townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

292 Commits

Author SHA1 Message Date
wouter
fbc5a3bf31 better sent count handling 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2500 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:15:13 +00:00
wouter
fe21693eb9 - max sent count. EDNS1480 only for rtt < 5000. No promiscuous 
fetch if sentcount > 3, stop query if sentcount > 16.  Count is
reset when referral or CNAME happens.  This makes unbound better
at managing large NS sets, they are explored when there is continued
interest (in the form of queries).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2499 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:11:12 +00:00
wouter
950c3c067c revert earlier commit. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2488 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-12 11:28:14 +00:00
wouter
c109a8828f - Fix operation in ipv6 only (do-ip4: no) mode. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2487 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-07 14:34:10 +00:00
wouter
97a89720c9 - Fix validation failures due to EDNS backoff retries, the retry 
for fetch of data has want_dnssec because the iter_indicate_dnssec
         function returns true when validation failure retry happens, and
         then the serviced query code does not fallback to noEDNS, even if
         the cache says it has this.  This helps for DLV deployment when
         the DNSSEC status is not known for sure before the lookup concludes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2483 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-26 09:00:43 +00:00
wouter
fb7fa5c347 - Fix prefetch so it does not get stuck on old server for moved names. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-13 10:13:01 +00:00
wouter
3925e949de - Fix insecure CNAME sequence marked as secure, reported by Bert Hubert. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-11 12:32:29 +00:00
wouter
fc57d16d98 - Fix bug when DLV below a trust-anchor that uses NSEC3 optout where 
the zone has a secure delegation hosted on the same server did not
         verify as secure (it was insecure by mistake).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2275 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-11 12:21:19 +00:00
wouter
66d2b51494 - bug#327: Fix for cannot access stub zones until the root is primed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2228 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-13 09:25:52 +00:00
wouter
911eba0f73 - openbsd-lint fixes: acl_list_get_mem used if debug-alloc enabled. 
iterator get_mem includes priv_get_mem.  delegpt nodup removed.
  listen_pushback, query_info_allocqname, write_socket, send_packet,
  comm_point_set_cb_arg and listen_resume removed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2222 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-20 13:30:41 +00:00
wouter
8774983f7d - Fix bug#321: resolution of rs.ripe.net artifacts with 0x20. 
Delegpt structures checked for duplicates always.
         No more nameserver lookups generated when depth is full anyway.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2219 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-19 13:00:21 +00:00
wouter
6f7205f522 add and fix doxygen comments for doxygen-1.7.1. (which reports lots of 
spurious items as well, by the way).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2211 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-13 08:41:49 +00:00
wouter
9cfff4e70d - Return NXDOMAIN after chain of CNAMEs ends at name-not-found. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2208 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-05 14:31:52 +00:00
wouter
34fef67b47 - Neat function prototypes, unshadowed local declarations. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2188 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-07-07 13:13:36 +00:00
wouter
bd2b31b430 - Fix to use one pointer less for iterator query state store_parent_NS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2150 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-15 09:47:11 +00:00
wouter
66f6318513 fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-11 14:24:25 +00:00
wouter
0aaf9f53aa - When retry to parent the retrycount is not wiped, so failed 
nameservers are not tried again.
       - iana portlist updated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2145 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-11 14:09:56 +00:00
wouter
53c0abfaef - Fix bug where a long loop could be entered, now cycle detection 
has a loop-counter and maximum search amount.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2144 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-10 14:10:17 +00:00
wouter
fe6503be38 - Fix storage of negative parent glue if that last resort fails. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2127 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-01 09:33:25 +00:00
wouter
1870cfe1d3 - fix parentside and querytargets modulestate, for dump_requestlist. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2123 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-31 14:01:32 +00:00
wouter
36c5a3f000 - parentside names are dispreferred but not said to be dnssec-lame. 
