upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-23 07:02:55 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
2936 commits 24 branches 209 tags 130 MiB
Commit graph

2014 commits

Author SHA1 Message Date
Wouter Wijngaards
c7872942ac - fix edns-buffer-size and msg-buffer-size manpage documentation. 
git-svn-id: file:///svn/unbound/trunk@2705 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-28 14:25:10 +00:00
Wouter Wijngaards
1467c5de52 - code review: return value of cache_store can be ignored for better 
performance in out of memory conditions.


git-svn-id: file:///svn/unbound/trunk@2704 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-28 14:18:41 +00:00
Wouter Wijngaards
097c70be91 - detect if openssl has FIPS_mode. 
git-svn-id: file:///svn/unbound/trunk@2703 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-28 06:54:16 +00:00
Wouter Wijngaards
87ded67cb6 - disable RSAMD5 if in FIPS mode (for openssl and for libnss). 
git-svn-id: file:///svn/unbound/trunk@2702 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-25 15:13:44 +00:00
Wouter Wijngaards
98b6f90637 - disable RSAMD5 if in FIPS mode (when compiled with openssl). 
git-svn-id: file:///svn/unbound/trunk@2701 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-25 15:02:52 +00:00
Wouter Wijngaards
25096aa3ab implement DNSSEC with libNSS: NSEC3, RSA, DSA, ECDSA, and DS hashes. 
make test succeeds.


git-svn-id: file:///svn/unbound/trunk@2699 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-22 14:31:29 +00:00
Wouter Wijngaards
cd8e4a0bc5 RSA with nss. 
git-svn-id: file:///svn/unbound/trunk@2697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-21 15:19:16 +00:00
Wouter Wijngaards
f2da5c6867 - nss check for verification failure. 
git-svn-id: file:///svn/unbound/trunk@2695 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-21 12:00:48 +00:00
Wouter Wijngaards
6ba973a8bd - fix error handling of alloc failure during rrsig verification. 
git-svn-id: file:///svn/unbound/trunk@2693 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-21 07:22:01 +00:00
Wouter Wijngaards
ccf4099366 - work on --with-nss build option (for now, --with-libunbound-only). 
git-svn-id: file:///svn/unbound/trunk@2690 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-20 15:11:53 +00:00
Wouter Wijngaards
15c805677c - --with-libunbound-only build option, only builds the library and 
not the daemon and other tools.


git-svn-id: file:///svn/unbound/trunk@2689 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-19 12:20:11 +00:00
Wouter Wijngaards
15aacbe89b code review. 
git-svn-id: file:///svn/unbound/trunk@2688 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-18 14:22:29 +00:00
Wouter Wijngaards
452b7fce3a - code review. 
git-svn-id: file:///svn/unbound/trunk@2687 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-15 19:44:09 +00:00
Wouter Wijngaards
598beb1b06 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2686 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-15 12:33:10 +00:00
Wouter Wijngaards
06a3f735d7 - The key-cache bad key ttl is now 60 seconds. 
git-svn-id: file:///svn/unbound/trunk@2685 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-15 12:25:29 +00:00
Wouter Wijngaards
eb03758c79 - implement log-time-ascii on windows. 
git-svn-id: file:///svn/unbound/trunk@2684 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-15 08:24:44 +00:00
Wouter Wijngaards
c42a74b77c - bug #452: fix crash on assert in mesh_state_attachment. 
git-svn-id: file:///svn/unbound/trunk@2683 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-11 12:04:58 +00:00
Wouter Wijngaards
8903dd175a change to test commit hook. 
git-svn-id: file:///svn/unbound/trunk@2681 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-30 12:26:05 +00:00
Wouter Wijngaards
5c73dbdbc0 - silence warning from swig-generated code (md set but not used in 
swig initmodule, due to ifdefs in swig generated code).


git-svn-id: file:///svn/unbound/trunk@2680 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-30 09:08:17 +00:00
Wouter Wijngaards
277b1a1c2d - Fix debian-bugs-658021: Please enable hardened build flags. 
git-svn-id: file:///svn/unbound/trunk@2679 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-27 20:46:52 +00:00
Wouter Wijngaards
da1bd6fd3f - updated iana ports list. 
git-svn-id: file:///svn/unbound/trunk@2678 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-25 14:29:20 +00:00
Wouter Wijngaards
fe56d9e504 trunk is 1.4.18 
git-svn-id: file:///svn/unbound/trunk@2677 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-24 09:00:26 +00:00
Wouter Wijngaards
85016da2cb tag for 1.4.17 release. 
git-svn-id: file:///svn/unbound/trunk@2676 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-24 08:37:33 +00:00
Wouter Wijngaards
159d5a18b6 - Review comments from Yuri, removed duplicate memset to zero in delegpt. 
git-svn-id: file:///svn/unbound/trunk@2675 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-18 15:04:08 +00:00
Wouter Wijngaards
b375ba3455 tag 1.4.17rc1 
git-svn-id: file:///svn/unbound/trunk@2674 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-16 12:31:08 +00:00
Wouter Wijngaards
65cc9f1dd1 spelling fixup. svn: NO TEST 
git-svn-id: file:///svn/unbound/trunk@2673 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-16 12:02:34 +00:00
Wouter Wijngaards
0a1195f690 - Protect if statements in val_anchor for compilate without locks. 
git-svn-id: file:///svn/unbound/trunk@2670 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-16 10:54:52 +00:00
Wouter Wijngaards
ea158af48d - Updated doc/FEATURES with RFCs that are implemented but not listed. 
git-svn-id: file:///svn/unbound/trunk@2669 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-16 10:30:42 +00:00
Wouter Wijngaards
3d4f037f53 - fix configure ECDSA support in ldns detection for windows compile. 
- fix possible uninitialised variable in windows pipe implementation.


git-svn-id: file:///svn/unbound/trunk@2667 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-15 14:50:21 +00:00
Wouter Wijngaards
3930e23b8c fix alignment problem in util/random.c for sparc64/freebsd. 
git-svn-id: file:///svn/unbound/trunk@2666 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-09 09:13:57 +00:00
Wouter Wijngaards
2d2c04c271 iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2664 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-08 12:40:04 +00:00
Wouter Wijngaards
13a839d624 - Fix for accept spinning reported by OpenBSD. 
git-svn-id: file:///svn/unbound/trunk@2663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-08 12:08:55 +00:00
Wouter Wijngaards
2bf79c2e65 - Fix validation of nodata for DS query in NSEC zones, reported by 
Ondrej Mikle.


