unbound

mirror of https://github.com/NLnetLabs/unbound.git synced 2026-01-10 08:42:53 -05:00

Author	SHA1	Message	Date
W.C.A. Wijngaards	af11b54071	Review changes for the XoT branch With doc, SSL setup function, and function parameter doc.	2019-04-29 10:25:19 +02:00
Ralph Dolmans	a7f68865e4	- Make IXFR deletion more robust	2019-04-25 20:00:56 +02:00
Ralph Dolmans	8dac8c00ce	- Don't attempt an RPZ delete for unsupported actions	2019-04-25 19:02:17 +02:00
Ralph Dolmans	83bf2fd253	- locking issues	2019-04-25 16:14:39 +02:00
Wouter Wijngaards	2a78803049	- Fix wrong query name in local zone redirect answers with a CNAME, the copy of the local alias is in unpacked form. git-svn-id: file:///svn/unbound/trunk@5175 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-25 14:07:42 +00:00
Ralph Dolmans	46acf0f99d	Merge branch 'feature/rpz' of github.com:ralphdolmans/unbound into feature/rpz	2019-04-25 14:47:09 +02:00
Ralph Dolmans	ba67920f9a	- IXFR/AXFR support for RPZ	2019-04-25 14:46:45 +02:00
Ralph Dolmans	186c9e8e82	Merge pull request #5 from NLnetLabs/master bring fork up to date	2019-04-25 14:43:02 +02:00
Ralph Dolmans	edf1ad369a	- Scrub RRs from answer section when reusing NXDOMAIN message for subdomain answers. - For harden-below-nxdomain: do not consider a name to be non-exitent when message contains a CNAME record. git-svn-id: file:///svn/unbound/trunk@5174 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-18 15:09:15 +00:00
Wouter Wijngaards	2552a81b40	- Better braces in if statement in TCP fastopen code. git-svn-id: file:///svn/unbound/trunk@5160 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-16 12:53:50 +00:00
Wouter Wijngaards	ead84a5a64	Nicer. git-svn-id: file:///svn/unbound/trunk@5156 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-11 13:51:08 +00:00
Wouter Wijngaards	c6369e9ffa	- Fix that auth zone fails over to next master for timeout in tcp. git-svn-id: file:///svn/unbound/trunk@5155 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-11 13:41:53 +00:00
Wouter Wijngaards	474afc9016	- Fix that auth zone uses correct network type for sockets for SOA serial probes. This fixes that probes fail because earlier probe addresses are unreachable. git-svn-id: file:///svn/unbound/trunk@5154 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-11 08:00:33 +00:00
Ralph Dolmans	edcf2ddd12	- Fix locking issue - Fixes for compiler warnings	2019-04-10 11:53:08 +02:00
Wouter Wijngaards	c26fc84945	- verbose information about auth zone lookup process, also lookup start, timeout and fail. git-svn-id: file:///svn/unbound/trunk@5150 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-08 12:42:09 +00:00
Ralph Dolmans	c66e47c372	Initial RPZ commit - now with all files	2019-04-05 17:39:10 +02:00
Ralph Dolmans	9274d2630e	Initial RPZ commit	2019-04-05 17:38:43 +02:00
Willem Toorop	92121f7878	Report XoT failure as XoT failure, not https	2019-04-03 12:41:14 +02:00
Wouter Wijngaards	ce8167a3bb	- Fix auth-zone NSEC3 response for wildcard nodata answers, include the closest encloser in the answer. git-svn-id: file:///svn/unbound/trunk@5146 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-03 06:36:40 +00:00
Wouter Wijngaards	8a0de6b519	- Fix for auth zone nsec3 ent fix for wildcard nodata. git-svn-id: file:///svn/unbound/trunk@5144 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-02 14:28:36 +00:00
Wouter Wijngaards	59570b0413	- Fix auth-zone NSEC3 response for empty nonterminals with exact match nsec3 records. git-svn-id: file:///svn/unbound/trunk@5142 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-04-02 12:21:41 +00:00
Willem Toorop	48ad6477eb	AXFR over TLS Enable by specifying an auth name, like this: ``` auth-zone: name: nlnetlabs.nl master: 185.49.140.60#ns.nlnetlabs.nl ```	2019-03-24 10:43:57 +01:00
Wouter Wijngaards	ce0628ee55	- Fix #4239 : set NOTIMPL when deny-any is enabled, for RFC8482. git-svn-id: file:///svn/unbound/trunk@5137 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-03-18 09:26:06 +00:00
Wouter Wijngaards	bb5251da66	- Add log message, at verbosity 4, that says the query is encrypted with TLS, if that is enabled for the query. git-svn-id: file:///svn/unbound/trunk@5136 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-03-18 08:41:39 +00:00
Wouter Wijngaards	c79a99a577	Fix to account for tabs as well. git-svn-id: file:///svn/unbound/trunk@5129 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-28 12:06:04 +00:00
Wouter Wijngaards	a82c0eeece	- Print correct module that failed when module-config is wrong. git-svn-id: file:///svn/unbound/trunk@5128 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-28 09:56:45 +00:00
Wouter Wijngaards	225534e5ab	- Fix #4227 : pair event del and add for libevent for tcp_req_info. git-svn-id: file:///svn/unbound/trunk@5122 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-25 15:48:27 +00:00
Wouter Wijngaards	62428e17f6	- Fix the error for unknown module in module-config is understandable, and explains it was not compiled in and where to see the list. git-svn-id: file:///svn/unbound/trunk@5119 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-21 09:40:25 +00:00
Wouter Wijngaards	91e863138b	- Print query name and IP address when domain rate limit exceeded. git-svn-id: file:///svn/unbound/trunk@5117 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-18 15:53:02 +00:00
Wouter Wijngaards	d1e92a0ebd	- Spaces instead of tabs in that log message. git-svn-id: file:///svn/unbound/trunk@5116 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-18 12:32:42 +00:00
Wouter Wijngaards	3949bf2c82	- Print query name with ip_ratelimit exceeded log lines. git-svn-id: file:///svn/unbound/trunk@5115 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-18 10:40:41 +00:00
Wouter Wijngaards	cae8361dcd	- Fix #4225 : clients seem to erroneously receive no answer with DNS-over-TLS and qname-minimisation. git-svn-id: file:///svn/unbound/trunk@5108 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-08 15:05:24 +00:00
Wouter Wijngaards	fe97f25b75	- Fix that log-replies prints the correct name for local-alias names, for names that have a CNAME in local-data configuration. It logs the original query name, not the target of the CNAME. - Add local-zone type inform_redirect, which logs like type inform, and redirects like type redirect. git-svn-id: file:///svn/unbound/trunk@5099 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-02-04 09:51:27 +00:00
Ralph Dolmans	723845b350	- Fix case in which query timeout can result in marking delegation as edns_lame_known. git-svn-id: file:///svn/unbound/trunk@5089 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-30 13:44:19 +00:00
Wouter Wijngaards	ce65cdde71	- no lock when threads disabled in tcp request buffer count. git-svn-id: file:///svn/unbound/trunk@5076 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-25 12:54:40 +00:00
Wouter Wijngaards	3028fa50a8	- Patch from Florian Obser fixes some compiler warnings: include mini_event.h to have a prototype for mini_ev_cmp include edns.h to have a prototype for apply_edns_options sldns_wire2str_edns_keepalive_print is only called in the wire2str, module declare it static to get rid of compiler warning: no previous prototype for function infra_find_ip_ratedata() is only called in the infra module, declare it static to get rid of compiler warning: no previous prototype for function do not shadow local variable buf in authzone auth_chunks_delete and az_nsec3_findnode are only called in the authzone module, declare them static to get rid of compiler warning: no previous prototype for function... copy_rrset() is only called in the respip module, declare it static to get rid of compiler warning: no previous prototype for function 'copy_rrset' no need for another variable "r"; gets rid of compiler warning: declaration shadows a local variable in libunbound.c no need for another variable "ns"; gets rid of compiler warning: declaration shadows a local variable in iterator.c git-svn-id: file:///svn/unbound/trunk@5072 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-24 16:05:00 +00:00
Wouter Wijngaards	649e265d6f	- Fix for IXFR fallback to reset counter when IXFR does not timeout. git-svn-id: file:///svn/unbound/trunk@5066 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-23 11:52:17 +00:00
Wouter Wijngaards	55f560a3ca	- Fix that auth zone after IXFR fallback tries the same master. git-svn-id: file:///svn/unbound/trunk@5053 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-22 15:44:09 +00:00
Wouter Wijngaards	51caffb454	- Fix for #4219 : secondaries not updated after serial change, unbound falls back to AXFR after IXFR gives several timeout failures. git-svn-id: file:///svn/unbound/trunk@5052 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-22 15:36:58 +00:00
Wouter Wijngaards	c10712a82b	- Fix space calculation for tcp req buffer size. git-svn-id: file:///svn/unbound/trunk@5047 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-22 08:27:49 +00:00
Wouter Wijngaards	d81e2c654f	- Add stream-wait-size: 4m config option to limit the maximum memory used by waiting tcp and tls stream replies. This avoids a denial of service where these replies use up all of the memory. git-svn-id: file:///svn/unbound/trunk@5046 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-21 16:20:14 +00:00
Wouter Wijngaards	be4583ac84	- Fix that multiple dns fragments can be carried in one TLS frame. git-svn-id: file:///svn/unbound/trunk@5043 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-21 13:41:13 +00:00
Wouter Wijngaards	19a3907657	- increase mesh max activation count for capsforid long fetches. git-svn-id: file:///svn/unbound/trunk@5039 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-17 08:58:09 +00:00
Ralph Dolmans	f30fe71395	- Get ready for the DNS flag day: remove EDNS lame procedure, do not re-query without EDNS after timeout. git-svn-id: file:///svn/unbound/trunk@5037 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-16 10:23:13 +00:00
Wouter Wijngaards	ec6f4bab46	comment fixes after review. git-svn-id: file:///svn/unbound/trunk@5036 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-15 13:42:22 +00:00
Wouter Wijngaards	0d2efc3f3f	- Review fixes in out of order processing. git-svn-id: file:///svn/unbound/trunk@5035 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-15 10:27:00 +00:00
Wouter Wijngaards	bb480068fa	- In the out of order processing, reset byte count for (potential) partial read. git-svn-id: file:///svn/unbound/trunk@5034 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-15 09:24:00 +00:00
Wouter Wijngaards	ae9fe1a10e	- streamtcp option -a send queries consecutively and prints answers as they arrive. - Fix for out of order processing administration quit cleanup. - unit test for tcp out of order processing. git-svn-id: file:///svn/unbound/trunk@5033 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-14 15:52:50 +00:00
Wouter Wijngaards	dd19026e91	- Initial commit for out-of-order processing for TCP and TLS. git-svn-id: file:///svn/unbound/trunk@5032 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-11 14:12:27 +00:00