- parentside check for cached newname glue.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2122 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-31 13:03:58 +00:00
wouter
348f5baad7 parent-child misconfigured data lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2119 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-28 14:15:29 +00:00
wouter
f995351d40 - Fix resolution for domains like safesvc.com.cn. If the iterator 
can not recurse further and it finds the delegation in a state
         where it would otherwise have rejected it outhand if so received
         from a cache lookup, then it can try to ask higherup (with loop
         protection).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2113 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-19 12:55:49 +00:00
wouter
9d31e30c81 Fix various compiler warnings from the clang llvm compiler. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2111 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-18 12:37:04 +00:00
wouter
f2596d95df - Fix dnssec-missing detection that was turned off by server selection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2107 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-04 08:39:04 +00:00
wouter
c1dee8ad26 Fix harden-referral-path so it does not generate lookup failures. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2101 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-27 14:15:19 +00:00
wouter
f335d4f2c4 - fix retry sequence if prime hints are recursion-lame. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2099 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-27 11:10:35 +00:00
wouter
82e5783f72 Fix bug#307: 0x20 fallback outstanding query count, together with rec_lame, 
and canonical rrset comparison.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2097 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-26 14:59:44 +00:00
wouter
88070f63e6 - Fix to fetch data as last resort more tenaciously. When cycle 
targets cause the server selection to believe there are more options
	  when they really are not there, the server selection is reinitiated.
	- Fix fetch from blacklisted dnssec lame servers as last resort.  The
	  servers IP address is then given in validator errors as well.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2089 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-23 09:07:05 +00:00
wouter
963cb57146 - Fix EDNS probe for .de DNSSEC testbed failure, where the infra 
cache timeout coincided with a server update, the current EDNS 
  backoff is less sensitive, and does not cache the backoff unless 
  the backoff actually works and the domain is not expecting DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2063 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-06 08:35:37 +00:00
wouter
5fb04b1a9c Move includes to code files. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-12 15:17:48 +00:00
wouter
519fa3bf67 remove unnecessary if statement 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2009 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-04 15:24:34 +00:00
wouter
2bef43a317 Nicer debug output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1999 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-01 13:00:00 +00:00
wouter
81d203550b A little more strict DS scrubbing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1986 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-18 09:47:08 +00:00
wouter
daae24a855 Scrub DNSKEY, DLV and DS much more stringently. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1985 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-17 16:50:04 +00:00
wouter
ec60a8d2a2 fixup lookup trouble for parent-child domains on the first query. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1960 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-20 13:11:11 +00:00
wouter
caa4f084e3 prefetch-key feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1956 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-13 13:33:18 +00:00
wouter
988cdf0808 work on prefetch: store the updated results in the cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1954 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-08 15:59:36 +00:00
wouter
f8d114b2cc Fix parent child disagreement handling and no-ipv6 present. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1953 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-08 12:47:27 +00:00
wouter
2a29e7923e Doc fix and work on prefetch feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1951 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-07 14:38:18 +00:00
wouter
cf25644378 fixes and new ldns tarball. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-15 09:31:39 +00:00
wouter
02d69146e3 Answer qclass=ANY. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1938 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-15 09:10:04 +00:00
wouter
901335beb1 - Fix SOA excluded from negative DS responses. Reported by Hauke 
Lampe.  The negative cache did not include proper SOA records for
	  negative qtype DS responses which makes BIND barf on it, such
	  responses are now only used internally.
