townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

686 Commits

Author SHA1 Message Date
wouter
bf39361671 fixup locks. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4415 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-04 09:50:31 +00:00
wouter
bf32cf4686 auth zone transfer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4413 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-01 16:04:54 +00:00
wouter
276a63a121 iterate probe over looked up ip4 and ip6 addresses 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4412 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-01 14:20:55 +00:00
wouter
3338ac15eb - auth zone work. probe hostname lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4411 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-12-01 14:02:28 +00:00
wouter
0dfd3238d7 note that state must be separated because of error corner cases. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4410 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-30 16:07:10 +00:00
wouter
c8b4fc87ea upgraded comment 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4407 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-16 14:36:23 +00:00
wouter
98a152c9c8 fix for lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4406 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-14 16:05:00 +00:00
wouter
9efb904454 - auth xfer work on probe timer and lookup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4405 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-14 15:58:24 +00:00
wouter
58a0187a18 unused void cast. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4400 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-09 16:06:27 +00:00
wouter
6c4ad226a5 - make ip-transparent option work on OpenBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4393 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-11-02 09:34:19 +00:00
ralph
d1c485bc4c - Fix #2031: Double included headers 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4388 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-25 13:30:32 +00:00
wouter
e004cf81b7 authzone, handle probe return packets. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4384 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-20 14:43:51 +00:00
wouter
80987455c9 fix lint 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4383 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-20 12:13:37 +00:00
wouter
516f8fc5c5 corrected fix for test link. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4382 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-20 11:55:19 +00:00
wouter
533368b8d8 fix test link 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4381 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 15:14:00 +00:00
wouter
cc34c6bd06 authzone work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 15:11:20 +00:00
wouter
735c650fb5 fix doxygen 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4379 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 10:18:09 +00:00
wouter
f6767b6484 - authzone work, probe timer setup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-19 09:03:36 +00:00
wouter
6f83cdd0a5 - lint for recent authzone commit. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4377 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-18 06:43:51 +00:00
wouter
77d3988ed5 - Work on local root zone code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4376 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-10-17 15:16:31 +00:00
ralph
4d5b70bbb0 - Log name of looping module 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4357 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-21 08:19:47 +00:00
wouter
f5d8f50530 - Fix DNSCACHE_STORE_ZEROTTL to be bigger than 0xffff. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4355 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 11:54:58 +00:00
wouter
f8f0018259 assert and lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4354 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 09:15:59 +00:00
wouter
6c6d33763d - use a cachedb answer even if it's "expired" when serve-expired is yes 
(patch from Jinmei Tatuya).
- trigger refetching of the answer in that case (this will bypass
  cachedb lookup)
- allow storing a 0-TTL answer from cachedb in the in-memory message
  cache when serve-expired is yes


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-19 09:08:29 +00:00
wouter
5251daea1e - Fix that looping modules always stop the query, and don't pass 
control.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4348 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-18 07:54:24 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-09-15 14:29:28 +00:00
wouter
15de64688c - Fix #1418: [ip ratelimit] initialize slabhash using 
ip-ratelimit-slabs.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4330 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 12:02:14 +00:00
wouter
69cabf506e - Fix issue on macOX 10.10 where TCP fast open is detected but not 
implemented causing TCP to fail. The fix allows fallback to regular
  TCP in this case and is also more robust for cases where connectx()
  fails for some reason.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4304 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-21 11:44:46 +00:00
wouter
df7d82a267 - Fix #1397: Recursive DS lookups for AS112 zones names should recurse. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4294 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-07 07:42:45 +00:00
wouter
6521d82bb4 - squelch TCP fast open error on FreeBSD when kernel has it disabled, 
unless verbosity is high.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4279 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:14:42 +00:00
wouter
2f22e0e328 - upgrade aclocal(pkg.m4 0.29.1), config.guess(2016-10-02), 
config.sub(2016-09-05).
- annotate case statement fallthrough for gcc 7.1.1.
- flex output from flex 2.6.1.
