Commit Graph

3214 Commits

Author SHA1 Message Date
wouter
c19a0cbb0d - better module memory lookup, fix of unbound-control shm names for
module memory printout of statistics.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-16 14:16:59 +00:00
wouter
28deb7c3de - updated configure, dependencies and flex output.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4159 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-16 13:21:10 +00:00
george
51e798d701 - Implemented opportunistic IPsec support module (ipsecmod).
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-16 12:39:24 +00:00
wouter
4e579c3fd9 - document trust-anchor-signaling in example config file.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4157 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-16 07:50:42 +00:00
wouter
448be5e887 - updated dependencies in the makefile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4155 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-16 07:28:50 +00:00
wouter
31e253e294 - Fix queries for nameservers under a stub leaking to the internet.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4154 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-12 15:10:10 +00:00
wouter
eebaef35c9 - Adjust servfail by iterator to not store in cache when serve-expired
is enabled, to avoid overwriting useful information there.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4153 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-12 12:16:41 +00:00
ralph
f7bb634c06 - Add 'c' to getopt() in testbound.
- iana portlist update.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4152 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-09 15:02:39 +00:00
wouter
f9c3b4b818 - Set SO_REUSEADDR on outgoing tcp connections to fix the bind before
connect limited tcp connections.  With the option tcp connections
  can share the same source port (for different destinations).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4151 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-08 10:41:03 +00:00
wouter
c7dfc3053b - Fix tcp-mss failure printout text.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4150 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-08 07:15:48 +00:00
wouter
dbad074478 - sldns SMIMEA and AVC definitions, same as getdns definitions.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4148 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 14:48:52 +00:00
wouter
7c8e9d6cc1 - Fix sldns parse and printout of TSIG RRs.
The printout text format is the same as dig uses.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4145 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 13:53:06 +00:00
ralph
865b0eb154 - Added mesh_add_sub to add detached mesh entries.
- Use mesh_add_sub for key tag signaling queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4144 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 13:17:56 +00:00
wouter
68faf5f1b7 - Fix sldns int16_data parse.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4143 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 12:15:06 +00:00
wouter
31f0f438e1 - Fix sldns wire2str printout of RR type CAA tags.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4142 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 12:05:10 +00:00
wouter
b8fff5236f - Added test for leak of stub information.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4141 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-02 09:16:54 +00:00
wouter
0c37eb95a7 Fix #1258: 64bit getting installed in C:\Program Files (x86).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4140 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-01 14:57:36 +00:00
wouter
12aadd1da8 - Fix #1258: Windows 10 X64 unbound 1.6.2 service will not start.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4139 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-01 14:41:40 +00:00
wouter
de5995245a - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4138 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-01 13:29:48 +00:00
wouter
216dce82e4 - Fix #1259: "--disable-ecdsa" argument overwritten
by "#ifdef SHA256_DIGEST_LENGTH@daemon/remote.c".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4137 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-01 07:34:48 +00:00
ralph
0be5e03a03 - Implemented trust anchor signaling using key tag query.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4134 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-26 12:58:13 +00:00
wouter
30af680c75 - Based on #1257: check parse limit before t increment in sldns RR
string parse routine.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4133 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-26 09:03:15 +00:00
wouter
56fa55c4c2 - trunk contains 1.6.3 version number (changes from 1.6.2 back from
when the 1.6.2rc1 tag has been created).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4132 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-24 12:30:55 +00:00
wouter
0a217826f9 variables get_option and set_option also for dnscrypt.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4130 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-24 09:00:45 +00:00
wouter
9c78af8fd0 - unbound-checkconf -o allows query of dnstap config variables.
Also unbound-control get_option.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4129 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-24 08:30:32 +00:00
ralph
2c2c4f6c2a - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4128 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-21 10:26:01 +00:00
ralph
4a6a87e6c3 - Fix #1254: clarify ratelimit-{for,below}-domain (from Manu Bretelle).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4127 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-21 10:20:35 +00:00
ralph
85a5a277c6 - Fix #1253: unused variable in edns-subnet/addrtree.c:getbit().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4126 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-18 13:25:09 +00:00
ralph
e61bcbfd71 - Fix #1252: more indentation inconsistencies.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4125 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-18 09:00:52 +00:00
wouter
6e077f9cf9 - (for 1.6.3:) unbound.h exports the shm stats structures. They use
type long long and no ifdefs, and ub_ before the typenames.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4117 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-13 12:47:29 +00:00
ralph
7ab393f952 - Added ECS unit test (from Manu Bretelle).
- ECS documentation fix (from Manu Bretelle). 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4116 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-13 08:49:32 +00:00
wouter
ca3bbbaf26 - tag for 1.6.2rc1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4114 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-13 07:37:07 +00:00
wouter
059c3b9f93 - Fix #1250: inconsistent indentation in services/listen_dnsport.c.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4113 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-13 07:17:05 +00:00
wouter
91dc0c2527 - subnet mem value is available in shm, also when not enabled,
to make the struct easier to memmap by other applications,
  independent of the configuration of unbound.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4112 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-12 15:01:11 +00:00
ralph
09aa92b446 - Set SHM ECS memory usage to 0 when module not loaded.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4111 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-12 13:51:34 +00:00
ralph
ec8e746c14 - Fix #1249: unbound doesn't return FORMERR to bogus ECS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4110 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-12 13:12:21 +00:00
ralph
6bb149e7b9 - Properly check for allocation failure in local_data_find_tag_datas.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4109 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-12 12:44:53 +00:00
ralph
9c39f97933 - Fix #1247: unbound does not shorten source prefix length when forwarding ECS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4108 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-12 11:47:18 +00:00
ralph
630d010b05 - Display ECS module memory usage.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4106 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-11 13:10:30 +00:00
wouter
69b95138b8 better description.
- harden-algo-downgrade: no also makes unbound more lenient about
	  digest algorithms in DS records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4105 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 13:56:31 +00:00
wouter
606e079e89 - harden algo downgrade also makes unbound more lenient about digest
algorithms in DS records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4104 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 13:38:50 +00:00
ralph
1d3e451335 - Use correct identifier for SHM destroy.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4103 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 12:58:26 +00:00
ralph
d8a0ad2f75 - Zero initialize addrtree allocation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4102 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 10:46:54 +00:00
ralph
957c97805b Respip dereference after NULL check.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4101 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 10:18:22 +00:00
ralph
9b5ca3ffd8 - Remove ECS option after REFUSED answer
- Fix small memory leak in edns_opt_copy_alloc



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4100 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-10 09:12:04 +00:00
george
fb883575c5 - Fix pythonmod for cb changes.