	- Fix negative cache lookup of closestencloser check of DS type bit.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1932 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-09 14:55:19 +00:00
wouter
170bc60cb6 Fix lookup of domains with parent-child zonecut data differences. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1929 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-08 13:37:59 +00:00
wouter
344beb095b review fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1897 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-11-10 16:02:05 +00:00
wouter
4ba1003f2c Data retry on validation failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-06 08:31:47 +00:00
wouter
b4a655b16e Failure handling for 5011. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1848 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-23 09:05:44 +00:00
wouter
b2e277f947 Fix problem with delegation where glue has expired. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1837 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-17 14:36:06 +00:00
wouter
911e4c0ce6 debug prints for high verbosity 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-15 14:03:44 +00:00
wouter
a36d0b554b Fixup for root prime requests sent when not needed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1736 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-07-23 13:21:42 +00:00
wouter
00971e4abf Fixup lameness handling in server selection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1735 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-07-21 13:52:39 +00:00
wouter
ecec7adc27 Handle referral path check cases where NS is in the answer section. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1678 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-19 08:55:12 +00:00
wouter
85cf4b716f Fix max depth check. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1660 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-16 09:06:52 +00:00
wouter
8697c2c5aa Fixup stub chain of trust from public to private servers. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1648 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-11 14:02:37 +00:00
wouter
0c767fe130 review comments Matthijs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-03 08:06:42 +00:00
wouter
5cf9cc12a2 Fixup crash if root prime has a timeout and parent qstate has been deleted. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1626 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-27 12:10:07 +00:00
wouter
f658d87d6b change in debug statements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-27 11:27:41 +00:00
wouter
8d9058e2b8 Fixup assertion that no longer holds (since the new DoS prevention code jostles out old queries). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-26 14:42:14 +00:00
wouter
4fdda2010e Optimisation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1617 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-04-27 12:40:22 +00:00
wouter
122d5b762b - Fixed a bug that caused messages to be stored in the cache too 
long.  Hard to trigger, but NXDOMAINs for nameservers or CNAME
	  targets have been more vulnerable to the TTL miscalculation bug. 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1582 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-04-03 13:49:40 +00:00
wouter
1d1f79c962 test and nicer error handling on target query failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-03-17 14:45:31 +00:00
wouter
7dfde6d5cb more cycle checks. 
fix for reentrant problem.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1485 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-18 13:23:17 +00:00
wouter
827f9bfef1 forward command for unbound-control. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-13 15:26:37 +00:00
wouter
66becd36c8 - unbound-host -4 and -6 options. Stops annoying ipv6 errors when 
debugging with unbound -4 -d ... 
        - more cycle detection for NS-check, addr-check, root-prime and
          stub-prime queries in the iterator.  Avoids possible deadlock
          when priming fails.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1444 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-16 10:38:19 +00:00
wouter
afb0b30d31 Squelch ipv6 network unreachable from verbosity default (1). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1443 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-16 09:48:40 +00:00
wouter
6ea7ca6aba remove debug prints 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1435 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-14 14:41:41 +00:00
wouter
a53644841c please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1433 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-14 09:47:00 +00:00
wouter
20f93f79c6 - 1.2.1 feature: negative caching for failed queries. 
Queries that failed are cached for 5 seconds (NORR_TTL).
	  If the failure is local, like out of memory, it is not cached.
	- the TTL comparison for the cache used different comparisons,
	  causing many cache responses that used the iterator and validator
	  state machines unnecessarily.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1432 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-14 09:38:15 +00:00
wouter
83a8c51b8e Fixup for previous fixup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1429 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-13 12:53:18 +00:00
wouter
681dc7c307 Fixup for qtype NS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1428 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-13 12:45:02 +00:00
wouter
3f82859368 fix bug 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1426 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-13 10:44:04 +00:00
wouter
bd2885ef6c lameness debugging. 
fix for lameness hashing.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1425 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-12 09:22:39 +00:00
wouter
ee571fb378 more verbose about server selection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1400 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-12-18 11:27:57 +00:00
wouter
55b1c9928d Fixup for problems with do-ip6: no and only ipv6 addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-11-17 12:47:34 +00:00
wouter
20201d6ecf root prime validation 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1309 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-17 15:07:28 +00:00
wouter
c2b6ef6282 Referral path checking, for spoof mitigation, improved. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1305 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-15 13:32:49 +00:00
wouter
a4f3d3f025 Recursion lame is detected and last resort is used to resolve. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1294 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-13 09:11:42 +00:00
wouter
15a0554309 nsec3 negative cache works. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-09 15:06:35 +00:00
wouter
cf9d865669 work on nsec3 negative cache for qtype DS . 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1290 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-08 14:42:46 +00:00
wouter
e4adee6800 nsec negative DS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1289 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-08 10:04:27 +00:00
wouter
a2c3b61c68 0x20 fallback code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1285 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-06 14:46:22 +00:00
wouter
b43e6577b7 Stub on same host works 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1276 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-30 13:40:44 +00:00
wouter
c8f39cf0a7 lookup delegation from cache and printout. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1266 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-23 10:55:36 +00:00
wouter
d0a4ad4331 remote control setup, port binding and service. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1227 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-10 15:23:01 +00:00
wouter
a955472a03 private-addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1224 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-04 12:25:15 +00:00
wouter
94962bb18f new NS queries is not an option (off by default). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1219 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-08-29 14:46:08 +00:00
wouter
71700f6a04 - Fixup rrset security updates overwriting 2181 trust status. 
