unbound

mirror of https://github.com/NLnetLabs/unbound.git synced 2024-09-21 14:47:09 +00:00

Author	SHA1	Message	Date
tcarpay	0ce36e8289	Add the basic EDE (RFC8914) cases (#604 )	2022-05-06 12:48:53 +02:00
Wouter Wijngaards	75b8b8c875	- Free memory leak in config strlist append. - make sure nsec3 comparison salt is initialized. git-svn-id: file:///svn/unbound/trunk@4900 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-09-13 10:23:30 +00:00
Wouter Wijngaards	2a6250e3fb	- patch for CVE-2017-15105: vulnerability in the processing of wildcard synthesized NSEC records. git-svn-id: file:///svn/unbound/trunk@4441 be551aaa-1e26-0410-a405-d3ace91eadb9	2018-01-19 09:50:35 +00:00
Wouter Wijngaards	7d17a926ac	- Spelling fixes, from Phil Porada. git-svn-id: file:///svn/unbound/trunk@4344 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-09-15 14:29:28 +00:00
Wouter Wijngaards	c010e93d4a	- Fix to rename internally used types from _t to _type, because _t type names are reserved by POSIX. - iana portlist update git-svn-id: file:///svn/unbound/trunk@3989 be551aaa-1e26-0410-a405-d3ace91eadb9	2017-01-19 10:25:41 +00:00
Ralph Dolmans	0b3138e1bf	- Fix #1117 : spelling errors, from Robert Edmonds git-svn-id: file:///svn/unbound/trunk@3877 be551aaa-1e26-0410-a405-d3ace91eadb9	2016-10-05 09:56:05 +00:00
Wouter Wijngaards	152458c40b	- spelling fixes from Igor Sobrado Delgado. git-svn-id: file:///svn/unbound/trunk@3544 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-18 14:11:46 +00:00
Wouter Wijngaards	2a73ccd5b4	- refactor nsec3 hash implementation to be more library-portable. git-svn-id: file:///svn/unbound/trunk@3535 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-17 11:30:04 +00:00
Wouter Wijngaards	2bdea62a9e	- Fix #594 . libunbound: optionally use libnettle for crypto. Contributed by Luca Bruno. Added --with-nettle for use with --with-libunbound-only. git-svn-id: file:///svn/unbound/trunk@3533 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-11-17 09:43:07 +00:00
Wouter Wijngaards	b2bdce46be	- rename ldns subdirectory to sldns to avoid name collision. git-svn-id: file:///svn/unbound/trunk@3380 be551aaa-1e26-0410-a405-d3ace91eadb9	2015-03-26 10:21:38 +00:00
Wouter Wijngaards	339a6be27d	More unsigned chasts for toupper/tolower/ctype git-svn-id: file:///svn/unbound/trunk@3242 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-10-13 08:35:00 +00:00
Wouter Wijngaards	2b90f38a70	And fix #551 REGENT to COPYRIGHT HOLDER in license in file headings. git-svn-id: file:///svn/unbound/trunk@3079 be551aaa-1e26-0410-a405-d3ace91eadb9	2014-02-07 13:28:39 +00:00
Wouter Wijngaards	d3cbd76546	- Fix sldns to use sldns_ prefix for all ldns_ variables. git-svn-id: file:///svn/unbound/trunk@3022 be551aaa-1e26-0410-a405-d3ace91eadb9	2013-12-03 09:11:16 +00:00
Wouter Wijngaards	29e96e86c9	- separate ldns into core ldns inside ldns/ subdirectory. No more --with-ldns is needed and unbound does not rely on libldns. git-svn-id: file:///svn/unbound/trunk@2998 be551aaa-1e26-0410-a405-d3ace91eadb9	2013-10-31 15:09:26 +00:00
Wouter Wijngaards	5db366f99f	- review fixes from Willem. git-svn-id: file:///svn/unbound/trunk@2945 be551aaa-1e26-0410-a405-d3ace91eadb9	2013-08-22 14:10:29 +00:00
Wouter Wijngaards	ffab065d1e	- includes and have_ssl fixes for nss. git-svn-id: file:///svn/unbound/trunk@2830 be551aaa-1e26-0410-a405-d3ace91eadb9	2013-01-30 13:15:03 +00:00