Wouter Wijngaards	42d2c04ae1	- Log query name for looping module errors. git-svn-id: file:///svn/unbound/trunk@5031 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-09 13:57:14 +00:00
Wouter Wijngaards	db2557826a	- Fix NSEC3 record that is returned in wildcard replies from auth-zone zones with NSEC3 and wildcards. git-svn-id: file:///svn/unbound/trunk@5030 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-08 14:39:31 +00:00
Wouter Wijngaards	90b00dfe57	- On FreeBSD warn if systcl settings do not allow server TCP FASTOPEN, and server tcp fastopen is enabled at compile time. git-svn-id: file:///svn/unbound/trunk@5026 be551aaa-1e26-0410-a405-d3ace91eadb9	2019-01-07 09:06:41 +00:00
Wouter Wijngaards	1b72e814e7	- Fixup openssl 1.0.2 compile git-svn-id: file:///svn/unbound/trunk@5019 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-12-10 14:36:43 +00:00
Wouter Wijngaards	71b078611f	- Fix #4206 : support openssl 1.0.2 for TLS hostname verification, alongside the 1.1.0 and later support that is already there. git-svn-id: file:///svn/unbound/trunk@5018 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-12-10 14:27:24 +00:00
Wouter Wijngaards	b23c373f4d	- Refuse to start with no ports. git-svn-id: file:///svn/unbound/trunk@4997 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-29 14:26:16 +00:00
Wouter Wijngaards	63dcbe3d75	- Fix chroot auth-zone fix to remove chroot prefix. git-svn-id: file:///svn/unbound/trunk@4992 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-29 08:27:47 +00:00
Wouter Wijngaards	3330d5296c	- Fix leak in chroot fix for auth-zone. git-svn-id: file:///svn/unbound/trunk@4989 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-28 12:37:52 +00:00
Wouter Wijngaards	60da4369a4	- stat count SERVFAIL downstream auth-zone queries for expired zones. git-svn-id: file:///svn/unbound/trunk@4984 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-27 12:42:59 +00:00
Wouter Wijngaards	b04e84ab9e	- auth-zone give SERVFAIL when expired, fallback activates when expired, and this is documented in the man page. git-svn-id: file:///svn/unbound/trunk@4983 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-27 12:31:37 +00:00
Wouter Wijngaards	068c52d8f5	- Fix that empty zonefile means the zonefile is not set and not used. git-svn-id: file:///svn/unbound/trunk@4973 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-22 15:55:18 +00:00
Wouter Wijngaards	692caffe2c	- auth zone zonefiles can be in a chroot, the chroot directory components are removed before use. git-svn-id: file:///svn/unbound/trunk@4972 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-22 15:51:09 +00:00
Wouter Wijngaards	069b0b8c90	- Support SO_REUSEPORT_LB in FreeBSD 12 with the so-reuseport: yes option in unbound.conf. git-svn-id: file:///svn/unbound/trunk@4960 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-11-19 09:36:27 +00:00
Wouter Wijngaards	23505d30a5	- Fix #4190 : Please create a "ANY" deny option, adds the option deny-any: yes in unbound.conf. This responds with an empty message to queries of type ANY. git-svn-id: file:///svn/unbound/trunk@4949 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-10-25 08:07:37 +00:00
Wouter Wijngaards	2d28fba3bf	- Squelch log of failed to tcp initiate after TCP Fastopen failure. git-svn-id: file:///svn/unbound/trunk@4937 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-10-08 13:27:53 +00:00
Wouter Wijngaards	945452bff4	- Squelch EADDRNOTAVAIL errors when the interface goes away, this omits 'can't assign requested address' errors unless verbosity is set to a high value. git-svn-id: file:///svn/unbound/trunk@4931 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-10-05 06:29:05 +00:00
Wouter Wijngaards	d967ceb98b	Remove that fix, analyzer is for debug with assertions. - Fix clang analyzer for optimize compile analysis. git-svn-id: file:///svn/unbound/trunk@4929 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-10-02 12:32:33 +00:00
Wouter Wijngaards	377d5b426a	- Add SSL cleanup for tcp timeout. git-svn-id: file:///svn/unbound/trunk@4915 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-25 09:01:13 +00:00
Wouter Wijngaards	f82a128909	- Perform TLS SNI indication of the host that is being contacted for DNS over TLS service. It sets the configured tls auth name. This is useful for hosts that apart from the DNS over TLS services also provide other (web) services. git-svn-id: file:///svn/unbound/trunk@4914 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-25 08:31:42 +00:00
Wouter Wijngaards	9b6caf5a5b	- Fix that with harden-below-nxdomain and qname minisation enabled some iterator states for nonresponsive domains can get into a state where they waited for an empty list. - Stop UDP to TCP failover after timeouts that causes the ping count to be reset by the TCP time measurement (that exists for TLS), because that causes the UDP part to not be measured as timeout. git-svn-id: file:///svn/unbound/trunk@4912 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-17 11:25:52 +00:00
Wouter Wijngaards	2e9d09b961	- initialize statistics totals for printout. - in authzone check that node exists before adding rrset. - in unbound-anchor, use readwrite memory BIO. - assertion in autotrust that packed rrset is formed correctly. git-svn-id: file:///svn/unbound/trunk@4903 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-13 12:20:41 +00:00
Ralph Dolmans	987c1c97e5	- More explicitly mention the type of ratelimit when applying ip-ratelimit. git-svn-id: file:///svn/unbound/trunk@4884 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-04 09:16:07 +00:00
Wouter Wijngaards	27472f1270	better locking. git-svn-id: file:///svn/unbound/trunk@4880 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-30 09:21:05 +00:00
Wouter Wijngaards	30a14c2716	- Fix that a local-zone with a local-zone-type that is transparent in a view with view-first, makes queries check for answers from the local-zones defined outside of views. git-svn-id: file:///svn/unbound/trunk@4879 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-30 09:06:07 +00:00
Ralph Dolmans	2e5e31e8ac	- Added serve-expired-ttl and serve-expired-ttl-reset options. git-svn-id: file:///svn/unbound/trunk@4876 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-28 14:21:56 +00:00
George Thessalonikefs	0171d06aa2	- #4140 : Expose repinfo (comm_reply) to the inplace_callbacks. This gives access to reply information for the client's communication point when the callback is called before the mesh state (modules). Changes to C and Python's inplace_callback signatures were also necessary. git-svn-id: file:///svn/unbound/trunk@4870 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-22 10:51:13 +00:00
Wouter Wijngaards	01d8dc2240	- log-local-actions: yes option for unbound.conf that logs all the local zone actions, a patch from Saksham Manchanda (Secure64). git-svn-id: file:///svn/unbound/trunk@4864 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-21 07:10:09 +00:00
Wouter Wijngaards	4fe427ded2	- log-servfail: yes prints log lines that say why queries are returning SERVFAIL to clients. git-svn-id: file:///svn/unbound/trunk@4863 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-17 15:22:05 +00:00
Wouter Wijngaards	b0daf867c2	and the error looks good. git-svn-id: file:///svn/unbound/trunk@4860 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-17 14:17:48 +00:00
Wouter Wijngaards	8385c462ed	- print servfail info to log as error. git-svn-id: file:///svn/unbound/trunk@4859 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-17 13:29:27 +00:00
Wouter Wijngaards	1958d9fbd5	- Fix segfault in auth-zone read and reorder of RRSIGs. git-svn-id: file:///svn/unbound/trunk@4853 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-15 09:26:13 +00:00
Wouter Wijngaards	efe5c8e6be	- Fix #4144 : dns64 module caches wrong (negative) information. git-svn-id: file:///svn/unbound/trunk@4850 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-10 08:03:17 +00:00
Wouter Wijngaards	586b811b87	- Patch to implement tcp-connection-limit from Jim Hague (Sinodun). This limits the number of simultaneous TCP client connections from a nominated netblock. And a simple test for TCP connection limit. git-svn-id: file:///svn/unbound/trunk@4835 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-07 11:57:42 +00:00
George Thessalonikefs	749d1b9ebc	- Expose if a query (or a subquery) was ratelimited (not src IP ratelimiting) to libunbound under 'ub_result.was_ratelimited'. This also introduces a change to 'ub_event_callback_type' in libunbound/unbound-event.h. - Tidy pylib tests. git-svn-id: file:///svn/unbound/trunk@4828 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-03 14:00:46 +00:00
Wouter Wijngaards	62f69f9b40	- Fix to remove systemd sockaddr function check, that is not always present. Make socket activation more lenient. But not different when socket activation is not used. git-svn-id: file:///svn/unbound/trunk@4824 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-08-01 13:49:27 +00:00
Wouter Wijngaards	cc538f4f9f	- Please doxygen so it passes. git-svn-id: file:///svn/unbound/trunk@4813 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-31 08:10:20 +00:00
Wouter Wijngaards	b7abbd1d72	- Fix mesh.c incompatible pointer pass. - yacc and lex. git-svn-id: file:///svn/unbound/trunk@4808 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-31 07:23:58 +00:00
Wouter Wijngaards	3dbdde7fed	- Add edns-tcp-keepalive and edns-tcp-keepalive timeout options and implement option in client responses. git-svn-id: file:///svn/unbound/trunk@4804 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-31 07:18:34 +00:00
Wouter Wijngaards	007123ee2c	- Sort out test runs when the build directory isn't the project root directory. - Add config tcp-idle-timeout (default 30s). This applies to client connections only; the timeout on TCP connections upstream is unaffected. git-svn-id: file:///svn/unbound/trunk@4802 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-31 07:15:12 +00:00
Wouter Wijngaards	f8e585f308	nicer code, in function. git-svn-id: file:///svn/unbound/trunk@4790 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-17 15:07:09 +00:00
Wouter Wijngaards	5bda4f9822	Fixup cache size test for msg cache. git-svn-id: file:///svn/unbound/trunk@4789 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-17 14:56:02 +00:00
Wouter Wijngaards	d2d7b987fa	brackets added. git-svn-id: file:///svn/unbound/trunk@4788 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-17 14:44:20 +00:00
Wouter Wijngaards	7579216922	- Resize ratelimit and ip-ratelimit caches if changed on reload. git-svn-id: file:///svn/unbound/trunk@4787 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-17 14:42:38 +00:00
Wouter Wijngaards	330c6e1cb0	- Fix that ratelimit and ip-ratelimit are applied after reload of git-svn-id: file:///svn/unbound/trunk@4786 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-17 14:27:44 +00:00
