townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

686 Commits

Author SHA1 Message Date
wouter
eebaef35c9 - Adjust servfail by iterator to not store in cache when serve-expired 
is enabled, to avoid overwriting useful information there.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4153 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-12 12:16:41 +00:00
wouter
f9c3b4b818 - Set SO_REUSEADDR on outgoing tcp connections to fix the bind before 
connect limited tcp connections.  With the option tcp connections
  can share the same source port (for different destinations).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4151 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-08 10:41:03 +00:00
wouter
c7dfc3053b - Fix tcp-mss failure printout text. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4150 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-08 07:15:48 +00:00
ralph
865b0eb154 - Added mesh_add_sub to add detached mesh entries. 
- Use mesh_add_sub for key tag signaling queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4144 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-02 13:17:56 +00:00
ralph
e61bcbfd71 - Fix #1252: more indentation inconsistencies. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4125 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-18 09:00:52 +00:00
wouter
059c3b9f93 - Fix #1250: inconsistent indentation in services/listen_dnsport.c. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4113 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 07:17:05 +00:00
ralph
6bb149e7b9 - Properly check for allocation failure in local_data_find_tag_datas. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4109 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-12 12:44:53 +00:00
george
fb883575c5 - Fix pythonmod for cb changes. 
- Some whitespace fixup.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4099 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-07 17:07:16 +00:00
ralph
4113eb0a41 - Generalise inplace callback (de)registration 
- (de)register inplace callbacks for module id
- No unbound-control set_option for ECS options
- Deprecated client-subnet-opcode config option
- Introduced client-subnet-always-forward config option
- Changed max-client-subnet-ipv6 default to 56 (as in RFC)
- Removed extern ECS config options
- module_restart_next now calls clear on all following modules
- Also create ECS module qstate on module_event_pass event


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-06 13:13:06 +00:00
ralph
5db6e95520 - Do not add current time twice to TTL before ECS cache store. 
- Do not touch rrset cache after ECS cache message generation.
- Use LDNS_EDNS_CLIENT_SUBNET as default ECS opcode.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4086 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-03 09:36:18 +00:00
ralph
12728301d7 - Merge EDNS Client subnet implementation from feature branch into main branch, 
using new EDNS processing framework.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-21 12:08:17 +00:00
wouter
6f6b204768 more fixups. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4067 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 15:16:19 +00:00
wouter
25d0a7279d - make depend, autoconf, remove warnings about statement before var. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4066 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 15:09:06 +00:00
wouter
a48c8c5ba0 - #1217. DNSCrypt support, with --enable-dnscrypt, libsodium and then 
enabled in the config file from Manu Bretelle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4065 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-20 14:55:31 +00:00
wouter
d8308db36b please doxygen. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4039 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-08 08:27:17 +00:00
wouter
099cd16231 - Response actions based on IP address from Jinmei Tatuya (Infoblox). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-07 14:58:51 +00:00
wouter
326a848749 - Fix for type name change and fix warning on windows compile. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4002 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-02-08 13:55:28 +00:00
wouter
474df4dd8e - Fix 1211: Fix can't enable interface-automatic if no IPv6 with 
more helpful error message.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3995 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-26 11:03:06 +00:00
wouter
54bfc89f6b compile fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3990 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 11:34:21 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t 
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-19 10:25:41 +00:00
wouter
3510c9fe88 - Fix #1185: Source IP rate limiting, patch from Larissa Feng. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-05 13:57:12 +00:00
wouter
59ef29ffc6 - Fix #1184: Log DNS replies. This includes the same logging 
information that DNS queries and response code and response size,
  patch from Larissa Feng.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3980 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-05 11:39:54 +00:00
wouter
2fce5ecdb6 Remove warnings about unused variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3977 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-03 14:01:12 +00:00
wouter
3ea720544a - configure --enable-systemd and lets unbound use systemd sockets if 
you enable use-systemd: yes in unbound.conf.
  Also there are contrib/unbound.socket and contrib/unbound.service:
  systemd files for unbound, install them in /usr/lib/systemd/system.