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4099 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-07 17:07:16 +00:00
ralph
1acd41add5 Unlock view in respip unit test
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4098 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-07 08:57:05 +00:00
wouter
b4ee3a800a - Fix pythonmod for cb changes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4097 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 14:17:37 +00:00
ralph
9d03b5781d - remove malloc from inplace_cb_register
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4095 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 13:41:49 +00:00
ralph
4113eb0a41 - Generalise inplace callback (de)registration
- (de)register inplace callbacks for module id
- No unbound-control set_option for ECS options
- Deprecated client-subnet-opcode config option
- Introduced client-subnet-always-forward config option
- Changed max-client-subnet-ipv6 default to 56 (as in RFC)
- Removed extern ECS config options
- module_restart_next now calls clear on all following modules
- Also create ECS module qstate on module_event_pass event


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 13:13:06 +00:00
wouter
3ff65cf677 - Fix respip for braces when locks arent used.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4091 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 11:57:27 +00:00
wouter
532e7adc95 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4090 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 07:04:34 +00:00
wouter
9951a634b9 - Small fixup for documentation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4089 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-06 06:55:55 +00:00
wouter
f3b334c5f2 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4088 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-04 13:46:45 +00:00
wouter
5262f39894 - Fix #1244: document that use of chroot requires trust anchor file to
be under chroot.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4087 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-04 13:39:33 +00:00
ralph
5db6e95520 - Do not add current time twice to TTL before ECS cache store.
- Do not touch rrset cache after ECS cache message generation.
- Use LDNS_EDNS_CLIENT_SUBNET as default ECS opcode.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4086 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-03 09:36:18 +00:00
wouter
34de886973 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4085 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-03 09:07:17 +00:00
wouter
3ad4ef86b2 - Fix #1217: Add metrics to unbound-control interface showing
crypted, cert request, plaintext and malformed queries (from
  Manu Bretelle).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4084 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-04-03 09:03:32 +00:00
wouter
7d2b8dcf4c - Remove (now unused) event2 include from dnscrypt code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4082 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-27 06:27:22 +00:00
george
e8104361b1 - Update Changelog.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4081 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-24 11:02:26 +00:00
wouter
ac4f0b210f - Fix #1239: configure fails to find python distutils if python
prints warning.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4079 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-23 10:23:38 +00:00
wouter
0380b96b0a - Fix #1229: Systemd service sandboxing, options in wrong sections.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4078 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-22 07:22:34 +00:00
wouter
b56b1d258a - Fix #1238: segmentation fault when adding through the remote
interface a per-view local zone to a view with no previous
  (configured) local zones.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4077 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-22 07:19:38 +00:00
ralph
12728301d7 - Merge EDNS Client subnet implementation from feature branch into main branch,
using new EDNS processing framework.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-21 12:08:17 +00:00
wouter
072eb0621c - Fix doxygen for dnscrypt files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4073 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-21 08:50:17 +00:00
wouter
e385b865d5 - fixup for lruhash (whitespace and header file comment).
- dnscrypt tests.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4072 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-20 15:51:34 +00:00
wouter
d1cd3545e2 - lru_demote and lruhash_insert_or_retrieve functions for getdns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4068 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-20 15:25:06 +00:00
wouter
25d0a7279d - make depend, autoconf, remove warnings about statement before var.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4066 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-20 15:09:06 +00:00
wouter
a48c8c5ba0 - #1217. DNSCrypt support, with --enable-dnscrypt, libsodium and then
enabled in the config file from Manu Bretelle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4065 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-20 14:55:31 +00:00
wouter
8eb62715cf - Fix #1237 - Wrong resolving in chain, for norec queries that get
SERVFAIL returned.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4064 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-17 14:32:25 +00:00
wouter
7230af0dcb - Patch for view functionality for local-data-ptr from Björn Ketelaars.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4063 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-17 08:01:40 +00:00
wouter
1e6a871864 - trustanchor tags are sorted. reusable routine to fetch taglist.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4056 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-16 15:04:18 +00:00
wouter
bd9bcfa75f - Fix that looped DNAMEs do not cause unbound to spend effort.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4055 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-16 14:32:58 +00:00
wouter
27d8c63674 - Add trustanchor.unbound CH TXT that gets a response with a number
of TXT RRs with a string like "example.com. 2345 1234" with
  the trust anchors and their keytags.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4051 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-16 09:17:58 +00:00
wouter
838e7b0434 - Fix #1235: Fix too long DNAME expansion produces SERVFAIL instead
of YXDOMAIN + query loop, reported by Petr Spacek.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4049 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-13 08:27:01 +00:00
wouter
78b0cf1216 - testbound understands Deckard MATCH rcode question answer commands.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4048 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-13 08:15:07 +00:00
wouter
7d444915c1 - Fix #1234: shortening DNAME loop produces duplicate DNAME records
in ANSWER section.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4047 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-10 13:04:24 +00:00
wouter
e69494bdc0 - unbound-control list local zone and data commands listed in the
help output.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4046 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-09 16:25:32 +00:00
wouter
7dd4463598 - --disable-sha1 disables SHA1 support in RRSIG, so from DNSKEY and
DS records.  NSEC3 is not disabled.
- fake-sha1 test option; print warning if used.  To make unit tests.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4043 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-09 13:18:08 +00:00
wouter
277b6ba85c - fix enum conversion warnings
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4038 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-08 08:21:51 +00:00
wouter
3988f19986 - swig version 2.0.1 required.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4037 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-08 07:57:06 +00:00
wouter
3220b2ae3b - make depend for build dependencies.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4036 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-08 07:54:41 +00:00
wouter
099cd16231 - Response actions based on IP address from Jinmei Tatuya (Infoblox).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-07 14:58:51 +00:00
wouter
3b1a3fa1ff - Fix #1230: swig version 2.0.0 is required for pythonmod, with
1.3.40 it crashes when running repeatly unbound-control reload.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4034 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-07 10:40:45 +00:00
wouter
87794fb647 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4033 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-06 15:33:30 +00:00
wouter
69efb2698b - Fix #1229: Systemd service sandboxing in contrib/unbound.service.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4032 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-06 15:27:36 +00:00
ralph
403fa84b7e - Fix testpkts.c, check if DO bit is set, not only if there is an OPT record.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4031 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-28 13:11:05 +00:00
wouter
78563f1b2c - For #1227: if we have sha256, set the cipher list to have no
known vulns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4030 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-28 08:23:25 +00:00
wouter
13c6a464c9 - Fix #1226: provide official 32bit binary for windows.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4028 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-27 15:05:52 +00:00
wouter
fe989a1dbc - Fix #1227: Fix that Unbound control allows weak ciphersuits.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4027 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-27 14:40:30 +00:00
wouter
dd06544e6e meant NetBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4026 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-24 15:53:34 +00:00
wouter
01244ec53e - include sys/time.h for new shm code on OpenBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4025 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-24 15:51:19 +00:00
wouter
f219044e98 - make depend, autoconf, doxygen and lint fixed up.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4024 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-23 16:27:47 +00:00
wouter
f0a9c86a73 - Patch from Luiz Fernando Softov for Stats Shared Memory.