- snprintf of thread number does not warn about truncated string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4278 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:04:18 +00:00
wouter
4ebb3f5a05 - Redirect all localhost names to localhost address for RFC6761. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4273 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-11 14:29:54 +00:00
wouter
7e2a0e920a - Fix #1344: RFC6761-reserved domains: test. and invalid. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4272 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-11 13:27:33 +00:00
wouter
cea4abd035 - Remove signed unsigned warning from authzone. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4251 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-27 10:54:15 +00:00
ralph
de47cbbb23 - Fix #1277: disable domain ratelimit by setting value to 0. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4235 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-16 13:22:43 +00:00
wouter
60d7c41f55 - More fixes in depth for buffer checks in 0x20 qname checks. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4225 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-13 14:34:44 +00:00
wouter
0826cc1278 - Fix #1280: Unbound fails assert when response from authoritative 
contains malformed qname.  When 0x20 caps-for-id is enabled, when
  assertions are not enabled the malformed qname is handled correctly.
- 1.6.3 tag created, with only #1280 fix, trunk is 1.6.4 development.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4224 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-13 14:25:47 +00:00
wouter
a45cc6ec21 - Fix #1278: Incomplete wildcard proof. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4218 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-06-12 10:11:28 +00:00
ralph
badd1be3bb - Also use global local-zones when there is a matching view that does not have 
any local-zone specified. 


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4202 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-31 11:45:39 +00:00
ralph
9babcab33c - Fix #1269: inconsistent use of built-in local zones with views. 
- Add defaults for new local-zone trees added to views using unbound-control.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4199 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-30 13:04:19 +00:00
wouter
d2ae534d08 - printout localzone for duplicate local-zone warnings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4193 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-26 11:09:16 +00:00
wouter
dd915ea06e lint fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4190 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-24 12:32:39 +00:00
wouter
b8e1e6cc10 - authzone cname chain, no rrset duplicates, wildcard doesn't change 
rrsets added for cname chain.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4189 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-24 12:26:44 +00:00
wouter
f97cd3822d save about 90 bytes per rrset and fix NSEC cover finding. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4188 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 15:36:17 +00:00
wouter
ed5c8b2603 Fix wildcard, DS lookup, CNAME from DNAME, and returnvalue check in unit test. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4185 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 12:47:54 +00:00
wouter
f7bc2af0a5 fix minimum ttl, verbose domain and ce determination and fix unit test qname length 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4181 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 10:07:10 +00:00
wouter
c710bbb765 lint fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4180 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 09:41:12 +00:00
wouter
e781fc07b4 - first services/authzone check in, it compiles and reads and writes 
zonefiles.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4178 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-23 09:32:40 +00:00
wouter
c19a0cbb0d - better module memory lookup, fix of unbound-control shm names for 
module memory printout of statistics.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 14:16:59 +00:00
george
51e798d701 - Implemented opportunistic IPsec support module (ipsecmod). 
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 12:39:24 +00:00
wouter
eebaef35c9 - Adjust servfail by iterator to not store in cache when serve-expired 
is enabled, to avoid overwriting useful information there.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4153 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-12 12:16:41 +00:00
wouter
f9c3b4b818 - Set SO_REUSEADDR on outgoing tcp connections to fix the bind before 
connect limited tcp connections.  With the option tcp connections
  can share the same source port (for different destinations).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4151 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-08 10:41:03 +00:00
wouter
c7dfc3053b - Fix tcp-mss failure printout text. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4150 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-08 07:15:48 +00:00
ralph
865b0eb154 - Added mesh_add_sub to add detached mesh entries. 
- Use mesh_add_sub for key tag signaling queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4144 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-02 13:17:56 +00:00
ralph
e61bcbfd71 - Fix #1252: more indentation inconsistencies. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4125 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-18 09:00:52 +00:00
wouter
059c3b9f93 - Fix #1250: inconsistent indentation in services/listen_dnsport.c. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4113 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 07:17:05 +00:00
ralph
6bb149e7b9 - Properly check for allocation failure in local_data_find_tag_datas. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4109 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-12 12:44:53 +00:00
george
fb883575c5 - Fix pythonmod for cb changes. 