Wouter Wijngaards	d4f49a7a40	- Fix validation of qtype DS queries that result in no data for non-optout NSEC3 zones. git-svn-id: file:///svn/unbound/trunk@2712 be551aaa-1e26-0410-a405-d3ace91eadb9	2012-07-06 13:56:44 +00:00
Wouter Wijngaards	25096aa3ab	implement DNSSEC with libNSS: NSEC3, RSA, DSA, ECDSA, and DS hashes. make test succeeds. git-svn-id: file:///svn/unbound/trunk@2699 be551aaa-1e26-0410-a405-d3ace91eadb9	2012-06-22 14:31:29 +00:00
Wouter Wijngaards	0916e1d0ea	- Fix for VU#209659 CVE-2011-4528: Unbound denial of service vulnerabilities from nonstandard redirection and denial of existence http://www.unbound.net/downloads/CVE-2011-4528.txt - robust checks for next-closer NSEC3s. - tag 1.4.14 created. git-svn-id: file:///svn/unbound/trunk@2574 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-12-19 10:55:32 +00:00
Wouter Wijngaards	b72d40f3dd	- fix various compiler warnings (reported by Paul Wouters). git-svn-id: file:///svn/unbound/trunk@2497 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-09-16 11:35:01 +00:00
Wouter Wijngaards	22290ac234	- Fix validation of . DS query. git-svn-id: file:///svn/unbound/trunk@2474 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-08-17 14:28:32 +00:00
Wouter Wijngaards	7359d84e2f	- Fix wildcard expansion no-data reply under an optout NSEC3 zone is validated as insecure, reported by Jia Li (lijia@cnnic.cn). git-svn-id: file:///svn/unbound/trunk@2461 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-07-11 09:03:18 +00:00
Wouter Wijngaards	b4a089ff0d	- Fix no ADflag for NXDOMAIN in NSEC3 optout. And wildcard in optout. git-svn-id: file:///svn/unbound/trunk@2397 be551aaa-1e26-0410-a405-d3ace91eadb9	2011-03-01 12:48:45 +00:00
Wouter Wijngaards	c4c8a65ff2	- fix validation in this case: CNAME to nodata for co-hosted opt-in NSEC3 insecure delegation, was bogus, fixed to be insecure. git-svn-id: file:///svn/unbound/trunk@2355 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-12-17 10:05:56 +00:00
Wouter Wijngaards	488aee467a	- Fix validation failure for parent and child on same server with an insecure childzone and a CNAME from parent to child. git-svn-id: file:///svn/unbound/trunk@2321 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-10-29 13:10:26 +00:00
Wouter Wijngaards	c3f180eebb	- Abide RFC5155 section 9.2: no AD flag for replies with NSEC3 optout. git-svn-id: file:///svn/unbound/trunk@2233 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-09-15 07:08:09 +00:00
Wouter Wijngaards	11ecb5183b	review of NSEC and NSEC3 zones results git-svn-id: file:///svn/unbound/trunk@2058 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-03-22 14:40:45 +00:00
Wouter Wijngaards	091050add6	cache verify work for nsec and nsec3. git-svn-id: file:///svn/unbound/trunk@2047 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-03-17 09:49:18 +00:00
Wouter Wijngaards	42599b7044	and store sec status git-svn-id: file:///svn/unbound/trunk@2046 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-03-17 09:27:53 +00:00
Wouter Wijngaards	367c2abbf3	Faster nsec3. git-svn-id: file:///svn/unbound/trunk@2044 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-03-16 16:52:56 +00:00
Wouter Wijngaards	147d47eee7	Move includes to code files. git-svn-id: file:///svn/unbound/trunk@2035 be551aaa-1e26-0410-a405-d3ace91eadb9	2010-03-12 15:17:48 +00:00
Wouter Wijngaards	a4a7894f79	Fix validation failure cnamenodata proof failed for hud.gov. git-svn-id: file:///svn/unbound/trunk@1902 be551aaa-1e26-0410-a405-d3ace91eadb9	2009-11-13 10:10:05 +00:00