git-svn-id: file:///svn/unbound/trunk@2662 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-02 11:58:27 +00:00
Wouter Wijngaards
53a448ffae - ECDSA support (RFC 6605) by default. Use --disable-ecdsa for older 
openssl.


git-svn-id: file:///svn/unbound/trunk@2661 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-04-13 16:21:04 +00:00
Wouter Wijngaards
e1a817338e iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2659 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-04-10 11:04:17 +00:00
Wouter Wijngaards
cf147df593 - Applied patch from Daisuke HIGASHI for rrset-roundrobin and 
minimal-responses features.


git-svn-id: file:///svn/unbound/trunk@2658 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-04-10 09:16:39 +00:00
Wouter Wijngaards
279f409636 - fix bug #444: setusercontext was called too late (thanks Bjorn 
Ketelaars).



git-svn-id: file:///svn/unbound/trunk@2657 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-04-05 09:30:04 +00:00
Wouter Wijngaards
a0db316445 - fix bug #443: --with-chroot-dir not honoured by configure. 
git-svn-id: file:///svn/unbound/trunk@2656 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-04-05 09:10:56 +00:00
Wouter Wijngaards
ec452bed83 - fix bug #442: Fix that Makefile depends on pythonmod headers 
even using --without-pythonmodule.


git-svn-id: file:///svn/unbound/trunk@2654 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-27 07:31:22 +00:00
Wouter Wijngaards
bafc5741ba - contrib/validation-reporter follows rotated log file (patch from 
Augie Schwer).


git-svn-id: file:///svn/unbound/trunk@2650 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-22 09:45:27 +00:00
Wouter Wijngaards
fa3337d42a - new approach to NS fetches for DS lookup that works with 
cornercases, and is more robust and considers forwarders.


git-svn-id: file:///svn/unbound/trunk@2646 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-21 15:01:01 +00:00
Wouter Wijngaards
0d5441bd8a - fix to locate nameservers for DS lookup with NS fetches. 
git-svn-id: file:///svn/unbound/trunk@2645 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-19 15:44:21 +00:00
Wouter Wijngaards
d17f39416b - iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2644 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-19 11:10:35 +00:00
Wouter Wijngaards
4e92719611 - Patch for access to full DNS packet data in unbound python module 
from Ondrej Mikle.


git-svn-id: file:///svn/unbound/trunk@2643 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-16 14:53:51 +00:00
Wouter Wijngaards
fc52ee5aca - Applied line-buffer patch from Augie Schwer to validation.reporter.sh. 
git-svn-id: file:///svn/unbound/trunk@2642 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-10 08:28:42 +00:00
Wouter Wijngaards
ac103fc5bd removed warning from --enable-ecdsa. 
git-svn-id: file:///svn/unbound/trunk@2641 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-02 12:17:09 +00:00
Wouter Wijngaards
6e46110ae8 - flush_infra cleans timeouted servers from the cache too. 
git-svn-id: file:///svn/unbound/trunk@2639 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-02 09:05:36 +00:00
Wouter Wijngaards
1736d8078a - forward-first option. Tries without forward if a query fails. 
Also stub-first option that is similar.


git-svn-id: file:///svn/unbound/trunk@2637 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-03-01 13:16:40 +00:00
Wouter Wijngaards
57199f80c9 - Fix from code review, if EINPROGRESS not defined chain if statement differently. 
git-svn-id: file:///svn/unbound/trunk@2636 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-28 15:06:59 +00:00
Wouter Wijngaards
d7172c55ed - Fix bug#434: on windows check registry for config file location 
for unbound-control.exe, and unbound-checkconf.exe.


git-svn-id: file:///svn/unbound/trunk@2635 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-27 13:20:29 +00:00
Wouter Wijngaards
9429092966 - Fix to squelch 'network unreachable' errors from tcp connect in 
logs, high verbosity will show them.


git-svn-id: file:///svn/unbound/trunk@2634 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-23 09:01:46 +00:00
Wouter Wijngaards
773d8e3b84 Fix prefetch and stickyness. 
git-svn-id: file:///svn/unbound/trunk@2632 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 11:04:53 +00:00
Wouter Wijngaards
8e1cb52458 - iter_hints is now thread-owned in module env, and thus threadsafe. 
git-svn-id: file:///svn/unbound/trunk@2629 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 09:55:50 +00:00
Wouter Wijngaards
d64b14cff9 - unbound-control forward_add, forward_remove, stub_add, stub_remove 
can modify stubs and forwards for running unbound (on mobile computer)
  they can also add and remove domain-insecure for the zone.


git-svn-id: file:///svn/unbound/trunk@2623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 14:35:28 +00:00
Wouter Wijngaards
943f8f43b9 hints uses malloc for more dynamicity. 
git-svn-id: file:///svn/unbound/trunk@2622 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 09:38:34 +00:00
Wouter Wijngaards
7a58fdcebc - Fix forward-zone memory, uses malloc and frees original root dp. 
git-svn-id: file:///svn/unbound/trunk@2621 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 08:50:17 +00:00
Wouter Wijngaards
db6cd0a635 - iter forwards uses malloc inside for more dynamicity. 
git-svn-id: file:///svn/unbound/trunk@2620 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-14 15:41:09 +00:00
Wouter Wijngaards
03a7425ead - Fix sticky NS (ghost domain problem) if prefetch is yes. 
git-svn-id: file:///svn/unbound/trunk@2619 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-14 11:06:44 +00:00
Wouter Wijngaards
d25268b7ee iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2618 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-13 10:59:07 +00:00
Wouter Wijngaards
e789dac9a1 - RT#2955. Fix for cygwin compilation. 
git-svn-id: file:///svn/unbound/trunk@2617 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-13 10:42:22 +00:00
Wouter Wijngaards
05aaa8a138 - unit test fix for nomem_cnametopos.rpl race condition. 
git-svn-id: file:///svn/unbound/trunk@2614 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 12:54:27 +00:00
Wouter Wijngaards
09b9ea04a3 - Fix timeouts to keep track of query type, A, AAAA and other, if 
another has caused timeout blacklist, different type can still probe.