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4099 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-07 17:07:16 +00:00
ralph
4113eb0a41 - Generalise inplace callback (de)registration 
- (de)register inplace callbacks for module id
- No unbound-control set_option for ECS options
- Deprecated client-subnet-opcode config option
- Introduced client-subnet-always-forward config option
- Changed max-client-subnet-ipv6 default to 56 (as in RFC)
- Removed extern ECS config options
- module_restart_next now calls clear on all following modules
- Also create ECS module qstate on module_event_pass event


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-06 13:13:06 +00:00
ralph
5db6e95520 - Do not add current time twice to TTL before ECS cache store. 
- Do not touch rrset cache after ECS cache message generation.
- Use LDNS_EDNS_CLIENT_SUBNET as default ECS opcode.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4086 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-03 09:36:18 +00:00
ralph
12728301d7 - Merge EDNS Client subnet implementation from feature branch into main branch, 
using new EDNS processing framework.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-21 12:08:17 +00:00
wouter
6f6b204768 more fixups. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4067 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 15:16:19 +00:00
wouter
25d0a7279d - make depend, autoconf, remove warnings about statement before var. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4066 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 15:09:06 +00:00
wouter
a48c8c5ba0 - #1217. DNSCrypt support, with --enable-dnscrypt, libsodium and then 
enabled in the config file from Manu Bretelle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4065 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 14:55:31 +00:00
wouter
d8308db36b please doxygen. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4039 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-08 08:27:17 +00:00
wouter
099cd16231 - Response actions based on IP address from Jinmei Tatuya (Infoblox). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-07 14:58:51 +00:00
wouter
326a848749 - Fix for type name change and fix warning on windows compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4002 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-02-08 13:55:28 +00:00
wouter
474df4dd8e - Fix 1211: Fix can't enable interface-automatic if no IPv6 with 
more helpful error message.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3995 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-26 11:03:06 +00:00
wouter
54bfc89f6b compile fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3990 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 11:34:21 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t 
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 10:25:41 +00:00
wouter
3510c9fe88 - Fix #1185: Source IP rate limiting, patch from Larissa Feng. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-05 13:57:12 +00:00
wouter
59ef29ffc6 - Fix #1184: Log DNS replies. This includes the same logging 
information that DNS queries and response code and response size,
  patch from Larissa Feng.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3980 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-05 11:39:54 +00:00
wouter
2fce5ecdb6 Remove warnings about unused variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3977 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-03 14:01:12 +00:00
wouter
3ea720544a - configure --enable-systemd and lets unbound use systemd sockets if 
you enable use-systemd: yes in unbound.conf.
  Also there are contrib/unbound.socket and contrib/unbound.service:
  systemd files for unbound, install them in /usr/lib/systemd/system.
  Contributed by Sami Kerola and Pavel Odintsov.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3975 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-03 13:43:29 +00:00
ralph
3b3e257e29 Pass RCODE value to encode as int to local_error_encode() 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3973 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-23 12:34:02 +00:00
ralph
4087fc2b30 - Fix #1190: Do not echo back EDNS options in local-zone error response. 
