summary refs log tree commit diff
path: root/pkgs/servers/dns
Commit message (Collapse)AuthorAge
* pdns-recursor: init at 4.0.4rnhmjoj2017-01-23
|
* knot-dns: 2.3.3 -> 2.4.0Vladimír Čunát2017-01-19
|
* powerdns: 4.0.1 -> 4.0.2Jörg Thalheim2017-01-14
|
* bind: update to 9.10.4-P5 (CVE-2016-9131, CVE-2016-9147, CVE-2016-9444, ↵Peter Simons2017-01-12
| | | | CVE-2016-9778)
* bind: fix collision of binaries in outputsFranz Pletz2017-01-07
| | | | | | | | Using outputsToInstall the intended behaviour of including host and dnsutils when bind is installed can be implemented instead of using symlinks to fix installing all outputs individually with nix-env. Fixes #19761.
* knot-dns: init at 2.3.3Vladimír Čunát2016-12-13
| | | | Only .lib is tested ATM.
* bind: fixup more openssl.dev referencesVladimír Čunát2016-12-08
|
* bind: update to 9.10.4-P4 to fix CVE-2016-8864Peter Simons2016-11-01
|
* nsd: 4.1.12 -> 4.1.13 for CVE-2016-6173Graham Christensen2016-10-19
| | | | Closes #19685
* bind: Disable seccomp on non-x86Tuomas Tynkkynen2016-10-16
| | | | | | | | | | | | | | The list of permitted syscalls in the seccomp sandbox is only defined for x86. It fails to build otherwise: ```` In file included from /tmp/nix-build-bind-9.10.4-P3.drv-0/bind-9.10.4-P3/lib/isc/include/isc/magic.h:23:0, from /tmp/nix-build-bind-9.10.4-P3.drv-0/bind-9.10.4-P3/lib/isc/include/isc/app.h:89, from ./main.c:26: ./main.c: In function 'setup_seccomp': ./main.c:848:17: error: 'scmp_syscalls' undeclared (first use in this function) INSIST((sizeof(scmp_syscalls) / sizeof(int)) == ````
* bind: split out dnsutils & host binaries (#18903)Franz Pletz2016-10-08
| | | | | | | These tools are commonly used but don't require the other bind binaries. Bind's libs are used, so they've also been split into an extra output. The old version of host isn't maintained anymore and was removed From Debian back in 2009: https://packages.qa.debian.org/h/host.html
* powerdns: removed PrivateTmp=true in serviceConfigAnmol Sethi2016-10-01
| | | | | | | As discussed in #18718 PrivateTmp is unnecessary because powerdns is chrooted to /var/lib/powerdns. I also added myself as co-maintainer.
* bind: enable seccomp on linuxFranz Pletz2016-09-28
|
* bind: cosmetic fix for Emacs' syntax highlightingPeter Simons2016-09-27
|
* bind: update to version 9.10.4-P3 to fix CVE-2016-2776Peter Simons2016-09-27
|
* nsd: 4.1.9 -> 4.1.12Christoph Hrdinka2016-09-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 4.1.12 ====== Bugfixes -------- Fix malformed edns query assertion failure, reported by Michal Kepien (NASK). 4.1.11 ====== Features -------- * When tcp is more than half full, use short timeout for tcp session. * Patch for {max,min}-{refresh,retry}-time from YAMAGUCHI Takanori. * Fix #790: size-limit-xfr can stop NSD from downloading infinite zone transfer data size, from Toshifumi Sakaguchi. Fixes CVE-2016-6173 JVN#63359718 JPCERT#91251865. Bugfixes -------- * Fix build without IPv6, patch from Zdenek Kaspar. * Fix #783: Trying to run a root server without having configured it silently gives wrong answers. * Fix #782: Serve DS record but parent zone has no NS record. * Fix nsec3 missing for nsec3 signed parent and child for DS at zonecut. 4.1.10 ====== Features -------- * ip-freebind: yesno option in nsd.conf sets IP_FREEBIND socket option for Linux, binds to interfaces and addresses that are down. * NSD includes AAAA before A for queries over IPV6 (in delegations). And TC is set if no glue can be provided with a delegation because of packet size. * print notice that nsd is starting before taking off. Bugfixes -------- * Fix for openssl 1.1.0, HMAC_CTX size not exported from openssl. * Fix #751: NSD fails to occlude names below a DNAME. * If set without nsd.db print "" as the default in the man pages. * Fix #755: NSD spins after a zone update and a lot of TCP queries. * Fix for NSEC3 with zone signed without exact match for empty nonterminals, the answer for that domain gets closest encloser. * #772 Document that recvmmsg has IPv6 problems on some linux kernels. 4.1.9 ===== Bugfixes -------- * Change the nsd.db file version because of nanosecond precision fix.
* bind: 9.10.4 -> 9.10.4-P2 (#18880)Tim Steinbach2016-09-24
|
* coredns: init at 001rushmorem2016-09-22
|
* powerdns: init at 4.0.1Jörg Thalheim2016-09-18
| | | | fixes #18703
* treewide: Fix dev references to libxml2Tuomas Tynkkynen2016-08-30
|
* treewide: Shuffle outputsTuomas Tynkkynen2016-08-29
| | | | Make either 'bin' or 'out' the first output.
