Commit Graph

51 Commits

Author SHA1 Message Date
wouter
eb3fb269b0 - ED448 support.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4607 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-04-05 14:44:17 +00:00
wouter
7911e492f9 - patch for CVE-2017-15105: vulnerability in the processing of
wildcard synthesized NSEC records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4441 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-01-19 09:50:35 +00:00
wouter
eaeddf2057 unit test for timestamp failure with clang
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4424 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-12-15 09:38:11 +00:00
wouter
8afb918284 - Fix #1365: Add Ed25519 support using libnettle.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4286 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-07-24 10:44:30 +00:00
wouter
5825c88452 - Support for openssl EVP_DigestVerify.
- Support for the ED25519 algorithm with openssl (from openssl 1.1.1).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4198 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-05-30 12:28:25 +00:00
wouter
7dd4463598 - --disable-sha1 disables SHA1 support in RRSIG, so from DNSKEY and
DS records.  NSEC3 is not disabled.
- fake-sha1 test option; print warning if used.  To make unit tests.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4043 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-03-09 13:18:08 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 10:25:41 +00:00
wouter
7b6e5dd9c7 - OpenSSL 1.1.0 portability, --disable-dsa configure option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3689 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-03-23 08:19:49 +00:00
wouter
9fa96d25a0 - Fixup DER encoded DSA signatures for libnettle.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3540 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 13:31:22 +00:00
wouter
984f91d1b4 - Fix #594. libunbound: optionally use libnettle for crypto.
Contributed by Luca Bruno.  Added --with-nettle for use with
  --with-libunbound-only.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3533 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-17 09:43:07 +00:00
wouter
410ac6cd67 - rename ldns subdirectory to sldns to avoid name collision.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-26 10:21:38 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-02-07 13:28:39 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-10-31 15:09:26 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-20 12:23:42 +00:00
wouter
a8dc41130c fixup uninit variable in unit test (compiler does not understand assertion).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2935 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-14 07:56:22 +00:00
wouter
666d355d7b - Fixup ldns-testpkts, identical to ldns/examples.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2779 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-11-07 08:49:53 +00:00
wouter
a2ff93b150 fixup warning.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2719 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-07-20 14:08:51 +00:00
wouter
491faef693 Test for ECC support for libNSS.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2700 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-06-22 15:20:56 +00:00
wouter
2d5552262c implement DNSSEC with libNSS: NSEC3, RSA, DSA, ECDSA, and DS hashes.
make test succeeds.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2699 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-06-22 14:31:29 +00:00
wouter
27329b8cc9 - implement draft-ietf-dnsext-ecdsa-04; which is in IETF LC; This
implementation is experimental at this time and not recommended
  for use on the public internet (the protocol numbers have not
  been assigned).  Needs recent ldns with --enable-ecdsa.
- fix memory leak in errorcase for DSA signatures.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2606 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-02-08 13:22:44 +00:00
wouter
84ca6bf916 please lint
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2357 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-12-20 16:08:52 +00:00
wouter
a33b75aebf Work on validation of multiple algorithms.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2356 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-12-20 15:58:12 +00:00
wouter
db4944a21d - Algorithm rollover operational reality intrudes, for trust-anchor,
5011-store, and DLV-anchor if one key matches it's good enough.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2235 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-09-16 13:40:26 +00:00
wouter
34fef67b47 - Neat function prototypes, unshadowed local declarations.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2188 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-07-07 13:13:36 +00:00
wouter
6a7022a71d Fix bug#291 and unit test spruced up.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1948 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-01-06 10:55:14 +00:00
wouter
622609bde7 - moved version number to 1.4.0 because of 1.3.4 release with only
the NSEC3 patch.
	- val-log-level: 2 shows extended error information for validation
	  failures, but still one (longish) line per failure.  For example:
	  validation failure <example.com. DNSKEY IN>: signature expired from
	  192.0.2.4 for trust anchor example.com. while building chain of trust
	  validation failure <www.example.com. A IN>: no signatures from
	  192.0.2.6 for key example.com. while building chain of trust



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1868 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-10-07 16:45:47 +00:00
wouter
964c7a04ce Nicer names for test files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1755 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-08-11 10:33:56 +00:00
wouter
76feae084a nicer warning during GOST testing.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1751 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-08-07 15:29:25 +00:00
wouter
79363fc5ea OpenSSL config() and small memory leak. No more ENGINE_load_gost().
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1750 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-08-07 15:23:35 +00:00
wouter
96c6d3daf3 GOST support with --enable-gost.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1747 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-08-06 13:38:55 +00:00
wouter
0ee3554101 Test example signatures for rsasha256 and rsasha512.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1742 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-08-04 12:45:51 +00:00
wouter
e6df7cd585 rsasha256 and rsasha512 not enabled by default.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1631 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-06-02 09:04:16 +00:00
wouter
20bb53cd82 Do not validate with revoked keys.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1471 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-02-10 13:01:38 +00:00
wouter
63d577f8fb test for HINFO.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1408 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-01-06 11:31:21 +00:00
wouter
7af3150ba5 detection of sha256 and sha512 by testing if functionality was compiled
into openssl.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1328 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-11-03 16:06:12 +00:00
wouter
d3c4fb4145 SHA256 support.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1275 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-30 13:06:07 +00:00
wouter
6f3aa14fa5 DSA signature compatibility.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1053 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-04-15 19:51:28 +00:00
wouter
7714222dd8 Fixup unbound. Now still a switch DSA(ldns) DSA(bind) ...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1052 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-04-15 18:01:14 +00:00
wouter
abc608675f DSA test
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1051 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-04-15 15:19:25 +00:00
wouter
649bb694f5 Jelte found DSA sig solution, copied from ldns to fit into unbound validator.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1042 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-04-14 15:34:09 +00:00
wouter
cf50a0bcb7 Faster due to time-sharing.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@966 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-19 13:12:23 +00:00
wouter
e2ce21cf4d move around debug levels.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@929 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-07 09:46:49 +00:00
wouter
0638f01d0a keep cache of prealloced blocks.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@698 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-10-18 22:17:02 +00:00
wouter
4bcd6aac94 regional nicer, remove region-allocator.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@697 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-10-18 20:31:43 +00:00
wouter
6e3219e484 fixup locking in test code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@629 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-09-21 13:55:07 +00:00
wouter
97eb86507e nsec3 hash function unit test.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@615 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-09-17 09:25:54 +00:00
wouter
13bf8e2c40 nsec3 work, prove name error.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@610 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-09-13 15:02:33 +00:00
wouter
e173c2f391 ds2ke and nsec work.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@529 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-08-17 11:41:49 +00:00
wouter
cba19c0ad0 key prime, DS test.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@525 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-08-16 09:33:35 +00:00