- unbound-control stats_shm command prints stats using shared memory,
  which uses less cpu.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4020 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-23 12:05:05 +00:00
wouter
aa13e3c345 - Fix doc/CNAME-basedRedirectionDesignNotes.pdf zone static to
redirect.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4019 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-23 08:27:31 +00:00
wouter
32e6e2640a - Fix #1224: Fix that defaults should not fall back to "Program Files
(x86) if Unbound is 64bit by default on windows.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4018 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-22 07:31:32 +00:00
wouter
a58f1fde37 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4017 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-21 14:15:05 +00:00
wouter
c2d23741b0 trunk has 1.6.2
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4016 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-21 14:06:48 +00:00
wouter
d56005b252 - sldns updated for vfixed and buffer resize indication from getdns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4014 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-16 09:48:03 +00:00
wouter
a344dce639 - sldns has ED25519 and ED448 algorithm number and name for display.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4013 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-15 09:38:15 +00:00
wouter
efd7215463 tag 1.6.1rc3
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4011 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-14 13:42:46 +00:00
george
a5ccca80e7 - Fix manpage to include chroot note on Python module section.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4010 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-13 11:47:16 +00:00
wouter
31674bf1e9 - Fix autoconf of systemd check for lack of pkg-config.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4009 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-13 10:15:01 +00:00
wouter
826990b0c1 - Fix dnstap for warning of set but not used.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4007 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-10 08:26:59 +00:00
wouter
3319ab704f - Fix pythonmod for typedef changes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4005 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-10 07:58:38 +00:00
wouter
4da86ec82b - tag 1.6.1rc1.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4003 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-09 08:54:28 +00:00
wouter
326a848749 - Fix for type name change and fix warning on windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4002 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-08 13:55:28 +00:00
wouter
f687a3f61a - Include root trust anchor id 20326 in unbound-anchor.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4000 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-07 15:22:31 +00:00
wouter
cbf70ceef0 - Fix compile on solaris of the fix to use $host detect.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3998 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-06 12:48:42 +00:00
wouter
eaa9a98f37 - fix root_anchor test for updated icannbundle.pem lower certificates.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3997 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-02-03 09:33:32 +00:00
wouter
474df4dd8e - Fix 1211: Fix can't enable interface-automatic if no IPv6 with
more helpful error message.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3995 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-26 11:03:06 +00:00
wouter
2661aa45f1 - Increase MAX_MODULE to 16.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3993 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-20 07:33:54 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 10:25:41 +00:00
wouter
affae9bc85 - Fix to Rename ub_callback_t to ub_callback_type, because POSIX
reserves _t typedefs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3988 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 09:08:15 +00:00
wouter
bc4d0a68d2 - Fix #1206: Some view-related commands are missing from 'unbound-control -h'
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3986 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-12 15:56:05 +00:00
wouter
465f685a4e - Fix to also block meta types 128 through to 248 with formerr.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3985 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-12 08:12:39 +00:00
wouter
6631d1edf0 - Fix #1202: Fix code comment that packed_rrset_data is not always
'packed'.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3984 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-09 09:47:06 +00:00
wouter
29e16cbf75 - Fix #1201: Fix missing unlock in answer_from_cache error condition.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3983 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-06 15:50:39 +00:00
wouter
3510c9fe88 - Fix #1185: Source IP rate limiting, patch from Larissa Feng.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 13:57:12 +00:00
wouter
59ef29ffc6 - Fix #1184: Log DNS replies. This includes the same logging
information that DNS queries and response code and response size,
  patch from Larissa Feng.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3980 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 11:39:54 +00:00
wouter
87ce833579 - Fix to return formerr for queries for meta-types, to avoid
packet amplification if this meta-type is sent on to upstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3978 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-05 08:14:34 +00:00
wouter
e46a0f2dd5 - Fix reload chdir failure when also chrooted to that directory.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3976 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-03 13:46:00 +00:00
wouter
3ea720544a - configure --enable-systemd and lets unbound use systemd sockets if
you enable use-systemd: yes in unbound.conf.
  Also there are contrib/unbound.socket and contrib/unbound.service:
  systemd files for unbound, install them in /usr/lib/systemd/system.
  Contributed by Sami Kerola and Pavel Odintsov.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3975 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-03 13:43:29 +00:00
wouter
dcffda6131 - Fix #1194: Cross build fails when $host isn't uname for getentropy.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3974 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-02 08:51:50 +00:00
ralph
4087fc2b30 - Fix #1190: Do not echo back EDNS options in local-zone error response.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3972 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-23 11:46:54 +00:00
ralph
9522d3d9f3 - Fix #1188: Unresolved symbol 'fake_dsa' in libunbound.so when built with
Nettle


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3971 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-21 10:29:19 +00:00
ralph
d3e75b9829 - Fix #1191: remove comment about view deletion.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3970 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-19 11:37:05 +00:00
wouter
95a5611b2f - Fix inet_ntop and inet_pton warnings in windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3969 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 13:10:58 +00:00
wouter
d4cc9d64b8 - 64bit is default for windows builds.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3968 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 11:34:24 +00:00
wouter
49bd05b659 - iana portlist update
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3967 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:43:33 +00:00
wouter
f72b5118aa trunk is 1.6.1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3966 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:43:04 +00:00
wouter
fb81ab988d note release.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3965 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-15 08:41:43 +00:00
wouter
fa23cda448 - Fix #1178: attempt to fix setup error at end, pop result values
at end of install.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3963 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-14 08:55:44 +00:00
wouter
1e2b467c73 - Fix unbound-control and ipv6 only.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3962 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-13 14:21:15 +00:00
wouter
5ccd625858 - Fix #1182: Fix Resource leak (socket), at startup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3961 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-13 12:55:55 +00:00
wouter
718ba24feb - Fix #1176: stack size too small for Alpine Linux.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3959 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-09 10:09:01 +00:00
wouter
1ffbe8489b - Fix downcast warnings from visual studio in sldns code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3957 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-08 08:49:12 +00:00
ralph
5b02745221 - Fix remote control without certificate for LibreSSL
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3956 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-07 14:13:01 +00:00
ralph
263909cc1b Add DSA support for OpenSSL 1.1
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3954 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-07 12:58:47 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes,
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-06 13:42:51 +00:00
ralph
1bd4c7b445 - Fix #1173: differ local-zone type deny from unset tag_actions element.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3945 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-05 14:48:49 +00:00
wouter
0a5c542da5 - Fix #1170: document that 'inform' local-zone uses local-data.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3944 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-05 12:59:08 +00:00
ralph
17daa18c33 - hyphen as minus fix, by Andreas Schulze
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3942 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-01 09:34:02 +00:00
ralph
4575fa9149 - Added local-zones and local-data bulk addition and removal functionality in
unbound-control (local_zones, local_zones_remove, local_datas and
  local_datas_remove).                                   
