townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

686 Commits

Author SHA1 Message Date
wouter
393bb36e37 - #4103: Fix that auth-zone does not insist on SOA record first in 
file for url downloads.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4729 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 07:09:01 +00:00
wouter
ab61a40dd4 - Rename tls-additional-ports to tls-additional-port, because every 
line adds one port.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4721 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 08:45:57 +00:00
wouter
0208ba98c8 - Fix crash if ratelimit taken into use with unbound-control 
instead of with unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4711 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-05 07:06:19 +00:00
wouter
5399c14f2f - Fix deadlock caused by incoming notify for auth-zone. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 09:01:55 +00:00
wouter
472d02ab51 - Rename additional-tls-port to tls-additional-ports. 
The older name is accepted for backwards compatibility.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4703 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-01 08:02:04 +00:00
wouter
0ab6ec77d0 - For TCP and TLS connections that don't establish, perform address 
update in infra cache, so future selections can exclude them.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4693 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-25 06:21:39 +00:00
wouter
c2d8866e86 - Fix mesh state assertion failure due to callback removal. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4681 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-07 11:29:12 +00:00
wouter
bb358ef952 - Fix fail to reject dead peers in forward-zone, with ssl-upstream. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4670 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-02 06:36:02 +00:00
ralph
a20b463a88 - Fix memory leak when caching wildcard records for aggressive NSEC use 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4662 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-25 13:13:05 +00:00
ralph
38b5b4c8c6 - Added root-key-sentinel support 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4652 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-24 09:03:49 +00:00
wouter
34247dd0ce - list_auth_zones unbound-control command. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4650 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-23 14:42:30 +00:00
wouter
76859ebf43 - Attempt for auth zone fix; add of callback in mesh gets from 
callback does not skip callback of result.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4647 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-23 12:51:00 +00:00
wouter
6d975fbd67 - Fix sldns parse failure for CDS alternate delete syntax empty hex. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4646 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-23 10:35:35 +00:00
wouter
c575ac1183 - auth zone http download stores exact copy of downloaded file, 
including comments in the file.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4645 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-23 10:13:50 +00:00
wouter
ce7cef1724 - Delete auth zone when removed from config. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4642 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-20 14:40:07 +00:00
wouter
bded8be7c7 - Fix #4091: Fix that reload of auth-zone does not merge the zonefile 
with the previous contents.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4641 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-20 14:15:34 +00:00
wouter
a30d67d8c7 fix doxygen comments. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4632 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:16:10 +00:00
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name 
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:10:05 +00:00
wouter
3254314eb5 - Fix auth-zone retry timer to be on schedule with retry timeout, 
with backoff.  Also time a refresh at the zone expiry.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4630 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-18 06:43:02 +00:00
wouter
329a8e105e - allow-notify: config statement for auth-zones. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4628 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-17 13:23:35 +00:00
wouter
625acbaaec - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4627 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-17 12:18:34 +00:00
wouter
9f36d666b2 - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4626 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-16 15:10:30 +00:00
wouter
705a0dfed8 - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-16 14:24:57 +00:00
wouter
c983bccafe - Fix auth zone target lookup iterator. 
- notify with prefix


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4624 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-16 13:14:24 +00:00
wouter
261197b7e8 - Fix memory free on fail for $INCLUDE in authzone. 
- Fix that an internal error to look up the wrong rr type for
  auth zone gets stopped, before trying to send there.
- auth zone notify work.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-13 13:04:26 +00:00
wouter
524a1465fd - Fix for max include depth for authzones. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4622 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-13 06:25:30 +00:00
wouter
a892c6b732 fix lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4621 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 15:06:51 +00:00
wouter
96756438cf - auth zone notify work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-10 14:57:38 +00:00
wouter
32d7d269e4 - num.query.authzone.up and num.query.authzone.down statistics counters. 
- Fix downstream auth zone, only fallback when auth zone fails to
  answer and fallback is enabled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-09 10:15:06 +00:00
ralph
f1cf9f9824 - Check "result" in dup_all(), by Florian Obser. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4598 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-29 08:02:26 +00:00
wouter
36b33709c0 fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4590 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-15 14:28:04 +00:00
wouter
c549551a6c - Create additional tls service interfaces by opening them on other 
portnumbers and listing the portnumbers as additional-tls-port: nr.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4588 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-15 14:19:02 +00:00
wouter
7babf441ee Test and fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4583 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-13 13:14:56 +00:00
wouter
e39ce268e3 - Fix #3736: Fix 0 TTL domains stuck on SERVFAIL unless manually 
flushed with serve-expired on.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4582 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-13 12:52:11 +00:00
wouter
e577f90bb8 - Check IXFR start serial. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4579 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-12 14:34:24 +00:00
wouter
2b00a5d314 - Attempt to remove warning about trailing whitespace. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4568 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-07 08:52:18 +00:00
wouter
ed4f6f2c2f - Fix for windows compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4563 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-03-06 09:18:53 +00:00
ralph
3377e6f8ee - Save wildcard RRset from answer with original owner for use in aggressive 
NSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4550 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-22 15:12:31 +00:00
wouter
2c129d2a5c fix noview. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4543 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-19 13:30:38 +00:00
wouter
67f76f85dc - Fix for more maintainable code in localzone. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4542 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-19 13:21:57 +00:00
wouter
80ab137e03 - local-zone noview can be used to break out of the view to the 
global local zone contents, for queries for that zone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4540 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-19 12:13:23 +00:00
wouter
fcd9b8c448 auth zone: default is https if no 'http://' given. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4536 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 14:28:51 +00:00
wouter
b52ca6417e auth zone whitespace fixes and input validation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4535 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 14:26:20 +00:00
wouter
2b221f3140 auth zone review fixes 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4534 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 14:09:57 +00:00
wouter
4d4669b2cc - tls-cert-bundle option in unbound.conf enables TLS authentication. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-13 10:35:09 +00:00
wouter
2076e1e2f8 auth zone work, nicer debug output. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4527 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-09 08:23:20 +00:00
wouter
647c958d76 auth zone stop sending packets when the application quits. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4526 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-09 08:14:06 +00:00
wouter
b8a397affc auth zone http work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4524 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-08 15:14:51 +00:00
wouter
7c5497d3b4 auth zone work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4523 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-08 14:37:36 +00:00
ralph
35bc8a1ecc - Aggressive use of NSEC implementation. Use cached NSEC records to generate 
NXDOMAIN, NODATA and positive wildcard answers.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4522 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-08 13:16:36 +00:00