townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

436 Commits

Author SHA1 Message Date
wouter
21badea7ff - Add AAAA for B root server to default root hints. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3143 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-03 07:29:41 +00:00
wouter
efd392cf85 Remove unused define from iterator.h 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3142 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-02 10:03:21 +00:00
wouter
7d212de4bc - Change MAX_SENT_COUNT from 16 to 32 to resolve some cases easier. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3127 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-06 12:37:37 +00:00
wouter
0b1ed0233c - Fix #558: failed prefetch lookup does not remove cached response 
but delays next prefetch (in lieu of caching a SERVFAIL).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3111 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 13:56:16 +00:00
wouter
82d8262980 - C.ROOT-SERVERS.NET has an IPv6 address, and we updated the root 
hints (patch from Anand Buddhdev).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3102 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-07 08:18:39 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
wouter
884b06df55 Fix linking of sldns and ldns, unique identifiers for global variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3021 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-11-30 11:03:55 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
wouter
e37c8fa8e9 - Fix #528: if very high logging (4 or more) segfault on allow_snoop. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2994 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-22 12:01:51 +00:00
wouter
51857088da review fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2940 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 14:14:08 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
wouter
1402c87b39 Fix uninit variable in fix#516. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2934 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-14 07:53:33 +00:00
wouter
ef7be2ae15 - Fix#516 dnssec lameness detection for answers that are improper. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2933 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-08 09:29:33 +00:00
wouter
bcb1b4b1da - Fix#501: forward-first does not recurse, when forward name is ".". 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2907 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-06-10 12:25:10 +00:00
wouter
b838694589 - Fix queries leaking up for stubs and forwards, if the configured 
nameservers all fail to answer.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2882 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-04-11 10:08:34 +00:00
wouter
072b65caae - Fix crash in previous private address fixup of 22 March. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2880 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-04-09 07:38:24 +00:00
wouter
e306a8f384 - Fix resolve of names that use a mix of public and private addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2868 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-03-22 09:36:33 +00:00
wouter
9285d02d4a - printout name of zone with duplicate fwd and hint errors. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2828 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-29 08:13:57 +00:00
wouter
f1a5d98065 - Change of D.ROOT-SERVERS.NET A address in default root hints. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2794 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-12-14 08:08:59 +00:00
wouter
87c60e499f - Fix unbound-control forward disables configured stubs below it. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2781 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-11-09 15:35:18 +00:00
wouter
800da7f0fd - Fix forward-first option where it sets the RD flag wrongly. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2731 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-31 12:53:53 +00:00
wouter
f29947421f - implemented forward_first for the root. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2722 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-23 13:42:07 +00:00
wouter
4a9e53af6f - Fix bug#452 and another assertion failure in mesh.c, makes 
assertions in mesh.c resist duplicates.  Fixes DS NS search to
  not generate duplicate sub queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2718 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-20 13:08:19 +00:00
wouter
2a46be9b00 - code review: return value of cache_store can be ignored for better 
performance in out of memory conditions.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-28 14:18:41 +00:00
wouter
ec417b19da code review. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2688 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-18 14:22:29 +00:00
wouter
e3f7381966 - code review. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2687 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-15 19:44:09 +00:00
wouter
a29ad4c7d0 - Review comments from Yuri, removed duplicate memset to zero in delegpt. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2675 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-18 15:04:08 +00:00
wouter
55733bc7d3 fix alloccheck 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2672 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-16 11:55:30 +00:00
wouter
4ce2a8f1e3 lint fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2649 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-21 15:34:44 +00:00
wouter
d8c0dcb109 fixup include. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2647 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-21 15:05:34 +00:00
wouter
28727b8b02 - new approach to NS fetches for DS lookup that works with 
cornercases, and is more robust and considers forwarders.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2646 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-21 15:01:01 +00:00
wouter
e5d9f18a1c - fix to locate nameservers for DS lookup with NS fetches. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2645 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-19 15:44:21 +00:00
wouter
6d5f0687f2 comment for explanation of bit toggle. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2638 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-01 13:38:28 +00:00
wouter
276300a61a - forward-first option. Tries without forward if a query fails. 
