upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-03 05:19:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
5968 commits 23 branches 209 tags 124 MiB
Commit graph

5968 commits

This branch
This branch
All branches
Author SHA1 Message Date
W.C.A. Wijngaards
4b644b7965 - Better fix for reuse tree comparison for is-tls sockets. Where 
the tree key identity is preserved after cleanup of the TLS state.
 2020-11-25 10:22:11 +01:00
W.C.A. Wijngaards
15e8f5c6d4 - Fix udp-connect on FreeBSD, do send calls on connected UDP socket. 2020-11-25 09:55:01 +01:00
W.C.A. Wijngaards
5924a591be - with udp-connect ignore connection refused with UDP timeouts. 2020-11-25 09:41:06 +01:00
W.C.A. Wijngaards
4e8a1ede3b - Fix padding of struct regional for 32bit systems. 2020-11-24 17:06:54 +01:00
W.C.A. Wijngaards
978d3840dc - Fix crash when TLS connection is closed prematurely, when 
reuse tree comparison is not properly identical to insertion.
 2020-11-24 16:58:51 +01:00
W.C.A. Wijngaards
6a324a37ca - tag for the 1.13.0rc1 release. 2020-11-24 15:01:44 +01:00
W.C.A. Wijngaards
e78957706c - Fix one port unit test for udp-connect. 2020-11-24 14:16:06 +01:00
W.C.A. Wijngaards
a69304011a - iana portlist updated. 2020-11-24 13:17:15 +01:00
Wouter Wijngaards
090a4e417d - set version of main branch to 1.13.0 for upcoming release. 2020-11-24 08:28:08 +01:00
Wouter Wijngaards
de4e6ad99d Changelog note for #283. 
- Merge PR #283 : Stream reuse.  This implements upstream stream
  reuse for performing several queries over the same TCP or TLS
  channel.
 2020-11-24 08:23:24 +01:00
Wouter Wijngaards
a2411361b6
Merge pull request #283 from NLnetLabs/stream-reuse 
Stream reuse
 2020-11-24 08:21:07 +01:00
Wouter Wijngaards
ead06af086 Merge branch 'master' into stream-reuse 2020-11-24 08:20:07 +01:00
George Thessalonikefs
f04f7fdf17 Changelog note for #313: 
- Merge PR #313 from Ralph Dolmans: Replace edns-client-tag with
  edns-client-string option.
 2020-11-23 17:37:46 +01:00
gthess
db945f018b
Merge pull request #313 from NLnetLabs/edns-string 
Replace edns-client-tag with edns-client-string option
 2020-11-23 17:34:42 +01:00
George Thessalonikefs
b0247b6e93 Merge branch 'master' into edns-string 2020-11-23 16:58:30 +01:00
George Thessalonikefs
201b949689 Merge branch 'master' into edns-string 2020-11-23 16:35:58 +01:00
George Thessalonikefs
2d184f7505 - Update manpage. 2020-11-23 16:32:00 +01:00
W.C.A. Wijngaards
62152e0493 Fix writepid for retvalue 0. 2020-11-23 14:17:58 +01:00
W.C.A. Wijngaards
19f8f4d9f9 Further fix for CVE-2020-28935, so the chown is omitted when the pidfile 
fails due to a symlink.
 2020-11-23 13:48:04 +01:00
W.C.A. Wijngaards
ad38783297 - Fix for #303 CVE-2020-28935 : Fix that symlink does not interfere 
with chown of pidfile.
 2020-11-23 13:42:11 +01:00
W.C.A. Wijngaards
9cc8aa1ddf - Option to toggle udp-connect, default is enabled. 2020-11-23 11:06:53 +01:00
W.C.A. Wijngaards
6b97cb1dd1 stream reuse, up connection reuse time to 60 seconds. 2020-11-23 10:36:22 +01:00
W.C.A. Wijngaards
cca128b871 + - Fix #347: IP_DONTFRAG broken on Apple xcode 12.2. 2020-11-23 09:56:01 +01:00
W.C.A. Wijngaards
9423b5b8b2 Merge branch 'master' into stream-reuse 2020-11-23 09:49:26 +01:00
W.C.A. Wijngaards
dde9fade26 stream reuse, fix review comments. 2020-11-23 09:46:26 +01:00
W.C.A. Wijngaards
4445d9c5aa stream reuse, fix review comments. 2020-11-23 09:44:56 +01:00
W.C.A. Wijngaards
8143ce6967 stream reuse, review comments. 2020-11-23 09:40:15 +01:00
W.C.A. Wijngaards
6f4c79ab95 stream reuse, fix review comments. 2020-11-23 09:37:26 +01:00
W.C.A. Wijngaards
fd94b0bc9b stream reuse, rename ssl_reuse test to tls_reuse test. 2020-11-23 09:35:58 +01:00
W.C.A. Wijngaards
6ded710013 stream reuse, renamed ssl_reuse.tdir to tls_reuse.tdir. 2020-11-23 09:33:28 +01:00
W.C.A. Wijngaards
d83b1979c4 stream reuse, debug output with verbose level instead of number. 2020-11-23 09:29:26 +01:00
W.C.A. Wijngaards
097e530c49 Changelog notes for #350 and #351 
- Merge #351 from dvzrv: Add AF_NETLINK to set of allowed socket
  address families.
- Fix #350: with the AF_NETLINK permission, to fix 1.12.0 error:
  failed to list interfaces: getifaddrs: Address family not
  supported by protocol.
 2020-11-23 08:58:41 +01:00
Wouter Wijngaards
dbd5ea4f37
Merge pull request #351 from dvzrv/issues/350 
Add AF_NETLINK to set of allowed socket address families
 2020-11-23 08:57:23 +01:00
David Runge
c48f01445e
Add AF_NETLINK to set of allowed socket address families 
contrib/unbound{,_portable}.service.in:
With the changes introduced in f6a527c25a
it is now necessary to also allow access to the AF_NETLINK socket
address family to be able to get information from interfaces.

