summaryrefslogtreecommitdiff
path: root/usr.sbin/nsd
AgeCommit message (Collapse)Author
2018-12-10Update to 4.1.26Florian Obser
OK sthen
2018-09-29update to 4.1.25Florian Obser
OK sthen (on a slightly different configure script version)
2018-09-29I forgot to put this in with the 4.1.24 update.Florian Obser
It is of course not relevant for us but introduces a diff when the configure script is regenerated on upgrades and this file is not arround.
2018-08-16update to 4.1.24Florian Obser
OK sthen
2013-11-26import NSD 4.0.0, tests from Dorian Büttner, Patrik Lundin, requested by ↵Stuart Henderson
brad@
2010-01-15NSD v3.2.4Jakob Schlyter
2018-07-30update to nsd 4.1.23, from the release notes:Florian Obser
------------------------------------------------------------------------ NSD versions 4.1.22 and before are vulnerable in comparing TSIG information and this can be used to discover a TSIG secret. NSD uses TSIG to protect zone transfers. The TSIG code uses a secret key to protect the data. The secret key is shared with both sides of the zone transfer connection. The comparison code in NSD was not time insensitive, causing the potential for an attacker to use timing information to discover data about the key contents. NSD versions from 2.2.0 to 4.1.22 are vulnerable. Upgrade to 4.1.23 or newer to get the fix. It was reported by Ondrej Sury (ISC). ------------------------------------------------------------------------ OK tb, sthen
2018-06-14regenFlorian Obser
2018-06-14Update to nsd 4.1.22Florian Obser
The improved refuse-any option that showed up in upstream 4.1.22 had already been cherry picked in OpenBSD. OK sthen
2018-05-18Turn on minimal-reponses and refuse-any per default.Florian Obser
OK sthen
2018-05-17From upcomming nsd 4.1.22:Florian Obser
refuse-any sends truncation (+TC) in reply to ANY queries over UDP, and allows TCP queries like normal OK sthen
2018-05-17update to nsd 4.1.21Florian Obser
OK sthen
2018-03-06update to NSD 4.1.20, ok florian@Stuart Henderson
- Fix memory leak in zone file read of unknown rr formatted RRs. - Fix memory leak when rehashing nsec3 after axfr or zonefile read, in the selectively allocated precompiled nsec3 hashes.
2013-02-18Update to NSD 3.2.15, ok brad@ phessler@ deraadt@ also tested by okan@Stuart Henderson
2018-02-20merge configure.ac from NSD 4.1.19, previously we had an updatedStuart Henderson
generated configure file, but old configure.ac.
2018-02-03regenFlorian Obser
2018-02-03Update nsd to 4.1.19.Florian Obser
OK sthen@, "so far so good" millert@ Obligatory commit from 33,000 ft.
2018-01-13Add descriptions for HAVE_B64_NTOP and HAVE_B64_PTON so autoheaderTodd C. Miller
will run. OK florian@
2017-11-01Make ip-transparent option work by using SO_BINDANY.Florian Obser
OK jca, benno jca also points out that Delan Azabani (delan _AT_ azabani.com) wrote exactly the same diff in 2016. It was OK bluhm but apparently never commited.
2017-08-11missed in previousFlorian Obser
2017-08-11regenFlorian Obser
2017-08-11update to 4.1.17Florian Obser
OK sthen
2017-07-27Add prototypes for prototypes for __b64_pton and __b64_ntop; pointedFlorian Obser
out by clang. This is a local diff we have to carry so config.h.in is good a place as any and it's included everywhere. OK sthen
2017-06-12destroy lint remnants.Marc Espie
okay millert@ deraadt@
2017-04-15regenFlorian Obser
2017-04-15update to 4.1.16rc1Florian Obser
tests & OK sthen (if there are more changes coming for 4.1.16 release we will just commit them on top)
2010-01-15NSD v3.2.4Jakob Schlyter
2017-02-17regenFlorian Obser
2017-02-17Update to 4.1.15.Florian Obser
This contains a local patch to query.c (missed _t conversion) that has been submitted upstream. OK sthen
2013-11-26import NSD 4.0.0, tests from Dorian Büttner, Patrik Lundin, requested by ↵Stuart Henderson
brad@
2010-01-15NSD v3.2.4Jakob Schlyter
2017-01-17regenFlorian Obser
2017-01-17Update to nsd 4.1.14Florian Obser
OK sthen@
2013-11-26import NSD 4.0.0, tests from Dorian Büttner, Patrik Lundin, requested by ↵Stuart Henderson
brad@
2016-10-24do not ignore -Wsign-compare; requested by deraadt@Florian Obser
2016-10-24regenFlorian Obser
2016-10-24Update to 4.1.13Florian Obser
Testing millert, brad and myself. OK millert@
2013-11-26import NSD 4.0.0, tests from Dorian Büttner, Patrik Lundin, requested by ↵Stuart Henderson
brad@
2010-01-15NSD v3.2.4Jakob Schlyter
2016-10-05Rewriting USER gets in the way of the de-escalation mechanism as itMartin Natano
shadows the real user's identity. ok deraadt
2016-09-04forgot to regenFlorian Obser
2016-09-03Update to 4.1.12Florian Obser
----------------------------------------------------------------- BUG FIXES: - Fix malformed edns query assertion failure, reported by Michal Kepien (NASK). ----------------------------------------------------------------- Does not effect OpenBSD since we are not running configure with --enable-checking OK sthen@
2010-01-15NSD v3.2.4Jakob Schlyter
2016-08-31regenFlorian Obser
2016-08-31update to 4.1.11Florian Obser
"Working fine here." millert@ OK dlg, sthen
2010-01-15NSD v3.2.4Jakob Schlyter
2016-06-24regenFlorian Obser
2016-06-24Update to 4.1.10Florian Obser
Testing by millert@, sthen@ and me. came up with the same diff & OK sthen@
2013-11-26import NSD 4.0.0, tests from Dorian Büttner, Patrik Lundin, requested by ↵Stuart Henderson
brad@
2010-01-15NSD v3.2.4Jakob Schlyter
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-30 16:22:09 +0000