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3941 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-30 11:22:29 +00:00
wouter
c85bc4dac0 - braces in view.c around lock statements.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3939 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-29 15:28:25 +00:00
wouter
730408105b - version 1.6.0 is in the development branch.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3938 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-29 13:33:09 +00:00
wouter
d23b451f6e - new install-sh.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3937 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-28 09:52:02 +00:00
wouter
c4d8a8858a - Fix that with openssl 1.1 control-use-cert: no uses less cpu, by
using no encryption over the unix socket.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3936 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-25 16:14:14 +00:00
wouter
ff49098e7d - patch from Dag-Erling Smorgrav that removes code that relies
on sbrk().


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3934 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 15:50:07 +00:00
ralph
338f46d26f - Added unit test for QNAME minimisation + harden below nxdomain
synergy.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3933 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 13:53:51 +00:00
ralph
b4889ffa4d - QNAME minimisation uses QTYPE=A, therefore always check cache for
this type in harden-below-nxdomain functionality.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3932 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 10:50:53 +00:00
ralph
36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin
consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain
  of the NSEC owner.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 10:10:48 +00:00
wouter
5795b9d972 - Fix unit tests for DS hash processing for fake-dsa test option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3929 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 08:23:24 +00:00
wouter
425b2bfb84 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3928 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-22 08:22:49 +00:00
wouter
2ab2a2ec28 - Fix #1158: reference RFC 8020 "NXDOMAIN: There Really Is Nothing
Underneath" for the harden-below-nxdomain option.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3927 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-21 09:53:43 +00:00
ralph
51aa35e9e6 - Fix #1155: test status code of unbound-control in 04-checkconf, not the status
code from the tee command.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3926 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-10 11:20:27 +00:00
wouter
95d8709a9a - Note that for harden-below-nxdomain the nxdomain must be secure,
this means nsec3 with optout is insufficient.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3925 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 14:49:43 +00:00
ralph
3fb4900c0e - Added stub-ssl-upstream and forward-ssl-upstream options.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3923 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 12:07:52 +00:00
wouter
ba9a05f5e6 - Fix #1154: segfault when reading config with duplicate zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3922 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 08:16:55 +00:00
wouter
7e9e2bfb99 - configure detects ssl security level API function in the autoconf
manner.  Every function on its own, so that other libraries (eg.
  LibreSSL) can develop their API without hindrance.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3921 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-04 08:05:42 +00:00
ralph
c1f7eb0ce5 Set openssl security level to 0 when using aNULL ciphers
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3919 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 16:59:00 +00:00
wouter
b565dd0a77 - log-identity: config option to set sys log identity, patch from
"Robin H. Johnson" <robbat2@gentoo.org>


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3917 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 08:51:40 +00:00
wouter
7763171707 - .gitattributes line for githubs code language display.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3916 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-03 08:29:29 +00:00
wouter
7397821cbd - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3915 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 08:43:14 +00:00
wouter
fd7a40ce90 change to test cronjob-2.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3914 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 08:38:03 +00:00
wouter
c4f88dc5a7 Change to test commit cronjob.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3913 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-11-02 07:22:20 +00:00
wouter
72c74b26b4 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3912 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-31 08:18:17 +00:00
wouter
ab3589f2d1 - Fix failure to build on arm64 with no sbrk.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3911 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-31 08:05:41 +00:00
wouter
bbe0c0a707 - Patch for server.num.zero_ttl stats for count of expired replies,
from Pavel Odintsov.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3910 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-28 15:08:32 +00:00
wouter
7073948a03 - Fix unit tests for openssl 1.1, with no DSA, by faking DSA, enabled
with the undocumented switch 'fake-dsa'.  It logs a warning.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3909 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-26 07:38:00 +00:00
wouter
cb4533e683 - Fix #1134: unbound-control set_option -- val-override-date: -1 works
immediately to ignore datetime, or back to 0 to enable it again.
  The -- is to ignore the '-1' as an option flag.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3908 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-25 11:49:08 +00:00
wouter
76d75d9d0d - Fix #1134: unbound-control set_option val-date-override: -1 works
immediately to ignore datetime, or back to 0 to enable it again.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3907 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-25 11:44:03 +00:00
wouter
78de2ff5ae g.root-servers.net has AAAA address.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3906 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-24 13:11:39 +00:00
wouter
416af5ad2e - serve-expired config option: serve expired responses with TTL 0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3903 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-24 12:43:20 +00:00
wouter
16f0f57b09 - Ported tests for local_cname unit test to testbound framework.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3902 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-21 08:59:56 +00:00
wouter
0d07974baf - Fixup query_info local_alias init.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3899 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 14:55:57 +00:00
wouter
726011b074 - Fix DNSSEC validation of query type ANY with DNAME answers.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3898 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 14:27:13 +00:00
wouter
5da97362ae - fix --enable-dsa to work, instead of copying ecdsa enable.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3897 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 09:22:04 +00:00
wouter
a3d0df3258 - init lzt variable, for older gcc compiler warnings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3896 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 07:57:12 +00:00
wouter
cacf924b0e - suppress compile warning in lex files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3895 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-20 07:46:35 +00:00
wouter
ada0d4354f - Fix #1130: whitespace in example.conf.in more consistent.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3894 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-19 07:15:41 +00:00
wouter
82afa0ef30 - Please doxygen by modifying mesh.h
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3892 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:59:17 +00:00
wouter
d73173c1b5 Fixup changelog bug number to 1118.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3891 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:58:09 +00:00
wouter
3f80d607d4 - Added Requires line to libunbound.pc
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3890 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:57:39 +00:00
wouter
a37c47bc77 - Fix #1117: libunbound.pc sets strange Libs, Libs.private values.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3889 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:56:42 +00:00
wouter
be164dce50 - Fix #1125: unbound could reuse an answer packet incorrectly for
clients with different EDNS parameters, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3888 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:42:08 +00:00
wouter
b77a908a85 - Added documentation doc/CNAME-basedRedirectionDesignNotes.pdf,
from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3887 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:21:35 +00:00
wouter
593353dc9b - Removed patch comments from acllist.c and msgencode.c
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3886 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:20:42 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:18:20 +00:00
wouter
