Subject: CVS commit: pkgsrc/security/opendnssec
From: Havard Eidnes
Date: 2016-07-16 21:49:07
Message id: 20160716194907.8EC33FBB5@cvs.NetBSD.org
Log Message:
Add a couple of patches I have been using with opendnssec in our
installation:
 * Log the zone before triggering the "part->soamin" assert.
   We've seen this fire with older versions, but it's a while
   since I saw it happen.  This is to provide more debugging info
   should it fire.
 * If an .ixfr journal file is detected as "corrupted", rename it
   to <zone>.ixfr-bad instead of unlinking it, which would leave
   no trace of OpenDNSSEC's own wrongdoing.
 * If the signer is exposed, avoid a potential DoS vector with a
   crafted message.
Bump PKGREVISION.
Files:
RevisionActionfile
1.58modifypkgsrc/security/opendnssec/Makefile
1.34modifypkgsrc/security/opendnssec/distinfo
1.1addpkgsrc/security/opendnssec/patches/patch-signer_src_signer_ixfr.c
1.1addpkgsrc/security/opendnssec/patches/patch-signer_src_signer_zone.c
1.1addpkgsrc/security/opendnssec/patches/patch-signer_src_wire_query.c