Wouter Wijngaards	cabc120f22	for outgoing UDP sockets. git-svn-id: file:///svn/unbound/trunk@4782 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-16 10:30:44 +00:00
Wouter Wijngaards	c96c2d8a45	- Squelch can't bind socket errors with Permission denied unless verbosity is 4 or higher, for UDP sockets. git-svn-id: file:///svn/unbound/trunk@4781 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-16 10:27:12 +00:00
Wouter Wijngaards	4bf9d12419	- Fix for 4126 that the #define for UNKNOWN_SERVER_NICENESS can be more easily changed to adjust default rtt assumptions. git-svn-id: file:///svn/unbound/trunk@4779 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-12 14:15:03 +00:00
Wouter Wijngaards	f93746b1af	- Fix to improve systemd socket activation code file descriptor assignment. git-svn-id: file:///svn/unbound/trunk@4778 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-12 10:35:33 +00:00
Wouter Wijngaards	5d298ed474	- Fix permission denied printed for auth zone probe random port nrs. git-svn-id: file:///svn/unbound/trunk@4769 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-07-03 13:58:49 +00:00
Wouter Wijngaards	a31d45b13e	- Fix that auth-zone master reply with current SOA serial does not stop scan of masters for an updated zone. git-svn-id: file:///svn/unbound/trunk@4755 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-26 13:48:36 +00:00
Wouter Wijngaards	23f475bccc	- Tentative fix for permission denied on IPv6 address on FreeBSD. git-svn-id: file:///svn/unbound/trunk@4754 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-26 08:01:44 +00:00
Wouter Wijngaards	abff4d1237	- unbound-control auth_zone_transfer _zone_ option starts the probe sequence for a master to transfer the zone from and transfers when a new zone version is available. git-svn-id: file:///svn/unbound/trunk@4736 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-15 15:01:31 +00:00
Wouter Wijngaards	12251022ec	- #4103 : Fix that auth-zone does not insist on SOA record first in file for url downloads. git-svn-id: file:///svn/unbound/trunk@4729 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-14 07:09:01 +00:00
Wouter Wijngaards	23edc18cac	- Rename tls-additional-ports to tls-additional-port, because every line adds one port. git-svn-id: file:///svn/unbound/trunk@4721 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-12 08:45:57 +00:00
Wouter Wijngaards	a4a5bfaa2f	- Fix crash if ratelimit taken into use with unbound-control instead of with unbound.conf. git-svn-id: file:///svn/unbound/trunk@4711 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-05 07:06:19 +00:00
Wouter Wijngaards	1cadc5d677	- Fix deadlock caused by incoming notify for auth-zone. git-svn-id: file:///svn/unbound/trunk@4704 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-04 09:01:55 +00:00
Wouter Wijngaards	7509bf208e	- Rename additional-tls-port to tls-additional-ports. The older name is accepted for backwards compatibility. git-svn-id: file:///svn/unbound/trunk@4703 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-06-01 08:02:04 +00:00
Wouter Wijngaards	b9607297e9	- For TCP and TLS connections that don't establish, perform address update in infra cache, so future selections can exclude them. git-svn-id: file:///svn/unbound/trunk@4693 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-05-25 06:21:39 +00:00
Wouter Wijngaards	8b209f8f68	- Fix mesh state assertion failure due to callback removal. git-svn-id: file:///svn/unbound/trunk@4681 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-05-07 11:29:12 +00:00
Wouter Wijngaards	6fefbb4115	- Fix fail to reject dead peers in forward-zone, with ssl-upstream. git-svn-id: file:///svn/unbound/trunk@4670 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-05-02 06:36:02 +00:00
Ralph Dolmans	d97a635084	- Fix memory leak when caching wildcard records for aggressive NSEC use git-svn-id: file:///svn/unbound/trunk@4662 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-25 13:13:05 +00:00
Ralph Dolmans	4d06c36342	- Added root-key-sentinel support git-svn-id: file:///svn/unbound/trunk@4652 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-24 09:03:49 +00:00
Wouter Wijngaards	ea6266f736	- list_auth_zones unbound-control command. git-svn-id: file:///svn/unbound/trunk@4650 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-23 14:42:30 +00:00
Wouter Wijngaards	deea985a20	- Attempt for auth zone fix; add of callback in mesh gets from callback does not skip callback of result. git-svn-id: file:///svn/unbound/trunk@4647 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-23 12:51:00 +00:00
Wouter Wijngaards	0d18256828	- Fix sldns parse failure for CDS alternate delete syntax empty hex. git-svn-id: file:///svn/unbound/trunk@4646 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-23 10:35:35 +00:00
Wouter Wijngaards	abe18e41bc	- auth zone http download stores exact copy of downloaded file, including comments in the file. git-svn-id: file:///svn/unbound/trunk@4645 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-23 10:13:50 +00:00
Wouter Wijngaards	2e70e3a0d3	- Delete auth zone when removed from config. git-svn-id: file:///svn/unbound/trunk@4642 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-20 14:40:07 +00:00
Wouter Wijngaards	7ff459af13	- Fix #4091 : Fix that reload of auth-zone does not merge the zonefile with the previous contents. git-svn-id: file:///svn/unbound/trunk@4641 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-20 14:15:34 +00:00
Wouter Wijngaards	c16a32d2be	fix doxygen comments. git-svn-id: file:///svn/unbound/trunk@4632 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-19 12:16:10 +00:00
Wouter Wijngaards	9d28279475	- Can set tls authentication with forward-addr: IP#tls.auth.name And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem". git-svn-id: file:///svn/unbound/trunk@4631 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-19 12:10:05 +00:00
Wouter Wijngaards	913de80cbc	- Fix auth-zone retry timer to be on schedule with retry timeout, with backoff. Also time a refresh at the zone expiry. git-svn-id: file:///svn/unbound/trunk@4630 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-18 06:43:02 +00:00
Wouter Wijngaards	1b055c6ca7	- allow-notify: config statement for auth-zones. git-svn-id: file:///svn/unbound/trunk@4628 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-17 13:23:35 +00:00
Wouter Wijngaards	630600e70d	- auth zone notify work. git-svn-id: file:///svn/unbound/trunk@4627 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-17 12:18:34 +00:00
Wouter Wijngaards	4809fe1b95	- auth zone notify work. git-svn-id: file:///svn/unbound/trunk@4626 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-16 15:10:30 +00:00
Wouter Wijngaards	2d6715878d	- auth zone notify work. git-svn-id: file:///svn/unbound/trunk@4625 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-16 14:24:57 +00:00
Wouter Wijngaards	4691979679	- Fix auth zone target lookup iterator. - notify with prefix git-svn-id: file:///svn/unbound/trunk@4624 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-16 13:14:24 +00:00
Wouter Wijngaards	4e5af01354	- Fix memory free on fail for $INCLUDE in authzone. - Fix that an internal error to look up the wrong rr type for auth zone gets stopped, before trying to send there. - auth zone notify work. git-svn-id: file:///svn/unbound/trunk@4623 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-13 13:04:26 +00:00
Wouter Wijngaards	b23b39bcfd	- Fix for max include depth for authzones. git-svn-id: file:///svn/unbound/trunk@4622 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-13 06:25:30 +00:00
Wouter Wijngaards	4f974e3465	fix lint. git-svn-id: file:///svn/unbound/trunk@4621 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-10 15:06:51 +00:00
Wouter Wijngaards	ad9784c5e8	- auth zone notify work. git-svn-id: file:///svn/unbound/trunk@4619 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-10 14:57:38 +00:00
Wouter Wijngaards	89ad258515	- num.query.authzone.up and num.query.authzone.down statistics counters. - Fix downstream auth zone, only fallback when auth zone fails to answer and fallback is enabled. git-svn-id: file:///svn/unbound/trunk@4610 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-04-09 10:15:06 +00:00
Ralph Dolmans	5fabe62e70	- Check "result" in dup_all(), by Florian Obser. git-svn-id: file:///svn/unbound/trunk@4598 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-29 08:02:26 +00:00
Wouter Wijngaards	554b8b35ae	fix. git-svn-id: file:///svn/unbound/trunk@4590 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-15 14:28:04 +00:00
Wouter Wijngaards	1d2d33d01a	- Create additional tls service interfaces by opening them on other portnumbers and listing the portnumbers as additional-tls-port: nr. git-svn-id: file:///svn/unbound/trunk@4588 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-15 14:19:02 +00:00
Wouter Wijngaards	3a287a70cd	Test and fix. git-svn-id: file:///svn/unbound/trunk@4583 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-13 13:14:56 +00:00
Wouter Wijngaards	d111aaf64f	- Fix #3736 : Fix 0 TTL domains stuck on SERVFAIL unless manually flushed with serve-expired on. git-svn-id: file:///svn/unbound/trunk@4582 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-13 12:52:11 +00:00
Wouter Wijngaards	d1a76b55bc	- Check IXFR start serial. git-svn-id: file:///svn/unbound/trunk@4579 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-12 14:34:24 +00:00
Wouter Wijngaards	3b25c475f5	- Attempt to remove warning about trailing whitespace. git-svn-id: file:///svn/unbound/trunk@4568 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-07 08:52:18 +00:00
Wouter Wijngaards	5c8819f1ac	- Fix for windows compile. git-svn-id: file:///svn/unbound/trunk@4563 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-03-06 09:18:53 +00:00
Ralph Dolmans	24fc3242fc	- Save wildcard RRset from answer with original owner for use in aggressive NSEC. git-svn-id: file:///svn/unbound/trunk@4550 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-22 15:12:31 +00:00
Wouter Wijngaards	a92e9692c1	fix noview. git-svn-id: file:///svn/unbound/trunk@4543 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-19 13:30:38 +00:00
Wouter Wijngaards	3d57bf0a3b	- Fix for more maintainable code in localzone. git-svn-id: file:///svn/unbound/trunk@4542 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-19 13:21:57 +00:00
Wouter Wijngaards	ccf1ff8f02	- local-zone noview can be used to break out of the view to the global local zone contents, for queries for that zone. git-svn-id: file:///svn/unbound/trunk@4540 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-19 12:13:23 +00:00
Wouter Wijngaards	a901fc5fe7	auth zone: default is https if no 'http://' given. git-svn-id: file:///svn/unbound/trunk@4536 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-13 14:28:51 +00:00
Wouter Wijngaards	a554c14f18	auth zone whitespace fixes and input validation. git-svn-id: file:///svn/unbound/trunk@4535 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-13 14:26:20 +00:00