This makes validated to be insecure data just as worthless as
	  nonvalidated data, and 2181 rules prevent cache overwrites to them.
	- Fix assertion fail on bogus key handling.
	- dnssec lameness detection works on first query at trust apex.
	- NS queries get proper cache and dnssec lameness treatment.
	- fixup compilation without pthreads on linux.
	- NS queries are done after every referral.
	  validator is used on those NS records (if anchors enabled).




git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1185 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-08-12 10:13:57 +00:00
wouter
4ab789fdcf fixup for newegg lameness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1137 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-06-25 09:39:57 +00:00
wouter
7b4568a771 Patch from Koji, thanks! 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1015 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-03-05 14:54:51 +00:00
wouter
242711485f Answers use same case as query does. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@993 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-26 20:45:20 +00:00
wouter
38c018e539 - setup speec_cache for need-ldns-testns in dotests. 
- check number of queued replies on incoming queries to avoid overload
         on that account.
       - fptr whitelist checks are not disabled in optimize mode.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@971 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-20 07:18:42 +00:00
wouter
cf50a0bcb7 Faster due to time-sharing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@966 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-19 13:12:23 +00:00
wouter
cb2892a0ef nicer code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@962 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-18 13:20:14 +00:00
wouter
7b731d6981 Fixed bug in RD flag setting. 
perf works better with long taking queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@961 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-18 13:16:06 +00:00
wouter
76a26d97a8 log level 2. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@930 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-07 11:04:56 +00:00
wouter
e2ce21cf4d move around debug levels. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@929 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-07 09:46:49 +00:00
wouter
d1d55313d2 library resolution working. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@809 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-12-06 15:11:07 +00:00
wouter
a1ba0ccb3f coverity run fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@803 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-12-04 17:54:14 +00:00
wouter
a285d67db1 fixup for duplication of NSECs / NSEC3s after following CNAMEs 
(esp. wildcard CNAMEs and in-zone CNAMEs that then include nodata or
nxdomain proofs) where the CNAME is followed again to include more NSECs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@787 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-11-28 13:41:31 +00:00
wouter
f10708e257 Reduced operation sensitivity of message. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@779 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-11-27 16:18:09 +00:00
wouter
0d1d88543d Fixup of reload bug. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@726 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-11-01 09:48:20 +00:00
wouter
b649a1876b dnssec lame servers are used as last effort. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@716 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-23 12:37:18 +00:00
wouter
0da3454c6f dnssec lameness detection improved to disable detection when not sure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@715 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-23 08:30:21 +00:00
wouter
67d2bad8e0 dnssec lame detection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@714 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-22 15:25:37 +00:00
wouter
79b0d9e96d Detect recursion-lameness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@713 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-22 12:05:46 +00:00
wouter
4bcd6aac94 regional nicer, remove region-allocator. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-18 20:31:43 +00:00
wouter
eeaf9dbc97 errors have addresses with them. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@692 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-18 09:04:55 +00:00
wouter
49a22dcb04 fixup test, less logging. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@687 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-17 14:49:12 +00:00
wouter
9860e15c26 no debug on low verbosity. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@684 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-17 14:10:46 +00:00
wouter
e6d57f0ea1 resolution fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@682 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-17 07:34:13 +00:00
wouter
a4478ad648 function pointer whitelist for module operations. completing fptr work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@661 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-05 12:42:25 +00:00
wouter
a17017926e crash fixup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@651 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-01 14:55:08 +00:00
wouter
9b90ab87cd fixup glue timeout problems, and priming with safety belt. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@622 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-19 12:17:42 +00:00
wouter
58eb10dee1 Fixup qname after prepend. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@614 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-14 14:05:52 +00:00
wouter
7642f3a130 fixup AUTH prepend list. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@587 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-04 14:06:43 +00:00
wouter
4353a39c1b cname nxdomain fixup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@576 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-03 09:13:27 +00:00
wouter
2c585d0f14 iterator works better with failing hosts. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@571 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-31 09:38:55 +00:00
wouter
e97cae4641 Memory cleanup. 