  Contributed by Sami Kerola and Pavel Odintsov.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3975 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-03 13:43:29 +00:00
ralph
3b3e257e29 Pass RCODE value to encode as int to local_error_encode() 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3973 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-23 12:34:02 +00:00
ralph
4087fc2b30 - Fix #1190: Do not echo back EDNS options in local-zone error response. 
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3972 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-23 11:46:54 +00:00
ralph
d3e75b9829 - Fix #1191: remove comment about view deletion. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3970 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-19 11:37:05 +00:00
wouter
5ccd625858 - Fix #1182: Fix Resource leak (socket), at startup. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3961 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-13 12:55:55 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
ralph
53fd252cbe add unset type to localzone_type enum, used for unset tag_action elements 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3946 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-05 15:52:47 +00:00
ralph
1bd4c7b445 - Fix #1173: differ local-zone type deny from unset tag_actions element. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3945 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-05 14:48:49 +00:00
ralph
7f129989a4 Remove bugzila reference 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3943 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-01 14:49:54 +00:00
wouter
c85bc4dac0 - braces in view.c around lock statements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-29 15:28:25 +00:00
ralph
b4889ffa4d - QNAME minimisation uses QTYPE=A, therefore always check cache for 
this type in harden-below-nxdomain functionality.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3932 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:50:53 +00:00
wouter
251ee80c3d remove unused variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3931 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:18:33 +00:00
ralph
36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin 
consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain
  of the NSEC owner.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:10:48 +00:00
wouter
ba9a05f5e6 - Fix #1154: segfault when reading config with duplicate zones. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3922 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 08:16:55 +00:00
wouter
a622051af1 - Fixup query_info local_alias init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3901 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 15:05:30 +00:00
wouter
0d07974baf - Fixup query_info local_alias init. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3899 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 14:55:57 +00:00
wouter
a3d0df3258 - init lzt variable, for older gcc compiler warnings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3896 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-20 07:57:12 +00:00
wouter
82afa0ef30 - Please doxygen by modifying mesh.h 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3892 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:59:17 +00:00
wouter
be164dce50 - Fix #1125: unbound could reuse an answer packet incorrectly for 
clients with different EDNS parameters, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3888 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:42:08 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that 
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-18 13:18:20 +00:00
wouter
ec9a8f573a - Re-fix #839 from view commit overwrite. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3882 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-17 14:37:59 +00:00
ralph
224d50bc0a - Free view config elements. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3881 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-12 10:09:42 +00:00
ralph
083a936fb3 Added views functionality. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-05 09:36:25 +00:00
wouter
52f4ab1682 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-30 09:37:20 +00:00
wouter
785255fed1 - Fix #841: big local-zone's make it consume large amounts of memory. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3874 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-29 13:11:26 +00:00
wouter
7f51472812 - Fix #839: Memory grows unexpectedly with large RPZ files. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3872 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-29 08:08:51 +00:00
wouter
e09299a233 - Fix #836: unbound could echo back EDNS options in an error response. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3870 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-27 12:22:56 +00:00
wouter
e2e6ff5dd3 - Fix dnstap relaying "random" messages instead of resolver/forwarder 
responses, from Nikolay Edigaryev.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3869 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-27 11:56:55 +00:00
wouter
6a6e3f2ff9 Fixup unlock. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-15 11:48:37 +00:00
wouter
918edc29a0 - Fix 883: error for duplicate local zone entry. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3858 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-15 10:59:26 +00:00
wouter
7caf19b386 please lint but also allow larger structure 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3855 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:38:16 +00:00
wouter
2e4d094696 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:35:33 +00:00
wouter
b48ea2743f - Fix #828: missing type in access-control-tag-action redirect results 
in NXDOMAIN.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3850 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-05 14:30:24 +00:00
ralph
3d013230ed Fix #820: set sldns_str2wire_rr_buf() dual meaning len parameter 
in each iteration in find_tag_datas().