100754f8a6 - Fixup const void cast warning.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3883 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-17 15:05:20 +00:00
wouter
ec9a8f573a - Re-fix #839 from view commit overwrite.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3882 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-17 14:37:59 +00:00
ralph
224d50bc0a - Free view config elements.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3881 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-12 10:09:42 +00:00
ralph
a65e5ddee1 - fix memoryleak logfile when in debug mode.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3880 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-11 13:43:18 +00:00
ralph
1393dff5a3 - Added qname-minimisation-strict config option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3878 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-11 11:32:50 +00:00
ralph
caf867d9be - Fix #1117: spelling errors, from Robert Edmonds
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3877 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-05 09:56:05 +00:00
ralph
083a936fb3 Added views functionality.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-05 09:36:25 +00:00
wouter
52f4ab1682 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-30 09:37:20 +00:00
wouter
785255fed1 - Fix #841: big local-zone's make it consume large amounts of memory.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3874 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 13:11:26 +00:00
wouter
002f758486 - Fix #840: infinite loop in unbound_munin_ plugin on unowned lockfile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3873 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 11:51:14 +00:00
wouter
7f51472812 - Fix #839: Memory grows unexpectedly with large RPZ files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3872 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 08:08:51 +00:00
wouter
30c07c6c16 - Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3871 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-29 07:00:31 +00:00
wouter
e09299a233 - Fix #836: unbound could echo back EDNS options in an error response.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3870 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 12:22:56 +00:00
wouter
e2e6ff5dd3 - Fix dnstap relaying "random" messages instead of resolver/forwarder
responses, from Nikolay Edigaryev.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3869 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 11:56:55 +00:00
wouter
8b8f98a74c 1.5.11 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3868 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-27 11:44:35 +00:00
wouter
e74e2f736a - tag for 1.5.10rc1 release.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3865 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 12:23:16 +00:00
wouter
df7a514d4e - Fix #835: fix --disable-dsa with nettle verify.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3864 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 12:22:07 +00:00
wouter
68babd72f6 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3863 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-20 11:26:42 +00:00
wouter
5c55df0e04 - Test for openssl init_crypto and init_ssl functions.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3860 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 12:03:10 +00:00
wouter
918edc29a0 - Fix 883: error for duplicate local zone entry.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3858 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 10:59:26 +00:00
ralph
3010d4906f iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3857 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 08:49:52 +00:00
ralph
43a31cadce fix potential memory leak in daemon/remote.c and nullpointer dereference in
validator/autotrust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3856 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 08:39:59 +00:00
wouter
2e4d094696 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-13 11:35:33 +00:00
wouter
8ebb041d30 - Silenced flex-generated sign-unsigned warning print with gcc
diagnostic pragma.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3852 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-13 10:44:24 +00:00
wouter
15bda73e48 - Fix #831: workaround for spurious fread_chk warning against petal.c
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3851 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-09 05:55:16 +00:00
wouter
b48ea2743f - Fix #828: missing type in access-control-tag-action redirect results
in NXDOMAIN.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3850 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 14:30:24 +00:00
ralph
8dc79ecaed Take configured minimum TTL into consideration when reducing TTL to original
TTL from RRSIG.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3849 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 12:30:46 +00:00
wouter
9b0f30e072 - Fix incomplete prototypes reported by Dag-Erling Smørgrav.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3848 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 07:23:23 +00:00
wouter
948aaf7c4b - Fix #829: doc of sldns_wire2str_rdata_buf() return value has an
off-by-one typo, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3847 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-05 07:14:56 +00:00
wouter
fcad92b021 - Fix compile with openssl 1.1.0 with api=1.1.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3844 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-02 09:59:09 +00:00
wouter
bcf6551d3c - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3843 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 14:52:33 +00:00
wouter
8d55248c66 - Fix #826: Fix refuse_non_local could result in a broken response.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3841 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 14:34:45 +00:00
wouter
63ee7f3970 - Fix for compile without warnings with openssl 1.1.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3840 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 12:23:59 +00:00
wouter
66d5373d21 - RFC 7958 is now out, updated docs for unbound-anchor.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3839 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-01 07:08:22 +00:00
wouter
ff5789ef78 - Add default root hints for IPv6 E.ROOT-SERVERS.NET, 2001:500:a8::e.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3838 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-29 07:11:35 +00:00
wouter
883854cacb - Fix #777: OpenSSL 1.1.0 compatibility, patch from Sebastian A. Siewior.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3837 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-29 07:05:19 +00:00
ralph
fbbca2612b Clarify local-zone-override entry in unbound.conf.5
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3836 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-25 08:40:42 +00:00
wouter
f2b0ef74a9 -w64 option for makedist
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3834 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-25 07:41:30 +00:00
ralph
55cf3ac58c unbound.conf.5 entries for define-tag, access-control-tag,
access-control-tag-action, access-control-tag-data, local-zone-tag,
and local-zone-override.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3833 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-24 13:43:14 +00:00
ralph
3d013230ed Fix #820: set sldns_str2wire_rr_buf() dual meaning len parameter
in each iteration in find_tag_datas().



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3832 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-24 09:18:38 +00:00
wouter
00bb15e2c3 - Fix #804: lower num_target_queries for iterator also for failed
lookups.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3831 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-23 08:49:01 +00:00
wouter
b80df3881a - Fix #804: unbound stops responding after outage. Fixes queries
that attempt to wait for an empty list of subqueries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3830 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-23 08:30:12 +00:00
wouter
6463ec5061 - Note that OPENPGPKEY type is RFC 7929.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3829 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-08 07:36:20 +00:00
wouter
b1fe9b8ca9 - Fix #807: workaround for possible some "unused" function parameters
in test code, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3828 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-04 07:17:53 +00:00
wouter
56dc36d7ea - use sendmsg instead of sendto for TFO.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3827 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-03 06:20:26 +00:00
wouter
ec1e454439 - Fix #806: wrong comment removed.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3826 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-28 07:13:48 +00:00
wouter
ea8e3d008a - nicer ratelimit-below-domain explanation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3825 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-26 13:37:30 +00:00
wouter
0e53074eaa - Fix #803: confusing (and incorrect) code comment in daemon_cleanup().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3824 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:08:42 +00:00
wouter
d2d9015302 - Fix #802: workaround for function parameters that are "unused"
without log_assert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3823 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:05:52 +00:00
wouter
0df1f8359b - Fix #801: missing error condition handling in
daemon_create_workers().


