Commit Graph

3064 Commits

Author SHA1 Message Date
wouter
474df4dd8e - Fix 1211: Fix can't enable interface-automatic if no IPv6 with
more helpful error message.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3995 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-26 11:03:06 +00:00
wouter
2661aa45f1 - Increase MAX_MODULE to 16.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3993 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-20 07:33:54 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 10:25:41 +00:00
wouter
affae9bc85 - Fix to Rename ub_callback_t to ub_callback_type, because POSIX
reserves _t typedefs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3988 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 09:08:15 +00:00
wouter
bc4d0a68d2 - Fix #1206: Some view-related commands are missing from 'unbound-control -h'
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3986 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-12 15:56:05 +00:00
wouter
465f685a4e - Fix to also block meta types 128 through to 248 with formerr.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3985 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-12 08:12:39 +00:00
wouter
6631d1edf0 - Fix #1202: Fix code comment that packed_rrset_data is not always
'packed'.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3984 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-09 09:47:06 +00:00
wouter
29e16cbf75 - Fix #1201: Fix missing unlock in answer_from_cache error condition.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3983 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-06 15:50:39 +00:00
wouter
3510c9fe88 - Fix #1185: Source IP rate limiting, patch from Larissa Feng.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 13:57:12 +00:00
wouter
59ef29ffc6 - Fix #1184: Log DNS replies. This includes the same logging
information that DNS queries and response code and response size,
  patch from Larissa Feng.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3980 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 11:39:54 +00:00
wouter
87ce833579 - Fix to return formerr for queries for meta-types, to avoid
packet amplification if this meta-type is sent on to upstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3978 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 08:14:34 +00:00
wouter
e46a0f2dd5 - Fix reload chdir failure when also chrooted to that directory.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3976 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-03 13:46:00 +00:00
wouter
3ea720544a - configure --enable-systemd and lets unbound use systemd sockets if
you enable use-systemd: yes in unbound.conf.
  Also there are contrib/unbound.socket and contrib/unbound.service:
  systemd files for unbound, install them in /usr/lib/systemd/system.
  Contributed by Sami Kerola and Pavel Odintsov.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3975 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-03 13:43:29 +00:00
wouter
dcffda6131 - Fix #1194: Cross build fails when $host isn't uname for getentropy.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3974 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-02 08:51:50 +00:00
ralph
4087fc2b30 - Fix #1190: Do not echo back EDNS options in local-zone error response.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3972 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-23 11:46:54 +00:00
ralph
9522d3d9f3 - Fix #1188: Unresolved symbol 'fake_dsa' in libunbound.so when built with
Nettle


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3971 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-21 10:29:19 +00:00
ralph
d3e75b9829 - Fix #1191: remove comment about view deletion.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3970 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-19 11:37:05 +00:00
wouter
95a5611b2f - Fix inet_ntop and inet_pton warnings in windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3969 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 13:10:58 +00:00
wouter
d4cc9d64b8 - 64bit is default for windows builds.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3968 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 11:34:24 +00:00
wouter
49bd05b659 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3967 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:43:33 +00:00
wouter
f72b5118aa trunk is 1.6.1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3966 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:43:04 +00:00
wouter
fb81ab988d note release.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3965 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:41:43 +00:00
wouter
fa23cda448 - Fix #1178: attempt to fix setup error at end, pop result values
at end of install.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3963 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-14 08:55:44 +00:00
wouter
1e2b467c73 - Fix unbound-control and ipv6 only.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3962 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-13 14:21:15 +00:00
wouter
5ccd625858 - Fix #1182: Fix Resource leak (socket), at startup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3961 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-13 12:55:55 +00:00
wouter
718ba24feb - Fix #1176: stack size too small for Alpine Linux.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3959 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-09 10:09:01 +00:00
wouter
1ffbe8489b - Fix downcast warnings from visual studio in sldns code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3957 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-08 08:49:12 +00:00
ralph
5b02745221 - Fix remote control without certificate for LibreSSL
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3956 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-07 14:13:01 +00:00
ralph
263909cc1b Add DSA support for OpenSSL 1.1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3954 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-07 12:58:47 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes,
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-06 13:42:51 +00:00
ralph
1bd4c7b445 - Fix #1173: differ local-zone type deny from unset tag_actions element.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3945 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-05 14:48:49 +00:00
wouter
0a5c542da5 - Fix #1170: document that 'inform' local-zone uses local-data.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3944 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-05 12:59:08 +00:00
ralph
17daa18c33 - hyphen as minus fix, by Andreas Schulze
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3942 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-01 09:34:02 +00:00
ralph
4575fa9149 - Added local-zones and local-data bulk addition and removal functionality in
unbound-control (local_zones, local_zones_remove, local_datas and
  local_datas_remove).                                   
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3941 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-30 11:22:29 +00:00
wouter
c85bc4dac0 - braces in view.c around lock statements.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3939 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-29 15:28:25 +00:00
wouter
730408105b - version 1.6.0 is in the development branch.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3938 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-29 13:33:09 +00:00
wouter
d23b451f6e - new install-sh.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3937 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-28 09:52:02 +00:00
wouter
c4d8a8858a - Fix that with openssl 1.1 control-use-cert: no uses less cpu, by
using no encryption over the unix socket.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3936 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-25 16:14:14 +00:00
wouter
ff49098e7d - patch from Dag-Erling Smorgrav that removes code that relies
on sbrk().


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3934 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 15:50:07 +00:00
ralph
338f46d26f - Added unit test for QNAME minimisation + harden below nxdomain
synergy.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3933 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 13:53:51 +00:00
ralph
b4889ffa4d - QNAME minimisation uses QTYPE=A, therefore always check cache for
this type in harden-below-nxdomain functionality.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3932 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 10:50:53 +00:00
ralph
36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin
consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain
  of the NSEC owner.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 10:10:48 +00:00
wouter
5795b9d972 - Fix unit tests for DS hash processing for fake-dsa test option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3929 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 08:23:24 +00:00
wouter
425b2bfb84 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3928 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 08:22:49 +00:00
wouter
2ab2a2ec28 - Fix #1158: reference RFC 8020 "NXDOMAIN: There Really Is Nothing
Underneath" for the harden-below-nxdomain option.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3927 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-21 09:53:43 +00:00
ralph
51aa35e9e6 - Fix #1155: test status code of unbound-control in 04-checkconf, not the status
code from the tee command.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3926 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-10 11:20:27 +00:00
wouter
95d8709a9a - Note that for harden-below-nxdomain the nxdomain must be secure,
this means nsec3 with optout is insufficient.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3925 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 14:49:43 +00:00
ralph
3fb4900c0e - Added stub-ssl-upstream and forward-ssl-upstream options.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3923 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 12:07:52 +00:00
wouter
ba9a05f5e6 - Fix #1154: segfault when reading config with duplicate zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3922 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 08:16:55 +00:00
wouter
7e9e2bfb99 - configure detects ssl security level API function in the autoconf
manner.  Every function on its own, so that other libraries (eg.
  LibreSSL) can develop their API without hindrance.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3921 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 08:05:42 +00:00
ralph
c1f7eb0ce5 Set openssl security level to 0 when using aNULL ciphers
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3919 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 16:59:00 +00:00
wouter
b565dd0a77 - log-identity: config option to set sys log identity, patch from
"Robin H. Johnson" <robbat2@gentoo.org>