* Merge: make dev output references explicitVladimír Čunát2016-05-22
|\ | | | | | | | | This is a rebase of most commits from #14766, resolving conflicts and a few other evaluation problems.
| * treewide: Make explicit that 'dev' output of openssl is usedTuomas Tynkkynen2016-05-19
| |
* | bind: Fix references to openssl in *.la filesTuomas Tynkkynen2016-05-18
|/ | | | Avoids reference to the OpenSSL development headers.
* Bring my stdenv.lib.maintainers user name in line with my github nick.Peter Simons2016-05-16
|
* bind: Split into multiple outputsTuomas Tynkkynen2016-05-14
| | | | | A patch is needed to make bind not print its configure flags on 'named -V'.
* bind: Attempt to fix Darwin OpenSSL linkingTuomas Tynkkynen2016-05-13
| | | | | | | | | | | | | | Issue #15279 reports: ```` Checking for OpenSSL library... using OpenSSL from /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/lib and /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/include checking whether linking with OpenSSL works... no configure: error: Could not run test program using OpenSSL from /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/lib and /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/include. Please check the argument to --with-openssl and your shared library configuration (e.g., LD_LIBRARY_PATH). builder for ‘/nix/store/54nni99j4ycwws6zfjwcvv8vxsdk895i-bind-9.10.4.drv’ failed with exit code 1 ````
* Merge pull request #15185 from hrdinka/update/nsdRobin Gloster2016-05-03
|\ | | | | nsd: 4.1.7 -> 4.1.9
| * nsd: 4.1.7 -> 4.1.9Christoph Hrdinka2016-05-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Features ======== * Fix #732: tcp-mss, outgoing-tcp-mss options for nsd.conf, patch from Daisuke Higashi. * Fix #739: zonefile changes when mtime is small are detected on reload, if filesystem supports precision mtime values. * RR type CSYNC (RFC7477) syntax is supported. Bugfixes ======== * Change the nsd.db file version because of nanosecond precision fix. * take advantage of arc4random_uniform if available, patch from Loganaden Velvindron. * Fix flto check for OSX clang. * Define _DEFAULT_SOURCE with _BSD_SOURCE for glibc 2.20 on Linux. * Fix #736: segfault during zone transfer. * Fix #744: Fix that NSD replies for configured but unloaded zone with SERVFAIL, not REFUSED.
* | bind: LibreSSL compatibility added upstreamAlexander Ried2016-05-03
| |
* | bind: 9.10.3-P4 -> 9.10.4Alexander Ried2016-05-03
|/
* Merge branch 'master' into closure-sizeVladimír Čunát2016-04-01
|\ | | | | | | | | Beware that stdenv doesn't build. It seems something more will be needed than just resolution of merge conflicts.
| * bind: 9.10.3 -> 9.10.3-P4 (security)Franz Pletz2016-03-21
| | | | | | | | | | | | | | Fixes: * CVE-2016-1285: https://kb.isc.org/article/AA-01352/ * CVE-2016-1286: https://kb.isc.org/article/AA-01353/
* | Merge master into closure-sizeVladimír Čunát2016-03-08
|\| | | | | | | | | The kde-5 stuff still didn't merge well. I hand-fixed what I saw, but there may be more problems.
| * nsd: 4.1.6 -> 4.1.7Christoph Hrdinka2016-02-28
| |
* | Merge branch 'master' into closure-sizeVladimír Čunát2015-12-31
|\| | | | | | | | | TODO: there was more significant refactoring of qtbase and plasma 5.5 on master, and I'm deferring pointing to correct outputs to later.
| * bind: Fix patching Makefile.inFranz Pletz2015-12-25
| | | | | | | | There is no postPatchPhase.
| * bind: add patch to build with libressl 2.3Robin Gloster2015-12-23
| |
* | Merge staging into closure-sizeVladimír Čunát2015-11-20
|\| | | | | | | | | | | The most complex problems were from dealing with switches reverted in the meantime (gcc5, gmp6, ncurses6). It's likely that darwin is (still) broken nontrivially.
| * nsd: 4.13 -> 4.16Christoph Hrdinka2015-11-12
| |
* | libevent: split into multiple outputsVladimír Čunát2015-10-05
|/ | | | Hopefully all references are fixed.
* bind: 9.10.2-P4 -> 9.10.3William A. Kennington III2015-09-17
|
* mesos-dns: Move to go-packagesWilliam A. Kennington III2015-09-04
|
* skydns: Move to go-packagesWilliam A. Kennington III2015-09-04
|
* bind: 9.10.2-P3 -> 9.10.2-P4William A. Kennington III2015-09-02
|
* skydns: 2.5.0a -> 2.5.2bJaka Hudoklin2015-08-29
|
* bind: 9.10.2-P2 -> 9.10.2-P3William A. Kennington III2015-07-29
|
* nsd: 4.1.2 -> 4.1.3Christoph Hrdinka2015-07-13
|
* bind: update from 9.10.2 to 9.10.2-P2, fixes CVE-2015-4620Pascal Wittmann2015-07-10
|
* skydns: update to 2.5.0aJaka Hudoklin2015-06-19
|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-27 15:26:53 +0000