upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-22 07:41:16 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
3275 commits 23 branches 209 tags 123 MiB
Commit graph

452 commits

Author SHA1 Message Date
Wouter Wijngaards
1d7d43f9b5 Fixup #if 
git-svn-id: file:///svn/unbound/trunk@3454 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-07-21 14:37:15 +00:00
Wouter Wijngaards
583b376217 - Fix configure to detect SSL_CTX_set_ecdh_auto. 
git-svn-id: file:///svn/unbound/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-07-21 14:30:49 +00:00
Wouter Wijngaards
78c8224655 - Enable ECDHE for servers. Where available, use 
SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to
  enable ECDHE.  Otherwise, manually offer curve p256.
  Client connections should automatically use ECDHE when available.
  (thanks Daniel Kahn Gillmor)


git-svn-id: file:///svn/unbound/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-07-20 06:56:01 +00:00
Willem Toorop
fa20564699 SSL_CTX_use_certificate_chain_file() should be used instead of the 
SSL_CTX_use_certificate_file() function in order to allow the use of
complete certificate chains even when no trusted CA storage is used or
when the CA issuing the certificate shall not be added to the trusted
CA storage.

Thanks Daniel Kahn Gillmore


git-svn-id: file:///svn/unbound/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-07-18 12:34:37 +00:00
Wouter Wijngaards
94a6478e05 - SOA negative TTL is capped at minimumttl in its rdata section. 
- cache-max-negative-ttl config option, default 3600.


git-svn-id: file:///svn/unbound/trunk@3431 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-05-29 14:51:36 +00:00
Wouter Wijngaards
b2bdce46be - rename ldns subdirectory to sldns to avoid name collision. 
git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 10:21:38 +00:00
Wouter Wijngaards
b1d79cb0ab remove unused files from testcode 
git-svn-id: file:///svn/unbound/trunk@3318 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-22 15:53:31 +00:00
Wouter Wijngaards
648c37da3f comment fixup. 
svn:NO TEST


git-svn-id: file:///svn/unbound/trunk@3317 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-22 15:10:17 +00:00
Wouter Wijngaards
7084c20f88 - Disabled use of SSLv3 in remote-control and ssl-upstream. 
git-svn-id: file:///svn/unbound/trunk@3248 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-27 09:26:48 +00:00
Wouter Wijngaards
f1bcc1032f More casts. 
git-svn-id: file:///svn/unbound/trunk@3244 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-13 09:23:12 +00:00
Wouter Wijngaards
339a6be27d More unsigned chasts for toupper/tolower/ctype 
git-svn-id: file:///svn/unbound/trunk@3242 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-13 08:35:00 +00:00
Wouter Wijngaards
912b10a789 - Fixup checklock code for log lock and its mutual initialization 
dependency.


git-svn-id: file:///svn/unbound/trunk@3214 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-25 12:00:30 +00:00
Wouter Wijngaards
8ccba42b1f - dnstap support, with a patch from Farsight Security, written by 
Robert Edmonds. The --enable-dnstap needs libfstrm and protobuf-c.
  It is BSD licensed (see dnstap/dnstap.c).
  Building with --enable-dnstap needs pkg-config with this patch.
- Noted dnstap in doc/README and doc/CREDITS.


git-svn-id: file:///svn/unbound/trunk@3206 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-05 07:57:52 +00:00
Wouter Wijngaards
2d2aa3483f - DLV tests added. 
- signit tool fixup for compile with libldns library.


git-svn-id: file:///svn/unbound/trunk@3154 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-07-03 09:07:38 +00:00
Wouter Wijngaards
43f3b0623f Fixup testsetup for VM tests (testcode/run_vm.sh). 
git-svn-id: file:///svn/unbound/trunk@3147 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 10:26:02 +00:00
Wouter Wijngaards
bc7f906590 - Fix caps-for-id fallback, and added fallback attempt when servers 
drop 0x20 perturbed queries.


git-svn-id: file:///svn/unbound/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 08:24:28 +00:00
Wouter Wijngaards
c7d1e6ccf9 - Fix #574: make test fails on Ubuntu 14.04. Disabled remote-control 
in testbound scripts.


git-svn-id: file:///svn/unbound/trunk@3104 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-08 07:13:49 +00:00
Wouter Wijngaards
2b90f38a70 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: file:///svn/unbound/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
Wouter Wijngaards
4095ee4622 fix sldns parse tests on osx. 
git-svn-id: file:///svn/unbound/trunk@3070 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-05 13:40:55 +00:00
Wouter Wijngaards
decb716939 - fixup type EUI48 and EUI64, type APL and type IPSECKEY in string 
parse sldns.


git-svn-id: file:///svn/unbound/trunk@3063 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-31 13:50:57 +00:00
Wouter Wijngaards
6479785360 fixup nss compile (no ldns in it). 
fixup warning in unitldns
fixup WKS and rdata type service to print unsigned because strings are not portable.


git-svn-id: file:///svn/unbound/trunk@3061 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-31 11:25:36 +00:00
Wouter Wijngaards
61095a0cfd - unit test for ldns wire to str and back with zones, root, nlnetlabs 
and types.sidnlabs.
- Fix for hex to string in unknown, atma and nsap.


git-svn-id: file:///svn/unbound/trunk@3060 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-31 10:19:01 +00:00
Wouter Wijngaards
d8e5a83392 - delay-close: msec option that delays closing ports for which 
the UDP reply has timed out.  Keeps the port open, only accepts
  the correct reply.  This correct reply is not used, but the port
  is open so that no port-denied ICMPs are generated.


