townforge/unbound
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Commit Graph

  • c4d8a8858a - Fix that with openssl 1.1 control-use-cert: no uses less cpu, by using no encryption over the unix socket. wouter 2016-11-25 16:14:14 +0000
  • ae25494609 Check and free data allocated by fname_after_chroot ralph 2016-11-23 11:21:10 +0000
  • ff49098e7d - patch from Dag-Erling Smorgrav that removes code that relies on sbrk(). wouter 2016-11-22 15:50:07 +0000
  • 338f46d26f - Added unit test for QNAME minimisation + harden below nxdomain synergy. ralph 2016-11-22 13:53:51 +0000
  • b4889ffa4d - QNAME minimisation uses QTYPE=A, therefore always check cache for this type in harden-below-nxdomain functionality. ralph 2016-11-22 10:50:53 +0000
  • 251ee80c3d remove unused variables. wouter 2016-11-22 10:18:33 +0000
  • 36b4e3e8d0 - Make access-control-tag-data RDATA absolute. This makes the RDATA origin consistent between local-data and access-control-tag-data. - Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain of the NSEC owner. ralph 2016-11-22 10:10:48 +0000
  • 5795b9d972 - Fix unit tests for DS hash processing for fake-dsa test option. wouter 2016-11-22 08:23:24 +0000
  • 425b2bfb84 - iana portlist update. wouter 2016-11-22 08:22:49 +0000
  • 2ab2a2ec28 - Fix #1158: reference RFC 8020 "NXDOMAIN: There Really Is Nothing Underneath" for the harden-below-nxdomain option. wouter 2016-11-21 09:53:43 +0000
  • 51aa35e9e6 - Fix #1155: test status code of unbound-control in 04-checkconf, not the status code from the tee command. ralph 2016-11-10 11:20:27 +0000
  • 95d8709a9a - Note that for harden-below-nxdomain the nxdomain must be secure, this means nsec3 with optout is insufficient. wouter 2016-11-04 14:49:43 +0000
  • 4097f78b84 pass ssl_upstream as int to (lib)worker_send_query ralph 2016-11-04 14:02:22 +0000
  • 3fb4900c0e - Added stub-ssl-upstream and forward-ssl-upstream options. ralph 2016-11-04 12:07:52 +0000
  • ba9a05f5e6 - Fix #1154: segfault when reading config with duplicate zones. wouter 2016-11-04 08:16:55 +0000
  • 7e9e2bfb99 - configure detects ssl security level API function in the autoconf manner. Every function on its own, so that other libraries (eg. LibreSSL) can develop their API without hindrance. wouter 2016-11-04 08:05:42 +0000
  • 22f6a8f7a4 Fixup #if at start of line, for portability. wouter 2016-11-04 07:58:57 +0000
  • c1f7eb0ce5 Set openssl security level to 0 when using aNULL ciphers ralph 2016-11-03 16:59:00 +0000
  • ea515755f0 Free log_identity config string. wouter 2016-11-03 13:19:12 +0000
  • b565dd0a77 - log-identity: config option to set sys log identity, patch from "Robin H. Johnson" <robbat2@gentoo.org> wouter 2016-11-03 08:51:40 +0000
  • 7763171707 - .gitattributes line for githubs code language display. wouter 2016-11-03 08:29:29 +0000
  • 7397821cbd - iana portlist update. wouter 2016-11-02 08:43:14 +0000
  • fd7a40ce90 change to test cronjob-2. wouter 2016-11-02 08:38:03 +0000
  • c4f88dc5a7 Change to test commit cronjob. wouter 2016-11-02 07:22:20 +0000
  • 72c74b26b4 - iana portlist update. wouter 2016-10-31 08:18:17 +0000
  • ab3589f2d1 - Fix failure to build on arm64 with no sbrk. wouter 2016-10-31 08:05:41 +0000
  • bbe0c0a707 - Patch for server.num.zero_ttl stats for count of expired replies, from Pavel Odintsov. wouter 2016-10-28 15:08:32 +0000
  • 7073948a03 - Fix unit tests for openssl 1.1, with no DSA, by faking DSA, enabled with the undocumented switch 'fake-dsa'. It logs a warning. wouter 2016-10-26 07:38:00 +0000
  • cb4533e683 - Fix #1134: unbound-control set_option -- val-override-date: -1 works immediately to ignore datetime, or back to 0 to enable it again. The -- is to ignore the '-1' as an option flag. wouter 2016-10-25 11:49:08 +0000
