upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-28 17:37:33 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
5651 commits 24 branches 209 tags 132 MiB
Commit graph

362 commits

Author SHA1 Message Date
Wouter Wijngaards
425dec3037 - Fix #1417: [dnscrypt] shared secret cache counters, and works when 
dnscrypt is not enabled.


git-svn-id: file:///svn/unbound/trunk@4326 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-31 08:06:17 +00:00
Wouter Wijngaards
3dc206c721 - Fix #1407: Add ECS options check to unbound-checkconf. 
git-svn-id: file:///svn/unbound/trunk@4307 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-22 07:43:59 +00:00
Ralph Dolmans
7b18274d7e - Added stats for queries that have been ratelimited by domain recursion. 
git-svn-id: file:///svn/unbound/trunk@4292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-08-03 12:52:33 +00:00
Wouter Wijngaards
abb6cfdebd - upgrade aclocal(pkg.m4 0.29.1), config.guess(2016-10-02), 
config.sub(2016-09-05).
- annotate case statement fallthrough for gcc 7.1.1.
- flex output from flex 2.6.1.
- snprintf of thread number does not warn about truncated string.


git-svn-id: file:///svn/unbound/trunk@4278 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-24 09:04:18 +00:00
Wouter Wijngaards
67f54eea66 - Fix openssl 1.1.0 load of ssl error strings from ssl init. 
git-svn-id: file:///svn/unbound/trunk@4260 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 13:37:37 +00:00
Wouter Wijngaards
5fba7e4339 - Fix for unbound-checkconf, check ipsecmod-hook if ipsecmod is turned 
on.


git-svn-id: file:///svn/unbound/trunk@4257 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-07-03 07:14:37 +00:00
Wouter Wijngaards
92d625b648 - better module memory lookup, fix of unbound-control shm names for 
module memory printout of statistics.


git-svn-id: file:///svn/unbound/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 14:16:59 +00:00
George Thessalonikefs
491b0a26e4 - Implemented opportunistic IPsec support module (ipsecmod). 
- Some whitespace fixup.


git-svn-id: file:///svn/unbound/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-16 12:39:24 +00:00
Wouter Wijngaards
eb67febcc4 - Fix #1258: Windows 10 X64 unbound 1.6.2 service will not start. 
git-svn-id: file:///svn/unbound/trunk@4139 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-05-01 14:41:40 +00:00
Ralph Dolmans
89c2383c71 - Fix #1252: more indentation inconsistencies. 
git-svn-id: file:///svn/unbound/trunk@4125 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-18 09:00:52 +00:00
Wouter Wijngaards
a482b5cf12 no lint for timeval. 
git-svn-id: file:///svn/unbound/trunk@4122 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 13:17:51 +00:00
Wouter Wijngaards
0f8b560bd5 more lint. 
git-svn-id: file:///svn/unbound/trunk@4121 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 13:11:54 +00:00
Wouter Wijngaards
17dd3370fc - (for 1.6.3:) unbound.h exports the shm stats structures. They use 
type long long and no ifdefs, and ub_ before the typenames.


git-svn-id: file:///svn/unbound/trunk@4117 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-13 12:47:29 +00:00
Ralph Dolmans
a8bfa02af1 - Also display ECS module memory stats in stats_shm 
git-svn-id: file:///svn/unbound/trunk@4107 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-11 13:37:39 +00:00
Wouter Wijngaards
897635b32b - Fix #1217: Add metrics to unbound-control interface showing 
crypted, cert request, plaintext and malformed queries (from
  Manu Bretelle).


git-svn-id: file:///svn/unbound/trunk@4084 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-04-03 09:03:32 +00:00
Ralph Dolmans
b0fd814975 - Merge EDNS Client subnet implementation from feature branch into main branch, 
using new EDNS processing framework.


git-svn-id: file:///svn/unbound/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-21 12:08:17 +00:00
Wouter Wijngaards
2b9d47ff01 - unbound-control list local zone and data commands listed in the 
help output.


git-svn-id: file:///svn/unbound/trunk@4046 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-09 16:25:32 +00:00
Wouter Wijngaards
cae9809e11 - Response actions based on IP address from Jinmei Tatuya (Infoblox). 
git-svn-id: file:///svn/unbound/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-03-07 14:58:51 +00:00
Wouter Wijngaards
975c915632 fixed for lint 
git-svn-id: file:///svn/unbound/trunk@4023 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-02-23 14:17:58 +00:00
Wouter Wijngaards
35ae8ef313 - Patch from Luiz Fernando Softov for Stats Shared Memory. 
- unbound-control stats_shm command prints stats using shared memory,
  which uses less cpu.


