upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-20 23:00:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

- Fix that windows unbound service can use DNS-over-TLS.

Browse source 
git-svn-id: file:///svn/unbound/trunk@4689 be551aaa-1e26-0410-a405-d3ace91eadb9
This commit is contained in:
Wouter Wijngaards 2018-05-24 09:23:24 +00:00
parent 55a0d89f0d
commit 55088951c0
2 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
doc/Changelog
View file

@ -1,5 +1,6 @@
24 May 2018: Wouter
- Fix that libunbound can do DNS-over-TLS, when configured.
- Fix that windows unbound service can use DNS-over-TLS.
23 May 2018: Wouter
- Use accept4 to speed up incoming TCP (and TLS) connections,

9
winrc/win_svc.c
View file

@ -52,6 +52,7 @@
#include "util/config_file.h"
#include "util/netevent.h"
#include "util/ub_event.h"
#include "util/net_help.h"
/** global service status */
static SERVICE_STATUS service_status;
@ -357,6 +358,14 @@ service_init(int r, struct daemon** d, struct config_file** c)
config_delete(cfg);
return 0;
}
if(cfg->ssl_service_key && cfg->ssl_service_key[0]) {
if(!(daemon->listen_sslctx = listen_sslctx_create(
cfg->ssl_service_key, cfg->ssl_service_pem, NULL)))
fatal_exit("could not set up listen SSL_CTX");
}
if(!(daemon->connect_sslctx = connect_sslctx_create(NULL, NULL,
cfg->tls_cert_bundle)))
fatal_exit("could not set up connect SSL_CTX");
/* open ports */
/* keep reporting that we are busy starting */