aboutsummaryrefslogtreecommitdiffstats
path: root/contrib/bind9/lib/dns/resolver.c
Commit message (Collapse)AuthorAgeFilesLines
* Split off the dist/ tree right before the 9.4 imports started. We canPeter Wemm2008-07-121-6708/+0
| | | | | | | use this as a work area for 9.3.* imports for stable branches. Notes: svn path=/vendor/bind9/dist-9.3/; revision=180458
* Vendor import of BIND 9.3.4Doug Barton2007-01-291-7/+44
| | | | Notes: svn path=/vendor/bind9/dist/; revision=166332
* Vendor import of BIND 9.3.3Doug Barton2006-12-101-13/+38
| | | | Notes: svn path=/vendor/bind9/dist/; revision=165071
* Update to version 9.3.2-P2, which addresses the vulnerabilityDoug Barton2006-11-041-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | announced by ISC dated 31 October (delivered via e-mail to the bind-announce@isc.org list on 2 November): Description: Because of OpenSSL's recently announced vulnerabilities (CAN-2006-4339, CVE-2006-2937 and CVE-2006-2940) which affect named, we are announcing this workaround and releasing patches. A proof of concept attack on OpenSSL has been demonstrated for CAN-2006-4339. OpenSSL is required to use DNSSEC with BIND. Fix for version 9.3.2-P1 and lower: Upgrade to BIND 9.3.2-P2, then generate new RSASHA1 and RSAMD5 keys for all old keys using the old default exponent and perform a key rollover to these new keys. These versions also change the default RSA exponent to be 65537 which is not vulnerable to the attacks described in CAN-2006-4339. Notes: svn path=/vendor/bind9/dist/; revision=163976
* Vendor import of BIND 9.3.2-P1, which addresses the following securityDoug Barton2006-09-061-22/+29
| | | | | | | | | | | | | | | | vulnerabilities: http://www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdf?lang=en 2066. [security] Handle SIG queries gracefully. [RT #16300] http://www.kb.cert.org/vuls/id/697164 1941. [bug] ncache_adderesult() should set eresult even if no rdataset is passed to it. [RT #15642] All users of BIND 9 are encouraged to upgrade to this version. Notes: svn path=/vendor/bind9/dist/; revision=162079
* Vendor import of BIND 9.3.2Doug Barton2005-12-291-82/+142
| | | | Notes: svn path=/vendor/bind9/dist/; revision=153816
* Update the vendor branch with a patch to this file that wasDoug Barton2005-08-181-2/+4
| | | | | | | | | | | | | | | | | | | researched by glebius, and incorporated by ISC into the next version of BIND. Unfortunately, it looks like their release will come after the release of FreeBSD 6, so we will bring this in now. The patch addresses a problem with high-load resolvers which hit memory barriers. Without this patch, running the resolving name server out of memory would lead to "unpredictable results." Of course, the canonical answer to this problem is to put more memory into the system, however that is not always possible, and the code should be able to handle this situation gracefully in any case. Notes: svn path=/vendor/bind9/dist/; revision=149245
* Vendor import of BIND 9.3.1Doug Barton2005-03-171-29/+133
| | | | Notes: svn path=/vendor/bind9/dist/; revision=143731
* Vender import of BIND 9.3.0rc4.Tom Rhodes2004-09-191-0/+6473
Notes: svn path=/vendor/bind9/dist/; revision=135446