townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

694 Commits

Author SHA1 Message Date
wouter
873b46f247 Put fixes in 1.7.3 for release. 
- Fix for unbound-control on Windows and set TCP socket parameters
  more closely.
- Fix windows unbound-control no cert bad file descriptor error.
- Fix unbound-checkconf for control-use-cert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/tags/release-1.7.3@4749 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 07:38:14 +00:00
wouter
346ff9c3ff - Fix that control-use-cert: no works for 127.0.0.1 to disable certs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/tags/release-1.7.3rc2@4740 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 09:46:01 +00:00
wouter
2d11cea17a - Fix nettle compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4731 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 12:08:09 +00:00
wouter
0f9b6582fa - Fix that first control-interface determines if TLS is used. Warn 
when IP address interfaces are used without TLS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 08:14:43 +00:00
wouter
0a357ade0a remove unreachable point for portablity 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4727 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 13:02:52 +00:00
wouter
d14abd4a57 Continue to read also when signals are sent. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4723 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 10:50:51 +00:00
wouter
e8165c8de0 Accurate printout in status output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4719 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 08:05:03 +00:00
wouter
7ad84e32e0 - #4102 for NSD, but for Unbound. Named unix pipes do not use 
certificate and key files, access can be restricted with file and
  directory permissions.  The option control-use-cert is no longer
  used, and ignored if found in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4718 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 07:43:52 +00:00
wouter
3506f85724 - Patch from Syzdek: Add ability to ignore RD bit and treat all 
requests as if the RD bit is set.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4701 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-30 09:33:21 +00:00
wouter
8fa54ec661 - Add routine from getdns to add windows cert store to the SSL_CTX. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-28 13:22:10 +00:00
wouter
1ad21fa550 - Fix that unbound-control reload frees the rrset keys and returns 
the memory pages to the system.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4669 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-01 14:00:06 +00:00
wouter
dbbaa5f52f - Fix for crash in daemon_cleanup with dnstap during reload, 
from Saksham Manchanda.
- Also that for dnscrypt.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-26 06:59:49 +00:00
ralph
38b5b4c8c6 - Added root-key-sentinel support 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4652 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-24 09:03:49 +00:00
wouter
34247dd0ce - list_auth_zones unbound-control command. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4650 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-23 14:42:30 +00:00
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name 
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:10:05 +00:00
wouter
dcae8decf0 - unit test for allow-notify 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4629 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-17 14:58:43 +00:00
wouter
705a0dfed8 - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-16 14:24:57 +00:00
wouter
83334c219d Fix doxygen 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4620 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 15:06:02 +00:00
wouter
96756438cf - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 14:57:38 +00:00
ralph
bff451ac6c cast neg cache stats to long long 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4618 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 11:48:05 +00:00
ralph
5ac4889669 - num.query.aggressive.NOERROR and num.query.aggressive.NXDOMAIN statistics 
counters


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4616 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 11:39:23 +00:00
wouter
32d7d269e4 - num.query.authzone.up and num.query.authzone.down statistics counters. 
- Fix downstream auth zone, only fallback when auth zone fails to
  answer and fallback is enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-09 10:15:06 +00:00
wouter
5718d70ee1 - Fix that flush_zone sets prefetch ttl expired, so that with 
serve-expired enabled it'll start prefetching those entries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4609 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-09 07:39:59 +00:00
wouter
7584b945fc - Fix unbound-control over pipe with openssl 1.1.1, the TLSv1.3 
tls_choose_sigalg routine does not allow the ciphers for the pipe,
  so use TLSv1.2.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4606 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-05 13:43:05 +00:00
wouter
2b00a5d314 - Attempt to remove warning about trailing whitespace. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4568 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-07 08:52:18 +00:00
wouter
3c305c6934 - more robust cachedump rrset routine. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4549 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-21 15:25:19 +00:00
wouter
4d4669b2cc - tls-cert-bundle option in unbound.conf enables TLS authentication. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 10:35:09 +00:00
wouter
f8f3f79a0d - Fix unfreed locks in log and arc4random at exit of unbound. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4491 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-02 09:27:16 +00:00
wouter
2470b31ccc cleanup without losing zone contents, and also backoff for nonresponsive 
masters while zone data is available.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4480 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 12:52:40 +00:00
wouter
fd5b2dd1c2 pickup worker events, and free them. 
exponential backoff for continuously failing zones.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4479 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 12:33:19 +00:00
wouter
4f5bbce421 auth zone for downstream 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 08:30:32 +00:00
wouter
f92f7fb2d6 auth zone, make depend, fallback, create and delete, and lease_time, 
and lock fixes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4466 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-30 10:35:20 +00:00
wouter
74d2a9dacd - Print fatal errors about remote control setup before log init, 
so that it is printed to console.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4448 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-23 15:59:18 +00:00
ralph
a28f91e754 - Copy query and correctly set flags on REFUSED answers when cache snooping is 
not allowed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4436 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-04 15:16:19 +00:00
ralph
24b4835ec3 - Fix #1949: [dnscrypt] make provider name mismatch more obvious. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4387 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-25 10:13:35 +00:00
wouter
cc34c6bd06 authzone work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 15:11:20 +00:00
wouter
f6767b6484 - authzone work, probe timer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 09:03:36 +00:00
wouter
87a108b346 - Fix #1440: [dnscrypt] client nonce cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:55:08 +00:00
wouter
e2aaf5e9a7 - Fix #1435: Please allow UDP to be disabled separately upstream and 
downstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4349 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:42:24 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:29:28 +00:00
wouter
ce208bb8fe - Fix #1417: [dnscrypt] shared secret cache counters, and works when 
dnscrypt is not enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4326 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 08:06:17 +00:00
wouter
a5990315f7 - zero qinfo in handle_request, this zeroes local_alias and also the 
qname member.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4317 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 07:31:45 +00:00
wouter
9500dddad7 - Fix #1414: fix segfault on parse failure and log_replies. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4316 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 07:28:29 +00:00
wouter
8b3bfc6ca7 - Fix #1415: patch to free dnscrypt environment on reload. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4310 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 07:49:42 +00:00
wouter
9e96762040 better text. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4299 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-10 07:26:09 +00:00
wouter
aa09eec8a4 - Patch to show DNSCrypt status in help output, from Carsten 
Strotmann.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4298 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-10 07:13:44 +00:00
ralph
e5513455fb Do not add rrset_bogus and query ratelimiting stats per thread. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4293 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 15:32:24 +00:00
ralph
d073e3e262 - Added stats for queries that have been ratelimited by domain recursion. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 12:52:33 +00:00
ralph
2fc821809c - Do not reset rrset.bogus stats when called using stats_noreset. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4291 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 10:50:46 +00:00
wouter
4b3602ba84 - Fix #1394: mix of serve-expired and response-ip could cause a crash. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4289 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 07:13:12 +00:00