Commit Graph

126 Commits

Author SHA1 Message Date
wouter
bb358ef952 - Fix fail to reject dead peers in forward-zone, with ssl-upstream.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4670 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-05-02 06:36:02 +00:00
wouter
50220ed991 - Can set tls authentication with forward-addr: IP#tls.auth.name
And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-04-19 12:10:05 +00:00
wouter
40286955e2 auth zone work on http feature.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4517 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-02-07 16:10:31 +00:00
wouter
ebda5cbb20 auth zone ixfr unit test, and fixes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4504 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-02-05 09:42:42 +00:00
wouter
7897dad2a1 auth zone test checks stored axfr zonefile
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4486 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-02-01 13:29:31 +00:00
wouter
43c4502b80 auth zone unit test extra_packet moves multipe tcp packets on stream
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4485 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-02-01 12:23:48 +00:00
wouter
a8847f6613 auth zone test, udp and tcp answered from unit test
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4484 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-02-01 10:38:05 +00:00
wouter
e4c6da885f auth zone move file descriptor functionality to outside network
for the unit test


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4482 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-01-31 14:59:17 +00:00
wouter
a1ad3c1de2 - authzone work, transfer connect.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4420 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-12-12 15:39:45 +00:00
wouter
14da3558d8 lookup and transfer setup
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4417 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-12-04 16:24:24 +00:00
wouter
516f8fc5c5 corrected fix for test link.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4382 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-10-20 11:55:19 +00:00
wouter
2ca4cc3a77 - Fix tests to use .tdir (from Manu Bretelle) instead of .tpkg.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4263 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-07-06 13:27:05 +00:00
ralph
12728301d7 - Merge EDNS Client subnet implementation from feature branch into main branch,
using new EDNS processing framework.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-21 12:08:17 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 10:25:41 +00:00
george
4812f02dd0 - Added generic EDNS code for registering known EDNS option codes,
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-12-06 13:42:51 +00:00
wouter
b1fe9b8ca9 - Fix #807: workaround for possible some "unused" function parameters
in test code, from Jinmei Tatuya.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3828 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-08-04 07:17:53 +00:00
wouter
9504853b86 - and also generic edns options for upstream messages (and replies).
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 16:55:22 +00:00
wouter
f3d914e425 - generic edns option parse and store code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 15:08:05 +00:00
willem
b8f745d47d User defined pluggable event mechanism (for review)
git-svn-id: https://unbound.nlnetlabs.nl/svn/branches/ub_event@3647 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-07 14:10:06 +00:00
wouter
b3721116d3 Fix signed-unsigned lint warnings in tcp-mss.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3592 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 10:08:37 +00:00
wouter
e0bfcab5cc - #731: tcp-mss, outgoing-tcp-mss options for unbound.conf, patch
from Daisuke Higashi.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-01-05 10:03:59 +00:00
wouter
33c3822724 - spelling fixes from Igor Sobrado Delgado.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-18 14:11:46 +00:00
wouter
410ac6cd67 - rename ldns subdirectory to sldns to avoid name collision.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-26 10:21:38 +00:00
wouter
d74c01b712 - dnstap support, with a patch from Farsight Security, written by
Robert Edmonds. The --enable-dnstap needs libfstrm and protobuf-c.
  It is BSD licensed (see dnstap/dnstap.c).
  Building with --enable-dnstap needs pkg-config with this patch.
- Noted dnstap in doc/README and doc/CREDITS.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3206 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-08-05 07:57:52 +00:00
wouter
c9c7f29161 - Fix caps-for-id fallback, and added fallback attempt when servers
drop 0x20 perturbed queries.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-06-24 08:24:28 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-02-07 13:28:39 +00:00
wouter
d1cb31280e - delay-close: msec option that delays closing ports for which
the UDP reply has timed out.  Keeps the port open, only accepts
  the correct reply.  This correct reply is not used, but the port
  is open so that no port-denied ICMPs are generated.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3058 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-01-28 14:35:55 +00:00
wouter
1315093384 - reuseport is attempted, then fallback to without on failure.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3054 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-01-27 10:27:19 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-10-31 15:09:26 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-20 12:23:42 +00:00
wouter
08d0e4c6f6 - Fix memleak in testcode for testbound (if it fails).
- Fix NSS returned arrays out of setup function to be statics.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2930 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-07-29 07:32:35 +00:00
wouter
a77e89f1d0 - Fix that enables modules to register twice for the same
serviced_query, without race conditions or administration issues.
  This should not happen with the current codebase, but it is robust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2730 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-07-31 11:33:06 +00:00
wouter
225b292ce7 - Fix for accept spinning reported by OpenBSD.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2663 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-05-08 12:08:55 +00:00
wouter
f467fc9b41 lint and doxygen fixes.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2631 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-02-16 10:08:07 +00:00
wouter
7d756333e8 - iter forwards uses malloc inside for more dynamicity.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2620 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-02-14 15:41:09 +00:00
wouter
c8396f3878 - Fix timeouts to keep track of query type, A, AAAA and other, if
another has caused timeout blacklist, different type can still probe.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2613 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-02-10 12:17:25 +00:00
wouter
2fb3a6c04f fix tests, the ssl upstream setting is per-query (inside outside_network.c).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2535 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-11-01 10:18:56 +00:00
wouter
1f9e9b78fe - dns over ssl support, ssl-service-pem and ssl-service-key files
can be given and then TCP queries are serviced wrapped in SSL.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2530 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-10-31 14:48:48 +00:00
wouter
8762da8720 infra cache consolidated and stores per zone, IP.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-10-26 15:46:23 +00:00
wouter
a28362a7fc tcp upstream option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2480 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-08-22 13:58:40 +00:00
wouter
911eba0f73 - openbsd-lint fixes: acl_list_get_mem used if debug-alloc enabled.
iterator get_mem includes priv_get_mem.  delegpt nodup removed.
  listen_pushback, query_info_allocqname, write_socket, send_packet,
  comm_point_set_cb_arg and listen_resume removed.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2222 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-08-20 13:30:41 +00:00
wouter
6f7205f522 add and fix doxygen comments for doxygen-1.7.1. (which reports lots of
spurious items as well, by the way).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2211 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-08-13 08:41:49 +00:00
wouter
34fef67b47 - Neat function prototypes, unshadowed local declarations.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2188 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-07-07 13:13:36 +00:00
wouter
10747c9f68 Fix for lame reply corner case.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2168 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-06-25 08:32:51 +00:00
wouter
9d31e30c81 Fix various compiler warnings from the clang llvm compiler.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2111 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-05-18 12:37:04 +00:00
wouter
963cb57146 - Fix EDNS probe for .de DNSSEC testbed failure, where the infra
cache timeout coincided with a server update, the current EDNS 
  backoff is less sensitive, and does not cache the backoff unless 
  the backoff actually works and the domain is not expecting DNSSEC.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2063 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-04-06 08:35:37 +00:00
wouter
a122bc0d8b fixup spinning
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1919 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-11-23 12:12:59 +00:00
wouter
4644da1cac please lint on FreeBSD6
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1889 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-11-05 11:12:06 +00:00
wouter
4debdd93e8 lint fixes on FreeBSD 7.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1888 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-11-05 10:39:12 +00:00