Wouter Wijngaards	da06b1c76c	auth zone review fixes git-svn-id: file:///svn/unbound/trunk@4534 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-13 14:09:57 +00:00
Wouter Wijngaards	54bd1fdd62	- tls-cert-bundle option in unbound.conf enables TLS authentication. git-svn-id: file:///svn/unbound/trunk@4532 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-13 10:35:09 +00:00
Wouter Wijngaards	e63a4cd0fd	auth zone work, nicer debug output. git-svn-id: file:///svn/unbound/trunk@4527 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-09 08:23:20 +00:00
Wouter Wijngaards	dd2ba08f7c	auth zone stop sending packets when the application quits. git-svn-id: file:///svn/unbound/trunk@4526 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-09 08:14:06 +00:00
Wouter Wijngaards	427836884e	auth zone http work. git-svn-id: file:///svn/unbound/trunk@4524 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-08 15:14:51 +00:00
Wouter Wijngaards	1ad34fe7ae	auth zone work. git-svn-id: file:///svn/unbound/trunk@4523 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-08 14:37:36 +00:00
Ralph Dolmans	77f78152ee	- Aggressive use of NSEC implementation. Use cached NSEC records to generate NXDOMAIN, NODATA and positive wildcard answers. git-svn-id: file:///svn/unbound/trunk@4522 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-08 13:16:36 +00:00
Wouter Wijngaards	ad89368b4e	auth zone work. git-svn-id: file:///svn/unbound/trunk@4521 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-08 11:59:30 +00:00
Wouter Wijngaards	75eb720ab5	auth zone work on http feature. git-svn-id: file:///svn/unbound/trunk@4517 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-07 16:10:31 +00:00
Wouter Wijngaards	88c43a1b45	fix for doxygen git-svn-id: file:///svn/unbound/trunk@4516 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-06 16:00:10 +00:00
Wouter Wijngaards	0ab8edd170	auth zone work. git-svn-id: file:///svn/unbound/trunk@4515 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-06 15:54:49 +00:00
Wouter Wijngaards	18aed94e0c	fix lint warning git-svn-id: file:///svn/unbound/trunk@4513 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-06 11:16:23 +00:00
Wouter Wijngaards	3b87862c8a	auth zone work. git-svn-id: file:///svn/unbound/trunk@4512 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-06 09:32:41 +00:00
Wouter Wijngaards	324d6e7c36	auth zone fixup lock protection, it wrongly covered the rbtree node. git-svn-id: file:///svn/unbound/trunk@4507 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-05 10:57:15 +00:00
Wouter Wijngaards	172b84f7ce	auth zone ixfr unit test, and fixes. git-svn-id: file:///svn/unbound/trunk@4504 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-05 09:42:42 +00:00
Wouter Wijngaards	dfb8fb2986	auth zone, remove unused code git-svn-id: file:///svn/unbound/trunk@4503 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 16:13:37 +00:00
Wouter Wijngaards	862b0b568c	auth zone, axfr and printout works. git-svn-id: file:///svn/unbound/trunk@4501 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 14:41:20 +00:00
Wouter Wijngaards	a66fd181e5	auth zone race condition remove and checklock fix for check of unused alignment memory in structure. git-svn-id: file:///svn/unbound/trunk@4496 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 10:35:11 +00:00
Wouter Wijngaards	cb28d35bd2	- Fix lock race condition in dns cache dname synthesis. git-svn-id: file:///svn/unbound/trunk@4495 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 10:33:19 +00:00
Wouter Wijngaards	e95a9ac466	remove debug printf. git-svn-id: file:///svn/unbound/trunk@4492 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 09:27:55 +00:00
Wouter Wijngaards	30891d6fff	- Fix unfreed locks in log and arc4random at exit of unbound. git-svn-id: file:///svn/unbound/trunk@4491 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-02 09:27:16 +00:00
Wouter Wijngaards	cc9a0671f3	auth zone socket creation fix. git-svn-id: file:///svn/unbound/trunk@4489 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 15:43:00 +00:00
Wouter Wijngaards	0b5e37dcee	auth zone test for host lookup git-svn-id: file:///svn/unbound/trunk@4488 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 15:02:38 +00:00
Wouter Wijngaards	abeb60d511	auth zone, nicer debug log git-svn-id: file:///svn/unbound/trunk@4487 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 13:37:36 +00:00
Wouter Wijngaards	4b9df2bae1	auth zone test checks stored axfr zonefile git-svn-id: file:///svn/unbound/trunk@4486 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 13:29:31 +00:00
Wouter Wijngaards	61d431e44f	auth zone unit test extra_packet moves multipe tcp packets on stream git-svn-id: file:///svn/unbound/trunk@4485 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 12:23:48 +00:00
Wouter Wijngaards	6a0b5aa8e3	auth zone test, udp and tcp answered from unit test git-svn-id: file:///svn/unbound/trunk@4484 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-02-01 10:38:05 +00:00
Wouter Wijngaards	392be1e787	auth zone fix comment git-svn-id: file:///svn/unbound/trunk@4483 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-31 15:19:23 +00:00
Wouter Wijngaards	84e819dc31	auth zone move file descriptor functionality to outside network for the unit test git-svn-id: file:///svn/unbound/trunk@4482 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-31 14:59:17 +00:00
Wouter Wijngaards	ca60143bdf	cleanup without losing zone contents, and also backoff for nonresponsive masters while zone data is available. git-svn-id: file:///svn/unbound/trunk@4480 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-31 12:52:40 +00:00
Wouter Wijngaards	c834b5eecd	pickup worker events, and free them. exponential backoff for continuously failing zones. git-svn-id: file:///svn/unbound/trunk@4479 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-31 12:33:19 +00:00
Wouter Wijngaards	657753aac2	auth zone for downstream git-svn-id: file:///svn/unbound/trunk@4474 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-31 08:30:32 +00:00
Wouter Wijngaards	70f3d25173	remove debug print git-svn-id: file:///svn/unbound/trunk@4471 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-30 16:02:48 +00:00
Wouter Wijngaards	fdd1a602d5	fix to please doxygen's parser. git-svn-id: file:///svn/unbound/trunk@4470 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-30 15:51:28 +00:00
Wouter Wijngaards	bea3b6b72d	unit test for auth zone lookup git-svn-id: file:///svn/unbound/trunk@4469 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-30 15:44:49 +00:00
Wouter Wijngaards	2e1f4420a8	fix $INCLUDE git-svn-id: file:///svn/unbound/trunk@4467 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-30 11:12:22 +00:00
Wouter Wijngaards	0362614f94	auth zone, make depend, fallback, create and delete, and lease_time, and lock fixes. git-svn-id: file:///svn/unbound/trunk@4466 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-30 10:35:20 +00:00
Wouter Wijngaards	208d045cf5	lint fixes. git-svn-id: file:///svn/unbound/trunk@4465 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-29 14:48:40 +00:00
Wouter Wijngaards	47909a6f2d	lint fixes git-svn-id: file:///svn/unbound/trunk@4464 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-29 14:48:01 +00:00
Wouter Wijngaards	0121427ef1	remove unused TODO items git-svn-id: file:///svn/unbound/trunk@4462 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-29 14:41:07 +00:00
Wouter Wijngaards	a1e63e8118	auth zone work, ixfr apply procedure. git-svn-id: file:///svn/unbound/trunk@4461 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-29 14:33:08 +00:00
Wouter Wijngaards	942ced78ed	remove unneeded statements git-svn-id: file:///svn/unbound/trunk@4459 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 15:49:15 +00:00
Wouter Wijngaards	9ae592209f	fixup iterator git-svn-id: file:///svn/unbound/trunk@4458 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 15:47:57 +00:00
Wouter Wijngaards	dc2e0ec3b6	unneeded statement git-svn-id: file:///svn/unbound/trunk@4457 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 15:46:48 +00:00
Wouter Wijngaards	dd77a1fb9a	fix id check git-svn-id: file:///svn/unbound/trunk@4456 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 15:42:27 +00:00
Wouter Wijngaards	2ef71d6def	lint fix. git-svn-id: file:///svn/unbound/trunk@4455 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 14:40:00 +00:00
Wouter Wijngaards	414ed74526	lint fixes. git-svn-id: file:///svn/unbound/trunk@4454 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 14:39:19 +00:00
Wouter Wijngaards	01eab08c1c	fix ixfr and axfr end detection. git-svn-id: file:///svn/unbound/trunk@4453 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 14:35:53 +00:00
Wouter Wijngaards	5fd83a85e8	authzone transfer functionality git-svn-id: file:///svn/unbound/trunk@4452 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-26 14:16:04 +00:00
Wouter Wijngaards	859ca7db68	- Fix #3397 : Fix that when the cache contains an unsigned DNAME in the middle of a cname chain, a result without the DNAME could be returned. git-svn-id: file:///svn/unbound/trunk@4446 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-22 14:30:16 +00:00
Wouter Wijngaards	df6fbb82be	- Fix #3397 : Fix that cachedb could return a partial CNAME chain. git-svn-id: file:///svn/unbound/trunk@4445 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-22 13:54:20 +00:00
Wouter Wijngaards	1264f8cff8	authzone work git-svn-id: file:///svn/unbound/trunk@4423 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-12 15:55:23 +00:00
Wouter Wijngaards	3b393e0e2d	set repinfo correctly (this prints out debug and errors with the correct remote IP) git-svn-id: file:///svn/unbound/trunk@4422 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-12 15:45:55 +00:00
Wouter Wijngaards	a7d55a5ad8	fix unit tests git-svn-id: file:///svn/unbound/trunk@4421 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-12 15:41:03 +00:00
Wouter Wijngaards	30da6bde6f	- authzone work, transfer connect. git-svn-id: file:///svn/unbound/trunk@4420 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-12 15:39:45 +00:00
Wouter Wijngaards	1ed537dc52	lookup and transfer setup git-svn-id: file:///svn/unbound/trunk@4417 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-04 16:24:24 +00:00
Wouter Wijngaards	072347e594	disown and pickup of next task. git-svn-id: file:///svn/unbound/trunk@4416 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-04 14:51:01 +00:00
Wouter Wijngaards	743ea6815b	fixup locks. git-svn-id: file:///svn/unbound/trunk@4415 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-04 09:50:31 +00:00
Wouter Wijngaards	c1e91553b9	auth zone transfer setup. git-svn-id: file:///svn/unbound/trunk@4413 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-01 16:04:54 +00:00
Wouter Wijngaards	36a54a9c9d	iterate probe over looked up ip4 and ip6 addresses git-svn-id: file:///svn/unbound/trunk@4412 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-01 14:20:55 +00:00
