Commit Graph

  • cf47814714 fix bug 349 wouter 2011-01-19 06:59:24 +0000
  • 22a3c37677 ldns tarball updated wouter 2011-01-18 08:35:20 +0000
  • d5abd8fbab iana portlist updated wouter 2011-01-17 14:49:09 +0000
  • ae85bac0d9 nicely outlined matje 2011-01-17 13:59:07 +0000
  • cd4124e91e - add get and set option for harden-below-nxdomain feature. wouter 2011-01-17 12:31:28 +0000
  • 6bb90cd285 fix wouter 2011-01-14 15:58:05 +0000
  • 6f49bcb6d9 and store bogus ttl (this is not picked out of the cache to send to, so saves work and avoids this target) wouter 2011-01-14 15:51:11 +0000
  • 4a7e7c3a2b store if ttl expired wouter 2011-01-14 15:23:51 +0000
  • e40c702c96 - Fix so a changed NS RRset does not get moved name stuck on old server, for type NS the TTL is not increased. wouter 2011-01-14 13:56:25 +0000
  • fb7fa5c347 - Fix prefetch so it does not get stuck on old server for moved names. wouter 2011-01-13 10:13:01 +0000
  • bd5d117f93 doxygen compat with version 1.6.3, and splint compat. wouter 2011-01-12 09:17:59 +0000
  • d5c76c145e iana portlist updated wouter 2011-01-12 08:55:27 +0000
  • 3925e949de - Fix insecure CNAME sequence marked as secure, reported by Bert Hubert. wouter 2011-01-11 12:32:29 +0000
  • a3e8eb1648 more conservative timeout for a test that takes 20 seconds on older machines wouter 2011-01-10 16:13:17 +0000
  • b36b4802af Fix library exports and asynclook for lock debugging. wouter 2011-01-10 15:24:23 +0000
  • 4d3f7cab4d - faster lruhash get_mem routine. wouter 2011-01-10 13:28:48 +0000
  • 90f57c0391 Fix compile failure using sun studio compiler, cast to correct type. wouter 2011-01-07 16:20:15 +0000
  • 9197a66017 iana portlist updated. wouter 2011-01-04 07:28:36 +0000
  • d8b8bdaf33 Fix bug #346: itar is discontinued. wouter 2011-01-04 06:53:57 +0000
  • d5a19edc74 validation reporter minidaemon wouter 2010-12-24 09:15:49 +0000
  • 9a2bf1bb83 - Fix in infra cache that could cause rto larger than TOP_TIMEOUT kept. wouter 2010-12-23 10:49:47 +0000
  • 323d94a758 test and cleanup. wouter 2010-12-22 09:41:38 +0000
  • 95a1dab906 iana portlist updated wouter 2010-12-21 14:43:29 +0000
  • f5be858e6b - algorithm compromise protection using the algorithms signalled in the DS record. Also, trust anchors, DLV, and RFC5011 receive this, and thus, if you have multiple algorithms in your trust-anchor-file then it will now behave different than before. Also, 5011 rollover for algorithms needs to be double-signature until the old algorithm is revoked. wouter 2010-12-21 14:19:55 +0000
  • 84ca6bf916 please lint wouter 2010-12-20 16:08:52 +0000
  • a33b75aebf Work on validation of multiple algorithms. wouter 2010-12-20 15:58:12 +0000
  • d0d27bd296 - fix validation in this case: CNAME to nodata for co-hosted opt-in NSEC3 insecure delegation, was bogus, fixed to be insecure. wouter 2010-12-17 10:05:56 +0000
  • 33deac63f2 squelch 'tcp connect: bla' errors in logfile. wouter 2010-12-17 09:10:46 +0000
  • fc13deb6d3 - Fix our 'BDS' license (typo reported by Xavier Belanger). wouter 2010-12-16 16:18:30 +0000
  • e38d9b641a Fix compile on WinXP. wouter 2010-12-15 14:44:04 +0000
  • 8b86a03bcd - iana portlist updated. - review changes for unbound-anchor. wouter 2010-12-10 15:01:39 +0000
  • 6ec3338023 - feature typetransparent localzone, does not block other RR types. wouter 2010-12-02 12:39:33 +0000
