feature] add support for CERT records.
|
|
|
|
470. [bug] rrset_db_upgrade was updating the wrong cache.
|
|
|
|
469. [performance] use a free list for unused zones.
|
|
|
|
468. [feature] add getaddrinfo, courtesy of WIDE.
|
|
|
|
467. [lint] include/dst/dst.h moved to include/isc/dst.h.
|
|
|
|
466. [bug] fix core dump introduced with tsig glue.
|
|
|
|
--- 8.2-T2A released ---
|
|
|
|
465. [bug] ref counting bug in ns_xfr.
|
|
|
|
464. [bug] correct cut&pasteo in IXFR config syntax.
|
|
|
|
463. [lint] clean psf files after top level "make tar".
|
|
|
|
--- 8.2-T1A released ---
|
|
|
|
462. [feature] we now use randomized query id's.
|
|
|
|
461. [feature] new option "version" added.
|
|
|
|
460. [feature] add initial IXFR support from Check Point Technologies.
|
|
|
|
459. [bug] res_update() was putting debugging info on stderr.
|
|
|
|
458. [doc] add named.conf(5), improve doc/html.
|
|
|
|
457. [feature] named-bootconf is now written in /bin/sh and it is
|
|
now installed in ${DESTSBIN}.
|
|
|
|
456. [bug] res->defdname[] wasn't always properly \0 terminated.
|
|
|
|
455. [bug] _PATH_MEMSTATS was never being used.
|
|
|
|
454. [doc] the html docs weren't clear about logging having to
|
|
be specified first in the named.conf file.
|
|
|
|
453. [feature] add zone type "forward" for selective forwarding
|
|
(sometimes called "split horizon" or "fake root").
|
|
|
|
452. [bug] lib/irs/* was generally not coping with
|
|
oversized lines and files not ending in \n.
|
|
|
|
451. [port] BSD/OS 2.* is now a separate port.
|
|
|
|
450. [Feature] added DNS key generator in bin/dnskeygen.
|
|
|
|
449. [contrib] added DNS zone signer in contrib/dns_signer.
|
|
|
|
448. [doc] sample named.conf and html documentation include
|
|
examples of DNSSEC / TSIG configurations.
|
|
|
|
447. [feature] named verifies TSIG records on incoming messages, and
|
|
generates TSIG records on outgoing messages.
|
|
|
|
446. [feature] res_nsendsigned, res_nfindprimary, res_nsendupdate
|
|
provide TSIG aware resolver functions.
|
|
|
|
445. [feature] ns_sign and ns_verify generate/authenticate TSIG
|
|
signatures on DNS messages. ns_sign_tcp,
|
|
ns_sign_tcp_init, ns_verify_tcp, and
|
|
ns_verify_tcp_init are used for tcp transfers.
|
|
|
|
444. [feature] acls can now include shared key names.
|
|
|
|
443. [feature] added DNSSEC verification of zone data on load and
|
|
partial verification of signed data received over
|
|
the wire.
|
|
|
|
442. [feature] lib/dst (TIS digital signature toolkit), lib/dnssafe,
|
|
and lib/cylink added to provide functionality
|
|
needed for DNSSEC and transaction signatures.
|
|
|
|
441. [bug] fixed memory leak in hesoid support.
|
|
|
|
440. [bug] support for res in lib irs was a mess. _res now
|
|
controls the behaviour of get*by*() again.
|
|
|
|
439. [bug] fix *END_RESULT macros in port/solaris/port_before.h.
|
|
|
|
438. [feature] permit the install user and group to be overridden.
|
|
|
|
437. [feature] TCP truncation now reports IP address of the server.
|
|
|
|
436. [bug] memory leaks in nsupdate.
|
|
|
|
435. [doc] updated resolver.3
|
|
|
|
434. [bug] named.run was not always being created when ndc trace
|
|
was run.
|
|
|
|
433. [bug] req_notify required the slave zone to have been loaded.
|
|
this may not be the case when a zone has expired or
|
|
is being established over a dial on demand link.
|
|
|
|
432. [feature] blackhole queries from these nets. do not use these
|
|
nets to resolve queries.
|
|
|
|
431. [feature] loop breaking with UDP based well known services.
|
|
|
|
430. [bug] memory leaks in dispatch_message.
|
|
|
|
429. [feature] fast retries on host/net unreachable.
|
|
|
|
428. [bug] CNAME and other data is now a hard error.
|
|
|
|
427. [feature] support very large numbers of virtual interfaces.
|
|
|
|
426. [bug] bring named closer into line with the data ranking
|
|
in RFC 2181, Section 5.4.1.
|
|
|
|
425. [bug] removed spurious debug statment that generated a lot
|
|
false bug reports.
|
|
|
|
424. [bug] closed file descriptor leaks in ns_update.
|
|
|
|
423. [feature] loc_ntoa() can now accept NULL like other _ntoa's.
|
|
|
|
422. [feature] you can now specify a port on the master statement
|
|
to allow transfers from a non standard port.
|
|
|
|
421. [feature] warn when the root hints do not match reality.
|
|
|
|
420. [misc] added support for bcc (bounds checking compiler).
|
|
|
|
419. [feature] bring negative caching into RFC 2308 compliance.
|
|
|
|
418. [bug] expire now behaviour now as per RFC 1034/1035.
|
|
|
|
417. [bug] updates and zone transfers weren't locking eachother.
|
|
|
|
416. [port] support added for HPUX B.11.*
|
|
|
|
415. [feature] ndc is a C program now, uses new "controls" subsystem.
|
|
|
|
414. [feature] "controls" element of named.conf now live and working.
|
|
|
|
413. [feature] octal and hexadecimal numbers now parsed in named.conf.
|
|
|
|
412. [bug] we now support 2**24-1 (16M) zones. (need namespaces!)
|
|
|
|
411. [bug] fix *END_RESULT macros in port/bsdos/port_before.h
|
|
|
|
410. [feature] added support for dial on demand links between
|
|
servers.
|
|
|
|
409. [port] remove aggregious use of snprintf().
|
|
|
|
408. [feature] add -b option to dig to set srcaddr of tcp connects.
|
|
|
|
407. [feature] added $GENERATE to generate sets of RR's that only
|
|
differ by an interator.
|
|
|
|
406. [doc] added manpage for inet_cidr_ntop() inet_cidr_pton().
|
|
|
|
405. [bug] res_nsend() closed sockets unnecessarily on timeout.
|
|
handle change NS list and RES_STAYOPEN generically.
|
|
|
|
404. [bug] inet_addr/inet_aton/inet_network accepted illegal
|
|
inputs as legal. Also enforce octal input.
|
|
|
|
403. [bug] inet_cidr_ntop() was not producing correct output for
|
|
all possible inputs.
|
|
|
|
402. [bug] fix retry/retransmit logic in face of network errors.
|
|
|
|
401. [doc] the "transfer-source" zone option wasn't documented.
|
|
|
|
400. [bug] bin/host was dumping core - converted to use getopt.
|
|
|
|
399. [port] use time() rather than gettimeofday() in dig.
|
|
|
|
398. [bug] named could exit silently on assertion failures,
|
|
now assertion failures are logged using INSIST.
|
|
|
|
397. [port] add an AIX 3.2 port (requires GNU utilities).
|
|
|
|
396. [bug] dig and nslookup allowed sscanf/sprintf overflows.
|
|
|
|
395. [bug] dig and nslookup were unable to deal with 64KB answers.
|
|
|
|
394. [feature] add RES_NOCHECKNAME and "options no-check-names" (in
|
|
resolv.conf) to turn off modern host/mail name checks.
|
|
|
|
393. [bug] lib/isc/tree.c was missing a critical \ (#if DEBUG).
|
|
|
|
392. [bug] inet_aton() wasn't requiring nonterminal octets to
|
|
be in the range of octets, i.e., 1.300.1.1.
|
|
|
|
391. [bug] fix bug in MAX_XFERS_RUNNING logic.
|
|
|
|
390. [bug] ns_update() was capable of renaming an open file.
|
|
|
|
389. [feature] libbind.a now has a "ctl" subsystem, which is planned
|
|
to replace signals as a the communication path between
|
|
"ndc" and "named". preliminary support is in "named".
