Source-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS import: src/external/bsd/nsd/dist
Module Name: src
Committed By: christos
Date: Sun Dec 15 16:00:58 UTC 2019
Update of /cvsroot/src/external/bsd/nsd/dist
In directory ivanova.netbsd.org:/tmp/cvs-serv7733
Log Message:
3 December 2019: Wouter
- Fix #52: do not log transient network full errors unless higher
verbosity is set.
- Fix checkconf test for new error output string.
- tag for 4.2.4rc1 release.
27 November 2017 Jeroen
- Fix regressions in configparser.y
22 November 2019: Wouter
- Fix #48: Add make distclean that removes config.h made by configure.
And add maintainer-clean that removes bison and flex output.
18 November 2019: Wouter
- Detect fixed time memcmp for openssl 0.9.8 compatibility.
- Detect EC_KEY_new_by_curve_name for openssl 0.9.8.
- include limits.h for UINT_MAX.
- If no recvmmsg, dont use msg_flags member, but errno for error,
where our fallback function left it, msg_flags also does not exist
on some systems.
- Remove unused variable warning for portability.
14 November 2019: Wouter
- Fix checkconf test with filenames that sort in the same order.
- Tag for 4.2.3rc1. Branch master is 4.2.4 in development.
11 November 2019: Wouter
- Fix #44: document that remote-control is a top-level nsd.conf
attribute.
- Fix compile on OSX.
- Fix for #44: nicer top-level clause documentation.
22 October 2019: Jeroen
- Number of different UDP handlers has been reduced to one. recvmmsg
and sendmmsg implementations are now used on all platforms.
Compatible implementations are in place for systems that lack the
system calls.
- Socket options are now set in designated functions for easy reuse.
- Socket setup has been simplified for easy reuse.
- Configuration parser is now aware of the context in which an option
was specified.
21 October 2019: Wouter
- For #21 add
contrib/patch_for_s6_startup_and_other_service_supervisors.diff
that adds support for readiness notification with READY_FD from
Cameron Nemo.
17 October 2019: Jeroen
- Fix #40: Merge small fixes for confine-to-zone by Greg Bock.
15 October 2019: Jeroen
- For #39: Merge confine-to-zone feature contributes by Greg Bock.
26 September 2019: Wouter
- Fix #38: log address and failure reason with tls handshake errors,
squelches (the same as unbound) some unless high verbosity is used.
- Fixup clang analysis warning in xfrd_parse_received_xfr_packet
master dereference.
25 September 2019: Wouter
- The nsd.conf includes are sorted ascending, for include statements
with a '*' from glob.
16 September 2019: Wouter
- Fixup warnings during --disable-ipv6 compile.
- Fixup unit test executable to run without IPv6.
4 September 2019: Wouter
- Fix #35: excessive logging of ixfr failures, it stops the log when
fallback to axfr is possible. log is enabled at high verbosity.
2 September 2019: Wouter
- For #21: pidfile "" allows to run NSD without a pidfile, for
startup management tools like daemontools.
28 August 2019: Wouter
- In tests check for tls test tool availability.
19 August 2019: Wouter
- Tag for 4.2.2 release. Git master contains 4.2.3 in development.
13 August 2019: Wouter
- Fix error message for out of zone data to have more information.
- Tag for 4.2.2rc2.
12 August 2019: Wouter
- Fix #33: Fix segfault in service of remaining streams on exit.
6 August 2019: Wouter
- Tag for 4.2.2rc1.
5 August 2019: Wouter
- PR #31: nsd-control: Add missing stdio header.
- PR #32: tsig: Fix compilation without HAVE_SSL.
- Cleanup tls context on xfrd exit.
31 July 2019: Wouter
- Fix #29: SSHFP check NULL pointer dereference.
- Fix #30: SSHFP check failure due to missing domain name.
- Fix to timeval_add in minievent for remaining second in microseconds.
22 July 2019: Wouter
- Set timeout for refetch immediately, only spread load when there
are retries.
19 July 2019: Wouter
- Set no renegotiation on the SSL context to stop client
session renegotiation.
18 July 2019: Wouter
- Fix #25: NSD doesn't refresh zones after extended downtime,
it refreshes the old zones, with a random delay of a couple of
seconds to spread the load.
- Fix so that expired zones stay expired when server is down a
long time.