git-svn-id: file:///svn/unbound/trunk@2613 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 12:17:25 +00:00
Wouter Wijngaards
14059dca14 - Slightly smaller critical region in one case in infra cache. 
git-svn-id: file:///svn/unbound/trunk@2611 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-10 09:21:06 +00:00
Wouter Wijngaards
388d0639bc - Fix AHX_BROKEN_MEMCMP for autoheader mess up of #undef in config.h. 
git-svn-id: file:///svn/unbound/trunk@2610 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-09 12:40:19 +00:00
Wouter Wijngaards
c352ee2e85 - workaround for openssl 0.9.8 ecdsa sha2 and evp problem. 
git-svn-id: file:///svn/unbound/trunk@2608 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-08 16:40:46 +00:00
Wouter Wijngaards
9117191d44 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2607 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-08 13:31:47 +00:00
Wouter Wijngaards
924789d877 - implement draft-ietf-dnsext-ecdsa-04; which is in IETF LC; This 
implementation is experimental at this time and not recommended
  for use on the public internet (the protocol numbers have not
  been assigned).  Needs recent ldns with --enable-ecdsa.
- fix memory leak in errorcase for DSA signatures.


git-svn-id: file:///svn/unbound/trunk@2606 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-08 13:22:44 +00:00
Wouter Wijngaards
8c2f658cd1 - fix for windows, rename() is not posix compliant on windows. 
git-svn-id: file:///svn/unbound/trunk@2605 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-03 14:56:09 +00:00
Wouter Wijngaards
8cafd0e379 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2604 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-02 09:47:02 +00:00
Wouter Wijngaards
ad2fa5c810 trunk is 1.4.17 in development. 
git-svn-id: file:///svn/unbound/trunk@2603 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-02 09:21:11 +00:00
Wouter Wijngaards
bec8d15cd0 changelog. 
git-svn-id: file:///svn/unbound/trunk@2601 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-02 09:05:29 +00:00
Wouter Wijngaards
dff630c788 - Fix validation failures (like: validation failure xx: no NSEC3 
closest encloser from yy for DS zz. while building chain of trust,
         because of a bug in the TTL-fix in 1.4.15, it picked the wrong rdata
         for an NSEC3.  Now it does not change rdata, and fixes TTL.


git-svn-id: file:///svn/unbound/trunk@2599 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-01 11:18:07 +00:00
Wouter Wijngaards
30038d8fa6 - Fix version-number in libtool to be version-info so it produces 
libunbound.so.2 like it should.


git-svn-id: file:///svn/unbound/trunk@2598 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-30 08:46:25 +00:00
Wouter Wijngaards
b54efa5c69 - applied patch to support outgoing-interface with ub_ctx_set_option. 
git-svn-id: file:///svn/unbound/trunk@2596 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-26 10:37:10 +00:00
Wouter Wijngaards
c480290a30 tag 1.4.15, trunk is now 1.4.16 development. 
git-svn-id: file:///svn/unbound/trunk@2595 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-26 09:04:28 +00:00
Wouter Wijngaards
c1d79638c4 fix memset in test code. 
git-svn-id: file:///svn/unbound/trunk@2593 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-23 10:51:57 +00:00
Wouter Wijngaards
c44ef11de5 fix bug #424. 
git-svn-id: file:///svn/unbound/trunk@2591 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-20 14:30:56 +00:00
Wouter Wijngaards
9c8ac75026 - Fix to write key files completely to a temporary file, and if that 
succeeds, replace the real key file.  So failures leave a useful file.


git-svn-id: file:///svn/unbound/trunk@2590 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-19 14:17:22 +00:00
Wouter Wijngaards
31f071db25 add symbol. 
git-svn-id: file:///svn/unbound/trunk@2588 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-18 12:23:06 +00:00
Wouter Wijngaards
b5337c1e05 tag 1.4.15rc1 
git-svn-id: file:///svn/unbound/trunk@2587 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-18 12:09:18 +00:00
Wouter Wijngaards
2e26ec2d01 - Fix bug where canonical_compare of RRSIG did not downcase the 
signer-name.  This is mostly harmless because RRSIGs do not have
  to be sorted in canonical order, usually.


git-svn-id: file:///svn/unbound/trunk@2586 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-17 09:06:18 +00:00
Wouter Wijngaards
cf8ee796c9 fix changelog 
svn:NO TEST


git-svn-id: file:///svn/unbound/trunk@2585 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-12 13:53:52 +00:00
Wouter Wijngaards
8b078cc509 - Added ub_version(). API version increase, with (binary) backwards 
compatibility for the previous version.


git-svn-id: file:///svn/unbound/trunk@2584 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-12 13:52:38 +00:00
Wouter Wijngaards
589924e36c - uninitialised variable in reprobe for rtt blocked domains fixed. 
- lintfix and new flex output.


git-svn-id: file:///svn/unbound/trunk@2583 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 15:07:16 +00:00
Wouter Wijngaards
fd9aa53370 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2582 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 09:42:55 +00:00
Wouter Wijngaards
6dd2c0467e - Fix bug #425: unbound reports wrong TTL in reply, it reports a TTL 
that would be permissible by the RFCs but it is not the TTL in the
  cache.


git-svn-id: file:///svn/unbound/trunk@2581 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-10 09:42:32 +00:00
Wouter Wijngaards
a7ec2af62a - Fix to randomize hash function, based on 28c3 congress, reported 
by Peter van Dijk.


git-svn-id: file:///svn/unbound/trunk@2580 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-01-02 13:16:18 +00:00
Wouter Wijngaards
bbfb2f2202 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2579 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-24 11:28:14 +00:00
Wouter Wijngaards
1238b7979f - Fix for memory leak (about 20 bytes when a tcp or udp send 
operation towards authority servers failed, takes about 50.000
such failures to leak one Mb, such failures are also
usually logged), reported by Robert Fleischmann.



git-svn-id: file:///svn/unbound/trunk@2578 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-24 11:27:53 +00:00
Wouter Wijngaards
1f29a98366 - trunk has 1.4.15 in development. 
git-svn-id: file:///svn/unbound/trunk@2577 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-19 11:37:15 +00:00
Wouter Wijngaards
0916e1d0ea - Fix for VU#209659 CVE-2011-4528: Unbound denial of service 
vulnerabilities from nonstandard redirection and denial of existence
http://www.unbound.net/downloads/CVE-2011-4528.txt
- robust checks for next-closer NSEC3s.
- tag 1.4.14 created.


