upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-05 22:39:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
7411 commits 23 branches 209 tags 124 MiB
Commit graph

4483 commits

Author SHA1 Message Date
George Thessalonikefs
ae2c2be1a5 Merge branch 'master' of github.com:NLnetLabs/unbound 2023-07-20 12:56:31 +02:00
George Thessalonikefs
bf37487dca - Merge #901 from Sergei Trofimovich: config: improve handling of 
unknown modules.
 2023-07-20 12:56:20 +02:00
W.C.A. Wijngaards
8d45c1592b - For #909: Fix RR class comparison. 2023-07-20 12:16:24 +02:00
George Thessalonikefs
27c028cf27 - Merge #909 from headshog: Numeric truncation when parsing TYPEXX and 
CLASSXX representation.
- For #909: Fix return values.
 2023-07-20 11:57:17 +02:00
George Thessalonikefs
299f55b0d1 - More clear description of the different auth-zone behaviors on the 
man page.
 2023-07-14 15:28:42 +02:00
George Thessalonikefs
52f0387cac - Merge #880 from chipitsine: services/authzone.c: remove redundant 
check.
 2023-07-13 11:52:14 +02:00
George Thessalonikefs
7240ecbeb0 - Merge #664 from tilan7763: Add prefetch support for subnet cache 
entries.
- For #664: Easier code flow for subnetcache prefetching.
- For #664: Add testcase.
- For #664: Rename subnet_prefetch tests to subnet_global_prefetch to
  differentiate from the new subnet prefetch support.
 2023-07-11 14:31:49 +02:00
George Thessalonikefs
0afe58a06e - Skip the 00-lint test. splint is not maintained; it either does not 
work or produces false positives. Static analysis is handled in the
  clang test.
 2023-07-03 15:38:16 +02:00
George Thessalonikefs
2069271384 - Merge #802: add validation EDEs to queries where the CD bit is set. 
- For #802: Cleanup comments and add RCODE check for CD bit test case.
 2023-07-03 14:48:39 +02:00
W.C.A. Wijngaards
5aa47fb1fa - Fix dereference of NULL variable warning in mesh_do_callback. 2023-07-03 13:50:39 +02:00
George Thessalonikefs
1962991937 - Merge #739: Add SVCB dohpath support. 
- Code cleanup for sldns_str2wire_svcparam_key_lookup.
 2023-07-03 11:02:05 +02:00
W.C.A. Wijngaards
48a6ff14a4 - Fix #906: warning: ‘Py_SetProgramName’ is deprecated. 2023-07-03 10:23:37 +02:00
George Thessalonikefs
380e3de140 - Merge #827 from rcmcdonald91: Eliminate unnecessary Python reloading 
which causes memory leaks.
 2023-06-29 13:02:27 +02:00
George Thessalonikefs
fc8bf269e9 - More fixes for reference counting for python module and clean up 
failure code.
 2023-06-29 12:26:49 +02:00
W.C.A. Wijngaards
7696074fa9 - Fix python modules with multiple scripts, by incrementing reference 
counts.
 2023-06-29 10:16:37 +02:00
George Thessalonikefs
bea61fc37c - Remove warning about unknown cast-function-type warning pragma. 2023-06-27 16:44:29 +02:00
George Thessalonikefs
41dac805f5 - Merge #892: Add cachedb hit stat. Introduces 'num.query.cachedb' as 
a new statistical counter.
 2023-06-27 12:46:26 +02:00
W.C.A. Wijngaards
2207a55107 Add changelog and contrib/README mention for #903 
- Merge #903: contrib: add yocto compatible init script.
 2023-06-22 15:41:17 +02:00
Philip Homburg
64476280ed Changelog for #887 and #516 2023-06-15 11:09:08 +02:00
George Thessalonikefs
0f1ea7e490 - Properly handle all return values of worker_check_request during 
early EDE code.
- Do not check the incoming request more than once.
 2023-06-14 11:40:59 +02:00
W.C.A. Wijngaards
f9317d65b3 - Fix for uncertain unit test for doh buffer size events. 2023-06-12 12:39:00 +02:00
W.C.A. Wijngaards
2cf0359ffe Changelog note for #895 
- Fix #895: python + sysconfig gives ANOTHER path comparing to
  distutils.
 2023-06-12 10:39:44 +02:00
W.C.A. Wijngaards
35885e5a70 - Merge #896: Fix: #895: pythonmodule: add all site-packages 
directories to sys.path.
