upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-02-17 09:38:03 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
4799 commits 27 branches 209 tags 137 MiB
Commit graph

3446 commits

Author SHA1 Message Date
Wouter Wijngaards
077b38e2c5 note down that memory leak #4149 is fixed. 
git-svn-id: file:///svn/unbound/trunk@4917 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-10-01 09:36:15 +00:00
Wouter Wijngaards
9be04e6fac - Fix #4188: IPv6 forwarders without ipv6 result in SERVFAIL, fixes 
qname minimisation with a forwarder when connectivity has issues
  from rejecting responses.


git-svn-id: file:///svn/unbound/trunk@4916 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-27 08:19:29 +00:00
Wouter Wijngaards
377d5b426a - Add SSL cleanup for tcp timeout. 
git-svn-id: file:///svn/unbound/trunk@4915 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-25 09:01:13 +00:00
Wouter Wijngaards
f82a128909 - Perform TLS SNI indication of the host that is being contacted 
for DNS over TLS service.  It sets the configured tls auth name.
  This is useful for hosts that apart from the DNS over TLS services
  also provide other (web) services.


git-svn-id: file:///svn/unbound/trunk@4914 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-25 08:31:42 +00:00
Wouter Wijngaards
216759e955 - Fix #4156: Fix systemd service manager state change notification. 
git-svn-id: file:///svn/unbound/trunk@4913 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-17 12:30:22 +00:00
Wouter Wijngaards
9b6caf5a5b - Fix that with harden-below-nxdomain and qname minisation enabled 
some iterator states for nonresponsive domains can get into a
  state where they waited for an empty list.
- Stop UDP to TCP failover after timeouts that causes the ping count
  to be reset by the TCP time measurement (that exists for TLS),
  because that causes the UDP part to not be measured as timeout.


git-svn-id: file:///svn/unbound/trunk@4912 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-17 11:25:52 +00:00
Wouter Wijngaards
5089db7331 - Fix unbound for openssl in FIPS mode, it uses the digests with 
the EVP call contexts.


git-svn-id: file:///svn/unbound/trunk@4908 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-17 07:28:55 +00:00
Wouter Wijngaards
8e20d628e8 - Fix compile on Mac for unbound, provide explicit_bzero when libc 
does not have it.


git-svn-id: file:///svn/unbound/trunk@4907 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-17 07:06:57 +00:00
Wouter Wijngaards
d275505df6 - annotate exit functions with noreturn in unbound-control. 
git-svn-id: file:///svn/unbound/trunk@4906 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 14:43:43 +00:00
Wouter Wijngaards
f7516e6b2b - nicer bio free code in unbound-anchor. 
git-svn-id: file:///svn/unbound/trunk@4905 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 12:49:37 +00:00
Wouter Wijngaards
898d4c8dd9 - Fix memory leak when message parse fails partway through copy. 
- remove unused udpsize assignment in message encode.


git-svn-id: file:///svn/unbound/trunk@4904 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 12:30:44 +00:00
Wouter Wijngaards
2e9d09b961 - initialize statistics totals for printout. 
- in authzone check that node exists before adding rrset.
	- in unbound-anchor, use readwrite memory BIO.
	- assertion in autotrust that packed rrset is formed correctly.


git-svn-id: file:///svn/unbound/trunk@4903 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 12:20:41 +00:00
Wouter Wijngaards
8dd6efe5ed - remove unused variable assignment from iterator scrub routine. 
- check for null in delegation point during iterator refetch
  in forward zone.
- neater pointer cast in libunbound context quit routine.


git-svn-id: file:///svn/unbound/trunk@4902 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 10:36:22 +00:00
Wouter Wijngaards
635df9c806 - unit test has clang analysis. 
git-svn-id: file:///svn/unbound/trunk@4901 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 10:24:08 +00:00
Wouter Wijngaards
75b8b8c875 - Free memory leak in config strlist append. 
- make sure nsec3 comparison salt is initialized.


git-svn-id: file:///svn/unbound/trunk@4900 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 10:23:30 +00:00
Wouter Wijngaards
fe8b22caa1 - in testcode, free async ids, initialise array, and check for null 
pointer during test of the test.  And use exit for return to note
  irregular program stop.


