townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

3064 Commits

Author SHA1 Message Date
ralph
5489a6b54b - Use NSEC with longest ce to prove wildcard absence. 
- Only use *.ce to prove wildcard absence, no longer names.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4460 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-29 13:46:57 +00:00
wouter
1926bbe54f - ltrace.conf file for libunbound in contrib. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4449 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-25 09:31:49 +00:00
wouter
74d2a9dacd - Print fatal errors about remote control setup before log init, 
so that it is printed to console.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4448 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-23 15:59:18 +00:00
wouter
f84f924e28 - Fix that unbound-checkconf -f flag works with auto-trust-anchor-file 
for startup scripts to get the full pathname(s) of anchor file(s).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4447 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-23 14:20:17 +00:00
wouter
98b9046b25 - Fix #3397: Fix that when the cache contains an unsigned DNAME in 
the middle of a cname chain, a result without the DNAME could
  be returned.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4446 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-22 14:30:16 +00:00
wouter
82881b17a4 - Fix #3397: Fix that cachedb could return a partial CNAME chain. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4445 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-22 13:54:20 +00:00
wouter
bf48ee6359 - Accept tls-upstream in unbound.conf, the ssl-upstream keyword is 
also recognized and means the same.  Also for tls-port,
  tls-service-key, tls-service-pem, stub-tls-upstream and
  forward-tls-upstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4444 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-22 08:35:44 +00:00
wouter
58bcba72fd - make depend: code dependencies updated in Makefile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4443 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-19 09:52:40 +00:00
wouter
b9d181057d - iana port update. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4442 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-19 09:51:50 +00:00
wouter
7911e492f9 - patch for CVE-2017-15105: vulnerability in the processing of 
wildcard synthesized NSEC records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4441 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-19 09:50:35 +00:00
wouter
51c4c9777b - trunk has 1.6.9 with fix and previous commits. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4440 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-19 09:49:32 +00:00
ralph
a28f91e754 - Copy query and correctly set flags on REFUSED answers when cache snooping is 
not allowed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4436 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-04 15:16:19 +00:00
ralph
faf687efe9 - Fix queries being leaked above stub when refetching glue. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4434 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-03 16:54:22 +00:00
wouter
fe7c8d17cb - Remove clang optimizer disable, 
Fix that expiration date checks don't fail with clang -O2.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4431 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-02 10:48:00 +00:00
wouter
ed00a97133 - Fix that DS queries with referral replies are answered straight 
away, without a repeat query picking the DS from cache.
  The correct reply should have been an answer, the reply is fixed
  by the scrubber to have the answer in the answer section.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4430 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-02 09:48:22 +00:00
wouter
bd2f389b35 - Also disable -flto for clang, to make incep-expi signature check 
work.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4429 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-15 12:54:02 +00:00
wouter
b4462e04f5 - iana port update. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4428 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-15 12:42:45 +00:00
wouter
e905d51302 - Fix timestamp failure because of clang optimizer failure, by 
disabling -O2 when the compiler --version is clang.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4427 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-15 10:25:41 +00:00
wouter
a1ad3c1de2 - authzone work, transfer connect. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4420 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-12 15:39:45 +00:00
ralph
9437250636 - Fix qname-minimisation documentation (A QTYPE, not NS) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4419 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-12 09:23:13 +00:00
ralph
1a699f5936 - Check whether --with-libunbound-only is set when using --with-nettle or 
--with-nss. 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4418 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-07 10:51:22 +00:00
wouter
f9decd7b0c - Fix link failure on OmniOS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4414 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-04 08:28:16 +00:00
wouter
3338ac15eb - auth zone work. probe hostname lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4411 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-01 14:02:28 +00:00
wouter
8fb3f71338 - Fix #3299 - forward CNAME daisy chain is not working 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4409 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-30 08:34:20 +00:00
wouter
9efb904454 - auth xfer work on probe timer and lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4405 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-14 15:58:24 +00:00
wouter
44915a87fe - Fix #2882: Unbound behaviour changes (wrong) when domain-insecure is 
set for stub zone.  It no longer searches for DNSSEC information.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4404 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-14 10:01:44 +00:00
wouter
1f3ab65816 no AAAA shortcuts. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4403 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-13 14:15:10 +00:00
wouter
6f02e4bb69 - Fix qname minimisation to send AAAA queries at zonecut like type A. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4402 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-13 12:11:38 +00:00
wouter
e23fd1317f - Fix #2801: Install libunbound.pc. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4401 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-13 10:25:01 +00:00
wouter