git-svn-id: file:///svn/unbound/trunk@2574 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-19 10:55:32 +00:00
Wouter Wijngaards
65ad15da56 - Fix parse error on negative SOA RRSIGs if badly ordered in the packet. 
git-svn-id: file:///svn/unbound/trunk@2573 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-15 13:37:13 +00:00
Wouter Wijngaards
5ae8bec719 - remove uninit warning from cachedump code. 
git-svn-id: file:///svn/unbound/trunk@2572 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-15 10:55:59 +00:00
Wouter Wijngaards
e0fd0ef80c - Fix to constrain signer_name to be a parent of the lookupname. 
git-svn-id: file:///svn/unbound/trunk@2571 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-13 12:37:47 +00:00
Wouter Wijngaards
8e62925ffb fix infra cache comparison. 
git-svn-id: file:///svn/unbound/trunk@2570 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-13 12:14:40 +00:00
Wouter Wijngaards
e7282a291b 1.4.14rc1 tag. 
git-svn-id: file:///svn/unbound/trunk@2569 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-13 08:57:29 +00:00
Wouter Wijngaards
fa909b6cc7 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2568 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-13 08:50:26 +00:00
Wouter Wijngaards
111ef6f862 changelog for malloc fix. 
git-svn-id: file:///svn/unbound/trunk@2565 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-05 15:38:41 +00:00
Wouter Wijngaards
1aa1c1404c - Fix warning unused in compat/strptime.c. 
git-svn-id: file:///svn/unbound/trunk@2563 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-05 14:59:24 +00:00
Wouter Wijngaards
694f02f1df - Fix warnings with gcc 4.6 in compat/inet_ntop.c. 
git-svn-id: file:///svn/unbound/trunk@2562 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-05 14:25:01 +00:00
Wouter Wijngaards
9761d0c6de - Fix getaddrinfowithincludes on windows with fedora16 mingw32-gcc. 
git-svn-id: file:///svn/unbound/trunk@2561 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-05 13:49:30 +00:00
Wouter Wijngaards
3b35e412f5 configure generated with autoconf 2.68 
git-svn-id: file:///svn/unbound/trunk@2560 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-12-02 13:43:24 +00:00
Wouter Wijngaards
35172e89f4 - Fix for tcp-upstream and ssl-upstream for if a laptop sleeps, 
causes SERVFAILs.  Also fixed for UDP (but less likely).


git-svn-id: file:///svn/unbound/trunk@2559 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-30 13:39:11 +00:00
Wouter Wijngaards
eb29370697 iana ports updated. 
git-svn-id: file:///svn/unbound/trunk@2558 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-28 14:59:41 +00:00
Wouter Wijngaards
01f3e90871 - Fix quartile time estimate, it was too low, (thanks Jan Komissar). 
git-svn-id: file:///svn/unbound/trunk@2557 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-28 14:22:29 +00:00
Wouter Wijngaards
6dfa0d643b makefile compat, ports updated and remove unused substitutions. 
git-svn-id: file:///svn/unbound/trunk@2551 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-11 13:02:48 +00:00
Wouter Wijngaards
a1c76554a2 - Makefile changed for BSD make compatibility. 
git-svn-id: file:///svn/unbound/trunk@2544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-10 18:44:06 +00:00
Wouter Wijngaards
cf1d2135e1 unit test for SSL upstream. 
git-svn-id: file:///svn/unbound/trunk@2543 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-09 13:20:30 +00:00
Wouter Wijngaards
1cee11cba8 iana portlists updated. 
git-svn-id: file:///svn/unbound/trunk@2542 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 15:47:05 +00:00
Wouter Wijngaards
ae5d794c47 - Fix double free in unbound-host, reported by Steve Grubb. 
git-svn-id: file:///svn/unbound/trunk@2541 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 15:41:21 +00:00
Wouter Wijngaards
a08cf3c4e5 fixup windows compile with ssl support. 
git-svn-id: file:///svn/unbound/trunk@2540 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 14:27:16 +00:00
Wouter Wijngaards
8f5596f643 ssl_port setting, so that the dnssec-trigger server can be on one host machine. 
git-svn-id: file:///svn/unbound/trunk@2539 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 10:56:42 +00:00
Wouter Wijngaards
939c103a73 - fix -flto detection on Lion for llvm-gcc. 
git-svn-id: file:///svn/unbound/trunk@2537 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 13:39:38 +00:00
Wouter Wijngaards
b8b2ce58d0 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2534 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 09:54:57 +00:00
Wouter Wijngaards
6a918b841f - documentation for new options: ssl-upstream, ssl-service-key and 
ssl-service.pem.


git-svn-id: file:///svn/unbound/trunk@2533 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 09:44:40 +00:00
Wouter Wijngaards
115c36a94e support for ssl-upstream (works from unbound-control). 
git-svn-id: file:///svn/unbound/trunk@2532 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-01 09:26:58 +00:00
Wouter Wijngaards
aa0536dcb5 - dns over ssl support, ssl-service-pem and ssl-service-key files 
can be given and then TCP queries are serviced wrapped in SSL.


git-svn-id: file:///svn/unbound/trunk@2530 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-31 14:48:48 +00:00
Wouter Wijngaards
28131d5845 fix export_all_symbols on osx. 
git-svn-id: file:///svn/unbound/trunk@2529 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-27 11:14:17 +00:00
Wouter Wijngaards
69aafe3a1c iana update and gzip compression. 
git-svn-id: file:///svn/unbound/trunk@2528 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-27 08:46:32 +00:00
Wouter Wijngaards
2479955f9f - lame-ttl and lame-size options no longer exist, it is integrated 
with the host info.  They are ignored (with verbose warning) if
  encountered to keep the config file backwards compatible.



git-svn-id: file:///svn/unbound/trunk@2527 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-27 08:33:02 +00:00
Wouter Wijngaards
9b47af529e fix iana update check for gzipped file. 
git-svn-id: file:///svn/unbound/trunk@2526 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 16:00:58 +00:00
Wouter Wijngaards
11f5e16932 infra cache consolidated and stores per zone, IP. 
git-svn-id: file:///svn/unbound/trunk@2525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 15:46:23 +00:00
Wouter Wijngaards
3d5cef932e iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2524 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-26 09:49:14 +00:00
Wouter Wijngaards
0f825eb283 - Fix make_new_space function so that the incoming query is not 
overwritten if a jostled out query causes a waiting query to be
  resumed that then fails and sends an error message.  (Thanks to
  Matthew Lee).