git-svn-id: file:///svn/unbound/trunk@4020 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-02-23 12:05:05 +00:00
Wouter Wijngaards
367c3f034e - Include root trust anchor id 20326 in unbound-anchor. 
git-svn-id: file:///svn/unbound/trunk@4000 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-02-07 15:22:31 +00:00
Wouter Wijngaards
42c2282f12 complete ellipsis. 
git-svn-id: file:///svn/unbound/trunk@3987 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-12 15:57:22 +00:00
Wouter Wijngaards
8e23542b85 - Fix #1206: Some view-related commands are missing from 'unbound-control -h' 
git-svn-id: file:///svn/unbound/trunk@3986 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-12 15:56:05 +00:00
Wouter Wijngaards
3a1ffe4c69 - Fix #1185: Source IP rate limiting, patch from Larissa Feng. 
git-svn-id: file:///svn/unbound/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9
 2017-01-05 13:57:12 +00:00
Wouter Wijngaards
631d2b4214 - Fix unbound-control and ipv6 only. 
git-svn-id: file:///svn/unbound/trunk@3962 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-13 14:21:15 +00:00
George Thessalonikefs
7b948b0647 - Added generic EDNS code for registering known EDNS option codes, 
bypassing the cache response stage and uniquifying mesh states. Four EDNS
  option lists were added to module_qstate (module_qstate.edns_opts_*) to
  store EDNS options from/to front/back side.
- Added two flags to module_qstate (no_cache_lookup, no_cache_store) that
  control the modules' cache interactions.
- Added code for registering inplace callback functions. The registered
  functions can be called just before replying with local data or Chaos,
  replying from cache, replying with SERVFAIL, replying with a resolved
  query, sending a query to a nameserver. The functions can inspect the
  available data and maybe change response/query related data (i.e. append
  EDNS options).
- Updated Python module for the above.
- Updated Python documentation.



git-svn-id: file:///svn/unbound/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-12-06 13:42:51 +00:00
Ralph Dolmans
61b23e3811 - Added local-zones and local-data bulk addition and removal functionality in 
unbound-control (local_zones, local_zones_remove, local_datas and
  local_datas_remove).                                   
- iana portlist update


git-svn-id: file:///svn/unbound/trunk@3941 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-30 11:22:29 +00:00
Wouter Wijngaards
92bff79d3d - Fix that with openssl 1.1 control-use-cert: no uses less cpu, by 
using no encryption over the unix socket.


git-svn-id: file:///svn/unbound/trunk@3936 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-25 16:14:14 +00:00
Ralph Dolmans
2dce3856cd Check and free data allocated by fname_after_chroot 
git-svn-id: file:///svn/unbound/trunk@3935 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-23 11:21:10 +00:00
Ralph Dolmans
11031a7d36 pass ssl_upstream as int to (lib)worker_send_query 
git-svn-id: file:///svn/unbound/trunk@3924 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 14:02:22 +00:00
Ralph Dolmans
efe248c46a - Added stub-ssl-upstream and forward-ssl-upstream options. 
git-svn-id: file:///svn/unbound/trunk@3923 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 12:07:52 +00:00
Wouter Wijngaards
fa81710d16 - configure detects ssl security level API function in the autoconf 
manner.  Every function on its own, so that other libraries (eg.
  LibreSSL) can develop their API without hindrance.