|
|
|
|
388. [feature] preliminary/nonfunctional/nonstandard ZXFR support.
|
|
|
|
387. [feature] inet_cidr_pton() and inet_cidr_ntop() added.
|
|
|
|
386. [bug] inet_net_pton() was not parsing hex correctly.
|
|
|
|
385. [feature] three new options for the RES_OPTIONS environment var
|
|
or for the "options" directive in /etc/resolv.conf:
|
|
attempts:NN default res.retry
|
|
timeout:NN default res.retrans
|
|
rotate use ALL listed nameservers
|
|
|
|
384. [feature] there is now a nearly-thread-safe resolver API, with
|
|
the old non-thread-safe API being a set of stubs on
|
|
top of this. it is possible to program without _res.
|
|
note: the documentation has not been updated. also
|
|
note: IRS is a thread-ready API, get*by*() is not.
|
|
(see ../contrib/manyhosts for an example application.)
|
|
|
|
383. [contrib] bsdi contributed an /etc/services.db hack, which is
|
|
currently conditionalized for bsd/os but would work
|
|
on any modern BSD-derived system (DB, snprintf, etc).
|
|
|
|
382. [port] bsd/os 4.0 defines its own pselect(), which differs
|
|
from the one we simulated. we now simulate the right
|
|
one, and use the right one.
|
|
|
|
381. [contrib] added contrib/srv, the beginnings of SRV client side.
|
|
|
|
--- 8.1.2 released ---
|
|
|
|
380. [bug] Replaying the dynamic update log could trigger an
|
|
INSIST.
|
|
|
|
379. [port] Updated IRIX port.
|
|
|
|
378. [bug] The declaration for res_freeupdrec() in resolv.h
|
|
didn't use __P().
|
|
|
|
377. [func] The server now sets SO_SNDBUF on UDP sockets.
|
|
|
|
376. [port] The malloc() implementation on many systems didn't
|
|
like memcluster.c's 4KB block allocations, sometimes
|
|
causing huge amounts of memory to be wasted.
|
|
memcluster.c now allocates bigger chunks and makes
|
|
its own 4KB blocks.
|
|
|
|
375. [bug] If more than (sizeof u_long) gets occurred for a
|
|
particular memory bucket, an INSIST about puts < gets
|
|
might have been erroneously trigged. Now total
|
|
gets and outstanding gets are counted.
|
|
|
|
374. [port] SCO 3.2v4.2 doesn't have initgroups(), so we do not
|
|
want to define CAN_CHANGE_ID.
|
|
|
|
373. [port] Updated LynxOS port.
|
|
|
|
372. [port] Updated SCO 3.2v5.0.x port.
|
|
|
|
371. [bug] "make install" could fail on some Linux systems
|
|
because src/port/linux/include/net/Makefile didn't
|
|
cope with an empty HFILES variable.
|
|
|
|
370. [bug] Trying to update an expired slave zone would cause
|
|
the server to panic.
|
|
|
|
369. [bug] The Makefile for named-xfer didn't try to create
|
|
${DESTDIR}${DESTEXEC} if it didn't exist.
|
|
|
|
368. [bug] Interface scanning could get confused on BSD-like
|
|
systems if the sa_len of the address was less than
|
|
sizeof (struct sockaddr).
|
|
|
|
367. [func] The default value for the host-statistics option has
|
|
been changed to "no".
|
|
|
|
--- 8.1.2-T3B released ---
|
|
|
|
366. [bug] Z_AUTH was set on the cache zone do_reload().
|
|
|
|
365. [security] Missing bounds checking in inverse query handling
|
|
allowed an attacker to overwrite the server's stack.
|
|
|
|
364. [port] Added support for HP MPE.
|
|
|
|
363. [bug] named-xfer automatically restarts the transfer if the
|
|
SOA changes during the transfer. There was no limit
|
|
on the number of restarts, resulting in a lot of
|
|
wasted effort if the SOA was constantly changing.
|
|
The number of restarts is now limited.
|
|
|
|
362. [security] Requesting a zone transfer for a domain name which
|
|
had a resource record of a certain format would
|
|
cause the server to abort().
|
|
|
|
361. [bug] named-xfer tries to close files named might have
|
|
had open. On Solaris, sysconf(_SC_OPEN_MAX) can
|
|
return RLIM_INFINITY, and if it did named-xfer
|
|
would try to close all those files. named-xfer
|
|
now applies an upper limit of FD_SETSIZE.
|
|
|
|
360. [port] Solaris 2.5 systems needed <sys/resource.h> to
|
|
be included in port_after.h to get rlim_t.
|
|
|
|
--- 8.1.2-T3A released ---
|
|
|
|
359. [func] IRS group support is now controlled by the
|
|
WANT_IRS_GR define in port_before.h.
|
|
|
|
358. [port] Updated IRIX port.
|
|
|
|
357. [port] Added support for QNX.
|
|
|
|
356. [func] Added -u (set user id), -g (set group id), and
|
|
-t (chroot) command line options to 'named'.
|
|
|
|
355. [func] If getnetconf() fails because it can't create the
|
|
socket used to get the interface list, the server
|
|
will log an error if it is doing a periodic interface
|
|
scan, and panic otherwise. Previous versions of the
|
|
server always panicked.
|
|
|
|
354. [security] Bounds checking in named-xfer, dig, host, and nslookup
|
|
had problems similar to those in item 293. Added a
|
|
few more bounds checks to the server.
|
|
|
|
353. [port] Paths are no longer overridden in port_after.h, and
|
|
are now generated from the various DEST paths in
|
|
Makefile.set.
|
|
|
|
352. [bug] Because of problems with setting an infinite rlim_max
|
|
for RLIMIT_NOFILE on some systems, previous versions
|
|
of the server implemented "limit files unlimited" by
|
|
setting the limit to the value returned by
|
|
sysconf(_SC_OPEN_MAX). The server will now use
|
|
RLIM_INFINITY on systems which allow it.
|
|
|
|
351. [port] Updated HP/UX 10.x port.
|
|
|
|
350. [bug] errno could be changed by certain signal handlers.
|
|
These signal handlers now save errno on entry
|
|
and restore it on exit. This changes eliminates the
|
|
need for the SPURIOUS_ECHILD #define.
|
|
|
|
349. [bug] hesiod.h wasn't installed.
|
|
|
|
348. [port] Added support for LynxOS.
|
|
|
|
347. [bug] res_update() leaked the zone section it allocated.
|
|
This leak no longer occurs on normal returns, but
|
|
still occurs when there is an abnormal return. This
|
|
will be addressed in a future fix.
|
|
|
|
346. [bug] Fix 303 fixed one thing and broke another, resulting
|
|
in a nonfunctional grscan().
|
|
|
|
345. [bug] Fix 328 was bad, causing the root zone to be purged
|
|
every time a toplevel domain was reloaded.
|
|
|
|
344. [bug] The priming fix in change 330 erroneously called
|
|
unsched() twice, causing a core dump if priming
|
|
failed. The priming fix could also erroneously
|
|
query [0.0.0.0].0.
|
|
|
|
343. [bug] The REQUIRE() in free_rrecp() was wrong, and was
|
|
triggered by an unapproved update.
|
|
|
|
342. [port] Added support for SCO UNIX 3.2v5.0.4.
|
|
|
|
--- 8.1.2-T2A released ---
|
|
|
|
341. [port] The LOG_CONS option to openlog() does not work as
|
|
documented on some systems. The server will now use
|
|
LOG_CONS only if USE_LOG_CONS is defined by the
|
|
port. Currently the bsdos, decunix, freebsd, linux,
|
|
and netbsd ports define USE_LOG_CONS.
|
|
|
|
340. [bug] The pid file was updated before the configuration
|
|
file had been read.
|
|
|
|
339. [port] #define HAVE_GETRUSAGE for Solaris >= 2.5.
|
|
|
|
338. [func] 'host' can now print AAAA records.
|
|
|
|
337. [bug] rm_datum() erroneously set dp->d_next to NULL
|
|
when savedpp wasn't NULL. Given a dynamic update
|
|
operation that deleted more than one RR, this bug
|
|
would cause all but one of the RRs to be leaked, and
|
|
would prevent correct rollback if the update failed.
