Wouter Wijngaards
3708097870
Fixup decompression for private-name checks.
...
git-svn-id: file:///svn/unbound/trunk@1334 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-11-06 10:59:31 +00:00
Wouter Wijngaards
83a017d3d1
stub-prime option.
...
git-svn-id: file:///svn/unbound/trunk@1319 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-22 12:01:40 +00:00
Wouter Wijngaards
00f301d35f
Ask more nameservers if choice is limited.
...
Lowered bogus-ttl to help validation-failure recovery times.
git-svn-id: file:///svn/unbound/trunk@1313 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-20 14:24:35 +00:00
Wouter Wijngaards
f4ad52dffd
Do not query bogus name servers.
...
git-svn-id: file:///svn/unbound/trunk@1312 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-20 13:51:47 +00:00
Wouter Wijngaards
a0d9d48d8f
root prime validation
...
git-svn-id: file:///svn/unbound/trunk@1309 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-17 15:07:28 +00:00
Wouter Wijngaards
bf659c8362
Referral path checking, for spoof mitigation, improved.
...
git-svn-id: file:///svn/unbound/trunk@1305 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-15 13:32:49 +00:00
Wouter Wijngaards
dbaa5194a6
Recursion lame is detected and last resort is used to resolve.
...
git-svn-id: file:///svn/unbound/trunk@1294 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-13 09:11:42 +00:00
Wouter Wijngaards
b6696c1342
nsec3 negative cache works.
...
git-svn-id: file:///svn/unbound/trunk@1292 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-09 15:06:35 +00:00
Wouter Wijngaards
c73c662fce
work on nsec3 negative cache for qtype DS .
...
git-svn-id: file:///svn/unbound/trunk@1290 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-08 14:42:46 +00:00
Wouter Wijngaards
45afaf3e08
nsec negative DS.
...
git-svn-id: file:///svn/unbound/trunk@1289 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-08 10:04:27 +00:00
Wouter Wijngaards
939fabd809
0x20 fallback code.
...
git-svn-id: file:///svn/unbound/trunk@1285 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-10-06 14:46:22 +00:00
Wouter Wijngaards
3385bcc255
Stub on same host works
...
git-svn-id: file:///svn/unbound/trunk@1276 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-30 13:40:44 +00:00
Wouter Wijngaards
cfceb6487d
lookup delegation from cache and printout.
...
git-svn-id: file:///svn/unbound/trunk@1266 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-23 10:55:36 +00:00
Wouter Wijngaards
121cb15d67
remote control setup, port binding and service.
...
git-svn-id: file:///svn/unbound/trunk@1227 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-10 15:23:01 +00:00
Wouter Wijngaards
26429c9457
refactored code.
...
git-svn-id: file:///svn/unbound/trunk@1225 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-04 14:29:05 +00:00
Wouter Wijngaards
72904a3366
private-addresses.
...
git-svn-id: file:///svn/unbound/trunk@1224 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-04 12:25:15 +00:00
Wouter Wijngaards
ff1a7ec42e
private address and private domain config option read and store.
...
git-svn-id: file:///svn/unbound/trunk@1223 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-09-03 14:40:09 +00:00
Wouter Wijngaards
a66e16cb31
new NS queries is not an option (off by default).
...
git-svn-id: file:///svn/unbound/trunk@1219 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-08-29 14:46:08 +00:00
Wouter Wijngaards
82ce090a35
Remove overreaching NSEC rrsets.
...
git-svn-id: file:///svn/unbound/trunk@1207 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-08-26 10:32:46 +00:00
Wouter Wijngaards
1e4e8cb68a
- Fixup rrset security updates overwriting 2181 trust status.
...
This makes validated to be insecure data just as worthless as
nonvalidated data, and 2181 rules prevent cache overwrites to them.
- Fix assertion fail on bogus key handling.
- dnssec lameness detection works on first query at trust apex.
- NS queries get proper cache and dnssec lameness treatment.
- fixup compilation without pthreads on linux.
- NS queries are done after every referral.
validator is used on those NS records (if anchors enabled).
git-svn-id: file:///svn/unbound/trunk@1185 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-08-12 10:13:57 +00:00
Wouter Wijngaards
4fe0d98ff4
Same scrubber patch to trunk.
...
git-svn-id: file:///svn/unbound/trunk@1181 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-08-07 07:31:05 +00:00
Matthijs Mekking
14f657933c
free prev and origin after failing reading root hints.
...
note:
valgrind still complains about the following:
==19935== by 0x40581E1: ldns_key_buf2rsa_raw (dnssec.c:421)
==19935== by 0x40B1151: dnskey_verify_rrset_sig (val_sigcrypt.c:1265)
git-svn-id: file:///svn/unbound/trunk@1144 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-07-03 14:01:15 +00:00
Wouter Wijngaards
5eb7ff35ca
fixup for newegg lameness.
...
git-svn-id: file:///svn/unbound/trunk@1137 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-06-25 09:39:57 +00:00
Wouter Wijngaards
8527bd4aff
Fixup Richard Doty reported lameness detection fault.
...
git-svn-id: file:///svn/unbound/trunk@1111 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-06-09 08:29:59 +00:00
Wouter Wijngaards
283f2a5edb
if multiple CNAME's, use the first.
