upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-30 02:09:28 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
6724 commits 24 branches 209 tags 132 MiB
Commit graph

4415 commits

Author SHA1 Message Date
W.C.A. Wijngaards
8e538dcaa8 - Fix #520: Unbound 1.13.2rc1 fails to build python module. 2021-08-05 17:10:56 +02:00
W.C.A. Wijngaards
f232562430 Merge branch 'master' into rpz-triggers 2021-08-05 13:37:22 +02:00
Tomasz Ziolkowski
ae45f46b9e Add (stub|forward)-tcp-upstream options which enable using tcp transport only for specified stub/forward zones 2021-08-05 08:44:18 +02:00
W.C.A. Wijngaards
4518bb1158 For 1.13.2rc1. 2021-08-05 08:37:20 +02:00
W.C.A. Wijngaards
5d349dbcf3 - Tag for 1.13.2 release. 2021-08-05 08:36:24 +02:00
W.C.A. Wijngaards
77fdd8836d - Fix unit test zonemd_reload for use in run_vm. 2021-08-04 16:26:21 +02:00
W.C.A. Wijngaards
822a96b29a - Fix libnettle zonemd unit test. 2021-08-04 14:04:31 +02:00
W.C.A. Wijngaards
067954fe8d - Fix out of sourcedir run of zonemd unit tests. 2021-08-04 13:54:38 +02:00
Tomasz Ziolkowski
1900ea3bb3 Revert changes in files managed by maintainers, move docker do contrib dir 2021-08-04 13:02:38 +02:00
Tomasz Ziolkowski
a922c6d525 merge master 2021-08-04 13:02:20 +02:00
W.C.A. Wijngaards
592cfe3afc - Fix readzone compile under debug config. 2021-08-04 11:43:29 +02:00
W.C.A. Wijngaards
6dd270d625 - Fix missing locks in zonemd unit test. 2021-08-04 11:05:51 +02:00
W.C.A. Wijngaards
c9bb0604db - Fix static analysis warnings about localzone locks that are unused. 2021-08-04 10:58:08 +02:00
George Thessalonikefs
8878680898 - Bump MAX_RESTART_COUNT to 11 from 8; in relation to #438. This allows 
longer CNAME chains in Unbound.
 2021-08-04 10:53:22 +02:00
George Thessalonikefs
efa15747a2 Changelog note for #415: 
- Merge PR #415 from sibeream: Use /proc/sys/net/ipv4/ip_local_port_range
  to determine available outgoing ports.
 2021-08-04 10:47:38 +02:00
W.C.A. Wijngaards
f5d53928a3 - In unit test use openssl set security level to allow keys in test. 2021-08-04 09:58:38 +02:00
W.C.A. Wijngaards
c639dc956a - Fix sign comparison warning on FreeBSD. 2021-08-03 14:13:37 +02:00
W.C.A. Wijngaards
2a0df9e72e - Annotate assertion into error printout; we think it may be an 
error, but the situation looks harmless.
 2021-08-03 14:08:30 +02:00
W.C.A. Wijngaards
dd7dc30294 Changelog note for #517 
- Merge PR #517 from dyunwei: #420 breaks the mesh reply list
  function that need to reuse the dns answer.
 2021-08-03 13:11:18 +02:00
George Thessalonikefs
a519009378 Merge branch 'master' of github.com:NLnetLabs/unbound 2021-08-03 12:20:45 +02:00
George Thessalonikefs
ca67691092 - Listen to read or write events after the SSL handshake. 
Sticky events on windows would stick on read when write was needed.
 2021-08-03 12:18:58 +02:00
W.C.A. Wijngaards
3ed5b62578 - Fix verbose printout failure in tcp reuse unit test. 2021-08-02 16:06:36 +02:00
W.C.A. Wijngaards
89e2f2f753 - iana portlist update. 2021-08-02 15:26:20 +02:00
W.C.A. Wijngaards
0bdcbc80b9 - Move ECDSA functions to use OpenSSL 3.0.0 API. 2021-08-02 15:06:26 +02:00
W.C.A. Wijngaards
d242bfb73b - Move RSA and DSA to use OpenSSL 3.0.0 API. 2021-08-02 14:43:51 +02:00
W.C.A. Wijngaards
ca00814e67 - Prepare for OpenSSL 3.0.0 provider API usage, move the sldns 
keyraw functions to produce EVP_PKEY results.
