townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
4,530 Commits 1 Branch 0 Tags 79 MiB
cc
Commit Graph

34 Commits

Author SHA1 Message Date
ralph
5489a6b54b - Use NSEC with longest ce to prove wildcard absence. 
- Only use *.ce to prove wildcard absence, no longer names.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4460 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-29 13:46:57 +00:00
wouter
7911e492f9 - patch for CVE-2017-15105: vulnerability in the processing of 
wildcard synthesized NSEC records.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@4441 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-01-19 09:50:35 +00:00
ralph
36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin 
consistent between local-data and access-control-tag-data.
- Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain
  of the NSEC owner.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-22 10:10:48 +00:00
wouter
33c3822724 - spelling fixes from Igor Sobrado Delgado. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-11-18 14:11:46 +00:00
wouter
34ac46080c - Fix #716: nodata proof with empty non-terminals and wildcards. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3526 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-29 13:08:15 +00:00
wouter
68b138cbd3 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
wouter
8e6ee27eda - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
wouter
b4a007738c - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
wouter
a6e01024c8 - Fix validation of nodata for DS query in NSEC zones, reported by 
Ondrej Mikle.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2662 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-02 11:58:27 +00:00
wouter
a1f677fcac - Makefile changed for BSD make compatibility. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-10 18:44:06 +00:00
wouter
56a4ca7adc - Fix validation of . DS query. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-17 14:28:32 +00:00
wouter
206d95e87a - Fix validation failure for parent and child on same server with an 
insecure childzone and a CNAME from parent to child.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2321 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-29 13:10:26 +00:00
wouter
77efcea454 includes 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2048 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-17 09:50:12 +00:00
wouter
3fa3f23be7 cache verify work for nsec and nsec3. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2047 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-17 09:49:18 +00:00
wouter
5fb04b1a9c Move includes to code files. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@2035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-03-12 15:17:48 +00:00
wouter
7b7265c532 More detailed errors. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1871 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-08 07:23:49 +00:00
wouter
622609bde7 - moved version number to 1.4.0 because of 1.3.4 release with only 
the NSEC3 patch.
	- val-log-level: 2 shows extended error information for validation
	  failures, but still one (longish) line per failure.  For example:
	  validation failure <example.com. DNSKEY IN>: signature expired from
	  192.0.2.4 for trust anchor example.com. while building chain of trust
	  validation failure <www.example.com. A IN>: no signatures from
	  192.0.2.6 for key example.com. while building chain of trust



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1868 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-10-07 16:45:47 +00:00
wouter
c09d19a2ed removed debug print. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1424 be551aaa-1e26-0410-a405-d3ace91eadb9
 2009-01-09 15:17:39 +00:00
wouter
4ed4e0b7f7 fixup for DLV lookup higher NSEC examination bug. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1398 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-12-18 10:14:30 +00:00
wouter
e4adee6800 nsec negative DS. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1289 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-10-08 10:04:27 +00:00
wouter
e03225f480 basic DLV works. 
iana port update.



git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1191 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-08-15 10:55:09 +00:00
wouter
cf59fb45fb DLV work 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1190 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-08-14 15:16:50 +00:00
wouter
45a4f6cf9a fixup DS test for apex validation of NODATA. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1177 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-08-05 10:54:27 +00:00
wouter
cf24285e05 bugfix to DS qtype from client. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@1170 be551aaa-1e26-0410-a405-d3ace91eadb9
 2008-07-30 21:38:37 +00:00
wouter
6ae36122de more liberal for ANS ENT bug. Fixup DS ENT handling too. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-20 12:31:35 +00:00
wouter
6a5ea1a369 Fixup for a wildcarded NSEC with empty nonterminal query. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@624 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-20 11:37:15 +00:00
wouter
6fb9ede4b5 NSEC3. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@613 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-14 11:15:42 +00:00
wouter
13bf8e2c40 nsec3 work, prove name error. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-13 15:02:33 +00:00
wouter
ef521111dc wildcard NSECs. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@596 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-05 12:58:25 +00:00
wouter
afc61f292b nxdomain validation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@534 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 14:27:11 +00:00
wouter
940a8f82ba nodata validation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@533 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 13:39:58 +00:00
wouter
c009f0706c VALIDATE state and positive response validation. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 12:31:12 +00:00
wouter
63872867b7 nsec work, canonical compare routine and tests. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-17 14:25:42 +00:00
wouter
e173c2f391 ds2ke and nsec work. 
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@529 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-17 11:41:49 +00:00