Commit Graph

86 Commits

Author SHA1 Message Date
wouter
7911e492f9 - patch for CVE-2017-15105: vulnerability in the processing of
wildcard synthesized NSEC records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4441 be551aaa-1e26-0410-a405-d3ace91eadb9
2018-01-19 09:50:35 +00:00
wouter
39ba948040 - Spelling fixes, from Phil Porada.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-09-15 14:29:28 +00:00
wouter
e682b0be06 - Fix install of trust anchor when two anchors are present, makes both
valid.  Checks hash of DS but not signature of new key.  This fixes
  installs between sep11 and oct11 2017.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4302 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-08-21 08:57:44 +00:00
wouter
60a7029fcd - Fix to rename internally used types from _t to _type, because _t
type names are reserved by POSIX.
- iana portlist update


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9
2017-01-19 10:25:41 +00:00
wouter
bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that
point to data on the internet, from Jinmei Tatuya (Infoblox).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-10-18 13:18:20 +00:00
ralph
43a31cadce fix potential memory leak in daemon/remote.c and nullpointer dereference in
validator/autotrust.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3856 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-09-15 08:39:59 +00:00
wouter
ca3061a124 Fixup _get_osfhandle calls
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3809 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:46:16 +00:00
wouter
b0ae561157 - Fixes for 64bit windows compile.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3808 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-07-05 07:40:13 +00:00
wouter
f3d914e425 - generic edns option parse and store code.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9
2016-05-31 15:08:05 +00:00
wouter
33c3822724 - spelling fixes from Igor Sobrado Delgado.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-11-18 14:11:46 +00:00
wouter
456de38eb9 windows portability.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3521 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-27 15:35:08 +00:00
wouter
00b44c3aa0 - Fix #712: unbound-anchor appears to not fsync root.key.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3512 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-10-22 07:06:31 +00:00
wouter
94981e10b4 configuration option affects autotrust.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3472 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-13 12:52:51 +00:00
wouter
7fc17c9a1f - 5011 implementation does not insist on all algorithms, when
harden-algo-downgrade is turned off.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3471 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-13 12:03:53 +00:00
wouter
7396d00ba0 - Fix 5011 anchor update timer after reload.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3466 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 11:56:37 +00:00
wouter
16eedd74ef no zero waiting times.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3464 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 14:01:04 +00:00
wouter
ec305ab84b fixup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3463 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 12:02:18 +00:00
wouter
c58e83c3e1 - Added permit-small-holddown config to debug fast 5011 rollover.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3462 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 11:52:12 +00:00
wouter
ba41e16d3c - Unbound exits with a fatal error when the auto-trust-anchor-file
fails to be writable.  This is seconds after startup.  You can
  load a readonly auto-trust-anchor-file with trust-anchor-file.
  The file has to be writable to notice the trust anchor change,
  without it, a trust anchor change will be unnoticed and the system
  will then become unoperable.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3387 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-07 12:03:05 +00:00
wouter
410ac6cd67 - rename ldns subdirectory to sldns to avoid name collision.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-03-26 10:21:38 +00:00
wouter
275b0360d4 More casts.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3244 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-10-13 09:23:12 +00:00
matje
7b88f8ede8 only whitespace changes
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3088 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-02-18 13:54:19 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-02-07 13:28:39 +00:00
wouter
63354244f1 - Fix #547: no trustanchor written if filesystem full, fclose checked.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3044 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-01-21 10:14:55 +00:00
wouter
511cfd92df - Windows port, adjust %lld to %I64d, and warning in win_event.c.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3040 be551aaa-1e26-0410-a405-d3ace91eadb9
2014-01-16 16:01:37 +00:00
wouter
db8f72c4f7 - Fix sldns to use sldns_ prefix for all ldns_ variables.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-12-03 09:11:16 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-10-31 15:09:26 +00:00
wouter
a7e7ac40d0 fix lint, more time_t
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2950 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-27 14:45:33 +00:00
wouter
a3010b56fd more time_t
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2947 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-27 11:44:33 +00:00
wouter
658bd3bcf8 - review fixes from Willem.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2945 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-22 14:10:29 +00:00
wouter
b492e89a4d - more fixes that I overlooked.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2944 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-22 07:33:51 +00:00
wouter
1efe599073 - Fix#520: Errors found by static analysis from Tomas Hozza(redhat).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2942 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-21 13:31:09 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-08-20 12:23:42 +00:00
wouter
0265146e12 fixup for doxygen 1.8.3
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2827 be551aaa-1e26-0410-a405-d3ace91eadb9
2013-01-28 13:44:38 +00:00
wouter
ec417b19da code review.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2688 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-06-18 14:22:29 +00:00
wouter
05f82d8e99 - fix for windows, rename() is not posix compliant on windows.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2605 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-02-03 14:56:09 +00:00
wouter
50a47fc8b4 - Fix to write key files completely to a temporary file, and if that
succeeds, replace the real key file.  So failures leave a useful file.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2590 be551aaa-1e26-0410-a405-d3ace91eadb9
2012-01-19 14:17:22 +00:00
wouter
a1f677fcac - Makefile changed for BSD make compatibility.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2544 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-11-10 18:44:06 +00:00
wouter
fac34aa3d7 - fix various compiler warnings (reported by Paul Wouters).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2497 be551aaa-1e26-0410-a405-d3ace91eadb9
2011-09-16 11:35:01 +00:00
wouter
f5be858e6b - algorithm compromise protection using the algorithms signalled in
the DS record.  Also, trust anchors, DLV, and RFC5011 receive this,
         and thus, if you have multiple algorithms in your trust-anchor-file
         then it will now behave different than before.  Also, 5011 rollover
         for algorithms needs to be double-signature until the old algorithm
         is revoked.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2358 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-12-21 14:19:55 +00:00
wouter
db4944a21d - Algorithm rollover operational reality intrudes, for trust-anchor,
5011-store, and DLV-anchor if one key matches it's good enough.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2235 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-09-16 13:40:26 +00:00
wouter
34fef67b47 - Neat function prototypes, unshadowed local declarations.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2188 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-07-07 13:13:36 +00:00
wouter
9d31e30c81 Fix various compiler warnings from the clang llvm compiler.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2111 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-05-18 12:37:04 +00:00
wouter
a1cfb1baa7 - autotrust anchor file can be initialized with a ZSK key as well.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2100 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-04-27 13:00:48 +00:00
wouter
c046d1d839 Fixed random numbers for port, interface and server selection.
Removed very small bias.
Also some lint fixes.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2049 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-03-18 14:42:22 +00:00
wouter
5fb04b1a9c Move includes to code files.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2035 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-03-12 15:17:48 +00:00
wouter
76852e4b9f Skip RRSIGs on 5011 init. Make install makes all.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1997 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-03-01 10:26:42 +00:00
wouter
bc146457db printout errors if trust anchor write fails.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1984 be551aaa-1e26-0410-a405-d3ace91eadb9
2010-02-16 08:52:44 +00:00
wouter
fcdfe259c4 Fix crash reported on unbound-users with module-config "iterator"
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1924 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-12-01 08:12:00 +00:00
wouter
0e49081a44 review comments
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1915 be551aaa-1e26-0410-a405-d3ace91eadb9
2009-11-20 12:06:00 +00:00