|
|
|
|
336. [bug] Make sure 's' isn't negative in res_send(). This
|
|
shouldn't happen, but there have been some reports
|
|
suggesting it can happen.
|
|
|
|
335. [lint] Cleaned up more gcc warnings.
|
|
|
|
334. [port] Added support for HP-UX 9.x.
|
|
|
|
333. [bug] db_glue.c didn't compile if DEBUG wasn't defined.
|
|
|
|
332. [bug] named-bootconf.pl didn't convert secondary lines
|
|
that didn't contain a filename correctly.
|
|
|
|
331. [bug] If the server was configured with forwarders (but
|
|
not in forward-only mode), and a query ran out of
|
|
forwarders and had no nameservers, then the server
|
|
would erroneously forward the request to [0.0.0.0].0.
|
|
|
|
330. [bug] If priming of the root servers failed, recovery could
|
|
take a long time. If using forwarders to prime
|
|
and the query expired, the first forwarder would
|
|
always be skipped on subsequent attempts. The server
|
|
complained about priming problems in forward-only mode,
|
|
even though it doesn't matter.
|
|
|
|
329. [port] Some versions of Linux apparently need SPURIOUS_ECHILD.
|
|
|
|
328. [bug] purge_zone() didn't recurse if given the root zone,
|
|
causing old data and new data for the root zone to be
|
|
merged.
|
|
|
|
327. [func] Add log_check() and log_check_channel().
|
|
|
|
326. [func] Add r_prev field to ns_updrec in <arpa/nameser.h>.
|
|
|
|
325. [bug] Rollback of a failed dynamic update was done in FIFO
|
|
order instead of LIFO order.
|
|
|
|
324. [bug] evTryAccept() closed the wrong fd if getsockname()
|
|
failed.
|
|
|
|
323. [bug] eventlib didn't clear bits that had been serviced
|
|
or deselected out of ctx->{rd,wr,ex}Last.
|
|
|
|
322. [bug] evDestroy() destroyed the files list before destroying
|
|
the streams list. If there were any active streams,
|
|
this would cause a double destroy of the streams'
|
|
file objects, very likely triggering an 'insist'.
|
|
|
|
321. [bug] The correct error code for a failed asynchronous
|
|
connect was not reported. It now is, at least on
|
|
systems that have the SO_ERROR socket option.
|
|
|
|
320. [func] Allow multiple pending accepts. evTryAccept() now
|
|
reports the errno if an error was queued.
|
|
|
|
319. [bug] The toplevel Makefile passed MARGS before $settings,
|
|
which prevented overriding a port's Makefile.set
|
|
from the command line.
|
|
|
|
318. [bug] The Solaris port_after.h checked for SUNOS_2_5_1
|
|
instead of SUNOS_5_5_1.
|
|
|
|
317. [unused] [This change number was allocated but not used.]
|
|
|
|
316. [bug] evTryAccept() didn't append to the done list correctly
|
|
if connLast wasn't NULL.
|
|
|
|
315. [bug] The dynamic update code was incorrectly converted to
|
|
clean up ns_updrec structures using the new clustered
|
|
memory allocator, and this would cause an 'insist' to
|
|
be triggered some time after a dynamic update had
|
|
been processed. Instead of freeing the ns_updrec
|
|
fields directly in ns_update.c, res_freeupdrec() was
|
|
added to the resolver.
|
|
|
|
314. [bug] Adding and then deleting an RR in a single dynamic
|
|
update request would crash the server.
|
|
|
|
313. [bug] The nameserver would only try zone transfers from
|
|
the master that answered its SOA query. If a master
|
|
for some reason can answer the SOA but not the AXFR,
|
|
the other masters (if any) should be tried.
|
|
|
|
312. [security] Bounds checking in the resolver and dynamic update
|
|
code had problems similar to those in item 293.
|
|
Added more checks to ns_resp.c.
|
|
|
|
311. [bug] The s_wbuf in the qstream structure was leaked in
|
|
certain zone transfer failures.
|
|
|
|
310. [bug] If the server ran out of memory in ns_xfr(), the
|
|
subsequent connection cleanup could modify the
|
|
z_numxfrs field of zone 0 instead of the zone being
|
|
transferred, causing an 'insist' to be triggered later.
|
|
|
|
309. [bug] NAMELEN() could return a negative length.
|
|
|
|
308. [func] Don't log ECONNRESET in stream_getlen().
|
|
|
|
307. [bug] include/isc/assertions.h and include/isc/list.h
|
|
weren't installed.
|
|
|
|
306. [bug] Timewarping into the future would cause repeating
|
|
timers to generate an event for every interval between
|
|
the previous time and the new time. Repeating timers
|
|
are now rescheduled based on the last event time, not
|
|
their due time. Idle timers now use the last event
|
|
time to compute the idle interval instead of the due
|
|
time.
|
|
|
|
305. [bug] The BOUNDS_CHECK() for the 5 32-bit integers in the
|
|
SOA RR was wrong.
|
|
|
|
304. [bug] lib/isc/assertions.c and lib/isc/memcluster.c did not
|
|
follow the port_{before/after}.h convention.
|
|
memcluster.c #included eventlib.h but did not need it.
|
|
|
|
--- 8.1.2-T1A released ---
|
|
|
|
303. [bug] 'bp' in grscan() in lib/irs/lcl_gr.c was incorrectly
|
|
validated, potentially causing corrupt data to be read.
|
|
|
|
302. [port] #define HAVE_GETRUSAGE for Solaris >= 2.5.1.
|
|
|
|
301. [port] Added support for Solaris 2.6.
|
|
|
|
300. [bug] The space for the pathname of named-xfer in the
|
|
options block leaked.
|
|
|
|
299. [bug] <irs.h> wasn't in the include directory, and wasn't
|
|
included before "port_after.h".
|
|
|
|
298. [func] Added "deallocate-on-exit" and "memstatistics-file"
|
|
options. If deallocate-on-exit is "yes", the server
|
|
will painstakingly deallocate every object it
|
|
allocated. This is slower than letting the OS clean
|
|
things up, but is helpful in detecting memory leaks.
|
|
|
|
297. [port] GNU libc 2.0 doesn't have <nlist.h> so in the
|
|
Linux port we now provide a stub nlist.h that
|
|
includes the real nlist.h if GNU libc < 2.0 and
|
|
does nothing if >= 2.0.
|
|
|
|
296. [bug] "make stdlinks" didn't "mkdir /var/obj" if /var/obj
|
|
didn't exist.
|
|
|
|
295. [bug] Specifying a query-source with and address and port
|
|
that the server was listening to didn't work.
|
|
|
|
294. [security] The server was willing to answer queries on its
|
|
forwarding sockets.
|
|
|
|
293. [security] rrextract() did insufficient bounds checking which
|
|
could cause it to crash the server by reading from
|
|
an invalid memory location.
|
|
|
|
292. [bug] The server sometimes leaked the flushset (ns_resp.c).
|
|
|
|
291. [bug] The server did not detect oversized UDP packets,
|
|
causing useless retries.
|
|
|
|
290. [bug] free_listen_info_list() leaked the IP matching lists;
|
|
the leak occurred when the config file was reloaded.
|
|
|
|
289. [bug] [This bug number was allocated for something that
|
|
turned out not to be a bug.]
|
|
|
|
288. [func] Add new list and assertion code to the ISC library.
|
|
|
|
287. [bug] "dig +sort" doesn't do anything, but was mentioned
|
|
in dig's usage message, as well as in the man page.
|
|
|
|
286. [bug] Some systems have a default FD_SETSIZE much smaller
|
|
than the number of files that can be opened. This
|
|
could cause problems in the resolver and eventlib.
|
|
FD_SETSIZE may now be set in
|
|
port/*/include/fd_setsize.h.
|
|
|
|
285. [bug] If OS probing failed to match any of the supported
|
|
ports, the build would try to continue with BSD 4.4
|
|
settings, with poor results in most situations. An
|
|
error message is now printed if probing fails.
|
|
|
|
284. [func] The interface list is now doubly-linked.