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3832 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-08-24 09:18:38 +00:00
wouter
b80df3881a - Fix #804: unbound stops responding after outage. Fixes queries 
that attempt to wait for an empty list of subqueries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-08-23 08:30:12 +00:00
wouter
d2d9015302 - Fix #802: workaround for function parameters that are "unused" 
without log_assert.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3823 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-22 07:05:52 +00:00
wouter
00de3201e8 remove statement before declaration warning. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3820 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-19 10:30:53 +00:00
wouter
15a7d5fd1e - Fix #798: Client-side TCP fast open fails (Linux). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3819 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-18 13:54:32 +00:00
wouter
cf6f495613 - TCP Fast open patch from Sara Dickinson. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3814 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-14 07:06:34 +00:00
wouter
37658f78cc lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3813 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:31:50 +00:00
wouter
0b3a082932 lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3812 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:27:16 +00:00
wouter
2f8e0608fa - access-control-tag-data implemented. verbose(4) prints tag debug. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-07 10:20:05 +00:00
wouter
6bc02a32b2 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux 
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-04 14:51:30 +00:00
ralph
ea6c893c82 typo fix (thanks lint) 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3798 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-24 19:20:13 +00:00
ralph
88e5f3d21d - Possibility to specify local-zone types for an acl/tag pair 
- Possibility to specify (override) local-zone types for a source address block


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-24 19:08:58 +00:00
wouter
bc68efdf40 fixup lookup to find for tag and override. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3768 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 15:05:54 +00:00
ralph
852ea8802a - Possibility to lookup local_zone regardless the taglist. 
- Added local_zone/taglist/acl unit test.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3767 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 14:31:30 +00:00
ralph
f1dd9def49 - Lint fix 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3765 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 08:43:30 +00:00
ralph
e4444eecc9 - Lookup localzones by taglist from acl. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-07 08:36:19 +00:00
wouter
7384cd8c71 - local-zone-override config directive. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3758 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-06 10:00:25 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
wouter
51e506c568 fixup upstream edns opts. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3741 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 15:52:33 +00:00
wouter
f3d914e425 - generic edns option parse and store code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 15:08:05 +00:00
wouter
d03179e264 - Fix memory leak in out-of-memory conditions of local zone add. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3717 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-06 06:56:51 +00:00
wouter
510f53edb9 - Fix #759: 0x20 capsforid no longer checks type PTR, for 
compatibility with cisco dns guard.  This lowers false positives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3715 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-28 07:24:50 +00:00
wouter
cf11bd429f Fix input length. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3711 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 12:29:27 +00:00
wouter
38a60dd086 please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3709 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 09:57:44 +00:00
wouter
09da84af77 define-tag and local-zone-tag configuration. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3708 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-21 09:49:02 +00:00
wouter
c205ed7daf please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:39:16 +00:00
wouter
7d48d0a93b Slightly more general (i.e. for TYPE0 too). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3703 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:23:21 +00:00
wouter
e9465717a6 Explain what we do. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3702 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 12:00:57 +00:00
wouter
d71745a17e - Fix some malformed reponses to edns queries get fallback to nonedns. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3701 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-18 11:56:55 +00:00
wouter
704a4a7c48 - cachedb module framework (empty). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-14 14:50:18 +00:00
ralph
dfff30e7ee - Validate QNAME minimised NXDOMAIN responses. 