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3917 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 08:51:40 +00:00
wouter
7763171707 - .gitattributes line for githubs code language display.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3916 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 08:29:29 +00:00
wouter
7397821cbd - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3915 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 08:43:14 +00:00
wouter
fd7a40ce90 change to test cronjob-2.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3914 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 08:38:03 +00:00
wouter
c4f88dc5a7 Change to test commit cronjob.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3913 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 07:22:20 +00:00
wouter
72c74b26b4 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3912 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-31 08:18:17 +00:00
wouter
ab3589f2d1 - Fix failure to build on arm64 with no sbrk.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3911 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-31 08:05:41 +00:00
wouter
bbe0c0a707 - Patch for server.num.zero_ttl stats for count of expired replies,
from Pavel Odintsov.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3910 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-28 15:08:32 +00:00
wouter
7073948a03 - Fix unit tests for openssl 1.1, with no DSA, by faking DSA, enabled
with the undocumented switch 'fake-dsa'.  It logs a warning.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3909 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-26 07:38:00 +00:00
wouter
cb4533e683 - Fix #1134: unbound-control set_option -- val-override-date: -1 works
immediately to ignore datetime, or back to 0 to enable it again.
  The -- is to ignore the '-1' as an option flag.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3908 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-25 11:49:08 +00:00
wouter
76d75d9d0d - Fix #1134: unbound-control set_option val-date-override: -1 works
immediately to ignore datetime, or back to 0 to enable it again.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3907 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-25 11:44:03 +00:00
wouter
78de2ff5ae g.root-servers.net has AAAA address.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3906 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-24 13:11:39 +00:00
wouter
416af5ad2e - serve-expired config option: serve expired responses with TTL 0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3903 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-24 12:43:20 +00:00
wouter
16f0f57b09 - Ported tests for local_cname unit test to testbound framework.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3902 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-21 08:59:56 +00:00
wouter
0d07974baf - Fixup query_info local_alias init.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3899 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 14:55:57 +00:00
wouter
726011b074 - Fix DNSSEC validation of query type ANY with DNAME answers.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3898 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 14:27:13 +00:00
wouter
5da97362ae - fix --enable-dsa to work, instead of copying ecdsa enable.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3897 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 09:22:04 +00:00
wouter
a3d0df3258 - init lzt variable, for older gcc compiler warnings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3896 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 07:57:12 +00:00
wouter
cacf924b0e - suppress compile warning in lex files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3895 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 07:46:35 +00:00
wouter
ada0d4354f - Fix #1130: whitespace in example.conf.in more consistent.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3894 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-19 07:15:41 +00:00
wouter
82afa0ef30 - Please doxygen by modifying mesh.h
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3892 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:59:17 +00:00
wouter
d73173c1b5 Fixup changelog bug number to 1118.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3891 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:58:09 +00:00
wouter
3f80d607d4 - Added Requires line to libunbound.pc
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3890 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:57:39 +00:00
wouter
a37c47bc77 - Fix #1117: libunbound.pc sets strange Libs, Libs.private values.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3889 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:56:42 +00:00
wouter
be164dce50 - Fix #1125: unbound could reuse an answer packet incorrectly for
clients with different EDNS parameters, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3888 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:42:08 +00:00
wouter
b77a908a85 - Added documentation doc/CNAME-basedRedirectionDesignNotes.pdf,
from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3887 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:21:35 +00:00
wouter
593353dc9b - Removed patch comments from acllist.c and msgencode.c
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3886 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:20:42 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:18:20 +00:00
wouter
100754f8a6 - Fixup const void cast warning.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3883 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-17 15:05:20 +00:00
wouter
ec9a8f573a - Re-fix #839 from view commit overwrite.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3882 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-17 14:37:59 +00:00
ralph
224d50bc0a - Free view config elements.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3881 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-12 10:09:42 +00:00
ralph
a65e5ddee1 - fix memoryleak logfile when in debug mode.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3880 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-11 13:43:18 +00:00
ralph
1393dff5a3 - Added qname-minimisation-strict config option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3878 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-11 11:32:50 +00:00
ralph
caf867d9be - Fix #1117: spelling errors, from Robert Edmonds
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3877 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-05 09:56:05 +00:00
ralph
083a936fb3 Added views functionality.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-05 09:36:25 +00:00
wouter
52f4ab1682 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-30 09:37:20 +00:00
wouter
785255fed1 - Fix #841: big local-zone's make it consume large amounts of memory.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3874 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 13:11:26 +00:00
wouter
002f758486 - Fix #840: infinite loop in unbound_munin_ plugin on unowned lockfile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3873 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 11:51:14 +00:00
wouter
7f51472812 - Fix #839: Memory grows unexpectedly with large RPZ files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3872 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 08:08:51 +00:00
wouter
30c07c6c16 - Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3871 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 07:00:31 +00:00
wouter
e09299a233 - Fix #836: unbound could echo back EDNS options in an error response.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3870 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 12:22:56 +00:00
wouter
e2e6ff5dd3 - Fix dnstap relaying "random" messages instead of resolver/forwarder
responses, from Nikolay Edigaryev.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3869 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 11:56:55 +00:00
wouter
8b8f98a74c 1.5.11 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3868 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 11:44:35 +00:00
wouter
e74e2f736a - tag for 1.5.10rc1 release.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3865 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 12:23:16 +00:00
wouter
df7a514d4e - Fix #835: fix --disable-dsa with nettle verify.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3864 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 12:22:07 +00:00
wouter
68babd72f6 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3863 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 11:26:42 +00:00
wouter
5c55df0e04 - Test for openssl init_crypto and init_ssl functions.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3860 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 12:03:10 +00:00
wouter
918edc29a0 - Fix 883: error for duplicate local zone entry.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3858 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 10:59:26 +00:00
ralph
3010d4906f iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3857 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 08:49:52 +00:00
ralph
43a31cadce fix potential memory leak in daemon/remote.c and nullpointer dereference in
validator/autotrust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3856 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 08:39:59 +00:00
wouter
2e4d094696 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-13 11:35:33 +00:00
wouter
8ebb041d30 - Silenced flex-generated sign-unsigned warning print with gcc
diagnostic pragma.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3852 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-13 10:44:24 +00:00
wouter
15bda73e48 - Fix #831: workaround for spurious fread_chk warning against petal.c
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3851 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-09 05:55:16 +00:00
wouter
b48ea2743f - Fix #828: missing type in access-control-tag-action redirect results
in NXDOMAIN.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3850 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 14:30:24 +00:00
ralph
8dc79ecaed Take configured minimum TTL into consideration when reducing TTL to original
TTL from RRSIG.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3849 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 12:30:46 +00:00
wouter
9b0f30e072 - Fix incomplete prototypes reported by Dag-Erling Smørgrav.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3848 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 07:23:23 +00:00
wouter
948aaf7c4b - Fix #829: doc of sldns_wire2str_rdata_buf() return value has an
off-by-one typo, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3847 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 07:14:56 +00:00
wouter
fcad92b021 - Fix compile with openssl 1.1.0 with api=1.1.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3844 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-02 09:59:09 +00:00
wouter
bcf6551d3c - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3843 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 14:52:33 +00:00
wouter
8d55248c66 - Fix #826: Fix refuse_non_local could result in a broken response.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3841 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 14:34:45 +00:00
wouter
63ee7f3970 - Fix for compile without warnings with openssl 1.1.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3840 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 12:23:59 +00:00
wouter
66d5373d21 - RFC 7958 is now out, updated docs for unbound-anchor.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3839 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 07:08:22 +00:00
wouter
ff5789ef78 - Add default root hints for IPv6 E.ROOT-SERVERS.NET, 2001:500:a8::e.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3838 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-29 07:11:35 +00:00
wouter
883854cacb - Fix #777: OpenSSL 1.1.0 compatibility, patch from Sebastian A. Siewior.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3837 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-29 07:05:19 +00:00
ralph
fbbca2612b Clarify local-zone-override entry in unbound.conf.5
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3836 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-25 08:40:42 +00:00
wouter
f2b0ef74a9 -w64 option for makedist
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3834 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-25 07:41:30 +00:00
ralph
55cf3ac58c unbound.conf.5 entries for define-tag, access-control-tag,
access-control-tag-action, access-control-tag-data, local-zone-tag,
and local-zone-override.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3833 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-24 13:43:14 +00:00
ralph
3d013230ed Fix #820: set sldns_str2wire_rr_buf() dual meaning len parameter
in each iteration in find_tag_datas().



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3832 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-24 09:18:38 +00:00
wouter
00bb15e2c3 - Fix #804: lower num_target_queries for iterator also for failed
lookups.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3831 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-23 08:49:01 +00:00
wouter
b80df3881a - Fix #804: unbound stops responding after outage. Fixes queries
that attempt to wait for an empty list of subqueries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3830 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-23 08:30:12 +00:00
wouter
6463ec5061 - Note that OPENPGPKEY type is RFC 7929.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3829 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-08 07:36:20 +00:00
wouter
b1fe9b8ca9 - Fix #807: workaround for possible some "unused" function parameters
in test code, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3828 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-04 07:17:53 +00:00
wouter
56dc36d7ea - use sendmsg instead of sendto for TFO.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3827 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-03 06:20:26 +00:00
wouter
ec1e454439 - Fix #806: wrong comment removed.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3826 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-28 07:13:48 +00:00
wouter
ea8e3d008a - nicer ratelimit-below-domain explanation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3825 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-26 13:37:30 +00:00
wouter
0e53074eaa - Fix #803: confusing (and incorrect) code comment in daemon_cleanup().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3824 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:08:42 +00:00
wouter
d2d9015302 - Fix #802: workaround for function parameters that are "unused"
without log_assert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3823 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:05:52 +00:00
wouter
0df1f8359b - Fix #801: missing error condition handling in
daemon_create_workers().