Without the AF_NETLINK address family the systemd service errors with:

```
error: failed to list interfaces: getifaddrs: Address family not
supported by protocol
```

Fixes #350
 2020-11-21 14:10:39 +01:00
W.C.A. Wijngaards
b891fe113c - Retry for interfaces with unused ports if possible. 2020-11-12 13:36:37 +01:00
W.C.A. Wijngaards
48b40b305a Changelog note. 2020-11-12 12:28:10 +01:00
W.C.A. Wijngaards
26aa550bd2 - Fix to connect() to UDP destinations, default turned on, 
this lowers vulnerability to ICMP side channels.
 2020-11-12 12:27:41 +01:00
Ralph Dolmans
a4342ceb3a Merge branch 'master' into edns-string 2020-11-11 11:38:06 +01:00
Ralph Dolmans
946ed23f73 Merge branch 'master' into edns-string 2020-11-11 11:37:32 +01:00
W.C.A. Wijngaards
5385e2e094 - Fix #343: Fail to build --with-libnghttp2 with error: 'SSIZE_MAX' 
undeclared.
 2020-11-10 15:31:20 +01:00
W.C.A. Wijngaards
7977e1c4cb - Fix memory leak after fix for possible memory leak failure. 2020-11-10 13:51:56 +01:00
W.C.A. Wijngaards
3926035f30 Changelog note for #341 and layout change. 
- Fix #341: fixing a possible memory leak.
 2020-11-10 08:07:28 +01:00
Wouter Wijngaards
140ab1f701
Merge pull request #341 from ihsinme/patch-1 
fixing a possible memory leak.
 2020-11-10 08:06:46 +01:00
ihsinme
18226f1c17
fixing a possible memory leak. 2020-11-09 18:41:22 +03:00
W.C.A. Wijngaards
d104727c91 - In man page note that tls-cert-bundle is read before permission 
drop and chroot.
 2020-10-27 09:00:26 +01:00
W.C.A. Wijngaards
4990dae87d - Fix that minimal-responses does not remove addresses from a priming 
query response.
 2020-10-22 09:26:27 +02:00
W.C.A. Wijngaards
ca39cfd6ae - Fix #333: Unbound Segmentation Fault w/ log_info Functions From 
Python Mod.
 2020-10-22 08:47:40 +02:00
George Thessalonikefs
0272889c44 - Fix #320: potential memory corruption due to size miscomputation upton 
custom region alloc init.
 2020-10-21 17:44:04 +02:00
George Thessalonikefs
7c39cbc0a9 - Fix #327: net/if.h check fails on some darwin versions; contribution by 
Joshua Root.
 2020-10-21 16:45:18 +02:00
W.C.A. Wijngaards
ee3f26bb3d Add verbosity to debug occasional missing q1-10.example.net, from timer. 2020-10-21 10:56:51 +02:00