git-svn-id: file:///svn/unbound/trunk@3921 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 08:05:42 +00:00
Wouter Wijngaards
3b4cbcf631 Fixup #if at start of line, for portability. 
git-svn-id: file:///svn/unbound/trunk@3920 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-04 07:58:57 +00:00
Ralph Dolmans
589eabc0cb Set openssl security level to 0 when using aNULL ciphers 
git-svn-id: file:///svn/unbound/trunk@3919 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-11-03 16:59:00 +00:00
Wouter Wijngaards
70dbd1c382 - Fixup const void cast warning. 
git-svn-id: file:///svn/unbound/trunk@3884 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-17 15:17:15 +00:00
Wouter Wijngaards
223c7c0080 - Fixup const void cast warning. 
git-svn-id: file:///svn/unbound/trunk@3883 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-10-17 15:05:20 +00:00
Wouter Wijngaards
145bdd7466 - Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. 
git-svn-id: file:///svn/unbound/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-30 09:37:20 +00:00
Wouter Wijngaards
52dbaa4ac1 - Fix #838: 1.5.10 cannot be built on Solaris, undefined PATH_MAX. 
git-svn-id: file:///svn/unbound/trunk@3871 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-29 07:00:31 +00:00
Wouter Wijngaards
42d2190343 - Test for openssl init_crypto and init_ssl functions. 
git-svn-id: file:///svn/unbound/trunk@3860 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-15 12:03:10 +00:00
Wouter Wijngaards
1fe24566ad please lint but also allow larger structure 
git-svn-id: file:///svn/unbound/trunk@3855 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:38:16 +00:00
Wouter Wijngaards
9d4eb4cac5 - Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len. 
git-svn-id: file:///svn/unbound/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-13 11:35:33 +00:00
Wouter Wijngaards
1508a5bb2c - Fix incomplete prototypes reported by Dag-Erling Smørgrav. 
git-svn-id: file:///svn/unbound/trunk@3848 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-05 07:23:23 +00:00
Wouter Wijngaards
7ef6c46aaf Fixup for defines not funcs 
git-svn-id: file:///svn/unbound/trunk@3845 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-02 11:20:21 +00:00
Wouter Wijngaards
3514843818 - Fix compile with openssl 1.1.0 with api=1.1.0. 
git-svn-id: file:///svn/unbound/trunk@3844 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-02 09:59:09 +00:00
Wouter Wijngaards
a03a3d1d55 - RFC 7958 is now out, updated docs for unbound-anchor. 
git-svn-id: file:///svn/unbound/trunk@3839 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-09-01 07:08:22 +00:00
Wouter Wijngaards
2a39f48deb Fixup _get_osfhandle calls 
git-svn-id: file:///svn/unbound/trunk@3809 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-05 07:46:16 +00:00
Wouter Wijngaards
941b31f90b - Fixes for 64bit windows compile. 
git-svn-id: file:///svn/unbound/trunk@3808 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-05 07:40:13 +00:00
Wouter Wijngaards
1394dcba69 - Fix #787: outgoing-interface netblock/64 ipv6 option to use linux 
freebind to use 64bits of entropy for every query with random local
  part.


git-svn-id: file:///svn/unbound/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-04 14:51:30 +00:00
Wouter Wijngaards
b6b3e2b914 - For #787: prefer-ip6 option for unbound.conf prefers to send 
upstream queries to ipv6 servers.


git-svn-id: file:///svn/unbound/trunk@3803 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-07-04 14:49:49 +00:00
Wouter Wijngaards
c697604224 - Fix #784: Build configure assumess that having getpwnam means there 
is endpwent function available.
- Updated repository with newer flex and bison output.


git-svn-id: file:///svn/unbound/trunk@3799 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-27 08:00:55 +00:00
Wouter Wijngaards
2fffe65332 - Fix directory: fix for unbound-checkconf, it restores cwd. 
git-svn-id: file:///svn/unbound/trunk@3783 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-13 13:33:51 +00:00
Wouter Wijngaards
17302c0e23 - Better help text from -h (from Ray Griffith). 
git-svn-id: file:///svn/unbound/trunk@3753 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-06-06 07:38:34 +00:00
Wouter Wijngaards
031caba9c0 - and also generic edns options for upstream messages (and replies). 
after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID),
  to insert use edns_opt_append(edns, region, code, len, bindata) on
  the opt_list passed to send_query, or in edns_opt_inplace_reply.