- If QNAME minimisation is enabled, do cache lookup for QTYPE NS in
   harden-below-nxdomain.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3682 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-18 15:44:41 +00:00
wouter
c802903845 Fix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3677 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 08:15:27 +00:00
wouter
23eed13fbe - Fix ip-transparent for tcp on freebsd. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3676 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 08:13:25 +00:00
wouter
60d06dae7c - Fix ip-transparent for ipv6 on FreeBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3675 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-16 07:20:35 +00:00
wouter
cc92e91d47 - ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for 
binding to an IP address while the interface or address is down.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-15 09:35:48 +00:00
wouter
e93f50f768 - Fix #747: assert in outnet_serviced_query_stop. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3646 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-03-07 10:00:08 +00:00
wouter
5ad82c4e0b - Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-17 08:02:32 +00:00
wouter
985d70f311 - ip-transparent option for FreeBSD with IP_BINDANY socket option. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-15 08:17:54 +00:00
wouter
1459ca9220 - insecure-lan-zones: yesno config option, patch from Dag-Erling 
Smørgrav.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-09 13:25:59 +00:00
wouter
276cb19fc7 - Support RFC7686: handle ".onion" Special-Use Domain. It is blocked 
by default, and can be unblocked with "nodefault" localzone config.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3593 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 14:02:45 +00:00
wouter
b3721116d3 Fix signed-unsigned lint warnings in tcp-mss. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3592 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:08:37 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch 
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-01-05 10:03:59 +00:00
wouter
2435cecb6f - Added assert on rrset cache correctness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3545 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-11-20 08:08:11 +00:00
wouter
1030490f5a - ANY responses include DNAME records if present, as per Evan Hunt's 
remark in dnsop.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3504 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-14 08:02:14 +00:00
wouter
8c62cad20d - Fix #677 Fix DNAME responses from cache that failed internal chain 
test.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-06-26 07:27:32 +00:00
wouter
a2f75d6c35 - caps-whitelist in unbound.conf allows whitelist of loadbalancers 
that cannot work with caps-for-id or its fallback.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-05-01 12:36:16 +00:00
wouter
00288bc5e8 please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3411 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-23 14:04:46 +00:00
wouter
9763997a7c - Synthesize ANY responses from cache. Does not search exhaustively, 
but MX,A,AAAA,SOA,NS also CNAME.
- Fix leaked dns64prefix configuration string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-17 14:58:07 +00:00
wouter
31a8018d22 - Add local-zone type inform_deny, that logs query and drops answer. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3398 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 08:23:06 +00:00
wouter
3971970fa9 fixes for undeclared function. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3394 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 12:19:30 +00:00
wouter
79c9a936cb - unbound-control ratelimit_list lists high rate domains. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 12:13:59 +00:00
wouter
d5e5296e40 Fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3392 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 10:57:25 +00:00
wouter
7062b00d0b - ratelimit feature, ratelimit: 100, or some sensible qps, can be 
used to turn it on.  It ratelimits recursion effort per zone.
  For particular names you can configure exceptions in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3391 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 09:59:57 +00:00
wouter
5b8cd39902 - Fix crash in dnstap: Do not try to log TCP responses after timeout. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3390 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-08 19:58:06 +00:00
wouter
3bf5307254 Fixup rrset unlock in case of allocation failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3381 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 13:15:55 +00:00
wouter
410ac6cd67 - rename ldns subdirectory to sldns to avoid name collision. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 10:21:38 +00:00
wouter
d1bf57dfd1 - Fixes to add integer overflow checks on allocation (defense in depth). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-20 15:36:25 +00:00
wouter
257bd1e4e6 fixup compiler warning on OpenBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3371 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-19 14:47:42 +00:00
wouter
6478a1cbfd - Add ip-transparent config option for bind to non-local addresses. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-19 09:50:35 +00:00
wouter
a4674309ba - Portability to Solaris 10, use AF_LOCAL. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3339 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-02-20 13:55:09 +00:00
wouter
10e38ef90d - Portability fix for Solaris ('sun' is not usable for a variable). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3326 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-30 15:32:59 +00:00
wouter
3e99e99773 Fixup control socket test for OSX. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3320 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-23 16:00:33 +00:00
wouter
5154b3406d - windows port fixes, no AF_LOCAL, no chown, no chmod(grp). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3319 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-23 15:23:58 +00:00
wouter
a5bed77fec - Cast sun_len sizeof to socklen_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3312 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-12 08:20:43 +00:00
wouter
2fa6bb55ef please lint on FreeBSD 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3308 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:49:34 +00:00