3ccb98dd2f - Fix #2492: Documentation libunbound. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4399 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-07 08:05:12 +00:00
wouter
a022c9bd0e - Fix #2141 - for libsodium detect lack of entropy in chroot, print 
a message and exit.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4398 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-03 15:08:14 +00:00
wouter
f03a2ab411 - Fix #2034 - Autoconf and -flto. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4397 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-03 10:52:25 +00:00
wouter
a0ffe3a276 - Fix #2362: TLS1.3/openssl-1.1.1 not working. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4396 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-03 07:40:36 +00:00
wouter
6c4ad226a5 - make ip-transparent option work on OpenBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4393 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-02 09:34:19 +00:00
wouter
72b70b5c9d - Fix #1913: ub_ctx_config is under circumstances thread-safe. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4392 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-02 08:23:52 +00:00
wouter
c9ce6f5969 - iana port update. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4391 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-31 13:18:04 +00:00
wouter
ba572d6f60 - lexer output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4390 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-31 10:07:01 +00:00
wouter
470f64df29 - Document that errno is left informative on libunbound config read 
fail.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4389 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-31 08:18:18 +00:00
ralph
d1c485bc4c - Fix #2031: Double included headers 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4388 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-25 13:30:32 +00:00
ralph
24b4835ec3 - Fix #1949: [dnscrypt] make provider name mismatch more obvious. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4387 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-25 10:13:35 +00:00
ralph
9c22e42723 - Fixed libunbound manual typo. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4386 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-25 08:38:24 +00:00
ralph
aa79205c9d - Update B root ipv4 address. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4385 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-24 14:50:20 +00:00
wouter
f6767b6484 - authzone work, probe timer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 09:03:36 +00:00
wouter
6f83cdd0a5 - lint for recent authzone commit. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4377 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-18 06:43:51 +00:00
wouter
77d3988ed5 - Work on local root zone code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4376 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-17 15:16:31 +00:00
wouter
8ea0120a1a - Better documentation for cache-max-negative-ttl. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4375 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-17 12:53:21 +00:00
wouter
cbb64b3ab6 - [dnscrypt] prevent dnscrypt-secret-key, dnscrypt-provider-cert 
duplicates
- [dnscrypt] introduce dnscrypt-provider-cert-rotated option,
  from Manu Bretelle.
	This option allows handling multiple cert/key pairs while only
	distributing some of them.
	In order to reliably match a client magic with a given key without
	strong assumption as to how those were generated, we need both key and
	cert. Likewise, in order to know which ES version should be used.
	On the other hand, when rotating a cert, it can be desirable to only
	serve the new cert but still be able to handle clients that are still
	using the old certs's public key.
	The `dnscrypt-provider-cert-rotated` allow to instruct unbound to not
	publish the cert as part of the DNS's provider_name's TXT answer.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4373 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-17 07:34:49 +00:00
wouter
3110caa07e - Fix #1749: With harden-referral-path: performance drops, due to 
circular dependency in NS and DS lookups.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-17 07:22:58 +00:00
wouter
9ebff362bf - trunk has version 1.6.8. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4371 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-10 07:38:56 +00:00
wouter
8a71dc5fc9 - tag 1.6.7 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-10 07:10:35 +00:00
wouter
ddc2388235 - Fix spelling in unbound-control man page. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4368 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-06 07:00:10 +00:00
wouter
486ac179d8 - tag 1.6.7rc1 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4366 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 14:31:39 +00:00
ralph
95863bf217 - Use RCODE from A response on DNS64 synthesized answer. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4365 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 13:55:04 +00:00
wouter
201305283a - Fix some more crpls in testdata for different signaling default. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4363 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 10:44:16 +00:00
wouter
c523378d4e - Fix trust-anchor-signaling works in libunbound. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4362 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 10:37:34 +00:00
ralph
c42f53614d - Set trust-anchor-signaling default to yes 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4360 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 10:17:25 +00:00
wouter
970f539bde - Fix param unused warning for windows exportsymbol compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4359 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-02 12:24:48 +00:00
ralph
8f05e958fa - Fix #1450: Generate again patch contrib/aaaa-filter-iterator.patch (by Danilo 
G. Baio). 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4358 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-25 12:49:47 +00:00
ralph
4d5b70bbb0 - Log name of looping module 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4357 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-21 08:19:47 +00:00
wouter
235b9c147e Spelling fixes are from Josh Soref. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4356 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-20 07:01:52 +00:00
wouter
f5d8f50530 - Fix DNSCACHE_STORE_ZEROTTL to be bigger than 0xffff. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4355 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 11:54:58 +00:00
wouter
6c6d33763d - use a cachedb answer even if it's "expired" when serve-expired is yes 
(patch from Jinmei Tatuya).