git-svn-id: file:///svn/unbound/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-05-31 16:55:22 +00:00
Wouter Wijngaards
f103787644 - cachedb module framework (empty). 
git-svn-id: file:///svn/unbound/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-14 14:50:18 +00:00
Wouter Wijngaards
f1d01113d2 - Fix #753: document dump_requestlist is for first thread. 
git-svn-id: file:///svn/unbound/trunk@3697 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-04-12 15:10:31 +00:00
Wouter Wijngaards
e9f954b828 - load gost algorithm if digest is seen before key algorithm. 
git-svn-id: file:///svn/unbound/trunk@3630 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-19 12:17:03 +00:00
Wouter Wijngaards
03d43b3c2e - load gost algorithm into unbound-host. 
git-svn-id: file:///svn/unbound/trunk@3628 be551aaa-1e26-0410-a405-d3ace91eadb9
 2016-02-19 12:11:36 +00:00
Ralph Dolmans
1efbd605b4 Fix #729: omit use of escape sequences in echo since they are not portable (unbound-control-setup) 
git-svn-id: file:///svn/unbound/trunk@3587 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-12-15 11:00:59 +00:00
Wouter Wijngaards
9b26f1c37a - Fixup 724 for unbound-control. 
git-svn-id: file:///svn/unbound/trunk@3576 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-12-08 08:15:55 +00:00
Wouter Wijngaards
bb7b4db353 Fixup #724 in unbound-checkconf and fname_after_chroot calls. 
git-svn-id: file:///svn/unbound/trunk@3558 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-12-01 09:12:30 +00:00
Wouter Wijngaards
152458c40b - spelling fixes from Igor Sobrado Delgado. 
git-svn-id: file:///svn/unbound/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-11-18 14:11:46 +00:00
Wouter Wijngaards
92a31c1653 - Fix #718: Fix unbound-control-setup with support for env 
without HEREDOC bash support.


git-svn-id: file:///svn/unbound/trunk@3527 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-11-03 08:13:05 +00:00
Wouter Wijngaards
1ebcdeac38 - patch from Doug Hogan for SSL_OP_NO_SSLvx options. 
git-svn-id: file:///svn/unbound/trunk@3525 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-29 08:32:58 +00:00
Wouter Wijngaards
dd174820dc windows portability. 
git-svn-id: file:///svn/unbound/trunk@3521 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-27 15:35:08 +00:00
Wouter Wijngaards
aebee7b95c portability fixes. 
git-svn-id: file:///svn/unbound/trunk@3516 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-27 10:39:18 +00:00
Wouter Wijngaards
374ee84b27 - detect libexpat without xml_StopParser function. 
git-svn-id: file:///svn/unbound/trunk@3515 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-27 10:22:05 +00:00
Wouter Wijngaards
40c139cd8f - Fix #712: unbound-anchor appears to not fsync root.key. 
git-svn-id: file:///svn/unbound/trunk@3512 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-10-22 07:06:31 +00:00
Wouter Wijngaards
0d38ea6b3a - Fix mktime in unbound-anchor not using UTC. 
git-svn-id: file:///svn/unbound/trunk@3467 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-08-03 15:00:56 +00:00
Willem Toorop
fa20564699 SSL_CTX_use_certificate_chain_file() should be used instead of the 
SSL_CTX_use_certificate_file() function in order to allow the use of
complete certificate chains even when no trusted CA storage is used or
when the CA issuing the certificate shall not be added to the trusted
CA storage.

Thanks Daniel Kahn Gillmore


git-svn-id: file:///svn/unbound/trunk@3451 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-07-18 12:34:37 +00:00
Wouter Wijngaards
85192d4569 - unbound-control ratelimit_list lists high rate domains. 
git-svn-id: file:///svn/unbound/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-10 12:13:59 +00:00
Wouter Wijngaards
53008d7969 - unbound-control list_insecure command shows the negative trust 
anchors currently configured, patch from Jelte Jansen.


git-svn-id: file:///svn/unbound/trunk@3389 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-04-07 13:50:09 +00:00
Wouter Wijngaards
b2bdce46be - rename ldns subdirectory to sldns to avoid name collision. 
git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-26 10:21:38 +00:00
Wouter Wijngaards
6feb8fb6a5 - Fixes to add integer overflow checks on allocation (defense in depth). 
git-svn-id: file:///svn/unbound/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-20 15:36:25 +00:00
Wouter Wijngaards
3568ea8bb5 - Updated default keylength in unbound-control-setup to 3k. 
git-svn-id: file:///svn/unbound/trunk@3361 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-03-12 15:34:03 +00:00
Wouter Wijngaards
397cb6ff55 Solaris portability fix. 
git-svn-id: file:///svn/unbound/trunk@3327 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-30 15:34:27 +00:00
Wouter Wijngaards
4de0734ec8 - unbound-checkconf -f prints chroot with pidfile path. 
git-svn-id: file:///svn/unbound/trunk@3316 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-16 14:31:02 +00:00
Wouter Wijngaards
f890257321 - Cast sun_len sizeof to socklen_t. 
git-svn-id: file:///svn/unbound/trunk@3312 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-12 08:20:43 +00:00
Wouter Wijngaards
d6ba537156 please lint on FreeBSD 
git-svn-id: file:///svn/unbound/trunk@3308 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:49:34 +00:00
Wouter Wijngaards
f46bcc5b6f please lint. 
git-svn-id: file:///svn/unbound/trunk@3305 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:18:03 +00:00
Wouter Wijngaards
df73be98bd - patch for remote control over local sockets, from Dag-Erling 
Smorgrav, Ilya Bakulin.  Use control-interface: /path/sock and
  control-use-cert: no.