git-svn-id: file:///svn/unbound/trunk@2523 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-24 13:49:59 +00:00
Wouter Wijngaards
7ea69fe9c2 - Fix resolve of partners.extranet.microsoft.com with a fix for the 
server selection for choosing out of a (particular) list of bad choices.


git-svn-id: file:///svn/unbound/trunk@2522 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-24 08:34:59 +00:00
Wouter Wijngaards
83367411ef - fix --enable-allsymbols, fptr wlist is disabled on windows 
with this option enabled because of memory layout exe vs dll.


git-svn-id: file:///svn/unbound/trunk@2521 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-21 12:33:46 +00:00
Wouter Wijngaards
ddddbf284f - Implement ipv6%interface notation for scope_id usage. 
git-svn-id: file:///svn/unbound/trunk@2519 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-19 14:34:11 +00:00
Wouter Wijngaards
28c9738062 detect if GOST works. 
git-svn-id: file:///svn/unbound/trunk@2518 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-19 13:18:25 +00:00
Wouter Wijngaards
ce63172a67 fix strptime detection. 
git-svn-id: file:///svn/unbound/trunk@2513 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-19 12:16:41 +00:00
Wouter Wijngaards
684429e6c8 - better documentation for inform_super (Thanks Yang Zhe). 
git-svn-id: file:///svn/unbound/trunk@2512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-17 13:11:58 +00:00
Wouter Wijngaards
80424bc16e - Fix for out-of-memory condition in libunbound (thanks Robert Fleischman). 
git-svn-id: file:///svn/unbound/trunk@2511 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-14 07:15:41 +00:00
Wouter Wijngaards
a16c24b4f0 changelog entry 
git-svn-id: file:///svn/unbound/trunk@2510 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-13 14:11:27 +00:00
Wouter Wijngaards
dfd769b60c fix install name and fix error report by munin autoconf. 
git-svn-id: file:///svn/unbound/trunk@2508 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-12 08:37:15 +00:00
Wouter Wijngaards
680b0d1cce - updated contrib/unbound_munin_ to family=auto so that it works 
with munin-node-configure automatically (if installed as
/usr/local/share/munin/plugins/unbound_ ).


git-svn-id: file:///svn/unbound/trunk@2507 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-12 08:25:38 +00:00
Matthijs Mekking
bcdd32e7e1 revert dynlinking 
git-svn-id: file:///svn/unbound/trunk@2506 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-10 08:56:23 +00:00
Matthijs Mekking
b6d88c0b41 comment svn:NO TEST 
git-svn-id: file:///svn/unbound/trunk@2505 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-06 08:58:55 +00:00
Matthijs Mekking
7cf757596c link unbound against unbound library 
git-svn-id: file:///svn/unbound/trunk@2504 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-10-06 08:27:31 +00:00
Wouter Wijngaards
0f57f21ca2 unbound windows option to start and stop the service. 
git-svn-id: file:///svn/unbound/trunk@2503 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-27 13:22:04 +00:00
Wouter Wijngaards
68d82e9ce4 - TCP-upstream calculates tcp-ping so server selection works if there 
are alternatives.


git-svn-id: file:///svn/unbound/trunk@2502 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-23 12:56:28 +00:00
Wouter Wijngaards
881f0ad30f - Fix classification of NS set in answer section, where there is a 
parent-child server, and the answer has the AA flag for dir.slb.com.
  Thanks to Amanda Constant from Secure64.


git-svn-id: file:///svn/unbound/trunk@2501 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-20 07:42:04 +00:00
Wouter Wijngaards
f82a0847eb - max sent count. EDNS1480 only for rtt < 5000. No promiscuous 
fetch if sentcount > 3, stop query if sentcount > 16.  Count is
reset when referral or CNAME happens.  This makes unbound better
at managing large NS sets, they are explored when there is continued
interest (in the form of queries).


git-svn-id: file:///svn/unbound/trunk@2499 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 14:11:12 +00:00
Wouter Wijngaards
b72d40f3dd - fix various compiler warnings (reported by Paul Wouters). 
git-svn-id: file:///svn/unbound/trunk@2497 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 11:35:01 +00:00
Wouter Wijngaards
c4cac78f10 fix EDNS1480. 
git-svn-id: file:///svn/unbound/trunk@2496 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 10:04:08 +00:00
Wouter Wijngaards
164f86e377 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2495 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 09:59:59 +00:00
Wouter Wijngaards
c30e90b435 - fix bug #408: accept patch from Steve Snyder that comments out 
unused functions in lookup3.c.


git-svn-id: file:///svn/unbound/trunk@2494 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 07:09:11 +00:00
Wouter Wijngaards
1af30c02fc After UDP timeout EDNS1480 probe, stop fragmentation caused trouble. 
git-svn-id: file:///svn/unbound/trunk@2492 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-15 14:32:17 +00:00
Wouter Wijngaards
83938e1d3b trunk has 1.4.14. 
git-svn-id: file:///svn/unbound/trunk@2491 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-15 08:54:25 +00:00
Wouter Wijngaards
1daad9d9c0 tag 1.4.13rc2 
git-svn-id: file:///svn/unbound/trunk@2489 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-12 11:58:29 +00:00
Wouter Wijngaards
af93d6033c revert earlier commit. 
git-svn-id: file:///svn/unbound/trunk@2488 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-12 11:28:14 +00:00
Wouter Wijngaards
46eeced066 - Fix operation in ipv6 only (do-ip4: no) mode. 
git-svn-id: file:///svn/unbound/trunk@2487 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-07 14:34:10 +00:00
Wouter Wijngaards
70c8f304c2 fedora specfile updated (from Paul Wouters). 
git-svn-id: file:///svn/unbound/trunk@2486 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-07 05:34:22 +00:00
Wouter Wijngaards
1a2b78e51a tag 1.4.13rc1 
git-svn-id: file:///svn/unbound/trunk@2485 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-05 11:48:26 +00:00
Wouter Wijngaards
54d0ed9a70 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2484 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-02 15:05:31 +00:00
Wouter Wijngaards
d56aef7b33 - Fix validation failures due to EDNS backoff retries, the retry 
for fetch of data has want_dnssec because the iter_indicate_dnssec
         function returns true when validation failure retry happens, and
         then the serviced query code does not fallback to noEDNS, even if
         the cache says it has this.  This helps for DLV deployment when
         the DNSSEC status is not known for sure before the lookup concludes.


