Commit Graph

  • 34ac46080c - Fix #716: nodata proof with empty non-terminals and wildcards. wouter 2015-10-29 13:08:15 +0000
  • b7b759b22d - patch from Doug Hogan for SSL_OP_NO_SSLvx options. wouter 2015-10-29 08:32:58 +0000
  • c80b550584 Fixup nothread compile on Linux. wouter 2015-10-28 10:37:53 +0000
  • ed6864c35e remove warning in checklocks on 64bit system. wouter 2015-10-28 10:33:33 +0000
  • 9b650c901d - Fix checklock testcode for linux threads on exit. wouter 2015-10-28 10:28:26 +0000
  • 456de38eb9 windows portability. wouter 2015-10-27 15:35:08 +0000
  • b4b56f4065 Fixup snprintf warning for 32bit systems. wouter 2015-10-27 14:51:57 +0000
  • 9685560d4c Fixup test. wouter 2015-10-27 14:11:51 +0000
  • 30d1ef6307 - portability, replace snprintf if return value broken. wouter 2015-10-27 13:47:50 +0000
  • 8f7160cebb changelog entry. wouter 2015-10-27 12:06:03 +0000
  • 766c26635c portability fixes. wouter 2015-10-27 10:39:18 +0000
  • ec2efc9fbf - detect libexpat without xml_StopParser function. wouter 2015-10-27 10:22:05 +0000
  • 0eccf8950d - isblank() compat implementation. wouter 2015-10-27 09:52:16 +0000
  • a3978d1c30 - Fix #714: Document config to block private-address for IPv4 mapped IPv6 addresses. wouter 2015-10-23 07:13:45 +0000
  • 00b44c3aa0 - Fix #712: unbound-anchor appears to not fsync root.key. wouter 2015-10-22 07:06:31 +0000
  • 3de5fea61f - trunk tracks development of 1.5.7. wouter 2015-10-20 14:01:54 +0000
  • 792710cf18 1.5.6rc1 release tag has been created wouter 2015-10-15 11:44:24 +0000
  • f20f10dec4 - Fix ldns_wire2str_rdata_scan for malformed RRs. his line, and those below, will be ignored-- wouter 2015-10-15 09:51:30 +0000
  • e31f10dda7 - Fix segfault in the dns64 module in the formaterror error path. wouter 2015-10-15 09:02:01 +0000
  • c666280ed1 - Fix manpage to suggest using SIGTERM to terminate the server. wouter 2015-10-14 12:22:49 +0000
  • 1030490f5a - ANY responses include DNAME records if present, as per Evan Hunt's remark in dnsop. wouter 2015-10-14 08:02:14 +0000
  • d60f9800b2 - iana portlist update. wouter 2015-10-09 08:08:31 +0000
  • 73ace4957c - Default for ssl-port is port 853, the temporary port assignment for secure domain name system traffic. If you used to rely on the older default of port 443, you have to put a clause in unbound.conf for that. The new value is likely going to be the standardised port number for this traffic. wouter 2015-10-09 07:55:21 +0000
  • 9e4858af72 fixup. wouter 2015-10-06 10:29:20 +0000
  • ad1097190e - trunk tracks the development of 1.5.6. wouter 2015-10-06 09:57:08 +0000
  • 3f0f2741bb denote URI as type LONG_STR user wouter 2015-10-01 11:58:55 +0000
  • 21001b4ca8 - makedist.sh: pgp sig echo commands. wouter 2015-09-28 14:46:38 +0000
  • adb3b2e503 prepare 1.5.5rc1 release. wouter 2015-09-28 13:50:36 +0000
  • 18d55bcb86 - MAX_TARGET_COUNT increased to 64, to fix up sporadic resolution failures. wouter 2015-09-28 07:21:48 +0000
  • 182c2d6cfb - Fix unbound-control flush that does not succeed in removing data. wouter 2015-09-25 12:39:10 +0000
  • 2f41c1d568 - Fix unbound.conf(5) access-control description for precedence and default. wouter 2015-09-22 13:04:53 +0000
  • 119aae5e4c - Fix minor error in unbound.conf.5.in wouter 2015-09-22 12:59:32 +0000
  • d02e766e00 - testbound selftest also works in non-debug mode. wouter 2015-09-22 09:52:17 +0000
  • 949509816f - Fix #705: ub_ctx_set_fwd() return value mishandled on windows. wouter 2015-09-22 08:59:10 +0000
  • 553bf1df1e - Remove confusion comment from canonical_compare() function. wouter 2015-09-22 08:43:56 +0000