Wouter Wijngaards	d88bb99957	- auth zone work. probe hostname lookup. git-svn-id: file:///svn/unbound/trunk@4411 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-12-01 14:02:28 +00:00
Wouter Wijngaards	6030306d9c	note that state must be separated because of error corner cases. git-svn-id: file:///svn/unbound/trunk@4410 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-30 16:07:10 +00:00
Wouter Wijngaards	038303e6a5	upgraded comment git-svn-id: file:///svn/unbound/trunk@4407 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-16 14:36:23 +00:00
Wouter Wijngaards	635c4b5b89	fix for lint. git-svn-id: file:///svn/unbound/trunk@4406 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-14 16:05:00 +00:00
Wouter Wijngaards	975a7b1fc0	- auth xfer work on probe timer and lookup. git-svn-id: file:///svn/unbound/trunk@4405 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-14 15:58:24 +00:00
Wouter Wijngaards	ff384cd658	unused void cast. git-svn-id: file:///svn/unbound/trunk@4400 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-09 16:06:27 +00:00
Wouter Wijngaards	10b8997cc5	- make ip-transparent option work on OpenBSD. git-svn-id: file:///svn/unbound/trunk@4393 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-11-02 09:34:19 +00:00
Ralph Dolmans	e13088d911	- Fix #2031 : Double included headers git-svn-id: file:///svn/unbound/trunk@4388 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-25 13:30:32 +00:00
Wouter Wijngaards	15d892c62d	authzone, handle probe return packets. git-svn-id: file:///svn/unbound/trunk@4384 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-20 14:43:51 +00:00
Wouter Wijngaards	eb0f3256d9	fix lint git-svn-id: file:///svn/unbound/trunk@4383 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-20 12:13:37 +00:00
Wouter Wijngaards	f9add77d7b	corrected fix for test link. git-svn-id: file:///svn/unbound/trunk@4382 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-20 11:55:19 +00:00
Wouter Wijngaards	4863f45f7e	fix test link git-svn-id: file:///svn/unbound/trunk@4381 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-19 15:14:00 +00:00
Wouter Wijngaards	6f88df1fc8	authzone work. git-svn-id: file:///svn/unbound/trunk@4380 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-19 15:11:20 +00:00
Wouter Wijngaards	aa76ed9baf	fix doxygen git-svn-id: file:///svn/unbound/trunk@4379 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-19 10:18:09 +00:00
Wouter Wijngaards	bdb6a5501a	- authzone work, probe timer setup. git-svn-id: file:///svn/unbound/trunk@4378 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-19 09:03:36 +00:00
Wouter Wijngaards	7bf7524d22	- lint for recent authzone commit. git-svn-id: file:///svn/unbound/trunk@4377 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-18 06:43:51 +00:00
Wouter Wijngaards	b37bc47eaa	- Work on local root zone code. git-svn-id: file:///svn/unbound/trunk@4376 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-10-17 15:16:31 +00:00
Ralph Dolmans	207beff489	- Log name of looping module git-svn-id: file:///svn/unbound/trunk@4357 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-21 08:19:47 +00:00
Wouter Wijngaards	7afdc695fe	- Fix DNSCACHE_STORE_ZEROTTL to be bigger than 0xffff. git-svn-id: file:///svn/unbound/trunk@4355 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-19 11:54:58 +00:00
Wouter Wijngaards	3264fa8a6f	assert and lint. git-svn-id: file:///svn/unbound/trunk@4354 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-19 09:15:59 +00:00
Wouter Wijngaards	55d8fe2837	- use a cachedb answer even if it's "expired" when serve-expired is yes (patch from Jinmei Tatuya). - trigger refetching of the answer in that case (this will bypass cachedb lookup) - allow storing a 0-TTL answer from cachedb in the in-memory message cache when serve-expired is yes git-svn-id: file:///svn/unbound/trunk@4353 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-19 09:08:29 +00:00
Wouter Wijngaards	3ede03449c	- Fix that looping modules always stop the query, and don't pass control. git-svn-id: file:///svn/unbound/trunk@4348 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-18 07:54:24 +00:00
Wouter Wijngaards	7d17a926ac	- Spelling fixes, from Phil Porada. git-svn-id: file:///svn/unbound/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-15 14:29:28 +00:00
Wouter Wijngaards	6a5e7be380	- Fix #1418 : [ip ratelimit] initialize slabhash using ip-ratelimit-slabs. git-svn-id: file:///svn/unbound/trunk@4330 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-08-31 12:02:14 +00:00
Wouter Wijngaards	b320c7ebd5	- Fix issue on macOX 10.10 where TCP fast open is detected but not implemented causing TCP to fail. The fix allows fallback to regular TCP in this case and is also more robust for cases where connectx() fails for some reason. git-svn-id: file:///svn/unbound/trunk@4304 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-08-21 11:44:46 +00:00
Wouter Wijngaards	1159e53618	- Fix #1397 : Recursive DS lookups for AS112 zones names should recurse. git-svn-id: file:///svn/unbound/trunk@4294 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-08-07 07:42:45 +00:00
Wouter Wijngaards	7f6827aaae	- squelch TCP fast open error on FreeBSD when kernel has it disabled, unless verbosity is high. git-svn-id: file:///svn/unbound/trunk@4279 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-07-24 09:14:42 +00:00
Wouter Wijngaards	abb6cfdebd	- upgrade aclocal(pkg.m4 0.29.1), config.guess(2016-10-02), config.sub(2016-09-05). - annotate case statement fallthrough for gcc 7.1.1. - flex output from flex 2.6.1. - snprintf of thread number does not warn about truncated string. git-svn-id: file:///svn/unbound/trunk@4278 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-07-24 09:04:18 +00:00
Wouter Wijngaards	160b70f417	- Redirect all localhost names to localhost address for RFC6761. git-svn-id: file:///svn/unbound/trunk@4273 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-07-11 14:29:54 +00:00
Wouter Wijngaards	c8189d1018	- Fix #1344 : RFC6761-reserved domains: test. and invalid. git-svn-id: file:///svn/unbound/trunk@4272 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-07-11 13:27:33 +00:00
Wouter Wijngaards	0b8117df2f	- Remove signed unsigned warning from authzone. git-svn-id: file:///svn/unbound/trunk@4251 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-06-27 10:54:15 +00:00
Ralph Dolmans	71d2d60b85	- Fix #1277 : disable domain ratelimit by setting value to 0. git-svn-id: file:///svn/unbound/trunk@4235 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-06-16 13:22:43 +00:00
Wouter Wijngaards	7ebe1fe115	- More fixes in depth for buffer checks in 0x20 qname checks. git-svn-id: file:///svn/unbound/trunk@4225 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-06-13 14:34:44 +00:00
Wouter Wijngaards	843bd4156e	- Fix #1280 : Unbound fails assert when response from authoritative contains malformed qname. When 0x20 caps-for-id is enabled, when assertions are not enabled the malformed qname is handled correctly. - 1.6.3 tag created, with only #1280 fix, trunk is 1.6.4 development. git-svn-id: file:///svn/unbound/trunk@4224 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-06-13 14:25:47 +00:00
Wouter Wijngaards	c4869780d1	- Fix #1278 : Incomplete wildcard proof. git-svn-id: file:///svn/unbound/trunk@4218 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-06-12 10:11:28 +00:00
Ralph Dolmans	69828ed94b	- Also use global local-zones when there is a matching view that does not have any local-zone specified. git-svn-id: file:///svn/unbound/trunk@4202 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-31 11:45:39 +00:00
Ralph Dolmans	486edb10db	- Fix #1269 : inconsistent use of built-in local zones with views. - Add defaults for new local-zone trees added to views using unbound-control. git-svn-id: file:///svn/unbound/trunk@4199 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-30 13:04:19 +00:00
Wouter Wijngaards	ca57014bf2	- printout localzone for duplicate local-zone warnings. git-svn-id: file:///svn/unbound/trunk@4193 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-26 11:09:16 +00:00
Wouter Wijngaards	aa1b0fca72	lint fix. git-svn-id: file:///svn/unbound/trunk@4190 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-24 12:32:39 +00:00
Wouter Wijngaards	aa9365446b	- authzone cname chain, no rrset duplicates, wildcard doesn't change rrsets added for cname chain. git-svn-id: file:///svn/unbound/trunk@4189 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-24 12:26:44 +00:00
Wouter Wijngaards	632c1e83f8	save about 90 bytes per rrset and fix NSEC cover finding. git-svn-id: file:///svn/unbound/trunk@4188 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-23 15:36:17 +00:00
Wouter Wijngaards	6c899d8947	Fix wildcard, DS lookup, CNAME from DNAME, and returnvalue check in unit test. git-svn-id: file:///svn/unbound/trunk@4185 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-23 12:47:54 +00:00
Wouter Wijngaards	efd19f766f	fix minimum ttl, verbose domain and ce determination and fix unit test qname length git-svn-id: file:///svn/unbound/trunk@4181 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-23 10:07:10 +00:00
Wouter Wijngaards	4c8fb76a72	lint fixes. git-svn-id: file:///svn/unbound/trunk@4180 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-23 09:41:12 +00:00
Wouter Wijngaards	71fba3d221	- first services/authzone check in, it compiles and reads and writes zonefiles. git-svn-id: file:///svn/unbound/trunk@4178 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-23 09:32:40 +00:00
Wouter Wijngaards	92d625b648	- better module memory lookup, fix of unbound-control shm names for module memory printout of statistics. git-svn-id: file:///svn/unbound/trunk@4161 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-16 14:16:59 +00:00
George Thessalonikefs	491b0a26e4	- Implemented opportunistic IPsec support module (ipsecmod). - Some whitespace fixup. git-svn-id: file:///svn/unbound/trunk@4158 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-16 12:39:24 +00:00
Wouter Wijngaards	893159454f	- Adjust servfail by iterator to not store in cache when serve-expired is enabled, to avoid overwriting useful information there. git-svn-id: file:///svn/unbound/trunk@4153 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-12 12:16:41 +00:00
Wouter Wijngaards	4e502fd624	- Set SO_REUSEADDR on outgoing tcp connections to fix the bind before connect limited tcp connections. With the option tcp connections can share the same source port (for different destinations). git-svn-id: file:///svn/unbound/trunk@4151 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-08 10:41:03 +00:00
Wouter Wijngaards	ad2e157763	- Fix tcp-mss failure printout text. git-svn-id: file:///svn/unbound/trunk@4150 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-08 07:15:48 +00:00