- trigger refetching of the answer in that case (this will bypass
  cachedb lookup)
- allow storing a 0-TTL answer from cachedb in the in-memory message
  cache when serve-expired is yes


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 09:08:29 +00:00
ralph
c881f5fe5e - Fix #1400: allowing use of global cache on ECS-forwarding unless 
always-forward.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4352 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 09:09:10 +00:00
wouter
87a108b346 - Fix #1440: [dnscrypt] client nonce cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:55:08 +00:00
wouter
e2aaf5e9a7 - Fix #1435: Please allow UDP to be disabled separately upstream and 
downstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4349 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:42:24 +00:00
wouter
5251daea1e - Fix that looping modules always stop the query, and don't pass 
control.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4348 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 07:54:24 +00:00
wouter
becbd20b1f - tag 1.6.6rc2, became 1.6.6 on 18 sep. trunk 1.6.7 in development. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4347 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 07:49:41 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:29:28 +00:00
wouter
ddd249d0df - Fix unbound-host to report error for DNSSEC state of failed lookups. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4343 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:11:43 +00:00
wouter
dfb5ebda09 - tag 1.6.6rc2 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4341 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-13 06:57:39 +00:00
wouter
86daa970ea - Add dns64 for client-subnet in unbound-checkconf. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4340 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-12 05:43:46 +00:00
wouter
6e590364b5 - Fix #1434: Fix windows openssl 1.1.0 linking. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4338 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-05 08:28:39 +00:00
ralph
6d18c7e23d - Fix #1412: QNAME minimisation strict mode not honored 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4337 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-04 15:15:27 +00:00
wouter
3a1a576d65 - makedist fix for windows binaries, with openssl 1.1.0 windres fix, 
and expat 2.2.4 install target fix.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4336 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-04 14:02:15 +00:00
wouter
526d1e88ac note tag 1.6.6rc1 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4335 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-04 12:55:25 +00:00
wouter
d8d4c8c5e9 - Recommend 1472 buffer size in unbound.conf 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4332 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-01 14:54:37 +00:00
wouter
15de64688c - Fix #1418: [ip ratelimit] initialize slabhash using 
ip-ratelimit-slabs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4330 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 12:02:14 +00:00
wouter
dfb7048b28 dnscrypt cache size configuration option. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4328 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 11:58:29 +00:00
wouter
6a32cf0cc5 - make depend 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4327 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 08:08:45 +00:00
wouter
ce208bb8fe - Fix #1417: [dnscrypt] shared secret cache counters, and works when 
dnscrypt is not enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4326 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 08:06:17 +00:00
wouter
7e69f3e28c - but reverted that, tests fails with that escape. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4325 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 07:48:09 +00:00
wouter
74148f584a - For #1417: escape ; in dnscrypt tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4324 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 07:43:54 +00:00
wouter
99f7948a7b - Fix #1424: cachedb:testframe is not thread safe. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4323 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 07:35:08 +00:00
wouter
e7919c4128 - Fix 1416: qname-minimisation breaks TLSA lookups with CNAMEs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4322 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-30 13:13:43 +00:00
wouter
40e912fbf8 - updated contrib/fastrpz.patch to apply with configparser changes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4321 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-30 11:12:03 +00:00
wouter
818ac2ab2e - fixup WKS test on buildhost without servicebyname. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4319 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 08:56:22 +00:00
wouter
1f650790ae - new keys and certs for dnscrypt tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4318 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 08:48:19 +00:00
wouter
a5990315f7 - zero qinfo in handle_request, this zeroes local_alias and also the 
qname member.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4317 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 07:31:45 +00:00
wouter
9500dddad7 - Fix #1414: fix segfault on parse failure and log_replies. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4316 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-29 07:28:29 +00:00
wouter
d566f3c891 - Fix WKS records on kvm autobuild host, with default protobyname 
entries for udp and tcp.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4314 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 13:00:45 +00:00
wouter