|
|
|
|
283. [bug] The server would panic if binding to an interface that
|
|
it had discovered failed. Simply not listening to
|
|
the interface is a better solution.
|
|
|
|
282. [bug] The nslookup Makefile didn't prefix DESTHELP with
|
|
DESTDIR when setting DEFS.
|
|
|
|
281. [bug] A socket() called in ns_main.c used PF_INET instead
|
|
of AF_INET.
|
|
|
|
280. [bug] The sample named.conf used "clean-interval" instead of
|
|
"cleaning-interval".
|
|
|
|
279. [bug] Some panic() messages in the IP matching code in
|
|
ns_config.c were wrong.
|
|
|
|
278. [bug] Setting an interval to zero (e.g. interface-interval)
|
|
eventually caused random timer destruction.
|
|
|
|
277. [bug] ns_panic() used "args" twice, but only called
|
|
va_start() and va_end() once.
|
|
|
|
276. [bug] nslookup's "ls" command always listed all records
|
|
instead of behaving the way its man page describes.
|
|
|
|
275. [bug] add_related_additional() leaked memory if the name
|
|
was already in the related array.
|
|
|
|
274. [bug] If a timer was cleared while in executing its callback,
|
|
and a new non-repeating timer was created afterwards
|
|
(but still in the callback), the new timer was
|
|
erroneously destroyed when the callback completed.
|
|
|
|
273. [func] Added transfer-source and host-statistics options.
|
|
|
|
272. [func] The zone number is now unsigned, allowing up to
|
|
65536 zones instead of the previous limit of 32768.
|
|
|
|
271. [func] Added evDefer().
|
|
|
|
270. [bug] The meaning of the count returned by select() varies
|
|
somewhat by operating system. Under certain
|
|
circumstances, this confused eventlib's accounting and
|
|
caused the server to spin.
|
|
|
|
269. [func] Added evLastEventTime().
|
|
|
|
268. [bug] Connections weren't cleaned up when the eventlib
|
|
context was destroyed.
|
|
|
|
267. [func] Added evTimeRW() and evUntimeRW() to control idle timer
|
|
usage in the eventlib streams module.
|
|
|
|
266. [func] Added file descriptor table to ev_files.c to improve
|
|
performance of evSelect() and evDeselect().
|
|
|
|
265. [func] Added evHold(), evUnhold(), and evTryAccept().
|
|
|
|
264. [func] Double-link many eventlib lists to allow faster
|
|
removal of list elements.
|
|
|
|
263. [bug] Remember the previous non-blocking status of
|
|
sockets given to evListen().
|
|
|
|
262. [func] Added idle timers to eventlib.
|
|
|
|
261. [func] Added clustered memory allocator to eventlib; eventlib
|
|
and named now use this allocator.
|
|
|
|
260. [func] The value of FD_SETSIZE that eventlib uses can be
|
|
set by changing include/fd_setsize.h.
|
|
|
|
259. [bug] Notification of hosts on the also-notify list stopped
|
|
after the first successful notification.
|
|
|
|
--- 8.1.1 released ---
|
|
|
|
258. [bug] Setting SO_SNDLOWAT to 0 in ns_xfr() wasn't doing
|
|
what it was intended to do, and could trigger a
|
|
kernel bug on various systems derived from BSD 4.4.
|
|
|
|
257. [bug] In lib/irs/dns_ho.c, variable needsort was used in
|
|
addrsort() before it was initialized.
|
|
|
|
256. [func] Ignore ECHILD from select() if SPURIOUS_ECHILD is
|
|
defined.
|
|
|
|
255. [bug] The contents of libport.a needed to be in libbind.a.
|
|
libport.a has been removed.
|
|
|
|
254. [install] Install library and .h files under /usr/local/bind
|
|
instead of /usr/local. When the include files were
|
|
in /usr/local/include, some compilers would
|
|
automatically use them. The clients would typically
|
|
not link with -lbind, causing unresolved symbols at
|
|
link time.
|
|
|
|
253. [port] Removed change 216.
|
|
|
|
252. [port] Added port for UnixWare 2.0.x.
|
|
|
|
251. [doc] Added a documentation on installing to non-default
|
|
locations.
|
|
|
|
250. [bug] The Makefiles for the binaries didn't create the
|
|
installation target directories if they didn't exist.
|
|
|
|
249. [bug] Change HAS_SA_LEN to HAVE_SA_LEN in the AIX 4 port.
|
|
|
|
248. [security] The server now caches only those response records
|
|
that are within the current query domain.
|
|
|
|
247. [bug] Forwarding of dynamic update requests sent to a
|
|
slave for the zone is broken. This will be fixed
|
|
in a future release, but in the meantime the server
|
|
will simply refuse the request. Cleaned up the
|
|
way some update code indicated that the request should
|
|
be refused.
|
|
|
|
--- 8.1.1-T2B released ---
|
|
|
|
246. [bug] process_prereq() could core dump if the name being
|
|
processed wasn't known.
|
|
|
|
245. [bug] It was possible to evSelectFD the same event bits
|
|
on the same fd more than once.
|
|
|
|
244. [bug] eventlib didn't decrement fdCount correctly if the
|
|
eventmask matched in multiple descriptor sets.
|
|
|
|
243. [lint] Improved comment in stale().
|
|
|
|
242. [port] Added port for OpenBSD.
|
|
|
|
241. [bug] evConnect() didn't evDeselect() the fd if connect()
|
|
failed, which would cause us to call select() with
|
|
a mask that included a closed file. select() would
|
|
then return EBADF and trigger an 'insist'.
|
|
|
|
240. [bug] evCancelConn() closed the fd.
|
|
|
|
239. [port] SunOS doesn't supply RAND_MAX.
|
|
|
|
238. [bug] fakeaddr() called inet_aton() which wasn't strict
|
|
enough. inet_pton() is now used.
|
|
|
|
237. [port] Added UnixWare 2.1.2 port.
|
|
|
|
236. [bug] The buffer in res_querydomain could overflow.
|
|
|
|
235. [bug] Fixed memory allocation problems in lib/irs/nis_gr.c.
|
|
|
|
234. [bug] evDeselectFD didn't restore the fd's previous
|
|
nonblocking status correctly.
|
|
|
|
233. [func] Define SPURIOUS_ECHILD in Solaris port. Don't
|
|
complain about getting ECHILD from recvfrom() if
|
|
SPURIOUS_ECHILD is defined.
|
|
|
|
232. [func] named-bootconf.pl now supplies a commented out
|
|
query-source directive and instructions to use it
|
|
if there's a firewall involved.
|
|
|
|
231. [bug] Changed a few strdup() calls in rrextract() into
|
|
savestr() calls. This prevents "related" checking
|
|
from being turned off if the server runs out of
|
|
memory.
|
|
|
|
230. [bug] If the query control structure was reset in ns_resp.c,
|
|
we leaked the memory used for the previous
|
|
qp->q_domain.
|
|
|
|
229. [func] Added the "dump-file" and "statistics-file" options.
|
|
|
|
228. [bug] named.conf called "statistics-interval"
|
|
"stats-interval".
|
|
|
|
227. [func] demoted "zones changed" and "zones shrunk" messages
|
|
in tryxfer() to debug level 3.
|
|
|
|
--- 8.1.1-T1A released ---
|
|
|
|
226. [bug] evCancelConn trashed the connections list if the
|
|
first element was removed. This could cause a
|
|
seg fault or trigger an 'insist'.
|
|
|
|
225. [bug] In the "cannot redefine listen-on for port ..."
|
|
error message, the port was not converted to host
|
|
byte order before being printed.
|
|
|
|
224. [port] Added port for AIX 4.
|
|
|
|
223. [bug] The dynamic update routine findzone() didn't match
|
|
class, so if you had two zones with the same name
|
|
but different classes (e.g. IN and HS), then
|
|
the wrong allow-update ACL could be used, and the
|
|
wrong zone could be updated.
|
|
|
|
222. [bug] If a dynamic master zone was updated and then was made
|
|
non-dynamic by removing the allow-update ACL or
|
|
changing it to "none" before the zone had been dumped,
|
|
then the master file would not reflect the update.
|
|
|
|
221. [func] added 'also-notify'.