git-svn-id: file:///svn/unbound/trunk@4897 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 09:45:07 +00:00
Wouter Wijngaards
9a82526b91 - exit log routine is annotated as noreturn function. 
- free memory leaks in config strlist and str2list insert functions.
- do not move unused argv variable after getopt.
- Remove unused if clause in testcode.


git-svn-id: file:///svn/unbound/trunk@4896 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 08:58:21 +00:00
Wouter Wijngaards
225a6d9c6e - Fix seed for random backup code to use explicit zero when wiped. 
git-svn-id: file:///svn/unbound/trunk@4895 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-13 07:49:51 +00:00
Wouter Wijngaards
87c8dd5434 - Fix initialisation in remote.c 
git-svn-id: file:///svn/unbound/trunk@4894 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-11 14:11:50 +00:00
Wouter Wijngaards
a09c4bbdc2 - Fix spelling errors. 
git-svn-id: file:///svn/unbound/trunk@4893 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-11 13:28:21 +00:00
Wouter Wijngaards
d01651c305 - Fix to squelch respip warning in unit test, it is printed at 
higher verbosity settings.


git-svn-id: file:///svn/unbound/trunk@4892 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-11 13:24:31 +00:00
Wouter Wijngaards
00982fc3db - Fixed unused return value warnings in contrib/fastrpz.patch for 
asprintf.


git-svn-id: file:///svn/unbound/trunk@4891 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-11 13:19:55 +00:00
Wouter Wijngaards
d8f890a43a - iana port update. 
git-svn-id: file:///svn/unbound/trunk@4890 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-10 12:35:01 +00:00
Wouter Wijngaards
a58681a718 1.8.1 in svn trunk. 
git-svn-id: file:///svn/unbound/trunk@4889 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-10 12:32:28 +00:00
Wouter Wijngaards
c9d33fb9f7 1.8.0 release. 
git-svn-id: file:///svn/unbound/trunk@4888 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-10 12:30:29 +00:00
Wouter Wijngaards
254df71810 - Fix spelling error in header, from getdns commit by Andreas Gelmini. 
git-svn-id: file:///svn/unbound/trunk@4886 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-05 05:33:38 +00:00
Ralph Dolmans
987c1c97e5 - More explicitly mention the type of ratelimit when applying ip-ratelimit. 
git-svn-id: file:///svn/unbound/trunk@4884 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-04 09:16:07 +00:00
Wouter Wijngaards
25c8497ba6 - Tag for 1.8.0rc1 release. 
git-svn-id: file:///svn/unbound/trunk@4882 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-09-04 07:15:06 +00:00
Wouter Wijngaards
5577e55400 - Disable minimal-responses in subnet unit tests. 
git-svn-id: file:///svn/unbound/trunk@4881 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-31 14:59:10 +00:00
Wouter Wijngaards
30a14c2716 - Fix that a local-zone with a local-zone-type that is transparent 
in a view with view-first, makes queries check for answers from the
  local-zones defined outside of views.


git-svn-id: file:///svn/unbound/trunk@4879 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-30 09:06:07 +00:00
Ralph Dolmans
2e5e31e8ac - Added serve-expired-ttl and serve-expired-ttl-reset options. 
git-svn-id: file:///svn/unbound/trunk@4876 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-28 14:21:56 +00:00
Ralph Dolmans
ae2653fcc5 - Disable minimal-responses in ipsecmod unit tests. 
git-svn-id: file:///svn/unbound/trunk@4875 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-28 14:11:21 +00:00
Wouter Wijngaards
f7118f29b9 - Fix lintflags for lint on FreeBSD. 
git-svn-id: file:///svn/unbound/trunk@4874 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-27 13:42:27 +00:00
Wouter Wijngaards
8d14e7c0a4 - next release is called 1.8.0. 
git-svn-id: file:///svn/unbound/trunk@4872 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-27 13:20:12 +00:00
Wouter Wijngaards
e0745813f4 - Set defaults to yes for a number of options to increase speed and 
resilience of the server.  The so-reuseport, harden-below-nxdomain,
  and minimal-responses options are enabled by default.  They used
  to be disabled by default, waiting to make sure they worked.  They
  are enabled by default now, and can be disabled explicitly by
  setting them to "no" in the unbound.conf config file.  The reuseport
  and minimal options increases speed of the server, and should be
  otherwise harmless.  The harden-below-nxdomain option works well
  together with the recently default enabled qname minimisation, this
  causes more fetches to use information from the cache.