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3822 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-22 07:02:03 +00:00
wouter
7abd702517 - Fix typo in unbound.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3821 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-20 07:22:26 +00:00
wouter
15a7d5fd1e - Fix #798: Client-side TCP fast open fails (Linux).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3819 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-18 13:54:32 +00:00
wouter
dcc4f7da63 caps-whitelist entry.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3818 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-18 07:53:49 +00:00
wouter
5da50c3277 - Fixed unbound.doxygen for 1.8.11.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3817 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-14 11:26:30 +00:00
wouter
cf6f495613 - TCP Fast open patch from Sara Dickinson.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3814 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-14 07:06:34 +00:00
wouter
2f8e0608fa - access-control-tag-data implemented. verbose(4) prints tag debug.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-07 10:20:05 +00:00
wouter
f48143758c - Fix #788 for nettle 3.0: Failed to build with Nettle >= 3.0 and
--with-libunbound-only --with-nettle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3810 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 14:00:33 +00:00
wouter
b0ae561157 - Fixes for 64bit windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3808 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:40:13 +00:00
wouter
e5af6f59b5 - Fix detect of mingw for MXE package build.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3807 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:17:39 +00:00
wouter
481de1abef - Fix dynamic link of anchor-update.exe on windows.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3806 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:11:59 +00:00
wouter
b2c747ecb2 More docs for enabling the netblock option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3805 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-04 15:00:30 +00:00
wouter
6bc02a32b2 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-04 14:51:30 +00:00
wouter
0e0b34e6bd - For #787: prefer-ip6 option for unbound.conf prefers to send
upstream queries to ipv6 servers.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3803 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-04 14:49:49 +00:00
wouter
50ad32a3ef - Document always_transparent, always_refuse, always_nxdomain types.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3802 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-30 07:36:36 +00:00
wouter
f418ba48cb - Fix static compile on windows missing gdi32.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3801 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-29 11:22:57 +00:00
wouter
f541b61b81 - Create a pkg-config file for libunbound in contrib.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3800 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-28 12:04:09 +00:00
wouter
3be84daf12 - Fix #784: Build configure assumess that having getpwnam means there
is endpwent function available.
- Updated repository with newer flex and bison output.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3799 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-27 08:00:55 +00:00
ralph
88e5f3d21d - Possibility to specify local-zone types for an acl/tag pair
- Possibility to specify (override) local-zone types for a source address block


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-24 19:08:58 +00:00
ralph
3977c7c8fb - Decrease dp attempts at each QNAME minimisation iteration
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3796 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-16 11:57:20 +00:00
wouter
5650ce9e0d - Fix tcp timeouts in tv.usec.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3795 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-16 07:21:07 +00:00
wouter
01fc612798 - If more than half of tcp connections are in use, a shorter timeout
is used (200 msec, vs 2 minutes) to pressure tcp for new connects.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3794 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-15 14:41:23 +00:00
wouter
67f97d9f9a - TCP_TIMEOUT is specified in milliseconds.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3793 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-15 14:23:43 +00:00
ralph
62d1c755b2 - QNAME minimisation unit test for dropped QTYPE=A queries.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3792 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 12:36:22 +00:00
wouter
3c93de7e26 - Fix 781: prealloc() is an HP-UX system library call.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3791 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:31:47 +00:00
wouter
2d05999b8a - Fix 780: MAP_ANON not defined in HP-UX 11.31.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3790 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:27:34 +00:00
wouter
1a60ed8616 - Fix 779: Union casting is non-portable.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3789 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:23:56 +00:00
wouter
e42f202dd8 - Fix windows link of ssl with crypt32.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3787 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 10:04:15 +00:00
wouter
5f565a4928 Fixup attribution
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3786 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 08:07:31 +00:00
wouter
a612caef3b - Fix spelling in freebind option man page text.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3785 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 08:07:15 +00:00
wouter
b213ce97a9 - Fix 775: unbound-host and unbound-anchor crash on windows, ignore
null delete for wsaevent.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3784 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-14 07:23:08 +00:00
wouter
9054d5f8da - Fix directory: fix for unbound-checkconf, it restores cwd.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3783 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 13:33:51 +00:00
ralph
d1646a497f - Use QTYPE=A for QNAME minimisation.
- Keep track of number of time-outs when performing QNAME minimisation.
  Stop minimising when number of time-outs for a QNAME/QTYPE pair is
  more than three.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3782 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 13:06:35 +00:00
wouter
02de89e03c - Fix #778: unbound 1.5.9: -h segfault (null deref).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3781 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-13 07:06:23 +00:00
wouter
da8d72df98 - document directory immediate fix and allow EXECUTABLE syntax in it
on windows.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3779 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 13:37:14 +00:00
wouter
3fd4902251 - do not delete service.conf on windows uninstall.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3778 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 09:33:27 +00:00
wouter
d6e1cccdb5 - keep debug symbols in windows build.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3777 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-10 08:19:29 +00:00
wouter
b6b992de8e - In unbound.conf directory: dir immediately changes to that directory,
so that include: file below that is relative to that directory.
  With chroot, make the directory an absolute path inside chroot.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3775 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 22:59:07 +00:00
wouter
6115c98c8b - And delete service.conf.shipped on uninstall.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3774 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 22:54:35 +00:00
wouter
0b83edfe75 - Fix that windows install will not overwrite existing service.conf
file (and ignore gui config choices if it exists).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3772 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 14:51:42 +00:00
wouter
b2e1fbbaea - Revert fix for NetworkService account on windows due to breakage
it causes.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3771 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 14:30:37 +00:00
wouter
5b61840c67 - Trunk is called 1.5.10 (with previous fixes already in there to 2
june).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3770 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-09 12:18:43 +00:00
ralph
852ea8802a - Possibility to lookup local_zone regardless the taglist.
- Added local_zone/taglist/acl unit test.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3767 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 14:31:30 +00:00
wouter
4f8df458fc - Improve threadsafety for openssl 0.9.8 ecdsa dnssec signatures.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3766 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 13:02:02 +00:00
ralph
e4444eecc9 - Lookup localzones by taglist from acl.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 08:36:19 +00:00
wouter
18feecde03 - Fix #773: Non-standard Python location build failure with pyunbound.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3763 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-07 08:18:20 +00:00
wouter
9a6e4de566 - free acl-tags, acltag-action and acltag-data config lists during
initialisation to free up memory for more entries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3761 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 14:57:24 +00:00
wouter
2bdc9222e3 - access-control-tag-action and access-control-tag-data config
directives.
- make depend


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3759 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 13:47:24 +00:00
wouter
7384cd8c71 - local-zone-override config directive.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3758 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 10:00:25 +00:00
wouter
484c38a0a4 move define-tags before access-control-tag in example config
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3757 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 08:53:18 +00:00
wouter
814e9c1cfb better example config
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3755 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 08:41:23 +00:00
wouter
31df915761 - access-control-tag config directive.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3754 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 08:33:59 +00:00
wouter
80be34d8bd - Better help text from -h (from Ray Griffith).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3753 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-06 07:38:34 +00:00
wouter
fe7792c174 - Fix to not ignore return value of chown() in daemon startup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3752 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-03 07:38:53 +00:00
wouter
4caa839785 - re-documented localzone tags in example.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3751 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 15:07:10 +00:00
wouter
46159cbca8 - Fix (for 1.5.10): Fix unbound-anchor.exe file location defaults to
Program Files with (x86) appended.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3750 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 15:03:44 +00:00
wouter
2fab3c5c80 - tag for release 1.5.9rc1.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3749 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 13:00:20 +00:00
wouter
7ef1ed776a - un-document localzone tags.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3747 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 12:13:30 +00:00
wouter
0a811103cb - Fix #752: retry resource temporarily unavailable on control pipe.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3746 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 09:34:43 +00:00
wouter
45728bf2c1 - Fix distinction between free and CRYPTO_free in dsa and ecdsa alloc.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3745 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 08:31:17 +00:00
wouter
d9ce73c79e - Fix libubound for edns optlist feature.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3744 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-06-02 07:17:38 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies).