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3822 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:02:03 +00:00
wouter
7abd702517 - Fix typo in unbound.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3821 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-20 07:22:26 +00:00
wouter
15a7d5fd1e - Fix #798: Client-side TCP fast open fails (Linux).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3819 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-18 13:54:32 +00:00
wouter
5da50c3277 - Fixed unbound.doxygen for 1.8.11.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3817 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-14 11:26:30 +00:00
wouter
cf6f495613 - TCP Fast open patch from Sara Dickinson.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3814 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-14 07:06:34 +00:00
wouter
2f8e0608fa - access-control-tag-data implemented. verbose(4) prints tag debug.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-07 10:20:05 +00:00
wouter
f48143758c - Fix #788 for nettle 3.0: Failed to build with Nettle >= 3.0 and
--with-libunbound-only --with-nettle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3810 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 14:00:33 +00:00
wouter
b0ae561157 - Fixes for 64bit windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3808 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:40:13 +00:00
wouter
e5af6f59b5 - Fix detect of mingw for MXE package build.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3807 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:17:39 +00:00
wouter
481de1abef - Fix dynamic link of anchor-update.exe on windows.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3806 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:11:59 +00:00
wouter
6bc02a32b2 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-04 14:51:30 +00:00
wouter
0e0b34e6bd - For #787: prefer-ip6 option for unbound.conf prefers to send
upstream queries to ipv6 servers.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3803 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-04 14:49:49 +00:00
wouter
50ad32a3ef - Document always_transparent, always_refuse, always_nxdomain types.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3802 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-30 07:36:36 +00:00
wouter
f418ba48cb - Fix static compile on windows missing gdi32.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3801 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-29 11:22:57 +00:00
wouter
f541b61b81 - Create a pkg-config file for libunbound in contrib.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3800 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-28 12:04:09 +00:00
wouter
3be84daf12 - Fix #784: Build configure assumess that having getpwnam means there
is endpwent function available.
- Updated repository with newer flex and bison output.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3799 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-27 08:00:55 +00:00
ralph
88e5f3d21d - Possibility to specify local-zone types for an acl/tag pair
- Possibility to specify (override) local-zone types for a source address block


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-24 19:08:58 +00:00
ralph
3977c7c8fb - Decrease dp attempts at each QNAME minimisation iteration
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3796 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-16 11:57:20 +00:00
wouter
5650ce9e0d - Fix tcp timeouts in tv.usec.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3795 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-16 07:21:07 +00:00
wouter
01fc612798 - If more than half of tcp connections are in use, a shorter timeout
is used (200 msec, vs 2 minutes) to pressure tcp for new connects.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3794 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-15 14:41:23 +00:00
wouter
67f97d9f9a - TCP_TIMEOUT is specified in milliseconds.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3793 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-15 14:23:43 +00:00
ralph
62d1c755b2 - QNAME minimisation unit test for dropped QTYPE=A queries.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3792 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 12:36:22 +00:00
wouter
3c93de7e26 - Fix 781: prealloc() is an HP-UX system library call.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3791 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:31:47 +00:00
wouter
2d05999b8a - Fix 780: MAP_ANON not defined in HP-UX 11.31.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3790 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:27:34 +00:00
wouter
1a60ed8616 - Fix 779: Union casting is non-portable.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3789 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:23:56 +00:00
wouter
e42f202dd8 - Fix windows link of ssl with crypt32.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3787 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:04:15 +00:00
wouter
5f565a4928 Fixup attribution
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3786 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 08:07:31 +00:00
wouter
a612caef3b - Fix spelling in freebind option man page text.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3785 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 08:07:15 +00:00
wouter
b213ce97a9 - Fix 775: unbound-host and unbound-anchor crash on windows, ignore
null delete for wsaevent.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3784 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 07:23:08 +00:00
wouter
9054d5f8da - Fix directory: fix for unbound-checkconf, it restores cwd.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3783 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 13:33:51 +00:00
ralph
d1646a497f - Use QTYPE=A for QNAME minimisation.
- Keep track of number of time-outs when performing QNAME minimisation.
  Stop minimising when number of time-outs for a QNAME/QTYPE pair is
  more than three.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3782 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 13:06:35 +00:00
wouter
02de89e03c - Fix #778: unbound 1.5.9: -h segfault (null deref).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3781 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 07:06:23 +00:00
wouter
da8d72df98 - document directory immediate fix and allow EXECUTABLE syntax in it
on windows.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3779 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 13:37:14 +00:00
wouter
3fd4902251 - do not delete service.conf on windows uninstall.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3778 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 09:33:27 +00:00
wouter
d6e1cccdb5 - keep debug symbols in windows build.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3777 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 08:19:29 +00:00
wouter
b6b992de8e - In unbound.conf directory: dir immediately changes to that directory,
so that include: file below that is relative to that directory.
  With chroot, make the directory an absolute path inside chroot.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3775 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 22:59:07 +00:00
wouter
6115c98c8b - And delete service.conf.shipped on uninstall.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3774 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 22:54:35 +00:00
wouter
0b83edfe75 - Fix that windows install will not overwrite existing service.conf
file (and ignore gui config choices if it exists).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3772 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 14:51:42 +00:00
wouter
b2e1fbbaea - Revert fix for NetworkService account on windows due to breakage
it causes.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3771 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 14:30:37 +00:00
wouter
5b61840c67 - Trunk is called 1.5.10 (with previous fixes already in there to 2
june).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3770 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 12:18:43 +00:00
ralph
852ea8802a - Possibility to lookup local_zone regardless the taglist.
- Added local_zone/taglist/acl unit test.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3767 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 14:31:30 +00:00
wouter
4f8df458fc - Improve threadsafety for openssl 0.9.8 ecdsa dnssec signatures.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3766 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 13:02:02 +00:00
ralph
e4444eecc9 - Lookup localzones by taglist from acl.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 08:36:19 +00:00
wouter
18feecde03 - Fix #773: Non-standard Python location build failure with pyunbound.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3763 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 08:18:20 +00:00
wouter
9a6e4de566 - free acl-tags, acltag-action and acltag-data config lists during
initialisation to free up memory for more entries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3761 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 14:57:24 +00:00
wouter
2bdc9222e3 - access-control-tag-action and access-control-tag-data config
directives.
- make depend