git-svn-id: file:///svn/unbound/trunk@4871 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-27 13:18:19 +00:00
George Thessalonikefs
0171d06aa2 - #4140: Expose repinfo (comm_reply) to the inplace_callbacks. This 
gives access to reply information for the client's communication
  point when the callback is called before the mesh state (modules).
  Changes to C and Python's inplace_callback signatures were also
  necessary.


git-svn-id: file:///svn/unbound/trunk@4870 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-22 10:51:13 +00:00
Wouter Wijngaards
4daf8f5bdb - Fix only misc failure from log-servfail when val-log-level is not 
enabled.


git-svn-id: file:///svn/unbound/trunk@4869 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-21 14:31:37 +00:00
Wouter Wijngaards
00ba747be7 - #4146: num.query.subnet and num.query.subnet_cache counters. 
git-svn-id: file:///svn/unbound/trunk@4867 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-21 14:14:28 +00:00
Wouter Wijngaards
504ef71975 and documentation. 
git-svn-id: file:///svn/unbound/trunk@4866 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-21 07:14:48 +00:00
Wouter Wijngaards
01d8dc2240 - log-local-actions: yes option for unbound.conf that logs all the 
local zone actions, a patch from Saksham Manchanda (Secure64).


git-svn-id: file:///svn/unbound/trunk@4864 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-21 07:10:09 +00:00
Wouter Wijngaards
4fe427ded2 - log-servfail: yes prints log lines that say why queries are 
returning SERVFAIL to clients.


git-svn-id: file:///svn/unbound/trunk@4863 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-17 15:22:05 +00:00
Wouter Wijngaards
e8c4f20f66 - added more servfail printout statements, to the iterator. 
git-svn-id: file:///svn/unbound/trunk@4861 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-17 15:01:35 +00:00
Wouter Wijngaards
8385c462ed - print servfail info to log as error. 
git-svn-id: file:///svn/unbound/trunk@4859 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-17 13:29:27 +00:00
Ralph Dolmans
afd4063f20 - Fix classification for QTYPE=CNAME queries when QNAME minimisation is enabled. 
git-svn-id: file:///svn/unbound/trunk@4858 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-17 12:48:47 +00:00
Wouter Wijngaards
ed24498f2e - Set libunbound to increase current, because the libunbound change 
to the event callback function signature.  That needs programs,
  that use it, to recompile against the new header definition.


git-svn-id: file:///svn/unbound/trunk@4857 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-17 09:07:06 +00:00
Wouter Wijngaards
f2b12c0761 - Fix contrib/fastrpz.patch. 
git-svn-id: file:///svn/unbound/trunk@4856 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-16 10:29:00 +00:00
Wouter Wijngaards
df85836b15 - Fix warning on compile without threads. 
git-svn-id: file:///svn/unbound/trunk@4855 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-16 10:28:11 +00:00
Wouter Wijngaards
1958d9fbd5 - Fix segfault in auth-zone read and reorder of RRSIGs. 
git-svn-id: file:///svn/unbound/trunk@4853 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-15 09:26:13 +00:00
Wouter Wijngaards
0c04b5eaf5 - Upgraded crosscompile script to include libunbound DLL in the 
zipfile.


git-svn-id: file:///svn/unbound/trunk@4852 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-14 14:52:09 +00:00
Wouter Wijngaards
8e5a32f4dc - Fix that printout of error for cycle targets is a verbosity 4 
printout and does not wrongly print it is a memory error.


git-svn-id: file:///svn/unbound/trunk@4851 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-14 07:27:57 +00:00
Wouter Wijngaards
efe5c8e6be - Fix #4144: dns64 module caches wrong (negative) information. 
git-svn-id: file:///svn/unbound/trunk@4850 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-10 08:03:17 +00:00
Wouter Wijngaards
8b1012613e documentation. 
git-svn-id: file:///svn/unbound/trunk@4847 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-09 12:48:33 +00:00
Wouter Wijngaards
256ab3d935 - Patch for stub-no-cache and forward-no-cache options that disable 
caching for the contents of that stub or forward, for when you
  want immediate changes visible, from Bjoern A. Zeeb.