Also stub-first option that is similar.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-01 13:16:40 +00:00
wouter
5a7af9871a Fix prefetch and stickyness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2632 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 11:04:53 +00:00
wouter
6ffbc94b48 - iter_hints is now thread-owned in module env, and thus threadsafe. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2629 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 09:55:50 +00:00
wouter
d5150eafeb - unbound-control forward_add, forward_remove, stub_add, stub_remove 
can modify stubs and forwards for running unbound (on mobile computer)
  they can also add and remove domain-insecure for the zone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 14:35:28 +00:00
wouter
ad8753ad44 hints uses malloc for more dynamicity. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2622 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 09:38:34 +00:00
wouter
7fe22008d7 - Fix forward-zone memory, uses malloc and frees original root dp. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2621 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 08:50:17 +00:00
wouter
7d756333e8 - iter forwards uses malloc inside for more dynamicity. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2620 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-14 15:41:09 +00:00
wouter
25fbc19b64 - Fix bug #425: unbound reports wrong TTL in reply, it reports a TTL 
that would be permissible by the RFCs but it is not the TTL in the
  cache.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2581 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 09:42:32 +00:00
wouter
50a8288ce6 - Fix for VU#209659 CVE-2011-4528: Unbound denial of service 
vulnerabilities from nonstandard redirection and denial of existence
http://www.unbound.net/downloads/CVE-2011-4528.txt
- robust checks for next-closer NSEC3s.
- tag 1.4.14 created.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2574 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-19 10:55:32 +00:00
wouter
a1f677fcac - Makefile changed for BSD make compatibility. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-10 18:44:06 +00:00
wouter
8762da8720 infra cache consolidated and stores per zone, IP. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 15:46:23 +00:00
wouter
da47b4231b - Fix resolve of partners.extranet.microsoft.com with a fix for the 
server selection for choosing out of a (particular) list of bad choices.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2522 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-24 08:34:59 +00:00
wouter
d4603fe66c - Fix classification of NS set in answer section, where there is a 
parent-child server, and the answer has the AA flag for dir.slb.com.
  Thanks to Amanda Constant from Secure64.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2501 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-20 07:42:04 +00:00
wouter
fbc5a3bf31 better sent count handling 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2500 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:15:13 +00:00
wouter
fe21693eb9 - max sent count. EDNS1480 only for rtt < 5000. No promiscuous 
fetch if sentcount > 3, stop query if sentcount > 16.  Count is
reset when referral or CNAME happens.  This makes unbound better
at managing large NS sets, they are explored when there is continued
interest (in the form of queries).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2499 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:11:12 +00:00
wouter
950c3c067c revert earlier commit. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2488 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-12 11:28:14 +00:00
wouter
c109a8828f - Fix operation in ipv6 only (do-ip4: no) mode. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2487 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-07 14:34:10 +00:00
wouter
97a89720c9 - Fix validation failures due to EDNS backoff retries, the retry 
for fetch of data has want_dnssec because the iter_indicate_dnssec
         function returns true when validation failure retry happens, and
         then the serviced query code does not fallback to noEDNS, even if
         the cache says it has this.  This helps for DLV deployment when
         the DNSSEC status is not known for sure before the lookup concludes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2483 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-26 09:00:43 +00:00
wouter
2eb1b8dc1a - Fix that internally, CNAMEs with NXDOMAIN have that as rcode. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2478 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 12:11:54 +00:00
wouter
44008de0f5 Fix validation of qtype ANY responses with CNAMEs (thanks Cathy Zhang and Luo Ce). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2477 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 12:02:50 +00:00
wouter
97ed63e801 IPv6 service address for d.root-servers.net (2001:500:2D::D) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2426 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-12 09:51:00 +00:00
wouter
58774c8fad - Fix remove private address does not throw away entire response. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2386 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-28 16:11:49 +00:00
wouter
fb7fa5c347 - Fix prefetch so it does not get stuck on old server for moved names. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-13 10:13:01 +00:00
wouter
3925e949de - Fix insecure CNAME sequence marked as secure, reported by Bert Hubert. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-11 12:32:29 +00:00
wouter
ef38180e0e remove lost and backoff values. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2309 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-26 13:30:37 +00:00
wouter
c126a3de01 - Fix bug where fallback_tcp causes wrong roundtrip and edns 
observation to be noted in cache.  Fix bug where EDNSprobe halted
  exponential backoff if EDNS status unknown.
- new unresponsive host method, exponentially increasing block backoff.