  • 52a96d6510 - Fix #702: New IPs for for h.root-servers.net. wouter 2015-09-22 08:35:03 +0000
  • 07b5c17bd3 - iana portlist update. wouter 2015-09-22 08:04:45 +0000
  • 73d2ca61bf - Fix config globbed include chroot treatment, this fixes reload of globs (patch from Dag-Erling Smørgrav). wouter 2015-09-22 08:04:19 +0000
  • f9de753734 - changed windows setup compression to be more transparent. wouter 2015-08-31 07:44:36 +0000
  • 9f1c38eeb4 - Feature #699: --enable-pie option to that builds PIE binary. - Feature #700: --enable-relro-now option that enables full read-only relocation. wouter 2015-08-28 14:27:03 +0000
  • 39fee4ebb1 - Fix #697: Get PY_MAJOR_VERSION failure at configure for python 2.4 to 2.6. wouter 2015-08-28 06:56:27 +0000
  • bdfddd498f fix test for new default. wouter 2015-08-24 15:07:42 +0000
  • 8230d6dc08 - Change default of harden-algo-downgrade to off. This is lenient for algorithm rollover. wouter 2015-08-24 15:05:10 +0000
  • 095bbe40db - iana portlist update. wouter 2015-08-24 12:52:40 +0000
  • 1116189f7a - Fix deadlock for local data add and zone add when unbound-control list_local_data printout is interrupted. wouter 2015-08-24 10:49:28 +0000
  • b6be203fc3 fixup libressl detection on solaris. wouter 2015-08-14 09:08:44 +0000
  • 55d089da65 fix windows portability wouter 2015-08-13 15:06:01 +0000
  • dcb7d29d76 - Reap the child process that libunbound spawns. wouter 2015-08-13 14:17:44 +0000
  • 94981e10b4 configuration option affects autotrust. wouter 2015-08-13 12:52:51 +0000
  • 7fc17c9a1f - 5011 implementation does not insist on all algorithms, when harden-algo-downgrade is turned off. wouter 2015-08-13 12:03:53 +0000
  • a3a0e0e274 - Fix #694: configure script does not detect LibreSSL 2.2.2 wouter 2015-08-11 07:32:35 +0000
  • 647274fc23 make depend. wouter 2015-08-06 11:54:53 +0000
  • 23cd117f74 - Document that local-zone nodefault matches exactly and transparent can be used to release a subzone. wouter 2015-08-04 07:10:26 +0000
  • f242323707 - Fix mktime in unbound-anchor not using UTC. wouter 2015-08-03 15:00:56 +0000
  • 7396d00ba0 - Fix 5011 anchor update timer after reload. wouter 2015-08-03 11:56:37 +0000
  • f6965de1e8 - Document in the manual more text about configuring locally served zones. wouter 2015-08-03 10:34:29 +0000
  • 16eedd74ef no zero waiting times. wouter 2015-07-30 14:01:04 +0000
  • ec305ab84b fixup. wouter 2015-07-30 12:02:18 +0000
  • c58e83c3e1 - Added permit-small-holddown config to debug fast 5011 rollover. wouter 2015-07-30 11:52:12 +0000
  • 59859f00f0 - please afl-gcc (llvm) for uninitialised variable warning. wouter 2015-07-30 08:51:51 +0000
  • 7faeaaf3ed - iana portlist update. wouter 2015-07-24 11:54:08 +0000
  • c2eee3d0d5 Fix lint. wouter 2015-07-24 11:49:35 +0000
  • bca87594c3 And fix reponse generation when reducing the number of threads. wouter 2015-07-24 11:44:58 +0000
  • fbd9cf712d - Fix #690: Reload fails when so-reuseport is yes after changing wouter 2015-07-24 07:02:14 +0000
  • 8ab8309710 - iana portlist update. wouter 2015-07-21 14:52:53 +0000
  • b85dd91be1 Fixup #if wouter 2015-07-21 14:37:15 +0000
  • 7f99e7c795 - Fix configure to detect SSL_CTX_set_ecdh_auto. wouter 2015-07-21 14:30:49 +0000
  • e00efba037 - Enable ECDHE for servers. Where available, use SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to enable ECDHE. Otherwise, manually offer curve p256. Client connections should automatically use ECDHE when available. (thanks Daniel Kahn Gillmor) wouter 2015-07-20 06:56:01 +0000
  • 221499af71 SSL_CTX_use_certificate_chain_file() should be used instead of the SSL_CTX_use_certificate_file() function in order to allow the use of complete certificate chains even when no trusted CA storage is used or when the CA issuing the certificate shall not be added to the trusted CA storage. willem 2015-07-18 12:34:37 +0000