git-svn-id: file:///svn/unbound/trunk@4846 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-09 12:44:40 +00:00
Wouter Wijngaards
be79ffa371 - document --enable-subnet in doc/README. 
git-svn-id: file:///svn/unbound/trunk@4844 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-09 08:48:04 +00:00
Wouter Wijngaards
d2f7999b4e - unbound-checkconf checks if modules exist and prints if they are 
not compiled in the name of the wrong module.


git-svn-id: file:///svn/unbound/trunk@4842 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-09 08:33:56 +00:00
Wouter Wijngaards
611e37aa2d (On the patch) 
- make depend, yacc, lex, doc, headers.  And log the limit exceeded
  message only on high verbosity, so as to not spam the logs when
  it is busy.


git-svn-id: file:///svn/unbound/trunk@4841 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-07 12:48:49 +00:00
Ralph Dolmans
3f2d186694 - Make capsforid fallback QNAME minimisation aware. 
git-svn-id: file:///svn/unbound/trunk@4840 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-07 12:43:49 +00:00
Wouter Wijngaards
73f01304f0 tcp-connection-limit in example config. 
git-svn-id: file:///svn/unbound/trunk@4839 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-07 12:28:57 +00:00
Wouter Wijngaards
586b811b87 - Patch to implement tcp-connection-limit from Jim Hague (Sinodun). 
This limits the number of simultaneous TCP client connections
  from a nominated netblock.
And a simple test for TCP connection limit.


git-svn-id: file:///svn/unbound/trunk@4835 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-07 11:57:42 +00:00
Wouter Wijngaards
070019c9be - Fix #4142: unbound.service.in: improvements and fixes. 
Add unit dependency ordering (based on systemd-resolved).
  Add 'CAP_SYS_RESOURCE' to 'CapabilityBoundingSet' (fixes warnings
  about missing privileges during startup). Add 'AF_INET6' to
  'RestrictAddressFamilies' (without it IPV6 can't work). From
  Guido Shanahan.


git-svn-id: file:///svn/unbound/trunk@4834 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-07 08:30:22 +00:00
Wouter Wijngaards
cf1bfbba5d test post hook. 
git-svn-id: file:///svn/unbound/trunk@4832 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-06 07:41:41 +00:00
Wouter Wijngaards
a4fd088875 change for post hook 
git-svn-id: file:///svn/unbound/trunk@4831 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-06 07:30:11 +00:00
Wouter Wijngaards
27023b3f21 - Fix for #4136: Fix to unconditionally call destroy in daemon.c. 
git-svn-id: file:///svn/unbound/trunk@4830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-06 07:18:05 +00:00
George Thessalonikefs
749d1b9ebc - Expose if a query (or a subquery) was ratelimited (not src IP 
ratelimiting) to libunbound under 'ub_result.was_ratelimited'.
  This also introduces a change to 'ub_event_callback_type' in
  libunbound/unbound-event.h.
- Tidy pylib tests.


git-svn-id: file:///svn/unbound/trunk@4828 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-03 14:00:46 +00:00
Wouter Wijngaards
87bdb489f9 - New fix for #4136: This one ignores lex without without 
yylex_destroy.


git-svn-id: file:///svn/unbound/trunk@4827 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-03 11:10:55 +00:00
Wouter Wijngaards
37e9f5591a - Revert previous change for #4136: because it introduces build 
problems.


git-svn-id: file:///svn/unbound/trunk@4826 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-03 09:47:53 +00:00
Wouter Wijngaards
d546e7766d - iana port list update. 
git-svn-id: file:///svn/unbound/trunk@4825 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-01 14:07:54 +00:00
Wouter Wijngaards
62f69f9b40 - Fix to remove systemd sockaddr function check, that is not 
always present.  Make socket activation more lenient.  But not
  different when socket activation is not used.


git-svn-id: file:///svn/unbound/trunk@4824 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-08-01 13:49:27 +00:00
Wouter Wijngaards
168bc963d3 edns keepalive in example.conf 
git-svn-id: file:///svn/unbound/trunk@4823 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 13:59:34 +00:00
Wouter Wijngaards
c887ae1022 - Fix #4139: Fix unbound-host leaks memory on ANY. 
git-svn-id: file:///svn/unbound/trunk@4821 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 11:58:19 +00:00
Wouter Wijngaards
a2961e50fb For windows portability, example.conf documentation. 
git-svn-id: file:///svn/unbound/trunk@4817 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 10:24:09 +00:00
Wouter Wijngaards
cc538f4f9f - Please doxygen so it passes. 
git-svn-id: file:///svn/unbound/trunk@4813 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 08:10:20 +00:00
Wouter Wijngaards
45e73bcc8e Insert comments for documentation purposes. 
git-svn-id: file:///svn/unbound/trunk@4811 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:55:47 +00:00
Wouter Wijngaards
2f32ef7646 Another patch from Jim Hague: 
- Fix 'make depend' to work when build dir is not project root.