- iana portlist updated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2303 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-21 15:11:39 +00:00
wouter
b8349423f9 Fix for request list growth. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2298 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-19 14:53:29 +00:00
wouter
fc57d16d98 - Fix bug when DLV below a trust-anchor that uses NSEC3 optout where 
the zone has a secure delegation hosted on the same server did not
         verify as secure (it was insecure by mistake).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2275 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-11 12:21:19 +00:00
wouter
66d2b51494 - bug#327: Fix for cannot access stub zones until the root is primed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2228 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-13 09:25:52 +00:00
wouter
0841070370 fixup yesterdays fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2227 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-10 11:16:12 +00:00
wouter
e03ed46f4e - unresponsive servers are not completely blacklisted (because of 
firewalls), but also not probed all the time (because of the request
            list size it generates).  The probe rate is 1%.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2225 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-09 14:56:51 +00:00
wouter
911eba0f73 - openbsd-lint fixes: acl_list_get_mem used if debug-alloc enabled. 
iterator get_mem includes priv_get_mem.  delegpt nodup removed.
  listen_pushback, query_info_allocqname, write_socket, send_packet,
  comm_point_set_cb_arg and listen_resume removed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2222 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-20 13:30:41 +00:00
wouter
8774983f7d - Fix bug#321: resolution of rs.ripe.net artifacts with 0x20. 
Delegpt structures checked for duplicates always.
         No more nameserver lookups generated when depth is full anyway.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2219 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-19 13:00:21 +00:00
wouter
6f7205f522 add and fix doxygen comments for doxygen-1.7.1. (which reports lots of 
spurious items as well, by the way).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2211 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-13 08:41:49 +00:00
wouter
9cfff4e70d - Return NXDOMAIN after chain of CNAMEs ends at name-not-found. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2208 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-08-05 14:31:52 +00:00
wouter
34fef67b47 - Neat function prototypes, unshadowed local declarations. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2188 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-07-07 13:13:36 +00:00
wouter
573c9093ed - log if a server is skipped because it is on the donotquery list, 
at verbosity 4, to enable diagnosis why no queries to 127.0.0.1.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2174 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-07-05 07:45:20 +00:00
wouter
10747c9f68 Fix for lame reply corner case. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2168 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-25 08:32:51 +00:00
wouter
641abb157c root hints from ftp.internic.net. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-18 07:18:22 +00:00
wouter
b9567686f3 - Add AAAA to root hints for I.ROOT-SERVERS.NET. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2157 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-17 19:17:09 +00:00
wouter
b5d71246b1 - Max referral count from 30 to 130, because 128 one character domains 
is valid DNS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2152 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-15 10:50:20 +00:00
wouter
bd2b31b430 - Fix to use one pointer less for iterator query state store_parent_NS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2150 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-15 09:47:11 +00:00
wouter
66f6318513 fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-11 14:24:25 +00:00
wouter
0aaf9f53aa - When retry to parent the retrycount is not wiped, so failed 
nameservers are not tried again.
       - iana portlist updated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2145 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-11 14:09:56 +00:00
wouter
53c0abfaef - Fix bug where a long loop could be entered, now cycle detection 
has a loop-counter and maximum search amount.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2144 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-10 14:10:17 +00:00
wouter
a2d3f0bbcc more last resort lookup options. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2139 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-03 15:06:50 +00:00
wouter
42b6a2190c review fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2138 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-03 13:38:09 +00:00
wouter
fe6503be38 - Fix storage of negative parent glue if that last resort fails. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2127 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-01 09:33:25 +00:00
wouter
0cfbe2d6e8 Force off bit Z. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2126 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-06-01 06:48:15 +00:00
wouter
1870cfe1d3 - fix parentside and querytargets modulestate, for dump_requestlist. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2123 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-31 14:01:32 +00:00
wouter
36c5a3f000 - parentside names are dispreferred but not said to be dnssec-lame. 
- parentside check for cached newname glue.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2122 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-31 13:03:58 +00:00
wouter
1e3e59c54c - Fix AD flag handling, it could in some cases mistakenly copy the AD 
flag from upstream servers.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2120 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-31 07:36:01 +00:00
wouter
348f5baad7 parent-child misconfigured data lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2119 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-28 14:15:29 +00:00
wouter
8896e7d841 - Fix resolution for domains like safesvc.com.cn. If the iterator 
can not recurse further and it finds the delegation in a state
         where it would otherwise have rejected it outhand if so received
         from a cache lookup, then it can try to ask higherup (with loop
         protection).