17 July 2019: Wouter
- Fix that NSD warns for wrong length of the hash in SSHFP records.
15 July 2019: Wouter
- PR #23: Fix typo in nsd.conf man-page.
4 July 2019: Wouter
- Set version to 4.2.2 in development.
- clean memory on exit of nsd-checkzone for memory debug.
- Fix #20: CVE-2019-13207 Stack-based Buffer Overflow in the
dname_concatenate() function. Reported by Frederic Cambus.
It causes the zone parser to crash on a malformed zone file,
with assertions enabled, an assertion catches it.
- Fix #19: Out-of-bounds read caused by improper validation of
array index. Reported by Frederic Cambus. The zone parser
fails on type SIG because of mismatched definition with RRSIG.
2 July 2019: Wouter
- Tag for 4.2.1rc1
27 June 2019: Wouter
- Fix unit test for added options and no dot after zone updated
log message.
- Fix compile without accept4.
21 June 2019: Wouter
- Omit remaining tcp processing if the list is empty.
- Fix output of nsd-checkconf -h.
20 June 2019: Wouter
- Initialize event structures before event_set, to stop uninitialized
values from setting event library lists and assertions, that would
sometimes also show after event_del.
- Added num.tls and num.tls6 stat counters.
- PR #12: send-buffer-size, receive-buffer-size,
tcp-reject-overflow options for nsd.conf, from Jeroen Koekkoek.
- Do not use symbol from libc, instead use own replacement, if not
available, for accept4.
- Fix #14, tcp connections have 1/10 to be active and have to work
every second, and then they get time to complete during a reload,
this is a process that lingers with the old version during a version
update.
19 June 2019: Wouter
- Fix tls handshake event callback function mistake, reported
by Mykhailo Danylenko.
18 June 2019: Wouter
- Fix #15: crash in SSL library, initialize variables for TCP access
when TLS is configured.
14 June 2019: Wouter
- Fix to init event not pointer, in reassignment.
12 June 2019: Wouter
- Fix to init event structure for reassignment.
11 June 2019: Wouter
- NSD 4.2.0 release. Current development is 4.2.1.
- Fixup of RELNOTES, corrected RFC reference for 4892.
- Fix #13: Stray dot at the end of some log entries, removes dot
after updated serial number in log entry.
- Fix TLS cipher selection, the previous was redundant, prefers
CHACHA20-POLY1305 over AESGCM and was not as readable as it could be.
- Consolidate server tls context create and remote control context
create, with hardening for the remote control tls context too.
6 June 2019: Wouter
- NSD 4.2.0rc1 tag.
4 June 2019: Wouter
- Fix unit test for outgoing interface to use random port numbers for
the outgoing interface config.
29 May 2019: Wouter
- Fix to guard _OPENBSD_SOURCE from redefinition.
28 May 2019: Wouter
- Fix to define _OPENBSD_SOURCE to get reallocarray on NetBSD.
16 May 2019: Wouter
- Fix #10: Fix memory leaks caused by duplicate rr and include
instructions.
6 May 2019: Wouter
- Note CII best practices badge for NSD on the README.md.
2 May 2019: Wouter
- Fix .gitignore for unit test generated files.
- Fix checkconf unit test for hide-identity and tls.
1 May 2019: Wouter
- Fix makedist.sh for use with git.
- Nicer output on travis for clang analysis.
- Add .gitignore file to exclude built files from version tracking.
- Add README.md file in repository with compile instructions.
- Fix .gitignore for dnstap files and aclocal temp.
- Add aclocal to README.md for pkgconfig for some configure options.
25 April 2019: Wouter
- Add tls.tpkg unit test for DNS over TLS functionality.
18 April 2019: Wouter
- Fix to avoid buffer alloc with global buffer in tls write handler.
- Fix to initialize event structure when accepting TCP connection.
- Use travis for build check, initial unit test and clang analysis.
- Disable SSLv2,3,TLSv1.0,1.1 if TLS1.2 is available in libssl.
- Disable weak ciphers, enable CIPHER_SERVER_PREFERENCE.
- further setup ssl ctx after the keys are loaded, for ECDH.
- TLS OCSP stapling support, enabled with tls-service-ocsp: filename,
patch from Andreas Schulze.
17 April 2019: Wouter
- Fix to share openssl init code, and perform it once.
