4a64e4916f* Check for setrlimit separate from getrlimit. * include sys/time.h for struct timeval definition * cast for printf, on Minix.
wouter
2010-07-05 14:20:24 +0000
bb6f5ea246- wdiff is not actually required by make test, updated requirements.
wouter
2010-07-05 13:34:01 +0000
c4b4b1ab3b- added feature to print configure date, target and options with -h. - added feature to print event backend system details with -h.
wouter
2010-07-05 13:10:49 +0000
573c9093ed- log if a server is skipped because it is on the donotquery list, at verbosity 4, to enable diagnosis why no queries to 127.0.0.1.
wouter
2010-07-05 07:45:20 +0000
796d87d213Fix 4035 compliance for algorithms from the DS rrset that MUST sign the DNSKEY.
wouter
2010-07-01 12:08:48 +0000
6bcdb68292- Fix the max number of reply-address count
wouter
2010-06-28 12:50:04 +0000
0c64df2802- Fix jostle list bug found by Vince (luoce@cnnic), it caused the qps in overload situations to be about 5 qps for the class of shortly serviced queries. The capacity of the resolver is then about (numqueriesperthread / 2) / (average time for such long queries) qps for long queries. And about (numqueriesperthread / 2)/(jostletimeout in whole seconds) qps for short queries, per thread.
wouter
2010-06-28 11:42:21 +0000
49be076e35- unbound.h has extern "C" statement for easier include in c++.
wouter
2010-06-25 13:23:03 +0000
10747c9f68Fix for lame reply corner case.
wouter
2010-06-25 08:32:51 +0000
719e9cdf92test to make sure unbound deals with capitals in signer name like bind does
wouter
2010-06-24 07:06:17 +0000
3ff0a4c5f8-wssl feature for makedist.
wouter
2010-06-23 14:01:05 +0000
0aaf9f53aa- When retry to parent the retrycount is not wiped, so failed nameservers are not tried again. - iana portlist updated.
wouter
2010-06-11 14:09:56 +0000
53c0abfaef- Fix bug where a long loop could be entered, now cycle detection has a loop-counter and maximum search amount.
wouter
2010-06-10 14:10:17 +0000
fe6503be38- Fix storage of negative parent glue if that last resort fails.
wouter
2010-06-01 09:33:25 +0000
0cfbe2d6e8Force off bit Z.
wouter
2010-06-01 06:48:15 +0000
7fe8c97a14- fix parentside from cache to be marked dispreferred for bad names.
wouter
2010-05-31 14:39:45 +0000
2df0a9e6e9unbound-control-setup more secure on multiuser system.
wouter
2010-05-31 14:11:51 +0000
1870cfe1d3- fix parentside and querytargets modulestate, for dump_requestlist.
wouter
2010-05-31 14:01:32 +0000
36c5a3f000- parentside names are dispreferred but not said to be dnssec-lame. - parentside check for cached newname glue.
wouter
2010-05-31 13:03:58 +0000
ba004863dafix to run longer in out of memory conditions
wouter
2010-05-31 12:46:24 +0000
1e3e59c54c- Fix AD flag handling, it could in some cases mistakenly copy the AD flag from upstream servers.
wouter
2010-05-31 07:36:01 +0000
348f5baad7parent-child misconfigured data lookup.
wouter
2010-05-28 14:15:29 +0000
1e9c003966- Contribution from Migiel de Vos (Surfnet): nagios patch for unbound-host, in contrib/ (in the source tarball). Makes unbound-host suitable for monitoring dnssec(-chain) status.
wouter
2010-05-26 09:17:18 +0000
c5274f7a89- EDNS timeout code will not fire if EDNS status already known. - EDNS failure not stored if EDNS status known to work.
wouter
2010-05-21 11:00:35 +0000
8896e7d841- Fix resolution for domains like safesvc.com.cn. If the iterator can not recurse further and it finds the delegation in a state where it would otherwise have rejected it outhand if so received from a cache lookup, then it can try to ask higherup (with loop protection). - Fix comments in iter_utils:dp_is_useless.
wouter
2010-05-19 12:59:27 +0000
f995351d40- Fix resolution for domains like safesvc.com.cn. If the iterator can not recurse further and it finds the delegation in a state where it would otherwise have rejected it outhand if so received from a cache lookup, then it can try to ask higherup (with loop protection).
wouter
2010-05-19 12:55:49 +0000
e70d270d5csvn:NO TEST iana portlist updated
wouter
2010-05-18 12:37:38 +0000
9d31e30c81Fix various compiler warnings from the clang llvm compiler.
wouter
2010-05-18 12:37:04 +0000
bedc58446d- Fix bug#308: spelling error in variable name in parser and lexer.
wouter
2010-05-06 05:23:49 +0000
6fde84b695- Conforms to draft-ietf-dnsop-default-local-zones-13. Added default reverse lookup blocks for IPv4 test nets 100.51.198.in-addr.arpa, 113.0.203.in-addr.arpa and Orchid prefix 0.1.1.0.0.2.ip6.arpa.
wouter
2010-05-04 10:50:27 +0000
f2596d95df- Fix dnssec-missing detection that was turned off by server selection.
wouter
2010-05-04 08:39:04 +0000
0d24f0ba28- infra cache entries that are expired are wiped clean. Previously it was possible to not expire host data (if accessed often).
wouter
2010-04-29 14:12:54 +0000
ff7aaf53e0fix for key cache lookup
wouter
2010-04-29 12:52:44 +0000
5de78b1e23dnssec lameness detection looks in key cache if dnssec is expected.
wouter
2010-04-29 12:36:12 +0000
97a1487ccd- Fix detection of gost support in ldns (reported by Chris Smith).
wouter
2010-04-28 19:50:34 +0000
76e9d25a6aGOST detect and iana portlist updated.
wouter
2010-04-28 12:52:03 +0000
c1dee8ad26Fix harden-referral-path so it does not generate lookup failures.
wouter
2010-04-27 14:15:19 +0000
a1cfb1baa7- autotrust anchor file can be initialized with a ZSK key as well.
wouter
2010-04-27 13:00:48 +0000
f335d4f2c4- fix retry sequence if prime hints are recursion-lame.
wouter
2010-04-27 11:10:35 +0000
82e5783f72Fix bug#307: 0x20 fallback outstanding query count, together with rec_lame, and canonical rrset comparison.
wouter
2010-04-26 14:59:44 +0000
84a1dcfbd0- More strict scrubber (Thanks to George Barwood for the idea): NS set must be pertinent to the query (qname subdomain nsname).
wouter
2010-04-26 13:40:37 +0000
1334a54e6cno double include in lexer
wouter
2010-04-26 08:53:53 +0000
88070f63e6- Fix to fetch data as last resort more tenaciously. When cycle targets cause the server selection to believe there are more options when they really are not there, the server selection is reinitiated. - Fix fetch from blacklisted dnssec lame servers as last resort. The servers IP address is then given in validator errors as well.
wouter
2010-04-23 09:07:05 +0000
8d375f0e28- Squelch log message: sendto failed permission denied for 255.255.255.255, it is visible in VERB_DETAIL (verbosity 2).
wouter
2010-04-23 06:48:49 +0000
a74435bf95- Fix validation failure for qtype ANY caused by a RRSIG parse failure. The validator error message was 'no signatures from ...'.
wouter
2010-04-22 15:01:02 +0000
99ef625e34trunk has 1.4.5
wouter
2010-04-22 09:02:30 +0000