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 16:55:22 +00:00
wouter
f3d914e425 - generic edns option parse and store code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 15:08:05 +00:00
wouter
fe7a6167dc - compat strsep implementation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3738 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 12:27:41 +00:00
wouter
bcdf937a9d - Fix windows service to be created run with limited rights, as a
network service account, from Mario Turschmann.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3734 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 11:41:49 +00:00
wouter
33fe81ab58 - Attempted fix for #765: _unboundmodule missing for python3.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3733 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-30 14:26:45 +00:00
wouter
1ad184b5e2 - Fix time in case answer comes from cache in ub_resolve_event().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3732 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-30 12:48:11 +00:00
wouter
665f715789 - Fix #768: Unbound Service Sometimes Can Not Shutdown
Completely, WER Report Shown Up.  Close handle before closing WSA.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3731 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 13:49:54 +00:00
wouter
d65265678e - Document write permission to directory of trust anchor needed.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3730 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 07:51:35 +00:00
wouter
3e16023c94 - Fix #770: Small subgroup attack on DH used in unix pipe on localhost
if unbound control uses a unix local named pipe.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3729 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-27 06:50:49 +00:00
wouter
f43aba4792 - Updated patch from Charles Walker.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3728 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-26 06:49:44 +00:00
wouter
94815f49b2 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3727 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 13:10:29 +00:00
wouter
8caa2f8f76 - remove memory leak from lame-check patch.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3726 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 13:07:13 +00:00
wouter
ac4562081c - disable-dnssec-lame-check config option from Charles Walker.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3725 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-24 12:17:42 +00:00
wouter
5a63d01b42 - Fix #767: Reference to an expired Internet-Draft in
harden-below-nxdomain documentation.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3724 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-23 12:51:55 +00:00
ralph
6f1a304b44 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3723 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 14:13:04 +00:00
ralph
c33ba2b2c4 - No QNAME minimisation fall-back for NXDOMAIN answers from DNSSEC signed zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3722 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 14:04:27 +00:00
wouter
05188b4fc8 - Fix #766: dns64 should synthesize results on timeout/errors.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3721 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-20 06:35:49 +00:00
wouter
e99c41d4b6 - Fix #761: DNSSEC LAME false positive resolving nic.club.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3720 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-18 14:09:12 +00:00
wouter
c5303b37ba - trunk updated with output of flex 2.6.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3719 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-17 15:01:24 +00:00
wouter
d03179e264 - Fix memory leak in out-of-memory conditions of local zone add.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3717 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-06 06:56:51 +00:00
wouter
706088d4fb - Fix sldns with static checking fixes copied from getdns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3716 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-29 15:02:00 +00:00
wouter
510f53edb9 - Fix #759: 0x20 capsforid no longer checks type PTR, for
compatibility with cisco dns guard.  This lowers false positives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3715 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-28 07:24:50 +00:00
wouter
09da84af77 define-tag and local-zone-tag configuration.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3708 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-21 09:49:02 +00:00
wouter
d71745a17e - Fix some malformed reponses to edns queries get fallback to nonedns.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3701 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-18 11:56:55 +00:00
wouter
6fd683c0aa - cachedb module event handling design.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3700 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-15 14:19:00 +00:00
wouter
32bea2003b - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3699 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-14 14:55:29 +00:00
wouter
704a4a7c48 - cachedb module framework (empty).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-14 14:50:18 +00:00
wouter
018d9e9265 - Fix #753: document dump_requestlist is for first thread.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3697 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-04-12 15:10:31 +00:00
wouter
6fa4d6f2a8 - Fix #749: unbound-checkconf gets SIGSEGV when use against a
malformatted conf file.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3696 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-24 12:30:47 +00:00
wouter
7824663801 - Document permit-small-holddown for 5011 debug.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3695 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-24 08:10:40 +00:00
wouter
7b6e5dd9c7 - OpenSSL 1.1.0 portability, --disable-dsa configure option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3689 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-23 08:19:49 +00:00
wouter
bb32d6f82c - OPENSSL_config is deprecated, removing.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3688 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 11:44:03 +00:00
wouter
bcc54c168d - ERR_remove_state deprecated since openssl 1.0.0.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3687 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 11:38:50 +00:00
wouter
a75003f99b - acx_nlnetlabs.m4 to v34, with -ldl -pthread test for libcrypto.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3686 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 10:22:40 +00:00
wouter
cb943bad34 - Fix test for openssl to use HMAC_Update for 1.1.0.
- acx_nlnetlabs.m4 to v33, with HMAC_Update.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3685 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 10:10:10 +00:00
wouter
094f0f5d8f - Fix dnstap-log-resolver-response-messages, from Nikolay Edigaryev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3684 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 09:04:21 +00:00
wouter
3002991ef1 - Fix compile of getentropy_linux for SLES11 servicepack 4.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3683 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-21 08:25:03 +00:00
ralph
dfff30e7ee - Validate QNAME minimised NXDOMAIN responses.
- If QNAME minimisation is enabled, do cache lookup for QTYPE NS in
   harden-below-nxdomain.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3682 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-18 15:44:41 +00:00
ralph
8061e51f9b - Limit number of QNAME minimisation iterations.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3681 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:44:41 +00:00
wouter
18e05e8afb - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3680 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:07:33 +00:00
wouter
4ecf673365 - Fix #746: Fix unbound sets CD bit on all forwards.
If no trust anchors, it'll not set CD bit when forwarding to another
  server.  If a trust anchor, no CD bit on the first attempt to a
  forwarder, but CD bit thereafter on repeated attempts to get DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3679 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-17 14:01:59 +00:00
wouter
d6c8fc8e04 - Fix ip-transparent for ipv6 on FreeBSD, thanks to Nick Hibma.