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3972 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-23 11:46:54 +00:00
ralph
d3e75b9829 - Fix #1191: remove comment about view deletion. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3970 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-19 11:37:05 +00:00
wouter
5ccd625858 - Fix #1182: Fix Resource leak (socket), at startup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3961 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-13 12:55:55 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
ralph
53fd252cbe add unset type to localzone_type enum, used for unset tag_action elements 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3946 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-05 15:52:47 +00:00
ralph
1bd4c7b445 - Fix #1173: differ local-zone type deny from unset tag_actions element. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3945 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-05 14:48:49 +00:00
ralph
7f129989a4 Remove bugzila reference 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3943 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-01 14:49:54 +00:00
wouter
c85bc4dac0 - braces in view.c around lock statements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-29 15:28:25 +00:00
ralph
b4889ffa4d - QNAME minimisation uses QTYPE=A, therefore always check cache for 
this type in harden-below-nxdomain functionality.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3932 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:50:53 +00:00
wouter
251ee80c3d remove unused variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3931 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:18:33 +00:00
ralph
36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin 
consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain
  of the NSEC owner.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:10:48 +00:00
wouter
ba9a05f5e6 - Fix #1154: segfault when reading config with duplicate zones. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3922 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 08:16:55 +00:00
wouter
a622051af1 - Fixup query_info local_alias init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3901 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 15:05:30 +00:00
wouter
0d07974baf - Fixup query_info local_alias init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3899 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 14:55:57 +00:00
wouter
a3d0df3258 - init lzt variable, for older gcc compiler warnings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3896 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 07:57:12 +00:00
wouter
82afa0ef30 - Please doxygen by modifying mesh.h 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3892 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:59:17 +00:00
wouter
be164dce50 - Fix #1125: unbound could reuse an answer packet incorrectly for 
clients with different EDNS parameters, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3888 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:42:08 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that 
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:18:20 +00:00
wouter
ec9a8f573a - Re-fix #839 from view commit overwrite. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3882 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-17 14:37:59 +00:00
ralph
224d50bc0a - Free view config elements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3881 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-12 10:09:42 +00:00
ralph
083a936fb3 Added views functionality. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-05 09:36:25 +00:00
wouter
52f4ab1682 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-30 09:37:20 +00:00
wouter
785255fed1 - Fix #841: big local-zone's make it consume large amounts of memory. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3874 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-29 13:11:26 +00:00
wouter
7f51472812 - Fix #839: Memory grows unexpectedly with large RPZ files. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3872 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-29 08:08:51 +00:00
wouter
e09299a233 - Fix #836: unbound could echo back EDNS options in an error response. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3870 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-27 12:22:56 +00:00
wouter
e2e6ff5dd3 - Fix dnstap relaying "random" messages instead of resolver/forwarder 
responses, from Nikolay Edigaryev.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3869 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-27 11:56:55 +00:00
wouter
6a6e3f2ff9 Fixup unlock. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-15 11:48:37 +00:00
wouter
918edc29a0 - Fix 883: error for duplicate local zone entry. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3858 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-15 10:59:26 +00:00
wouter
7caf19b386 please lint but also allow larger structure 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3855 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:38:16 +00:00
wouter
2e4d094696 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:35:33 +00:00
wouter
b48ea2743f - Fix #828: missing type in access-control-tag-action redirect results 
in NXDOMAIN.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3850 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-05 14:30:24 +00:00
ralph
3d013230ed Fix #820: set sldns_str2wire_rr_buf() dual meaning len parameter 
in each iteration in find_tag_datas().



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3832 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-08-24 09:18:38 +00:00
wouter
b80df3881a - Fix #804: unbound stops responding after outage. Fixes queries 
that attempt to wait for an empty list of subqueries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-08-23 08:30:12 +00:00
wouter
d2d9015302 - Fix #802: workaround for function parameters that are "unused" 
without log_assert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3823 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-22 07:05:52 +00:00
wouter
00de3201e8 remove statement before declaration warning. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3820 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-19 10:30:53 +00:00
wouter
15a7d5fd1e - Fix #798: Client-side TCP fast open fails (Linux). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3819 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-18 13:54:32 +00:00
wouter
cf6f495613 - TCP Fast open patch from Sara Dickinson. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3814 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-14 07:06:34 +00:00
wouter
37658f78cc lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3813 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:31:50 +00:00
wouter
0b3a082932 lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3812 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:27:16 +00:00
wouter
2f8e0608fa - access-control-tag-data implemented. verbose(4) prints tag debug. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:20:05 +00:00
wouter
6bc02a32b2 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux 
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-04 14:51:30 +00:00
ralph
ea6c893c82 typo fix (thanks lint) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3798 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-24 19:20:13 +00:00
ralph
88e5f3d21d - Possibility to specify local-zone types for an acl/tag pair 
- Possibility to specify (override) local-zone types for a source address block


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-24 19:08:58 +00:00
wouter
bc68efdf40 fixup lookup to find for tag and override. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3768 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 15:05:54 +00:00
ralph
852ea8802a - Possibility to lookup local_zone regardless the taglist. 