  • 3bc987f0d0 - Fix bug#338: print address when socket creation fails. wouter 2010-12-01 09:59:39 +0000
  • 72de97c816 Fix storage of noEDNS in the infra cache. iana portlist updated. wouter 2010-11-30 12:55:48 +0000
  • b5252fabaa harden-below-nxdomain option taken from draft-vixie-dnsext-resimprove. Default off (for now), as some older software that gives nxdomain for ENT would be incompatible. But that would only happen in the reverse tree, and such software (nonDNSSEC) may go out of style, so in the future a default yes could be possible. wouter 2010-11-18 08:49:15 +0000
  • eabb7aeb89 - make test output nicer. wouter 2010-11-17 15:50:52 +0000
  • 49067d5c18 - implement draft-vixie-dnsext-resimprove-00, we stop on NXDOMAIN. wouter 2010-11-17 10:02:34 +0000
  • 3709f579a0 - so-sndbuf option for very busy servers, a bit like so-rcvbuf. wouter 2010-11-15 14:30:34 +0000
  • 07b8abede0 errno filtering better: sendto and sendmsg filtered in the same way. Also ENETDOWN and ENETUNREACH for tcp (already had EHOSTDOWN and EHOSTUNREACH). wouter 2010-11-15 14:00:20 +0000
  • 4c07c23e21 iana portlist updated. wouter 2010-11-15 13:16:09 +0000
  • 61c86db724 - silence 'tcp connect: broken pipe' at low verbosity. wouter 2010-11-15 13:15:23 +0000
  • 8f65243365 unbound-anchor portable with openssl 0.9.7. wouter 2010-11-09 16:05:02 +0000
  • 7df2b532a4 - Be lenient and accept imgw.pl malformed packet (like BIND). wouter 2010-11-08 18:32:55 +0000
  • 08c86fc31e move to version 1.4.8 wouter 2010-11-08 13:22:54 +0000
  • cfd3ebb5a4 Test DS and CNAME in cache. wouter 2010-11-05 15:45:53 +0000
  • fe16a014a3 - do not synthesize a CNAME message from cache for qtype DS. wouter 2010-11-05 15:29:50 +0000
  • 39c1a28aa9 detect nc version wouter 2010-11-04 15:20:11 +0000
  • 8eb6c67069 Fix test to work on ubuntu. wouter 2010-11-04 15:16:13 +0000
  • 1556508d0b nicer failure wouter 2010-11-04 12:35:39 +0000
  • b61aa0a7fe better fix wouter 2010-11-04 12:26:25 +0000
  • ae017e9bd0 use central entropy to seed threads. wouter 2010-11-04 11:38:23 +0000
  • 87de02a9f0 - Change the rtt used to probe EDNS-timeout hosts to 1000 msec. wouter 2010-11-03 09:06:49 +0000
  • 3942b7c8ad Tested on win7. wouter 2010-11-02 12:38:15 +0000
  • 09cfbb7d44 code review. wouter 2010-11-02 10:03:18 +0000
  • 0caae1490b updated ldns tarball wouter 2010-11-01 15:00:35 +0000
  • 67a6770077 ldns tarball updated and build script for test updated. wouter 2010-11-01 12:37:30 +0000
  • 4b4845d797 GOST code enabled by default (RFC 5933) wouter 2010-11-01 11:24:07 +0000
  • 210d64fcb0 - Configure detects libev-4.00. wouter 2010-10-29 15:03:20 +0000
  • 206d95e87a - Fix validation failure for parent and child on same server with an insecure childzone and a CNAME from parent to child. wouter 2010-10-29 13:10:26 +0000
  • eabdaa2eb4 - Fix uninit value in dump_infra print. wouter 2010-10-29 10:20:40 +0000
  • 9d840fcfe6 newer ldns for outofdir build wouter 2010-10-27 14:16:34 +0000
  • ae7d63c3b8 allocfix wouter 2010-10-27 14:02:20 +0000
  • 39e2528d5b Fix compile in alloccheck case. wouter 2010-10-27 13:59:17 +0000
  • 52ee49a548 Fix. wouter 2010-10-27 12:23:23 +0000
  • bc95d0399b Remove warnings on NetBSD. wouter 2010-10-27 12:21:44 +0000