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3759 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 13:47:24 +00:00
wouter
7384cd8c71 - local-zone-override config directive.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3758 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 10:00:25 +00:00
wouter
31df915761 - access-control-tag config directive.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3754 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 08:33:59 +00:00
wouter
80be34d8bd - Better help text from -h (from Ray Griffith).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3753 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 07:38:34 +00:00
wouter
fe7792c174 - Fix to not ignore return value of chown() in daemon startup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3752 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-03 07:38:53 +00:00
wouter
4caa839785 - re-documented localzone tags in example.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3751 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 15:07:10 +00:00
wouter
46159cbca8 - Fix (for 1.5.10): Fix unbound-anchor.exe file location defaults to
Program Files with (x86) appended.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3750 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 15:03:44 +00:00
wouter
2fab3c5c80 - tag for release 1.5.9rc1.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3749 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 13:00:20 +00:00
wouter
7ef1ed776a - un-document localzone tags.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3747 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 12:13:30 +00:00
wouter
0a811103cb - Fix #752: retry resource temporarily unavailable on control pipe.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3746 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 09:34:43 +00:00
wouter
45728bf2c1 - Fix distinction between free and CRYPTO_free in dsa and ecdsa alloc.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3745 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 08:31:17 +00:00
wouter
d9ce73c79e - Fix libubound for edns optlist feature.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3744 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 07:17:38 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies).
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 16:55:22 +00:00
wouter
f3d914e425 - generic edns option parse and store code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 15:08:05 +00:00
wouter
fe7a6167dc - compat strsep implementation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3738 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 12:27:41 +00:00
wouter
bcdf937a9d - Fix windows service to be created run with limited rights, as a
network service account, from Mario Turschmann.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3734 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 11:41:49 +00:00
wouter
33fe81ab58 - Attempted fix for #765: _unboundmodule missing for python3.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3733 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-30 14:26:45 +00:00
wouter
1ad184b5e2 - Fix time in case answer comes from cache in ub_resolve_event().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3732 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-30 12:48:11 +00:00
wouter
665f715789 - Fix #768: Unbound Service Sometimes Can Not Shutdown
Completely, WER Report Shown Up.  Close handle before closing WSA.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3731 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 13:49:54 +00:00
wouter
d65265678e - Document write permission to directory of trust anchor needed.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3730 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 07:51:35 +00:00
wouter
3e16023c94 - Fix #770: Small subgroup attack on DH used in unix pipe on localhost
if unbound control uses a unix local named pipe.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3729 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 06:50:49 +00:00
wouter
f43aba4792 - Updated patch from Charles Walker.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3728 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-26 06:49:44 +00:00
wouter
94815f49b2 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3727 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 13:10:29 +00:00
wouter
8caa2f8f76 - remove memory leak from lame-check patch.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3726 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 13:07:13 +00:00
wouter
ac4562081c - disable-dnssec-lame-check config option from Charles Walker.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3725 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 12:17:42 +00:00
wouter
5a63d01b42 - Fix #767: Reference to an expired Internet-Draft in
harden-below-nxdomain documentation.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3724 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-23 12:51:55 +00:00
ralph
6f1a304b44 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3723 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 14:13:04 +00:00
ralph
c33ba2b2c4 - No QNAME minimisation fall-back for NXDOMAIN answers from DNSSEC signed zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3722 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 14:04:27 +00:00
wouter
05188b4fc8 - Fix #766: dns64 should synthesize results on timeout/errors.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3721 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 06:35:49 +00:00
wouter
e99c41d4b6 - Fix #761: DNSSEC LAME false positive resolving nic.club.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3720 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-18 14:09:12 +00:00
wouter
c5303b37ba - trunk updated with output of flex 2.6.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3719 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-17 15:01:24 +00:00
wouter
d03179e264 - Fix memory leak in out-of-memory conditions of local zone add.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3717 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-06 06:56:51 +00:00
wouter
706088d4fb - Fix sldns with static checking fixes copied from getdns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3716 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-29 15:02:00 +00:00
wouter
510f53edb9 - Fix #759: 0x20 capsforid no longer checks type PTR, for
compatibility with cisco dns guard.  This lowers false positives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3715 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-28 07:24:50 +00:00
wouter
d71745a17e - Fix some malformed reponses to edns queries get fallback to nonedns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3701 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-18 11:56:55 +00:00
wouter
6fd683c0aa - cachedb module event handling design.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3700 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-15 14:19:00 +00:00
wouter
32bea2003b - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3699 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-14 14:55:29 +00:00
wouter
704a4a7c48 - cachedb module framework (empty).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-14 14:50:18 +00:00
wouter
018d9e9265 - Fix #753: document dump_requestlist is for first thread.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3697 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-12 15:10:31 +00:00
wouter
6fa4d6f2a8 - Fix #749: unbound-checkconf gets SIGSEGV when use against a
malformatted conf file.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3696 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-24 12:30:47 +00:00
wouter
7824663801 - Document permit-small-holddown for 5011 debug.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3695 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-24 08:10:40 +00:00
wouter
7b6e5dd9c7 - OpenSSL 1.1.0 portability, --disable-dsa configure option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3689 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-23 08:19:49 +00:00
wouter
bb32d6f82c - OPENSSL_config is deprecated, removing.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3688 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 11:44:03 +00:00
wouter
bcc54c168d - ERR_remove_state deprecated since openssl 1.0.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3687 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 11:38:50 +00:00
wouter
a75003f99b - acx_nlnetlabs.m4 to v34, with -ldl -pthread test for libcrypto.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3686 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 10:22:40 +00:00
wouter
cb943bad34 - Fix test for openssl to use HMAC_Update for 1.1.0.
- acx_nlnetlabs.m4 to v33, with HMAC_Update.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3685 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 10:10:10 +00:00
wouter
094f0f5d8f - Fix dnstap-log-resolver-response-messages, from Nikolay Edigaryev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3684 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 09:04:21 +00:00
wouter
3002991ef1 - Fix compile of getentropy_linux for SLES11 servicepack 4.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3683 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 08:25:03 +00:00
ralph
dfff30e7ee - Validate QNAME minimised NXDOMAIN responses.
- If QNAME minimisation is enabled, do cache lookup for QTYPE NS in
   harden-below-nxdomain.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3682 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-18 15:44:41 +00:00
ralph
8061e51f9b - Limit number of QNAME minimisation iterations.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3681 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:44:41 +00:00
wouter
18e05e8afb - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3680 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:07:33 +00:00
wouter
4ecf673365 - Fix #746: Fix unbound sets CD bit on all forwards.
If no trust anchors, it'll not set CD bit when forwarding to another
  server.  If a trust anchor, no CD bit on the first attempt to a
  forwarder, but CD bit thereafter on repeated attempts to get DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3679 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:01:59 +00:00
wouter
d6c8fc8e04 - Fix ip-transparent for ipv6 on FreeBSD, thanks to Nick Hibma.
Attribute fix.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3678 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 08:33:30 +00:00
wouter
23eed13fbe - Fix ip-transparent for tcp on freebsd.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3676 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 08:13:25 +00:00
wouter
60d06dae7c - Fix ip-transparent for ipv6 on FreeBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3675 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 07:20:35 +00:00
wouter
cc92e91d47 - ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for
binding to an IP address while the interface or address is down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-15 09:35:48 +00:00
wouter
c6f9086908 Fix compile for ub_event code with older libev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3672 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-14 13:45:51 +00:00
wouter
bc104354fd - Fix warnings in ifdef corner case, older or unknown libevent.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3671 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-14 11:30:44 +00:00
wouter
74a2747178 - For test put free in pluggable api in parenthesis.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3670 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 13:54:08 +00:00
wouter
3a7bd99cf2 - No side effects in tolower() call, in case it is a macro.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3669 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 13:46:46 +00:00
wouter
f1fdb9c958 - Fix libev usage of dispatch return value.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3668 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 12:57:09 +00:00
wouter
6e15a6d9fa - Remove warning about unused parameter in event_pluggable.c.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3663 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 08:09:18 +00:00
wouter
c20ef7f2ae - Fixup backend2str for libev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3660 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 14:39:48 +00:00
wouter
7470ecfdca - Fixup of compile fix for pluggable event API from P.Y. Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3659 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 12:54:35 +00:00
wouter
aaf1ed9f3f Reverted wrong fix.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3658 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 12:53:56 +00:00
wouter
a5c620d824 - Compile fix for pluggable event API from P.Y. Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3654 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 11:04:52 +00:00
wouter
edb30a7f74 - Updated L root IPv6 address.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3652 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 08:23:46 +00:00
wouter
a56db8244f - Updated configure and ltmain.sh.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3651 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 08:20:52 +00:00
wouter
3f127a5019 - iana ports fetched via https.
- iana portlist updated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3649 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-08 08:00:42 +00:00
wouter
e93f50f768 - Fix #747: assert in outnet_serviced_query_stop.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3646 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-07 10:00:08 +00:00
wouter
787cdd6edf - configure tests for the weak attribute support by the compiler.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3645 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-03 15:59:25 +00:00
wouter
fb81dd7f57 - Fix #745: unbound.py - idn2dname throws UnicodeError when idnname
contains trailing dot. (Fix from Ralph)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3644 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:18:38 +00:00
wouter
40fd246b09 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3643 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:16:35 +00:00
wouter
d32ae1efcf - 1.5.8 release tag
- trunk contains 1.5.9 in development.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3642 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:15:05 +00:00
wouter
93773aa8b2 - Fix that NSEC3 negative cache is used when there is no salt.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3639 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-24 15:02:35 +00:00
wouter
f446519985 - Fix OpenBSD asynclook lock free that gets used later (fix test code).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3638 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-24 14:52:28 +00:00
wouter
ee22e96f85 - sorted ubsyms.def file with exported libunbound functions.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3634 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-23 13:05:34 +00:00
wouter
ad524d32ce - ub_ctx_set_stub() function for libunbound to config stub zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3632 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-23 10:43:10 +00:00
wouter
135242a7b0 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3631 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 14:38:48 +00:00
wouter
811692e34b - load gost algorithm if digest is seen before key algorithm.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3630 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 12:17:03 +00:00
wouter
