upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-20 23:00:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
3235 commits 23 branches 209 tags 123 MiB
Commit graph

2223 commits

Author SHA1 Message Date
Wouter Wijngaards
b8eb1713e0 - Unit test for type ANY synthesis. 
git-svn-id: file:///svn/unbound/trunk@3419 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-30 10:27:27 +00:00
Wouter Wijngaards
ddff09a710 - iana portlist update. 
git-svn-id: file:///svn/unbound/trunk@3408 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-22 08:19:12 +00:00
Wouter Wijngaards
7efd7aba85 - Removed contrib/unbound_unixsock.diff, because it has been 
integrated, use control-interface: /path in unbound.conf.


git-svn-id: file:///svn/unbound/trunk@3407 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-22 08:03:34 +00:00
Wouter Wijngaards
ff898bfdd6 - Synthesize ANY responses from cache. Does not search exhaustively, 
but MX,A,AAAA,SOA,NS also CNAME.
- Fix leaked dns64prefix configuration string.


git-svn-id: file:///svn/unbound/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-17 14:58:07 +00:00
Wouter Wijngaards
863b12ffd4 #664: Fix issue with Python 3 mapping of FILE* using file_py3.i from ldns. 
git-svn-id: file:///svn/unbound/trunk@3403 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 14:41:14 +00:00
Wouter Wijngaards
da612901d7 #664: libunbound-Python: libldns is not used anymore. 
git-svn-id: file:///svn/unbound/trunk@3402 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 14:38:38 +00:00
Wouter Wijngaards
f5442e9c5b #664: libunbound examples: produce sorted output. 
git-svn-id: file:///svn/unbound/trunk@3401 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 14:37:12 +00:00
Wouter Wijngaards
9e6fa9f687 - Fix bug#664: libunbound python3 related fixes (from Tomas Hozza) 
Use print_function also for Python2.


git-svn-id: file:///svn/unbound/trunk@3400 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 14:35:55 +00:00
Wouter Wijngaards
628ff05285 - Ratelimit does not apply to prefetched queries, and ratelimit-factor 
is default 10.  Repeated normal queries get resolved and with
  prefetch stay in the cache.


git-svn-id: file:///svn/unbound/trunk@3399 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 14:18:50 +00:00
Wouter Wijngaards
e25ac1c2eb - Add local-zone type inform_deny, that logs query and drops answer. 
git-svn-id: file:///svn/unbound/trunk@3398 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-16 08:23:06 +00:00
Wouter Wijngaards
69d2fd7818 - Fix#663: ssl handshake fails when using unix socket because dh size 
is too small.


git-svn-id: file:///svn/unbound/trunk@3396 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 13:56:12 +00:00
Wouter Wijngaards
55412b2645 - Fix that get_option for cache-sizes does not print double newline. 
git-svn-id: file:///svn/unbound/trunk@3395 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 13:43:44 +00:00
Wouter Wijngaards
85192d4569 - unbound-control ratelimit_list lists high rate domains. 
git-svn-id: file:///svn/unbound/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 12:13:59 +00:00
Wouter Wijngaards
e30a90febc - ratelimit feature, ratelimit: 100, or some sensible qps, can be 
used to turn it on.  It ratelimits recursion effort per zone.
  For particular names you can configure exceptions in unbound.conf.


git-svn-id: file:///svn/unbound/trunk@3391 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 09:59:57 +00:00
Wouter Wijngaards
e0631733a6 - Fix crash in dnstap: Do not try to log TCP responses after timeout. 
git-svn-id: file:///svn/unbound/trunk@3390 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-08 19:58:06 +00:00
Wouter Wijngaards
53008d7969 - unbound-control list_insecure command shows the negative trust 
anchors currently configured, patch from Jelte Jansen.


git-svn-id: file:///svn/unbound/trunk@3389 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-07 13:50:09 +00:00
Wouter Wijngaards
08b8c34940 typo fix. 
(svn:NO TEST)


git-svn-id: file:///svn/unbound/trunk@3388 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-07 12:10:37 +00:00
Wouter Wijngaards
32f808fcfa - Unbound exits with a fatal error when the auto-trust-anchor-file 
fails to be writable.  This is seconds after startup.  You can
  load a readonly auto-trust-anchor-file with trust-anchor-file.
  The file has to be writable to notice the trust anchor change,
  without it, a trust anchor change will be unnoticed and the system
  will then become unoperable.


git-svn-id: file:///svn/unbound/trunk@3387 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-07 12:03:05 +00:00
Wouter Wijngaards
11b13d5928 - Libunbound skips dos-line-endings from etc/hosts. 
git-svn-id: file:///svn/unbound/trunk@3384 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-07 07:51:43 +00:00
Wouter Wijngaards
40c0bbf371 - Fix #660: Fix interface-automatic broken in the presence of 
asymmetric routing.


git-svn-id: file:///svn/unbound/trunk@3383 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-02 10:02:01 +00:00
Wouter Wijngaards
b2bdce46be - rename ldns subdirectory to sldns to avoid name collision. 
git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 10:21:38 +00:00
Wouter Wijngaards
de61a65867 - remote.c probedelay line is easier to read. 
git-svn-id: file:///svn/unbound/trunk@3379 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 09:46:06 +00:00
Wouter Wijngaards
7a9ccf858c - If unknown trust anchor algorithm, and libressl is used, error 
message encourages upgrade of the libressl package.


git-svn-id: file:///svn/unbound/trunk@3378 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-25 16:04:05 +00:00
Wouter Wijngaards
ebbe43098a - Fix #657: libunbound(3) recommends deprecated 
CRYPTO_set_id_callback.


