townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Commit Graph

  • c0b6702a39 lint fix. wouter 2018-01-26 14:40:00 +0000
  • e2560b3919 lint fixes. wouter 2018-01-26 14:39:19 +0000
  • 6511959fdb fix ixfr and axfr end detection. wouter 2018-01-26 14:35:53 +0000
  • 1456e7a6e4 authzone transfer functionality wouter 2018-01-26 14:16:04 +0000
  • 7774d57f1c correct name for libunbound.so.conf wouter 2018-01-25 09:47:09 +0000
  • 0a2f0cf4ab add semicolon at end of line. wouter 2018-01-25 09:33:24 +0000
  • 1926bbe54f - ltrace.conf file for libunbound in contrib. wouter 2018-01-25 09:31:49 +0000
  • 74d2a9dacd - Print fatal errors about remote control setup before log init, so that it is printed to console. wouter 2018-01-23 15:59:18 +0000
  • f84f924e28 - Fix that unbound-checkconf -f flag works with auto-trust-anchor-file for startup scripts to get the full pathname(s) of anchor file(s). wouter 2018-01-23 14:20:17 +0000
  • 98b9046b25 - Fix #3397: Fix that when the cache contains an unsigned DNAME in the middle of a cname chain, a result without the DNAME could be returned. wouter 2018-01-22 14:30:16 +0000
  • 82881b17a4 - Fix #3397: Fix that cachedb could return a partial CNAME chain. wouter 2018-01-22 13:54:20 +0000
  • bf48ee6359 - Accept tls-upstream in unbound.conf, the ssl-upstream keyword is also recognized and means the same. Also for tls-port, tls-service-key, tls-service-pem, stub-tls-upstream and forward-tls-upstream. wouter 2018-01-22 08:35:44 +0000
  • 58bcba72fd - make depend: code dependencies updated in Makefile. wouter 2018-01-19 09:52:40 +0000
  • b9d181057d - iana port update. wouter 2018-01-19 09:51:50 +0000
  • 7911e492f9 - patch for CVE-2017-15105: vulnerability in the processing of wildcard synthesized NSEC records. wouter 2018-01-19 09:50:35 +0000
  • 51c4c9777b - trunk has 1.6.9 with fix and previous commits. wouter 2018-01-19 09:49:32 +0000
  • a28f91e754 - Copy query and correctly set flags on REFUSED answers when cache snooping is not allowed. ralph 2018-01-04 15:16:19 +0000
  • f31d36c8ac Please lint ralph 2018-01-03 17:05:48 +0000
  • faf687efe9 - Fix queries being leaked above stub when refetching glue. ralph 2018-01-03 16:54:22 +0000
  • 0a121de98f fix oneoff wouter 2018-01-02 13:36:17 +0000
  • e8865e9ac9 fixup larger than 2**31 case. wouter 2018-01-02 12:43:43 +0000
  • fe7c8d17cb - Remove clang optimizer disable, Fix that expiration date checks don't fail with clang -O2. wouter 2018-01-02 10:48:00 +0000
  • ed00a97133 - Fix that DS queries with referral replies are answered straight away, without a repeat query picking the DS from cache. The correct reply should have been an answer, the reply is fixed by the scrubber to have the answer in the answer section. wouter 2018-01-02 09:48:22 +0000
  • bd2f389b35 - Also disable -flto for clang, to make incep-expi signature check work. wouter 2017-12-15 12:54:02 +0000
  • b4462e04f5 - iana port update. wouter 2017-12-15 12:42:45 +0000
  • e905d51302 - Fix timestamp failure because of clang optimizer failure, by disabling -O2 when the compiler --version is clang. wouter 2017-12-15 10:25:41 +0000
  • dd172dfbec remove debug output wouter 2017-12-15 10:21:38 +0000
  • 8ddd743496 this version of unbound fails when compiled with CC=clang and -O (edit Makefile), or -O2 (default). If you use no optimizing flag, unittest works. wouter 2017-12-15 10:16:06 +0000
  • eaeddf2057 unit test for timestamp failure with clang wouter 2017-12-15 09:38:11 +0000
  • 074b850250 authzone work wouter 2017-12-12 15:55:23 +0000
  • 2c0645e9c9 set repinfo correctly (this prints out debug and errors with the correct remote IP) wouter 2017-12-12 15:45:55 +0000