16 April 2019: Andreas via Sara
- Patch to add support for TCP Fast Open
- Patch to add support for tls service on a specified tls port
16 April 2019: Wouter
- Fix #4249: The option hide-identity: yes stops NSD from responding
with the hostname for chaos class queries. Implements the RFC4829
security considerations.
- Remove starttls, this signalling method was not standardized.
- Remove TO bit, this signalling method was not standardized.
- Remove unused first_query and tls_ok states.
- Remove sign-compare warning in tls packet send code.
- Fix spelling in comment and log printout.
- Fix potential uninitialized variable.
- Fix documentation for DNS over TLS, and set default port 853.
- Fix to add missing comment.
- Fix that the TLS handshake routine sets the correct event to
continue when done.
- Fix that TLS renegotiation calls the read and write routines again
with the same parameters when the desired event has been satisfied.
- Fix that TCP Fastopen has better error message and supports OSX.
- Fix log for fastopen with verbosity.
- Squelch TLS handshake failure log until verbosity 3.
- Add per-zone statistics for TLS queries, and dnstap for TLS queries,
and rcode and TCflag statistics for TCP and TLS queries.
25 March 2019: Wouter
- Print IP address when bind socket fails with error.
21 March 2019: Wouter
- Fix spelling error in release notes.
- Fix to delete unused zparser.default_apex member.
Status:
Vendor Tag: NLNETLABS
Release Tags: nsd-4-2-4
U src/external/bsd/nsd/dist/rdata.c
C src/external/bsd/nsd/dist/configparser.h
U src/external/bsd/nsd/dist/answer.c
U src/external/bsd/nsd/dist/rbtree.h
U src/external/bsd/nsd/dist/mkinstalldirs
U src/external/bsd/nsd/dist/dbcreate.c
U src/external/bsd/nsd/dist/udbzone.h
U src/external/bsd/nsd/dist/namedb.c
U src/external/bsd/nsd/dist/nsd.c
U src/external/bsd/nsd/dist/rdata.h
U src/external/bsd/nsd/dist/xfrd-tcp.h
U src/external/bsd/nsd/dist/query.c
U src/external/bsd/nsd/dist/edns.h
U src/external/bsd/nsd/dist/answer.h
U src/external/bsd/nsd/dist/configlexer.lex
C src/external/bsd/nsd/dist/zparser.c
U src/external/bsd/nsd/dist/region-allocator.c
U src/external/bsd/nsd/dist/nsd-control.8.in
U src/external/bsd/nsd/dist/nsd-checkzone.c
U src/external/bsd/nsd/dist/lookup3.c
U src/external/bsd/nsd/dist/tsig.h
U src/external/bsd/nsd/dist/xfrd-notify.h
U src/external/bsd/nsd/dist/dns.c
U src/external/bsd/nsd/dist/namedb.h
U src/external/bsd/nsd/dist/lookup3.h
U src/external/bsd/nsd/dist/ipc.c
U src/external/bsd/nsd/dist/udbradtree.c
U src/external/bsd/nsd/dist/zparser.h
U src/external/bsd/nsd/dist/config.h.in
U src/external/bsd/nsd/dist/tsig.c
U src/external/bsd/nsd/dist/udb.h
U src/external/bsd/nsd/dist/Makefile.in
U src/external/bsd/nsd/dist/iterated_hash.h
U src/external/bsd/nsd/dist/radtree.c
U src/external/bsd/nsd/dist/radtree.h
U src/external/bsd/nsd/dist/udbradtree.h
U src/external/bsd/nsd/dist/edns.c
U src/external/bsd/nsd/dist/netio.h
U src/external/bsd/nsd/dist/udb.c
U src/external/bsd/nsd/dist/nsd.8.in
U src/external/bsd/nsd/dist/region-allocator.h
U src/external/bsd/nsd/dist/nsd.conf.sample.in
U src/external/bsd/nsd/dist/rrl.h
U src/external/bsd/nsd/dist/packet.c
U src/external/bsd/nsd/dist/tsig-openssl.c
U src/external/bsd/nsd/dist/udbzone.c
