upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-23 16:20:26 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
1195 commits 23 branches 209 tags 123 MiB
Commit graph

146 commits

Author SHA1 Message Date
Wouter Wijngaards
41e847df18 security audit changes. 
git-svn-id: file:///svn/unbound/trunk@657 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-04 15:10:11 +00:00
Wouter Wijngaards
d4614cf1ce fixup cname out of unsec zone. 
git-svn-id: file:///svn/unbound/trunk@655 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-03 13:33:23 +00:00
Wouter Wijngaards
a740dfe195 Fixup and test. 
git-svn-id: file:///svn/unbound/trunk@654 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-03 12:20:55 +00:00
Wouter Wijngaards
a73089c5f0 loopfix. 
git-svn-id: file:///svn/unbound/trunk@653 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-10-03 08:36:47 +00:00
Wouter Wijngaards
fd3293a0ee NSEC3 tests, and fixup for qtype ANY wildcard proof. 
git-svn-id: file:///svn/unbound/trunk@638 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-25 09:39:32 +00:00
Wouter Wijngaards
0f7ced491e NSEC3 test and fix for bitmap protection code. 
git-svn-id: file:///svn/unbound/trunk@637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-25 08:33:14 +00:00
Wouter Wijngaards
931efbbaa0 Fixup and test for nonrec loop case. 
git-svn-id: file:///svn/unbound/trunk@634 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-21 20:30:04 +00:00
Wouter Wijngaards
74468b2edb debug 
git-svn-id: file:///svn/unbound/trunk@633 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-21 15:45:32 +00:00
Wouter Wijngaards
a81e19a6eb Fixup alloc in wrong region. 
git-svn-id: file:///svn/unbound/trunk@628 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-21 13:34:44 +00:00
Wouter Wijngaards
62e37fe3ee quick fixup 
git-svn-id: file:///svn/unbound/trunk@626 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-20 12:46:19 +00:00
Wouter Wijngaards
c6e92c19b2 more liberal for ANS ENT bug. Fixup DS ENT handling too. 
git-svn-id: file:///svn/unbound/trunk@625 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-20 12:31:35 +00:00
Wouter Wijngaards
9865f38f69 Fixup for a wildcarded NSEC with empty nonterminal query. 
git-svn-id: file:///svn/unbound/trunk@624 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-20 11:37:15 +00:00
Wouter Wijngaards
8959cd47a8 NSEC rdata not lowercased. 
git-svn-id: file:///svn/unbound/trunk@623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-19 12:34:42 +00:00
Wouter Wijngaards
e8bcec4529 print validator classification type. 
update plan items.


