unbound

mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-22 07:41:16 -05:00

Author	SHA1	Message	Date
Wouter Wijngaards	fa81710d16	- configure detects ssl security level API function in the autoconf manner. Every function on its own, so that other libraries (eg. LibreSSL) can develop their API without hindrance. git-svn-id: file:///svn/unbound/trunk@3921 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-04 08:05:42 +00:00
Wouter Wijngaards	3b4cbcf631	Fixup #if at start of line, for portability. git-svn-id: file:///svn/unbound/trunk@3920 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-04 07:58:57 +00:00
Ralph Dolmans	589eabc0cb	Set openssl security level to 0 when using aNULL ciphers git-svn-id: file:///svn/unbound/trunk@3919 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-03 16:59:00 +00:00
Wouter Wijngaards	96961081b0	- Patch for server.num.zero_ttl stats for count of expired replies, from Pavel Odintsov. git-svn-id: file:///svn/unbound/trunk@3910 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-28 15:08:32 +00:00
Wouter Wijngaards	147a6c8548	- Fix #1134 : unbound-control set_option val-date-override: -1 works immediately to ignore datetime, or back to 0 to enable it again. git-svn-id: file:///svn/unbound/trunk@3907 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-25 11:44:03 +00:00
Wouter Wijngaards	2785225a43	- Fixup query_info local_alias init. git-svn-id: file:///svn/unbound/trunk@3901 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-20 15:05:30 +00:00
Ralph Dolmans	b587c7f72d	Added views functionality. git-svn-id: file:///svn/unbound/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-05 09:36:25 +00:00
Ralph Dolmans	5a56d54086	Check for LibreSSL usage when OpenSSL version number >= 1.1 git-svn-id: file:///svn/unbound/trunk@3862 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-15 14:40:42 +00:00
Ralph Dolmans	e2e34ad273	fix potential memory leak in daemon/remote.c and nullpointer dereference in validator/autotrust. git-svn-id: file:///svn/unbound/trunk@3856 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-15 08:39:59 +00:00
Wouter Wijngaards	3514843818	- Fix compile with openssl 1.1.0 with api=1.1.0. git-svn-id: file:///svn/unbound/trunk@3844 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-02 09:59:09 +00:00
Wouter Wijngaards	ca5eca9567	- Fix #777 : OpenSSL 1.1.0 compatibility, patch from Sebastian A. Siewior. git-svn-id: file:///svn/unbound/trunk@3837 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-08-29 07:05:19 +00:00
Wouter Wijngaards	73704e9ed5	- Fix to not ignore return value of chown() in daemon startup. git-svn-id: file:///svn/unbound/trunk@3752 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-03 07:38:53 +00:00
Wouter Wijngaards	cffec5e0fe	- Fix #770 : Small subgroup attack on DH used in unix pipe on localhost if unbound control uses a unix local named pipe. git-svn-id: file:///svn/unbound/trunk@3729 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-05-27 06:50:49 +00:00
Wouter Wijngaards	9f8b2bb468	- ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for binding to an IP address while the interface or address is down. git-svn-id: file:///svn/unbound/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-15 09:35:48 +00:00
Wouter Wijngaards	5d0ad681a2	- #731 : tcp-mss, outgoing-tcp-mss options for unbound.conf, patch from Daisuke Higashi. git-svn-id: file:///svn/unbound/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-01-05 10:03:59 +00:00
Wouter Wijngaards	1ebcdeac38	- patch from Doug Hogan for SSL_OP_NO_SSLvx options. git-svn-id: file:///svn/unbound/trunk@3525 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-10-29 08:32:58 +00:00
Wouter Wijngaards	725f11e349	- Fix unbound-control flush that does not succeed in removing data. git-svn-id: file:///svn/unbound/trunk@3493 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-09-25 12:39:10 +00:00
Wouter Wijngaards	9d9984a187	- Fix deadlock for local data add and zone add when unbound-control list_local_data printout is interrupted. git-svn-id: file:///svn/unbound/trunk@3476 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-08-24 10:49:28 +00:00
