1029 commits

Author	SHA1	Message	Date
Ralph Dolmans	014142d7bf	Qname minimisation review fixes ... git-svn-id: file:///svn/unbound/trunk@3561 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-12-01 13:14:00 +00:00
Wouter Wijngaards	bb7b4db353	Fixup #724 in unbound-checkconf and fname_after_chroot calls. ... git-svn-id: file:///svn/unbound/trunk@3558 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-12-01 09:12:30 +00:00
Wouter Wijngaards	3ee1dc25d5	yacced,lexed, include for undeclared function and make depend. ... git-svn-id: file:///svn/unbound/trunk@3555 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-12-01 08:11:48 +00:00
Ralph Dolmans	a05bf09811	Implemented qname minimisation ... git-svn-id: file:///svn/unbound/trunk@3554 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-30 16:10:26 +00:00
Wouter Wijngaards	84cf2c8afd	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3549 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-24 11:01:26 +00:00
Wouter Wijngaards	152458c40b	- spelling fixes from Igor Sobrado Delgado. ... git-svn-id: file:///svn/unbound/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-18 14:11:46 +00:00
Wouter Wijngaards	79b087b423	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3538 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-17 11:41:05 +00:00
Wouter Wijngaards	2bdea62a9e	- Fix #594. libunbound: optionally use libnettle for crypto. ... Contributed by Luca Bruno. Added --with-nettle for use with --with-libunbound-only. git-svn-id: file:///svn/unbound/trunk@3533 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-17 09:43:07 +00:00
Wouter Wijngaards	1ebcdeac38	- patch from Doug Hogan for SSL_OP_NO_SSLvx options. ... git-svn-id: file:///svn/unbound/trunk@3525 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-10-29 08:32:58 +00:00
Wouter Wijngaards	71f891fae8	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3503 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-10-09 08:08:31 +00:00
Wouter Wijngaards	c3a45dde15	- Default for ssl-port is port 853, the temporary port assignment ... for secure domain name system traffic. If you used to rely on the older default of port 443, you have to put a clause in unbound.conf for that. The new value is likely going to be the standardised port number for this traffic. git-svn-id: file:///svn/unbound/trunk@3502 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-10-09 07:55:21 +00:00
Wouter Wijngaards	032027dc56	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3486 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-09-22 08:04:45 +00:00
Wouter Wijngaards	897ee33df1	- Fix config globbed include chroot treatment, this fixes reload of ... globs (patch from Dag-Erling Smørgrav). git-svn-id: file:///svn/unbound/trunk@3485 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-09-22 08:04:19 +00:00
Wouter Wijngaards	e65fdc31aa	- Change default of harden-algo-downgrade to off. This is lenient ... for algorithm rollover. git-svn-id: file:///svn/unbound/trunk@3478 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-08-24 15:05:10 +00:00
Wouter Wijngaards	06838a2bad	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3477 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-08-24 12:52:40 +00:00
Wouter Wijngaards	ee263cf6c5	- Added permit-small-holddown config to debug fast 5011 rollover. ... git-svn-id: file:///svn/unbound/trunk@3462 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-30 11:52:12 +00:00
Wouter Wijngaards	8a6817d1c9	- please afl-gcc (llvm) for uninitialised variable warning. ... git-svn-id: file:///svn/unbound/trunk@3461 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-30 08:51:51 +00:00
Wouter Wijngaards	9eb54a9a89	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3459 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-24 11:54:08 +00:00
Wouter Wijngaards	eed106b5e0	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3455 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-21 14:52:53 +00:00
Wouter Wijngaards	1d7d43f9b5	Fixup #if ... git-svn-id: file:///svn/unbound/trunk@3454 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-21 14:37:15 +00:00
Wouter Wijngaards	583b376217	- Fix configure to detect SSL_CTX_set_ecdh_auto. ... git-svn-id: file:///svn/unbound/trunk@3453 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-21 14:30:49 +00:00
Wouter Wijngaards	78c8224655	- Enable ECDHE for servers. Where available, use ... SSL_CTX_set_ecdh_auto() for TLS-wrapped server configurations to enable ECDHE. Otherwise, manually offer curve p256. Client connections should automatically use ECDHE when available. (thanks Daniel Kahn Gillmor) git-svn-id: file:///svn/unbound/trunk@3452 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-20 06:56:01 +00:00
Willem Toorop	fa20564699	SSL_CTX_use_certificate_chain_file() should be used instead of the ... SSL_CTX_use_certificate_file() function in order to allow the use of complete certificate chains even when no trusted CA storage is used or when the CA issuing the certificate shall not be added to the trusted CA storage. Thanks Daniel Kahn Gillmore git-svn-id: file:///svn/unbound/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-07-18 12:34:37 +00:00
Wouter Wijngaards	1252634423	nicer code for int_max. ... git-svn-id: file:///svn/unbound/trunk@3443 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-29 13:37:34 +00:00
