townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

70 Commits

Author SHA1 Message Date
wouter
bb358ef952 - Fix fail to reject dead peers in forward-zone, with ssl-upstream. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4670 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-05-02 06:36:02 +00:00
wouter
a30d67d8c7 fix doxygen comments. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4632 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:16:10 +00:00
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name 
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-04-19 12:10:05 +00:00
wouter
40286955e2 auth zone work on http feature. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4517 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-02-07 16:10:31 +00:00
wouter
a7ae601c53 auth zone fix comment 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4483 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 15:19:23 +00:00
wouter
e4c6da885f auth zone move file descriptor functionality to outside network 
for the unit test


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-31 14:59:17 +00:00
wouter
a1ad3c1de2 - authzone work, transfer connect. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4420 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-12 15:39:45 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t 
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 10:25:41 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
wouter
6bc02a32b2 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux 
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-04 14:51:30 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
wouter
b3721116d3 Fix signed-unsigned lint warnings in tcp-mss. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3592 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:08:37 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch 
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:03:59 +00:00
wouter
d74c01b712 - dnstap support, with a patch from Farsight Security, written by 
Robert Edmonds. The --enable-dnstap needs libfstrm and protobuf-c.
  It is BSD licensed (see dnstap/dnstap.c).
  Building with --enable-dnstap needs pkg-config with this patch.
- Noted dnstap in doc/README and doc/CREDITS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3206 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-05 07:57:52 +00:00
wouter
c9c7f29161 - Fix caps-for-id fallback, and added fallback attempt when servers 
drop 0x20 perturbed queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 08:24:28 +00:00
wouter
7a5bad49e3 - unbound-control stats prints num.query.tcpout with number of TCP 
outgoing queries made in the previous statistics interval.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3108 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 09:13:58 +00:00
matje
7b88f8ede8 only whitespace changes 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3088 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-18 13:54:19 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
wouter
d1cb31280e - delay-close: msec option that delays closing ports for which 
the UDP reply has timed out.  Keeps the port open, only accepts
  the correct reply.  This correct reply is not used, but the port
  is open so that no port-denied ICMPs are generated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3058 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-28 14:35:55 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
wouter
62c729d59e - Fallback to 1472 and 1232, one fragment size without headers. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2746 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-08-22 08:46:30 +00:00
wouter
a77e89f1d0 - Fix that enables modules to register twice for the same 
serviced_query, without race conditions or administration issues.
  This should not happen with the current codebase, but it is robust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-31 11:33:06 +00:00
wouter
c8396f3878 - Fix timeouts to keep track of query type, A, AAAA and other, if 
another has caused timeout blacklist, different type can still probe.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2613 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 12:17:25 +00:00
wouter
2fb3a6c04f fix tests, the ssl upstream setting is per-query (inside outside_network.c). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2535 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 10:18:56 +00:00
wouter
1f9e9b78fe - dns over ssl support, ssl-service-pem and ssl-service-key files 
can be given and then TCP queries are serviced wrapped in SSL.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-31 14:48:48 +00:00
wouter
8762da8720 infra cache consolidated and stores per zone, IP. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 15:46:23 +00:00
wouter
446aecff27 - TCP-upstream calculates tcp-ping so server selection works if there 
are alternatives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2502 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-23 12:56:28 +00:00
wouter
22e627c381 After UDP timeout EDNS1480 probe, stop fragmentation caused trouble. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2492 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-15 14:32:17 +00:00
wouter
a28362a7fc tcp upstream option. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2480 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 13:58:40 +00:00
wouter
963cb57146 - Fix EDNS probe for .de DNSSEC testbed failure, where the infra 
cache timeout coincided with a server update, the current EDNS 
  backoff is less sensitive, and does not cache the backoff unless 
  the backoff actually works and the domain is not expecting DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2063 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-04-06 08:35:37 +00:00
wouter
d55ef3d18c do-udp: no fixed. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1882 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-29 12:11:38 +00:00
wouter
cfc0a74269 Fix IPv6 detection on XP. 
Fix loop to service on quit when there are messages waiting.

git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1624 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-05-27 08:24:19 +00:00
wouter
9bd4eaf514 Neater configure and no double config.h includes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1545 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-03-24 10:42:57 +00:00
wouter
04ffe11ee9 unwanted reply threshold like in the draft. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1321 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-22 14:36:46 +00:00
wouter
3039466965 EDNS fallback when timeout and multiple query rtt backoff. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1272 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-29 14:50:35 +00:00
wouter
6791fa38ec extended statistics. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1239 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-09-16 14:08:38 +00:00
wouter
efd453c4cc - removed base_port. 
- created 256-port ephemeral space for the OS, 59802 available.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1030 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-04-11 14:10:16 +00:00
wouter
efa3e15e34 - random port selection out of the configged ports. 
- fixup threadsafety for libevent-1.4.3+ (event_base_get_method).



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1029 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-04-11 13:24:49 +00:00
wouter
79ca9b51dc libev can be used (but not multithreaded) and del fd unused. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1023 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-04-09 11:58:53 +00:00
wouter
a792f387a1 can use DNS-0x20 draft casing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@994 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-27 09:21:31 +00:00
wouter
cf50a0bcb7 Faster due to time-sharing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@966 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-02-19 13:12:23 +00:00
wouter
a1338470b9 please doxygen. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@870 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-01-17 08:26:15 +00:00
wouter
b5a046ad99 function pointer whitelists on data types. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@660 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-05 11:41:12 +00:00
wouter
317be8f466 fptr whitelist network code callbacks. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@659 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-05 08:05:06 +00:00
wouter
eb4d666bf5 security audit changes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@657 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-04 15:10:11 +00:00
wouter
e1ea5b743b No leakage warning for double serviced callback. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@582 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-04 07:57:06 +00:00
wouter
8a2e0534e0 No double use of buffers. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@552 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 08:03:45 +00:00
wouter
7866ca5398 fixups for memory. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-14 13:15:36 +00:00