wouter
5387d573cf please lint. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3305 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:18:03 +00:00
wouter
9537cdfccf - patch for remote control over local sockets, from Dag-Erling 
Smorgrav, Ilya Bakulin.  Use control-interface: /path/sock and
  control-use-cert: no.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3304 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:12:59 +00:00
wouter
a1a735dcde - Fix #634: fix fail to start on Linux LTS 3.14.X, ignores missing 
IP_MTU_DISCOVER OMIT option.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3298 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-05 13:51:22 +00:00
wouter
b1061c10c8 - local-zone: example.com inform makes unbound log a message with 
client IP for queries in that zone.  Eg. for finding infected hosts.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-12-09 11:29:17 +00:00
wouter
f9213eaf93 - Fix cdflag dns64 processing. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3275 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-11-19 08:43:08 +00:00
wouter
0778829809 - Fix that CD flag disables DNS64 processing, returning the DNSSEC 
signed AAAA denial.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3273 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-11-18 15:15:57 +00:00
wouter
275b0360d4 More casts. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3244 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-13 09:23:12 +00:00
wouter
def3dfd114 More unsigned chasts for toupper/tolower/ctype 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3242 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-13 08:35:00 +00:00
wouter
7383fe8a62 - Updated the TCP_BACLOG from 5 to 256, so that the tcp accept queue 
is longer and more tcp connections can be handled.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3224 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-09-16 13:49:21 +00:00
wouter
7352e5d7cc - Fix tcp timer waiting list removal code. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3222 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-09-16 13:08:27 +00:00
wouter
06a86a6126 remove warning. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3213 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-22 13:38:30 +00:00
wouter
d74c01b712 - dnstap support, with a patch from Farsight Security, written by 
Robert Edmonds. The --enable-dnstap needs libfstrm and protobuf-c.
  It is BSD licensed (see dnstap/dnstap.c).
  Building with --enable-dnstap needs pkg-config with this patch.
- Noted dnstap in doc/README and doc/CREDITS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3206 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-05 07:57:52 +00:00
wouter
f8f0117ea9 - DNS64 from Viagenie (BSD Licensed), written by Simon Perrault. 
Initial commit of the patch from the FreeBSD base (with its fixes).
  This adds a module (for module-config in unbound.conf) dns64 that
  performs DNS64 processing, see README.DNS64.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3198 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-07-31 07:15:33 +00:00
wouter
b3c4bac3da - so-reuseport is available on BSDs(such as FreeBSD 10) and OS/X. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3153 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-27 14:11:57 +00:00
wouter
c9c7f29161 - Fix caps-for-id fallback, and added fallback attempt when servers 
drop 0x20 perturbed queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 08:24:28 +00:00
wouter
8d9d4eea91 - Feature, unblock-lan-zones: yesno that you can use to make unbound 
perform 10.0.0.0/8 and other reverse lookups normally, for use if
  unbound is running service for localhost on localhost.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3133 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-20 10:38:32 +00:00
wouter
af4857922e - Implement draft-ietf-dnsop-rfc6598-rfc6303-01. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3129 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-09 14:33:10 +00:00
wouter
7de5b0ec61 - Fix #545: improved logging, the ip address of the error is printed 
on the same log-line as the error.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3112 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 14:40:20 +00:00
wouter
0b1ed0233c - Fix #558: failed prefetch lookup does not remove cached response 
but delays next prefetch (in lieu of caching a SERVFAIL).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3111 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 13:56:16 +00:00
wouter
7a5bad49e3 - unbound-control stats prints num.query.tcpout with number of TCP 
outgoing queries made in the previous statistics interval.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3108 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 09:13:58 +00:00
wouter
e17025eee3 - Patch from Hannes Frederic Sowa for Linux 3.15 fragmentation 
option for DNS fragmentation defense.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3107 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 08:35:45 +00:00
matje
7b88f8ede8 only whitespace changes 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3088 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-18 13:54:19 +00:00
wouter
9e39b4d2ff And starts service on Minix. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3084 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-14 09:50:25 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
wouter
5ad20035bd - delay-close does not act if there are udp-wait queries, so that 
it does not make a socketdrain DoS easier.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3059 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-30 09:27:00 +00:00
wouter
d1cb31280e - delay-close: msec option that delays closing ports for which 
the UDP reply has timed out.  Keeps the port open, only accepts
  the correct reply.  This correct reply is not used, but the port
  is open so that no port-denied ICMPs are generated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3058 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-28 14:35:55 +00:00
wouter
1315093384 - reuseport is attempted, then fallback to without on failure. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3054 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-27 10:27:19 +00:00
wouter