Wouter Wijngaards	7782cf2b97	More detailed errors. git-svn-id: file:///svn/unbound/trunk@1871 be551aaa-1e26-0410-a405-d3ace91eadb9	2009-10-08 07:23:49 +00:00
Wouter Wijngaards	ce45cbda6d	- moved version number to 1.4.0 because of 1.3.4 release with only the NSEC3 patch. - val-log-level: 2 shows extended error information for validation failures, but still one (longish) line per failure. For example: validation failure <example.com. DNSKEY IN>: signature expired from 192.0.2.4 for trust anchor example.com. while building chain of trust validation failure <www.example.com. A IN>: no signatures from 192.0.2.6 for key example.com. while building chain of trust git-svn-id: file:///svn/unbound/trunk@1868 be551aaa-1e26-0410-a405-d3ace91eadb9	2009-10-07 16:45:47 +00:00
Wouter Wijngaards	6f37df3b92	Fix trunk. git-svn-id: file:///svn/unbound/trunk@1866 be551aaa-1e26-0410-a405-d3ace91eadb9	2009-10-07 14:00:56 +00:00
Wouter Wijngaards	1a02ab895b	Fix check for signatures. git-svn-id: file:///svn/unbound/trunk@1864 be551aaa-1e26-0410-a405-d3ace91eadb9	2009-10-07 12:56:57 +00:00
Wouter Wijngaards	0d01be50bc	detection of sha256 and sha512 by testing if functionality was compiled into openssl. git-svn-id: file:///svn/unbound/trunk@1328 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-11-03 16:06:12 +00:00
Wouter Wijngaards	7176710b7f	Fixup b32 compat for Mac OSX linker. git-svn-id: file:///svn/unbound/trunk@1323 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-11-03 14:38:03 +00:00
Wouter Wijngaards	c73c662fce	work on nsec3 negative cache for qtype DS . git-svn-id: file:///svn/unbound/trunk@1290 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-10-08 14:42:46 +00:00
Wouter Wijngaards	0bdfbccbdc	please doxygen. git-svn-id: file:///svn/unbound/trunk@898 be551aaa-1e26-0410-a405-d3ace91eadb9	2008-01-25 10:41:17 +00:00
Wouter Wijngaards	6f49c2fe55	regional nicer, remove region-allocator. git-svn-id: file:///svn/unbound/trunk@697 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-10-18 20:31:43 +00:00
Wouter Wijngaards	0f7ced491e	NSEC3 test and fix for bitmap protection code. git-svn-id: file:///svn/unbound/trunk@637 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-25 08:33:14 +00:00
Wouter Wijngaards	c4392dd54c	wildcard nsec3 tests. git-svn-id: file:///svn/unbound/trunk@618 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-18 08:28:35 +00:00
Wouter Wijngaards	748bfb0b0e	more nsec3 tests. git-svn-id: file:///svn/unbound/trunk@617 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-17 14:52:14 +00:00
Wouter Wijngaards	6510d8f20a	namerror nsec3 proof works. git-svn-id: file:///svn/unbound/trunk@616 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-17 14:03:35 +00:00
Wouter Wijngaards	c7d15770c1	nsec3 hash function unit test. git-svn-id: file:///svn/unbound/trunk@615 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-17 09:25:54 +00:00
Wouter Wijngaards	7987b687dc	NSEC3. git-svn-id: file:///svn/unbound/trunk@613 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-14 11:15:42 +00:00
Wouter Wijngaards	92198b3624	if no NSEC3 present, skip validation. git-svn-id: file:///svn/unbound/trunk@611 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-13 15:09:58 +00:00
Wouter Wijngaards	facde2ca10	nsec3 work, prove name error. git-svn-id: file:///svn/unbound/trunk@610 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-13 15:02:33 +00:00
Wouter Wijngaards	d85debfae4	nsec3 work. git-svn-id: file:///svn/unbound/trunk@609 be551aaa-1e26-0410-a405-d3ace91eadb9	2007-09-12 14:16:46 +00:00

1 2

51 Commits