git-svn-id: file:///svn/unbound/trunk@2483 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-26 09:00:43 +00:00
Wouter Wijngaards
accc4a6f68 Fix numthreads 0 handling. 
git-svn-id: file:///svn/unbound/trunk@2482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-26 06:50:23 +00:00
Wouter Wijngaards
39de97e176 - Applied patch from Karel Slany that fixes a memory leak in the 
unbound python module, in string conversions.


git-svn-id: file:///svn/unbound/trunk@2481 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-24 11:03:29 +00:00
Wouter Wijngaards
05e118b7d5 tcp upstream option. 
git-svn-id: file:///svn/unbound/trunk@2480 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 13:58:40 +00:00
Wouter Wijngaards
174604914f - Documented the options that work with control set_option command. 
git-svn-id: file:///svn/unbound/trunk@2479 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 13:22:05 +00:00
Wouter Wijngaards
d265c02f69 - Fix that internally, CNAMEs with NXDOMAIN have that as rcode. 
git-svn-id: file:///svn/unbound/trunk@2478 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 12:11:54 +00:00
Wouter Wijngaards
17e5bba504 Fix validation of qtype ANY responses with CNAMEs (thanks Cathy Zhang and Luo Ce). 
git-svn-id: file:///svn/unbound/trunk@2477 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-22 12:02:50 +00:00
Wouter Wijngaards
5ab9b9c8f9 Fix autoconf for makedist crosscompile RC or snapshot. 
git-svn-id: file:///svn/unbound/trunk@2476 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-18 16:01:42 +00:00
Wouter Wijngaards
09375e16e7 iana portlist updated. 
new xml format at iana.


git-svn-id: file:///svn/unbound/trunk@2475 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-17 15:12:39 +00:00
Wouter Wijngaards
22290ac234 - Fix validation of . DS query. 
git-svn-id: file:///svn/unbound/trunk@2474 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-17 14:28:32 +00:00
Wouter Wijngaards
86c4c11ca2 - fix memory and fd leak after out-of-memory condition. 
git-svn-id: file:///svn/unbound/trunk@2473 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-10 14:03:06 +00:00
Wouter Wijngaards
63c07d13ce updated patch from Tom. 
git-svn-id: file:///svn/unbound/trunk@2472 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-10 07:37:57 +00:00
Wouter Wijngaards
e8ec432579 - Fix python site-packages path to /usr/lib64. 
git-svn-id: file:///svn/unbound/trunk@2471 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-10 06:05:09 +00:00
Wouter Wijngaards
ad864b0f7e - patch from Tom Hendrikx fixes load of python modules. 
git-svn-id: file:///svn/unbound/trunk@2470 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-09 07:28:22 +00:00
Wouter Wijngaards
cafc73a74f - make clean had ldns-src reference, removed. 
git-svn-id: file:///svn/unbound/trunk@2469 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-08 13:17:37 +00:00
Wouter Wijngaards
27b5d25703 Fix autoconf 2.68 warnings 
git-svn-id: file:///svn/unbound/trunk@2467 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-01 11:14:33 +00:00
Wouter Wijngaards
dbd816fafb iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2466 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-14 09:10:26 +00:00
Wouter Wijngaards
47653ae679 release 1.4.12 noted. 1.4.13 developed in svn trunk. 
git-svn-id: file:///svn/unbound/trunk@2465 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-14 08:33:12 +00:00
Wouter Wijngaards
3d2156dacc - Unbound implements RFC6303 (since version 1.4.7). 
git-svn-id: file:///svn/unbound/trunk@2463 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-14 08:17:11 +00:00
Wouter Wijngaards
25319e6737 - Quick fix for contrib/unbound.spec example, no ldns-builtin 
any more.


git-svn-id: file:///svn/unbound/trunk@2462 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-13 12:17:13 +00:00
Wouter Wijngaards
7359d84e2f - Fix wildcard expansion no-data reply under an optout NSEC3 zone is 
validated as insecure, reported by Jia Li (lijia@cnnic.cn).


git-svn-id: file:///svn/unbound/trunk@2461 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-11 09:03:18 +00:00
Wouter Wijngaards
5f08751b3b changelog entry tag. 
git-svn-id: file:///svn/unbound/trunk@2460 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-04 10:44:10 +00:00
Wouter Wijngaards
60e8c22040 - fix that --enable-static-exe does not complain about it unknown. 
git-svn-id: file:///svn/unbound/trunk@2458 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-01 08:58:34 +00:00
Wouter Wijngaards
a742415b5c version number in example config file. 
git-svn-id: file:///svn/unbound/trunk@2457 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-07-01 07:12:08 +00:00
Wouter Wijngaards
bbe76430fe - removed ldns-src tarball inside the unbound tarball. 
git-svn-id: file:///svn/unbound/trunk@2447 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 12:59:27 +00:00
Wouter Wijngaards
2c9bf883c9 - fix comment about rndc port, that referred to the old port number. 
- fix that the listening socket is not closed when too many remote
  control connections are made at the same time.


git-svn-id: file:///svn/unbound/trunk@2446 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 12:13:55 +00:00
Wouter Wijngaards
59f5480df1 - fix replyaddr count wrong after jostled queries, which leads to 
eventual starvation where the daemon has no replyaddrs left to use.


git-svn-id: file:///svn/unbound/trunk@2445 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 11:01:44 +00:00
Wouter Wijngaards
bc06ab0377 fix bug#395: id bits of other query may leak out under conditions 
git-svn-id: file:///svn/unbound/trunk@2444 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 09:42:20 +00:00
Wouter Wijngaards
668bcfc499 iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2443 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 09:10:53 +00:00
Wouter Wijngaards
9229c58c2f 1.4.12 in trunk and configure updated. 
git-svn-id: file:///svn/unbound/trunk@2442 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 08:56:56 +00:00
Wouter Wijngaards
c89323ef93 tag rc3 
git-svn-id: file:///svn/unbound/trunk@2439 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-23 11:49:15 +00:00
Wouter Wijngaards
4f68378640 - Changed -flto check to support clang compiler. 
git-svn-id: file:///svn/unbound/trunk@2438 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-23 09:00:05 +00:00
Wouter Wijngaards
7c128d5013 changelog 
git-svn-id: file:///svn/unbound/trunk@2435 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-17 12:00:47 +00:00
Wouter Wijngaards
28912ed659 changelogentry 
git-svn-id: file:///svn/unbound/trunk@2432 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-17 09:43:22 +00:00
Wouter Wijngaards
42730aad99 - version is 1.4.11. 
git-svn-id: file:///svn/unbound/trunk@2430 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-16 13:27:57 +00:00
Wouter Wijngaards
8def9c1043 - log-queries: yesno option, default is no, prints querylog. 
git-svn-id: file:///svn/unbound/trunk@2429 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-16 13:15:57 +00:00
Wouter Wijngaards
ecf4deedbe iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2428 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-14 09:01:45 +00:00
Wouter Wijngaards
139ab47dc6 - Use -flto compiler flag for link time optimization, if supported. 
git-svn-id: file:///svn/unbound/trunk@2427 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-14 08:39:53 +00:00
Wouter Wijngaards
608f82a1cd IPv6 service address for d.root-servers.net (2001:500:2D::D) 
git-svn-id: file:///svn/unbound/trunk@2426 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-12 09:51:00 +00:00
Wouter Wijngaards
5cbf6d059b - statistics-interval prints the number of jostled queries to log. 
git-svn-id: file:///svn/unbound/trunk@2425 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-10 10:41:40 +00:00
Wouter Wijngaards
a11fbf9ca0 - unbound-control has version number in the header, 
UBCT[version]_space_ is the header sent by the client now.
- Unbound control port number is registered with IANA:
  ub-dns-control  8953/tcp    unbound dns nameserver control
  This is the new default for the control-port config setting.