f8b0477cce Remove warnings on BSD systems. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3053 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 15:15:37 +00:00
wouter
03da1e8f35 - made lint clean. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3050 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 13:23:45 +00:00
wouter
36afba318e - so-reuseport: yesno option to distribute queries evenly over 
threads on Linux (Thanks Robert Edmonds).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3049 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 11:43:38 +00:00
wouter
2920d0fa82 - speed up unbound (reports say it could be up to 10%), by reducing 
lock contention on localzones.lock.  It is changed to an rwlock.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3048 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 11:21:15 +00:00
wouter
511cfd92df - Windows port, adjust %lld to %I64d, and warning in win_event.c. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3040 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-16 16:01:37 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
wouter
61ef2ac265 - Set SO_REUSEADDR so that the wildcard interface and a more specific 
interface port 53 can be used at the same time, and one of the
  daemons is unbound.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2996 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:06:11 +00:00
wouter
658bd3bcf8 - review fixes from Willem. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2945 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-22 14:10:29 +00:00
wouter
b492e89a4d - more fixes that I overlooked. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2944 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-22 07:33:51 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
wouter
ef7be2ae15 - Fix#516 dnssec lameness detection for answers that are improper. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2933 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-08 09:29:33 +00:00
wouter
05e58e752c - Fix#500 use of non-initialised values on socket bind failures. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2901 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-05-16 08:14:03 +00:00
wouter
afab0bf6b0 ifs for portability with NSS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2853 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-02-22 15:16:27 +00:00
wouter
01aedc3205 fix potential uninit variables. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2829 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-29 12:58:50 +00:00
matje
f9aea48aa7 review, found nothing, except for layout and typo 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2785 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-12-03 14:28:06 +00:00
wouter
62c729d59e - Fallback to 1472 and 1232, one fragment size without headers. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2746 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-08-22 08:46:30 +00:00
wouter
8f83f70712 - Fix timeouts so that when a server has been offline for a while 
and is probed to see it works, it becomes fully available for
  server selection again.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2745 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-08-21 07:17:48 +00:00
wouter
a77e89f1d0 - Fix that enables modules to register twice for the same 
serviced_query, without race conditions or administration issues.
  This should not happen with the current codebase, but it is robust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-31 11:33:06 +00:00
wouter
4a9e53af6f - Fix bug#452 and another assertion failure in mesh.c, makes 
assertions in mesh.c resist duplicates.  Fixes DS NS search to
  not generate duplicate sub queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2718 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-20 13:08:19 +00:00
wouter
e3f937a68c Fix compilation without SSL. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2698 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-22 09:11:41 +00:00
wouter
ec417b19da code review. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2688 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-18 14:22:29 +00:00
wouter
9c0e95b8a2 - bug #452: fix crash on assert in mesh_state_attachment. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2683 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-11 12:04:58 +00:00
wouter
225b292ce7 - Fix for accept spinning reported by OpenBSD. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-08 12:08:55 +00:00
wouter
c730f8194f - Fix to squelch 'network unreachable' errors from tcp connect in 
logs, high verbosity will show them.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2634 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-23 09:01:46 +00:00
wouter
5a7af9871a Fix prefetch and stickyness. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2632 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 11:04:53 +00:00
wouter
f467fc9b41 lint and doxygen fixes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2631 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 10:08:07 +00:00
wouter
4c9275628a - Fix sticky NS (ghost domain problem) if prefetch is yes. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-14 11:06:44 +00:00
wouter
257ec6f755 debug infra lines for infa timeout counters. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2616 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 14:48:09 +00:00
wouter
c8396f3878 - Fix timeouts to keep track of query type, A, AAAA and other, if 
another has caused timeout blacklist, different type can still probe.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2613 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 12:17:25 +00:00
wouter
575e9face7 - Slightly smaller critical region in one case in infra cache. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2611 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 09:21:06 +00:00
wouter
23acd425f0 - Fix validation failures (like: validation failure xx: no NSEC3 
closest encloser from yy for DS zz. while building chain of trust,
         because of a bug in the TTL-fix in 1.4.15, it picked the wrong rdata
         for an NSEC3.  Now it does not change rdata, and fixes TTL.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2599 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-01 11:18:07 +00:00
wouter
63cfba3607 - uninitialised variable in reprobe for rtt blocked domains fixed. 
