townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

221 Commits

Author SHA1 Message Date
wouter
8fa54ec661 - Add routine from getdns to add windows cert store to the SSL_CTX. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-28 13:22:10 +00:00
wouter
432f0d8062 setup when ssl upstream or a cert-bundle is configured. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4692 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 13:03:10 +00:00
wouter
44f5a4a72a - Fix that libunbound can do DNS-over-TLS, when configured. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4687 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-24 08:57:37 +00:00
wouter
d37a0c3daf Fix async bool. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4679 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:37:04 +00:00
wouter
6c0069a68c fix to please gcc 8 and lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4678 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:29:15 +00:00
wouter
cd8ce5ecdb And cast here. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4677 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:17:56 +00:00
wouter
14cb872630 - Fix function type cast warning in libunbound context callback type. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4676 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-03 14:12:19 +00:00
wouter
f4acc19649 Fix libunbound return for root key sentinel. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4655 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-24 09:16:10 +00:00
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name 
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:10:05 +00:00
ralph
5ac4889669 - num.query.aggressive.NOERROR and num.query.aggressive.NXDOMAIN statistics 
counters


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4616 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 11:39:23 +00:00
wouter
32d7d269e4 - num.query.authzone.up and num.query.authzone.down statistics counters. 
- Fix downstream auth zone, only fallback when auth zone fails to
  answer and fallback is enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-09 10:15:06 +00:00
wouter
0700c011c6 - Fix #3817: core dump happens in libunbound delete, when queued 
servfail hits deleted message queue.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4587 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-15 13:32:19 +00:00
wouter
4d4669b2cc - tls-cert-bundle option in unbound.conf enables TLS authentication. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 10:35:09 +00:00
wouter
19c3997e15 Fixup tests for checklocks. Add auth axfr test for socket code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4511 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-05 15:33:32 +00:00
wouter
4f5bbce421 auth zone for downstream 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 08:30:32 +00:00
wouter
f92f7fb2d6 auth zone, make depend, fallback, create and delete, and lease_time, 
and lock fixes.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4466 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-30 10:35:20 +00:00
wouter
3338ac15eb - auth zone work. probe hostname lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4411 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-01 14:02:28 +00:00
wouter
cc34c6bd06 authzone work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 15:11:20 +00:00
wouter
f6767b6484 - authzone work, probe timer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 09:03:36 +00:00
wouter
c523378d4e - Fix trust-anchor-signaling works in libunbound. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4362 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-05 10:37:34 +00:00
wouter
87a108b346 - Fix #1440: [dnscrypt] client nonce cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:55:08 +00:00
wouter
e2aaf5e9a7 - Fix #1435: Please allow UDP to be disabled separately upstream and 
downstream.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4349 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 08:42:24 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:29:28 +00:00
wouter
ce208bb8fe - Fix #1417: [dnscrypt] shared secret cache counters, and works when 
dnscrypt is not enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4326 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 08:06:17 +00:00
ralph
d073e3e262 - Added stats for queries that have been ratelimited by domain recursion. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 12:52:33 +00:00
wouter
2f22e0e328 - upgrade aclocal(pkg.m4 0.29.1), config.guess(2016-10-02), 
config.sub(2016-09-05).
- annotate case statement fallthrough for gcc 7.1.1.
- flex output from flex 2.6.1.
- snprintf of thread number does not warn about truncated string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4278 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:04:18 +00:00
wouter
4de115410e - Fix #1331: libunbound segfault in threaded mode when context is 
deleted.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4258 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 11:41:32 +00:00
wouter
c19a0cbb0d - better module memory lookup, fix of unbound-control shm names for 
module memory printout of statistics.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 14:16:59 +00:00
george
51e798d701 - Implemented opportunistic IPsec support module (ipsecmod). 
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 12:39:24 +00:00
wouter
6e077f9cf9 - (for 1.6.3:) unbound.h exports the shm stats structures. They use 
type long long and no ifdefs, and ub_ before the typenames.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4117 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 12:47:29 +00:00
ralph
4113eb0a41 - Generalise inplace callback (de)registration 
- (de)register inplace callbacks for module id
- No unbound-control set_option for ECS options
- Deprecated client-subnet-opcode config option
- Introduced client-subnet-always-forward config option
- Changed max-client-subnet-ipv6 default to 56 (as in RFC)
- Removed extern ECS config options
- module_restart_next now calls clear on all following modules
- Also create ECS module qstate on module_event_pass event


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-06 13:13:06 +00:00
wouter
54bfc89f6b compile fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3990 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 11:34:21 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t 
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 10:25:41 +00:00
wouter
affae9bc85 - Fix to Rename ub_callback_t to ub_callback_type, because POSIX 
reserves _t typedefs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3988 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 09:08:15 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
ralph
4097f78b84 pass ssl_upstream as int to (lib)worker_send_query 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3924 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 14:02:22 +00:00
ralph
3fb4900c0e - Added stub-ssl-upstream and forward-ssl-upstream options. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3923 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 12:07:52 +00:00
wouter
a622051af1 - Fixup query_info local_alias init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3901 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 15:05:30 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that 
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:18:20 +00:00
ralph
083a936fb3 Added views functionality. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-05 09:36:25 +00:00
wouter
2f8e0608fa - access-control-tag-data implemented. verbose(4) prints tag debug. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:20:05 +00:00
ralph
88e5f3d21d - Possibility to specify local-zone types for an acl/tag pair 
- Possibility to specify (override) local-zone types for a source address block


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-24 19:08:58 +00:00
ralph
e4444eecc9 - Lookup localzones by taglist from acl. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 08:36:19 +00:00
wouter
d9ce73c79e - Fix libubound for edns optlist feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3744 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-02 07:17:38 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
wouter
1ad184b5e2 - Fix time in case answer comes from cache in ub_resolve_event(). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3732 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-30 12:48:11 +00:00
willem
4ccfd1751e One review comment and something I forgot :-( 
git-svn-id: https://unbound.nlnetlabs.nl/svn/branches/ub_event@3648 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-07 16:01:09 +00:00
willem
b8f745d47d User defined pluggable event mechanism (for review) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/branches/ub_event@3647 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-07 14:10:06 +00:00
wouter
fb81dd7f57 - Fix #745: unbound.py - idn2dname throws UnicodeError when idnname 
contains trailing dot. (Fix from Ralph)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3644 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-02 08:18:38 +00:00
wouter
3b4f348a23 prettier, now for the zone syntax check. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-23 13:29:35 +00:00