clones/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2024-09-21 22:57:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,842 Commits 27 Branches 196 Tags 104 MiB
3926035f30
Commit Graph

3805 Commits

Author SHA1 Message Date
W.C.A. Wijngaards
4cc559d7eb - Spelling fix. 2020-09-15 13:32:30 +02:00
George Thessalonikefs
0ce7769719 - Introduce test for statistics. 2020-09-15 12:45:22 +02:00
W.C.A. Wijngaards
291ac59888 - Remove x file mode on ipset/ipset.c and h files. 2020-09-11 14:08:10 +02:00
W.C.A. Wijngaards
82f2ee63c5 - Fix num.expired statistics output. 2020-09-09 11:44:44 +02:00
W.C.A. Wijngaards
afbc7bb4fe - Fix #296: systemd nss-lookup.target is reached before unbound can 
successfully answer queries. Changed contrib/unbound.service.in.
 2020-08-31 11:50:11 +02:00
W.C.A. Wijngaards
47a5dc8cae - Refactor to use sock_strerr shorthand function. 2020-08-31 09:12:01 +02:00
W.C.A. Wijngaards
a6dc0743b4 - Merge PR #293: Add missing prototype. Also refactor to use the new 
shorthand function to clean up the code.
 2020-08-31 08:41:34 +02:00
W.C.A. Wijngaards
12c0cf7cee - Review fix, doxygen and assign null in case of error free. 2020-08-27 15:27:05 +02:00
W.C.A. Wijngaards
f6a527c25a - Similar to NSD PR#113, implement that interface names can be used, 
eg. something like interface: eth0 is resolved at server start and
  uses the IP addresses for that named interface.
 2020-08-27 14:53:33 +02:00
George Thessalonikefs
a912786ca9 - Update documentation in python example code. 2020-08-26 11:59:09 +02:00
W.C.A. Wijngaards
aa602fdd0c - Change configure to use EVP_sha256 instead of HMAC_Update for 
openssl-3.0.0.
 2020-08-24 16:13:42 +02:00
W.C.A. Wijngaards
45d4cbaa42 - Fix to apply chroot to dnstap-socket-path, if chroot is enabled. 2020-08-24 14:55:16 +02:00
W.C.A. Wijngaards
45712de9a2 - Fix that dnstap reconnects do not spam the log with the repeated 
attempts.  Attempts on the timer are only logged on high verbosity,
  if they produce a connection failure error.
 2020-08-24 09:23:36 +02:00
Ralph Dolmans
e6ebabc0cc - Fix stats double count issue (#289). 2020-08-20 17:54:28 +02:00
Ralph Dolmans
8b05dcdf8c - Create and init edns tags data for libunbound. 2020-08-13 14:57:21 +02:00
W.C.A. Wijngaards
b75ff25cfd Changelog note. 
- Rerun autoconf
 2020-08-10 17:43:19 +02:00
Ralph Dolmans
59a66601f0 Add changlog entry for PR #277. 2020-08-10 17:35:18 +02:00
W.C.A. Wijngaards
a3f95d3358 - Fix #287: doc typo: "Additionaly". 2020-08-10 08:15:06 +02:00
W.C.A. Wijngaards
f35293caba Changelog note for #246 and #284 
- Merge PR #284 and Fix #246: Remove DLV entirely from Unbound.
  The DLV has been decommisioned and in unbound 1.5.4, in 2015, there
  was advise to stop using it.  The current code base does not contain
  DLV code any more.  The use of dlv options displays a warning.
 2020-08-06 14:23:33 +02:00
W.C.A. Wijngaards
50091d49ea - contrib/aaaa-filter-iterator.patch file renewed diff content to 
apply cleanly to the current coderepo for the current code version.
 2020-08-05 16:33:48 +02:00
Ralph Dolmans
ce0b39007d - Changelog entry for EDNS client tag functionality 2020-08-05 16:10:10 +02:00
George Thessalonikefs
ded7fdafb3 - Merge PR #280, Make tvOS & watchOS checks verify 
truthiness as well as definedness, by Felipe Gasper (fixes #279).
 2020-08-04 16:38:40 +02:00
George Thessalonikefs
764a0dc765 - Improve error log message when inserting rpz RR. 2020-08-04 12:49:43 +02:00
W.C.A. Wijngaards
fc55345dcb - Fix mini_event.h on OpenBSD cannot find fd_set. 2020-08-04 08:14:25 +02:00
W.C.A. Wijngaards
e855d5779a - Fix doxygen comment for no ssl for tls session ticket key callback 
routine.