git-svn-id: file:///svn/unbound/trunk@3304 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-06 14:12:59 +00:00
Wouter Wijngaards
724a4f3ae0 - patch from Brad Smith that fixes DESTDIR in unbound-control-setup 
for installs where config is not in the prefix location.


git-svn-id: file:///svn/unbound/trunk@3297 be551aaa-1e26-0410-a405-d3ace91eadb9
 2015-01-05 13:20:04 +00:00
Wouter Wijngaards
be954379f0 - review fix from Ralph. 
git-svn-id: file:///svn/unbound/trunk@3262 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-11-11 14:27:35 +00:00
Wouter Wijngaards
7084c20f88 - Disabled use of SSLv3 in remote-control and ssl-upstream. 
git-svn-id: file:///svn/unbound/trunk@3248 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-27 09:26:48 +00:00
Wouter Wijngaards
1c42e5f3f9 - Fix unbound-checkconf check for module config with dns64 module. 
git-svn-id: file:///svn/unbound/trunk@3238 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-10-10 07:07:58 +00:00
Wouter Wijngaards
0c7d24f655 - Fix #603: unbound-checkconf -o <option> should skip verification 
checks.


git-svn-id: file:///svn/unbound/trunk@3207 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-08-18 07:21:01 +00:00
Wouter Wijngaards
e33d9da5ea Fix dependency on -lrt and please lint. 
git-svn-id: file:///svn/unbound/trunk@3168 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-07-11 12:27:20 +00:00
Wouter Wijngaards
e445cc74af - arc4random in compat/ and getentropy, explicit_bzero, chacha for 
dependencies, from OpenBSD.  arc4_lock and sha512 in compat.
  This makes arc4random available on all platforms, except when
  compiled with LIBNSS (it uses libNSS crypto random).


git-svn-id: file:///svn/unbound/trunk@3158 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-07-11 09:27:24 +00:00
Wouter Wijngaards
bc7f906590 - Fix caps-for-id fallback, and added fallback attempt when servers 
drop 0x20 perturbed queries.


git-svn-id: file:///svn/unbound/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-06-24 08:24:28 +00:00
Wouter Wijngaards
dac217b621 - Fixup out-of-directory compile with unbound-control-setup.sh.in. 
git-svn-id: file:///svn/unbound/trunk@3138 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-28 08:15:20 +00:00
Wouter Wijngaards
3468dce5c2 - Code cleanup patch from Dag-Erling Smorgrav, with compiler issue 
fixes from FreeBSD's copy of Unbound, he notes:
  Generate unbound-control-setup.sh at build time so it respects
  prefix and sysconfdir from the configure script.  Also fix the
  umask to match the comment, and the comment to match the umask.
  Add const and static where needed.  Use unions instead of
  playing pointer poker.  Move declarations that are needed in
  multiple source files into a shared header.  Move sldns_bgetc()
  from parse.c to buffer.c where it belongs.  Introduce a new
  header file, worker.h, which declares the callbacks that
  all workers must define.  Remove those declarations from
  libworker.h.	Include the correct headers in the correct places.
  Fix a few dummy callbacks that don't match their prototype.
  Fix some casts.  Hide the sbrk madness behind #ifdef HAVE_SBRK.
  Remove a useless printf which breaks reproducible builds.
  Get rid of CONFIGURE_{TARGET,DATE,BUILD_WITH} now that they're
  no longer used.  Add unbound-control-setup.sh to the list of
  generated files.