  • 76d75d9d0d - Fix #1134: unbound-control set_option val-date-override: -1 works immediately to ignore datetime, or back to 0 to enable it again. wouter 2016-10-25 11:44:03 +0000
  • 78de2ff5ae g.root-servers.net has AAAA address. wouter 2016-10-24 13:11:39 +0000
  • fa50e32c4b Fixup cachedb for root prime module return. wouter 2016-10-24 13:01:19 +0000
  • f1e90237e6 Fixup prefetch only when needed wouter 2016-10-24 12:53:13 +0000
  • 416af5ad2e - serve-expired config option: serve expired responses with TTL 0. wouter 2016-10-24 12:43:20 +0000
  • 16f0f57b09 - Ported tests for local_cname unit test to testbound framework. wouter 2016-10-21 08:59:56 +0000
  • a622051af1 - Fixup query_info local_alias init. wouter 2016-10-20 15:05:30 +0000
  • 387ce0f4ff Fixup chachedb printout. wouter 2016-10-20 14:56:08 +0000
  • 0d07974baf - Fixup query_info local_alias init. wouter 2016-10-20 14:55:57 +0000
  • 726011b074 - Fix DNSSEC validation of query type ANY with DNAME answers. wouter 2016-10-20 14:27:13 +0000
  • 5da97362ae - fix --enable-dsa to work, instead of copying ecdsa enable. wouter 2016-10-20 09:22:04 +0000
  • a3d0df3258 - init lzt variable, for older gcc compiler warnings. wouter 2016-10-20 07:57:12 +0000
  • cacf924b0e - suppress compile warning in lex files. wouter 2016-10-20 07:46:35 +0000
  • ada0d4354f - Fix #1130: whitespace in example.conf.in more consistent. wouter 2016-10-19 07:15:41 +0000
  • cff8fd9715 Template entry for unit test. wouter 2016-10-18 14:27:08 +0000
  • 82afa0ef30 - Please doxygen by modifying mesh.h wouter 2016-10-18 13:59:17 +0000
  • d73173c1b5 Fixup changelog bug number to 1118. wouter 2016-10-18 13:58:09 +0000
  • 3f80d607d4 - Added Requires line to libunbound.pc wouter 2016-10-18 13:57:39 +0000
  • a37c47bc77 - Fix #1117: libunbound.pc sets strange Libs, Libs.private values. wouter 2016-10-18 13:56:42 +0000
  • be164dce50 - Fix #1125: unbound could reuse an answer packet incorrectly for clients with different EDNS parameters, from Jinmei Tatuya. wouter 2016-10-18 13:42:08 +0000
  • b77a908a85 - Added documentation doc/CNAME-basedRedirectionDesignNotes.pdf, from Jinmei Tatuya (Infoblox). wouter 2016-10-18 13:21:35 +0000
  • 593353dc9b - Removed patch comments from acllist.c and msgencode.c wouter 2016-10-18 13:20:42 +0000
  • bc78c785ce - Patch that resolves CNAMEs entered in local-data conf statements that point to data on the internet, from Jinmei Tatuya (Infoblox). wouter 2016-10-18 13:18:20 +0000
  • 8c68c9126e - Fixup const void cast warning. wouter 2016-10-17 15:17:15 +0000
  • 100754f8a6 - Fixup const void cast warning. wouter 2016-10-17 15:05:20 +0000
  • ec9a8f573a - Re-fix #839 from view commit overwrite. wouter 2016-10-17 14:37:59 +0000
  • 224d50bc0a - Free view config elements. ralph 2016-10-12 10:09:42 +0000
  • a65e5ddee1 - fix memoryleak logfile when in debug mode. ralph 2016-10-11 13:43:18 +0000
  • 881597de26 - iana portlist update. ralph 2016-10-11 11:44:41 +0000
  • 1393dff5a3 - Added qname-minimisation-strict config option. ralph 2016-10-11 11:32:50 +0000
  • caf867d9be - Fix #1117: spelling errors, from Robert Edmonds ralph 2016-10-05 09:56:05 +0000
  • 083a936fb3 Added views functionality. ralph 2016-10-05 09:36:25 +0000
  • 52f4ab1682 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. wouter 2016-09-30 09:37:20 +0000
  • 785255fed1 - Fix #841: big local-zone's make it consume large amounts of memory. wouter 2016-09-29 13:11:26 +0000
  • 002f758486 - Fix #840: infinite loop in unbound_munin_ plugin on unowned lockfile. wouter 2016-09-29 11:51:14 +0000