- caught bad free of un-alloced data in worker_send error case.
       - memory accounting for key cache (trust anchors and temporary cache).
       - memory accounting fixup for outside network tcp pending waits.
       - memory accounting fixup for outside network tcp callbacks.
       - memory accounting for iterator fixed storage.
       - key cache size and slabs config options.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@566 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-30 12:45:19 +00:00
wouter
ee53b5fef8 do not cache nonRD replies in msg cache, the rrset cache is used for that. 
store verification status in rrset cache to enable security for nonRD
replies and also speed up processing.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@550 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-27 13:46:05 +00:00
wouter
96eb624da0 answer non-recursive straight from cache, if possible. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@548 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-27 09:53:16 +00:00
wouter
f5cae3bd4a dname isroot and dellabel 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@492 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-06 11:06:00 +00:00
wouter
b3cbef4dfc passing of control between modules. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@479 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 12:13:08 +00:00
wouter
9238bc8aca For test ldns. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@477 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 09:58:24 +00:00
wouter
80ffffebd1 remove done and supers module interface calls. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 08:07:50 +00:00
wouter
3b9a0d90aa don't fall through the if 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@472 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 14:10:51 +00:00
wouter
b6f4010edf callbacks via module specific function for walk_supers. 
part of a move towards multiple modules for meshes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@471 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 14:01:34 +00:00
wouter
f5c4688976 prime flag moved. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@470 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 12:59:37 +00:00
wouter
ffae9bc790 module configuration option. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@468 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 11:17:30 +00:00
wouter
d7201ed226 cycle detection 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@452 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-26 09:29:21 +00:00
wouter
78c5f18d25 glue fetch tested. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@451 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-25 14:12:44 +00:00
wouter
008a70a139 name change. todo. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@446 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-20 14:16:02 +00:00
wouter
c876b8f4fa Refetch glue code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@445 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-20 09:41:44 +00:00
wouter
a161bfbed7 Option to disable sanitize (normalize is still active), speeds up. But 
some spoofing scenarios become possible. Default is the safe method.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@443 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-20 09:12:06 +00:00
wouter
1842c5d409 Fill missing addresses for a delegation from the cache (if possible). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@442 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-20 07:14:36 +00:00
wouter
d9aac953ba cname chain caching (part). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@440 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-19 15:16:39 +00:00
wouter
ea2e3fdef0 shuffle NS selection randomly for getting addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@436 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-19 09:25:55 +00:00
wouter
00c08bc573 Do not query addresses and configuration. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@434 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-18 08:14:44 +00:00
wouter
418bac1638 Remove old forwarder mode, new @port option and tests ported over. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@432 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-17 15:26:45 +00:00
wouter
7729681ca8 forward zones. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@429 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-07-17 13:45:45 +00:00
wouter
2a09f09ea8 fixup tests, better stats, nicer api supers_walk(). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@424 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-26 15:24:07 +00:00
wouter
b0d9e6c363 Mesh used now. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@423 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-26 13:06:44 +00:00
wouter
47f59b0937 Iterator does not alter qstate identity. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@420 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-22 13:24:26 +00:00
wouter
26a83b8c0b further mesh. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@419 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-22 12:39:08 +00:00
wouter
bcea03a902 Mesh design and preparatory cleanup. 
- removed unused _node iterator value from rbtree_t. Takes up space.
      - iterator can handle querytargets state without a delegation point
        set, so that a priming(stub) subquery error can be handled.
      - iterator stores if it is priming or not.
      - log_query_info() neater logging.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@418 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-22 10:09:21 +00:00
wouter
5441077319 mesh design. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@417 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-21 15:36:13 +00:00
wouter
5f0e6a96f3 subreq depth fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@412 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-21 09:36:27 +00:00
wouter
4f5be300b8 Removed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@409 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-21 07:39:13 +00:00
wouter
d63fdceec2 Fixups. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@406 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-20 13:01:30 +00:00
wouter
b68dad48a7 fix of flags in errors and very short bufsizes from edns. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@397 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-19 13:50:43 +00:00
wouter
7ecbf0b24c AXFR handling and non-recursive handling. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@396 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-06-19 12:34:54 +00:00