git-svn-id: file:///svn/unbound/trunk@3137 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-28 08:07:12 +00:00
Wouter Wijngaards
684fd0aa15 - unbound-host -D enabled dnssec and reads root trust anchor from 
the default root key file that was compiled in.


git-svn-id: file:///svn/unbound/trunk@3136 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-05-23 07:30:02 +00:00
Wouter Wijngaards
0bc3fab7a4 - Add unbound-control flush_negative that flushed nxdomains, nodata, 
and errors from the cache.  For dnssec-trigger and NetworkManager,
  fixes cases where network changes have localdata that was already
  negatively cached from the previous network.


git-svn-id: file:///svn/unbound/trunk@3125 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-29 08:47:33 +00:00
Wouter Wijngaards
c19f818c52 - Fix #545: improved logging, the ip address of the error is printed 
on the same log-line as the error.


git-svn-id: file:///svn/unbound/trunk@3112 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-04-10 14:40:20 +00:00
Wouter Wijngaards
2b90f38a70 And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. 
git-svn-id: file:///svn/unbound/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-02-07 13:28:39 +00:00
Wouter Wijngaards
361cc1f511 - made lint clean. 
git-svn-id: file:///svn/unbound/trunk@3050 be551aaa-1e26-0410-a405-d3ace91eadb9
 2014-01-24 13:23:45 +00:00
Wouter Wijngaards
d3cbd76546 - Fix sldns to use sldns_ prefix for all ldns_ variables. 
git-svn-id: file:///svn/unbound/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-12-03 09:11:16 +00:00
Wouter Wijngaards
29e96e86c9 - separate ldns into core ldns inside ldns/ subdirectory. No more 
--with-ldns is needed and unbound does not rely on libldns.


git-svn-id: file:///svn/unbound/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-10-31 15:09:26 +00:00
Wouter Wijngaards
253d425ca8 - unbound-event.h is installed if configured --with-libevent. It 
contains low-level library calls, that use libevent's event_base
  and an ldns_buffer for the wire return packet to perform async
  resolution in the client's eventloop.


git-svn-id: file:///svn/unbound/trunk@2970 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-09-26 08:34:14 +00:00
Wouter Wijngaards
5dca6deca9 - add unbound-control insecure_add and insecure_remove for the 
administration of negative trust anchors.


git-svn-id: file:///svn/unbound/trunk@2895 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-04-26 14:14:07 +00:00
Wouter Wijngaards
ce0d35d6ae - unbound-anchor review: BIO_write can return 0 successfully if it 
has successfully appended a zero length string.


git-svn-id: file:///svn/unbound/trunk@2884 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-04-15 15:08:24 +00:00
Wouter Wijngaards
ffab065d1e - includes and have_ssl fixes for nss. 
git-svn-id: file:///svn/unbound/trunk@2830 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-30 13:15:03 +00:00
Wouter Wijngaards
ae017713b3 lint clean. 
git-svn-id: file:///svn/unbound/trunk@2826 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-28 13:32:14 +00:00
Wouter Wijngaards
98b3b1a36d - unbound-anchors checks the emailAddress of the signer of the 
root.xml file, default is dnssec@iana.org.  It also checks that
  the signer has the correct key usage for a digital signature.


git-svn-id: file:///svn/unbound/trunk@2807 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-17 11:17:04 +00:00
Wouter Wijngaards
44aec50f73 fix treatment of certificates without subject. 
git-svn-id: file:///svn/unbound/trunk@2806 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-03 15:48:35 +00:00
Wouter Wijngaards
3dc7de758d - Check the commonName of the signer of the root.xml file in 
unbound-anchor, default is dnssec@iana.org.