  • 7f51472812 - Fix #839: Memory grows unexpectedly with large RPZ files. wouter 2016-09-29 08:08:51 +0000
  • 30c07c6c16 - Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX. wouter 2016-09-29 07:00:31 +0000
  • e09299a233 - Fix #836: unbound could echo back EDNS options in an error response. wouter 2016-09-27 12:22:56 +0000
  • e2e6ff5dd3 - Fix dnstap relaying "random" messages instead of resolver/forwarder responses, from Nikolay Edigaryev. wouter 2016-09-27 11:56:55 +0000
  • 8b8f98a74c 1.5.11 in development. wouter 2016-09-27 11:44:35 +0000
  • e74e2f736a - tag for 1.5.10rc1 release. wouter 2016-09-20 12:23:16 +0000
  • df7a514d4e - Fix #835: fix --disable-dsa with nettle verify. wouter 2016-09-20 12:22:07 +0000
  • 68babd72f6 - iana portlist update. wouter 2016-09-20 11:26:42 +0000
  • c31d468a3a Check for LibreSSL usage when OpenSSL version number >= 1.1 ralph 2016-09-15 14:40:42 +0000
  • 2b8c72d6c0 Check for init_ssl correctly. wouter 2016-09-15 13:45:35 +0000
  • 5c55df0e04 - Test for openssl init_crypto and init_ssl functions. wouter 2016-09-15 12:03:10 +0000
  • 6a6e3f2ff9 Fixup unlock. wouter 2016-09-15 11:48:37 +0000
  • 918edc29a0 - Fix 883: error for duplicate local zone entry. wouter 2016-09-15 10:59:26 +0000
  • 3010d4906f iana portlist update. ralph 2016-09-15 08:49:52 +0000
  • 43a31cadce fix potential memory leak in daemon/remote.c and nullpointer dereference in validator/autotrust. ralph 2016-09-15 08:39:59 +0000
  • 7caf19b386 please lint but also allow larger structure wouter 2016-09-13 11:38:16 +0000
  • 2e4d094696 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len. wouter 2016-09-13 11:35:33 +0000
  • 22024a65a6 attempt to fix freebsd splint output. wouter 2016-09-13 10:51:04 +0000
  • 8ebb041d30 - Silenced flex-generated sign-unsigned warning print with gcc diagnostic pragma. wouter 2016-09-13 10:44:24 +0000
  • 15bda73e48 - Fix #831: workaround for spurious fread_chk warning against petal.c wouter 2016-09-09 05:55:16 +0000
  • b48ea2743f - Fix #828: missing type in access-control-tag-action redirect results in NXDOMAIN. wouter 2016-09-05 14:30:24 +0000
  • 8dc79ecaed Take configured minimum TTL into consideration when reducing TTL to original TTL from RRSIG. ralph 2016-09-05 12:30:46 +0000
  • 9b0f30e072 - Fix incomplete prototypes reported by Dag-Erling Smørgrav. wouter 2016-09-05 07:23:23 +0000
  • 948aaf7c4b - Fix #829: doc of sldns_wire2str_rdata_buf() return value has an off-by-one typo, from Jinmei Tatuya (Infoblox). wouter 2016-09-05 07:14:56 +0000
  • 5d48141712 autoconf wouter 2016-09-02 11:20:45 +0000
  • 56909f9efb Fixup for defines not funcs wouter 2016-09-02 11:20:21 +0000
  • fcad92b021 - Fix compile with openssl 1.1.0 with api=1.1.0. wouter 2016-09-02 09:59:09 +0000
  • bcf6551d3c - iana portlist update. wouter 2016-09-01 14:52:33 +0000
  • 31c27db489 Fixup position before flip. wouter 2016-09-01 14:51:46 +0000
  • 8d55248c66 - Fix #826: Fix refuse_non_local could result in a broken response. wouter 2016-09-01 14:34:45 +0000
  • 63ee7f3970 - Fix for compile without warnings with openssl 1.1.0. wouter 2016-09-01 12:23:59 +0000
  • 66d5373d21 - RFC 7958 is now out, updated docs for unbound-anchor. wouter 2016-09-01 07:08:22 +0000
  • ff5789ef78 - Add default root hints for IPv6 E.ROOT-SERVERS.NET, 2001:500:a8::e. wouter 2016-08-29 07:11:35 +0000
  • 883854cacb - Fix #777: OpenSSL 1.1.0 compatibility, patch from Sebastian A. Siewior. wouter 2016-08-29 07:05:19 +0000
  • fbbca2612b Clarify local-zone-override entry in unbound.conf.5 ralph 2016-08-25 08:40:42 +0000
  • aef792ef26 fixup unused $strip variable wouter 2016-08-25 07:53:48 +0000