U src/external/bsd/nsd/dist/zonec.h
U src/external/bsd/nsd/dist/nsd.h
U src/external/bsd/nsd/dist/util.c
U src/external/bsd/nsd/dist/configure
U src/external/bsd/nsd/dist/xfrd-notify.c
U src/external/bsd/nsd/dist/options.c
U src/external/bsd/nsd/dist/xfrd-disk.h
U src/external/bsd/nsd/dist/tsig-openssl.h
U src/external/bsd/nsd/dist/nsd.conf.5.in
U src/external/bsd/nsd/dist/install-sh
N src/external/bsd/nsd/dist/README.md
U src/external/bsd/nsd/dist/nsd-mem.c
U src/external/bsd/nsd/dist/nsd-control.c
U src/external/bsd/nsd/dist/xfrd.h
U src/external/bsd/nsd/dist/mini_event.c
U src/external/bsd/nsd/dist/nsd-checkconf.8.in
U src/external/bsd/nsd/dist/zlexer.lex
U src/external/bsd/nsd/dist/acx_nlnetlabs.m4
N src/external/bsd/nsd/dist/.travis.yml
U src/external/bsd/nsd/dist/configyyrename.h
U src/external/bsd/nsd/dist/zonec.c
U src/external/bsd/nsd/dist/remote.h
U src/external/bsd/nsd/dist/buffer.h
U src/external/bsd/nsd/dist/rbtree.c
U src/external/bsd/nsd/dist/nsd-control-setup.sh.in
U src/external/bsd/nsd/dist/nsd-checkzone.8.in
U src/external/bsd/nsd/dist/systemd.m4
C src/external/bsd/nsd/dist/configure.ac
C src/external/bsd/nsd/dist/configlexer.c
U src/external/bsd/nsd/dist/nsec3.c
U src/external/bsd/nsd/dist/dname.c
U src/external/bsd/nsd/dist/rrl.c
U src/external/bsd/nsd/dist/packet.h
U src/external/bsd/nsd/dist/difffile.c
U src/external/bsd/nsd/dist/difffile.h
U src/external/bsd/nsd/dist/nsec3.h
U src/external/bsd/nsd/dist/mini_event.h
C src/external/bsd/nsd/dist/zlexer.c
U src/external/bsd/nsd/dist/ipc.h
U src/external/bsd/nsd/dist/dname.h
U src/external/bsd/nsd/dist/nsd-checkconf.c
U src/external/bsd/nsd/dist/zparser.y
U src/external/bsd/nsd/dist/options.h
U src/external/bsd/nsd/dist/xfrd-disk.c
U src/external/bsd/nsd/dist/buffer.c
C src/external/bsd/nsd/dist/configparser.c
U src/external/bsd/nsd/dist/xfrd-tcp.c
U src/external/bsd/nsd/dist/axfr.h
C src/external/bsd/nsd/dist/util.h
U src/external/bsd/nsd/dist/dns.h
U src/external/bsd/nsd/dist/netio.c
U src/external/bsd/nsd/dist/LICENSE
C src/external/bsd/nsd/dist/server.c
U src/external/bsd/nsd/dist/axfr.c
U src/external/bsd/nsd/dist/query.h
U src/external/bsd/nsd/dist/xfrd.c
U src/external/bsd/nsd/dist/remote.c
U src/external/bsd/nsd/dist/iterated_hash.c
U src/external/bsd/nsd/dist/xfr-inspect.c
U src/external/bsd/nsd/dist/configparser.y
U src/external/bsd/nsd/dist/dbaccess.c
U src/external/bsd/nsd/dist/dnstap/dnstap.proto
U src/external/bsd/nsd/dist/dnstap/dnstap.c
U src/external/bsd/nsd/dist/dnstap/dnstap_collector.h
U src/external/bsd/nsd/dist/dnstap/dnstap_config.h.in
U src/external/bsd/nsd/dist/dnstap/dnstap_collector.c
U src/external/bsd/nsd/dist/dnstap/dnstap.m4
U src/external/bsd/nsd/dist/dnstap/dnstap.h
U src/external/bsd/nsd/dist/contrib/nsd.socket
U src/external/bsd/nsd/dist/contrib/README
U src/external/bsd/nsd/dist/contrib/nsd_munin_
U src/external/bsd/nsd/dist/contrib/nsd.spec
U src/external/bsd/nsd/dist/contrib/nsd.zones2nsd.conf
U src/external/bsd/nsd/dist/contrib/nsd.service
U src/external/bsd/nsd/dist/contrib/bug390.patch
U src/external/bsd/nsd/dist/contrib/nsd.init
N src/external/bsd/nsd/dist/contrib/patch_for_s6_startup_and_other_service_supervisors.diff
U src/external/bsd/nsd/dist/contrib/bind2nsd/COPYING