git-svn-id: file:///svn/unbound/trunk@619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-18 12:33:51 +00:00
Wouter Wijngaards
c4392dd54c wildcard nsec3 tests. 
git-svn-id: file:///svn/unbound/trunk@618 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-18 08:28:35 +00:00
Wouter Wijngaards
748bfb0b0e more nsec3 tests. 
git-svn-id: file:///svn/unbound/trunk@617 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-17 14:52:14 +00:00
Wouter Wijngaards
6510d8f20a namerror nsec3 proof works. 
git-svn-id: file:///svn/unbound/trunk@616 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-17 14:03:35 +00:00
Wouter Wijngaards
c7d15770c1 nsec3 hash function unit test. 
git-svn-id: file:///svn/unbound/trunk@615 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-17 09:25:54 +00:00
Wouter Wijngaards
7987b687dc NSEC3. 
git-svn-id: file:///svn/unbound/trunk@613 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-14 11:15:42 +00:00
Wouter Wijngaards
b22e1d4273 Use nsec3s_seen flag for speedup. 
git-svn-id: file:///svn/unbound/trunk@612 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-13 15:11:25 +00:00
Wouter Wijngaards
92198b3624 if no NSEC3 present, skip validation. 
git-svn-id: file:///svn/unbound/trunk@611 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-13 15:09:58 +00:00
Wouter Wijngaards
facde2ca10 nsec3 work, prove name error. 
git-svn-id: file:///svn/unbound/trunk@610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-13 15:02:33 +00:00
Wouter Wijngaards
d85debfae4 nsec3 work. 
git-svn-id: file:///svn/unbound/trunk@609 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-12 14:16:46 +00:00
Wouter Wijngaards
26f9ea8942 nsec3 work. 
git-svn-id: file:///svn/unbound/trunk@607 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-11 18:18:16 +00:00
Wouter Wijngaards
149ff1cd5a please older gcc. 
git-svn-id: file:///svn/unbound/trunk@604 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-06 09:16:43 +00:00
Wouter Wijngaards
08bf892be6 port. 
git-svn-id: file:///svn/unbound/trunk@603 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-06 09:14:13 +00:00
Wouter Wijngaards
cb3044c09d wildcard NSECs. 
git-svn-id: file:///svn/unbound/trunk@596 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-05 12:58:25 +00:00
Wouter Wijngaards
f52b202747 trust anchor denial test. 
git-svn-id: file:///svn/unbound/trunk@594 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-05 11:47:09 +00:00
Wouter Wijngaards
d45774fe03 wildcard DNAME detect 
git-svn-id: file:///svn/unbound/trunk@585 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-04 12:57:40 +00:00
Wouter Wijngaards
0e11cd160d DNAME synthesis and validation fixups. 
git-svn-id: file:///svn/unbound/trunk@584 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-04 12:44:43 +00:00
Wouter Wijngaards
bb67a404fb tests, cleanup tmp when testbound fails, fixup referral glue cleanup. 
git-svn-id: file:///svn/unbound/trunk@583 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-04 11:31:29 +00:00
Wouter Wijngaards
8351afe61a cname nxdomain fixup. 
git-svn-id: file:///svn/unbound/trunk@576 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-09-03 09:13:27 +00:00
Wouter Wijngaards
49bb418691 Nodata tests. 
git-svn-id: file:///svn/unbound/trunk@572 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-31 12:35:41 +00:00
Wouter Wijngaards
fd7af10ff6 please lint. 
git-svn-id: file:///svn/unbound/trunk@570 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-31 07:56:00 +00:00
Wouter Wijngaards
f304a2a459 can read bind-style config files for trust anchor information. 
git-svn-id: file:///svn/unbound/trunk@569 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-31 07:44:16 +00:00
Wouter Wijngaards
fceea2bcd5 bind config trusted keys read work. 
git-svn-id: file:///svn/unbound/trunk@568 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-30 15:36:23 +00:00
Wouter Wijngaards
45297772c9 crypto cleanups at exit. 
git-svn-id: file:///svn/unbound/trunk@567 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-30 13:38:52 +00:00
Wouter Wijngaards
a22a3b1669 Memory cleanup. 
- caught bad free of un-alloced data in worker_send error case.
       - memory accounting for key cache (trust anchors and temporary cache).
       - memory accounting fixup for outside network tcp pending waits.
       - memory accounting fixup for outside network tcp callbacks.
       - memory accounting for iterator fixed storage.
       - key cache size and slabs config options.


git-svn-id: file:///svn/unbound/trunk@566 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-30 12:45:19 +00:00
Wouter Wijngaards
de6d807e3d no convert to der for DSA signatures 
signature test.


git-svn-id: file:///svn/unbound/trunk@564 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-29 14:27:04 +00:00
Wouter Wijngaards
824ceffedb verbosity detail gives validation failures, but not boring algorithm logs. 
git-svn-id: file:///svn/unbound/trunk@560 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 15:07:52 +00:00
Wouter Wijngaards
e839035a7a doc fixup. 
git-svn-id: file:///svn/unbound/trunk@559 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 14:14:20 +00:00
Wouter Wijngaards
3d832f5dca Small speedup. 
git-svn-id: file:///svn/unbound/trunk@558 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 14:13:32 +00:00
Wouter Wijngaards
459039cf08 Faster verification. 
git-svn-id: file:///svn/unbound/trunk@557 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 13:54:55 +00:00
Wouter Wijngaards
60470b186e permissive mode feature. 
git-svn-id: file:///svn/unbound/trunk@556 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 11:53:27 +00:00
Wouter Wijngaards
c988905aa4 enforce signature TTLs 
git-svn-id: file:///svn/unbound/trunk@555 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 10:26:16 +00:00
Wouter Wijngaards
af2b300529 No offtree signing. 
git-svn-id: file:///svn/unbound/trunk@554 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 09:47:17 +00:00
Wouter Wijngaards
0e90c03e95 Referral validation. 
git-svn-id: file:///svn/unbound/trunk@553 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-28 09:39:43 +00:00
Wouter Wijngaards
f9cc9481e2 validator also computes insecure and indeterminate for rrsets and stores 
that.