git-svn-id: file:///svn/unbound/trunk@2424 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-10 10:11:38 +00:00
Wouter Wijngaards
30a339d1a8 updated ldns tarball. 
git-svn-id: file:///svn/unbound/trunk@2423 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-30 12:09:05 +00:00
Wouter Wijngaards
92e1ec3444 iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2422 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-30 12:04:31 +00:00
Wouter Wijngaards
62eea87455 - Fix Makefile for U in environment, since wrong U is more common than 
deansification necessity.


git-svn-id: file:///svn/unbound/trunk@2421 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-30 11:52:14 +00:00
Wouter Wijngaards
30602d5d59 - defense in depth against the above bug, an error is printed to log 
instead of an assertion failure.


git-svn-id: file:///svn/unbound/trunk@2420 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-25 11:32:05 +00:00
Wouter Wijngaards
b23ed42b55 1.4.10 tag created. 
git-svn-id: file:///svn/unbound/trunk@2419 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-25 06:09:01 +00:00
Wouter Wijngaards
784d659e91 - Fix TTL of SOA so negative TTL is separately cached from normal TTL. 
git-svn-id: file:///svn/unbound/trunk@2416 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-10 12:34:47 +00:00
Wouter Wijngaards
4df60a1343 iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2415 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-10 11:22:32 +00:00
Wouter Wijngaards
ca38a8bd55 - feature, ignore-cd-flag: yesno to provide dnssec to legacy servers. 
git-svn-id: file:///svn/unbound/trunk@2414 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-10 11:20:14 +00:00
Wouter Wijngaards
6e9d8fb22c - bug#386: --enable-allsymbols option links all binaries to libunbound 
and reduces install size significantly.


git-svn-id: file:///svn/unbound/trunk@2413 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-05-10 10:57:42 +00:00
Wouter Wijngaards
35140bb612 - configure created with newer autoconf 2.66. 
git-svn-id: file:///svn/unbound/trunk@2412 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-04-14 10:59:57 +00:00
Wouter Wijngaards
de82245d3e - bug#378: Fix that configure checks for ldns_get_random presence. 
git-svn-id: file:///svn/unbound/trunk@2411 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-04-12 07:01:18 +00:00
Wouter Wijngaards
3922eed584 val-override-date: -1 ignores dates entirely, for NTP usage. 
git-svn-id: file:///svn/unbound/trunk@2410 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-04-08 14:06:46 +00:00
Wouter Wijngaards
efb9c02d54 - iana portlist updated. 
- queries with CD flag set cause DNSSEC validation, but the answer is
  not withheld if it is bogus.  Thus, unbound will retry if it is bad
  and curb the TTL if it is bad, thus protecting the cache for use by
  downstream validators.


git-svn-id: file:///svn/unbound/trunk@2409 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-04-08 13:58:41 +00:00
Wouter Wijngaards
3c87eb6c49 - harden-below-nxdomain: changed so that it activates when the 
cached nxdomain is dnssec secure.  This avoids backwards
         incompatibility because those old servers do not have dnssec.


git-svn-id: file:///svn/unbound/trunk@2407 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-29 09:47:54 +00:00
Wouter Wijngaards
fcc7f9dae0 trunk to 1.5.0 
git-svn-id: file:///svn/unbound/trunk@2406 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-24 10:35:17 +00:00
Wouter Wijngaards
654a9160f5 iana portlist updated. 
1.4.9 release.


git-svn-id: file:///svn/unbound/trunk@2404 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-24 10:08:43 +00:00
Wouter Wijngaards
682ad09bc4 -#370 new unbound.spec for CentOS 5.x from Harold Jones. 
git-svn-id: file:///svn/unbound/trunk@2403 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-17 08:18:00 +00:00
Wouter Wijngaards
ffb54322cb tag 1.4.9rc1 created. svn:NO TEST 
git-svn-id: file:///svn/unbound/trunk@2402 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-14 09:38:42 +00:00
Wouter Wijngaards
cc763c103b updated ldns tarball to 1.6.9rc1. 
git-svn-id: file:///svn/unbound/trunk@2400 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-03 08:57:17 +00:00
Wouter Wijngaards
9053ee101d updated ldns tarball to 1.6.9. 
git-svn-id: file:///svn/unbound/trunk@2399 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-01 13:06:38 +00:00
Wouter Wijngaards
0b0a580422 - give config parse error for multiple names on a stub or forward zone. 
git-svn-id: file:///svn/unbound/trunk@2398 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-01 12:59:27 +00:00
Wouter Wijngaards
b4a089ff0d - Fix no ADflag for NXDOMAIN in NSEC3 optout. And wildcard in optout. 
git-svn-id: file:///svn/unbound/trunk@2397 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-03-01 12:48:45 +00:00
Wouter Wijngaards
ee6f5c5b51 - bug #361: Fix, time.elapsed variable not reset with stats_noreset. 
git-svn-id: file:///svn/unbound/trunk@2396 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-24 12:16:12 +00:00
Wouter Wijngaards
c2299a3c5f version 3 for common.sh 
git-svn-id: file:///svn/unbound/trunk@2395 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-23 15:17:49 +00:00
Wouter Wijngaards
255d669e58 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2394 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-23 10:27:53 +00:00
Wouter Wijngaards
d8928e1b19 common.sh to version 2. 
git-svn-id: file:///svn/unbound/trunk@2392 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-18 16:11:21 +00:00
Wouter Wijngaards
01dd4a3568 - Added explicit note on unbound-anchor usage: 
Please note usage of unbound-anchor root anchor is at your own risk
  and under the terms of our LICENSE (see that file in the source).