- Added local_zone/taglist/acl unit test.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3767 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 14:31:30 +00:00
ralph
f1dd9def49 - Lint fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3765 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 08:43:30 +00:00
ralph
e4444eecc9 - Lookup localzones by taglist from acl. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 08:36:19 +00:00
wouter
7384cd8c71 - local-zone-override config directive. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3758 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-06 10:00:25 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
wouter
51e506c568 fixup upstream edns opts. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3741 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 15:52:33 +00:00
wouter
f3d914e425 - generic edns option parse and store code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 15:08:05 +00:00
wouter
d03179e264 - Fix memory leak in out-of-memory conditions of local zone add. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3717 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-06 06:56:51 +00:00
wouter
510f53edb9 - Fix #759: 0x20 capsforid no longer checks type PTR, for 
compatibility with cisco dns guard.  This lowers false positives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3715 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-28 07:24:50 +00:00
wouter
cf11bd429f Fix input length. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3711 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 12:29:27 +00:00
wouter
38a60dd086 please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3709 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 09:57:44 +00:00
wouter
09da84af77 define-tag and local-zone-tag configuration. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3708 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 09:49:02 +00:00
wouter
c205ed7daf please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:39:16 +00:00
wouter
7d48d0a93b Slightly more general (i.e. for TYPE0 too). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3703 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:23:21 +00:00
wouter
e9465717a6 Explain what we do. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3702 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:00:57 +00:00
wouter
d71745a17e - Fix some malformed reponses to edns queries get fallback to nonedns. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3701 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 11:56:55 +00:00
wouter
704a4a7c48 - cachedb module framework (empty). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-14 14:50:18 +00:00
ralph
dfff30e7ee - Validate QNAME minimised NXDOMAIN responses. 
- If QNAME minimisation is enabled, do cache lookup for QTYPE NS in
   harden-below-nxdomain.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3682 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-18 15:44:41 +00:00
wouter
c802903845 Fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3677 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 08:15:27 +00:00
wouter
23eed13fbe - Fix ip-transparent for tcp on freebsd. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3676 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 08:13:25 +00:00
wouter
60d06dae7c - Fix ip-transparent for ipv6 on FreeBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3675 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 07:20:35 +00:00
wouter
cc92e91d47 - ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for 
binding to an IP address while the interface or address is down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-15 09:35:48 +00:00
wouter
e93f50f768 - Fix #747: assert in outnet_serviced_query_stop. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3646 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-07 10:00:08 +00:00
wouter
5ad82c4e0b - Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-17 08:02:32 +00:00
wouter
985d70f311 - ip-transparent option for FreeBSD with IP_BINDANY socket option. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-15 08:17:54 +00:00
wouter
1459ca9220 - insecure-lan-zones: yesno config option, patch from Dag-Erling 
Smørgrav.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-09 13:25:59 +00:00
wouter
276cb19fc7 - Support RFC7686: handle ".onion" Special-Use Domain. It is blocked 
by default, and can be unblocked with "nodefault" localzone config.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3593 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 14:02:45 +00:00
wouter
b3721116d3 Fix signed-unsigned lint warnings in tcp-mss. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3592 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:08:37 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch 
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:03:59 +00:00
wouter
2435cecb6f - Added assert on rrset cache correctness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3545 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-11-20 08:08:11 +00:00
wouter
1030490f5a - ANY responses include DNAME records if present, as per Evan Hunt's 
remark in dnsop.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3504 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-14 08:02:14 +00:00