git-svn-id: file:///svn/unbound/trunk@551 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-27 14:55:06 +00:00
Wouter Wijngaards
542b812690 do not cache nonRD replies in msg cache, the rrset cache is used for that. 
store verification status in rrset cache to enable security for nonRD
replies and also speed up processing.


git-svn-id: file:///svn/unbound/trunk@550 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-27 13:46:05 +00:00
Wouter Wijngaards
87fafec48a DS and DNSKEY not from additional synthesis. Nicer signature expiration errors. 
git-svn-id: file:///svn/unbound/trunk@546 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-24 13:14:23 +00:00
Wouter Wijngaards
a490e8777f Fixup. 
git-svn-id: file:///svn/unbound/trunk@545 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-24 12:24:07 +00:00
Wouter Wijngaards
3a422ba496 prettier proof routines. 
git-svn-id: file:///svn/unbound/trunk@544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-24 10:36:15 +00:00
Wouter Wijngaards
6890f55d17 refuse unsigned authority section. clean additional section as option. 
git-svn-id: file:///svn/unbound/trunk@543 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-24 09:44:29 +00:00
Wouter Wijngaards
b54a0400ab CNAME validation. 
git-svn-id: file:///svn/unbound/trunk@542 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-23 15:23:45 +00:00
Wouter Wijngaards
a7001366a1 review change. 
git-svn-id: file:///svn/unbound/trunk@541 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-22 14:29:24 +00:00
Wouter Wijngaards
a084af819c bogus ttl fixed value, config item. 
git-svn-id: file:///svn/unbound/trunk@540 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-22 12:13:52 +00:00
Wouter Wijngaards
272096d611 Returns and caches validated replies. 
git-svn-id: file:///svn/unbound/trunk@536 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-21 13:12:10 +00:00
Wouter Wijngaards
834a8fc30f any response validation. 
git-svn-id: file:///svn/unbound/trunk@535 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-21 07:58:55 +00:00
Wouter Wijngaards
0f9ae7acd8 nxdomain validation. 
git-svn-id: file:///svn/unbound/trunk@534 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 14:27:11 +00:00
Wouter Wijngaards
5605f8d003 nodata validation. 
git-svn-id: file:///svn/unbound/trunk@533 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 13:39:58 +00:00
Wouter Wijngaards
1b42a51048 VALIDATE state and positive response validation. 
git-svn-id: file:///svn/unbound/trunk@532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 12:31:12 +00:00
Wouter Wijngaards
3f8b0b1cfe handle DNSKEY response state. 
git-svn-id: file:///svn/unbound/trunk@531 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-20 08:10:57 +00:00
Wouter Wijngaards
453df0c66c nsec work, canonical compare routine and tests. 
git-svn-id: file:///svn/unbound/trunk@530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-17 14:25:42 +00:00
Wouter Wijngaards
cedeaa8316 ds2ke and nsec work. 
git-svn-id: file:///svn/unbound/trunk@529 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-17 11:41:49 +00:00
Wouter Wijngaards
9ddbb430ef findkey state. 
git-svn-id: file:///svn/unbound/trunk@528 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-16 15:06:40 +00:00
Wouter Wijngaards
24aad68487 fixup canon compare. Include full AXFR data in signature test. 
git-svn-id: file:///svn/unbound/trunk@526 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-16 10:05:52 +00:00
Wouter Wijngaards
e4aa70b4c5 key prime, DS test. 
git-svn-id: file:///svn/unbound/trunk@525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-16 09:33:35 +00:00
Wouter Wijngaards
ce290651d0 unit test will fail, but this fixes canonical order in unbound, waiting 
for ldns fix.


git-svn-id: file:///svn/unbound/trunk@523 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-15 14:09:00 +00:00
Wouter Wijngaards
1d29f79974 verify unit test. 
git-svn-id: file:///svn/unbound/trunk@522 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-15 13:18:32 +00:00
Wouter Wijngaards
927af50c81 please lint. 
git-svn-id: file:///svn/unbound/trunk@521 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-15 09:04:44 +00:00
Wouter Wijngaards
f06b1e8ef3 crypto verify routines. 
git-svn-id: file:///svn/unbound/trunk@520 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-15 08:39:00 +00:00
Wouter Wijngaards
448a9f414f fixups for memory. 
git-svn-id: file:///svn/unbound/trunk@512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-14 13:15:36 +00:00
Wouter Wijngaards
0374d468c8 hinfo treatment. 
git-svn-id: file:///svn/unbound/trunk@510 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-13 11:53:24 +00:00
Wouter Wijngaards
2157540f35 makefile nicer in case flex is missing. 
canonical compare.


