1. 25 May, 2020 1 commit
  2. 21 Feb, 2020 1 commit
  3. 14 Feb, 2020 1 commit
  4. 13 Feb, 2020 2 commits
    • Evan Hunt's avatar
      apply the modified style · e851ed0b
      Evan Hunt authored
      e851ed0b
    • Ondřej Surý's avatar
      Use clang-tidy to add curly braces around one-line statements · 056e133c
      Ondřej Surý authored
      The command used to reformat the files in this commit was:
      
      ./util/run-clang-tidy \
      	-clang-tidy-binary clang-tidy-11
      	-clang-apply-replacements-binary clang-apply-replacements-11 \
      	-checks=-*,readability-braces-around-statements \
      	-j 9 \
      	-fix \
      	-format \
      	-style=file \
      	-quiet
      clang-format -i --style=format $(git ls-files '*.c' '*.h')
      uncrustify -c .uncrustify.cfg --replace --no-backup $(git ls-files '*.c' '*.h')
      clang-format -i --style=format $(git ls-files '*.c' '*.h')
      056e133c
  5. 12 Feb, 2020 1 commit
  6. 10 Feb, 2020 1 commit
  7. 22 Jan, 2020 1 commit
    • Diego Fronza's avatar
      Fixed crash when querying for non existing domain in chaos class · 85555f29
      Diego Fronza authored
      Function dns_view_findzonecut in view.c wasn't correctly handling
      classes other than IN (chaos, hesiod, etc) whenever the name being
      looked up wasn't in cache or in any of the configured zone views' database.
      
      That resulted in a NULL fname being used in resolver.c:4900, which
      in turn was triggering abort.
      85555f29
  8. 14 Jan, 2020 1 commit
    • Evan Hunt's avatar
      rename dns_keytable_deletekeynode to dns_keytable_deletekey · 21d3f66f
      Evan Hunt authored
      this function is used by dns_view_untrust() to handle revoked keys, so
      it will still be needed after the keytable/validator refactoring is
      complete, even though the keytable will be storing DS trust anchors
      instead of keys. to simplify the way it's called, it now takes a DNSKEY
      rdata struct instead of a DST key.
      21d3f66f
  9. 29 Nov, 2019 1 commit
  10. 12 Nov, 2019 1 commit
  11. 09 Oct, 2019 1 commit
  12. 01 Oct, 2019 3 commits
  13. 12 Sep, 2019 1 commit
  14. 09 Aug, 2019 1 commit
  15. 07 Aug, 2019 2 commits
  16. 23 Jul, 2019 3 commits
  17. 10 May, 2019 1 commit
    • Michał Kępień's avatar
      Make NTAs work with validating forwarders · 5e804882
      Michał Kępień authored
      If named is configured to perform DNSSEC validation and also forwards
      all queries ("forward only;") to validating resolvers, negative trust
      anchors do not work properly because the CD bit is not set in queries
      sent to the forwarders.  As a result, instead of retrieving bogus DNSSEC
      material and making validation decisions based on its configuration,
      named is only receiving SERVFAIL responses to queries for bogus data.
      Fix by ensuring the CD bit is always set in queries sent to forwarders
      if the query name is covered by an NTA.
      5e804882
  18. 10 Apr, 2019 1 commit
  19. 15 Mar, 2019 1 commit
  20. 08 Mar, 2019 1 commit
  21. 06 Dec, 2018 4 commits
    • Evan Hunt's avatar
      name change from "hook modules" to "plugins" · fd20f10d
      Evan Hunt authored
      - "hook" is now used only for hook points and hook actions
      - the "hook" statement in named.conf is now "plugin"
      - ns_module and ns_modlist are now ns_plugin and ns_plugins
      - ns_module_load is renamed ns_plugin_register
      - the mandatory functions in plugin modules (hook_register,
        hook_check, hook_version, hook_destroy) have been renamed
      fd20f10d
    • Evan Hunt's avatar
      refactor to support multiple module instances · b94945e6
      Evan Hunt authored
      - use a per-view module list instead of global hook_modules
      - create an 'instance' pointer when registering modules, store it in
        the module structure, and use it as action_data when calling
        hook functions - this enables multiple module instances to be set
        up in parallel
      - also some nomenclature changes and cleanup
      b94945e6
    • Evan Hunt's avatar
      add a parser to filter-aaaa.so and pass in the parameters · 9911c835
      Evan Hunt authored
      - make some cfg-parsing functions global so they can be run
        from filter-aaaa.so
      - add filter-aaaa options to the hook module's parser
      - mark filter-aaaa options in named.conf as obsolete, remove
        from named and checkconf, and update the filter-aaaa test not to
        use checkconf anymore
      - remove filter-aaaa-related struct members from dns_view
      9911c835
    • Evan Hunt's avatar
      add hook statement to configuration parser · d2f46443
      Evan Hunt authored
      - allow multiple "hook" statements at global or view level
      - add "optional bracketed text" type for optional parameter list
      - load hook module from specified path rather than hardcoded path
      - add a hooktable pointer (and a callback for freeing it) to the
        view structure
      - change the hooktable functions so they no longer update ns__hook_table
        by default, and modify PROCESS_HOOK so it uses the view hooktable, if
        set, rather than ns__hook_table. (ns__hook_table is retained for
        use by unit tests.)
      - update the filter-aaaa system test to load filter-aaaa.so
      - add a prereq script to check for dlopen support before running
        the filter-aaaa system test
      
      not yet done:
      - configuration parameters are not being passed to the filter-aaaa
        module; the filter-aaaa ACL and filter-aaaa-on-{v4,v6} settings are
        still stored in dns_view
      d2f46443
  22. 22 Nov, 2018 2 commits
  23. 14 Nov, 2018 1 commit
  24. 25 Oct, 2018 1 commit
  25. 23 Oct, 2018 1 commit
  26. 18 Oct, 2018 1 commit
  27. 28 Aug, 2018 4 commits