git-svn-id: file:///svn/unbound/trunk@2391 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-15 12:58:37 +00:00
Wouter Wijngaards
1550bc65f3 use common functionality file. 
git-svn-id: file:///svn/unbound/trunk@2390 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-11 12:30:42 +00:00
Wouter Wijngaards
4011c3861b iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2389 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-11 12:28:30 +00:00
Wouter Wijngaards
58c2cc2740 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2388 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-07 13:24:50 +00:00
Wouter Wijngaards
87296966ae - Added regression test for addition of a .net DS to the root, and 
cache effects with different TTL for glue and DNSKEY.


git-svn-id: file:///svn/unbound/trunk@2387 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-02-07 12:07:46 +00:00
Wouter Wijngaards
eed924d7be - Fix remove private address does not throw away entire response. 
git-svn-id: file:///svn/unbound/trunk@2386 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-28 16:11:49 +00:00
Wouter Wijngaards
5996f3b2a9 Note release point. 
git-svn-id: file:///svn/unbound/trunk@2383 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-21 08:53:14 +00:00
Wouter Wijngaards
5e2a137562 fix bug 349 
git-svn-id: file:///svn/unbound/trunk@2381 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-19 06:59:24 +00:00
Wouter Wijngaards
5a154aeb78 ldns tarball updated 
git-svn-id: file:///svn/unbound/trunk@2380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-18 08:35:20 +00:00
Wouter Wijngaards
5ecf75d623 iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2379 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-17 14:49:09 +00:00
Wouter Wijngaards
f7b911b120 - add get and set option for harden-below-nxdomain feature. 
git-svn-id: file:///svn/unbound/trunk@2377 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-17 12:31:28 +00:00
Wouter Wijngaards
f5a97a3e8f - Fix so a changed NS RRset does not get moved name stuck on old 
server, for type NS the TTL is not increased.


git-svn-id: file:///svn/unbound/trunk@2373 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-14 13:56:25 +00:00
Wouter Wijngaards
790cb51775 - Fix prefetch so it does not get stuck on old server for moved names. 
git-svn-id: file:///svn/unbound/trunk@2372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-13 10:13:01 +00:00
Wouter Wijngaards
583eabb13e iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2370 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-12 08:55:27 +00:00
Wouter Wijngaards
4a746142cf - Fix insecure CNAME sequence marked as secure, reported by Bert Hubert. 
git-svn-id: file:///svn/unbound/trunk@2369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-11 12:32:29 +00:00
Wouter Wijngaards
35c3a25896 - faster lruhash get_mem routine. 
git-svn-id: file:///svn/unbound/trunk@2366 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-10 13:28:48 +00:00
Wouter Wijngaards
05e9f914c5 iana portlist updated. 
git-svn-id: file:///svn/unbound/trunk@2364 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-04 07:28:36 +00:00
Wouter Wijngaards
046143af20 Fix bug #346: itar is discontinued. 
git-svn-id: file:///svn/unbound/trunk@2363 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-01-04 06:53:57 +00:00
Wouter Wijngaards
0bc54677db - Fix in infra cache that could cause rto larger than TOP_TIMEOUT kept. 
git-svn-id: file:///svn/unbound/trunk@2361 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-23 10:49:47 +00:00
Wouter Wijngaards
15b14306ed iana portlist updated 
git-svn-id: file:///svn/unbound/trunk@2359 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-21 14:43:29 +00:00
Wouter Wijngaards
daab92e954 - algorithm compromise protection using the algorithms signalled in 
the DS record.  Also, trust anchors, DLV, and RFC5011 receive this,
         and thus, if you have multiple algorithms in your trust-anchor-file
         then it will now behave different than before.  Also, 5011 rollover
         for algorithms needs to be double-signature until the old algorithm
         is revoked.


git-svn-id: file:///svn/unbound/trunk@2358 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-21 14:19:55 +00:00
Wouter Wijngaards
c4c8a65ff2 - fix validation in this case: CNAME to nodata for co-hosted opt-in 
NSEC3 insecure delegation, was bogus, fixed to be insecure.


git-svn-id: file:///svn/unbound/trunk@2355 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-17 10:05:56 +00:00
Wouter Wijngaards
f8796f94f4 squelch 'tcp connect: bla' errors in logfile. 
git-svn-id: file:///svn/unbound/trunk@2354 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-17 09:10:46 +00:00
Wouter Wijngaards
ecb9db442d - Fix our 'BDS' license (typo reported by Xavier Belanger). 
git-svn-id: file:///svn/unbound/trunk@2353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-16 16:18:30 +00:00
Wouter Wijngaards
57f309ab1d - iana portlist updated. 
- review changes for unbound-anchor.


git-svn-id: file:///svn/unbound/trunk@2351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-10 15:01:39 +00:00
Wouter Wijngaards
dd8e44ac37 - feature typetransparent localzone, does not block other RR types. 
git-svn-id: file:///svn/unbound/trunk@2350 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-02 12:39:33 +00:00
Wouter Wijngaards
9997255caa - Fix bug#338: print address when socket creation fails. 
git-svn-id: file:///svn/unbound/trunk@2349 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-01 09:59:39 +00:00
Wouter Wijngaards
79f4ca6a28 Fix storage of noEDNS in the infra cache. 
iana portlist updated.


git-svn-id: file:///svn/unbound/trunk@2348 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-11-30 12:55:48 +00:00
Wouter Wijngaards
78cc3d8ae1 harden-below-nxdomain option taken from draft-vixie-dnsext-resimprove. 
Default off (for now), as some older software that gives nxdomain for ENT
would be incompatible.  But that would only happen in the reverse tree, and
such software (nonDNSSEC) may go out of style, so in the future a default yes
could be possible.



git-svn-id: file:///svn/unbound/trunk@2347 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-11-18 08:49:15 +00:00
Wouter Wijngaards
5e62750fcd - make test output nicer. 
git-svn-id: file:///svn/unbound/trunk@2346 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-11-17 15:50:52 +00:00