git-svn-id: file:///svn/unbound/trunk@4809 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:27:16 +00:00
Wouter Wijngaards
b7abbd1d72 - Fix mesh.c incompatible pointer pass. 
- yacc and lex.


git-svn-id: file:///svn/unbound/trunk@4808 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:23:58 +00:00
Wouter Wijngaards
f364edafd3 - From Wouter: make depend, the dependencies in the patches did not 
apply cleanly.


git-svn-id: file:///svn/unbound/trunk@4807 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:21:39 +00:00
Wouter Wijngaards
e3f08cb2a2 - Implement progressive backoff of TCP idle/keepalive timeout. 
git-svn-id: file:///svn/unbound/trunk@4806 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:20:15 +00:00
Wouter Wijngaards
a92b00ef3c - Correct and expand manual page entries for keepalive and idle timeout. 
git-svn-id: file:///svn/unbound/trunk@4805 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:19:26 +00:00
Wouter Wijngaards
3dbdde7fed - Add edns-tcp-keepalive and edns-tcp-keepalive timeout options 
and implement option in client responses.


git-svn-id: file:///svn/unbound/trunk@4804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:18:34 +00:00
Wouter Wijngaards
007123ee2c - Sort out test runs when the build directory isn't the project 
root directory.
- Add config tcp-idle-timeout (default 30s). This applies to
  client connections only; the timeout on TCP connections upstream
  is unaffected.


git-svn-id: file:///svn/unbound/trunk@4802 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-31 07:15:12 +00:00
Wouter Wijngaards
10c085f81d - Fix #4136: insufficiency from mismatch of FLEX capability between 
released tarball and build host.


git-svn-id: file:///svn/unbound/trunk@4801 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-30 09:58:05 +00:00
Wouter Wijngaards
1d315e11cf - Fix man page, say that chroot is enabled by default. 
git-svn-id: file:///svn/unbound/trunk@4800 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-27 09:19:57 +00:00
Wouter Wijngaards
c91b657a40 Attribute and put fix in section. 
git-svn-id: file:///svn/unbound/trunk@4799 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-26 07:10:24 +00:00
Wouter Wijngaards
60f59271d6 - Fix #4135: 64-bit Windows Installer Creates Entries Under The 
Wrong Registry Key.


git-svn-id: file:///svn/unbound/trunk@4798 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-26 06:59:57 +00:00
Wouter Wijngaards
40abe08ac8 - Fix use-systemd readiness signalling, only when use-systemd is yes 
and not in signal handler.


git-svn-id: file:///svn/unbound/trunk@4797 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-23 13:05:39 +00:00
Wouter Wijngaards
aa5fb8b10b - Fix #4131: for solaris, error YY_CURRENT_BUFFER undeclared. 
git-svn-id: file:///svn/unbound/trunk@4795 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-20 11:53:57 +00:00
Wouter Wijngaards
bded93f69b - Fix #4130: print text describing -dd and unbound-checkconf on 
config file read error at startup, the errors may have been moved
  away by the startup process.


git-svn-id: file:///svn/unbound/trunk@4792 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-20 05:42:38 +00:00
Wouter Wijngaards
38e77d50f2 - Fix #4129 unbound-control error message with wrong cert permissions 
is too cryptic.


git-svn-id: file:///svn/unbound/trunk@4791 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-19 06:22:11 +00:00
Wouter Wijngaards
7579216922 - Resize ratelimit and ip-ratelimit caches if changed on reload. 
git-svn-id: file:///svn/unbound/trunk@4787 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-17 14:42:38 +00:00
Wouter Wijngaards
330c6e1cb0 - Fix that ratelimit and ip-ratelimit are applied after reload of 
git-svn-id: file:///svn/unbound/trunk@4786 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-17 14:27:44 +00:00
Wouter Wijngaards
cc5ab744c5 - Print error if SSL name verification configured but not available 
in the ssl library.