git-svn-id: file:///svn/unbound/trunk@2804 be551aaa-1e26-0410-a405-d3ace91eadb9
 2013-01-03 14:38:38 +00:00
Wouter Wijngaards
064bd4e2bd - Fix unbound-anchor xml parse of entity declarations for safety. 
git-svn-id: file:///svn/unbound/trunk@2797 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-12-20 08:22:39 +00:00
Wouter Wijngaards
c3f6ca3997 - Fix bug #477: unbound-anchor segfaults if EDNS is blocked. 
git-svn-id: file:///svn/unbound/trunk@2778 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-10-30 15:13:53 +00:00
Wouter Wijngaards
f700558dc0 unbound-control -q option is quiet, patch from Mariano Absatz. 
git-svn-id: file:///svn/unbound/trunk@2766 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-09-27 09:32:35 +00:00
Wouter Wijngaards
061e2dd431 fix so that make unbound-host works when compiled with libnss. 
git-svn-id: file:///svn/unbound/trunk@2726 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-27 13:17:14 +00:00
Willem Toorop
d6aba21ac4 flush_bogus option for unbound-control 
git-svn-id: file:///svn/unbound/trunk@2713 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-07-09 14:33:07 +00:00
Wouter Wijngaards
15aacbe89b code review. 
git-svn-id: file:///svn/unbound/trunk@2688 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-06-18 14:22:29 +00:00
Wouter Wijngaards
13a839d624 - Fix for accept spinning reported by OpenBSD. 
git-svn-id: file:///svn/unbound/trunk@2663 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-05-08 12:08:55 +00:00
Wouter Wijngaards
d7172c55ed - Fix bug#434: on windows check registry for config file location 
for unbound-control.exe, and unbound-checkconf.exe.


git-svn-id: file:///svn/unbound/trunk@2635 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-27 13:20:29 +00:00
Wouter Wijngaards
c90d6d2538 nicer error. 
git-svn-id: file:///svn/unbound/trunk@2630 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 09:58:49 +00:00
Wouter Wijngaards
8e1cb52458 - iter_hints is now thread-owned in module env, and thus threadsafe. 
git-svn-id: file:///svn/unbound/trunk@2629 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-16 09:55:50 +00:00
Wouter Wijngaards
d64b14cff9 - unbound-control forward_add, forward_remove, stub_add, stub_remove 
can modify stubs and forwards for running unbound (on mobile computer)
  they can also add and remove domain-insecure for the zone.


git-svn-id: file:///svn/unbound/trunk@2623 be551aaa-1e26-0410-a405-d3ace91eadb9
 2012-02-15 14:35:28 +00:00
Wouter Wijngaards
ae5d794c47 - Fix double free in unbound-host, reported by Steve Grubb. 
git-svn-id: file:///svn/unbound/trunk@2541 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-11-08 15:41:21 +00:00
Wouter Wijngaards
b72d40f3dd - fix various compiler warnings (reported by Paul Wouters). 
git-svn-id: file:///svn/unbound/trunk@2497 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-09-16 11:35:01 +00:00
Wouter Wijngaards
accc4a6f68 Fix numthreads 0 handling. 
git-svn-id: file:///svn/unbound/trunk@2482 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-08-26 06:50:23 +00:00
Wouter Wijngaards
2c9bf883c9 - fix comment about rndc port, that referred to the old port number. 
- fix that the listening socket is not closed when too many remote
  control connections are made at the same time.


git-svn-id: file:///svn/unbound/trunk@2446 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-30 12:13:55 +00:00
Wouter Wijngaards
a11fbf9ca0 - unbound-control has version number in the header, 
UBCT[version]_space_ is the header sent by the client now.
- Unbound control port number is registered with IANA:
  ub-dns-control  8953/tcp    unbound dns nameserver control
  This is the new default for the control-port config setting.


git-svn-id: file:///svn/unbound/trunk@2424 be551aaa-1e26-0410-a405-d3ace91eadb9
 2011-06-10 10:11:38 +00:00
Wouter Wijngaards
57f309ab1d - iana portlist updated. 
- review changes for unbound-anchor.


