Commit Graph

4530 Commits

Author SHA1 Message Date
wouter
a3a0e0e274 - Fix #694: configure script does not detect LibreSSL 2.2.2
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3470 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-11 07:32:35 +00:00
wouter
647274fc23 make depend.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3469 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-06 11:54:53 +00:00
wouter
23cd117f74 - Document that local-zone nodefault matches exactly and transparent
can be used to release a subzone.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3468 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-04 07:10:26 +00:00
wouter
f242323707 - Fix mktime in unbound-anchor not using UTC.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3467 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 15:00:56 +00:00
wouter
7396d00ba0 - Fix 5011 anchor update timer after reload.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3466 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 11:56:37 +00:00
wouter
f6965de1e8 - Document in the manual more text about configuring locally served
zones.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3465 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 10:34:29 +00:00
wouter
16eedd74ef no zero waiting times.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3464 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 14:01:04 +00:00
wouter
ec305ab84b fixup.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3463 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 12:02:18 +00:00
wouter
c58e83c3e1 - Added permit-small-holddown config to debug fast 5011 rollover.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3462 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 11:52:12 +00:00
wouter
59859f00f0 - please afl-gcc (llvm) for uninitialised variable warning.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3461 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 08:51:51 +00:00
wouter
7faeaaf3ed - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3459 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:54:08 +00:00
wouter
c2eee3d0d5 Fix lint.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3458 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:49:35 +00:00
wouter
bca87594c3 And fix reponse generation when reducing the number of threads.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3457 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:44:58 +00:00
wouter
fbd9cf712d - Fix #690: Reload fails when so-reuseport is yes after changing
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3456 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 07:02:14 +00:00
wouter
8ab8309710 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3455 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:52:53 +00:00
wouter
b85dd91be1 Fixup #if
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3454 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:37:15 +00:00
wouter
7f99e7c795 - Fix configure to detect SSL_CTX_set_ecdh_auto.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:30:49 +00:00
wouter
e00efba037 - Enable ECDHE for servers. Where available, use
SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to
  enable ECDHE.  Otherwise, manually offer curve p256.
  Client connections should automatically use ECDHE when available.
  (thanks Daniel Kahn Gillmor)


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-20 06:56:01 +00:00
willem
221499af71 SSL_CTX_use_certificate_chain_file() should be used instead of the
SSL_CTX_use_certificate_file() function in order to allow the use of
complete certificate chains even when no trusted CA storage is used or
when the CA issuing the certificate shall not be added to the trusted
CA storage.

Thanks Daniel Kahn Gillmore


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-18 12:34:37 +00:00
wouter
bc2b99516e cleaner.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3449 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-13 08:20:29 +00:00
wouter
85d4c6ee70 - makedist produces sha1 and sha256 files for created binaries too.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3448 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-13 07:53:53 +00:00
wouter
4ae9e5a7cd - Fix #681: Setting forwarders with unbound-control forward
implicitly turns on forward-first.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3447 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:45:08 +00:00
wouter
64a7f637f5 trunk has 1.5.5 in development.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3446 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:40:12 +00:00
wouter
88682a7df7 nicer code for int_max.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3443 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 13:37:34 +00:00
wouter
27ff1a703c - Fix alloc with log for allocation size checks.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3442 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 10:19:42 +00:00
wouter
f82a1b6187 Fixup
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3441 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 10:19:14 +00:00
wouter
5bb325336a - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3440 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 07:09:04 +00:00
wouter
4877609189 Fix fwd_compress_c00c for FreeBSD xxd.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3439 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 09:55:00 +00:00
wouter
bf0ed6c577 Test diff of hex.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3438 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:47:47 +00:00
wouter
d862f0760e and check ttls of CNAME and DNAME in cache response in unit test.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3437 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:43:42 +00:00
wouter
50b357376a - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3436 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:33:03 +00:00
wouter
8c62cad20d - Fix #677 Fix DNAME responses from cache that failed internal chain
test.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:27:32 +00:00
wouter
9ee8380800 - Fix #677 Fix CNAME corresponding to a DNAME was checked incorrectly
and was therefore always synthesized (thanks to Valentin Dietrich).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3434 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-22 09:23:43 +00:00
wouter
0e8b1e0111 - RFC 7553 RR type URI support, is now enabled by default.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3433 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-04 12:30:29 +00:00
wouter
0ad11968be - Fix #674: Do not free pointers given by getenv.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3432 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-02 07:31:43 +00:00
wouter
916b3a305d - SOA negative TTL is capped at minimumttl in its rdata section.
- cache-max-negative-ttl config option, default 3600.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3431 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 14:51:36 +00:00
wouter
ff6bfe90f6 fix doxygen comment.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3430 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 09:32:14 +00:00
wouter
1c536612d7 - Fix that unparseable error responses are ratelimited.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3429 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 09:27:42 +00:00
wouter
5a5fb60def - Document that ratelimit works with unbound-control set_option.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3428 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-26 09:18:21 +00:00
wouter
6e918c13bf - documentation proposes ratelimit of 1000 (closer to what upstream
servers expect from us).


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3427 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 12:06:41 +00:00
wouter
9c69d25180 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3426 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 07:29:42 +00:00
wouter
c17574c81a - DLV is going to be decommissioned. Advice to stop using it, and
put text in the example configuration and man page to that effect.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3424 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-20 06:24:06 +00:00
wouter
97ffe64ba3 - Change syntax of particular validator error to be easier for
machine parse, swap rrset and ip adres info so it looks like:
  validation failure <www.example.nl. TXT IN>: signature crypto
  failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN>


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3422 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-10 12:04:22 +00:00
wouter
a26e8c10a3 Check for out of memory.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3421 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-01 13:35:02 +00:00
wouter
a2f75d6c35 - caps-whitelist in unbound.conf allows whitelist of loadbalancers
that cannot work with caps-for-id or its fallback.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-01 12:36:16 +00:00
wouter
c2ba182678 - Unit test for type ANY synthesis.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3419 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-30 10:27:27 +00:00
wouter
00288bc5e8 please lint.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3411 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-23 14:04:46 +00:00
wouter
c309b27814 - iana portlist update.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3408 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:19:12 +00:00
wouter
258d561704 - Removed contrib/unbound_unixsock.diff, because it has been
integrated, use control-interface: /path in unbound.conf.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3407 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:03:34 +00:00
wouter
9763997a7c - Synthesize ANY responses from cache. Does not search exhaustively,
but MX,A,AAAA,SOA,NS also CNAME.
- Fix leaked dns64prefix configuration string.


git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-17 14:58:07 +00:00