 2020-07-31 09:10:40 +02:00
George Thessalonikefs
69f0adf83b - Merge PR #268, draft-ietf-dnsop-serve-stale-10 has become RFC 8767 on 
March 2020, by and0x000.
 2020-07-27 13:11:46 +02:00
W.C.A. Wijngaards
e4b702ef4f Changelog note for PR #270 
- Merge PR #270 from cgzones: munin plugin: always exit 0 in autoconf
 2020-07-27 13:02:47 +02:00
Ralph Dolmans
4bd97633a1 - Merge PR #269, Fix python module len() implementations, by Torbjörn Lönnemark 2020-07-27 12:14:08 +02:00
W.C.A. Wijngaards
d201a11a67 - branch now named 1.11.1. 1.11.0rc1 became the 1.11.0 release. 2020-07-27 12:10:28 +02:00
W.C.A. Wijngaards
753487ff7f - branch now named 1.11.0 and 1.11.0rc1 tag. 2020-07-20 13:02:09 +02:00
W.C.A. Wijngaards
c8ff4f55e7 - Fix contrib/fastrpz.patch to apply cleanly. It fixes for changes 
due to added libdynmod, but it does not compile, it conflicts with
  new rpz code.
 2020-07-20 11:05:28 +02:00
W.C.A. Wijngaards
477bb1a6ff - Fix contrib/fastrpz.patch to apply cleanly. 2020-07-20 10:53:30 +02:00
W.C.A. Wijngaards
53ecdfc0b5 - Fix streamtcp to print packet data to stdout. This makes the 
stdout and stderr not mix together lines, when parsing its output.
 2020-07-20 10:34:40 +02:00
W.C.A. Wijngaards
b7b5952c3a - Fix lock dependency cycle in rpz zone config setup. 2020-07-17 17:15:55 +02:00
W.C.A. Wijngaards
7d4445c03d - Fix libnettle compile for session ticket key callback function 
changes.
 2020-07-17 16:53:52 +02:00
Ralph Dolmans
14a0433470 - Merge PR #234 - Ensure proper alignment of cmsg buffers by Jérémie 
Courrèges-Anglas.
- Fix PR #234 log_assert sizeof to use union buffer.
 2020-07-17 13:07:03 +02:00
W.C.A. Wijngaards
2902ee133b - Fix unused variable warning for clang analyzer. 2020-07-16 15:41:25 +02:00
W.C.A. Wijngaards
84adade86c - Fix check conf test for referencing installation paths. 2020-07-16 14:47:15 +02:00
George Thessalonikefs
8876751ed1 - Changelog entry for PR #265; include-toplevel. 2020-07-16 13:01:28 +02:00
Ralph Dolmans
d75f58d659 - Add changelog entry for bidirectional frame streams support. 2020-07-16 11:45:10 +02:00
W.C.A. Wijngaards
e99b5046eb - Fix to use SSL_CTX_set_tlsext_ticket_key_evp_cb in OpenSSL 
3.0.0-alpha4.
- Longer keys for the test set, this avoids weak crypto errors.
 2020-07-08 16:22:39 +02:00
W.C.A. Wijngaards
ff50993f36 - Fix add missing DSA header, for compilation without deprecated 
OpenSSL APIs.
 2020-07-08 11:43:50 +02:00
W.C.A. Wijngaards
d84529cc0e - Review fixes for checkconf #259 change. 2020-07-07 10:18:56 +02:00
W.C.A. Wijngaards
4d009e19fc - Fix #259: Fix unbound-checkconf does not check view existence. 
unbound-checkconf checks access-control-view, access-control-tags,
  access-control-tag-actions and access-control-tag-datas.
- Fix offset of error printout for access-control-tag-datas.
 2020-07-07 09:00:04 +02:00
W.C.A. Wijngaards
233c14a476 - run_vm cleanup better and removes trailing slash on single argument. 2020-07-06 11:33:07 +02:00
W.C.A. Wijngaards
06d33f61c1 - Fix tcp req info drop due to size call into mesh accounting 
removal of mesh state during mesh send reply.
 2020-06-30 17:22:43 +02:00
W.C.A. Wijngaards
52774b6b20 - Review fix for number of detached states due to use of variable 
after end of loop.
 2020-06-30 16:35:48 +02:00
W.C.A. Wijngaards
84b0207956 - Fix for mesh accounting when rpz decides to drop a reply with a 
tcp stream waiting for it.
 2020-06-30 16:20:09 +02:00
W.C.A. Wijngaards
6f0c2956ac - Also move reply list clean for mesh callbacks to the scrip callback 
can see the reply_info.