git-svn-id: file:///svn/unbound/trunk@3377 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-25 08:06:35 +00:00
Wouter Wijngaards
bd404f5fd3 - Fix segfault on user not found at startup (from Maciej Soltysiak). 
git-svn-id: file:///svn/unbound/trunk@3375 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-23 20:20:15 +00:00
Wouter Wijngaards
6feb8fb6a5 - Fixes to add integer overflow checks on allocation (defense in depth). 
git-svn-id: file:///svn/unbound/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-20 15:36:25 +00:00
Wouter Wijngaards
77088b12ff - Add ip-transparent config option for bind to non-local addresses. 
git-svn-id: file:///svn/unbound/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-19 09:50:35 +00:00
Wouter Wijngaards
63b5d109f8 - Use reallocarray for integer overflow protection, patch submitted 
by Loganaden Velvindron.


git-svn-id: file:///svn/unbound/trunk@3365 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-17 08:24:24 +00:00
Wouter Wijngaards
29f18d8f86 - Fixup compile on cygwin, more portable openssl thread id. 
git-svn-id: file:///svn/unbound/trunk@3362 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-16 10:51:32 +00:00
Wouter Wijngaards
3568ea8bb5 - Updated default keylength in unbound-control-setup to 3k. 
git-svn-id: file:///svn/unbound/trunk@3361 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-12 15:34:03 +00:00
Wouter Wijngaards
bac2305fa6 - Fix warning on sign compare in getentropy_linux. 
git-svn-id: file:///svn/unbound/trunk@3360 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-10 10:29:55 +00:00
Wouter Wijngaards
4bb7d2b3b1 - iana portlist update. 
git-svn-id: file:///svn/unbound/trunk@3359 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-10 10:17:45 +00:00
Wouter Wijngaards
ed7b7bef11 print svnroot for windows makedist. 1.5.4 in configure.ac 
git-svn-id: file:///svn/unbound/trunk@3358 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-10 10:03:45 +00:00
Wouter Wijngaards
23b58890e5 - Fix lintian warning in unbound-checkconf man page (from Andreas 
Schulze).


git-svn-id: file:///svn/unbound/trunk@3356 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-10 08:00:40 +00:00
Wouter Wijngaards
56aefe656b - iana portlist update. 
git-svn-id: file:///svn/unbound/trunk@3355 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-09 13:39:27 +00:00
Wouter Wijngaards
49250ef291 - Fix #644: harden-algo-downgrade option, if turned off, fixes the 
reported excessive validation failure when multiple algorithms
  are present.  It allows the weakest algorithm to validate the zone.


git-svn-id: file:///svn/unbound/trunk@3354 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-09 13:30:37 +00:00
Wouter Wijngaards
b87e7c90be - stats reports tcp usage, of incoming-num-tcp buffers. 
git-svn-id: file:///svn/unbound/trunk@3353 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-05 15:23:14 +00:00
Wouter Wijngaards
ab539746ff - Document that incoming-num-tcp increase is good for large servers. 
git-svn-id: file:///svn/unbound/trunk@3352 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-05 11:41:29 +00:00
Wouter Wijngaards
a197bcaa0c - contrib/unbound_smf22.tar.gz: Solaris SMF installation/removal 
scripts.  Contributed by Yuri Voinov.


git-svn-id: file:///svn/unbound/trunk@3351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-05 08:18:59 +00:00
Wouter Wijngaards
67c6df20aa - Document windows 8 tests. 
git-svn-id: file:///svn/unbound/trunk@3350 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-04 13:24:27 +00:00
Wouter Wijngaards
7e50976476 - store caps_response with best response in case downgrade response 
happens to be the last one.


git-svn-id: file:///svn/unbound/trunk@3348 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-04 09:31:26 +00:00
Wouter Wijngaards
54771e5b3d - many nameservers does not try to compare more than max-sent-count, 
parse failures start 0x20 fallback procedure.


git-svn-id: file:///svn/unbound/trunk@3347 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-04 09:06:05 +00:00
Wouter Wijngaards
ab62061196 - 0x20 fallback improved, better handling of servfail responses, 
they do not count as missing comparisons (except if all are failed),
  and better handling of inability to find nameservers, no more
  nameservers can be found results in fallback acceptance.


git-svn-id: file:///svn/unbound/trunk@3346 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-04 08:30:17 +00:00
Wouter Wijngaards
34283df859 - Patch from Brad Smith that syncs compat/getentropy_linux with 
OpenBSD's version (2015-03-04).


git-svn-id: file:///svn/unbound/trunk@3345 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-04 07:18:09 +00:00
Wouter Wijngaards
bd05a6de8c - tag 1.5.3rc1 
git-svn-id: file:///svn/unbound/trunk@3344 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-03 13:37:53 +00:00
Wouter Wijngaards
929b5c08ee iana portlist update 
git-svn-id: file:///svn/unbound/trunk@3342 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-02 11:03:14 +00:00
Wouter Wijngaards
a226533c8b - Fix #647 crash in 1.5.2 because pwd.db no longer accessible after 
reload.


git-svn-id: file:///svn/unbound/trunk@3341 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-02-20 14:48:04 +00:00
Wouter Wijngaards
34402f8455 - Fix #646 Portability to Solaris, -lrt for getentropy_solaris. 
git-svn-id: file:///svn/unbound/trunk@3340 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-02-20 14:03:41 +00:00
Wouter Wijngaards
679f545d08 - Portability to Solaris 10, use AF_LOCAL. 
git-svn-id: file:///svn/unbound/trunk@3339 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-02-20 13:55:09 +00:00
Wouter Wijngaards
160dd56c4a - Use the getrandom syscall introduced in Linux 3.17 (from Heiner Kallweit). 
git-svn-id: file:///svn/unbound/trunk@3338 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-02-20 09:19:32 +00:00