git-svn-id: file:///svn/unbound/trunk@4784 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-17 12:26:32 +00:00
Wouter Wijngaards
0ae750e552 - Fix #4127 unbound -h does not list -p help. 
git-svn-id: file:///svn/unbound/trunk@4783 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-17 07:03:37 +00:00
Wouter Wijngaards
cabc120f22 for outgoing UDP sockets. 
git-svn-id: file:///svn/unbound/trunk@4782 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-16 10:30:44 +00:00
Wouter Wijngaards
c96c2d8a45 - Squelch can't bind socket errors with Permission denied unless 
verbosity is 4 or higher, for UDP sockets.


git-svn-id: file:///svn/unbound/trunk@4781 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-16 10:27:12 +00:00
Wouter Wijngaards
8aa53f027d - Fix qname minimisation NXDOMAIN validation lookup failures causing 
error_supers assertion fails.


git-svn-id: file:///svn/unbound/trunk@4780 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-16 10:21:34 +00:00
Wouter Wijngaards
4bf9d12419 - Fix for 4126 that the #define for UNKNOWN_SERVER_NICENESS can be more 
easily changed to adjust default rtt assumptions.


git-svn-id: file:///svn/unbound/trunk@4779 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-12 14:15:03 +00:00
Wouter Wijngaards
f93746b1af - Fix to improve systemd socket activation code file descriptor 
assignment.


git-svn-id: file:///svn/unbound/trunk@4778 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-12 10:35:33 +00:00
Wouter Wijngaards
23dc22b78d - Note in documentation that the cert name match code needs 
git-svn-id: file:///svn/unbound/trunk@4777 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-10 08:02:32 +00:00
Wouter Wijngaards
5e3c30beac - Fix round robin for failed addresses with prefer-ip6: yes 
git-svn-id: file:///svn/unbound/trunk@4776 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-06 14:40:35 +00:00
Wouter Wijngaards
f2e90b0872 - Note RFC8162 support. SMIMEA record type can be read in by the 
zone record parser.


git-svn-id: file:///svn/unbound/trunk@4774 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-06 12:06:05 +00:00
Wouter Wijngaards
1249e0db3f - Note RFC8162 support. 
git-svn-id: file:///svn/unbound/trunk@4773 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-06 11:56:38 +00:00
Wouter Wijngaards
15c4dd79f4 - iana port update. 
git-svn-id: file:///svn/unbound/trunk@4772 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-06 06:48:44 +00:00
Wouter Wijngaards
e324a7819a - Fix documentation ambiguity for tls-win-cert in tls-upstream and 
forward-tls-upstream docs.


git-svn-id: file:///svn/unbound/trunk@4771 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-06 05:39:08 +00:00
Wouter Wijngaards
81e9f82a8d - Fix #4112: Fix that unbound-anchor -f /etc/resolv.conf will not pass 
if DNSSEC is not enabled.  New option -R allows fallback from
  resolv.conf to direct queries.


git-svn-id: file:///svn/unbound/trunk@4770 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-04 10:02:16 +00:00
Wouter Wijngaards
5d298ed474 - Fix permission denied printed for auth zone probe random port nrs. 
git-svn-id: file:///svn/unbound/trunk@4769 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-03 13:58:49 +00:00
Wouter Wijngaards
82e1e3959f - Better documentation for unblock-lan-zones and insecure-lan-zones 
config statements.


git-svn-id: file:///svn/unbound/trunk@4768 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-03 08:54:01 +00:00
Wouter Wijngaards
7181c0fa6a - Update libunbound/python/examples/dnssec_test.py example code to 
also set the 20326 trust anchor for the root in the example code.


git-svn-id: file:///svn/unbound/trunk@4767 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-02 14:46:31 +00:00
Wouter Wijngaards
49f27c06af Note that fix works to decrease problem, and is included for next release. 
git-svn-id: file:///svn/unbound/trunk@4766 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-02 08:55:04 +00:00
Wouter Wijngaards
7247718e12 - Fix typo on man page in ip-address description. 
git-svn-id: file:///svn/unbound/trunk@4765 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-02 07:19:12 +00:00
Wouter Wijngaards
61acc76244 - Fix checking for libhiredis printout in configure output. 
git-svn-id: file:///svn/unbound/trunk@4764 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-07-02 07:09:30 +00:00
Wouter Wijngaards
2faa4f9ee2 And documentation. 
git-svn-id: file:///svn/unbound/trunk@4763 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-29 13:03:57 +00:00
Wouter Wijngaards
2beae211ee - dns64-ignore-aaaa: config option to list domain names for which the 
existing AAAA is ignored and dns64 processing is used on the A
  record.