Wouter Wijngaards	1d7d43f9b5	Fixup #if git-svn-id: file:///svn/unbound/trunk@3454 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-21 14:37:15 +00:00
Wouter Wijngaards	583b376217	- Fix configure to detect SSL_CTX_set_ecdh_auto. git-svn-id: file:///svn/unbound/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-21 14:30:49 +00:00
Wouter Wijngaards	78c8224655	- Enable ECDHE for servers. Where available, use SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to enable ECDHE. Otherwise, manually offer curve p256. Client connections should automatically use ECDHE when available. (thanks Daniel Kahn Gillmor) git-svn-id: file:///svn/unbound/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-20 06:56:01 +00:00
Willem Toorop	fa20564699	SSL_CTX_use_certificate_chain_file() should be used instead of the SSL_CTX_use_certificate_file() function in order to allow the use of complete certificate chains even when no trusted CA storage is used or when the CA issuing the certificate shall not be added to the trusted CA storage. Thanks Daniel Kahn Gillmore git-svn-id: file:///svn/unbound/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-18 12:34:37 +00:00
Wouter Wijngaards	f66a15d894	- Fix #681 : Setting forwarders with unbound-control forward implicitly turns on forward-first. git-svn-id: file:///svn/unbound/trunk@3447 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-09 09:45:08 +00:00
Wouter Wijngaards	69d2fd7818	- Fix#663: ssl handshake fails when using unix socket because dh size is too small. git-svn-id: file:///svn/unbound/trunk@3396 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 13:56:12 +00:00
Wouter Wijngaards	85192d4569	- unbound-control ratelimit_list lists high rate domains. git-svn-id: file:///svn/unbound/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 12:13:59 +00:00
Wouter Wijngaards	53008d7969	- unbound-control list_insecure command shows the negative trust anchors currently configured, patch from Jelte Jansen. git-svn-id: file:///svn/unbound/trunk@3389 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-07 13:50:09 +00:00
Wouter Wijngaards	b2bdce46be	- rename ldns subdirectory to sldns to avoid name collision. git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 10:21:38 +00:00
Wouter Wijngaards	de61a65867	- remote.c probedelay line is easier to read. git-svn-id: file:///svn/unbound/trunk@3379 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 09:46:06 +00:00
Wouter Wijngaards	bd404f5fd3	- Fix segfault on user not found at startup (from Maciej Soltysiak). git-svn-id: file:///svn/unbound/trunk@3375 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-23 20:20:15 +00:00
Wouter Wijngaards	77088b12ff	- Add ip-transparent config option for bind to non-local addresses. git-svn-id: file:///svn/unbound/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-19 09:50:35 +00:00
Wouter Wijngaards	b87e7c90be	- stats reports tcp usage, of incoming-num-tcp buffers. git-svn-id: file:///svn/unbound/trunk@3353 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-05 15:23:14 +00:00
Wouter Wijngaards	a226533c8b	- Fix #647 crash in 1.5.2 because pwd.db no longer accessible after reload. git-svn-id: file:///svn/unbound/trunk@3341 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-02-20 14:48:04 +00:00
Wouter Wijngaards	79044dc6cf	- windows port fixes, no AF_LOCAL, no chown, no chmod(grp). git-svn-id: file:///svn/unbound/trunk@3319 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-23 15:23:58 +00:00
Wouter Wijngaards	cd7d15aee9	Fix doc. git-svn-id: file:///svn/unbound/trunk@3307 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:41:04 +00:00
Wouter Wijngaards	f46bcc5b6f	please lint. git-svn-id: file:///svn/unbound/trunk@3305 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:18:03 +00:00
Wouter Wijngaards	df73be98bd	- patch for remote control over local sockets, from Dag-Erling Smorgrav, Ilya Bakulin. Use control-interface: /path/sock and control-use-cert: no. git-svn-id: file:///svn/unbound/trunk@3304 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:12:59 +00:00