 2023-06-12 10:30:50 +02:00
W.C.A. Wijngaards
512236d705 - Fix unbound-dnstap-socket time fraction conversion for printout. 2023-05-25 16:27:19 +02:00
W.C.A. Wijngaards
d57986724e - Fix unbound-dnstap-socket printout when no query is present. 2023-05-25 14:30:25 +02:00
W.C.A. Wijngaards
59fd48c226 - Fix to remove unused variables from RPZ clientip data structure. 2023-05-19 16:36:31 +02:00
W.C.A. Wijngaards
da78c42f88 - Fix RPZ removal of client-ip, nsip, nsdname triggers from IXFR. 2023-05-19 14:38:41 +02:00
W.C.A. Wijngaards
a07ccbae9a - Fix to print debug log for ancillary data with correct IP address. 2023-05-16 09:21:21 +02:00
W.C.A. Wijngaards
2a2598dbf2 - Fix #888: [FR] Use kernel timestamps for dnstap. 2023-05-16 08:50:38 +02:00
W.C.A. Wijngaards
1fb78afc29 - Fix warning in windows compile, in set_recvtimestamp. 2023-05-11 09:32:59 +02:00
W.C.A. Wijngaards
b2cba7b707 - Fix doxygen in addr_to_nat64 header definition. 2023-05-04 15:53:05 +02:00
W.C.A. Wijngaards
8dd09e31d2 - Fix to remove unused whitespace from acx_nlnetlabs.m4 and config.h. 2023-05-04 11:17:06 +02:00
W.C.A. Wijngaards
806c3d7330 - Fix #885: Error: util/configlexer.c: No such file or directory, 
adds error messages explaining to install flex and bison.
 2023-05-04 11:12:11 +02:00
George Thessalonikefs
2695eb9d1a Changelog entry for #722: 
- Merge #722 from David 'eqvinox' Lamparter: NAT64 support.
- For #722: minor fixes, formatting, refactoring.
 2023-05-01 18:32:40 +02:00
W.C.A. Wijngaards
70c2b587fc - Fix RPZ IP responses with trigger rpz-drop on cache entries, that 
they are dropped.
 2023-05-01 09:26:17 +02:00
Philip Homburg
a50ddd7ab9 Changelog for #860 2023-04-26 17:15:59 +02:00
W.C.A. Wijngaards
8058dc9127 - Fix for #882: document variable to stop doxygen warning. 2023-04-26 14:07:33 +02:00
W.C.A. Wijngaards
144f29638c - Fix for #882: small changes, date updated in Copyright for 
util/timeval_func.c and util/timeval_func.h. Man page entries and
  example entry.
 2023-04-26 13:49:33 +02:00
W.C.A. Wijngaards
fe46bc47d7 - Fix for #878: Invalid IP address in unbound.conf causes Segmentation 
Fault on OpenBSD.
 2023-04-19 09:56:31 +02:00
W.C.A. Wijngaards
e11d206a82 Changelog entry for #875 and #874. 
- Merge #875: change obsolete txt URL in unbound-anchor.c to point
  to RFC 7958, and Fix #874.
 2023-04-14 11:19:25 +02:00
W.C.A. Wijngaards
d6c33e1757 - Fix build badge, from failing travis link to github ci action link. 2023-04-13 11:22:11 +02:00
W.C.A. Wijngaards
7033234a48 - Fix for #870: Add test case for the qname minimisation and CNAME. 2023-04-06 10:04:04 +02:00
W.C.A. Wijngaards
c7618a9b80 - Fix #870: NXDOMAIN instead of NOERROR rcode when asked for existing 
CNAME record.
 2023-04-04 10:06:16 +02:00
Philip Homburg
312035f58a Changelog for issue #676 2023-03-24 14:54:14 +01:00
Philip Homburg
e850ca67f1 Changelog for issue #851 2023-03-21 13:54:27 +01:00
W.C.A. Wijngaards
8f83c0a2cb - iana portlist update. 2023-03-20 14:55:55 +01:00
George Thessalonikefs
d7e7761141 - Fix #812, fix #846, by using the SSL_OP_IGNORE_UNEXPECTED_EOF option 
to ignore the unexpected eof while reading in openssl >= 3.
 2023-03-17 14:39:37 +01:00
W.C.A. Wijngaards
a97d7175a6 - Fix ssl.h include brackets, instead of quotes. 2023-03-16 15:40:43 +01:00
W.C.A. Wijngaards
4f25d75d4b - Fix unbound-dnstap-socket test program to reply the finish frame 
over a TLS connection correctly.