|
|
|
|
220. [func] revised HAVE_GETRUSAGE ifdefs in ns_config.c. The
|
|
"cannot set resource limits on this system" message
|
|
on systems without HAVE_GETRUSAGE will now be logged
|
|
once per options block, and the message severity is
|
|
now "info" instead of "warning".
|
|
|
|
219. [bug] If the root name was encoded in a message using a
|
|
compression pointer, dn_expand() would erroneously
|
|
return "." as the name instead of "".
|
|
|
|
218. [bug] when gethostans() in dns_ho.c encountered a CNAME
|
|
while processing a PTR query, it erroneously required
|
|
that the CNAME target pass the res_hnok() test (i.e.
|
|
that it be an RFC 952 hostname).
|
|
|
|
217. [bug] dnsquery didn't work because it tried to use the
|
|
obsolete and broken p_query() call instead of
|
|
fp_nquery().
|
|
|
|
216. [port] set SH=bash in port/freebsd/Makefile.set.
|
|
|
|
215. [port] #define ts_sec and ts_nsec to tv_sec and tv_nsec
|
|
respectively in port/freebsd/include/port_before.h.
|
|
|
|
214. [bug] the clarification TTL changes (see change 145 below)
|
|
set the SOA minimum field to zero if the MSB was set.
|
|
The server now leaves the SOA RR alone, but sets
|
|
z_minimum to zero if the MSB is set.
|
|
|
|
213. [bug] if the SOA refresh or retry fields of a slave zone
|
|
were 0, an 'insist' would be triggered when zone
|
|
maintenance was performed. The server still leaves
|
|
the SOA RR alone, but now imposes a minimum value for
|
|
z_refresh and z_retry.
|
|
|
|
212. [func] added the clean-interval, interface-interval, and
|
|
statistics-interval options.
|
|
|
|
211. [func] scan for new or deleted interfaces periodically.
|
|
|
|
210. [func] the _PATH_DUMPFILE default is now "named_dump.db".
|
|
|
|
209. [bug] <isc/eventlib.h> and <isc/logging.h> were #included
|
|
after port_after.h. They are now #included before
|
|
it, since they #include system header files.
|
|
ns_lexer.h was #including <stdio.h> and ns_parseutil.h.
|
|
Now it #includes neither one. These changes required
|
|
that the definition of struct timespec be moved from
|
|
port_after.h to port_before.h in the ULTRIX, SunOS,
|
|
and A/UX ports.
|
|
|
|
208. [port] removed HAVE_GETRUSAGE from the Solaris port, since
|
|
Solaris only has it if a Berkeley compatibility
|
|
package is installed.
|
|
|
|
207. [bug] abortxfer() always used SIGKILL, which didn't give
|
|
named-xfer a chance to clean up after itself. Now
|
|
abortxfer() does a SIGTERM first. If the SIGTERM isn't
|
|
successful, it will use SIGKILL.
|
|
|
|
206. [bug] If two zones with the same name but different classes
|
|
(e.g. IN and HS) were defined, then a zone transfer
|
|
of whichever zone loaded first would work normally,
|
|
but a zone transfer of the second would give only the
|
|
NS and SOA RRs.
|
|
|
|
205. [bug] certain operating systems (notably Solaris) return
|
|
error codes the server didn't expect, and thus
|
|
treated as fatal to the interface. More error codes
|
|
are now recognized. The server will now log
|
|
unrecognized errors, but will not delete the
|
|
interface. Certain error results from recvfrom() and
|
|
accept() now panic the server.
|
|
|
|
204. [bug] stub zone transfers would fail if there were no
|
|
NS records in the SOA response. The stub logic
|
|
now works as intended and has more error checking.
|
|
|
|
203. [bug] we logged a failure of bind() in opensocket_d()
|
|
twice.
|
|
|
|
202. [port] Linux defines AF_INET6 as 10, so we use that value
|
|
in port/linux/include/port_after.h.
|
|
|
|
201. [bug] library Makefiles want to press on if linking of
|
|
an individual module fails. The 'ld' rule was
|
|
set up to do this, but the subsequent 'mv' rule
|
|
was not, causing the make to stop if the 'ld' failed.
|
|
Now the 'mv' is done only if the 'ld' succeeds.
|
|
|
|
200. [bug] the value of timeout.tv_sec was printed in SendRequest
|
|
(bin/nslookup/send.c). select() on some systems
|
|
(such as Linux) modifies the value of the timeout, so
|
|
printing it is useless since it will always be 0.
|
|
|
|
199. [func] if s is too big for FD_SETSIZE in res_send, complain
|
|
and try another nameserver.
|
|
|
|
198. [bug] sysnotify() was too strict in requiring an NS RR
|
|
for the server named in the SOA MNAME field. RFCs
|
|
1996 and 2136 say the NS RR is optional.
|
|
|
|
197. [bug] The parser erroneously freed zone_name if a zone
|
|
redefinition was attempted. This would cause the
|
|
server to dump core if a zone appeared more than
|
|
once in a configuration file.
|
|
|
|
196. [bug] Makefiles below port/*/include had "fi \" followed
|
|
by "done" on the next line. This made bash 2.0
|
|
unhappy. The "fi" is now followed by a ";".
|
|
|
|
195. [port] ULTRIX's sh doesn't like an empty "for x in ..." list,
|
|
and that was causing "make install" to fail in
|
|
the src/port/ultrix/include/rpc directory.
|
|
|
|
194. [port] add SH variable to toplevel Makefile, document the
|
|
need to use SH=bash on systems where /bin/sh is
|
|
derived from "ash".
|
|
|
|
193. [bug] named-bootconf.pl could repeat end-of-line comments
|
|
|
|
192. [bug] ndc was being installed in DESTBIN instead of
|
|
DESTSBIN.
|
|
|
|
191. [bug] block delivery of all other signals when in SIGTERM
|
|
handler in named-xfer.
|
|
|
|
190. [bug] named-bootconf.pl didn't handle non-masked xfrnets
|
|
correctly if the network was class B or class C.
|
|
|
|
--- 8.1-REL released ---
|
|
|
|
189. [port] update to the port/sco50 directory rcvd from author.
|
|
|
|
188. [func] to avoid potentially confusing log messages, don't
|
|
set Z_DYNAMIC if "allow-update { none; };" is
|
|
specified in the config file.
|
|
|
|
187. [bug] a panic() in new_ip_match_mask() erroneously
|
|
referred to the function as "new_ip_match_pattern".
|
|
|
|
186. [bug] transfers-in couldn't be set higher than the default.
|
|
It may now be set as high as 20.
|
|
|
|
185. [doc] add a stub example to named.conf.
|
|
|
|
184. [bug] the usage message was out-of-date.
|
|
|
|
183. [port] some systems don't define AF_INET6, so we
|
|
define it if necessary in all port_after.h
|
|
|
|
--- 8.1-T5B released ---
|
|
|
|
182. [bug] fix the way bindname is allocated in hesiod_to_bind().
|
|
|
|
181. [bug] MAXHOSTNAMELEN wasn't defined on Solaris.
|
|
|
|
180. [bug] a check for zptr != NULL in res_update was wrong. It
|
|
should have been zptr == NULL.
|
|
|
|
179. [bug] sq_remove() and sq_done() were calling ns_freexfr()
|
|
when any stream was removed, resulting in a panic
|
|
when the server was reloaded. ns_freexfr() is now
|
|
only called when a zone transfer stream is removed.
|
|
|
|
--- 8.1-T4B released ---
|
|
|
|
178. [bug] if the server was reloaded and then a zone was
|
|
deleted and the server reloaded again, all within
|
|
a short period of time, then pending NOTIFY messages
|
|
would cause the server to panic when they ran.
|
|
|
|
177. [lint] replaced BUFSIZ with a more appropriate size in
|
|
several places.
|
|
|
|
176. [func] change MAXDATA to 2*MAXDNAME + 5*INT32SZ.
|
|
|
|
175. [security] libirs now limits hostnames to MAXHOSTNAMELEN
|
|
characters.
|
|
|
|
174. [bug] we called ns_refreshtime() instead of ns_retrytime()
|
|
in the Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL case in
|
|
zone_maint().