Wouter Wijngaards	3ff24984a4	remove debug print git-svn-id: file:///svn/unbound/trunk@3302 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-05 14:48:10 +00:00
Wouter Wijngaards	2290acb422	- Patch from Philip Paeps to contrib/unbound_munin_ that uses type ABSOLUTE. Allows munin.conf: [idleserver.example.net] unbound_munin_hits.graph_period minute git-svn-id: file:///svn/unbound/trunk@3301 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-05 14:47:52 +00:00
Wouter Wijngaards	b781f2d48d	- Fix that CD flag disables DNS64 processing, returning the DNSSEC signed AAAA denial. git-svn-id: file:///svn/unbound/trunk@3273 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-11-18 15:15:57 +00:00
Wouter Wijngaards	90592bdded	- Patch from James Raftery, always print stats for rcodes 0..5. git-svn-id: file:///svn/unbound/trunk@3267 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-11-12 17:25:59 +00:00
Wouter Wijngaards	8a6384d0ac	- iana portlist update. git-svn-id: file:///svn/unbound/trunk@3249 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-27 09:54:44 +00:00
Wouter Wijngaards	7084c20f88	- Disabled use of SSLv3 in remote-control and ssl-upstream. git-svn-id: file:///svn/unbound/trunk@3248 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-27 09:26:48 +00:00
Wouter Wijngaards	f1bcc1032f	More casts. git-svn-id: file:///svn/unbound/trunk@3244 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-13 09:23:12 +00:00
Wouter Wijngaards	5a9c377104	- Patch add msg, rrset, infra and key cache sizes to stats command from Maciej Soltysiak. git-svn-id: file:///svn/unbound/trunk@3203 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-08-01 13:24:46 +00:00
Wouter Wijngaards	d0bf841680	- And Fix#596: Bail out of unbound-control dump_infra when ssl write fails. git-svn-id: file:///svn/unbound/trunk@3195 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-07-16 10:07:26 +00:00
Wouter Wijngaards	ae7049063c	- Fix #596 : Bail out of unbound-control list_local_zones when ssl write fails. git-svn-id: file:///svn/unbound/trunk@3193 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-07-15 14:42:57 +00:00
Wouter Wijngaards	eaa926940c	- unbound-control status reports if so-reuseport was successful. git-svn-id: file:///svn/unbound/trunk@3150 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-06-26 08:48:51 +00:00
Wouter Wijngaards	3468dce5c2	- Code cleanup patch from Dag-Erling Smorgrav, with compiler issue fixes from FreeBSD's copy of Unbound, he notes: Generate unbound-control-setup.sh at build time so it respects prefix and sysconfdir from the configure script. Also fix the umask to match the comment, and the comment to match the umask. Add const and static where needed. Use unions instead of playing pointer poker. Move declarations that are needed in multiple source files into a shared header. Move sldns_bgetc() from parse.c to buffer.c where it belongs. Introduce a new header file, worker.h, which declares the callbacks that all workers must define. Remove those declarations from libworker.h. Include the correct headers in the correct places. Fix a few dummy callbacks that don't match their prototype. Fix some casts. Hide the sbrk madness behind #ifdef HAVE_SBRK. Remove a useless printf which breaks reproducible builds. Get rid of CONFIGURE_{TARGET,DATE,BUILD_WITH} now that they're no longer used. Add unbound-control-setup.sh to the list of generated files. git-svn-id: file:///svn/unbound/trunk@3137 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-05-28 08:07:12 +00:00
Wouter Wijngaards	5a1ce3450f	- More #567 : remove : from output of stub and forward lists, this is easier to parse. git-svn-id: file:///svn/unbound/trunk@3126 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-05-05 14:47:08 +00:00
Wouter Wijngaards	0bc3fab7a4	- Add unbound-control flush_negative that flushed nxdomains, nodata, and errors from the cache. For dnssec-trigger and NetworkManager, fixes cases where network changes have localdata that was already negatively cached from the previous network. git-svn-id: file:///svn/unbound/trunk@3125 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-04-29 08:47:33 +00:00

1 2 3

142 commits