 2021-08-02 13:33:32 +02:00
W.C.A. Wijngaards
b6abcb1508 - For #515: Fix compilation with openssl 3.0.0 beta2, lib64 dir and 
SSL_get_peer_certificate.
- Move acx_nlnetlabs.m4 to version 41, with lib64 openssl dir check.
 2021-07-30 13:54:43 +02:00
W.C.A. Wijngaards
11caae256b - Fix #515: Compilation against openssl 3.0.0 beta2 is failing to 
build unbound.
 2021-07-30 13:35:23 +02:00
Tomasz Ziolkowski
3e310a17be Docker environment for run tests + enhancement for ssl_handshake 2021-07-27 12:06:08 +02:00
George Thessalonikefs
dd254137f1 - Changelog entry for #513: Stream reuse, attempt to fix #411, #439, 
#469.
 2021-07-26 16:55:32 +02:00
W.C.A. Wijngaards
e8d28f0a55 - Fix readzone unknown type print for memory resize. 2021-07-26 16:45:33 +02:00
W.C.A. Wijngaards
fc462aa15d Changelog note for #512 
- Merge #512: unbound.service.in: upgrade hardening to latest
  standards.
 2021-07-26 09:47:24 +02:00
W.C.A. Wijngaards
ca5baef433 - Fix that ldns_zone_new_frm_fp_l counts the line number for an empty 
line after a comment.
 2021-07-21 13:58:07 +02:00
W.C.A. Wijngaards
d300bc8eee - Fix for older parsers for function call in serve expired get cached. 2021-07-16 17:55:10 +02:00
W.C.A. Wijngaards
a7eaf6364d - Fix from lint for ignored return value. 2021-07-16 17:46:04 +02:00
W.C.A. Wijngaards
5f57dbf19b - Insert header into testcode/readzone.c, it was missing. 2021-07-16 17:12:41 +02:00
George Thessalonikefs
ca4d68c64c - Introduce 'http-user-agent:' and 'hide-http-user-agent:' options. 2021-07-16 14:32:18 +02:00
W.C.A. Wijngaards
f693cbc90b Revert "- With hide-version unbound also omits the version from http headers." 
This reverts commit 9d4644b125.
 2021-07-16 14:02:55 +02:00
W.C.A. Wijngaards
9d4644b125 - With hide-version unbound also omits the version from http headers. 2021-07-16 13:45:41 +02:00
W.C.A. Wijngaards
2a8d1a6d10 - review fix to remove duplicate error printout. 2021-07-16 10:53:53 +02:00
W.C.A. Wijngaards
9e712e8a0b - Fix unbound-control local_data and local_datas to print detailed 
syntax errors.
 2021-07-16 10:51:27 +02:00
W.C.A. Wijngaards
e388ba2967 - Fix spelling in localzone.h comment. 2021-07-16 10:28:09 +02:00
W.C.A. Wijngaards
3aa53e45c8 - Fix spelling in doc/unbound.doxygen comment. 2021-07-16 10:26:45 +02:00
W.C.A. Wijngaards
8180ca192f - Fix for #510: in depth, use ifdefs for windows api event calls. 2021-07-16 09:12:06 +02:00
W.C.A. Wijngaards
3f7e164751 - iana portlist update. 2021-07-06 15:15:43 +02:00
George Thessalonikefs
e521b10f32 - Fix clang-analysis warnings for testcode/readzone.c. 2021-07-05 16:51:46 +02:00
George Thessalonikefs
11d3cea823 - Fix compiler warnings for #491. 2021-07-05 15:36:27 +02:00
George Thessalonikefs
c6fc7adeb1 - Fix Wunused-result compile warnings. 2021-07-04 15:19:24 +02:00
Tom Carpay
a701ef75ed changelog PR #491 2021-07-02 15:15:13 +02:00
W.C.A. Wijngaards
f62994f6ea - Fix #506: Python Module Seems to Leak Memory if it Experiences an 
Unhandled Exception.