  • ea5643f984 fix unit tests wouter 2017-12-12 15:41:03 +0000
  • a1ad3c1de2 - authzone work, transfer connect. wouter 2017-12-12 15:39:45 +0000
  • 9437250636 - Fix qname-minimisation documentation (A QTYPE, not NS) ralph 2017-12-12 09:23:13 +0000
  • 1a699f5936 - Check whether --with-libunbound-only is set when using --with-nettle or --with-nss. ralph 2017-12-07 10:51:22 +0000
  • 14da3558d8 lookup and transfer setup wouter 2017-12-04 16:24:24 +0000
  • 32908dc89d disown and pickup of next task. wouter 2017-12-04 14:51:01 +0000
  • bf39361671 fixup locks. wouter 2017-12-04 09:50:31 +0000
  • f9decd7b0c - Fix link failure on OmniOS. wouter 2017-12-04 08:28:16 +0000
  • bf32cf4686 auth zone transfer setup. wouter 2017-12-01 16:04:54 +0000
  • 276a63a121 iterate probe over looked up ip4 and ip6 addresses wouter 2017-12-01 14:20:55 +0000
  • 3338ac15eb - auth zone work. probe hostname lookup. wouter 2017-12-01 14:02:28 +0000
  • 0dfd3238d7 note that state must be separated because of error corner cases. wouter 2017-11-30 16:07:10 +0000
  • 8fb3f71338 - Fix #3299 - forward CNAME daisy chain is not working wouter 2017-11-30 08:34:20 +0000
  • 19649cbf4b re-run aclocal (of Fedora 27). wouter 2017-11-17 14:44:57 +0000
  • c8b4fc87ea upgraded comment wouter 2017-11-16 14:36:23 +0000
  • 98a152c9c8 fix for lint. wouter 2017-11-14 16:05:00 +0000
  • 9efb904454 - auth xfer work on probe timer and lookup. wouter 2017-11-14 15:58:24 +0000
  • 44915a87fe - Fix #2882: Unbound behaviour changes (wrong) when domain-insecure is set for stub zone. It no longer searches for DNSSEC information. wouter 2017-11-14 10:01:44 +0000
  • 1f3ab65816 no AAAA shortcuts. wouter 2017-11-13 14:15:10 +0000
  • 6f02e4bb69 - Fix qname minimisation to send AAAA queries at zonecut like type A. wouter 2017-11-13 12:11:38 +0000
  • e23fd1317f - Fix #2801: Install libunbound.pc. wouter 2017-11-13 10:25:01 +0000
  • 58a0187a18 unused void cast. wouter 2017-11-09 16:06:27 +0000
  • 3ccb98dd2f - Fix #2492: Documentation libunbound. wouter 2017-11-07 08:05:12 +0000
  • a022c9bd0e - Fix #2141 - for libsodium detect lack of entropy in chroot, print a message and exit. wouter 2017-11-03 15:08:14 +0000
  • f03a2ab411 - Fix #2034 - Autoconf and -flto. wouter 2017-11-03 10:52:25 +0000
  • a0ffe3a276 - Fix #2362: TLS1.3/openssl-1.1.1 not working. wouter 2017-11-03 07:40:36 +0000
  • de14a7e850 Correct line ending in man page. wouter 2017-11-02 10:25:27 +0000
  • f2a4d20b7f Typing error fix up. wouter 2017-11-02 09:44:27 +0000
  • 6c4ad226a5 - make ip-transparent option work on OpenBSD. wouter 2017-11-02 09:34:19 +0000
  • 72b70b5c9d - Fix #1913: ub_ctx_config is under circumstances thread-safe. wouter 2017-11-02 08:23:52 +0000
  • c9ce6f5969 - iana port update. wouter 2017-10-31 13:18:04 +0000
  • ba572d6f60 - lexer output. wouter 2017-10-31 10:07:01 +0000
  • 470f64df29 - Document that errno is left informative on libunbound config read fail. wouter 2017-10-31 08:18:18 +0000
  • d1c485bc4c - Fix #2031: Double included headers ralph 2017-10-25 13:30:32 +0000
  • 24b4835ec3 - Fix #1949: [dnscrypt] make provider name mismatch more obvious. ralph 2017-10-25 10:13:35 +0000
  • 9c22e42723 - Fixed libunbound manual typo. ralph 2017-10-25 08:38:24 +0000
  • aa79205c9d - Update B root ipv4 address. ralph 2017-10-24 14:50:20 +0000
  • e004cf81b7 authzone, handle probe return packets. wouter 2017-10-20 14:43:51 +0000
  • 80987455c9 fix lint wouter 2017-10-20 12:13:37 +0000
  • 516f8fc5c5 corrected fix for test link. wouter 2017-10-20 11:55:19 +0000