  • bc2b99516e cleaner. wouter 2015-07-13 08:20:29 +0000
  • 85d4c6ee70 - makedist produces sha1 and sha256 files for created binaries too. wouter 2015-07-13 07:53:53 +0000
  • 4ae9e5a7cd - Fix #681: Setting forwarders with unbound-control forward implicitly turns on forward-first. wouter 2015-07-09 09:45:08 +0000
  • 64a7f637f5 trunk has 1.5.5 in development. wouter 2015-07-09 09:40:12 +0000
  • 88682a7df7 nicer code for int_max. wouter 2015-06-29 13:37:34 +0000
  • 27ff1a703c - Fix alloc with log for allocation size checks. wouter 2015-06-29 10:19:42 +0000
  • f82a1b6187 Fixup wouter 2015-06-29 10:19:14 +0000
  • 5bb325336a - iana portlist update. wouter 2015-06-29 07:09:04 +0000
  • 4877609189 Fix fwd_compress_c00c for FreeBSD xxd. wouter 2015-06-26 09:55:00 +0000
  • bf0ed6c577 Test diff of hex. wouter 2015-06-26 07:47:47 +0000
  • d862f0760e and check ttls of CNAME and DNAME in cache response in unit test. wouter 2015-06-26 07:43:42 +0000
  • 50b357376a - iana portlist update. wouter 2015-06-26 07:33:03 +0000
  • 8c62cad20d - Fix #677 Fix DNAME responses from cache that failed internal chain test. wouter 2015-06-26 07:27:32 +0000
  • 9ee8380800 - Fix #677 Fix CNAME corresponding to a DNAME was checked incorrectly and was therefore always synthesized (thanks to Valentin Dietrich). wouter 2015-06-22 09:23:43 +0000
  • 0e8b1e0111 - RFC 7553 RR type URI support, is now enabled by default. wouter 2015-06-04 12:30:29 +0000
  • 0ad11968be - Fix #674: Do not free pointers given by getenv. wouter 2015-06-02 07:31:43 +0000
  • 916b3a305d - SOA negative TTL is capped at minimumttl in its rdata section. - cache-max-negative-ttl config option, default 3600. wouter 2015-05-29 14:51:36 +0000
  • ff6bfe90f6 fix doxygen comment. wouter 2015-05-29 09:32:14 +0000
  • 1c536612d7 - Fix that unparseable error responses are ratelimited. wouter 2015-05-29 09:27:42 +0000
  • 5a5fb60def - Document that ratelimit works with unbound-control set_option. wouter 2015-05-26 09:18:21 +0000
  • 6e918c13bf - documentation proposes ratelimit of 1000 (closer to what upstream servers expect from us). wouter 2015-05-21 12:06:41 +0000
  • 9c69d25180 - iana portlist update. wouter 2015-05-21 07:29:42 +0000
  • c17574c81a - DLV is going to be decommissioned. Advice to stop using it, and put text in the example configuration and man page to that effect. wouter 2015-05-20 06:24:06 +0000
  • 97ffe64ba3 - Change syntax of particular validator error to be easier for machine parse, swap rrset and ip adres info so it looks like: validation failure <www.example.nl. TXT IN>: signature crypto failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN> wouter 2015-05-10 12:04:22 +0000
  • a26e8c10a3 Check for out of memory. wouter 2015-05-01 13:35:02 +0000
  • a2f75d6c35 - caps-whitelist in unbound.conf allows whitelist of loadbalancers that cannot work with caps-for-id or its fallback. wouter 2015-05-01 12:36:16 +0000
  • c2ba182678 - Unit test for type ANY synthesis. wouter 2015-04-30 10:27:27 +0000
  • 00288bc5e8 please lint. wouter 2015-04-23 14:04:46 +0000
  • c309b27814 - iana portlist update. wouter 2015-04-22 08:19:12 +0000
  • 258d561704 - Removed contrib/unbound_unixsock.diff, because it has been integrated, use control-interface: /path in unbound.conf. wouter 2015-04-22 08:03:34 +0000
  • 9763997a7c - Synthesize ANY responses from cache. Does not search exhaustively, but MX,A,AAAA,SOA,NS also CNAME. - Fix leaked dns64prefix configuration string. wouter 2015-04-17 14:58:07 +0000