git-svn-id: file:///svn/unbound/trunk@509 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-13 10:27:44 +00:00
Wouter Wijngaards
749ee526e8 canonical sort. 
git-svn-id: file:///svn/unbound/trunk@508 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-10 15:12:06 +00:00
Wouter Wijngaards
5166d65ea2 debug override date config option. 
git-svn-id: file:///svn/unbound/trunk@505 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-09 15:16:25 +00:00
Wouter Wijngaards
45f95a18af rrsig checks. 
git-svn-id: file:///svn/unbound/trunk@502 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-09 09:58:04 +00:00
Wouter Wijngaards
8f58908f45 sigcrypt keyset processing 
git-svn-id: file:///svn/unbound/trunk@501 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-08 13:59:57 +00:00
Wouter Wijngaards
bdb519c5c1 use sigcrypt. 
git-svn-id: file:///svn/unbound/trunk@500 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-08 13:02:53 +00:00
Wouter Wijngaards
7726691af9 sigcrypt work. 
git-svn-id: file:///svn/unbound/trunk@499 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-08 11:45:54 +00:00
Wouter Wijngaards
eb5ab1f8e6 sigcrypt. 
git-svn-id: file:///svn/unbound/trunk@498 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-07 15:18:25 +00:00
Wouter Wijngaards
b2639ba961 val_util work. 
git-svn-id: file:///svn/unbound/trunk@497 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-07 14:30:01 +00:00
Wouter Wijngaards
c3a5bcb8d4 id number change 
git-svn-id: file:///svn/unbound/trunk@496 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-07 09:24:20 +00:00
Wouter Wijngaards
b24aac895f prime work. 
git-svn-id: file:///svn/unbound/trunk@494 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-06 15:56:12 +00:00
Wouter Wijngaards
188bfacd05 validator work. 
git-svn-id: file:///svn/unbound/trunk@493 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-06 12:57:29 +00:00
Wouter Wijngaards
4eaa855db9 dname isroot and dellabel 
git-svn-id: file:///svn/unbound/trunk@492 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-06 11:06:00 +00:00
Wouter Wijngaards
44560e40ea key cache. 
git-svn-id: file:///svn/unbound/trunk@491 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-06 09:34:58 +00:00
Wouter Wijngaards
1d83bb84ed key entry. 
git-svn-id: file:///svn/unbound/trunk@490 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-03 14:56:24 +00:00
Wouter Wijngaards
9ebbdbabd3 create rrsets for verification later. 
git-svn-id: file:///svn/unbound/trunk@489 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-03 14:12:28 +00:00
Wouter Wijngaards
eb1b1e6044 unit test trust anchor storage. 
git-svn-id: file:///svn/unbound/trunk@487 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-03 13:15:16 +00:00
Wouter Wijngaards
d48e17e1dd trust anchor storage and config. 
git-svn-id: file:///svn/unbound/trunk@486 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-03 11:51:20 +00:00
Wouter Wijngaards
fd3e3ed05b validator, trust anchors. 
git-svn-id: file:///svn/unbound/trunk@482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 15:45:32 +00:00
Wouter Wijngaards
ce12d59957 validator work. 
git-svn-id: file:///svn/unbound/trunk@481 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 14:36:20 +00:00
Wouter Wijngaards
6849c1030b passing of control between modules. 
git-svn-id: file:///svn/unbound/trunk@479 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-02 12:13:08 +00:00
Wouter Wijngaards
2122b961d3 callbacks via module specific function for walk_supers. 
part of a move towards multiple modules for meshes.


git-svn-id: file:///svn/unbound/trunk@471 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 14:01:34 +00:00
Wouter Wijngaards
ac895c6d35 module configuration option. 
git-svn-id: file:///svn/unbound/trunk@468 be551aaa-1e26-0410-a405-d3ace91eadb9
 2007-08-01 11:17:30 +00:00