Commits · a50d707fdcf702e9e07a3ad5ea74761cb6e3d08d · ISC Open Source Projects / BIND

06 Nov, 2019 1 commit

Introduce dnssec-policy configuration · a50d707f

Matthijs Mekking authored Sep 02, 2019

This commit introduces the initial `dnssec-policy` configuration
statement. It has an initial set of options to deal with signature
and key maintenance.

Add some checks to ensure that dnssec-policy is configured at the
right locations, and that policies referenced to in zone statements
actually exist.

Add some checks that when a user adds the new `dnssec-policy`
configuration, it will no longer contain existing DNSSEC
configuration options.  Specifically: `inline-signing`,
`auto-dnssec`, `dnssec-dnskey-kskonly`, `dnssec-secure-to-insecure`,
`update-check-ksk`, `dnssec-update-mode`, `dnskey-sig-validity`,
and `sig-validity-interval`.

Test a good kasp configuration, and some bad configurations.

a50d707f

23 Feb, 2018 1 commit
- Update license headers to not include years in copyright in all applicable files · 843d3896
  Ondřej Surý authored Feb 23, 2018
  
  843d3896
02 Nov, 2016 1 commit
- 4506. [func] 'named-checkconf -l' will now list the zones found in · 61747916
  Mark Andrews authored Nov 02, 2016
```
                        named.conf. [RT #43154]
```
  61747916
27 Jun, 2016 1 commit
- 4401. [misc] Change LICENSE to MPL 2.0. · 0c27b3fe
  Mark Andrews authored Jun 27, 2016
  
  0c27b3fe
18 Dec, 2014 1 commit

Make named a singleton process [RT#37908] · 47d837a4

Mukund Sivaraman authored Dec 18, 2014

Conflicts:
	bin/tests/system/conf.sh.in
	lib/dns/win32/libdns.def.in
	lib/isc/win32/file.c

The merge also needed to update files in legacy and tcp system tests
(newly introduced in master after branch was created) to introduce use
of lockfile.

47d837a4

28 Aug, 2014 1 commit

[master] fixes to checkconf test, HIP casecompare · 0c2313eb

Evan Hunt authored Aug 27, 2014

3933.	[bug]		Corrected the implementation of dns_rdata_casecompare()
			for the HIP rdata type.  [RT #36911]

3932.	[test]		Improved named-checkconf tests. [RT #36911]

0c2313eb

19 Feb, 2014 2 commits

update copyrights · e676a596
Mark Andrews authored Feb 20, 2014

e676a596

[master] max-zone-ttl · 35f6a21f

Evan Hunt authored Feb 18, 2014

3746.	[func]		New "max-zone-ttl" option enforces maximum
			TTLs for zones. If loading a zone containing a
			higher TTL, the load fails. DDNS updates with
			higher TTLs are accepted but the TTL is truncated.
			(Note: Currently supported for master zones only;
			inline-signing slaves will be added.) [RT #38405]

35f6a21f

21 Dec, 2013 1 commit
- update copyright notice · 9c61ab2c
  Tinderbox User authored Dec 21, 2013
  
  9c61ab2c
20 Dec, 2013 1 commit

[master] warn if key-directory doesn't exist · c14ba710

Evan Hunt authored Dec 20, 2013

3694.	[bug]		Warn when a key-directory is configured for a zone,
			but does not exist or is not a directory. [RT #35109]

c14ba710

14 Aug, 2012 1 commit

properly range-check fields that do not allow 0 · 820fdd61

Evan Hunt authored Aug 13, 2012

3362.	[bug]		Setting some option values to 0 in named.conf
			could trigger an assertion failure on startup.
			[RT #27730]

820fdd61

29 Jun, 2012 3 commits
- update copyright notice · a3128c19
  Tinderbox User authored Jun 29, 2012
  
  a3128c19
- reverse bad copyright update · bf8267aa
  Mark Andrews authored Jun 29, 2012
  
  bf8267aa
- update copyright notice · 247bf378
  Tinderbox User authored Jun 29, 2012
  
  247bf378
07 May, 2011 1 commit

3111. [bug] Improved consistency checks for dnssec-enable and · de7df3e5

Evan Hunt authored May 07, 2011

                        dnssec-validation, added test cases to the
                        checkconf system test. [RT #24398]

de7df3e5

01 Mar, 2011 1 commit
- update copyright notice · c8175ece
  Automatic Updater authored Mar 01, 2011
  
  c8175ece
22 Feb, 2011 1 commit
- 2036. [bug] Check built-in zone arguments to see if the zone · b795de86
  Mark Andrews authored Feb 22, 2011
```
                        is re-usable or not. [RT #21914]
```
  b795de86
17 Jun, 2010 1 commit
- 2917. [func] Virtual time test framework. [RT #20801] · 43c770b9
  Mark Andrews authored Jun 17, 2010
  
  43c770b9
18 Jan, 2010 2 commits
- update copyright notice · 6bb15601
  Automatic Updater authored Jan 18, 2010
  
  6bb15601
- 2841. [func] Added "smartsign" and improved "autosign" and · e11a0c11
  Evan Hunt authored Jan 18, 2010
```
			"dnssec" regression tests. [RT #20865]
```
  e11a0c11
06 Dec, 2009 2 commits
- update copyright notice · 8b82c01d
  Automatic Updater authored Dec 06, 2009
  
  8b82c01d
- improve cleanup and add named.run to .cvsignore files · 0d796b1a
  Evan Hunt authored Dec 06, 2009
  
  0d796b1a
26 Sep, 2007 1 commit

2250. [func] New flag 'memstatistics' to state whether the · a1e2170a

Mark Andrews authored Sep 26, 2007

memory statistics file should be written or not.
Additionally named's -m option will cause the
statistics file to be written. [RT #17113]

a1e2170a

19 Jun, 2007 1 commit
- update copyright notice · 70e5a740
  Automatic Updater authored Jun 19, 2007
  
  70e5a740
18 Jun, 2007 1 commit
- update copyright notice · ec5347e2
  Automatic Updater authored Jun 18, 2007
  
  ec5347e2
05 Mar, 2004 1 commit
- update copyright notice · dafcb997
  Mark Andrews authored Mar 05, 2004
  
  dafcb997
09 Jan, 2001 1 commit
- copyright update · 499b34ce
  Brian Wellington authored Jan 09, 2001
  
  499b34ce
18 Nov, 2000 1 commit
- Lots of copyright updates · cffe50ab
  Brian Wellington authored Nov 18, 2000
  
  cffe50ab
10 Nov, 2000 1 commit
- 551. [func] Implemented the 'sortlist' option. · febaa091
  Andreas Gustafsson authored Nov 10, 2000
  
  febaa091