unbound

Author	SHA1	Message	Date
ralph	8b19239862	- Qname minimisation default changed to yes. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4685 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-05-17 10:33:19 +00:00
ralph	c42f53614d	- Set trust-anchor-signaling default to yes git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4360 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-05 10:17:25 +00:00
wouter	7dd4463598	- --disable-sha1 disables SHA1 support in RRSIG, so from DNSKEY and DS records. NSEC3 is not disabled. - fake-sha1 test option; print warning if used. To make unit tests. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4043 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-09 13:18:08 +00:00
ralph	263909cc1b	Add DSA support for OpenSSL 1.1 git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3954 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-07 12:58:47 +00:00
wouter	7073948a03	- Fix unit tests for openssl 1.1, with no DSA, by faking DSA, enabled with the undocumented switch 'fake-dsa'. It logs a warning. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3909 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-26 07:38:00 +00:00
wouter	8e6ee27eda	- separate ldns into core ldns inside ldns/ subdirectory. No more --with-ldns is needed and unbound does not rely on libldns. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9	2013-10-31 15:09:26 +00:00
wouter	b25dcb3a41	- iana portlist updated. - queries with CD flag set cause DNSSEC validation, but the answer is not withheld if it is bogus. Thus, unbound will retry if it is bad and curb the TTL if it is bad, thus protecting the cache for use by downstream validators. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2409 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-04-08 13:58:41 +00:00
wouter	55b1c9928d	Fixup for problems with do-ip6: no and only ipv6 addresses. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1353 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-11-17 12:47:34 +00:00
wouter	edbb692b82	do not allow cache snooping by default. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1220 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-09-01 13:48:24 +00:00
wouter	71700f6a04	- Fixup rrset security updates overwriting 2181 trust status. This makes validated to be insecure data just as worthless as nonvalidated data, and 2181 rules prevent cache overwrites to them. - Fix assertion fail on bogus key handling. - dnssec lameness detection works on first query at trust apex. - NS queries get proper cache and dnssec lameness treatment. - fixup compilation without pthreads on linux. - NS queries are done after every referral. validator is used on those NS records (if anchors enabled). git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1185 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-08-12 10:13:57 +00:00
wouter	49a22dcb04	fixup test, less logging. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@687 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-10-17 14:49:12 +00:00
wouter	3c4a5828e9	Fixup tests. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@673 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-10-10 09:33:27 +00:00
wouter	5980a98623	tests, cleanup tmp when testbound fails, fixup referral glue cleanup. git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@583 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-04 11:31:29 +00:00

13 Commits