 2021-07-02 09:42:31 +02:00
W.C.A. Wijngaards
8e5c3f51a2 - Fix auth zone download on windows to unlink before rename. 2021-06-25 15:31:33 +02:00
W.C.A. Wijngaards
ba846a925a - Fix configure does not require pkg-config if not needed. 2021-06-25 11:05:57 +02:00
W.C.A. Wijngaards
658db66c3f - Fix up permissions on rpl data file in tests. 2021-06-25 08:45:03 +02:00
W.C.A. Wijngaards
15bf9fe581 Fix syntax of analysis workflow. 2021-06-24 09:29:29 +02:00
W.C.A. Wijngaards
d3b2bc501d - Fix warnings reported by the gcc analyzer. 2021-06-23 18:02:02 +02:00
W.C.A. Wijngaards
9d681b627f - Fix #503: DNS over HTTPS response truncated. 2021-06-23 14:05:59 +02:00
George Thessalonikefs
896357a5b3 - Fix #495: Documentation or implementation of "verbosity" option. 2021-06-21 12:54:23 +02:00
W.C.A. Wijngaards
79209823ac - Fix a number of warnings reported by the gcc analyzer. 2021-06-18 18:12:26 +02:00
George Thessalonikefs
02b1a6ae0a - Changelog entry for #440: Various fixes to contrib/unbound_munin_ file. 2021-06-15 17:50:25 +02:00
W.C.A. Wijngaards
a887194d6b - Fix configure nonblocking test and onmingw test to use host. 2021-06-14 16:15:21 +02:00
W.C.A. Wijngaards
960d199b6f - Fix contrib/unbound.spec, fixed url and comment. 2021-06-10 13:35:27 +02:00
W.C.A. Wijngaards
fd7caaf579 - Fix #500: SPEC file in version 1.13.1 references version 1.4; 
unable to build RPM from source.
 2021-06-10 09:24:48 +02:00
George Thessalonikefs
fcde5c8d54 - Use host_os instead of target_os in configure for Darwin8 build. 2021-06-09 16:36:19 +02:00
George Thessalonikefs
ad939e54d0 - Fix #413 (based on patch by k-ronny): unbound: does not compile on macOS 
11.1-x86_64 host.
 2021-06-09 15:54:41 +02:00
George Thessalonikefs
d02e956da0 - Changelog entry for #486: Make VAL_MAX_RESTART_COUNT configurable. 
- Generetated lexer and parser for #486; updated example.conf.
 2021-06-09 12:32:58 +02:00
gthess
45be341267
Merge pull request #486 from fobser/val-max-restart 
Make VAL_MAX_RESTART_COUNT configurable.
 2021-06-09 12:09:27 +02:00
George Thessalonikefs
64546fcfb4 - Fix unused variable warning when compiling with --enable-dnstap. 2021-06-08 22:15:17 +02:00
George Thessalonikefs
df53badfa2 - Fix #425: Document auth-zone supports communication with DNS primary 
on nondefault port.
 2021-06-07 16:02:41 +02:00
George Thessalonikefs
553d1c78ef - Merge #448 from shoeper: Update unbound-control.8.in, fix 
rpz_disable typo.
 2021-06-07 14:51:21 +02:00
gthess
9c3672a790
Merge pull request #448 from shoeper/patch-1 
Update unbound-control.8.in, fix rpz_disable typo
 2021-06-07 14:47:35 +02:00
George Thessalonikefs
2e87871678 - Fix test for zonemd-check option. 2021-06-01 18:02:10 +02:00
W.C.A. Wijngaards
cf0aad9fb6 Merge branch 'master' into rpz-triggers 2021-05-28 15:00:55 +02:00
W.C.A. Wijngaards
ea4f1ee8a6 - zonemd-check: yesno option, default no, enables the processing 
of ZONEMD records for that zone.
 2021-05-27 14:20:53 +02:00
W.C.A. Wijngaards
2196ccf5e8 - Merge #496 from banburybill: Use build system endianness if 
available, otherwise try to work it out.
 2021-05-27 13:29:33 +02:00
W.C.A. Wijngaards
0f2ae816b5 - For #492: Fix font highlighting for the man page on emacs. 2021-05-25 17:32:08 +02:00
W.C.A. Wijngaards
58eeeeb989 - Fix #492: module-config respip missing in unbound.conf.5.in man 
page. Merges #494 from he32.
Remove comment line (?) from man page.
 2021-05-25 15:06:57 +02:00
Wouter Wijngaards
2749132bf7
Merge pull request #494 from he32/unbound-rpz-doc 
Transplant parts of the contributed RPZ documentation.