Attribute fix.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3678 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 08:33:30 +00:00
wouter
23eed13fbe - Fix ip-transparent for tcp on freebsd.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3676 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 08:13:25 +00:00
wouter
60d06dae7c - Fix ip-transparent for ipv6 on FreeBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3675 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-16 07:20:35 +00:00
wouter
6960c1f306 And documentation.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3674 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-15 09:42:56 +00:00
wouter
cc92e91d47 - ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for
binding to an IP address while the interface or address is down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-15 09:35:48 +00:00
wouter
c6f9086908 Fix compile for ub_event code with older libev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3672 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-14 13:45:51 +00:00
wouter
bc104354fd - Fix warnings in ifdef corner case, older or unknown libevent.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3671 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-14 11:30:44 +00:00
wouter
74a2747178 - For test put free in pluggable api in parenthesis.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3670 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 13:54:08 +00:00
wouter
3a7bd99cf2 - No side effects in tolower() call, in case it is a macro.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3669 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 13:46:46 +00:00
wouter
f1fdb9c958 - Fix libev usage of dispatch return value.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3668 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 12:57:09 +00:00
wouter
6e15a6d9fa - Remove warning about unused parameter in event_pluggable.c.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3663 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-11 08:09:18 +00:00
wouter
c20ef7f2ae - Fixup backend2str for libev.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3660 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 14:39:48 +00:00
wouter
7470ecfdca - Fixup of compile fix for pluggable event API from P.Y. Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3659 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 12:54:35 +00:00
wouter
aaf1ed9f3f Reverted wrong fix.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3658 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 12:53:56 +00:00
wouter
a5c620d824 - Compile fix for pluggable event API from P.Y. Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3654 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 11:04:52 +00:00
wouter
edb30a7f74 - Updated L root IPv6 address.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3652 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 08:23:46 +00:00
wouter
a56db8244f - Updated configure and ltmain.sh.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3651 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-10 08:20:52 +00:00
wouter
3f127a5019 - iana ports fetched via https.
- iana portlist updated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3649 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-08 08:00:42 +00:00
wouter
e93f50f768 - Fix #747: assert in outnet_serviced_query_stop.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3646 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-07 10:00:08 +00:00
wouter
787cdd6edf - configure tests for the weak attribute support by the compiler.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3645 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-03 15:59:25 +00:00
wouter
fb81dd7f57 - Fix #745: unbound.py - idn2dname throws UnicodeError when idnname
contains trailing dot. (Fix from Ralph)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3644 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:18:38 +00:00
wouter
40fd246b09 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3643 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:16:35 +00:00
wouter
d32ae1efcf - 1.5.8 release tag
- trunk contains 1.5.9 in development.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3642 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-02 08:15:05 +00:00
wouter
93773aa8b2 - Fix that NSEC3 negative cache is used when there is no salt.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3639 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-24 15:02:35 +00:00
wouter
f446519985 - Fix OpenBSD asynclook lock free that gets used later (fix test code).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3638 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-24 14:52:28 +00:00
wouter
0236d2de1a Documentation for the ub_ctx_set_stub function.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3635 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-23 13:12:08 +00:00
wouter
ee22e96f85 - sorted ubsyms.def file with exported libunbound functions.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3634 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-23 13:05:34 +00:00
wouter
ad524d32ce - ub_ctx_set_stub() function for libunbound to config stub zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3632 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-23 10:43:10 +00:00
wouter
135242a7b0 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3631 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 14:38:48 +00:00
wouter
811692e34b - load gost algorithm if digest is seen before key algorithm.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3630 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 12:17:03 +00:00
wouter
65be72159e - load gost algorithm into unbound-host.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3628 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 12:11:36 +00:00
wouter
71e764c00d - Print understandable debug log when unusable DS record is seen.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3627 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-19 10:48:23 +00:00
wouter
271b8da762 - Fix that "make install" fails due to "text file busy" error.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3626 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-17 15:51:57 +00:00
wouter
5ad82c4e0b - Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3625 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-17 08:02:32 +00:00
wouter
033c8fe770 - wait for sendto to drain socket buffers when they are full.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3624 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-15 09:54:52 +00:00
wouter
985d70f311 - ip-transparent option for FreeBSD with IP_BINDANY socket option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3623 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-15 08:17:54 +00:00
wouter
1459ca9220 - insecure-lan-zones: yesno config option, patch from Dag-Erling
Smørgrav.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3619 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-09 13:25:59 +00:00
wouter
431da7609c - Test for type OPENPGPKEY.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3618 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-09 08:45:09 +00:00
wouter
596bdef685 - RR Type OPENPGPKEY support (draft-ietf-dane-openpgpkey-07).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3617 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 16:13:03 +00:00
wouter
662ac80377 - RR Type CSYNC support RFC 7477, in debug printout and config input.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3615 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 15:37:17 +00:00
wouter
8bc70ac10b - Fix patch typo in prevuous commit for 734 from Adi Prasaja.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3614 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-02-08 08:17:00 +00:00
wouter
f3ab2837c5 - Neater cmdline_verbose increment patch from Edgar Pettijohn.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3613 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-29 08:06:51 +00:00
wouter
ac992dd71a - Fix #741: log message for dnstap socket connection is more clear.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3612 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-27 17:12:26 +00:00
wouter
bbb8e0a1ce - Made netbsd sendmsg test nonfatal, in case of false positives.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3610 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-27 07:44:47 +00:00
wouter
91faa15b6c - fix netbsd interface_automatic complain about unimplemented.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3609 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 16:14:28 +00:00
wouter
89de1bdd21 - Fix cmsg alignment for argument to sendmsg on NetBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3608 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 14:11:39 +00:00
wouter
cea70916c3 - Use arc4random instead of random in tests (because it is
available, possibly as compat, anyway).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3607 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 09:15:22 +00:00
wouter
88fbc332f2 - Fix #734: chown the pidfile if it resides inside the chroot.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3604 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-26 08:05:04 +00:00
wouter
8012eab87c - Fix #738: Swig should not be invoked with CPPFLAGS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3603 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-25 08:07:50 +00:00
wouter
e00935abbe - Squelch 'cannot assign requested address' log messages unless
verbosity is high, it was spammed after network down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3602 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-19 15:37:54 +00:00
wouter
5bb6c20a70 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3601 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-14 08:33:54 +00:00
wouter
eb39bf4782 - Fix to simplify empty string checking from Michael McConville.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3600 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-14 08:28:46 +00:00
wouter
d3aae30ae8 - Fix #734: Do not log an error when the PID file cannot be chown'ed.
Patch from Simon Deziel.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3599 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-12 08:04:42 +00:00
wouter
c231f7696b - Fix test if -pthreads unused to use better grep for portability.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3598 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-11 13:44:02 +00:00
wouter
f76f8d0bad - Update aclocal, autoconf output with new versions (1.15, 2.4.6).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3596 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-07 10:34:46 +00:00
wouter
b994ac0b73 - Fix mingw crosscompile for recent mingw.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3594 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-07 10:16:22 +00:00
wouter
276cb19fc7 - Support RFC7686: handle ".onion" Special-Use Domain. It is blocked
by default, and can be unblocked with "nodefault" localzone config.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3593 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 14:02:45 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 10:03:59 +00:00
wouter
2d7be779da - Fixup contrib/aaaa-filter-iterator.patch for moved contents in the
source code, so it applies cleanly again.  Removed unused variable
  warnings.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3589 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-04 10:47:29 +00:00
wouter
ec29bd9578 - Define DEFAULT_SOURCE together with BSD_SOURCE when that is defined,
for Linux glibc 2.20.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3588 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-04 09:52:48 +00:00