git-svn-id: file:///svn/unbound/trunk@4762 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-29 12:58:52 +00:00
Wouter Wijngaards
d3ff7a9333 - log port number with err_addr logs. 
git-svn-id: file:///svn/unbound/trunk@4761 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-29 08:34:41 +00:00
Wouter Wijngaards
23df700f15 explain num.tcp and num.tls 
git-svn-id: file:///svn/unbound/trunk@4760 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-28 09:14:31 +00:00
Wouter Wijngaards
755233c720 - num.queries.tls counter for queries over TLS. 
git-svn-id: file:///svn/unbound/trunk@4759 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-28 08:15:47 +00:00
Wouter Wijngaards
bca54a8b25 - Patch, do not export python from pkg-config, from Petr Menšík. 
git-svn-id: file:///svn/unbound/trunk@4758 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-27 06:07:31 +00:00
Wouter Wijngaards
b5aab36d41 - #4109: Fix that package config depends on python unconditionally. 
git-svn-id: file:///svn/unbound/trunk@4757 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-27 05:46:36 +00:00
Wouter Wijngaards
d7cfe91cb3 - Fix that auth-zone does not start the wait timer without checking 
if the wait timer has already been started.
(the code is part of the previous commit).



git-svn-id: file:///svn/unbound/trunk@4756 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-26 13:56:23 +00:00
Wouter Wijngaards
a31d45b13e - Fix that auth-zone master reply with current SOA serial does not 
stop scan of masters for an updated zone.


git-svn-id: file:///svn/unbound/trunk@4755 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-26 13:48:36 +00:00
Wouter Wijngaards
23f475bccc - Tentative fix for permission denied on IPv6 address on FreeBSD. 
git-svn-id: file:///svn/unbound/trunk@4754 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-26 08:01:44 +00:00
Wouter Wijngaards
025fdd0049 Document behaviour. 
git-svn-id: file:///svn/unbound/trunk@4753 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 12:51:14 +00:00
Wouter Wijngaards
c225ced1a9 - Fix usage printout for unbound-host, hostname has to be last 
argument on BSDs and Windows.


git-svn-id: file:///svn/unbound/trunk@4751 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 12:31:42 +00:00
Wouter Wijngaards
3a58ad15e8 Note contents of release 1.7.3 
git-svn-id: file:///svn/unbound/trunk@4750 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 10:00:17 +00:00
Wouter Wijngaards
5106ad7a2c - #4108: systemd reload hang fix. 
git-svn-id: file:///svn/unbound/trunk@4747 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-21 07:11:12 +00:00
Wouter Wijngaards
8c044a616b - Fix windows unbound-control no cert bad file descriptor error. 
git-svn-id: file:///svn/unbound/trunk@4746 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-19 13:13:35 +00:00
Wouter Wijngaards
5dfcf122d1 - Windows example service.conf edited with more windows specific 
configuration.


git-svn-id: file:///svn/unbound/trunk@4744 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-19 09:57:39 +00:00
Wouter Wijngaards
7b092127cb - Fix for unbound-control on Windows and set TCP socket parameters 
more closely.


git-svn-id: file:///svn/unbound/trunk@4743 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-19 09:40:59 +00:00
Wouter Wijngaards
b26257248d - Fix unbound-checkconf for control-use-cert. 
git-svn-id: file:///svn/unbound/trunk@4742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 12:15:21 +00:00
Wouter Wijngaards
3c7d270958 Changelog note, fix is part of 1.7.3rc2. 
git-svn-id: file:///svn/unbound/trunk@4741 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 09:46:40 +00:00
Wouter Wijngaards
c15eae814f - Fix that control-use-cert: no works for 127.0.0.1 to disable certs. 
git-svn-id: file:///svn/unbound/trunk@4738 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 09:04:35 +00:00
Wouter Wijngaards
0e72e06886 - Print warning when control-use-cert is used with an IP-address 
in unbound-control, and that TLS is enabled.