398021b8fd - Small fixes for the shared secret cache patch. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4313 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 11:05:51 +00:00
wouter
8e49ed87c3 - Fix #1415: [dnscrypt] shared secret cache, patch from 
Manu Bretelle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4312 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 10:55:41 +00:00
wouter
737cb7483b - iana portlist update 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4311 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 08:29:00 +00:00
wouter
8b3bfc6ca7 - Fix #1415: patch to free dnscrypt environment on reload. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4310 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-28 07:49:42 +00:00
wouter
6aa6c48e10 - Fix to reclaim tcp handler when it is closed due to dnscrypt buffer 
allocation failure.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4309 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-22 13:40:44 +00:00
wouter
51808a94ba - make depend 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4308 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-22 07:44:41 +00:00
wouter
a2f9551c88 - Fix #1407: Add ECS options check to unbound-checkconf. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4307 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-22 07:43:59 +00:00
wouter
489ad287a4 - Fix #1402: squelch invalid argument error for fd_set_block on windows. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4306 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-21 14:15:32 +00:00
wouter
2cbdee08dc Better text for change: 
- Fix install of trust anchor when two anchors are present, makes both
	  valid. Checks hash of DS but not signature of new key. This fixes
	  the root.key file if created when unbound is installed between
	  sep11 and oct11 2017.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4305 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-21 12:48:05 +00:00
wouter
69cabf506e - Fix issue on macOX 10.10 where TCP fast open is detected but not 
implemented causing TCP to fail. The fix allows fallback to regular
  TCP in this case and is also more robust for cases where connectx()
  fails for some reason.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4304 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-21 11:44:46 +00:00
wouter
e682b0be06 - Fix install of trust anchor when two anchors are present, makes both 
valid.  Checks hash of DS but not signature of new key.  This fixes
  installs between sep11 and oct11 2017.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4302 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-21 08:57:44 +00:00
wouter
aa09eec8a4 - Patch to show DNSCrypt status in help output, from Carsten 
Strotmann.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4298 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-10 07:13:44 +00:00
wouter
36be78aae2 - Remove spaces from Makefile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4297 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-08 09:43:51 +00:00
wouter
94f66ee00f - Fix #1398: make cachedb secret configurable. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4295 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-08 09:04:51 +00:00
wouter
df7d82a267 - Fix #1397: Recursive DS lookups for AS112 zones names should recurse. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4294 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-07 07:42:45 +00:00
ralph
e5513455fb Do not add rrset_bogus and query ratelimiting stats per thread. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4293 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 15:32:24 +00:00
ralph
d073e3e262 - Added stats for queries that have been ratelimited by domain recursion. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 12:52:33 +00:00
ralph
2fc821809c - Do not reset rrset.bogus stats when called using stats_noreset. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4291 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 10:50:46 +00:00
ralph
ebd76ef01f - Remove unused iter_env member (ip6arpa_dname) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4290 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 09:29:21 +00:00
wouter
4b3602ba84 - Fix #1394: mix of serve-expired and response-ip could cause a crash. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4289 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 07:13:12 +00:00
wouter
436f873b63 - iana update 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4288 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 11:58:18 +00:00
wouter
8afb918284 - Fix #1365: Add Ed25519 support using libnettle. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4286 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 10:44:30 +00:00
wouter
cce1adf972 - Fix DSA configure switch (--disable dsa) for libnettle and libnss. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4285 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 10:09:05 +00:00
wouter
756034dbbe - Fix compile with libnettle 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4281 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:52:20 +00:00
wouter
daa625cfca - remove warning from windows compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4280 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:30:12 +00:00
wouter
6521d82bb4 - squelch TCP fast open error on FreeBSD when kernel has it disabled, 
unless verbosity is high.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4279 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:14:42 +00:00
wouter
2f22e0e328 - upgrade aclocal(pkg.m4 0.29.1), config.guess(2016-10-02), 
config.sub(2016-09-05).