Wouter Wijngaards	0c43c020b1	Fixup ... git-svn-id: file:///svn/unbound/trunk@3441 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-29 10:19:14 +00:00
Wouter Wijngaards	41507d016c	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3440 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-29 07:09:04 +00:00
Wouter Wijngaards	c29276ba71	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3436 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-26 07:33:03 +00:00
Wouter Wijngaards	cb90782087	- Fix #677 Fix DNAME responses from cache that failed internal chain ... test. git-svn-id: file:///svn/unbound/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-26 07:27:32 +00:00
Wouter Wijngaards	94a6478e05	- SOA negative TTL is capped at minimumttl in its rdata section. ... - cache-max-negative-ttl config option, default 3600. git-svn-id: file:///svn/unbound/trunk@3431 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-05-29 14:51:36 +00:00
Wouter Wijngaards	bf25a42b67	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3426 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-05-21 07:29:42 +00:00
Wouter Wijngaards	f03d3b870e	- caps-whitelist in unbound.conf allows whitelist of loadbalancers ... that cannot work with caps-for-id or its fallback. git-svn-id: file:///svn/unbound/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-05-01 12:36:16 +00:00
Wouter Wijngaards	ddff09a710	- iana portlist update. ... git-svn-id: file:///svn/unbound/trunk@3408 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-22 08:19:12 +00:00
Wouter Wijngaards	ff898bfdd6	- Synthesize ANY responses from cache. Does not search exhaustively, ... but MX,A,AAAA,SOA,NS also CNAME. - Fix leaked dns64prefix configuration string. git-svn-id: file:///svn/unbound/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-17 14:58:07 +00:00
Wouter Wijngaards	628ff05285	- Ratelimit does not apply to prefetched queries, and ratelimit-factor ... is default 10. Repeated normal queries get resolved and with prefetch stay in the cache. git-svn-id: file:///svn/unbound/trunk@3399 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-16 14:18:50 +00:00
Wouter Wijngaards	e25ac1c2eb	- Add local-zone type inform_deny, that logs query and drops answer. ... git-svn-id: file:///svn/unbound/trunk@3398 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-16 08:23:06 +00:00
Wouter Wijngaards	55412b2645	- Fix that get_option for cache-sizes does not print double newline. ... git-svn-id: file:///svn/unbound/trunk@3395 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 13:43:44 +00:00
Wouter Wijngaards	e30a90febc	- ratelimit feature, ratelimit: 100, or some sensible qps, can be ... used to turn it on. It ratelimits recursion effort per zone. For particular names you can configure exceptions in unbound.conf. git-svn-id: file:///svn/unbound/trunk@3391 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 09:59:57 +00:00
Wouter Wijngaards	40c0bbf371	- Fix #660: Fix interface-automatic broken in the presence of ... asymmetric routing. git-svn-id: file:///svn/unbound/trunk@3383 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-02 10:02:01 +00:00
Wouter Wijngaards	b2bdce46be	- rename ldns subdirectory to sldns to avoid name collision. ... git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 10:21:38 +00:00
Wouter Wijngaards	e3994c1273	Fixed like Maciej did. ... git-svn-id: file:///svn/unbound/trunk@3376 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-23 20:42:47 +00:00
Wouter Wijngaards	bd404f5fd3	- Fix segfault on user not found at startup (from Maciej Soltysiak). ... git-svn-id: file:///svn/unbound/trunk@3375 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-23 20:20:15 +00:00
Wouter Wijngaards	cd2e99dafd	Do not divide by zero. ... git-svn-id: file:///svn/unbound/trunk@3374 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-20 16:03:14 +00:00
Wouter Wijngaards	6feb8fb6a5	- Fixes to add integer overflow checks on allocation (defense in depth). ... git-svn-id: file:///svn/unbound/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-20 15:36:25 +00:00
Wouter Wijngaards	a1d006bc77	comment spelling improvement. ... git-svn-id: file:///svn/unbound/trunk@3370 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-19 09:58:49 +00:00
Wouter Wijngaards	77088b12ff	- Add ip-transparent config option for bind to non-local addresses. ... git-svn-id: file:///svn/unbound/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-19 09:50:35 +00:00
Wouter Wijngaards	e9e1b464a6	extra sanity check for integer overflow. ... git-svn-id: file:///svn/unbound/trunk@3368 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-17 16:22:04 +00:00
Wouter Wijngaards	6c6ef98b38	please lint. ... git-svn-id: file:///svn/unbound/trunk@3367 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-17 09:44:57 +00:00
Wouter Wijngaards	0f9fda81e6	please lint. ... git-svn-id: file:///svn/unbound/trunk@3366 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-17 09:38:47 +00:00
Wouter Wijngaards	63b5d109f8	- Use reallocarray for integer overflow protection, patch submitted ... by Loganaden Velvindron. git-svn-id: file:///svn/unbound/trunk@3365 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-17 08:24:24 +00:00
Wouter Wijngaards	887fa791f2	please lint. ... git-svn-id: file:///svn/unbound/trunk@3363 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-16 11:51:30 +00:00