|
|
|
|
173. [bug] the server didn't clear the Z_NEED_RELOAD flag in
|
|
zoneinit().
|
|
|
|
172. [bug] if a server was a slave for a zone, and an outbound
|
|
transfer ever hung or terminated unusually, regular
|
|
zone maintenance would cease for the zone.
|
|
|
|
171. [port] work around a bug in the Digital UNIX 4.0B SIOCGIFCONF
|
|
ioctl.
|
|
|
|
170. [func] the message logged when a zone is loaded now
|
|
indicates the class of the zone.
|
|
|
|
169. [func] the message logged when a zone is removed now
|
|
indicates both the type and class of the zone.
|
|
|
|
168. [bug] if a zone's type changed from master to slave on a
|
|
server reload, the server erroneously deleted the
|
|
new zone data as part of cleaning up the old zone
|
|
data.
|
|
|
|
167. [func] when converting from wire format to printable format,
|
|
represent special characters ".;\@$ by escaping them
|
|
with \ instead of converting them to \DDD.
|
|
|
|
166. [bug] when a slave zone expired, it was not scheduled for
|
|
immedidate maintenance.
|
|
|
|
165. [port] added port for SCO OSE 5.0.2, renamed port for
|
|
SCO UNIX 3.2v4.2.
|
|
|
|
164. [func] created the "response-checks" logging category.
|
|
|
|
163. [port] don't define AF_INET6 in nameser_compat.h.
|
|
|
|
162. [bug] the server panicked if a dynamic update request
|
|
was sent for a dynamic zone which had not loaded
|
|
because of syntax errors in the master file. The
|
|
server now returns NOTAUTH.
|
|
|
|
161. [bug] debugging messages in process_prereq() referred to
|
|
process_updates() instead of process_prereq().
|
|
|
|
160. [bug] hp was not reset after a realloc() in named-xfer.c
|
|
|
|
159. [bug] named-bootconf.pl didn't translate stub zones.
|
|
|
|
158. [lint] cast a number of "no effect" statements to void so
|
|
that gcc doesn't complain when invoked with
|
|
-Wall -W -Wno-unused
|
|
|
|
157. [lint] a number of uses of the %lu printf() format were
|
|
converted to %u; the corresponding casts to u_long
|
|
were removed.
|
|
|
|
156. [lint] converted z_deferupdcnt and z_updatecnt from int to
|
|
u_int32_t.
|
|
|
|
155. [func] maint_interval is now gone; SOA sanity checking
|
|
related to it is gone too.
|
|
|
|
154. [bug] in named-xfer, unsigned 32-bit integers were
|
|
sometimes stored in signed 32-bit variables and then
|
|
printed using a cast to u_long and printf() format
|
|
%lu. This would cause problems on 64-bit systems if
|
|
the MSB of the 32-bit integer was set. The variable
|
|
declarations have been changed to u_int32_t, and the
|
|
printf format is now %u.
|
|
|
|
153. [bug] log_open_stream() had two syslogs that said the
|
|
failing function was log_vwrite() instead of
|
|
log_open_stream().
|
|
|
|
152. [lint] made class, type, and dlen in rrextract() and
|
|
named-xfer.c/print_output() u_int16_t.
|
|
|
|
151. [bug] the server was incrementing nssSentFErr in the
|
|
formerr: code in ns_resp.c even though it wasn't
|
|
sending FORMERR to anyone.
|
|
|
|
150. [func] in "check-names response fail" mode, instead of
|
|
just dropping a failing response, we now send
|
|
REFUSED to the client and drop the query.
|
|
|
|
149. [bug] if there wasn't a space between the SOA minimum value
|
|
and a following ')' in a master file, the server
|
|
would generate an error when it tried to parse the
|
|
minimum value, causing the zone load to fail.
|
|
|
|
148. [func] the list of supported syslog facilities has been
|
|
increased; the following facilities may now be used,
|
|
provided they're available on the system 'named' is
|
|
being built on: kern, user, mail, daemon, auth,
|
|
syslog, lpr, news, uucp, cron, authpriv, ftp,
|
|
local[0-7].
|
|
|
|
147. [bug] the maybe_syslog_facility, logging_opt,
|
|
channel_severity, address_name, key_ref, key_stmt,
|
|
acl_stmt, zone_stmt, optional_class, and size_spec
|
|
rules in the parser either leaked memory or could
|
|
leak memory.
|
|
|
|
146. [func] if an RR set in a reply differed from an RR set in
|
|
the cache only in the TTL, we would not update the
|
|
TTL of the RR set in the cache. We now update this
|
|
TTL to that of the reply RR set if the reply RR set's
|
|
TTL is greater.
|
|
|
|
145. [func] follow the direction of the clarification draft and
|
|
treat TTLs as unsigned 32-bit integers, with a
|
|
maximum value of 2^31 - 1. TTLs greater than the
|
|
maximum will be converted to 0. A warning will
|
|
be issued if this conversion occurs while loading
|
|
a master zone or during inbound zone transfer.
|
|
|
|
144. [func] "dig version.bind. txt chaos" now returns only
|
|
the version number (e.g. "8.1-T4B").
|
|
|
|
143. [lint] fixed various mismatches between printf() format
|
|
string components and their corresponding
|
|
arguments.
|
|
|
|
142. [lint] SendRequest_close() in nslookup/send.c had a return
|
|
type of int instead of void.
|
|
|
|
141. [port] converted bcopy() to memcpy() or memmove() as
|
|
appropriate.
|
|
|
|
140. [bug] certain buffer size checking comparisons in
|
|
rdata_expand() weren't working because they were
|
|
checking to see if an unsigned value was < 0.
|
|
|
|
139. [func] convert a few address comparisons from == to using
|
|
ina_equal().
|
|
|
|
138. [bug] an address comparison used in marking a server as
|
|
bad was done incorrectly in ns_resp.c because the
|
|
comparison used = instead of ==.
|
|
|
|
137. [lint] cleaned up warnings caused by assignment used as
|
|
truth-value in various source files.
|
|
|
|
136. [func] changed eventlib-related INSIST statements into
|
|
INSIST_ERR, so that we can print out strerror(errno).
|
|
|
|
135. [lint] replaced _getshort() with ns_get16() and _getlong()
|
|
with ns_get32() in various source files.
|
|
|
|
134. [lint] findzone() and rdata_expand() were used before
|
|
they were declared in ns_update.c, and were not
|
|
declared static.
|
|
|
|
133. [lint] merge_logs() was not declared in ns_func.h.
|
|
|
|
132. [lint] Linux port_after.h didn't declare daemon(). We now
|
|
do so, but only if GNU libc < 2.0.
|
|
|
|
131. [lint] set_boolean_option() was not declared in ns_func.h.
|
|
|
|
130. [lint] yyparse() was not declared in ns_parser.y.
|
|
|
|
129. [lint] ns_lexer.h didn't declare lexer_end_file().
|
|
|
|
128. [lint] db_dump.c, db_lookup.c, db_update.c, db_glue.c,
|
|
db_save.c, ns_ncache.c, ns_req.c, ns_stats.c, and
|
|
ns_xfr.c didn't #include <string.h>
|
|
|
|
127. [lint] logging.c, ev_connects.c, ns_maint.c, ns_glue.c,
|
|
ns_update.c, dig/dig.c, nslookup/list.c,
|
|
nslookup/send.c, host/host.c, and
|
|
dnsquery/dnsquery.c didn't #include <unistd.h>.
|
|
|
|
126. [lint] res_update.c, heap.c, db_load.c, db_save.c, db_glue.c,
|
|
ns_lexer.c, ns_forw.c, ns_maint.c, ns_req.c,
|
|
ns_stats.c, ns_xfr.c, ns_glue.c, ns_config.c,
|
|
ns_update.c, host/host.c, nslookup/list.c, and
|
|
nslookup/getinfo.c didn't #include <stdlib.h>.
|
|
|
|
125. [lint] res_mkupdate.c, ns_update.c, nsupdate.c, ns_print.c,
|
|
didn't #include <ctype.h>.
|
|
|
|
124. [port] replaced bcmp() with memcmp().