Ralph Dolmans	657948dd0c	- Added mesh_add_sub to add detached mesh entries. - Use mesh_add_sub for key tag signaling queries. git-svn-id: file:///svn/unbound/trunk@4144 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-05-02 13:17:56 +00:00
Ralph Dolmans	89c2383c71	- Fix #1252 : more indentation inconsistencies. git-svn-id: file:///svn/unbound/trunk@4125 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-18 09:00:52 +00:00
Wouter Wijngaards	16428ccbd2	- Fix #1250 : inconsistent indentation in services/listen_dnsport.c. git-svn-id: file:///svn/unbound/trunk@4113 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-13 07:17:05 +00:00
Ralph Dolmans	2be864c218	- Properly check for allocation failure in local_data_find_tag_datas. git-svn-id: file:///svn/unbound/trunk@4109 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-12 12:44:53 +00:00
George Thessalonikefs	4e0787dcf3	- Fix pythonmod for cb changes. - Some whitespace fixup. git-svn-id: file:///svn/unbound/trunk@4099 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-07 17:07:16 +00:00
Ralph Dolmans	a2bc93547f	- Generalise inplace callback (de)registration - (de)register inplace callbacks for module id - No unbound-control set_option for ECS options - Deprecated client-subnet-opcode config option - Introduced client-subnet-always-forward config option - Changed max-client-subnet-ipv6 default to 56 (as in RFC) - Removed extern ECS config options - module_restart_next now calls clear on all following modules - Also create ECS module qstate on module_event_pass event git-svn-id: file:///svn/unbound/trunk@4092 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-06 13:13:06 +00:00
Ralph Dolmans	d30ae35c62	- Do not add current time twice to TTL before ECS cache store. - Do not touch rrset cache after ECS cache message generation. - Use LDNS_EDNS_CLIENT_SUBNET as default ECS opcode. git-svn-id: file:///svn/unbound/trunk@4086 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-04-03 09:36:18 +00:00
Ralph Dolmans	b0fd814975	- Merge EDNS Client subnet implementation from feature branch into main branch, using new EDNS processing framework. git-svn-id: file:///svn/unbound/trunk@4074 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-21 12:08:17 +00:00
Wouter Wijngaards	451e1900a9	more fixups. git-svn-id: file:///svn/unbound/trunk@4067 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-20 15:16:19 +00:00
Wouter Wijngaards	86f0baf146	- make depend, autoconf, remove warnings about statement before var. git-svn-id: file:///svn/unbound/trunk@4066 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-20 15:09:06 +00:00
Wouter Wijngaards	7c9584e408	- #1217 . DNSCrypt support, with --enable-dnscrypt, libsodium and then enabled in the config file from Manu Bretelle. git-svn-id: file:///svn/unbound/trunk@4065 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-20 14:55:31 +00:00
Wouter Wijngaards	6ac9904ee5	please doxygen. git-svn-id: file:///svn/unbound/trunk@4039 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-08 08:27:17 +00:00
Wouter Wijngaards	cae9809e11	- Response actions based on IP address from Jinmei Tatuya (Infoblox). git-svn-id: file:///svn/unbound/trunk@4035 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-03-07 14:58:51 +00:00
Wouter Wijngaards	e6a54f732e	- Fix for type name change and fix warning on windows compile. git-svn-id: file:///svn/unbound/trunk@4002 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-02-08 13:55:28 +00:00
Wouter Wijngaards	4c17395deb	- Fix 1211: Fix can't enable interface-automatic if no IPv6 with more helpful error message. git-svn-id: file:///svn/unbound/trunk@3995 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-26 11:03:06 +00:00
Wouter Wijngaards	ff1b857f90	compile fix git-svn-id: file:///svn/unbound/trunk@3990 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-19 11:34:21 +00:00
Wouter Wijngaards	c010e93d4a	- Fix to rename internally used types from _t to _type, because _t type names are reserved by POSIX. - iana portlist update git-svn-id: file:///svn/unbound/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-19 10:25:41 +00:00
Wouter Wijngaards	3a1ffe4c69	- Fix #1185 : Source IP rate limiting, patch from Larissa Feng. git-svn-id: file:///svn/unbound/trunk@3981 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-05 13:57:12 +00:00
Wouter Wijngaards	9b4b0de746	- Fix #1184 : Log DNS replies. This includes the same logging information that DNS queries and response code and response size, patch from Larissa Feng. git-svn-id: file:///svn/unbound/trunk@3980 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-05 11:39:54 +00:00
Wouter Wijngaards	3f7248fa11	Remove warnings about unused variables. git-svn-id: file:///svn/unbound/trunk@3977 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-03 14:01:12 +00:00
Wouter Wijngaards	cd7db58ce3	- configure --enable-systemd and lets unbound use systemd sockets if you enable use-systemd: yes in unbound.conf. Also there are contrib/unbound.socket and contrib/unbound.service: systemd files for unbound, install them in /usr/lib/systemd/system. Contributed by Sami Kerola and Pavel Odintsov. git-svn-id: file:///svn/unbound/trunk@3975 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-03 13:43:29 +00:00
Ralph Dolmans	3869421258	Pass RCODE value to encode as int to local_error_encode() git-svn-id: file:///svn/unbound/trunk@3973 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-23 12:34:02 +00:00
Ralph Dolmans	b4b2c18909	- Fix #1190 : Do not echo back EDNS options in local-zone error response. - iana portlist update git-svn-id: file:///svn/unbound/trunk@3972 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-23 11:46:54 +00:00
Ralph Dolmans	6f757b28f3	- Fix #1191 : remove comment about view deletion. git-svn-id: file:///svn/unbound/trunk@3970 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-19 11:37:05 +00:00
Wouter Wijngaards	235e1399eb	- Fix #1182 : Fix Resource leak (socket), at startup. git-svn-id: file:///svn/unbound/trunk@3961 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-13 12:55:55 +00:00
George Thessalonikefs	7b948b0647	- Added generic EDNS code for registering known EDNS option codes, bypassing the cache response stage and uniquifying mesh states. Four EDNS option lists were added to module_qstate (module_qstate.edns_opts_*) to store EDNS options from/to front/back side. - Added two flags to module_qstate (no_cache_lookup, no_cache_store) that control the modules' cache interactions. - Added code for registering inplace callback functions. The registered functions can be called just before replying with local data or Chaos, replying from cache, replying with SERVFAIL, replying with a resolved query, sending a query to a nameserver. The functions can inspect the available data and maybe change response/query related data (i.e. append EDNS options). - Updated Python module for the above. - Updated Python documentation. git-svn-id: file:///svn/unbound/trunk@3947 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-06 13:42:51 +00:00
Ralph Dolmans	3e1ff464f1	add unset type to localzone_type enum, used for unset tag_action elements git-svn-id: file:///svn/unbound/trunk@3946 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-05 15:52:47 +00:00
Ralph Dolmans	3b96c4c9cd	- Fix #1173 : differ local-zone type deny from unset tag_actions element. git-svn-id: file:///svn/unbound/trunk@3945 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-05 14:48:49 +00:00
Ralph Dolmans	3044b805b3	Remove bugzila reference git-svn-id: file:///svn/unbound/trunk@3943 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-12-01 14:49:54 +00:00
Wouter Wijngaards	6450a5b191	- braces in view.c around lock statements. git-svn-id: file:///svn/unbound/trunk@3939 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-29 15:28:25 +00:00
Ralph Dolmans	9581c39dcc	- QNAME minimisation uses QTYPE=A, therefore always check cache for this type in harden-below-nxdomain functionality. git-svn-id: file:///svn/unbound/trunk@3932 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-22 10:50:53 +00:00
Wouter Wijngaards	88e8fb1029	remove unused variables. git-svn-id: file:///svn/unbound/trunk@3931 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-22 10:18:33 +00:00
Ralph Dolmans	3e5cf4da0b	- Make access-control-tag-data RDATA absolute. This makes the RDATA origin consistent between local-data and access-control-tag-data. - Fix NSEC ENT wildcard check. Matching wildcard does not have to be a subdomain of the NSEC owner. git-svn-id: file:///svn/unbound/trunk@3930 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-22 10:10:48 +00:00
Wouter Wijngaards	68e4ef21db	- Fix #1154 : segfault when reading config with duplicate zones. git-svn-id: file:///svn/unbound/trunk@3922 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-11-04 08:16:55 +00:00
Wouter Wijngaards	2785225a43	- Fixup query_info local_alias init. git-svn-id: file:///svn/unbound/trunk@3901 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-20 15:05:30 +00:00
Wouter Wijngaards	4cd296a3f3	- Fixup query_info local_alias init. git-svn-id: file:///svn/unbound/trunk@3899 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-20 14:55:57 +00:00
Wouter Wijngaards	44ab21485d	- init lzt variable, for older gcc compiler warnings. git-svn-id: file:///svn/unbound/trunk@3896 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-20 07:57:12 +00:00
Wouter Wijngaards	9b43579c03	- Please doxygen by modifying mesh.h git-svn-id: file:///svn/unbound/trunk@3892 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-18 13:59:17 +00:00
Wouter Wijngaards	365a5666f3	- Fix #1125 : unbound could reuse an answer packet incorrectly for clients with different EDNS parameters, from Jinmei Tatuya. git-svn-id: file:///svn/unbound/trunk@3888 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-18 13:42:08 +00:00
Wouter Wijngaards	503df095b2	- Patch that resolves CNAMEs entered in local-data conf statements that point to data on the internet, from Jinmei Tatuya (Infoblox). git-svn-id: file:///svn/unbound/trunk@3885 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-18 13:18:20 +00:00
Wouter Wijngaards	dd2711d78c	- Re-fix #839 from view commit overwrite. git-svn-id: file:///svn/unbound/trunk@3882 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-17 14:37:59 +00:00
Ralph Dolmans	840142397d	- Free view config elements. git-svn-id: file:///svn/unbound/trunk@3881 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-12 10:09:42 +00:00
Ralph Dolmans	b587c7f72d	Added views functionality. git-svn-id: file:///svn/unbound/trunk@3876 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-05 09:36:25 +00:00
Wouter Wijngaards	145bdd7466	- Fix Nits for 1.5.10 reported by Dag-Erling Smorgrav. git-svn-id: file:///svn/unbound/trunk@3875 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-30 09:37:20 +00:00
Wouter Wijngaards	51652cf8d5	- Fix #841 : big local-zone's make it consume large amounts of memory. git-svn-id: file:///svn/unbound/trunk@3874 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-29 13:11:26 +00:00