 2023-03-14 16:57:37 +01:00
W.C.A. Wijngaards
d97c174f50 - Fix for #852: Completion of error handling. 2023-02-23 13:38:29 +01:00
Philip Homburg
ed07c5424d Changelog entry for issue #825 2023-02-21 09:29:39 +01:00
George Thessalonikefs
02a77f0567 Changelog entry for 
- Clean up iterator/iterator.c::error_response_cache() and allow for
  better interaction with serve-expired, prefetch and cached error
  responses.
 2023-02-10 16:54:44 +01:00
George Thessalonikefs
96c70d91ca - Add testcase for refreshing expired error responses. 2023-02-09 12:44:01 +01:00
W.C.A. Wijngaards
488811157e - Fix to git ignore the library symbol file that configure can create. 2023-02-09 12:08:27 +01:00
W.C.A. Wijngaards
e225e4bcab - Fix consistency of unit test without roundrobin answers for the 
cnametooptout unit test.
 2023-02-09 11:46:33 +01:00
George Thessalonikefs
1c1c5d72d3 Changelog entry for 
- Allow TTL refresh of expired error responses.
 2023-02-09 10:52:56 +01:00
W.C.A. Wijngaards
a8977df4d9 - Fix unit tests for spurious empty messages. 2023-02-09 10:38:55 +01:00
W.C.A. Wijngaards
4953daa016 - Fix to ignore entirely empty responses, and try at another authority. 
This turns completely empty responses, a type of noerror/nodata into
  a servfail, but they do not conform to RFC2308, and the retry can
  fetch improved content.
 2023-02-09 09:56:40 +01:00
W.C.A. Wijngaards
5ab5b3b43a - Fix #841: Unbound won't build with aaaa-filter-iterator.patch. 2023-02-08 11:36:52 +01:00
George Thessalonikefs
24e6d1e18e - Add duration variable for speed_local.test. 2023-01-30 11:33:58 +01:00
W.C.A. Wijngaards
c482999898 - Fix acx_nlnetlabs.m4 for -Wstrict-prototypes. 2023-01-26 10:54:38 +01:00
George Thessalonikefs
6bf677e7de Fix #833: [FR] Ability to set the Redis password. 2023-01-23 11:45:07 +01:00
W.C.A. Wijngaards
d666e9bd13 - Fix #835: [FR] Ability to use Redis unix sockets. 2023-01-23 10:10:23 +01:00
W.C.A. Wijngaards
77f15428c9 - Add #835: [FR] Ability to use Redis unix sockets. 2023-01-23 10:09:28 +01:00
W.C.A. Wijngaards
111e66ae64 Changelog note for #819, generate configparser.c and comment syntax change. 
- Merge #819: Added new static zone type block_a to suppress all A
  queries for specific zones.
 2023-01-20 16:19:20 +01:00
W.C.A. Wijngaards
6afdc336ba - Fix test for new default. 2023-01-19 16:06:30 +01:00
W.C.A. Wijngaards
c9233f8429 - Set default for harden-unknown-additional to no. So that it does 
not hamper future protocol developments.
 2023-01-19 15:45:10 +01:00
W.C.A. Wijngaards
8df1e58209 - Add harden-unknown-additional option. Default on and it removes 
unknown records from the authority section and additional section.
  Thanks to Xiang Li, from NISL Lab, Tsinghua University.
 2023-01-19 14:59:18 +01:00
W.C.A. Wijngaards
d69f875261 - Set max-udp-size default to 1232. This is the same default value as 
the default value for edns-buffer-size. It restricts client edns
  buffer size choices, and makes unbound behave similar to other DNS
  resolvers. The new choice, down from 4096 means it is harder to get
  large responses from Unbound. Thanks to Xiang Li, from NISL Lab,
  Tsinghua University.
 2023-01-19 14:16:17 +01:00
W.C.A. Wijngaards
b12ab31ae3 - Fix not following cleared RD flags potentially enables amplification 
DDoS attacks, reported by Xiang Li and Wei Xu from NISL Lab,
  Tsinghua University. The fix stops query loops, by refusing to send
  RD=0 queries to a forwarder, they still get answered from cache.
 2023-01-18 13:18:47 +01:00
W.C.A. Wijngaards
90d42148de - Improve documentation for #826, describe the large collisions amount. 2023-01-13 11:22:47 +01:00
W.C.A. Wijngaards
469133e8df Changelog note and documentation for #826 
- Merge #826: Аdd a metric about the maximum number of collisions in
  lrushah.
