townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

3214 Commits

Author SHA1 Message Date
wouter
873b46f247 Put fixes in 1.7.3 for release. 
- Fix for unbound-control on Windows and set TCP socket parameters
  more closely.
- Fix windows unbound-control no cert bad file descriptor error.
- Fix unbound-checkconf for control-use-cert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/tags/release-1.7.3@4749 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 07:38:14 +00:00
wouter
346ff9c3ff - Fix that control-use-cert: no works for 127.0.0.1 to disable certs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/tags/release-1.7.3rc2@4740 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 09:46:01 +00:00
wouter
faf0f18b8c - tag for 1.7.3rc1. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4732 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-15 05:38:39 +00:00
wouter
2d11cea17a - Fix nettle compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4731 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 12:08:09 +00:00
wouter
0f9b6582fa - Fix that first control-interface determines if TLS is used. Warn 
when IP address interfaces are used without TLS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 08:14:43 +00:00
wouter
393bb36e37 - #4103: Fix that auth-zone does not insist on SOA record first in 
file for url downloads.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4729 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 07:09:01 +00:00
ralph
04e4ee1d26 - Don't count CNAME response types received during qname minimisation as query 
restart.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4728 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 13:09:14 +00:00
wouter
8374fb2613 - remade dependencies in the Makefile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4725 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 12:23:56 +00:00
wouter
1056a26264 - Fix buffer size warning in unit test. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4724 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 11:01:14 +00:00
wouter
ab61a40dd4 - Rename tls-additional-ports to tls-additional-port, because every 
line adds one port.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4721 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 08:45:57 +00:00
wouter
7ad84e32e0 - #4102 for NSD, but for Unbound. Named unix pipes do not use 
certificate and key files, access can be restricted with file and
  directory permissions.  The option control-use-cert is no longer
  used, and ignored if found in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4718 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 07:43:52 +00:00
wouter
0a7832a673 trunk is 1.7.3 in development. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4717 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-11 10:05:03 +00:00
wouter
ab8e1d0bf9 note OpenBSD accept4. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4716 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-11 09:08:41 +00:00
wouter
2d8783d06f - Patch to fix openwrt for mac os build darwin detection in configure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4713 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-06 05:31:12 +00:00
wouter
0208ba98c8 - Fix crash if ratelimit taken into use with unbound-control 
instead of with unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4711 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-05 07:06:19 +00:00
wouter
cb0035010e accept4 also on OpenBSD 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4710 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-05 06:59:05 +00:00
wouter
0249b53554 Track bug.nr 4100 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4708 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 12:50:32 +00:00
wouter
e43d3333c8 - Fix stub reprime when it becomes useless. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4707 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 12:28:33 +00:00
wouter
a8902d2d35 - tag for 1.7.2rc1 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4705 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 10:40:47 +00:00
wouter
5399c14f2f - Fix deadlock caused by incoming notify for auth-zone. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 09:01:55 +00:00
wouter
472d02ab51 - Rename additional-tls-port to tls-additional-ports. 
The older name is accepted for backwards compatibility.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4703 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-01 08:02:04 +00:00
wouter
3506f85724 - Patch from Syzdek: Add ability to ignore RD bit and treat all 
requests as if the RD bit is set.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4701 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-30 09:33:21 +00:00
wouter
ae80d3cf46 - Fix that fallback for windows port. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4700 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-29 07:52:31 +00:00
wouter
ee22f0ee84 - in compat/arc4random call getentropy_urandom when getentropy fails 
with ENOSYS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4699 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-29 07:48:58 +00:00
wouter
4a5ccf25b0 - tls-win-cert option that adds the system certificate store for 
authenticating DNS-over-TLS connections.  It can be used instead
  of the tls-cert-bundle option, or with it to add certificates.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4698 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-28 14:15:06 +00:00
wouter
8fa54ec661 - Add routine from getdns to add windows cert store to the SSL_CTX. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-28 13:22:10 +00:00
wouter
aee754fc46 - Fix windows tcp and tls spin on events. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4696 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-28 12:30:34 +00:00
wouter
c8130661f9 - Fix close events for tcp only. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4695 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-25 10:41:24 +00:00
wouter
4fbdf39ad1 - Fix that tcp sticky events are removed for closed fd on windows. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4694 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-25 10:02:06 +00:00
wouter
0ab6ec77d0 - For TCP and TLS connections that don't establish, perform address 
update in infra cache, so future selections can exclude them.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4693 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-25 06:21:39 +00:00
wouter
432f0d8062 setup when ssl upstream or a cert-bundle is configured. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4692 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 13:03:10 +00:00
wouter
c0e79fd89f - unbound-host initializes ssl (for potential DNS-over-TLS usage 
inside libunbound).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4690 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 12:30:13 +00:00
wouter
c6c33182d0 - Fix that windows unbound service can use DNS-over-TLS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4689 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 09:23:24 +00:00
wouter
44f5a4a72a - Fix that libunbound can do DNS-over-TLS, when configured. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4687 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 08:57:37 +00:00
wouter
34a161c0e3 - Use accept4 to speed up incoming TCP (and TLS) connections, 
available on Linux and FreeBSD.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4686 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-23 13:55:09 +00:00
ralph
8b19239862 - Qname minimisation default changed to yes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4685 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-17 10:33:19 +00:00
wouter
e02f387278 - Fix low-rtt-pct to low-rtt-permil, as it is parts in one thousand. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4683 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-15 07:30:53 +00:00
wouter
7ed1e207ae - Fix contrib/libunbound.pc for libssl libcrypto references, 
from https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=226914


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4682 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-11 11:52:19 +00:00
wouter
c2d8866e86 - Fix mesh state assertion failure due to callback removal. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4681 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-07 11:29:12 +00:00
wouter
dab69869cd - Fix windows to not have sticky TLS events for TCP. 
- Fix read of DNS over TLS length and data in one read call.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4680 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-07 08:31:17 +00:00
wouter
14cb872630 - Fix function type cast warning in libunbound context callback type. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4676 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:12:19 +00:00
wouter
c9f8a59ca7 - Fix gcc 8 buffer warning in testcode. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4675 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:09:33 +00:00
wouter
d0d6b73eb4 - Fix that configure --with-libhiredis also turns on cachedb. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4674 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 09:59:18 +00:00
wouter
a59c4e5e0e trunk has 1.7.2 in development 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4673 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 07:59:09 +00:00
wouter
bb358ef952 - Fix fail to reject dead peers in forward-zone, with ssl-upstream. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4670 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-02 06:36:02 +00:00
wouter
1ad21fa550 - Fix that unbound-control reload frees the rrset keys and returns 
the memory pages to the system.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4669 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-01 14:00:06 +00:00
wouter
4532af436f - Fix spelling error in man page and note defaults as no instead of 
off.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4666 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-30 07:24:05 +00:00
wouter
6e90021c03 - tag for 1.7.1rc1 release. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4664 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-26 07:18:42 +00:00
wouter
dbbaa5f52f - Fix for crash in daemon_cleanup with dnstap during reload, 
from Saksham Manchanda.
- Also that for dnscrypt.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-26 06:59:49 +00:00
ralph
a20b463a88 - Fix memory leak when caching wildcard records for aggressive NSEC use 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4662 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-25 13:13:05 +00:00