  • d71a3cf1ca nicer output from debug commands wouter 2010-10-27 08:09:22 +0000
  • 127bb0f5f7 subtract 1000 so it is more than the RTT_BAND wouter 2010-10-26 15:41:23 +0000
  • 7b804dfd28 fix for top reuse wouter 2010-10-26 15:28:01 +0000
  • 682e6f70c0 - Change of timeout code. No more lost and backoff in blockage. At 12sec timeout (and at least 2x lost before) one probe per IP is allowed only. At 120sec, the IP is blocked. After 15min, a 120sec entry has a single retry packet. wouter 2010-10-26 15:02:08 +0000
  • dcd8a97b63 neater API for unbound-control lookup. wouter 2010-10-26 13:43:28 +0000
  • ef38180e0e remove lost and backoff values. wouter 2010-10-26 13:30:37 +0000
  • ee39f03318 - no timeout backoff if meanwhile a query succeeded. wouter 2010-10-26 12:15:00 +0000
  • 47f0d85801 tarball contains ldns 1.6.7rc1 wouter 2010-10-26 09:59:20 +0000
  • 786b9481fa dump_infra and flush_infra commands for unbound-control. wouter 2010-10-26 09:08:33 +0000
  • 26c5c1a18a + - Configure errors if ldns is not found. wouter 2010-10-25 07:44:33 +0000
  • b3100c3820 - Windows 7 fix for installer. wouter 2010-10-22 07:34:28 +0000
  • c126a3de01 - Fix bug where fallback_tcp causes wrong roundtrip and edns observation to be noted in cache. Fix bug where EDNSprobe halted exponential backoff if EDNS status unknown. - new unresponsive host method, exponentially increasing block backoff. - iana portlist updated. wouter 2010-10-21 15:11:39 +0000
  • f1229492aa lint wouter 2010-10-20 10:14:12 +0000
  • aac0ddc27b Jostle time used to estimate roundtrip. wouter 2010-10-20 08:19:05 +0000
  • 0a2b76bc0e Enable interface-automatic for people for whom it works. wouter 2010-10-20 05:36:00 +0000
  • 11c13f0113 iana portlist updated wouter 2010-10-19 15:21:01 +0000
  • b8349423f9 Fix for request list growth. wouter 2010-10-19 14:53:29 +0000
  • ec37b20c16 Uses curl to check if the icann cert file has been updated on the website. wouter 2010-10-18 13:25:30 +0000
  • 5c1bd79bed iana portlist updated wouter 2010-10-18 08:45:46 +0000
  • 5f709f082a Fix compile warning on mingw. wouter 2010-10-15 09:43:54 +0000
  • 5ee6e69f27 Root key option in the unbound windows installer works. wouter 2010-10-15 09:31:58 +0000
  • fc168cf843 fixup install scripts with root option. wouter 2010-10-14 15:34:53 +0000
  • 76fcf3bcfa unbound-anchor works on vista. wouter 2010-10-14 14:55:38 +0000
  • 7cb4761cdd Fix, unit test and testbound work on windows Vista. wouter 2010-10-14 13:20:10 +0000
  • dfcb568377 less verbose on output. wouter 2010-10-14 09:18:20 +0000
  • a2509f5be0 fix wouter 2010-10-14 09:12:26 +0000
  • 044430e761 remove compile warning on Ubuntu wouter 2010-10-14 08:13:33 +0000
  • c888d95709 autconf-ed wouter 2010-10-14 07:07:02 +0000
  • 7934b627a5 configure fix for WinXP ldns detection. wouter 2010-10-13 16:33:40 +0000
  • c7496fd77d install script update wouter 2010-10-13 14:06:31 +0000
  • 4c527bd0ef rootkey file to windows port wouter 2010-10-13 13:32:55 +0000
  • 3193efb818 windows crosscompile expat option for static expat library. wouter 2010-10-13 13:02:09 +0000
  • 7a126d2249 windows crosscompile port wouter 2010-10-13 12:22:46 +0000
  • acaf52ab72 - unbound-anchor handles ADDPEND keystate. wouter 2010-10-13 12:04:37 +0000
  • 4f575ff3dc - Fix TCP so it uses a random outgoing-interface. wouter 2010-10-13 08:52:29 +0000