git-svn-id: file:///svn/unbound/trunk@4737 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-18 08:40:30 +00:00
Wouter Wijngaards
abff4d1237 - unbound-control auth_zone_transfer _zone_ option starts the probe 
sequence for a master to transfer the zone from and transfers when
  a new zone version is available.


git-svn-id: file:///svn/unbound/trunk@4736 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-15 15:01:31 +00:00
Wouter Wijngaards
386f23334b - unbound-control auth_zone_reload _zone_ option rereads the zonefile. 
git-svn-id: file:///svn/unbound/trunk@4735 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-15 13:42:41 +00:00
Wouter Wijngaards
a523683d4c - trunk has 1.7.4. 
git-svn-id: file:///svn/unbound/trunk@4734 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-15 11:55:23 +00:00
Wouter Wijngaards
b25332e1f4 - tag for 1.7.3rc1. 
git-svn-id: file:///svn/unbound/trunk@4732 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-15 05:38:39 +00:00
Wouter Wijngaards
a6ec2c6fc7 - Fix nettle compile. 
git-svn-id: file:///svn/unbound/trunk@4731 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 12:08:09 +00:00
Wouter Wijngaards
9cb404ba5f - Fix that first control-interface determines if TLS is used. Warn 
when IP address interfaces are used without TLS.


git-svn-id: file:///svn/unbound/trunk@4730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 08:14:43 +00:00
Wouter Wijngaards
12251022ec - #4103: Fix that auth-zone does not insist on SOA record first in 
file for url downloads.


git-svn-id: file:///svn/unbound/trunk@4729 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-14 07:09:01 +00:00
Ralph Dolmans
00a0cabf7f - Don't count CNAME response types received during qname minimisation as query 
restart.


git-svn-id: file:///svn/unbound/trunk@4728 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 13:09:14 +00:00
Wouter Wijngaards
d65accbb23 - remade dependencies in the Makefile. 
git-svn-id: file:///svn/unbound/trunk@4725 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 12:23:56 +00:00
Wouter Wijngaards
78767f2014 - Fix buffer size warning in unit test. 
git-svn-id: file:///svn/unbound/trunk@4724 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 11:01:14 +00:00
Wouter Wijngaards
23edc18cac - Rename tls-additional-ports to tls-additional-port, because every 
line adds one port.


git-svn-id: file:///svn/unbound/trunk@4721 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 08:45:57 +00:00
Wouter Wijngaards
7fd32916e8 - #4102 for NSD, but for Unbound. Named unix pipes do not use 
certificate and key files, access can be restricted with file and
  directory permissions.  The option control-use-cert is no longer
  used, and ignored if found in unbound.conf.


git-svn-id: file:///svn/unbound/trunk@4718 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-12 07:43:52 +00:00
Wouter Wijngaards
3f837bc440 trunk is 1.7.3 in development. 
git-svn-id: file:///svn/unbound/trunk@4717 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-11 10:05:03 +00:00
Wouter Wijngaards
f0769bed93 note OpenBSD accept4. 
git-svn-id: file:///svn/unbound/trunk@4716 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-11 09:08:41 +00:00
Wouter Wijngaards
a1bfc07105 - Patch to fix openwrt for mac os build darwin detection in configure. 
git-svn-id: file:///svn/unbound/trunk@4713 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-06 05:31:12 +00:00
Wouter Wijngaards
a4a5bfaa2f - Fix crash if ratelimit taken into use with unbound-control 
instead of with unbound.conf.


git-svn-id: file:///svn/unbound/trunk@4711 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-05 07:06:19 +00:00
Wouter Wijngaards
62ea384d19 accept4 also on OpenBSD 
git-svn-id: file:///svn/unbound/trunk@4710 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-05 06:59:05 +00:00
Wouter Wijngaards
7fae96eb1e Track bug.nr 4100 
git-svn-id: file:///svn/unbound/trunk@4708 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 12:50:32 +00:00
Wouter Wijngaards
d386641820 - Fix stub reprime when it becomes useless. 
git-svn-id: file:///svn/unbound/trunk@4707 be551aaa-1e26-0410-a405-d3ace91eadb9
 2018-06-04 12:28:33 +00:00