U src/external/bsd/nsd/dist/contrib/bind2nsd/set_version
U src/external/bsd/nsd/dist/contrib/bind2nsd/README
U src/external/bsd/nsd/dist/contrib/bind2nsd/chk_version
U src/external/bsd/nsd/dist/contrib/bind2nsd/ChangeLog
U src/external/bsd/nsd/dist/contrib/bind2nsd/setup.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/TODO
U src/external/bsd/nsd/dist/contrib/bind2nsd/install.sh
U src/external/bsd/nsd/dist/contrib/bind2nsd/MANIFEST
U src/external/bsd/nsd/dist/contrib/bind2nsd/etc/bind2nsd.conf
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/__init__.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Utils.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Key.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/NsdConf.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Config.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/NamedConf.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Zone.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Parser.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/bind2nsd/Tokenizer.py
U src/external/bsd/nsd/dist/contrib/bind2nsd/scripts/bind2nsd
U src/external/bsd/nsd/dist/contrib/bind2nsd/scripts/nsd-sync
U src/external/bsd/nsd/dist/contrib/bind2nsd/scripts/s64-mkpw
U src/external/bsd/nsd/dist/contrib/bind2nsd/scripts/s64-sync
N src/external/bsd/nsd/dist/.buildkite/pipeline.yml
U src/external/bsd/nsd/dist/doc/NSD-FOR-BIND-USERS
U src/external/bsd/nsd/dist/doc/differences.tex
U src/external/bsd/nsd/dist/doc/README
U src/external/bsd/nsd/dist/doc/RELNOTES
U src/external/bsd/nsd/dist/doc/TESTPLAN
U src/external/bsd/nsd/dist/doc/differences.pdf
U src/external/bsd/nsd/dist/doc/REQUIREMENTS
U src/external/bsd/nsd/dist/doc/NSD-DATABASE
U src/external/bsd/nsd/dist/doc/CREDITS
U src/external/bsd/nsd/dist/doc/ChangeLog
U src/external/bsd/nsd/dist/doc/NSD-4-features
U src/external/bsd/nsd/dist/doc/coding-style
U src/external/bsd/nsd/dist/doc/NEW-CFG-OPTION
U src/external/bsd/nsd/dist/doc/README.svn
U src/external/bsd/nsd/dist/doc/TODO
U src/external/bsd/nsd/dist/doc/NSD-DIFFFILE
U src/external/bsd/nsd/dist/doc/UPGRADING
U src/external/bsd/nsd/dist/doc/README.icc
U src/external/bsd/nsd/dist/doc/LICENSE
U src/external/bsd/nsd/dist/compat/fake-rfc2553.h
U src/external/bsd/nsd/dist/compat/strlcat.c
U src/external/bsd/nsd/dist/compat/inet_pton.c
U src/external/bsd/nsd/dist/compat/malloc.c
U src/external/bsd/nsd/dist/compat/reallocarray.c
U src/external/bsd/nsd/dist/compat/inet_aton.c
U src/external/bsd/nsd/dist/compat/memcmp.c
U src/external/bsd/nsd/dist/compat/strptime.c
U src/external/bsd/nsd/dist/compat/snprintf.c
U src/external/bsd/nsd/dist/compat/memmove.c
U src/external/bsd/nsd/dist/compat/b64_pton.c
U src/external/bsd/nsd/dist/compat/strlcpy.c
U src/external/bsd/nsd/dist/compat/pselect.c
U src/external/bsd/nsd/dist/compat/memcmp.h
U src/external/bsd/nsd/dist/compat/inet_ntop.c
U src/external/bsd/nsd/dist/compat/fake-rfc2553.c
U src/external/bsd/nsd/dist/compat/b64_ntop.c
U src/external/bsd/nsd/dist/compat/basename.c
8 conflicts created by this import.
Use the following command to help the merge:
cvs checkout -jNLNETLABS:yesterday -jNLNETLABS src/external/bsd/nsd/dist
Home |
Main Index |
Thread Index |
Old Index