|
|
|
|
123. [func] while not required, it's nice to preserve the order
|
|
of RRs as received when ROUND_ROBIN isn't on, so
|
|
we now do so.
|
|
|
|
122. [bug] under certain improbable conditions, the server
|
|
could erroneously set a maintenance timer for a
|
|
master zone. When the timer went off, it would
|
|
trigger the INSIST() in zone_maint().
|
|
|
|
121. [port] replaced bzero() with memset().
|
|
|
|
120. [func] added multiple-cnames option.
|
|
|
|
119. [bug] the timeout: code in ns_resp.c didn't clean up TCP
|
|
connections.
|
|
|
|
118. [port] added port for IRIX 5.3, 6.2, 6.4
|
|
|
|
117. [bug] removed declaration of getnum_error from db_load.c,
|
|
since it is now declared in ns_glob.h.
|
|
|
|
116. [bug] GNU libc 2.0 doesn't have a <net/route.h>, so in the
|
|
Linux port we now provide a stub net/route.h that
|
|
includes the real <net/route.h> if GNU libc < 2.0 and
|
|
does nothing if >= 2.0.
|
|
|
|
115. [func] on Linux systems, avoid an often unnecessary 'ranlib'
|
|
and the subsequent relinking of all binaries by using
|
|
the 's' flag of 'ar'.
|
|
|
|
114. [bug] 'make install' didn't work on HP/UX because the
|
|
path to the install script was wrong in many cases.
|
|
|
|
113. [bug] named-xfer didn't clean up properly when sent SIGTERM.
|
|
|
|
112. [bug] named-xfer didn't clean up properly if an error
|
|
occured in print_output().
|
|
|
|
111. [func] added "max-transfer-time-in" option. The server
|
|
used to allow a maximum of 2 hours for an inbound
|
|
zone transfer to complete. This time can now be
|
|
set globally or on a per-zone basis. The parameter
|
|
is the number of minutes a transfer can take.
|
|
|
|
110. [func] moved declaration of d_ns in struct databuf to improve
|
|
structure alignment.
|
|
|
|
109. [bug] addname() in ns_print.c didn't write an "@" for RRs
|
|
that contained a domain name which was the same as
|
|
the zone origin (it wrote nothing).
|
|
|
|
108. [bug] the server didn't check for EINTR in readable() and
|
|
writable() in ev_streams.c.
|
|
|
|
107. [bug] check for both EWOULDBLOCK and EAGAIN after certain
|
|
system calls instead of using PORT_WOULDBLK. This
|
|
fixes partial zone transfer problems reported on
|
|
Sun systems.
|
|
|
|
106. [bug] db_load() couldn't read SOAs with ( ) that were only
|
|
one line.
|
|
|
|
105. [bug] fixed typo in Linux Makefile.set MANROFF definition.
|
|
|
|
104. [func] move various rrset debugging messages, rm_datum, and
|
|
nsfree messages to debug level 3. Moved a few rrset
|
|
debugging messages to debug level 2.
|
|
|
|
103. [bug] d_rcnt could overflow; to prevent this it has been
|
|
increased to 32 bits. d_mark was made unsigned and
|
|
decreased to 12 bits.
|
|
|
|
102. [func] added macro DRCNTDEC to go along with DRCNTINC.
|
|
|
|
101. [bug] clean_cache() didn't count deleted RRs, so it
|
|
always reported "Cleaned cache of 0 RRs".
|
|
|
|
100. [bug] heap_for_each() didn't return a status, and didn't
|
|
check for a NULL context or a NULL action.
|
|
heap_element() didn't set errno to EINVAL when
|
|
given invalid arguments.
|
|
|
|
99. [bug] the category rule in the parser leaked memory.
|
|
|
|
98. [bug] "notify" was not recognized as a valid category
|
|
name.
|
|
|
|
97. [security] zone access control wasn't applied correctly to
|
|
names that didn't exist, allowing an attacker to
|
|
determine whether or not a given name exists in a
|
|
zone.
|
|
|
|
96. [bug] we didn't recognize certain non-fatal errno values
|
|
when recvfrom() failed; this would result in us
|
|
dropping an interface unnecessarily.
|
|
|
|
--- 8.1-T3B released ---
|
|
|
|
95. [bug] named-bootconf.pl didn't process xfrnets correctly
|
|
(if no netmask was specifed, it assumed a mask of
|
|
255.255.255.255 instead of the natural netmask for
|
|
the class of the address).
|
|
|
|
94. [bug] named-bootconf.pl didn't handle lines ending in a
|
|
comment.
|
|
|
|
93. [bug] if rename() failed in merge_logs(), we would return
|
|
garbage instead of -1.
|
|
|
|
92. [bug] writemsg() in named-xfer.c was returning a random
|
|
value instead of the number of bytes written.
|
|
|
|
91. [bug] schedretry() could set retry times in the past
|
|
because it was relying on 'tt' which hadn't been
|
|
updated. It now calls gettime(&tt).
|
|
|
|
90. [bug] 'tt' might not have been current when clean_cache()
|
|
was called.
|
|
|
|
89. [bug] ns_lexer.h didn't #include <ctype.h>
|
|
|
|
88. [cleanup] removed some relics of the early days of BIND 8's
|
|
new logging system from the parser and ns_config.c.
|
|
|
|
87. [bug] when writing to a TCP socket, the server didn't
|
|
handle errors from the write() correctly. Under the
|
|
right circumstances, this will cause the server to
|
|
spin. The most common trigger would be a large
|
|
outbound zone transfer where the far end died.
|
|
|
|
86. [cleanup] fixed comment in dig.c that messed up font-lock mode
|
|
in emacs.
|
|
|
|
85. [bug] inet_lnaof, inet_makeaddr, inet_netof, and
|
|
inet_network were missing from lib/inet.
|
|
|
|
84. [func] improved log_channel creation and use by making the
|
|
type more opaque. The logging API provides a more
|
|
complete set of services. Added the LOG_CHANNEL_OFF
|
|
flag.
|
|
|
|
83. [func] removed statistics_channel; it wasn't being used.
|
|
|
|
82. [lint] a few handler functions were declared as
|
|
void (*)() instead of void (*)(void). All now have
|
|
the latter declaration.
|
|
|
|
81. [port] added port for A/UX 3.1.1.
|
|
|
|
80. [port] added port for SCO UNIX 3.2v4.2.
|
|
|
|
79. [bug] when processsing slave zones during a config file
|
|
reload, in the "backup file changed" (or missing)
|
|
case we were calling purge_zone() and do_reload()
|
|
even if we had never successfully transferred and
|
|
loaded the zone.
|
|
|
|
78. [cleanup] moved writemsg() to named-xfer.c.
|
|
|
|
77. [cleanup] removed doupdate() from ns_resp.c.
|
|
|
|
76. [bug] writev() in lib/bsd would keep going if there was
|
|
a partial write; this could cause incorrect output.
|
|
|
|
75. [func] added readv() to lib/bsd.
|
|
|
|
74. [bug] if evConnect() failed in tcp_send() we were aborting
|
|
the server instead of just returning an error.
|
|
|
|
73. [port] automatically fix getgrgid() declaration in ULTRIX
|
|
4.5 grp.h.
|
|
|
|
72. [func] make port/*/Makefile invoke SUBDIR make in
|
|
include. Add/modify include and include/sys
|
|
Makefiles.
|
|
|
|
71. [port] added utimes() to lib/bsd.
|
|
|
|
70. [doc] README broken up into INSTALL, TODO, port/README.
|
|
Added more info about many topics.
|
|
|
|
69. [bug] NOTIFY didn't handle an unknown NS target. E.g.
|
|
if we had "test.domain NS unknown.name" and
|
|
"unknown.name" was not known, NOTIFY wasn't doing an
|
|
"A" query for "unknown.name".
|
|
|
|
68. [lint] tweaks to ERR() and OK() in eventlib_p.h.
|
|
|
|
67. [bug] 'ch' in main() was a char instead of an int.
|
|
|
|
66. [bug] in bin/named/Makefile, pathnames wasn't getting
|
|
linked with ${LIBBIND}, ${LIBPORT}, and ${SYSLIBS}.