       - Fix comments in iter_utils:dp_is_useless.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2114 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-19 12:59:27 +00:00
wouter
f995351d40 - Fix resolution for domains like safesvc.com.cn. If the iterator 
can not recurse further and it finds the delegation in a state
         where it would otherwise have rejected it outhand if so received
         from a cache lookup, then it can try to ask higherup (with loop
         protection).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2113 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-19 12:55:49 +00:00
wouter
9d31e30c81 Fix various compiler warnings from the clang llvm compiler. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2111 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-18 12:37:04 +00:00
wouter
f2596d95df - Fix dnssec-missing detection that was turned off by server selection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2107 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-05-04 08:39:04 +00:00
wouter
ff7aaf53e0 fix for key cache lookup 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2105 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-29 12:52:44 +00:00
wouter
5de78b1e23 dnssec lameness detection looks in key cache if dnssec is expected. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2104 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-29 12:36:12 +00:00
wouter
c1dee8ad26 Fix harden-referral-path so it does not generate lookup failures. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2101 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-27 14:15:19 +00:00
wouter
f335d4f2c4 - fix retry sequence if prime hints are recursion-lame. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2099 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-27 11:10:35 +00:00
wouter
82e5783f72 Fix bug#307: 0x20 fallback outstanding query count, together with rec_lame, 
and canonical rrset comparison.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2097 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-26 14:59:44 +00:00
wouter
84a1dcfbd0 - More strict scrubber (Thanks to George Barwood for the idea): 
NS set must be pertinent to the query (qname subdomain nsname).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2096 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-26 13:40:37 +00:00
wouter
88070f63e6 - Fix to fetch data as last resort more tenaciously. When cycle 
targets cause the server selection to believe there are more options
	  when they really are not there, the server selection is reinitiated.
	- Fix fetch from blacklisted dnssec lame servers as last resort.  The
	  servers IP address is then given in validator errors as well.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2089 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-23 09:07:05 +00:00
wouter
963cb57146 - Fix EDNS probe for .de DNSSEC testbed failure, where the infra 
cache timeout coincided with a server update, the current EDNS 
  backoff is less sensitive, and does not cache the backoff unless 
  the backoff actually works and the domain is not expecting DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2063 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-06 08:35:37 +00:00
wouter
c046d1d839 Fixed random numbers for port, interface and server selection. 
Removed very small bias.
Also some lint fixes.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2049 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-18 14:42:22 +00:00
wouter
5fb04b1a9c Move includes to code files. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-12 15:17:48 +00:00
wouter
519fa3bf67 remove unnecessary if statement 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2009 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-04 15:24:34 +00:00
wouter
2bef43a317 Nicer debug output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1999 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-01 13:00:00 +00:00
wouter
4f32ae270c - Fix scrubber bug that potentially let NS records through. Reported 
by Amanda Constant.
        - Also delete potential poison references from additional.
        - Fix: no classification of a forwarder as lame, throwaway instead.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1993 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-24 13:27:47 +00:00
wouter
83d9bdb813 Stops blacklisting because of strange firewalls. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1987 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-18 11:21:11 +00:00
wouter
81d203550b A little more strict DS scrubbing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1986 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-18 09:47:08 +00:00
wouter
daae24a855 Scrub DNSKEY, DLV and DS much more stringently. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1985 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-02-17 16:50:04 +00:00
wouter
ec60a8d2a2 fixup lookup trouble for parent-child domains on the first query. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1960 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-20 13:11:11 +00:00
wouter
caa4f084e3 prefetch-key feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1956 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-13 13:33:18 +00:00
wouter
988cdf0808 work on prefetch: store the updated results in the cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1954 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-08 15:59:36 +00:00
wouter
f8d114b2cc Fix parent child disagreement handling and no-ipv6 present. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1953 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-08 12:47:27 +00:00
wouter
2a29e7923e Doc fix and work on prefetch feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1951 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-07 14:38:18 +00:00
wouter
da1df74a83 more verbose output to describe lame addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1949 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-01-06 13:15:21 +00:00
wouter
cf25644378 fixes and new ldns tarball. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-15 09:31:39 +00:00
wouter
02d69146e3 Answer qclass=ANY. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1938 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-15 09:10:04 +00:00
wouter
4ad1256dd9 Readup fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1935 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-10 15:41:52 +00:00
wouter
901335beb1 - Fix SOA excluded from negative DS responses. Reported by Hauke 
Lampe.  The negative cache did not include proper SOA records for
	  negative qtype DS responses which makes BIND barf on it, such
	  responses are now only used internally.
