summaryrefslogtreecommitdiffstats
path: root/contrib/bind9/lib/dns/zt.c
Commit message (Collapse)AuthorAgeFilesLines
* Remove BIND.des2013-09-301-539/+0
| | | | Approved by: re (gjb)
* Update Bind to 9.9.3-P2erwin2013-08-221-16/+144
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Notable new features: * Elliptic Curve Digital Signature Algorithm keys and signatures in DNSSEC are now supported per RFC 6605. [RT #21918] * Introduces a new tool "dnssec-verify" that validates a signed zone, checking for the correctness of signatures and NSEC/NSEC3 chains. [RT #23673] * BIND now recognizes the TLSA resource record type, created to support IETF DANE (DNS-based Authentication of Named Entities) [RT #28989] * The new "inline-signing" option, in combination with the "auto-dnssec" option that was introduced in BIND 9.7, allows named to sign zones completely transparently. Approved by: delphij (mentor) MFC after: 3 days Sponsored by: DK Hostmaster A/S
* | Update to version 9.8.2, the latest from ISC, which contains numerous bug fixes.dougb2012-04-051-2/+2
| |
* | Upgrade to BIND version 9.8.1. Release notes at:dougb2011-09-031-2/+2
|\ \ | |/ | | | | | | | | | | | | https://deepthought.isc.org/article/AA-00446/81/ or /usr/src/contrib/bind9/ Approved by: re (kib)
* | Upgrade to 9.6-ESV-R4-P1, which address the following issues:dougb2011-05-281-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1. Very large RRSIG RRsets included in a negative cache can trigger an assertion failure that will crash named (BIND 9 DNS) due to an off-by-one error in a buffer size check. This bug affects all resolving name servers, whether DNSSEC validation is enabled or not, on all BIND versions prior to today. There is a possibility of malicious exploitation of this bug by remote users. 2. Named could fail to validate zones listed in a DLV that validated insecure without using DLV and had DS records in the parent zone. Add a patch provided by ru@ and confirmed by ISC to fix a crash at shutdown time when a SIG(0) key is being used.
* | Update BIND to version 9.6.1rc1. This version has better performance anddougb2009-05-311-4/+5
|\ \ | |/ | | | | | | | | | | | | | | | | | | | | | | lots of new features compared to 9.4.x, including: Full NSEC3 support Automatic zone re-signing New update-policy methods tcp-self and 6to4-self DHCID support. More detailed statistics counters including those supported in BIND 8. Faster ACL processing. Efficient LRU cache-cleaning mechanism. NSID support.
| * Flatten bind9 vendor work areapeter2008-07-121-410/+0
|/
* Vendor import of BIND 9.4.1dougb2007-06-021-10/+100
|
* Vender import of BIND 9.3.0rc4.trhodes2004-09-191-0/+320
OpenPOWER on IntegriCloud