|
|
|
|
65. [port] automatically fix timespec in BSD/OS 2.1 includes.
|
|
|
|
64. [func] lib/isc/heap.c now includes port_before.h and
|
|
port_after.h. Fix 58 (below) has been undone;
|
|
with port_after.h we'll now use __ansi_realloc()
|
|
from Fix 59.
|
|
|
|
63. [bug] STRIP and PS were missing from MARGS in bin/Makefile.
|
|
|
|
62. [func] RRs in the additional data section must relate to
|
|
RRs in the answer and authority sections. Only
|
|
certain RR types are allowed in the authority and
|
|
additional data sections.
|
|
|
|
61. [bug] Dynamic update didn't understand SRV records.
|
|
|
|
60. [bug] SRV records weren't decoded properly.
|
|
|
|
--- 8.1-T3A released ---
|
|
|
|
59. [bug] The IRS library also wanted an ANSI C realloc().
|
|
port/sunos now provides __ansi_realloc().
|
|
|
|
58. [bug] SunOS didn't like heap.c doing realloc() on a NULL
|
|
pointer (in ANSI C that is equivalent to malloc()),
|
|
so we malloc() instead.
|
|
|
|
57. [bug] interface discovery complained about bogus
|
|
interfaces on ULTRIX, SunOS, and HP/UX because
|
|
SIOCGIFCONF_ADDR wasn't defined in their port_after.h.
|
|
|
|
56. [API] created lib/nameser/ns_name.c and moved a lot of the
|
|
functionality from lib/resolv/res_comp.c into it.
|
|
functions older than 8.1 were stubbed out, but new
|
|
functions from 8.1 were just renamed/removed.
|
|
|
|
55. [bug] findzone in ns_update wasn't ignoring z_nil zones.
|
|
|
|
54. [bug] if the named-xfer exec() failed, a misleading message
|
|
was printed.
|
|
|
|
53. [bug] interface discovery didn't work on NetBSD because
|
|
HAVE_SA_LEN wasn't defined in port_after.h.
|
|
|
|
52. [func] log the host we got a NOTIFY message from
|
|
|
|
51. [bug] we weren't sending out NOTIFY messages if the SOA
|
|
was changed as the result of a dynamic update.
|
|
|
|
50. [bug] req_notify() wasn't calling sched_zone_maint() after
|
|
it called qserial_query().
|
|
|
|
49. [bug] initial_{data,stack,core}_size and initial_num_files
|
|
weren't in an #ifdef HAVE_GETRUSAGE block.
|
|
|
|
48. [func] use sysconf(_SC_OPEN_MAX) instead of getdtablesize()
|
|
in all cases when USE_POSIX is defined.
|
|
|
|
47. [bug] printupdatelog() was printing the post-update serial
|
|
number in the zone section instead of the pre-update
|
|
serial number.
|
|
|
|
46. [bug] zp->z_serial wasn't being updated if a dynamic update
|
|
changed the zone serial number.
|
|
|
|
45. [bug] the SEQ_GT test in db_update was backwards.
|
|
|
|
44. [func] merge_logs() didn't work because a 'break' wasn't
|
|
removed when class and type lookups were converted
|
|
to sym_ston.
|
|
|
|
43. [func] evResetTimer() added to eventlib.
|
|
|
|
42. [bug] incr_serial() doesn't need to call schedule_dump().
|
|
|
|
41. [bug] reset_retrytimer() could clear a timer that had
|
|
already been cleared.
|
|
|
|
40. [bug] some zone data structures weren't freed if the zone
|
|
was removed.
|
|
|
|
39. [func] The eventlib timers module now uses a heap to
|
|
implement the timer queue.
|
|
|
|
38. [bug] dynamic zones weren't dumped if they were removed
|
|
from the configuration file.
|
|
|
|
37. [func] created the "load" logging category.
|
|
|
|
36. [func] find_zone now uses a hash table instead of a linear
|
|
search.
|
|
|
|
35. [bug] we weren't scheduling a retry for dumps or soa serial
|
|
increments that failed.
|
|
|
|
34. [func] instead of doing all NOTIFY messages five seconds after
|
|
loading completes, we now spread them out over up
|
|
to fifteen minutes (the maximum delay depends on how
|
|
many zones there are).
|
|
|
|
33. [func] if there are too many qserials running, we'll try
|
|
again in five to thirty seconds.
|
|
|
|
32. [bug] z_dumptime wasn't getting set to zero after a
|
|
zone dump.
|
|
|
|
31. [func] Each zone now has a maintenance timer. sched_maint()
|
|
is gone. The new programming rule: if you change
|
|
zp->z_time, it's your reponsibility to ensure
|
|
sched_zone_maint(zp) gets called.
|
|
|
|
30. [func] short circuit PrintTimers evPrintfs if not debugging
|
|
at a level where PrintTimers would print something.
|
|
|
|
29. [bug] if a log message with a non-default category was
|
|
logged to a default category channel which had
|
|
print-category on, "default" was printed instead
|
|
of the category name.
|
|
|
|
28. [func] the performance of the main loop has been improved.
|
|
|
|
27. [bug] NOTIFY messages weren't being delayed after a
|
|
zone load.
|
|
|
|
26. [bug] the eventlib category wasn't working if the channel
|
|
wasn't the default debugging channel.
|
|
|
|
25. [func] added the "maintenance" logging category.
|
|
|
|
24. [func] periodic statistics dumps are now done using an
|
|
eventlib timer instead of in ns_maint().
|
|
|
|
23. [bug] names which have multiple CNAME records are illegal,
|
|
but the server was allowing them.
|
|
|
|
22. [func] convert to POSIX signals from eventlib signal handling;
|
|
the eventlib API no longer provides signal support.
|
|
|
|
21. [func] converted assert() to INSIST() so that the logging
|
|
system (category "insist") will be used if a
|
|
consistency check fails.
|
|
|
|
20. [bug] the server could exit when it shouldn't, and without
|
|
leaving a message or a core file, because it wasn't
|
|
handling SIGPIPE.
|
|
|
|
19. [port] Solaris has trouble if the size of the buffer used for
|
|
IP_OPTIONS processing isn't 40 bytes.
|
|
|
|
18. [bug] library Makefiles we were using 'ld' instead
|
|
of ${LD}. Added LD_LIBFLAGS.
|
|
|
|
17. [bug] on at least one OS, ctime() can return NULL and
|
|
this can cause problems. We now call checked_ctime()
|
|
in ns_glue.c, which returns "<unknown time>\n" if
|
|
ctime() fails.
|
|
|
|
16. [bug] some signal handlers were calling library routines
|
|
which POSIX does not designate as safe for use by
|
|
signal handlers.
|
|
|
|
15. [func] finished conversion to new options scheme of
|
|
name checking and inbound zone transfer parameters.
|
|
|
|
14. [func] added os_change_directory().
|
|
|
|
13. [bug] write_open() in ns_config.c wasn't checking if the
|
|
file was regular before unlinking.
|
|
|
|
12. [func] added "os" logging category.
|
|
|
|
11. [bug] named-bootconf.pl used the deprecated channel name
|
|
"default" instead of "default_syslog".
|
|
|
|
10. [bug] named-bootconf.pl didn't understand continuation lines.
|
|
|
|
9. [bug] remove -p from mkdep command in Makefiles for
|
|
bin/named and bin/nslookup.
|
|
|
|
8. [bug] add CDEBUG to Makefiles that link using ${CC}.
|
|
|
|
7. [bug] timestamp and level were printed twice for file
|
|
channels in lib/isc/logging.c.
|
|
|
|
6. [bug] off by one with on level_text subscript in
|
|
lib/isc/logging.c.
|
|
|
|
5. [bug] broken channels sometimes weren't marked as broken
|
|
in lib/isc/logging.c.
|
|
|
|
4. [bug] didn't set foundname=0 after try_again: in ns_resp.c.
|
|
|
|
3. [bug] update_pid_file() didn't put a newline after the pid.
|
|
|
|
2. [func] minor log message tweaks in ns_config.c.
|
|
|
|
1. [bug] zone names needed to be canonicalized in the parser.
|
|
|
|
--- 8.1-T2B released ---
|