...
git-svn-id: file:///svn/unbound/trunk@1109 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-06-08 09:27:48 +00:00
Wouter Wijngaards
aab6da9362
IPv6 servers
...
TODO items
git-svn-id: file:///svn/unbound/trunk@1078 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-05-13 12:33:41 +00:00
Wouter Wijngaards
30a1d557bd
porting.
...
git-svn-id: file:///svn/unbound/trunk@1056 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-04-16 16:09:25 +00:00
Wouter Wijngaards
64627b1a63
RTT banding, more spoof resistance randomness.
...
git-svn-id: file:///svn/unbound/trunk@1019 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-03-25 15:33:24 +00:00
Wouter Wijngaards
87700fea40
Enforce presence of query section in reply.
...
git-svn-id: file:///svn/unbound/trunk@1018 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-03-25 14:03:31 +00:00
Wouter Wijngaards
677d67c29c
Patch from Koji, thanks!
...
git-svn-id: file:///svn/unbound/trunk@1015 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-03-05 14:54:51 +00:00
Wouter Wijngaards
39b2a21a81
Answers use same case as query does.
...
git-svn-id: file:///svn/unbound/trunk@993 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-26 20:45:20 +00:00
Wouter Wijngaards
f3cfe6ed9c
- setup speec_cache for need-ldns-testns in dotests.
...
- check number of queued replies on incoming queries to avoid overload
on that account.
- fptr whitelist checks are not disabled in optimize mode.
git-svn-id: file:///svn/unbound/trunk@971 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-20 07:18:42 +00:00
Wouter Wijngaards
b2710818d4
Faster due to time-sharing.
...
git-svn-id: file:///svn/unbound/trunk@966 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-19 13:12:23 +00:00
Wouter Wijngaards
0866b8e60b
donotq localhost default back on yes.
...
git-svn-id: file:///svn/unbound/trunk@965 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-19 09:12:35 +00:00
Wouter Wijngaards
dd7ffb54ee
nicer code.
...
git-svn-id: file:///svn/unbound/trunk@962 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-18 13:20:14 +00:00
Wouter Wijngaards
a0cc6dfc5a
Fixed bug in RD flag setting.
...
perf works better with long taking queries.
git-svn-id: file:///svn/unbound/trunk@961 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-18 13:16:06 +00:00
Wouter Wijngaards
f3525b2081
log level 2.
...
git-svn-id: file:///svn/unbound/trunk@930 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-07 11:04:56 +00:00
Wouter Wijngaards
849026931b
move around debug levels.
...
git-svn-id: file:///svn/unbound/trunk@929 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-02-07 09:46:49 +00:00
Wouter Wijngaards
0e1b3fb3e0
chroot checks for roothints and anchor files.
...
git-svn-id: file:///svn/unbound/trunk@910 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-01-30 11:21:20 +00:00
Wouter Wijngaards
97f5d3d28e
more checks by checkconf.
...
git-svn-id: file:///svn/unbound/trunk@842 be551aaa-1e26-0410-a405-d3ace91eadb9
2008-01-11 11:24:30 +00:00
Wouter Wijngaards
75073cefea
library resolution working.
...
git-svn-id: file:///svn/unbound/trunk@809 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-12-06 15:11:07 +00:00
Wouter Wijngaards
fcac316d63
coverity run fixes.
...
git-svn-id: file:///svn/unbound/trunk@803 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-12-04 17:54:14 +00:00
Wouter Wijngaards
e12d274954
fixup for duplication of NSECs / NSEC3s after following CNAMEs
...
(esp. wildcard CNAMEs and in-zone CNAMEs that then include nodata or
nxdomain proofs) where the CNAME is followed again to include more NSECs.
git-svn-id: file:///svn/unbound/trunk@787 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-28 13:41:31 +00:00
Wouter Wijngaards
b6d9b4bfcc
CNAME chain marked as NXDOMAIN normalized to unbound preferred format.
...
git-svn-id: file:///svn/unbound/trunk@783 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-28 09:13:56 +00:00
Wouter Wijngaards
a1cbd214a5
Reduced operation sensitivity of message.
...
git-svn-id: file:///svn/unbound/trunk@779 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-27 16:18:09 +00:00
Wouter Wijngaards
eda6528c14
access-control
...
git-svn-id: file:///svn/unbound/trunk@769 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-19 15:32:55 +00:00
Wouter Wijngaards
435fbd1794
acl list setup. 8 to tab in net_help.
...
git-svn-id: file:///svn/unbound/trunk@753 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-16 16:25:37 +00:00
Wouter Wijngaards
0eddfd7528
new L root.
...
git-svn-id: file:///svn/unbound/trunk@734 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-08 13:02:02 +00:00
Wouter Wijngaards
734abf9323
Fixup of reload bug.
...
git-svn-id: file:///svn/unbound/trunk@726 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-11-01 09:48:20 +00:00
Wouter Wijngaards
861483ac82
dnssec lame servers are used as last effort.
...
git-svn-id: file:///svn/unbound/trunk@716 be551aaa-1e26-0410-a405-d3ace91eadb9
2007-10-23 12:37:18 +00:00