- annotate case statement fallthrough for gcc 7.1.1.
- flex output from flex 2.6.1.
- snprintf of thread number does not warn about truncated string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4278 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:04:18 +00:00
wouter
55c6dcd7ad - Fix #1349: allow suppression of pidfiles (from Daniel Kahn Gillmor). 
With the -p option unbound does not create a pidfile.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4276 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-17 08:26:49 +00:00
wouter
fe4f8851d3 - Fix #1350: make cachedb backend configurable (from JINMEI Tatuya). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4275 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-17 08:21:19 +00:00
wouter
4ebb3f5a05 - Redirect all localhost names to localhost address for RFC6761. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4273 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-11 14:29:54 +00:00
wouter
7e2a0e920a - Fix #1344: RFC6761-reserved domains: test. and invalid. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4272 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-11 13:27:33 +00:00
wouter
f48dadeb86 test report again 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4270 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-06 14:21:52 +00:00
wouter
61e5213d35 Test -f report. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4269 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-06 14:16:47 +00:00
wouter
3562699ab7 run tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4267 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-06 13:41:13 +00:00
wouter
df993ad549 - Fix svn hooks for tdir (selected if testcode/mini_tdir.sh exists). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4266 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-06 13:39:28 +00:00
wouter
2ca4cc3a77 - Fix tests to use .tdir (from Manu Bretelle) instead of .tpkg. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4263 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-06 13:27:05 +00:00
wouter
b56b968400 - Fix 1332: Bump verbosity of failed chown'ing of the control socket. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4262 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-05 06:59:45 +00:00
wouter
c6925b28c4 - Fix openssl 1.1.0 load of ssl error strings from ssl init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4260 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 13:37:37 +00:00
wouter
1b563e5696 - Fix pythonmod link line option flag. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4259 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 12:48:53 +00:00
wouter
4de115410e - Fix #1331: libunbound segfault in threaded mode when context is 
deleted.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4258 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 11:41:32 +00:00
wouter
cc82f13e59 - Fix for unbound-checkconf, check ipsecmod-hook if ipsecmod is turned 
on.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4257 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 07:14:37 +00:00
wouter
ad5295b585 - enhancement for hardened-tls for DNS over TLS. Removed duplicated 
security settings.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4255 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-29 11:45:43 +00:00
wouter
13034f04ab - iana portlist update 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4254 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-29 07:36:02 +00:00
wouter
f43c401e9a - Fix python example0 return module wait instead of error for pass. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4253 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-29 07:28:11 +00:00
wouter
4e5449c213 - Fix that infra cache host hash does not change after reconfig. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4252 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-27 15:23:17 +00:00
wouter
cea4abd035 - Remove signed unsigned warning from authzone. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4251 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-27 10:54:15 +00:00
wouter
32a5f8a4a4 - Trunk contains 1.6.5, with changes from 26, 27 june. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4250 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-27 10:53:52 +00:00
wouter
d55836727f - unbound-control dump_infra prints port number for address if not 53. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4248 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-26 12:31:49 +00:00
wouter
f133b9c997 - First fix for zero b64 and hex text zone format in sldns. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4247 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-26 11:36:54 +00:00
wouter
51f724b6bb - Better fixup of dnscrypt_cert_chacha test for different escapes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4246 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-26 09:06:42 +00:00
wouter
32dad468a8 - (for 1.6.5): fixup of dnscrypt_cert_chacha test (from Manu Bretelle). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4244 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-23 06:56:59 +00:00
wouter
5e080f7572 - Tag 1.6.4rc2 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4242 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-22 12:08:18 +00:00
ralph
a153480dc3 - Added fastrpz patch to contrib 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4241 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-22 12:03:32 +00:00
wouter
053cd7da44 - Fix #1316: heap read buffer overflow in parse_edns_options. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4240 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-21 11:50:39 +00:00
wouter
5695a40bfc - Fix lintian typo. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4239 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-20 13:34:01 +00:00
wouter
8e8844567b - Tag 1.6.4rc1 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4237 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-20 07:38:52 +00:00
wouter
42f0849d55 - Fix warning in pythonmod under clang compiler. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4236 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-20 07:05:30 +00:00
ralph
de47cbbb23 - Fix #1277: disable domain ratelimit by setting value to 0. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4235 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 13:22:43 +00:00
wouter
885c704e9f - Fix to unlock view in view test. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4234 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 11:16:31 +00:00
wouter
787f93a0f7 - Fix dnscrypt chacha cert support ifdefs. 