65be72159e - load gost algorithm into unbound-host.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3628 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 12:11:36 +00:00
wouter
71e764c00d - Print understandable debug log when unusable DS record is seen.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3627 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 10:48:23 +00:00
wouter
271b8da762 - Fix that "make install" fails due to "text file busy" error.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3626 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-17 15:51:57 +00:00
wouter
5ad82c4e0b - Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3625 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-17 08:02:32 +00:00
wouter
033c8fe770 - wait for sendto to drain socket buffers when they are full.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3624 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-15 09:54:52 +00:00
wouter
985d70f311 - ip-transparent option for FreeBSD with IP_BINDANY socket option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3623 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-15 08:17:54 +00:00
wouter
1459ca9220 - insecure-lan-zones: yesno config option, patch from Dag-Erling
Smørgrav.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3619 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-09 13:25:59 +00:00
wouter
431da7609c - Test for type OPENPGPKEY.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3618 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-09 08:45:09 +00:00
wouter
596bdef685 - RR Type OPENPGPKEY support (draft-ietf-dane-openpgpkey-07).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3617 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 16:13:03 +00:00
wouter
662ac80377 - RR Type CSYNC support RFC 7477, in debug printout and config input.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3615 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 15:37:17 +00:00
wouter
8bc70ac10b - Fix patch typo in prevuous commit for 734 from Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3614 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 08:17:00 +00:00
wouter
f3ab2837c5 - Neater cmdline_verbose increment patch from Edgar Pettijohn.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3613 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-29 08:06:51 +00:00
wouter
ac992dd71a - Fix #741: log message for dnstap socket connection is more clear.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3612 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-27 17:12:26 +00:00
wouter
bbb8e0a1ce - Made netbsd sendmsg test nonfatal, in case of false positives.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3610 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-27 07:44:47 +00:00
wouter
91faa15b6c - fix netbsd interface_automatic complain about unimplemented.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3609 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 16:14:28 +00:00
wouter
89de1bdd21 - Fix cmsg alignment for argument to sendmsg on NetBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3608 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 14:11:39 +00:00
wouter
cea70916c3 - Use arc4random instead of random in tests (because it is
available, possibly as compat, anyway).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3607 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 09:15:22 +00:00
wouter
88fbc332f2 - Fix #734: chown the pidfile if it resides inside the chroot.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3604 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 08:05:04 +00:00
wouter
8012eab87c - Fix #738: Swig should not be invoked with CPPFLAGS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3603 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-25 08:07:50 +00:00
wouter
e00935abbe - Squelch 'cannot assign requested address' log messages unless
verbosity is high, it was spammed after network down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3602 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-19 15:37:54 +00:00
wouter
5bb6c20a70 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3601 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-14 08:33:54 +00:00
wouter
eb39bf4782 - Fix to simplify empty string checking from Michael McConville.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3600 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-14 08:28:46 +00:00
wouter
d3aae30ae8 - Fix #734: Do not log an error when the PID file cannot be chown'ed.
Patch from Simon Deziel.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3599 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-12 08:04:42 +00:00
wouter
c231f7696b - Fix test if -pthreads unused to use better grep for portability.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3598 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-11 13:44:02 +00:00
wouter
f76f8d0bad - Update aclocal, autoconf output with new versions (1.15, 2.4.6).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3596 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-07 10:34:46 +00:00
wouter
b994ac0b73 - Fix mingw crosscompile for recent mingw.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3594 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-07 10:16:22 +00:00
wouter
276cb19fc7 - Support RFC7686: handle ".onion" Special-Use Domain. It is blocked
by default, and can be unblocked with "nodefault" localzone config.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3593 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 14:02:45 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 10:03:59 +00:00
wouter
2d7be779da - Fixup contrib/aaaa-filter-iterator.patch for moved contents in the
source code, so it applies cleanly again.  Removed unused variable
  warnings.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3589 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-04 10:47:29 +00:00
wouter
ec29bd9578 - Define DEFAULT_SOURCE together with BSD_SOURCE when that is defined,
for Linux glibc 2.20.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3588 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-04 09:52:48 +00:00
ralph
8abfb7f8fc Fix #729: omit use of escape sequences in echo since they are not portable (unbound-control-setup)
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3587 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-15 11:00:59 +00:00
wouter
6d8913fae3 - OSX clang new flto check.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3586 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-11 13:35:09 +00:00
wouter
923d9c7627 - OSX clang, stop -pthread unused during link stage warnings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3583 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-11 13:15:40 +00:00
wouter
ad02262a06 - OSX portability, detect if sbrk is deprecated.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3582 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-11 12:44:44 +00:00
wouter
b3cc4d978c - updated ax_pthread.m4 to version 21 with clang support, this
removes a warning from compilation.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3581 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-11 12:19:12 +00:00
wouter
f8e0e6c54c - remove NULL-checks before free, patch from Michael McConville.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3580 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-11 10:26:15 +00:00
wouter
c6559fcf91 - trunk has 1.5.8 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3579 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-10 08:38:20 +00:00
wouter
443a795676 Fixup name.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3577 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-08 08:25:42 +00:00
wouter
11d11feed4 - Fixup 724 for unbound-control.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3576 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-08 08:15:55 +00:00
ralph
bc65e486f3 Don't minimise forwarded requests.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3575 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-07 15:56:47 +00:00
wouter
d41ae726e2 - Removed unneeded whitespace from example.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3574 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-04 08:01:37 +00:00
wouter
2f658f9d90 Note changelog after rc1.
3 December 2015: Ralph
  - (after rc1 tag)
  - Committed fix to qname minimisation and unit test case for it.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3572 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-03 13:40:16 +00:00
wouter
d62a92e737 1.5.7rc1 tag
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3569 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-03 13:35:17 +00:00
wouter
c4e4d751ae iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3567 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-03 08:10:33 +00:00
wouter
ccc68bf4ea - For 724: Add Changelog to windows binary dist.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3566 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-02 17:55:03 +00:00
wouter
9541f636e4 - Fixup 724: Fix PCA prompt for unbound-service-install.exe.
re-enable stdout printout.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3565 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-02 09:40:05 +00:00
wouter
772f2040e0 undo pointless change.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3564 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 15:18:51 +00:00
wouter
e42114a1eb pointless change for test.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3563 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 14:55:27 +00:00
wouter
a6e8826899 - .gitignore for git users.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3562 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 14:36:21 +00:00
ralph
d19a47950a Qname minimisation review fixes
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3561 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 13:14:00 +00:00
wouter
cbcdb5be09 - Remove stdout printout for unbound-service-install.exe
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3560 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 13:00:57 +00:00
wouter
b930a3d234 - Fixup 724 fix for fname_after_chroot() calls.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3557 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-12-01 08:54:53 +00:00
ralph
481e89ca4c Implemented qname minimisation
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3554 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-30 16:10:26 +00:00
wouter
4b0a905a32 - Fix for #724: conf syntax to read files from run dir (on Windows).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3551 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-30 15:05:26 +00:00
wouter
22c51617c0 - Fix for #720, fix unbound-control-setup windows batch file.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3550 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-25 07:22:05 +00:00
wouter
d34d1951d6 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3549 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-24 11:01:26 +00:00
wouter
f6252ed1e9 - Fix #720: add windows scripts to zip bundle.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3548 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-24 10:55:18 +00:00
wouter
1d60e4519e - Fix that malformed EDNS query gets a response without malformed EDNS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3546 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-20 09:09:55 +00:00
wouter
2435cecb6f - Added assert on rrset cache correctness.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3545 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-20 08:08:11 +00:00
wouter
33c3822724 - spelling fixes from Igor Sobrado Delgado.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-18 14:11:46 +00:00
wouter
aa25b5de3a - newer acx_nlnetlabs.m4.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3543 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-18 07:45:41 +00:00
wouter
9fa96d25a0 - Fixup DER encoded DSA signatures for libnettle.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3540 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 13:31:22 +00:00
wouter
43fa7f193d - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3538 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 11:41:05 +00:00
wouter
0a8bb72c5d - refactor nsec3 hash implementation to be more library-portable.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3535 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 11:30:04 +00:00
wouter
984f91d1b4 - Fix #594. libunbound: optionally use libnettle for crypto.
Contributed by Luca Bruno.  Added --with-nettle for use with
  --with-libunbound-only.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3533 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 09:43:07 +00:00
wouter
34b59b59f4 - Fix for lenient accept of reverse order DNAME and CNAME.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3530 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-16 09:48:51 +00:00
wouter
93a7ac5af3 - Change example.conf: ftp.internic.net to https://www.internic.net
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3529 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-06 09:00:01 +00:00
wouter
ebfac40823 - ACX_SSL_CHECKS no longer adds -ldl needlessly.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3528 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-04 23:16:36 +00:00
wouter
858b388d38 - Fix #718: Fix unbound-control-setup with support for env
without HEREDOC bash support.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3527 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-03 08:13:05 +00:00
wouter
34ac46080c - Fix #716: nodata proof with empty non-terminals and wildcards.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3526 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-29 13:08:15 +00:00
wouter
b7b759b22d - patch from Doug Hogan for SSL_OP_NO_SSLvx options.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3525 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-29 08:32:58 +00:00
wouter
9b650c901d - Fix checklock testcode for linux threads on exit.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3522 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-28 10:28:26 +00:00
wouter
30d1ef6307 - portability, replace snprintf if return value broken.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3518 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-27 13:47:50 +00:00
wouter
8f7160cebb changelog entry.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3517 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-27 12:06:03 +00:00
wouter
ec2efc9fbf - detect libexpat without xml_StopParser function.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3515 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-27 10:22:05 +00:00
wouter
0eccf8950d - isblank() compat implementation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3514 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-27 09:52:16 +00:00
wouter
a3978d1c30 - Fix #714: Document config to block private-address for IPv4
mapped IPv6 addresses.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3513 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-23 07:13:45 +00:00
wouter
00b44c3aa0 - Fix #712: unbound-anchor appears to not fsync root.key.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3512 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-22 07:06:31 +00:00
wouter
3de5fea61f - trunk tracks development of 1.5.7.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3511 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-20 14:01:54 +00:00
wouter
792710cf18 1.5.6rc1 release tag has been created
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3509 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-15 11:44:24 +00:00
wouter
f20f10dec4 - Fix ldns_wire2str_rdata_scan for malformed RRs.
his line, and those below, will be ignored--