- Fix for mesh accounting if the reply list already empty to begin
  with.
 2020-06-30 15:48:11 +02:00
W.C.A. Wijngaards
8ac054733b - Move reply list clean for serve expired mesh callback to after 
the reply is sent, so that script callbacks have reply_info.
 2020-06-30 13:41:26 +02:00
W.C.A. Wijngaards
2a90e8fa1e - doxygen file comments for dynlibmodule. 2020-06-24 13:37:43 +02:00
W.C.A. Wijngaards
be1182c3db - iana portlist updated. 2020-06-24 13:33:47 +02:00
W.C.A. Wijngaards
5203954068 - Fix display of event loop method with libev. 2020-06-17 14:32:57 +02:00
W.C.A. Wijngaards
6e0756e819 - Fix default explanation in man page for qname-minimisation-strict. 2020-06-17 08:20:52 +02:00
W.C.A. Wijngaards
c053513cbd - Mention tls name possible when tls is enabled for stub-addr in the 
man page.
 2020-06-08 08:35:10 +02:00
George Thessalonikefs
062f7b7ba2 - Changelog entry for PR #241. 2020-05-27 18:25:29 +02:00
George Thessalonikefs
21cd836e82 - Update contrib/aaaa-filter-iterator.patch for the recent 
generate_sub_request() change and to apply cleanly.
 2020-05-25 11:49:48 +02:00
George Thessalonikefs
8af3d73b9b - Fix for integer overflow when printing RDF_TYPE_TIME. 2020-05-21 22:48:57 +02:00
W.C.A. Wijngaards
f37242566b - For PR #93: unit test for dynlib module. 2020-05-19 15:49:08 +02:00
W.C.A. Wijngaards
711c0548f0 - For PR #93: windows compile warnings removal 
- windows compile warnings removal for ip dscp option code.
 2020-05-19 14:36:57 +02:00
W.C.A. Wijngaards
a1d4e151ee - Release 1.10.1 is 1.10.0 with fixes, code repository continues, 
including those fixes, towards the next release.  Configure has
  version 1.10.2 version number in it.
 2020-05-19 10:29:37 +02:00
W.C.A. Wijngaards
ba0f382eee - CVE-2020-12662 Unbound can be tricked into amplifying an incoming 
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
  used to make Unbound unresponsive.
 2020-05-19 10:27:27 +02:00
W.C.A. Wijngaards
4ccac696ca - For PR #93: fix link of other executables for dynlibmod dependency. 2020-05-18 17:26:01 +02:00
W.C.A. Wijngaards
a238f35d7d - For PR #93: man page spelling reference fix. 2020-05-18 10:22:00 +02:00
W.C.A. Wijngaards
a77ebed550 - For PR #93: checkconf allows python dynlib in module-config, for 
a couple cases.
 2020-05-18 10:18:28 +02:00
W.C.A. Wijngaards
84e95d6c68 - For PR #93: checkconf allow multiple dynlib in module-config, for 
a couple cases.
 2020-05-18 10:16:40 +02:00
W.C.A. Wijngaards
01db6c365c - For PR #93: dynlibmod can handle reloads and deinit and inits again, 
with dlclose and dlopen of the library again.  Also for multiple
  modules.  Fix memory leak by not closing dlopened content.  Fix
  to allow one dynlibmod instance by unbound-checkconf.
 2020-05-18 10:11:16 +02:00
W.C.A. Wijngaards
510e79a053 - For PR #93: Fix warnings for dynlibmodule. 2020-05-15 16:42:45 +02:00
W.C.A. Wijngaards
2c8ebe6206 - Fixed conflicts for PR #93 and make configure, yacc, lex. 2020-05-15 14:55:36 +02:00
Ralph Dolmans
99fd6cf711 - Cache ECS answers with longest scope of CNAME chain. 2020-05-15 13:13:49 +02:00
George Thessalonikefs
a269db3828 - Explicitly use 'rrset-roundrobin: no' for test cases. 2020-04-22 19:27:20 +02:00
George Thessalonikefs
584c2cf804 - Fix tests for new rrset-roundrobin default. 2020-04-21 22:02:56 +02:00
W.C.A. Wijngaards
6320776b25 Changelog note for PR #225 
- Merge #225 from akhait: KSK-2010 has been revoked. It removes the
  KSK-2010 from the default list in unbound-anchor, now that the
  revocation period is over.  KSK-2017 is the only trust anchor in
  the shipped default now.