- Fix dnscrypt chacha cert unit test escapes in grep.
- Remove asynclook tests that cause test and purifier problems.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4233 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 08:20:44 +00:00
wouter
254bbfbb25 - Fix memory leak in dnscrypt config read. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4231 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 07:55:52 +00:00
wouter
af45e926d7 - Fix memory leak in sldns_buffer_new_frm_data. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4230 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 07:42:52 +00:00
wouter
89fcd3d300 - Free callback in edns-subnetmod on exit and restart. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4229 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 07:31:30 +00:00
wouter
056ed919da - Fix #1301: memory leak in respip and tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4228 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 07:27:49 +00:00
wouter
9beb7daffa - Fix query for refetch_glue of stub leaking to internet. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4227 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-15 15:00:07 +00:00
wouter
11a4c3b818 - Fix stub zone queries leaking to the internet for 
harden-referral-path ns checks.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4226 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-15 07:59:05 +00:00
wouter
60d7c41f55 - More fixes in depth for buffer checks in 0x20 qname checks. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4225 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-13 14:34:44 +00:00
wouter
0826cc1278 - Fix #1280: Unbound fails assert when response from authoritative 
contains malformed qname.  When 0x20 caps-for-id is enabled, when
  assertions are not enabled the malformed qname is handled correctly.
- 1.6.3 tag created, with only #1280 fix, trunk is 1.6.4 development.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4224 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-13 14:25:47 +00:00
wouter
ec862f2591 - Fix #1279: Memory leak on reload when python module is enabled. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4220 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-13 07:10:58 +00:00
wouter
a45cc6ec21 - Fix #1278: Incomplete wildcard proof. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4218 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-12 10:11:28 +00:00
ralph
449e49f035 - Added domain name based ECS whitelist. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4217 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-08 14:44:55 +00:00
wouter
deae0ea058 - dnscrypt unit tests with chacha. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4216 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-08 08:27:49 +00:00
wouter
fcf637ada3 - Detect chacha for dnscrypt at configure time. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4215 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-08 08:17:38 +00:00
wouter
df9b92185e - Add dnscrypt XChaCha20 tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4213 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-07 11:39:02 +00:00
wouter
f509bb7928 - Fix that unbound-control can set val_clean_additional and val_permissive_mode. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4210 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-07 07:00:02 +00:00
wouter
6f850db329 - Fix #1276: [dnscrypt] add XChaCha20-Poly1305 cipher. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4208 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-06 12:52:26 +00:00
wouter
668abbad3d - Fix #1275: cached data in cachedb is never used. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4207 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-06 12:08:14 +00:00
wouter
2d77abbb5c - renumbering B-Root's IPv6 address to 2001:500:200::b. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4206 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-06 09:33:09 +00:00
wouter
f38d3d8395 - Add an explicit type cast for TCP FASTOPEN fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4205 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-06 07:59:32 +00:00
ralph
006f36fa5b - Fix #1274: automatically trim chroot path from dnscrypt key/cert paths (from 
Manu Bretelle).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4204 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-01 09:51:05 +00:00
wouter
5e127ea83a - Fix fastopen EPIPE fallthrough to perform connect. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4203 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-01 09:06:14 +00:00
ralph
badd1be3bb - Also use global local-zones when there is a matching view that does not have 
any local-zone specified. 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4202 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-31 11:45:39 +00:00
wouter
156f8c7582 - If MSG_FASTOPEN gives EPIPE fallthrough to try normal tcp write. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4201 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-31 11:09:15 +00:00
wouter
d2f8b3b9ba - Fix #1273: cachedb.c doesn't compile with -Wextra. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4200 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-31 05:42:23 +00:00
ralph
9babcab33c - Fix #1269: inconsistent use of built-in local zones with views. 