 2021-05-25 15:03:51 +02:00
Havard Eidnes
182a78f1dc Transplant parts of the contributed RPZ documentation. 
This comes from the doc/IP-BasedActions.pdf file with minor
adaptations.
 2021-05-25 14:51:31 +02:00
W.C.A. Wijngaards
11b3ebc386 - Move the NSEC3 max iterations count in line with the 150 value 
used by BIND, Knot and PowerDNS. This sets the default value
  for it in the configuration to 150 for all key sizes.
 2021-05-25 14:35:19 +02:00
W.C.A. Wijngaards
4f7c194a83 - Test code has -q option for quiet output. 2021-05-21 17:08:58 +02:00
W.C.A. Wijngaards
e5cb48c432 Merge branch 'master' into rpz-triggers 2021-05-21 14:09:30 +02:00
George Thessalonikefs
ff6b527184 - Fix for #411, #439, #469: Reset the DNS message ID when moving queries 
between TCP streams.
- Refactor for uniform way to produce random DNS message IDs.
 2021-05-19 15:07:32 +02:00
W.C.A. Wijngaards
23152e6eb8 Fix date in changelog. 2021-05-17 09:13:29 +02:00
W.C.A. Wijngaards
f5e0207a5e - Fix #489: Compile using MSYS2 MinGW 64-bit. 2021-05-17 08:43:46 +02:00
W.C.A. Wijngaards
32d82fac9b Merge branch 'master' into rpz-triggers 2021-05-14 08:47:56 +02:00
W.C.A. Wijngaards
9aa072d115 - Fix that auth-zone zonefiles use last TTL if no TTL is specified. 2021-05-12 17:24:03 +02:00
W.C.A. Wijngaards
1e85196fd9 Changelog note for #487 
- Merge PR #487: ifdef RLIMIT_AS in recently added check.
 2021-05-10 08:18:15 +02:00
Florian Obser
d4314cad33 Make VAL_MAX_RESTART_COUNT configurable. 
unbound tries very hard (up to 6 authoritative servers) to find a
validating answer. This is not always desirable, for example on high
latency links.
 2021-05-08 16:56:32 +02:00
W.C.A. Wijngaards
e217bb48ad - Remove case fallthrough from deprecate-rsa-1024 code. 2021-05-07 17:06:09 +02:00
W.C.A. Wijngaards
59ea44322e - Add ./configure --with-deprecate-rsa-1024 that turns off RSA 1024. 2021-05-07 14:28:20 +02:00
W.C.A. Wijngaards
07fda669e4 - Fix #485: Unbound occasionally reports broken stats. 2021-05-07 11:13:44 +02:00
W.C.A. Wijngaards
80f06ae9b1 - Rerun flex and bison. 2021-05-04 16:24:16 +02:00
W.C.A. Wijngaards
533e4bbdd6 Merge branch 'master' of github.com:NLnetLabs/unbound 2021-05-04 16:21:51 +02:00
W.C.A. Wijngaards
90d0f8bc19 - Fix to squelch tcp socket bind failures when the interface is gone. 2021-05-04 16:21:42 +02:00
George Thessalonikefs
e9a5f5ab3f - Add more logging for out-of-memory cases. 2021-05-04 15:39:06 +02:00
George Thessalonikefs
71f311dbe1 - Fix for #367: only attempt to get the interface for queries 
that are no longer on the tcp_waiting_list.
 2021-05-04 14:45:01 +02:00
W.C.A. Wijngaards
dea1da8d7f Changelog note for #478 
- Merge #478: Allow configuration of TCP timeout while waiting for
  response.
 2021-05-04 10:25:32 +02:00
Wouter Wijngaards
09b924f35b
Merge pull request #478 from edevil/tcp_auth_query_timeout 
Allow configuration of TCP timeout while waiting for response
 2021-05-04 10:24:42 +02:00
W.C.A. Wijngaards
728a3cd7a6 Changelog note and improved comment. 
- Fix #481: Fix comment in configuration file.
 2021-05-03 13:07:12 +02:00
Paul Menzel
3f230f4aaf doc/example.conf.in: Clarify comment for auto-trust-anchor-file 
Remove `And enable:` as it refers to the uncommented option.

Fixes: 01dd4a35 ("- Added explicit note on unbound-anchor usage:")
 2021-05-03 12:57:39 +02:00