wouter
a3a0e0e274
- Fix #694 : configure script does not detect LibreSSL 2.2.2
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3470 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-11 07:32:35 +00:00
wouter
647274fc23
make depend.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3469 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-06 11:54:53 +00:00
wouter
23cd117f74
- Document that local-zone nodefault matches exactly and transparent
...
can be used to release a subzone.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3468 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-04 07:10:26 +00:00
wouter
f242323707
- Fix mktime in unbound-anchor not using UTC.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3467 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 15:00:56 +00:00
wouter
7396d00ba0
- Fix 5011 anchor update timer after reload.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3466 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 11:56:37 +00:00
wouter
f6965de1e8
- Document in the manual more text about configuring locally served
...
zones.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3465 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-08-03 10:34:29 +00:00
wouter
16eedd74ef
no zero waiting times.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3464 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 14:01:04 +00:00
wouter
ec305ab84b
fixup.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3463 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 12:02:18 +00:00
wouter
c58e83c3e1
- Added permit-small-holddown config to debug fast 5011 rollover.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3462 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 11:52:12 +00:00
wouter
59859f00f0
- please afl-gcc (llvm) for uninitialised variable warning.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3461 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-30 08:51:51 +00:00
wouter
7faeaaf3ed
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3459 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:54:08 +00:00
wouter
c2eee3d0d5
Fix lint.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3458 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:49:35 +00:00
wouter
bca87594c3
And fix reponse generation when reducing the number of threads.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3457 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 11:44:58 +00:00
wouter
fbd9cf712d
- Fix #690 : Reload fails when so-reuseport is yes after changing
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3456 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-24 07:02:14 +00:00
wouter
8ab8309710
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3455 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:52:53 +00:00
wouter
b85dd91be1
Fixup #if
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3454 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:37:15 +00:00
wouter
7f99e7c795
- Fix configure to detect SSL_CTX_set_ecdh_auto.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-21 14:30:49 +00:00
wouter
e00efba037
- Enable ECDHE for servers. Where available, use
...
SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to
enable ECDHE. Otherwise, manually offer curve p256.
Client connections should automatically use ECDHE when available.
(thanks Daniel Kahn Gillmor)
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-20 06:56:01 +00:00
willem
221499af71
SSL_CTX_use_certificate_chain_file() should be used instead of the
...
SSL_CTX_use_certificate_file() function in order to allow the use of
complete certificate chains even when no trusted CA storage is used or
when the CA issuing the certificate shall not be added to the trusted
CA storage.
Thanks Daniel Kahn Gillmore
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-18 12:34:37 +00:00
wouter
bc2b99516e
cleaner.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3449 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-13 08:20:29 +00:00
wouter
85d4c6ee70
- makedist produces sha1 and sha256 files for created binaries too.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3448 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-13 07:53:53 +00:00
wouter
4ae9e5a7cd
- Fix #681 : Setting forwarders with unbound-control forward
...
implicitly turns on forward-first.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3447 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:45:08 +00:00
wouter
64a7f637f5
trunk has 1.5.5 in development.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3446 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-07-09 09:40:12 +00:00
wouter
88682a7df7
nicer code for int_max.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3443 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 13:37:34 +00:00
wouter
27ff1a703c
- Fix alloc with log for allocation size checks.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3442 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 10:19:42 +00:00
wouter
f82a1b6187
Fixup
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3441 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 10:19:14 +00:00
wouter
5bb325336a
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3440 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-29 07:09:04 +00:00
wouter
4877609189
Fix fwd_compress_c00c for FreeBSD xxd.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3439 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 09:55:00 +00:00
wouter
bf0ed6c577
Test diff of hex.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3438 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:47:47 +00:00
wouter
d862f0760e
and check ttls of CNAME and DNAME in cache response in unit test.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3437 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:43:42 +00:00
wouter
50b357376a
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3436 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:33:03 +00:00
wouter
8c62cad20d
- Fix #677 Fix DNAME responses from cache that failed internal chain
...
test.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-26 07:27:32 +00:00
wouter
9ee8380800
- Fix #677 Fix CNAME corresponding to a DNAME was checked incorrectly
...
and was therefore always synthesized (thanks to Valentin Dietrich).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3434 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-22 09:23:43 +00:00
wouter
0e8b1e0111
- RFC 7553 RR type URI support, is now enabled by default.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3433 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-04 12:30:29 +00:00
wouter
0ad11968be
- Fix #674 : Do not free pointers given by getenv.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3432 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-06-02 07:31:43 +00:00
wouter
916b3a305d
- SOA negative TTL is capped at minimumttl in its rdata section.
...
- cache-max-negative-ttl config option, default 3600.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3431 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 14:51:36 +00:00
wouter
ff6bfe90f6
fix doxygen comment.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3430 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 09:32:14 +00:00
wouter
1c536612d7
- Fix that unparseable error responses are ratelimited.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3429 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-29 09:27:42 +00:00
wouter
5a5fb60def
- Document that ratelimit works with unbound-control set_option.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3428 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-26 09:18:21 +00:00
wouter
6e918c13bf
- documentation proposes ratelimit of 1000 (closer to what upstream
...
servers expect from us).
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3427 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 12:06:41 +00:00
wouter
9c69d25180
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3426 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-21 07:29:42 +00:00
wouter
c17574c81a
- DLV is going to be decommissioned. Advice to stop using it, and
...
put text in the example configuration and man page to that effect.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3424 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-20 06:24:06 +00:00
wouter
97ffe64ba3
- Change syntax of particular validator error to be easier for
...
machine parse, swap rrset and ip adres info so it looks like:
validation failure <www.example.nl. TXT IN>: signature crypto
failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN>
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3422 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-10 12:04:22 +00:00
wouter
a26e8c10a3
Check for out of memory.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3421 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-01 13:35:02 +00:00
wouter
a2f75d6c35
- caps-whitelist in unbound.conf allows whitelist of loadbalancers
...
that cannot work with caps-for-id or its fallback.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-05-01 12:36:16 +00:00
wouter
c2ba182678
- Unit test for type ANY synthesis.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3419 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-30 10:27:27 +00:00
wouter
00288bc5e8
please lint.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3411 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-23 14:04:46 +00:00
wouter
c309b27814
- iana portlist update.
...
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3408 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:19:12 +00:00
wouter
258d561704
- Removed contrib/unbound_unixsock.diff, because it has been
...
integrated, use control-interface: /path in unbound.conf.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3407 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-22 08:03:34 +00:00
wouter
9763997a7c
- Synthesize ANY responses from cache. Does not search exhaustively,
...
but MX,A,AAAA,SOA,NS also CNAME.
- Fix leaked dns64prefix configuration string.
git-svn-id: https://unbound.nlnetlabs.nl/svn/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9
2015-04-17 14:58:07 +00:00