M    trunk/doc/Changelog
M    trunk/sldns/wire2str.c


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3507 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-15 09:51:30 +00:00
wouter
e31f10dda7 - Fix segfault in the dns64 module in the formaterror error path.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3506 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-15 09:02:01 +00:00
wouter
c666280ed1 - Fix manpage to suggest using SIGTERM to terminate the server.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3505 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-14 12:22:49 +00:00
wouter
1030490f5a - ANY responses include DNAME records if present, as per Evan Hunt's
remark in dnsop.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3504 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-14 08:02:14 +00:00
wouter
d60f9800b2 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3503 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-09 08:08:31 +00:00
wouter
73ace4957c - Default for ssl-port is port 853, the temporary port assignment
for secure domain name system traffic.
  If you used to rely on the older default of port 443, you have
  to put a clause in unbound.conf for that.  The new value is likely
  going to be the standardised port number for this traffic.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3502 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-09 07:55:21 +00:00
wouter
ad1097190e - trunk tracks the development of 1.5.6.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3500 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-06 09:57:08 +00:00
wouter
21001b4ca8 - makedist.sh: pgp sig echo commands.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3497 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-28 14:46:38 +00:00
wouter
adb3b2e503 prepare 1.5.5rc1 release.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3495 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-28 13:50:36 +00:00
wouter
18d55bcb86 - MAX_TARGET_COUNT increased to 64, to fix up sporadic resolution
failures.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3494 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-28 07:21:48 +00:00
wouter
182c2d6cfb - Fix unbound-control flush that does not succeed in removing data.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3493 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-25 12:39:10 +00:00
wouter
2f41c1d568 - Fix unbound.conf(5) access-control description for precedence
and default.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3492 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 13:04:53 +00:00
wouter
119aae5e4c - Fix minor error in unbound.conf.5.in
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3491 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 12:59:32 +00:00
wouter
d02e766e00 - testbound selftest also works in non-debug mode.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3490 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 09:52:17 +00:00
wouter
949509816f - Fix #705: ub_ctx_set_fwd() return value mishandled on windows.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3489 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 08:59:10 +00:00
wouter
553bf1df1e - Remove confusion comment from canonical_compare() function.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3488 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 08:43:56 +00:00
wouter
52a96d6510 - Fix #702: New IPs for for h.root-servers.net.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3487 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 08:35:03 +00:00
wouter
07b5c17bd3 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3486 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 08:04:45 +00:00
wouter
73d2ca61bf - Fix config globbed include chroot treatment, this fixes reload of
globs (patch from Dag-Erling Smørgrav).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3485 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-09-22 08:04:19 +00:00
wouter
f9de753734 - changed windows setup compression to be more transparent.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3484 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-31 07:44:36 +00:00
wouter
9f1c38eeb4 - Feature #699: --enable-pie option to that builds PIE binary.
- Feature #700: --enable-relro-now option that enables full read-only
  relocation.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3483 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-28 14:27:03 +00:00
wouter
39fee4ebb1 - Fix #697: Get PY_MAJOR_VERSION failure at configure for python
2.4 to 2.6.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3480 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-28 06:56:27 +00:00
wouter
8230d6dc08 - Change default of harden-algo-downgrade to off. This is lenient
for algorithm rollover.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3478 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-24 15:05:10 +00:00
wouter
095bbe40db - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3477 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-24 12:52:40 +00:00
wouter
1116189f7a - Fix deadlock for local data add and zone add when unbound-control
list_local_data printout is interrupted.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3476 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-24 10:49:28 +00:00
wouter
dcb7d29d76 - Reap the child process that libunbound spawns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3473 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-13 14:17:44 +00:00
wouter
7fc17c9a1f - 5011 implementation does not insist on all algorithms, when
harden-algo-downgrade is turned off.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3471 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-13 12:03:53 +00:00
wouter
a3a0e0e274 - Fix #694: configure script does not detect LibreSSL 2.2.2
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3470 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-11 07:32:35 +00:00
wouter
23cd117f74 - Document that local-zone nodefault matches exactly and transparent
can be used to release a subzone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3468 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-04 07:10:26 +00:00
wouter
f242323707 - Fix mktime in unbound-anchor not using UTC.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3467 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 15:00:56 +00:00
wouter
7396d00ba0 - Fix 5011 anchor update timer after reload.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3466 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 11:56:37 +00:00
wouter
f6965de1e8 - Document in the manual more text about configuring locally served
zones.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3465 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 10:34:29 +00:00
wouter
c58e83c3e1 - Added permit-small-holddown config to debug fast 5011 rollover.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3462 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 11:52:12 +00:00
wouter
59859f00f0 - please afl-gcc (llvm) for uninitialised variable warning.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3461 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 08:51:51 +00:00
wouter
7faeaaf3ed - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3459 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:54:08 +00:00
wouter
fbd9cf712d - Fix #690: Reload fails when so-reuseport is yes after changing
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3456 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 07:02:14 +00:00
wouter
8ab8309710 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3455 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:52:53 +00:00
wouter
7f99e7c795 - Fix configure to detect SSL_CTX_set_ecdh_auto.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:30:49 +00:00
wouter
e00efba037 - Enable ECDHE for servers. Where available, use
SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to
  enable ECDHE.  Otherwise, manually offer curve p256.
  Client connections should automatically use ECDHE when available.
  (thanks Daniel Kahn Gillmor)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-20 06:56:01 +00:00
willem
221499af71 SSL_CTX_use_certificate_chain_file() should be used instead of the
SSL_CTX_use_certificate_file() function in order to allow the use of
complete certificate chains even when no trusted CA storage is used or
when the CA issuing the certificate shall not be added to the trusted
CA storage.

Thanks Daniel Kahn Gillmore


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-18 12:34:37 +00:00
wouter
85d4c6ee70 - makedist produces sha1 and sha256 files for created binaries too.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3448 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-13 07:53:53 +00:00
wouter
4ae9e5a7cd - Fix #681: Setting forwarders with unbound-control forward
implicitly turns on forward-first.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3447 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:45:08 +00:00
wouter
64a7f637f5 trunk has 1.5.5 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3446 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:40:12 +00:00
wouter
27ff1a703c - Fix alloc with log for allocation size checks.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3442 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 10:19:42 +00:00
wouter
5bb325336a - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3440 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 07:09:04 +00:00
wouter
50b357376a - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3436 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:33:03 +00:00
wouter
8c62cad20d - Fix #677 Fix DNAME responses from cache that failed internal chain
test.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:27:32 +00:00
wouter
9ee8380800 - Fix #677 Fix CNAME corresponding to a DNAME was checked incorrectly
and was therefore always synthesized (thanks to Valentin Dietrich).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3434 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-22 09:23:43 +00:00
wouter
0e8b1e0111 - RFC 7553 RR type URI support, is now enabled by default.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3433 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-04 12:30:29 +00:00
wouter
0ad11968be - Fix #674: Do not free pointers given by getenv.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3432 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-02 07:31:43 +00:00
wouter
916b3a305d - SOA negative TTL is capped at minimumttl in its rdata section.
- cache-max-negative-ttl config option, default 3600.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3431 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 14:51:36 +00:00
wouter
1c536612d7 - Fix that unparseable error responses are ratelimited.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3429 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 09:27:42 +00:00
wouter
5a5fb60def - Document that ratelimit works with unbound-control set_option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3428 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-26 09:18:21 +00:00
wouter
6e918c13bf - documentation proposes ratelimit of 1000 (closer to what upstream
servers expect from us).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3427 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 12:06:41 +00:00
wouter
9c69d25180 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3426 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 07:29:42 +00:00
wouter
c17574c81a - DLV is going to be decommissioned. Advice to stop using it, and
put text in the example configuration and man page to that effect.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3424 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-20 06:24:06 +00:00
wouter
97ffe64ba3 - Change syntax of particular validator error to be easier for
machine parse, swap rrset and ip adres info so it looks like:
  validation failure <www.example.nl. TXT IN>: signature crypto
  failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN>