  • 533368b8d8 fix test link wouter 2017-10-19 15:14:00 +0000
  • cc34c6bd06 authzone work. wouter 2017-10-19 15:11:20 +0000
  • 735c650fb5 fix doxygen wouter 2017-10-19 10:18:09 +0000
  • f6767b6484 - authzone work, probe timer setup. wouter 2017-10-19 09:03:36 +0000
  • 6f83cdd0a5 - lint for recent authzone commit. wouter 2017-10-18 06:43:51 +0000
  • 77d3988ed5 - Work on local root zone code. wouter 2017-10-17 15:16:31 +0000
  • 8ea0120a1a - Better documentation for cache-max-negative-ttl. wouter 2017-10-17 12:53:21 +0000
  • 1a627478c3 Turn duplicates into warnings for dnscrypt, and fix declaration and code mix warning. wouter 2017-10-17 07:36:51 +0000
  • cbb64b3ab6 - [dnscrypt] prevent dnscrypt-secret-key, dnscrypt-provider-cert duplicates - [dnscrypt] introduce dnscrypt-provider-cert-rotated option, from Manu Bretelle. This option allows handling multiple cert/key pairs while only distributing some of them. In order to reliably match a client magic with a given key without strong assumption as to how those were generated, we need both key and cert. Likewise, in order to know which ES version should be used. On the other hand, when rotating a cert, it can be desirable to only serve the new cert but still be able to handle clients that are still using the old certs's public key. The dnscrypt-provider-cert-rotated allow to instruct unbound to not publish the cert as part of the DNS's provider_name's TXT answer. wouter 2017-10-17 07:34:49 +0000
  • 3110caa07e - Fix #1749: With harden-referral-path: performance drops, due to circular dependency in NS and DS lookups. wouter 2017-10-17 07:22:58 +0000
  • 9ebff362bf - trunk has version 1.6.8. wouter 2017-10-10 07:38:56 +0000
  • 8a71dc5fc9 - tag 1.6.7 wouter 2017-10-10 07:10:35 +0000
  • ddc2388235 - Fix spelling in unbound-control man page. wouter 2017-10-06 07:00:10 +0000
  • 486ac179d8 - tag 1.6.7rc1 wouter 2017-10-05 14:31:39 +0000
  • 95863bf217 - Use RCODE from A response on DNS64 synthesized answer. ralph 2017-10-05 13:55:04 +0000
  • 511a63ef90 remove duplicate statements. wouter 2017-10-05 10:47:30 +0000
  • 201305283a - Fix some more crpls in testdata for different signaling default. wouter 2017-10-05 10:44:16 +0000
  • c523378d4e - Fix trust-anchor-signaling works in libunbound. wouter 2017-10-05 10:37:34 +0000
  • 8824ebcd93 also disable trust-anchor-signaling is crpl tests ralph 2017-10-05 10:36:52 +0000
  • c42f53614d - Set trust-anchor-signaling default to yes ralph 2017-10-05 10:17:25 +0000
  • 970f539bde - Fix param unused warning for windows exportsymbol compile. wouter 2017-10-02 12:24:48 +0000
  • 8f05e958fa - Fix #1450: Generate again patch contrib/aaaa-filter-iterator.patch (by Danilo G. Baio). ralph 2017-09-25 12:49:47 +0000
  • 4d5b70bbb0 - Log name of looping module ralph 2017-09-21 08:19:47 +0000
  • 235b9c147e Spelling fixes are from Josh Soref. wouter 2017-09-20 07:01:52 +0000
  • f5d8f50530 - Fix DNSCACHE_STORE_ZEROTTL to be bigger than 0xffff. wouter 2017-09-19 11:54:58 +0000
  • f8f0018259 assert and lint. wouter 2017-09-19 09:15:59 +0000
  • 6c6d33763d - use a cachedb answer even if it's "expired" when serve-expired is yes (patch from Jinmei Tatuya). - trigger refetching of the answer in that case (this will bypass cachedb lookup) - allow storing a 0-TTL answer from cachedb in the in-memory message cache when serve-expired is yes wouter 2017-09-19 09:08:29 +0000
  • c881f5fe5e - Fix #1400: allowing use of global cache on ECS-forwarding unless always-forward. ralph 2017-09-18 09:09:10 +0000
  • 87a108b346 - Fix #1440: [dnscrypt] client nonce cache. wouter 2017-09-18 08:55:08 +0000