[Freeipa-devel] [PATCH 0207] Do not load invalid zones
Petr Spacek
pspacek at redhat.com
Fri Feb 21 11:56:12 UTC 2014
On 13.12.2013 17:45, Petr Spacek wrote:
> On 27.11.2013 16:34, Petr Spacek wrote:
>> Hello,
>>
>> Do not load invalid zones.
>>
>> Without this patch, it was possible to load an invalid zone without
>> proper SOA or NS records because the fake SOA and NS records allowed
>> checks in dns_zone_load() to pass.
>>
>> With this patch, no fake SOA or NS records are created and
>> dns_zone_load() is not called before end of the initial synchronization.
>>
>> See the function ldapdb_associate() in ldap_driver.c and it's comments.
>
> Patch 207 v2 fixes reconnecting to LDAP.
>
> dns_db_detachnode() call in update_record() function was moved to the cleanup
> section - this is workaround for ISC bug #35080.
>
> This patch should go to master branch.
Pushed to master branch: e39df82aaf12746525d5a53ebc638aa4c07fcb4a
--
Petr^2 Spacek
More information about the Freeipa-devel
mailing list