Wouter Wijngaards	3334ab389c	- Fix #839 : Memory grows unexpectedly with large RPZ files. git-svn-id: file:///svn/unbound/trunk@3872 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-29 08:08:51 +00:00
Wouter Wijngaards	8a19ff3baf	- Fix #836 : unbound could echo back EDNS options in an error response. git-svn-id: file:///svn/unbound/trunk@3870 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-27 12:22:56 +00:00
Wouter Wijngaards	2127c65561	- Fix dnstap relaying "random" messages instead of resolver/forwarder responses, from Nikolay Edigaryev. git-svn-id: file:///svn/unbound/trunk@3869 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-27 11:56:55 +00:00
Wouter Wijngaards	ac5ba1b8ec	Fixup unlock. git-svn-id: file:///svn/unbound/trunk@3859 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-15 11:48:37 +00:00
Wouter Wijngaards	10e6b1ed99	- Fix 883: error for duplicate local zone entry. git-svn-id: file:///svn/unbound/trunk@3858 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-15 10:59:26 +00:00
Wouter Wijngaards	1fe24566ad	please lint but also allow larger structure git-svn-id: file:///svn/unbound/trunk@3855 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-13 11:38:16 +00:00
Wouter Wijngaards	9d4eb4cac5	- Fix for new splint on FreeBSD. Fix cast for sockaddr_un.sun_len. git-svn-id: file:///svn/unbound/trunk@3854 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-13 11:35:33 +00:00
Wouter Wijngaards	843300dec5	- Fix #828 : missing type in access-control-tag-action redirect results in NXDOMAIN. git-svn-id: file:///svn/unbound/trunk@3850 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-09-05 14:30:24 +00:00
Ralph Dolmans	3bf062aa2d	Fix #820 : set sldns_str2wire_rr_buf() dual meaning len parameter in each iteration in find_tag_datas(). git-svn-id: file:///svn/unbound/trunk@3832 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-08-24 09:18:38 +00:00
Wouter Wijngaards	d2dee3d5a4	- Fix #804 : unbound stops responding after outage. Fixes queries that attempt to wait for an empty list of subqueries. git-svn-id: file:///svn/unbound/trunk@3830 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-08-23 08:30:12 +00:00
Wouter Wijngaards	42f14e7c4d	- Fix #802 : workaround for function parameters that are "unused" without log_assert. git-svn-id: file:///svn/unbound/trunk@3823 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-22 07:05:52 +00:00
Wouter Wijngaards	ef38c58e5f	remove statement before declaration warning. git-svn-id: file:///svn/unbound/trunk@3820 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-19 10:30:53 +00:00
Wouter Wijngaards	e71f0b2f34	- Fix #798 : Client-side TCP fast open fails (Linux). git-svn-id: file:///svn/unbound/trunk@3819 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-18 13:54:32 +00:00
Wouter Wijngaards	95e9dff362	- TCP Fast open patch from Sara Dickinson. git-svn-id: file:///svn/unbound/trunk@3814 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-14 07:06:34 +00:00
Wouter Wijngaards	48ca4dc880	lint. git-svn-id: file:///svn/unbound/trunk@3813 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-07 10:31:50 +00:00
Wouter Wijngaards	1e77fb2630	lint. git-svn-id: file:///svn/unbound/trunk@3812 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-07 10:27:16 +00:00
Wouter Wijngaards	17023457a9	- access-control-tag-data implemented. verbose(4) prints tag debug. git-svn-id: file:///svn/unbound/trunk@3811 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-07 10:20:05 +00:00
Wouter Wijngaards	1394dcba69	- Fix #787 : outgoing-interface netblock/64 ipv6 option to use linux freebind to use 64bits of entropy for every query with random local part. git-svn-id: file:///svn/unbound/trunk@3804 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-07-04 14:51:30 +00:00
Ralph Dolmans	13c1c11623	typo fix (thanks lint) git-svn-id: file:///svn/unbound/trunk@3798 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-24 19:20:13 +00:00
Ralph Dolmans	54b820773c	- Possibility to specify local-zone types for an acl/tag pair - Possibility to specify (override) local-zone types for a source address block git-svn-id: file:///svn/unbound/trunk@3797 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-24 19:08:58 +00:00
Wouter Wijngaards	68d797e322	fixup lookup to find for tag and override. git-svn-id: file:///svn/unbound/trunk@3768 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-07 15:05:54 +00:00
Ralph Dolmans	2d69c5d879	- Possibility to lookup local_zone regardless the taglist. - Added local_zone/taglist/acl unit test. git-svn-id: file:///svn/unbound/trunk@3767 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-07 14:31:30 +00:00
Ralph Dolmans	2fc81904c6	- Lint fix git-svn-id: file:///svn/unbound/trunk@3765 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-07 08:43:30 +00:00
Ralph Dolmans	ff091efe7b	- Lookup localzones by taglist from acl. git-svn-id: file:///svn/unbound/trunk@3764 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-07 08:36:19 +00:00
Wouter Wijngaards	65bcb9b0ca	- local-zone-override config directive. git-svn-id: file:///svn/unbound/trunk@3758 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-06-06 10:00:25 +00:00
Wouter Wijngaards	031caba9c0	- and also generic edns options for upstream messages (and replies). after parse use edns_opt_find(edns.opt_list, LDNS_EDNS_NSID), to insert use edns_opt_append(edns, region, code, len, bindata) on the opt_list passed to send_query, or in edns_opt_inplace_reply. git-svn-id: file:///svn/unbound/trunk@3742 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-05-31 16:55:22 +00:00
Wouter Wijngaards	3904c2be9a	fixup upstream edns opts. git-svn-id: file:///svn/unbound/trunk@3741 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-05-31 15:52:33 +00:00
Wouter Wijngaards	40dd2acfd9	- generic edns option parse and store code. git-svn-id: file:///svn/unbound/trunk@3740 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-05-31 15:08:05 +00:00
Wouter Wijngaards	455a681204	- Fix memory leak in out-of-memory conditions of local zone add. git-svn-id: file:///svn/unbound/trunk@3717 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-05-06 06:56:51 +00:00
Wouter Wijngaards	3e41fd11fc	- Fix #759 : 0x20 capsforid no longer checks type PTR, for compatibility with cisco dns guard. This lowers false positives. git-svn-id: file:///svn/unbound/trunk@3715 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-28 07:24:50 +00:00
Wouter Wijngaards	83041d2695	Fix input length. git-svn-id: file:///svn/unbound/trunk@3711 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-21 12:29:27 +00:00
Wouter Wijngaards	6e185cb944	please lint. git-svn-id: file:///svn/unbound/trunk@3709 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-21 09:57:44 +00:00
Wouter Wijngaards	46d476b0c2	define-tag and local-zone-tag configuration. git-svn-id: file:///svn/unbound/trunk@3708 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-21 09:49:02 +00:00
Wouter Wijngaards	636e2ef520	please lint. git-svn-id: file:///svn/unbound/trunk@3704 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-18 12:39:16 +00:00
Wouter Wijngaards	f64c2d8d08	Slightly more general (i.e. for TYPE0 too). git-svn-id: file:///svn/unbound/trunk@3703 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-18 12:23:21 +00:00
Wouter Wijngaards	0d5d685514	Explain what we do. git-svn-id: file:///svn/unbound/trunk@3702 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-18 12:00:57 +00:00
Wouter Wijngaards	e77a3a9941	- Fix some malformed reponses to edns queries get fallback to nonedns. git-svn-id: file:///svn/unbound/trunk@3701 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-18 11:56:55 +00:00
Wouter Wijngaards	f103787644	- cachedb module framework (empty). git-svn-id: file:///svn/unbound/trunk@3698 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-04-14 14:50:18 +00:00
Ralph Dolmans	5d061f13f9	- Validate QNAME minimised NXDOMAIN responses. - If QNAME minimisation is enabled, do cache lookup for QTYPE NS in harden-below-nxdomain. git-svn-id: file:///svn/unbound/trunk@3682 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-18 15:44:41 +00:00
Wouter Wijngaards	98a2afd40b	Fix. git-svn-id: file:///svn/unbound/trunk@3677 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-16 08:15:27 +00:00
Wouter Wijngaards	1ce7fded61	- Fix ip-transparent for tcp on freebsd. git-svn-id: file:///svn/unbound/trunk@3676 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-16 08:13:25 +00:00
Wouter Wijngaards	2e55b493c6	- Fix ip-transparent for ipv6 on FreeBSD. git-svn-id: file:///svn/unbound/trunk@3675 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-16 07:20:35 +00:00
Wouter Wijngaards	9f8b2bb468	- ip_freebind: yesno option in unbound.conf sets IP_FREEBIND for binding to an IP address while the interface or address is down. git-svn-id: file:///svn/unbound/trunk@3673 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-15 09:35:48 +00:00
Wouter Wijngaards	4f1625afb7	- Fix #747 : assert in outnet_serviced_query_stop. git-svn-id: file:///svn/unbound/trunk@3646 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-03-07 10:00:08 +00:00
Wouter Wijngaards	df8ff4f745	- Set IPPROTO_IP6 for ipv6 sockets otherwise invalid argument error. git-svn-id: file:///svn/unbound/trunk@3625 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-02-17 08:02:32 +00:00
Wouter Wijngaards	85de673b6b	- ip-transparent option for FreeBSD with IP_BINDANY socket option. git-svn-id: file:///svn/unbound/trunk@3623 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-02-15 08:17:54 +00:00
Wouter Wijngaards	785697de82	- insecure-lan-zones: yesno config option, patch from Dag-Erling Smørgrav. git-svn-id: file:///svn/unbound/trunk@3619 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-02-09 13:25:59 +00:00
Wouter Wijngaards	5cb0a1d8ed	- Support RFC7686: handle ".onion" Special-Use Domain. It is blocked by default, and can be unblocked with "nodefault" localzone config. git-svn-id: file:///svn/unbound/trunk@3593 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-01-05 14:02:45 +00:00
Wouter Wijngaards	dd8b5729f2	Fix signed-unsigned lint warnings in tcp-mss. git-svn-id: file:///svn/unbound/trunk@3592 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-01-05 10:08:37 +00:00
Wouter Wijngaards	5d0ad681a2	- #731 : tcp-mss, outgoing-tcp-mss options for unbound.conf, patch from Daisuke Higashi. git-svn-id: file:///svn/unbound/trunk@3591 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-01-05 10:03:59 +00:00
Wouter Wijngaards	2ceed35ca8	- Added assert on rrset cache correctness. git-svn-id: file:///svn/unbound/trunk@3545 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-20 08:08:11 +00:00
Wouter Wijngaards	b8d7976f57	- ANY responses include DNAME records if present, as per Evan Hunt's remark in dnsop. git-svn-id: file:///svn/unbound/trunk@3504 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-10-14 08:02:14 +00:00
Wouter Wijngaards	cb90782087	- Fix #677 Fix DNAME responses from cache that failed internal chain test. git-svn-id: file:///svn/unbound/trunk@3435 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-06-26 07:27:32 +00:00