- lintfix and new flex output.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2583 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 15:07:16 +00:00
wouter
25fbc19b64 - Fix bug #425: unbound reports wrong TTL in reply, it reports a TTL 
that would be permissible by the RFCs but it is not the TTL in the
  cache.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2581 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 09:42:32 +00:00
wouter
40900e9e41 - Fix for memory leak (about 20 bytes when a tcp or udp send 
operation towards authority servers failed, takes about 50.000
such failures to leak one Mb, such failures are also
usually logged), reported by Robert Fleischmann.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2578 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-24 11:27:53 +00:00
wouter
035362e901 fix infra cache comparison. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2570 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-13 12:14:40 +00:00
wouter
6e6171f9ae - Fix for tcp-upstream and ssl-upstream for if a laptop sleeps, 
causes SERVFAILs.  Also fixed for UDP (but less likely).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2559 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-30 13:39:11 +00:00
wouter
a1f677fcac - Makefile changed for BSD make compatibility. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-10 18:44:06 +00:00
wouter
1b8de9916c ssl_port setting, so that the dnssec-trigger server can be on one host machine. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2539 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 10:56:42 +00:00
wouter
2fb3a6c04f fix tests, the ssl upstream setting is per-query (inside outside_network.c). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2535 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 10:18:56 +00:00
wouter
a7ef3f7bc4 support for ssl-upstream (works from unbound-control). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 09:26:58 +00:00
wouter
1f9e9b78fe - dns over ssl support, ssl-service-pem and ssl-service-key files 
can be given and then TCP queries are serviced wrapped in SSL.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-31 14:48:48 +00:00
wouter
8762da8720 infra cache consolidated and stores per zone, IP. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 15:46:23 +00:00
wouter
f33c5178d7 - Fix make_new_space function so that the incoming query is not 
overwritten if a jostled out query causes a waiting query to be
  resumed that then fails and sends an error message.  (Thanks to
  Matthew Lee).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2523 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-24 13:49:59 +00:00
wouter
5e9f5cad61 - better documentation for inform_super (Thanks Yang Zhe). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-17 13:11:58 +00:00
wouter
446aecff27 - TCP-upstream calculates tcp-ping so server selection works if there 
are alternatives.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2502 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-23 12:56:28 +00:00
wouter
fe21693eb9 - max sent count. EDNS1480 only for rtt < 5000. No promiscuous 
fetch if sentcount > 3, stop query if sentcount > 16.  Count is
reset when referral or CNAME happens.  This makes unbound better
at managing large NS sets, they are explored when there is continued
interest (in the form of queries).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2499 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:11:12 +00:00
wouter
4297794a18 fixup compilation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2498 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 12:43:07 +00:00
wouter
fac34aa3d7 - fix various compiler warnings (reported by Paul Wouters). 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2497 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 11:35:01 +00:00
wouter
07375399e5 fix EDNS1480. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2496 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 10:04:08 +00:00
wouter
10bc80283d fix memleak and add edns section when 1480 probe. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2493 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-15 15:35:04 +00:00
wouter
22e627c381 After UDP timeout EDNS1480 probe, stop fragmentation caused trouble. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2492 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-15 14:32:17 +00:00