- Add defaults for new local-zone trees added to views using unbound-control.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4199 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-30 13:04:19 +00:00
wouter
5825c88452 - Support for openssl EVP_DigestVerify. 
- Support for the ED25519 algorithm with openssl (from openssl 1.1.1).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4198 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-30 12:28:25 +00:00
wouter
2747bc0ae4 - Fix assertion for low buffer size and big edns payload when worker 
overrides udpsize.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4195 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-29 07:32:45 +00:00
ralph
c8ebc3394f - Added redirect-bogus.patch to contrib directory. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4194 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-26 12:09:38 +00:00
wouter
d2ae534d08 - printout localzone for duplicate local-zone warnings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4193 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-26 11:09:16 +00:00
wouter
34d91aca25 - exec_prefix is by default equal to prefix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4192 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-26 10:47:18 +00:00
wouter
e33b8e0c9f - Fix #1270: unitauth.c doesn't compile with higher warning level 
and optimization


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4191 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-26 06:50:48 +00:00
wouter
b8e1e6cc10 - authzone cname chain, no rrset duplicates, wildcard doesn't change 
rrsets added for cname chain.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4189 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-24 12:26:44 +00:00
wouter
973a59617e - iana portlist update 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4183 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 10:33:15 +00:00
wouter
e781fc07b4 - first services/authzone check in, it compiles and reads and writes 
zonefiles.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4178 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 09:32:40 +00:00
wouter
c79f03f5dd - Fix #1268: SIGSEGV after log_reopen. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4177 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-22 07:20:59 +00:00
wouter
2761880332 and compatibility with BoringSSL. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4175 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-18 07:20:26 +00:00
wouter
45b027b371 - Fix #1267: Libunbound validator/val_secalgo.c uses obsolete APIs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4174 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-18 07:15:16 +00:00
wouter
209fe3ebd1 - Fix #1265 to use /bin/kill. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4173 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-18 07:08:55 +00:00
wouter
fa6f7799e3 - Fix #1265: contrib/unbound.service contains hardcoded path. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4171 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-17 14:50:10 +00:00
george
af5c54a227 - Use qstate's region for IPSECKEY rrset (ipsecmod). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4169 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-17 13:22:06 +00:00
wouter
bff243b130 - Fix type AVC sldns RR definition. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4162 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 15:00:36 +00:00
wouter
c19a0cbb0d - better module memory lookup, fix of unbound-control shm names for 
module memory printout of statistics.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 14:16:59 +00:00
wouter
28deb7c3de - updated configure, dependencies and flex output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4159 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 13:21:10 +00:00
george
51e798d701 - Implemented opportunistic IPsec support module (ipsecmod). 
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 12:39:24 +00:00
wouter
4e579c3fd9 - document trust-anchor-signaling in example config file. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4157 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 07:50:42 +00:00
wouter
448be5e887 - updated dependencies in the makefile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4155 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 07:28:50 +00:00
wouter
31e253e294 - Fix queries for nameservers under a stub leaking to the internet. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4154 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-12 15:10:10 +00:00
wouter
eebaef35c9 - Adjust servfail by iterator to not store in cache when serve-expired 
is enabled, to avoid overwriting useful information there.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4153 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-12 12:16:41 +00:00
ralph
f7bb634c06 - Add 'c' to getopt() in testbound. 
- iana portlist update.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4152 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-09 15:02:39 +00:00
wouter
f9c3b4b818 - Set SO_REUSEADDR on outgoing tcp connections to fix the bind before 
connect limited tcp connections.  With the option tcp connections
  can share the same source port (for different destinations).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4151 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-08 10:41:03 +00:00