fc57d16d98- Fix bug when DLV below a trust-anchor that uses NSEC3 optout where the zone has a secure delegation hosted on the same server did not verify as secure (it was insecure by mistake).
wouter
2010-10-11 12:21:19 +0000
f846bfd4b1Fix out-of-order XML element parse, zone name check and newline filter for unbound-anchor XML parse.
wouter
2010-10-01 15:01:49 +0000
bb10bf693atest update and nicer text output for unbound-anchor
wouter
2010-10-01 13:55:16 +0000
456ac9f0e7fix test
wouter
2010-10-01 12:26:20 +0000
33d8166041no override time, works on Minix and not needed for the tpkg.
wouter
2010-10-01 12:14:05 +0000
f769c516a7- Fix alloc_reg_release for longer uptime in out of memory conditions.
wouter
2010-10-01 12:04:12 +0000
4078c27e1bunbound-anchor: no pem updates, do not download .pem file (no stable url), and date nicer to maintain in code.
wouter
2010-09-28 09:22:22 +0000
db4944a21d- Algorithm rollover operational reality intrudes, for trust-anchor, 5011-store, and DLV-anchor if one key matches it's good enough.
wouter
2010-09-16 13:40:26 +0000
d290d34406neater make test output
wouter
2010-09-15 07:15:30 +0000
2b05eb39ec- Abide RFC5155 section 9.2: no AD flag for replies with NSEC3 optout.
wouter
2010-09-15 07:08:09 +0000
c505d74cd7comment for iana portlist update
wouter
2010-09-14 09:31:20 +0000
e03ed46f4e- unresponsive servers are not completely blacklisted (because of firewalls), but also not probed all the time (because of the request list size it generates). The probe rate is 1%.
wouter
2010-09-09 14:56:51 +0000
f1026decf4- example.conf notes how to do DNSSEC validation and track the root.
wouter
2010-08-19 19:16:03 +0000
8774983f7d- Fix bug#321: resolution of rs.ripe.net artifacts with 0x20. Delegpt structures checked for duplicates always. No more nameserver lookups generated when depth is full anyway.
wouter
2010-08-19 13:00:21 +0000
2bea7f3666patch for Gunter bug321
wouter
2010-08-18 16:53:56 +0000
f3fdb20593better readme svn:NO TEST
wouter
2010-08-18 10:46:28 +0000
784734f3e3README for new test setup and testbound selftest.
wouter
2010-08-16 13:30:37 +0000
1acd6be484- make test more portable (make longtest needs special support programs, ldns, wdiff, dig, port-numbers). - moved not-always-portable testbound scripts to names .crpl.
wouter
2010-08-16 12:59:37 +0000
4454cb499b- Fix integer underflow in prefetch ttl creation from cache. This fixes a potential negative prefetch ttl. -This line, and those below, will be ignored--
wouter
2010-07-14 11:13:30 +0000
c25086d8b3New text
wouter
2010-07-14 08:38:07 +0000
388c46ddb0Not enough file descriptors is not fatal, it gets adjusted and warned.
wouter
2010-07-13 07:29:01 +0000
763051d2ab- Changed the defaults for num-queries-per-thread/outgoing-range. For builtin-select: 512/960, for libevent 1024/4096 and for windows 24/48 (because of win api). This makes the ratio this way to improve resilience under heavy load. For high performance, use libevent and possibly higher numbers.
wouter
2010-07-12 13:59:39 +0000
70170bf148- GOST enabled if SSL is recent and ldns has GOST enabled too. - ldns tarball updated.
wouter
2010-07-10 08:13:19 +0000
c9e13c5160- iana portlist updated. - Fix validation of qtype DNSKEY when a key-cache entry exists but no rr-cache entry is used (it expired or prefetch), it then goes back up to the DS or trust-anchor to validate the DNSKEY.
wouter
2010-07-09 15:00:35 +0000
34fef67b47- Neat function prototypes, unshadowed local declarations.
wouter
2010-07-07 13:13:36 +0000