git-svn-id: file:///svn/unbound/trunk@3058 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-28 14:35:55 +00:00
Wouter Wijngaards
958b2bcf96 - reuseport is attempted, then fallback to without on failure. 
git-svn-id: file:///svn/unbound/trunk@3054 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-27 10:27:19 +00:00
Wouter Wijngaards
361cc1f511 - made lint clean. 
git-svn-id: file:///svn/unbound/trunk@3050 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 13:23:45 +00:00
Wouter Wijngaards
3ce7b4a6fa - Windows port, adjust %lld to %I64d, and warning in win_event.c. 
git-svn-id: file:///svn/unbound/trunk@3040 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-16 16:01:37 +00:00
Wouter Wijngaards
6dafaff733 include for NetBSD 
git-svn-id: file:///svn/unbound/trunk@3034 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-05 16:24:48 +00:00
Wouter Wijngaards
d3cbd76546 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: file:///svn/unbound/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
Wouter Wijngaards
3de090dadb Fix linking of sldns and ldns, unique identifiers for global variables. 
git-svn-id: file:///svn/unbound/trunk@3021 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-11-30 11:03:55 +00:00
Wouter Wijngaards
b5b6c7ecd3 not string literal. 
git-svn-id: file:///svn/unbound/trunk@3005 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 16:02:22 +00:00
Wouter Wijngaards
29e96e86c9 - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: file:///svn/unbound/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
Wouter Wijngaards
8e00233b74 another time_t. 
git-svn-id: file:///svn/unbound/trunk@2952 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-09-10 08:52:40 +00:00
Wouter Wijngaards
8ba21bd7e7 - Fix#520: Errors found by static analysis from Tomas Hozza(redhat). 
git-svn-id: file:///svn/unbound/trunk@2942 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-21 13:31:09 +00:00
Wouter Wijngaards
f1fd2b53eb - Fix for 2038, with time_t instead of uint32_t. 
git-svn-id: file:///svn/unbound/trunk@2939 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-20 12:23:42 +00:00
Wouter Wijngaards
b37f9c0d4a fixup uninit variable in unit test (compiler does not understand assertion). 
git-svn-id: file:///svn/unbound/trunk@2935 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-08-14 07:56:22 +00:00
Wouter Wijngaards
021f32ebf9 - Fix memleak in testcode for testbound (if it fails). 
- Fix NSS returned arrays out of setup function to be statics.


git-svn-id: file:///svn/unbound/trunk@2930 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-07-29 07:32:35 +00:00
Wouter Wijngaards
5ebf7d3a52 - streamtcp man page, contributed by Tomas Hozza. 
git-svn-id: file:///svn/unbound/trunk@2924 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-07-19 10:46:16 +00:00
Wouter Wijngaards
d68e0595b4 please lint. 
git-svn-id: file:///svn/unbound/trunk@2902 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-05-16 08:25:50 +00:00
Wouter Wijngaards
06a5fdb3f6 - Fix snprintf return value usage, fixed libunbound_get_option. 
git-svn-id: file:///svn/unbound/trunk@2888 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-04-19 11:34:36 +00:00
Wouter Wijngaards
ffab065d1e - includes and have_ssl fixes for nss. 
git-svn-id: file:///svn/unbound/trunk@2830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-30 13:15:03 +00:00
Wouter Wijngaards
ed6b39c095 fixup for doxygen 1.8.3 
git-svn-id: file:///svn/unbound/trunk@2827 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-28 13:44:38 +00:00
Yuri Schaeffer
e00e9d2839 Typo inside a whitespace 
git-svn-id: file:///svn/unbound/trunk@2786 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-12-04 10:18:00 +00:00
Wouter Wijngaards
4bc1bfeb20 - Fixup ldns-testpkts, identical to ldns/examples. 
git-svn-id: file:///svn/unbound/trunk@2779 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-11-07 08:49:53 +00:00
Wouter Wijngaards
9aaff22d88 - update ldns-testpkts.c to ldns 1.6.14 version. 
git-svn-id: file:///svn/unbound/trunk@2774 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-10-08 10:24:50 +00:00
Wouter Wijngaards
9046a52364 - Fix that enables modules to register twice for the same 
serviced_query, without race conditions or administration issues.
  This should not happen with the current codebase, but it is robust.


git-svn-id: file:///svn/unbound/trunk@2730 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-31 11:33:06 +00:00
Wouter Wijngaards
b212b302e6 fixup warning. 
git-svn-id: file:///svn/unbound/trunk@2719 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-20 14:08:51 +00:00
Wouter Wijngaards
b9ed797a22 Test for ECC support for libNSS. 
git-svn-id: file:///svn/unbound/trunk@2700 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-22 15:20:56 +00:00
Wouter Wijngaards
25096aa3ab implement DNSSEC with libNSS: NSEC3, RSA, DSA, ECDSA, and DS hashes. 
make test succeeds.


git-svn-id: file:///svn/unbound/trunk@2699 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-22 14:31:29 +00:00
Wouter Wijngaards
ccf4099366 - work on --with-nss build option (for now, --with-libunbound-only). 
git-svn-id: file:///svn/unbound/trunk@2690 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-20 15:11:53 +00:00
Wouter Wijngaards
13a839d624 - Fix for accept spinning reported by OpenBSD. 
git-svn-id: file:///svn/unbound/trunk@2663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-08 12:08:55 +00:00