 2023-01-13 11:01:46 +01:00
W.C.A. Wijngaards
aa621f1c04 Code repository continues with version 1.17.2. 2023-01-12 10:21:28 +01:00
W.C.A. Wijngaards
0fed35a4b7 - Fix python version detection in configure. 2023-01-09 15:10:00 +01:00
W.C.A. Wijngaards
4517dcd439 - Fix python module install path detection. 2023-01-09 15:03:38 +01:00
W.C.A. Wijngaards
c5c4f6d40b Changelog note for 1.17.1rc2 fix. 
- Fix wildcard in hyperlocal zone service degradation, reported
  by Sergey Kacheev. This fix is included in 1.17.1rc2.
 2023-01-06 13:23:02 +01:00
W.C.A. Wijngaards
ba6325f24f - Fix #823: Response change to NODATA for some ANY queries since 
1.12, tested on 1.16.1.
 2023-01-06 09:16:59 +01:00
W.C.A. Wijngaards
2025946247 Changelog note for tag for 1.17.1rc1. 
- Tag for 1.17.1 release.
 2023-01-05 11:06:07 +01:00
W.C.A. Wijngaards
70260273a4 - Update github workflows to use checkout v3. 2023-01-02 13:30:03 +01:00
W.C.A. Wijngaards
1224cd9d25 - Fix windows compile for libunbound subprocess reap comm point closes. 2023-01-02 13:06:39 +01:00
George Thessalonikefs
0682d4371e - Merge #569 from JINMEI Tatuya: add keep-cache option to 
'unbound-control reload' to keep caches.
 2022-12-14 16:40:00 +01:00
George Thessalonikefs
af2ef61c49 - Merge #461 from Christian Allred: Add max-query-restarts option. 2022-12-13 15:54:51 +01:00
George Thessalonikefs
67cf625608 Merge branch 'master' of github.com:NLnetLabs/unbound 2022-12-13 13:59:42 +01:00
George Thessalonikefs
c61b2121b5 - Expose 'max-sent-count' as a configuration option; the 
default value retains Unbound's behavior.
 2022-12-13 13:57:07 +01:00
George Thessalonikefs
859d0f2dfe - Expose 'statistics-inhibit-zero' as a configuration option; the 
default value retains Unbound's behavior.
 2022-12-13 10:47:37 +01:00
W.C.A. Wijngaards
1a2e6aabac - Fix to wrap Makefile scripts directory in quotes for uninstall. 2022-12-13 09:03:52 +01:00
W.C.A. Wijngaards
726aa5b0f5 Changelog note for #808 
- Merge #808: Wrap Makefile script's directory variables in quotes.
 2022-12-13 08:53:44 +01:00
W.C.A. Wijngaards
6b8642b662 Fix date. 2022-12-01 13:05:02 +01:00
W.C.A. Wijngaards
5c041c0ba9 - Fix #773: When used with systemd-networkd, unbound does not start 
until systemd-networkd-wait-online.service times out.
 2022-12-01 13:04:05 +01:00
George Thessalonikefs
d7a9def160 - Clear documentation for interactivity between the subnet module and 
the serve-expired and prefetch configuration options.
 2022-11-30 14:45:36 +01:00
George Thessalonikefs
ef8111ece7 Merge branch 'master' of github.com:NLnetLabs/unbound 2022-11-30 14:34:00 +01:00
George Thessalonikefs
90f6cb1158 - Add SVCB and HTTPS to the types removed by 'unbound-control flush'. 2022-11-30 14:33:16 +01:00
W.C.A. Wijngaards
effbf99281 - Fix #782: Segmentation fault in stats.c:404. 2022-11-30 10:18:27 +01:00
Philip Homburg
81861aee05 Changelog entry for #720 2022-11-29 16:20:52 +01:00
W.C.A. Wijngaards
6f7da59b77 - Fix for the ignore of tcp events for closed comm points, preserve 
the use after free protection features.
 2022-11-28 10:04:52 +01:00
George Thessalonikefs
896f7a8306 - Ignore expired error responses. 2022-11-22 17:44:55 +01:00
W.C.A. Wijngaards
f72116883b - Fix #779: [doc] Missing documention in ub_resolve_event() for 
callback parameter was_ratelimited.
 2022-11-11 11:28:15 +01:00
George Thessalonikefs
4e305e644b - Complementary fix for distutils.sysconfig deprecation in Python 3.10 
to commit 62c5039ab9.
 2022-11-09 11:41:28 +01:00
W.C.A. Wijngaards
89d9b25090 - iana portlist update. 2022-11-08 15:24:24 +01:00
W.C.A. Wijngaards
dda1d9544c - Fix #775: libunbound: subprocess reap causes parent process reap 
to hang.
 2022-11-08 15:04:05 +01:00