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3422 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-10 12:04:22 +00:00
wouter
a2f75d6c35 - caps-whitelist in unbound.conf allows whitelist of loadbalancers
that cannot work with caps-for-id or its fallback.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-01 12:36:16 +00:00
wouter
c2ba182678 - Unit test for type ANY synthesis.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3419 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-30 10:27:27 +00:00
wouter
c309b27814 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3408 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:19:12 +00:00
wouter
258d561704 - Removed contrib/unbound_unixsock.diff, because it has been
integrated, use control-interface: /path in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3407 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:03:34 +00:00
wouter
9763997a7c - Synthesize ANY responses from cache. Does not search exhaustively,
but MX,A,AAAA,SOA,NS also CNAME.
- Fix leaked dns64prefix configuration string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-17 14:58:07 +00:00
wouter
a8a47f27dd #664: Fix issue with Python 3 mapping of FILE* using file_py3.i from ldns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3403 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 14:41:14 +00:00
wouter
18a2a40a6b #664: libunbound-Python: libldns is not used anymore.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3402 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 14:38:38 +00:00
wouter
093ff749cc #664: libunbound examples: produce sorted output.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3401 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 14:37:12 +00:00
wouter
32aa5c4d0b - Fix bug#664: libunbound python3 related fixes (from Tomas Hozza)
Use print_function also for Python2.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3400 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 14:35:55 +00:00
wouter
f77c2a06f1 - Ratelimit does not apply to prefetched queries, and ratelimit-factor
is default 10.  Repeated normal queries get resolved and with
  prefetch stay in the cache.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3399 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 14:18:50 +00:00
wouter
31a8018d22 - Add local-zone type inform_deny, that logs query and drops answer.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3398 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-16 08:23:06 +00:00
wouter
7f56755943 - Fix#663: ssl handshake fails when using unix socket because dh size
is too small.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3396 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-10 13:56:12 +00:00
wouter
15ef4ccca1 - Fix that get_option for cache-sizes does not print double newline.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3395 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-10 13:43:44 +00:00
wouter
79c9a936cb - unbound-control ratelimit_list lists high rate domains.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-10 12:13:59 +00:00
wouter
7062b00d0b - ratelimit feature, ratelimit: 100, or some sensible qps, can be
used to turn it on.  It ratelimits recursion effort per zone.
  For particular names you can configure exceptions in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3391 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-10 09:59:57 +00:00
wouter
5b8cd39902 - Fix crash in dnstap: Do not try to log TCP responses after timeout.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3390 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-08 19:58:06 +00:00
wouter
0557760286 - unbound-control list_insecure command shows the negative trust
anchors currently configured, patch from Jelte Jansen.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3389 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-07 13:50:09 +00:00
wouter
f420142028 typo fix.
(svn:NO TEST)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3388 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-07 12:10:37 +00:00
wouter
ba41e16d3c - Unbound exits with a fatal error when the auto-trust-anchor-file
fails to be writable.  This is seconds after startup.  You can
  load a readonly auto-trust-anchor-file with trust-anchor-file.
  The file has to be writable to notice the trust anchor change,
  without it, a trust anchor change will be unnoticed and the system
  will then become unoperable.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3387 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-07 12:03:05 +00:00
wouter
73c16202a0 - Libunbound skips dos-line-endings from etc/hosts.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3384 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-07 07:51:43 +00:00
wouter
edc6c2102e - Fix #660: Fix interface-automatic broken in the presence of
asymmetric routing.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3383 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-02 10:02:01 +00:00
wouter
410ac6cd67 - rename ldns subdirectory to sldns to avoid name collision.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-26 10:21:38 +00:00
wouter
2672fe9ea9 - remote.c probedelay line is easier to read.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3379 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-26 09:46:06 +00:00
wouter
6d0f96673d - If unknown trust anchor algorithm, and libressl is used, error
message encourages upgrade of the libressl package.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3378 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-25 16:04:05 +00:00
wouter
ca0b049109 - Fix #657: libunbound(3) recommends deprecated
CRYPTO_set_id_callback.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3377 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-25 08:06:35 +00:00
wouter
d8e38074d4 - Fix segfault on user not found at startup (from Maciej Soltysiak).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3375 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-23 20:20:15 +00:00
wouter
d1bf57dfd1 - Fixes to add integer overflow checks on allocation (defense in depth).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-20 15:36:25 +00:00
wouter
6478a1cbfd - Add ip-transparent config option for bind to non-local addresses.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-19 09:50:35 +00:00
wouter
9f56dc9102 - Use reallocarray for integer overflow protection, patch submitted
by Loganaden Velvindron.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3365 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-17 08:24:24 +00:00
wouter
653053c1f9 - Fixup compile on cygwin, more portable openssl thread id.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3362 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-16 10:51:32 +00:00
wouter
2fae92734c - Updated default keylength in unbound-control-setup to 3k.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3361 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-12 15:34:03 +00:00
wouter
9f96c2b6be - Fix warning on sign compare in getentropy_linux.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3360 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-10 10:29:55 +00:00
wouter
2e18cfb209 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3359 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-10 10:17:45 +00:00
wouter
8df8b4f32e print svnroot for windows makedist. 1.5.4 in configure.ac
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3358 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-10 10:03:45 +00:00
wouter
8fbbf04b40 - Fix lintian warning in unbound-checkconf man page (from Andreas
Schulze).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3356 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-10 08:00:40 +00:00
wouter
d6893f2e8c - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3355 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-09 13:39:27 +00:00
wouter
5a4a7863b6 - Fix #644: harden-algo-downgrade option, if turned off, fixes the
reported excessive validation failure when multiple algorithms
  are present.  It allows the weakest algorithm to validate the zone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3354 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-09 13:30:37 +00:00
wouter
4d50899043 - stats reports tcp usage, of incoming-num-tcp buffers.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3353 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-05 15:23:14 +00:00
wouter
78eba96a8b - Document that incoming-num-tcp increase is good for large servers.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3352 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-05 11:41:29 +00:00
wouter
d8b346e409 - contrib/unbound_smf22.tar.gz: Solaris SMF installation/removal
scripts.  Contributed by Yuri Voinov.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3351 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-05 08:18:59 +00:00
wouter
1024b260d8 - Document windows 8 tests.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3350 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-04 13:24:27 +00:00
wouter
798e778410 - store caps_response with best response in case downgrade response
happens to be the last one.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3348 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-04 09:31:26 +00:00
wouter
a0c81b8339 - many nameservers does not try to compare more than max-sent-count,
parse failures start 0x20 fallback procedure.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3347 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-04 09:06:05 +00:00
wouter
2c4190b319 - 0x20 fallback improved, better handling of servfail responses,
they do not count as missing comparisons (except if all are failed),
  and better handling of inability to find nameservers, no more
  nameservers can be found results in fallback acceptance.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3346 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-04 08:30:17 +00:00
wouter
279f75db29 - Patch from Brad Smith that syncs compat/getentropy_linux with
OpenBSD's version (2015-03-04).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3345 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-04 07:18:09 +00:00
wouter
00e9db6ccf - tag 1.5.3rc1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3344 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-03 13:37:53 +00:00
wouter
aa16f669d5 iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3342 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-02 11:03:14 +00:00
wouter
3233c052fe - Fix #647 crash in 1.5.2 because pwd.db no longer accessible after
reload.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3341 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-20 14:48:04 +00:00
wouter
d42f4ad137 - Fix #646 Portability to Solaris, -lrt for getentropy_solaris.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3340 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-20 14:03:41 +00:00
wouter
a4674309ba - Portability to Solaris 10, use AF_LOCAL.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3339 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-20 13:55:09 +00:00
wouter
98d9836bb9 - Use the getrandom syscall introduced in Linux 3.17 (from Heiner Kallweit).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3338 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-20 09:19:32 +00:00
wouter
fe7698cc6a - 1.5.2 release tag.
- svn trunk contains 1.5.3 under development.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3337 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-19 15:16:40 +00:00
wouter
f37eaf65ad - Fix #643: doc/example.conf.in: unnecessary whitespace.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3335 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-13 11:02:46 +00:00
wouter
f6f1839628 - tag 1.5.2rc1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3334 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-12 15:33:20 +00:00
wouter
14726c8248 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3331 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-11 07:24:57 +00:00
wouter
62bd0e84f6 - Fix scrubber with harden-glue turned off to reject NS (and other
not-address) records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3330 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-10 14:01:45 +00:00
wouter
16b3909f91 - Fix validation failure in case upstream forwarder (ISC BIND) does
not have the same trust anchors and decides to insert unsigned NS
  record in authority section.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3329 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-09 11:44:46 +00:00
wouter
6856b6a202 - infra-cache-min-rtt patch from Florian Riehm, for expected long
uplink roundtrip times.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3328 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-02-02 08:46:22 +00:00
wouter
10e38ef90d - Portability fix for Solaris ('sun' is not usable for a variable).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3326 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-30 15:32:59 +00:00
wouter
674e12318a - Fix 0x20 capsforid fallback to omit gratuitous NS and additional
section changes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3323 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-30 09:35:38 +00:00
wouter
ff2cccec3d - Fix pyunbound byte string representation for python3.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3322 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-29 16:10:51 +00:00
wouter
f8c9f95aa9 - Fix unintended use of gcc extension for incomplete enum types,
compile with pedantic c99 compliance (from Daniel Dickman).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3321 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-26 08:46:40 +00:00
wouter
5154b3406d - windows port fixes, no AF_LOCAL, no chown, no chmod(grp).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3319 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-23 15:23:58 +00:00
wouter
14416f4ca0 - unbound-checkconf -f prints chroot with pidfile path.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3316 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-16 14:31:02 +00:00
wouter
de842e85fe - unit test for local unix connection. Documentation and log_addr
does not inspect port for AF_LOCAL.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3315 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-16 13:11:07 +00:00
wouter
b5373c8c4b iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3314 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-13 13:46:48 +00:00
wouter
84bdd4e765 - Fix pyunbound ord call, portable for python 2 and 3.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3313 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-12 15:20:20 +00:00
wouter
a5bed77fec - Cast sun_len sizeof to socklen_t.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3312 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-12 08:20:43 +00:00
wouter
cca6635a06 - Fix warnings in pythonmod changes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3311 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-07 09:29:59 +00:00
wouter
d0b507bcdf fix attribution.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3310 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-07 07:49:46 +00:00
wouter
dd182a058c - coded the default of control-use-cert, to yes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3309 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-06 14:54:38 +00:00
wouter
b4fd8fe3d7 - Fixup that patch and uid lookup (only for daemon).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3306 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-06 14:37:45 +00:00
wouter
9537cdfccf - patch for remote control over local sockets, from Dag-Erling
Smorgrav, Ilya Bakulin.  Use control-interface: /path/sock and
  control-use-cert: no.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3304 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-06 14:12:59 +00:00
wouter
c2b7d31586 iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3303 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-06 08:02:41 +00:00
wouter
9d84c30040 - Patch from Philip Paeps to contrib/unbound_munin_ that uses
type ABSOLUTE.  Allows munin.conf: [idleserver.example.net]
  unbound_munin_hits.graph_period minute