git-svn-id: file:///svn/unbound/trunk@2351 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-12-10 15:01:39 +00:00
Wouter Wijngaards
6976832ffe unbound-anchor portable with openssl 0.9.7. 
git-svn-id: file:///svn/unbound/trunk@2340 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-11-09 16:05:02 +00:00
Wouter Wijngaards
d7a6b3f914 Fix. 
git-svn-id: file:///svn/unbound/trunk@2316 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-27 12:23:23 +00:00
Wouter Wijngaards
f794810a5f Remove warnings on NetBSD. 
git-svn-id: file:///svn/unbound/trunk@2315 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-27 12:21:44 +00:00
Wouter Wijngaards
f2ae3e8167 dump_infra and flush_infra commands for unbound-control. 
git-svn-id: file:///svn/unbound/trunk@2306 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-26 09:08:33 +00:00
Wouter Wijngaards
a0b58301ca unbound-anchor works on vista. 
git-svn-id: file:///svn/unbound/trunk@2292 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-14 14:55:38 +00:00
Wouter Wijngaards
39bbb1c9e9 fix 
git-svn-id: file:///svn/unbound/trunk@2289 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-14 09:12:26 +00:00
Wouter Wijngaards
abe1057c41 remove compile warning on Ubuntu 
git-svn-id: file:///svn/unbound/trunk@2288 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-14 08:13:33 +00:00
Wouter Wijngaards
5d2ef1f925 - unbound-anchor handles ADDPEND keystate. 
git-svn-id: file:///svn/unbound/trunk@2281 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-13 12:04:37 +00:00
Wouter Wijngaards
b3254d663b nicer usage for unbound-anchor 
git-svn-id: file:///svn/unbound/trunk@2278 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-12 12:46:39 +00:00
Wouter Wijngaards
236d4cea25 Fix out-of-order XML element parse, zone name check and newline filter for unbound-anchor XML parse. 
git-svn-id: file:///svn/unbound/trunk@2274 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-01 15:01:49 +00:00
Wouter Wijngaards
cb978ff7be test update and nicer text output for unbound-anchor 
git-svn-id: file:///svn/unbound/trunk@2273 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-01 13:55:16 +00:00
Wouter Wijngaards
f3a4dad2c8 no override time, works on Minix and not needed for the tpkg. 
git-svn-id: file:///svn/unbound/trunk@2271 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-01 12:14:05 +00:00
Wouter Wijngaards
fb4a5492da list builtin. 
git-svn-id: file:///svn/unbound/trunk@2269 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-01 11:47:53 +00:00
Wouter Wijngaards
b3e4186cf2 Test for unbound-anchor. 
git-svn-id: file:///svn/unbound/trunk@2268 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-10-01 11:31:35 +00:00
Wouter Wijngaards
45ef5b2ad6 print cert error on failure 
git-svn-id: file:///svn/unbound/trunk@2267 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-30 12:31:22 +00:00
Wouter Wijngaards
cbe4354928 Fix for zeroes in data. 
git-svn-id: file:///svn/unbound/trunk@2266 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-29 16:11:14 +00:00
Wouter Wijngaards
322b68dbf4 Parse error does not go to insecure. 
git-svn-id: file:///svn/unbound/trunk@2264 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-29 08:24:30 +00:00
Wouter Wijngaards
c9d34cdecf better explanation tekst 
git-svn-id: file:///svn/unbound/trunk@2263 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-29 07:47:42 +00:00
Wouter Wijngaards
b7f7a772fb unbound-anchor work, -P option and test tpkg. 
git-svn-id: file:///svn/unbound/trunk@2259 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 12:30:38 +00:00
Wouter Wijngaards
e9d7301b0a unbound-anchor port to Solaris 
git-svn-id: file:///svn/unbound/trunk@2258 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 12:29:47 +00:00
Wouter Wijngaards
eb696dc385 configure options for unbound-anchor files 
git-svn-id: file:///svn/unbound/trunk@2257 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 10:27:49 +00:00
Wouter Wijngaards
f64d9d0e43 Build documentation in the file. 
git-svn-id: file:///svn/unbound/trunk@2256 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 09:46:08 +00:00
Wouter Wijngaards
741e28309e nicer docs 
git-svn-id: file:///svn/unbound/trunk@2255 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 09:39:36 +00:00
Wouter Wijngaards
7e315dafcf unbound-anchor: no pem updates, do not download .pem file (no stable url), 
and date nicer to maintain in code.


git-svn-id: file:///svn/unbound/trunk@2254 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-28 09:22:22 +00:00
Wouter Wijngaards
61be6bc238 fix 
git-svn-id: file:///svn/unbound/trunk@2253 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-27 17:40:49 +00:00
Wouter Wijngaards
cf7ececb83 unbound-anchor checks dates 
git-svn-id: file:///svn/unbound/trunk@2252 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-27 15:56:46 +00:00
Wouter Wijngaards
c007b34cc1 unbound-anchor work 
git-svn-id: file:///svn/unbound/trunk@2251 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-27 14:54:22 +00:00
Wouter Wijngaards
224d547178 Documentation doxygen warnings removed. 
git-svn-id: file:///svn/unbound/trunk@2250 be551aaa-1e26-0410-a405-d3ace91eadb9
 2010-09-27 11:54:11 +00:00