summaryrefslogtreecommitdiff
path: root/usr.sbin/unbound
AgeCommit message (Collapse)Author
2015-03-11Point people to local-zone and stub-zone in unbound.conf and explainFlorian Obser
when this can be used. tweaks ian@ OK ratchov@, sthen@ seems more useful to millert@
2015-03-08Fix crash on unbound-control reload introduced in update to 1.5.2.Florian Obser
Found the hard way be me and independently discovered and reported upstream at the same time in bug #651. OK sthen, krw; "looks reasonable" kettenis. OK to commit deraadt
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2015-02-17remove svn-only fileStuart Henderson
2015-02-17merge conflictsStuart Henderson
2015-02-17Update to unbound 1.5.2rc1, ok brad@Stuart Henderson
2015-02-17remove "EXAMPLE" section containing a minimal example unbound.conf; the sampleStuart Henderson
isn't suitable for OpenBSD and can cause confusion. ok jmc@ brad@
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2015-02-11Merge in a commit from upstream..Brad Smith
- Fix scrubber with harden-glue turned off to reject NS (and other not-address) records. ok sthen@
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2015-02-10Merge in a commit from upstream..Brad Smith
- Fix validation failure in case upstream forwarder (ISC BIND) does not have the same trust anchors and decides to insert unsigned NS record in authority section. ok sthen@
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2015-01-31Merge in a commit from upstream..Brad Smith
- Fix 0x20 capsforid fallback to omit gratuitous NS and additional section changes. ok sthen@
2015-01-20Revert some $OpenBSD$ additions about which there are doubts.Kenneth R Westerback
Suggested by deraadt@
2015-01-20Missing $OpenBSD$'s.Kenneth R Westerback
ok deraadt@
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2015-01-05zap file which is unused and already removed upstreamStuart Henderson
2015-01-05use new ub_conf_dir to set the directory for keys and certificatesStuart Henderson
ok brad@, committed upstream (r3297)
2015-01-05regenStuart Henderson
2015-01-05provide a new ub_conf_dir variable, to be used in unbound-control-setupStuart Henderson
ok brad@, committed upstream (r3297)
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-12-11merge conflictsBrad Smith
2014-12-11update to Unbound 1.5.1, ok sthen@Brad Smith
2014-12-08Fix for CVE-2014-8602.Florian Obser
OK sthen@ Unfortunately you only get the dedication to support the infrastructure of the universally connected self-organizing Internet - and the autonomy of its participants iff you are a paying customer with a support contract.
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-11-30Remove passing an override of INSTALL_PROGRAM to theBrad Smith
autoconf script. It doesn't seem to serve any purpose. ok sthen@
2014-11-20clean up some files generated during the build.Brad Smith
noticed by deraadt@
2014-11-20using ${SHELL} is nicer, ok bradTheo de Raadt
2014-11-20run the install script with sh. Come on upstream -- allow us to buildTheo de Raadt
your software on noexec filesystems...
2014-11-20Merge in some commits from upstream..Brad Smith
- Removed 'increased limit open files' log message that is written to console. It is only written on verbosity 4 and higher. This keeps system bootup console cleaner. - Fix #627: SSL_CTX_load_verify_locations return code not properly checked. - Fix that CD flag disables DNS64 processing, returning the DNSSEC signed AAAA denial. - Fix cdflag dns64 processing. ok sthen@
2014-11-20merge conflictsBrad Smith
2014-11-20update to Unbound 1.5.0, ok sthen@Brad Smith
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-08-20Better explain what unbound is for.Florian Obser
While there fix some nits. Problem pointed out by deraadt@ Input jmc@, schwarze@ wouter@ committed a slightly different diff upstream. Pull that on out of svn and hand merge it. OK schwarze@
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-04-23Use arc4random as PRNG backend, instead of libcrypto RAND.Jeremie Courreges-Anglas
Feedback and ok guenther@ deraadt@ Discussed with upstream, who is preparing an arc4random backend.
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-03-26Remove bsd-wrapper pieces to handle pulling unbound-host.1 from src,Stuart Henderson
no longer needed now that this file is handled the same in Unbound's build infrastructure as the other manpages.
2014-03-26Handle unbound-host(1) the same way as other manpages and have configureStuart Henderson
generate a copy in the build directory. Removes some complexity and fixes a problem noticed by rpe@ when running 'make -f Makefile.bsd-wrapper clean' in src dir without having an obj dir present. From upstream r3100.
2014-03-26Print correct filename if config errors exist in an "include"d file.Stuart Henderson
From upstream r3099
2012-03-26Import Unbound 1.4.16 to work on in-tree (not yet linked to the build).Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: compat contrib libunbound/python pythonmod testcode testdata winrc ok deraadt@ jakob@
2014-03-21Install a /var/unbound/db directory, writable by the _unbound daemon,Stuart Henderson
and use it as the default location for the DNSSEC root key. Update default config for this location. With this, the only step required to enable DNSSEC validation is to uncomment these default config entries and restart: #module-config: "validator iterator" #auto-trust-anchor-file: "/var/unbound/db/root.key" There is no longer a requirement to run unbound-anchor manually to update the root key. The rc.d script will take care of updates at boot, and Unbound will manage the file itself at runtime. Test with "dig test.dnssec-or-not.net txt @127.0.0.1" or similar.
2014-03-16merge conflicts, remove old libldns filesStuart Henderson
2014-03-16import unbound 1.4.22 upstream sources, ok brad@Stuart Henderson
2013-09-22update to ldns 1.6.16Stuart Henderson
2012-08-23update to ldns 1.6.13, tested by okan@, thanks (not yet linked to build).Stuart Henderson
2012-03-26Import ldns 1.6.12, needed for Unbound, to work on in-tree.Stuart Henderson
These are the direct sources from NLnet Labs upstream, minus these: contrib doc/images examples packaging/fedora ok deraadt@ jakob@
2014-03-15change pidfile location again; actually this is written before chroot, soStuart Henderson
it can go straight in /var/run
2014-03-14use $chrootdir/run for pid file, like nsd.Stuart Henderson
2014-02-04remove some files that were deletedBrad Smith
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-12 00:48:39 +0000