 2020-04-21 15:11:02 +02:00
George Thessalonikefs
226d66ca92 - Change default value for 'rrset-roundrobin' to yes. 2020-04-21 12:58:48 +02:00
W.C.A. Wijngaards
cee3098e87 - Remove unneeded was_mesh_reply check. 2020-04-20 15:35:45 +02:00
W.C.A. Wijngaards
00323b71d7 - Fix for count of reply states in the mesh. 2020-04-20 14:24:05 +02:00
W.C.A. Wijngaards
5151190dbc Fix that it is --enable-rpath, for #222. 2020-04-20 10:08:08 +02:00
W.C.A. Wijngaards
52ebdd85da - Fix #222: --with-rpath, fails to rpath python lib. 2020-04-20 10:04:34 +02:00
George Thessalonikefs
a4dcd5eb91 - Update Changelog for PR #221. 2020-04-17 11:41:47 +02:00
George Thessalonikefs
e18ab07c62 - Add doxygen documentation for DSCP. 2020-04-16 13:58:35 +02:00
W.C.A. Wijngaards
963cfb58be - Fix for posix shell syntax for trap in run_msg.sh test script. 2020-04-16 13:17:33 +02:00
W.C.A. Wijngaards
3cd288a9f2 - Fix for posix shell syntax for trap in nsd-control-setup. 2020-04-16 13:14:50 +02:00
W.C.A. Wijngaards
2193d06af6 Merge branch 'master' of github.com:NLnetLabs/unbound 2020-04-16 11:48:53 +02:00
W.C.A. Wijngaards
eed157d36e - Fix help return code in unbound-control-setup script. 2020-04-16 11:47:27 +02:00
George Thessalonikefs
8a87fc6ae7 - Fix #220: auth-zone section in config may lead to segfault. 2020-04-15 17:57:02 +02:00
W.C.A. Wijngaards
c7f1d2d889 - Merge PR #214 from gearnode: unbound-control-setup recreate 
certificates.  With the -r option the certificates are created
  again, without it, only the files that do not exist are created.
 2020-04-07 13:49:25 +02:00
Ralph Dolmans
03a37d1ff6 - Keep track of number of timeouts. Use this counter to determine if capsforid 
fallback should be started.
 2020-04-06 18:00:06 +02:00
George Thessalonikefs
33a2613a49 - More documentation for redis-expire-records option. 2020-04-06 13:46:45 +02:00
George Thessalonikefs
a601fd6d3c Merge branch 'Talkabout-redis-expire-records' 2020-04-01 17:24:07 +02:00
W.C.A. Wijngaards
94e92b197a - Merge PR #208: Fix uncached CLIENT_RESPONSE'es on stateful 
transports.
 2020-03-30 14:55:00 +02:00
W.C.A. Wijngaards
e9e2871f18 - Merge PR #207: Clarify if-automatic listens on 0.0.0.0 and :: 2020-03-30 10:27:44 +02:00
W.C.A. Wijngaards
8dc35cfce3 Changelog note for PR #203. 
- Merge PR #203 from noloader: Update README-Travis.md with current
  procedures.
 2020-03-27 16:07:03 +01:00
Ralph Dolmans
51593d47ac Make unbound-control error returned on missing domain name more user friendly. 2020-03-27 11:27:12 +01:00
Ralph Dolmans
e4eb76a5f3 - Fix RPZ concurrency issue when using auth_zone_reload. 2020-03-26 19:11:57 +01:00
George Thessalonikefs
40ed82f522 Changelog entry for #201 
- Merge PR #201 from noloader: Fix OpenSSL cross-compaile warnings.
 2020-03-25 14:10:27 +01:00
W.C.A. Wijngaards
2889be5e90 - Travis fix for ios by omitting tools from install. 2020-03-24 10:23:00 +01:00
W.C.A. Wijngaards
bcdc13514a - Fixes on #200. and rerun autoconf. 2020-03-24 09:32:04 +01:00
W.C.A. Wijngaards
311f163aed Changelog for #200 and bison, flex regenerate. 
- Merge PR #200 from yarikk: add ip-dscp option to specify the DSCP
  tag for outgoing packets.
 2020-03-24 09:25:05 +01:00
W.C.A. Wijngaards
cca5cfc88f - Fix compile on Solaris for unbound-checkconf. 2020-03-23 17:26:06 +01:00
George Thessalonikefs
ce7fd591c6 - Changelog note for PR #198: Declare lz_enter_rr_into_zone() static, 
it's only used in this file, by fobser.
 2020-03-20 13:06:43 +01:00