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3301 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 14:47:52 +00:00
wouter
ace7f8322b - Updated contrib warmup.cmd/sh to support two modes - load
from pre-defined list of domains or (with filename as argument)
  load from user-specified list of domains, and updated contrib
  unbound_cache.sh/cmd to support loading/save/reload cache to/from
  default path or (with secondary argument) arbitrary path/filename,
  from Yuri Voinov.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3300 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 13:58:51 +00:00
wouter
632dac1f66 attribution.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3299 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 13:53:52 +00:00
wouter
a1a735dcde - Fix #634: fix fail to start on Linux LTS 3.14.X, ignores missing
IP_MTU_DISCOVER OMIT option.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3298 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 13:51:22 +00:00
wouter
74d2262084 - patch from Brad Smith that fixes DESTDIR in unbound-control-setup
for installs where config is not in the prefix location.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3297 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 13:20:04 +00:00
wouter
ad9a0833fe - print query name when max target count is exceeded.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3296 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 13:12:42 +00:00
wouter
5d02af5460 - patch from Stephane Lapie that adds to the python API, that
exposes struct delegpt, and adds the find_delegation function.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3295 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 10:16:36 +00:00
wouter
502bdd5a3e - make strip works for unbound-host and unbound-anchor.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3294 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 09:33:31 +00:00
wouter
a3582f1bf5 - getauxval test for ppc64 linux compatibility.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3293 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-01-05 09:13:32 +00:00
wouter
b1061c10c8 - local-zone: example.com inform makes unbound log a message with
client IP for queries in that zone.  Eg. for finding infected hosts.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3292 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-12-09 11:29:17 +00:00
wouter
e3a81d824f - svn trunk has 1.5.2 in development.
- config.guess and config.sub update from libtoolize.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3291 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-12-09 08:24:27 +00:00
wouter
c89cf11661 - Fix CVE-2014-8602: denial of service by making resolver chase
endless series of delegations.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3289 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-12-08 15:09:18 +00:00
wouter
0137e92031 - Fix bug#632: unbound fails to build on AArch64, protects
getentropy compat code from calling sysctl if it is has been removed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3287 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-12-02 00:19:42 +00:00
wouter
10095fe0dd - Add include to getentropy_linux.c, hopefully fixing debian build.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3286 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-30 02:00:29 +00:00
wouter
52f9c2bd44 - Fix makefile for build from noexec source tree.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3285 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-28 20:28:38 +00:00
wouter
f41c40ff4b Fix attribution and mention company (no restriction on use).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3282 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-27 10:54:05 +00:00
wouter
4b9ef41aee - Fix libunbound undefined symbol errors for main.
Referencing main does not seem to be possible for libunbound.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3280 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-26 16:18:53 +00:00
wouter
d8e8de4760 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3279 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-24 08:46:24 +00:00
wouter
1af7cc2ff3 - Fix log at high verbosity and memory allocation failure.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3278 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-24 08:17:45 +00:00
wouter
02f99bb274 - Fix crash on multiple thread random usage on systems without
arc4random.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3277 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-21 08:22:18 +00:00
wouter
95de7e9b8f - fix compat/getentropy_win.c check if CryptGenRandom works and no
immediate exit on windows.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3276 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-20 12:44:00 +00:00
wouter
f9213eaf93 - Fix cdflag dns64 processing.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3275 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-19 08:43:08 +00:00
wouter
1100adad50 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3274 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-18 15:16:25 +00:00
wouter
0778829809 - Fix that CD flag disables DNS64 processing, returning the DNSSEC
signed AAAA denial.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3273 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-18 15:15:57 +00:00
wouter
d437febed1 - Fix #627: SSL_CTX_load_verify_locations return code not properly
checked.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3271 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-17 08:10:49 +00:00
wouter
12e488a497 - parser with bison 2.7
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3270 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-14 15:59:30 +00:00
wouter
e550629a45 - Patch from Stephanie Lapie that implements aaaa-filter, added
to contrib/aaaa-filter-iterator.patch.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3269 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-13 09:03:47 +00:00
wouter
dfa131be35 - trunk has 1.5.1 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3268 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-12 21:17:12 +00:00
wouter
a1cf7d3817 - Patch from James Raftery, always print stats for rcodes 0..5.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3267 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-12 17:25:59 +00:00
wouter
f203aa89f4 - Removed 'increased limit open files' log message that is written
to console.  It is only written on verbosity 4 and higher.
  This keeps system bootup console cleaner.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3266 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-12 11:04:43 +00:00
wouter
5072f3026d - Patch from Robert Edmonds fixes hyphens in unbound-anchor man page.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3265 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-12 11:00:31 +00:00
wouter
dc2c95d2fd - Patch from Robert Edmonds to build pyunbound python module
differently.  No versioninfo, with -shared and without $(LIBS).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3264 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-12 10:58:33 +00:00
wouter
4f7379b3e9 - review fix from Ralph.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3262 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-11 14:27:35 +00:00
wouter
8cd66c6e1d tag 1.5.0rc1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3260 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-11 14:18:32 +00:00
wouter
8af379fd54 - version number in svn trunk is 1.5.0
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3259 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-11 13:23:50 +00:00
wouter
21c836d58c - Fix bug where forward or stub addresses with same address but
different port number were not tried.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3258 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-11-11 13:10:44 +00:00