	- Fix negative cache lookup of closestencloser check of DS type bit.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1932 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-09 14:55:19 +00:00
wouter
170bc60cb6 Fix lookup of domains with parent-child zonecut data differences. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1929 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-12-08 13:37:59 +00:00
wouter
344beb095b review fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1897 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-11-10 16:02:05 +00:00
wouter
404b2e7a85 Retry mode, DS and prime. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1860 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-07 07:52:02 +00:00
wouter
4ba1003f2c Data retry on validation failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-06 08:31:47 +00:00
wouter
b4a655b16e Failure handling for 5011. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1848 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-23 09:05:44 +00:00
wouter
5d07c6ae3c revocation of trust anchors works. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1846 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-22 14:04:43 +00:00
wouter
b2e277f947 Fix problem with delegation where glue has expired. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1837 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-17 14:36:06 +00:00
wouter
911e4c0ce6 debug prints for high verbosity 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-09-15 14:03:44 +00:00
wouter
9b56161dd9 Blacklist when 16 queries fail in a row. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1764 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-08-17 12:43:23 +00:00
wouter
344d6b7622 autotrust work 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1760 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-08-13 15:32:04 +00:00
wouter
a36d0b554b Fixup for root prime requests sent when not needed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1736 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-07-23 13:21:42 +00:00
wouter
00971e4abf Fixup lameness handling in server selection. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1735 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-07-21 13:52:39 +00:00
wouter
f28e186ae8 Fixup strict aliasing safer. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1680 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-22 07:56:19 +00:00
wouter
ecec7adc27 Handle referral path check cases where NS is in the answer section. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1678 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-19 08:55:12 +00:00
wouter
036b116f74 Fixup strict aliasing warning on Fedora 11. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1674 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-19 07:09:12 +00:00
wouter
85cf4b716f Fix max depth check. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1660 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-16 09:06:52 +00:00
wouter
30f2ca1cff Fixup stub below a forward, the stub is still honored and not trumped by the 
forward zone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1653 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-12 09:01:42 +00:00
wouter
8697c2c5aa Fixup stub chain of trust from public to private servers. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1648 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-11 14:02:37 +00:00
wouter
83b44d560b And review fixup recommit. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1647 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-11 10:52:28 +00:00
wouter
3cb2452d1a lint, aliasing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1643 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-08 14:51:00 +00:00
wouter
0c767fe130 review comments Matthijs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-06-03 08:06:42 +00:00
wouter
5cf9cc12a2 Fixup crash if root prime has a timeout and parent qstate has been deleted. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1626 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-27 12:10:07 +00:00
wouter
f658d87d6b change in debug statements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-27 11:27:41 +00:00
wouter
8d9058e2b8 Fixup assertion that no longer holds (since the new DoS prevention code jostles out old queries). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-26 14:42:14 +00:00
wouter
4fdda2010e Optimisation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1617 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-04-27 12:40:22 +00:00
wouter
122d5b762b - Fixed a bug that caused messages to be stored in the cache too 
long.  Hard to trigger, but NXDOMAINs for nameservers or CNAME
	  targets have been more vulnerable to the TTL miscalculation bug. 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1582 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-04-03 13:49:40 +00:00
wouter
1d1f79c962 test and nicer error handling on target query failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-03-17 14:45:31 +00:00
wouter
7dfde6d5cb more cycle checks. 
fix for reentrant problem.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1485 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-18 13:23:17 +00:00
wouter
827f9bfef1 forward command for unbound-control. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-13 15:26:37 +00:00
wouter
5065a634c2 show fwders in use. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1481 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-02-12 16:11:53 +00:00
wouter
66becd36c8 - unbound-host -4 and -6 options. Stops annoying ipv6 errors when 
debugging with unbound -4 -d ... 
        - more cycle detection for NS-check, addr-check, root-prime and
          stub-prime queries in the iterator.  Avoids possible deadlock
          when priming fails.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1444 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-16 10:38:19 +00:00
wouter
afb0b30d31 Squelch ipv6 network unreachable from verbosity default (1). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1443 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-16 09:48:40 +00:00
wouter
eeaddb3e7a sun cc warnings 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1439 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-15 10:34:18 +00:00