Wouter Wijngaards	f03d3b870e	- caps-whitelist in unbound.conf allows whitelist of loadbalancers that cannot work with caps-for-id or its fallback. git-svn-id: file:///svn/unbound/trunk@3420 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-05-01 12:36:16 +00:00
Wouter Wijngaards	ddda275d7b	please lint. git-svn-id: file:///svn/unbound/trunk@3411 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-23 14:04:46 +00:00
Wouter Wijngaards	ff898bfdd6	- Synthesize ANY responses from cache. Does not search exhaustively, but MX,A,AAAA,SOA,NS also CNAME. - Fix leaked dns64prefix configuration string. git-svn-id: file:///svn/unbound/trunk@3405 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-17 14:58:07 +00:00
Wouter Wijngaards	e25ac1c2eb	- Add local-zone type inform_deny, that logs query and drops answer. git-svn-id: file:///svn/unbound/trunk@3398 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-16 08:23:06 +00:00
Wouter Wijngaards	c03ff186ec	fixes for undeclared function. git-svn-id: file:///svn/unbound/trunk@3394 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 12:19:30 +00:00
Wouter Wijngaards	85192d4569	- unbound-control ratelimit_list lists high rate domains. git-svn-id: file:///svn/unbound/trunk@3393 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 12:13:59 +00:00
Wouter Wijngaards	bc658e0361	Fixes. git-svn-id: file:///svn/unbound/trunk@3392 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 10:57:25 +00:00
Wouter Wijngaards	e30a90febc	- ratelimit feature, ratelimit: 100, or some sensible qps, can be used to turn it on. It ratelimits recursion effort per zone. For particular names you can configure exceptions in unbound.conf. git-svn-id: file:///svn/unbound/trunk@3391 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-10 09:59:57 +00:00
Wouter Wijngaards	e0631733a6	- Fix crash in dnstap: Do not try to log TCP responses after timeout. git-svn-id: file:///svn/unbound/trunk@3390 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-04-08 19:58:06 +00:00
Wouter Wijngaards	06fa21b0da	Fixup rrset unlock in case of allocation failure. git-svn-id: file:///svn/unbound/trunk@3381 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 13:15:55 +00:00
Wouter Wijngaards	b2bdce46be	- rename ldns subdirectory to sldns to avoid name collision. git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 10:21:38 +00:00
Wouter Wijngaards	6feb8fb6a5	- Fixes to add integer overflow checks on allocation (defense in depth). git-svn-id: file:///svn/unbound/trunk@3372 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-20 15:36:25 +00:00
Wouter Wijngaards	0a0b37be65	fixup compiler warning on OpenBSD. git-svn-id: file:///svn/unbound/trunk@3371 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-19 14:47:42 +00:00
Wouter Wijngaards	77088b12ff	- Add ip-transparent config option for bind to non-local addresses. git-svn-id: file:///svn/unbound/trunk@3369 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-19 09:50:35 +00:00
Wouter Wijngaards	679f545d08	- Portability to Solaris 10, use AF_LOCAL. git-svn-id: file:///svn/unbound/trunk@3339 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-02-20 13:55:09 +00:00
Wouter Wijngaards	83ba5ffcf4	- Portability fix for Solaris ('sun' is not usable for a variable). git-svn-id: file:///svn/unbound/trunk@3326 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-30 15:32:59 +00:00
Wouter Wijngaards	c9a20c4a33	Fixup control socket test for OSX. git-svn-id: file:///svn/unbound/trunk@3320 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-23 16:00:33 +00:00
Wouter Wijngaards	79044dc6cf	- windows port fixes, no AF_LOCAL, no chown, no chmod(grp). git-svn-id: file:///svn/unbound/trunk@3319 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-23 15:23:58 +00:00
Wouter Wijngaards	f890257321	- Cast sun_len sizeof to socklen_t. git-svn-id: file:///svn/unbound/trunk@3312 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-12 08:20:43 +00:00
Wouter Wijngaards	d6ba537156	please lint on FreeBSD git-svn-id: file:///svn/unbound/trunk@3308 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:49:34 +00:00
Wouter Wijngaards	f46bcc5b6f	please lint. git-svn-id: file:///svn/unbound/trunk@3305 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:18:03 +00:00
Wouter Wijngaards	df73be98bd	- patch for remote control over local sockets, from Dag-Erling Smorgrav, Ilya Bakulin. Use control-interface: /path/sock and control-use-cert: no. git-svn-id: file:///svn/unbound/trunk@3304 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-06 14:12:59 +00:00
Wouter Wijngaards	ac5ccb6db6	- Fix #634 : fix fail to start on Linux LTS 3.14.X, ignores missing IP_MTU_DISCOVER OMIT option. git-svn-id: file:///svn/unbound/trunk@3298 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-01-05 13:51:22 +00:00
Wouter Wijngaards	1b44c9393e	- local-zone: example.com inform makes unbound log a message with client IP for queries in that zone. Eg. for finding infected hosts. git-svn-id: file:///svn/unbound/trunk@3292 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-12-09 11:29:17 +00:00
Wouter Wijngaards	67a3c4933c	- Fix cdflag dns64 processing. git-svn-id: file:///svn/unbound/trunk@3275 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-11-19 08:43:08 +00:00
Wouter Wijngaards	b781f2d48d	- Fix that CD flag disables DNS64 processing, returning the DNSSEC signed AAAA denial. git-svn-id: file:///svn/unbound/trunk@3273 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-11-18 15:15:57 +00:00
Wouter Wijngaards	f1bcc1032f	More casts. git-svn-id: file:///svn/unbound/trunk@3244 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-13 09:23:12 +00:00
Wouter Wijngaards	339a6be27d	More unsigned chasts for toupper/tolower/ctype git-svn-id: file:///svn/unbound/trunk@3242 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-13 08:35:00 +00:00
Wouter Wijngaards	f1294a93cd	- Updated the TCP_BACLOG from 5 to 256, so that the tcp accept queue is longer and more tcp connections can be handled. git-svn-id: file:///svn/unbound/trunk@3224 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-09-16 13:49:21 +00:00
Wouter Wijngaards	6a7193a016	- Fix tcp timer waiting list removal code. git-svn-id: file:///svn/unbound/trunk@3222 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-09-16 13:08:27 +00:00
Wouter Wijngaards	4153f386d1	remove warning. git-svn-id: file:///svn/unbound/trunk@3213 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-08-22 13:38:30 +00:00
Wouter Wijngaards	8ccba42b1f	- dnstap support, with a patch from Farsight Security, written by Robert Edmonds. The --enable-dnstap needs libfstrm and protobuf-c. It is BSD licensed (see dnstap/dnstap.c). Building with --enable-dnstap needs pkg-config with this patch. - Noted dnstap in doc/README and doc/CREDITS. git-svn-id: file:///svn/unbound/trunk@3206 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-08-05 07:57:52 +00:00
Wouter Wijngaards	45022b6add	- DNS64 from Viagenie (BSD Licensed), written by Simon Perrault. Initial commit of the patch from the FreeBSD base (with its fixes). This adds a module (for module-config in unbound.conf) dns64 that performs DNS64 processing, see README.DNS64. git-svn-id: file:///svn/unbound/trunk@3198 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-07-31 07:15:33 +00:00
Wouter Wijngaards	6fcdb08164	- so-reuseport is available on BSDs(such as FreeBSD 10) and OS/X. git-svn-id: file:///svn/unbound/trunk@3153 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-06-27 14:11:57 +00:00
Wouter Wijngaards	bc7f906590	- Fix caps-for-id fallback, and added fallback attempt when servers drop 0x20 perturbed queries. git-svn-id: file:///svn/unbound/trunk@3146 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-06-24 08:24:28 +00:00
Wouter Wijngaards	bdc57e5be5	- Feature, unblock-lan-zones: yesno that you can use to make unbound perform 10.0.0.0/8 and other reverse lookups normally, for use if unbound is running service for localhost on localhost. git-svn-id: file:///svn/unbound/trunk@3133 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-05-20 10:38:32 +00:00
Wouter Wijngaards	eab2ccf0a8	- Implement draft-ietf-dnsop-rfc6598-rfc6303-01. git-svn-id: file:///svn/unbound/trunk@3129 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-05-09 14:33:10 +00:00
Wouter Wijngaards	c19f818c52	- Fix #545 : improved logging, the ip address of the error is printed on the same log-line as the error. git-svn-id: file:///svn/unbound/trunk@3112 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-04-10 14:40:20 +00:00
Wouter Wijngaards	eb5e9a89c4	- Fix #558 : failed prefetch lookup does not remove cached response but delays next prefetch (in lieu of caching a SERVFAIL). git-svn-id: file:///svn/unbound/trunk@3111 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-04-10 13:56:16 +00:00
Wouter Wijngaards	330b3219a0	- unbound-control stats prints num.query.tcpout with number of TCP outgoing queries made in the previous statistics interval. git-svn-id: file:///svn/unbound/trunk@3108 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-04-10 09:13:58 +00:00
Wouter Wijngaards	470b7bda87	- Patch from Hannes Frederic Sowa for Linux 3.15 fragmentation option for DNS fragmentation defense. git-svn-id: file:///svn/unbound/trunk@3107 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-04-10 08:35:45 +00:00
Matthijs Mekking	492a5ca681	only whitespace changes git-svn-id: file:///svn/unbound/trunk@3088 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-02-18 13:54:19 +00:00
Wouter Wijngaards	c5f1cfa863	And starts service on Minix. git-svn-id: file:///svn/unbound/trunk@3084 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-02-14 09:50:25 +00:00
Wouter Wijngaards	2b90f38a70	And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. git-svn-id: file:///svn/unbound/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-02-07 13:28:39 +00:00
Wouter Wijngaards	0fbe678e68	- delay-close does not act if there are udp-wait queries, so that it does not make a socketdrain DoS easier. git-svn-id: file:///svn/unbound/trunk@3059 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-01-30 09:27:00 +00:00
Wouter Wijngaards	d8e5a83392	- delay-close: msec option that delays closing ports for which the UDP reply has timed out. Keeps the port open, only accepts the correct reply. This correct reply is not used, but the port is open so that no port-denied ICMPs are generated. git-svn-id: file:///svn/unbound/trunk@3058 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-01-28 14:35:55 +00:00
Wouter Wijngaards	958b2bcf96	- reuseport is attempted, then fallback to without on failure. git-svn-id: file:///svn/unbound/trunk@3054 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-01-27 10:27:19 +00:00
Wouter Wijngaards	79dd0f33e0	Remove warnings on BSD systems. git-svn-id: file:///svn/unbound/trunk@3053 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-01-24 15:15:37 +00:00

... 6 7 8 9 10 ...

1137 commits