system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-07-23 19:28:36 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
292508 commits 76 branches 138 tags 3.4 GiB
Commit graph

58 commits

Author SHA1 Message Date
Cy Schubert 335c7cda12 unbound: Vendor import 1.20.0 
Release notes at
	https://www.nlnetlabs.nl/news/2024/May/08/unbound-1.20.0-released/

Security:	The DNSBomb vulnerability CVE-2024-33655

Merge commit 'c2a80056864d6eda0398fd127dc0ae515b39752b' into main
 2024-05-10 14:23:43 -07:00
Cy Schubert b7c0c8c18e unbound: Vendor import 1.19.3 
Release notes at
	https://www.nlnetlabs.nl/news/2024/Mar/14/unbound-1.19.3-released/

MFC after:	1 week

Merge commit '5a33598e88ad8fbc0affa74dee0a2d8cc4010fbc' into main
 2024-03-17 01:57:42 -06:00
Cy Schubert b76ef9a7cb unbound: Vendor import 1.19.1 
Release notes at
    https://www.nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/

Security:	CVE-2023-50387, CVE-2023-50868
MFC after:	3 days
 2024-02-13 21:05:50 -08:00
Cy Schubert 103ba509e7 unbound: Vendor import 1.19.0 
Release notes at
    https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.19.0-released/

MFC after:	2 weeks

Merge commit '16fd0b24910488e59ca1941387b9ac7fb646a837' into unbound
 2023-11-13 13:38:45 -08:00
Cy Schubert 6e71235e55 unbound: Import upstream 0ee44ef3 when ENOBUFS is returned 
From upstream 0ee44ef3:

- Fix send of udp retries when ENOBUFS is returned. It stops looping
  and also waits for the condition to go away. Reported by Florian
  Obser.

PR:		274352
MFC after:	3 days

Merge commit '292d51198aa319c58f534549851e9c28486abdf4'
 2023-10-12 17:04:25 -07:00
Cy Schubert 8f76bb7dad unbound: Vendor import 1.18.0 
Release notes at
    https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.18.0-released/

MFC after:      2 weeks

Merge commit '401770e05c71ecb5ae61a59d316069b4b78bf622' into main
 2023-09-18 21:17:09 -07:00
Cy Schubert 1838dec318 unbound: Vendor import 1.17.1 
Release notes at
    https://www.nlnetlabs.nl/news/2023/Jan/12/unbound-1.17.1-released/.

MFC after:      1 month

Merge commit '7699e1386a16236002b26107ffd2dcbde375e197' into main
 2023-01-14 21:39:31 -08:00
Cy Schubert 865f46b255 unbound: Reapply Vendor import 1.17.0 
Reapply 643f9a0581. 64d318ea98 was a
mismerge during fake rebase. Let's reapply it.

Changes include: Added ACL per interface, proxy protocol and bug fixes.

Announcement:   https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into main
 2022-10-16 14:08:33 -07:00
Cy Schubert 8cee2ebac5 Revert "unbound: Vendor import 1.17.0" 
This reverts commit 64d318ea98, reversing
changes made to 8063dc0320.

Revert a mismerge which reversed 8063dc0320.
 2022-10-16 13:42:15 -07:00
Cy Schubert 64d318ea98 unbound: Vendor import 1.17.0 
Added ACL per interface, proxy protocol and bug fixes.

Announcement:   https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into new_merge
 2022-10-16 13:32:55 -07:00
Cy Schubert 790c6b2451 unbound: Vendor import 1.16.2 
Security update to unbound.

PR:             265645
Security:       CVE-2022-30698, CVE-2022-30699
Security:       bc43a578-14ec-11ed-856e-d4c9ef517024
MFC after:      3 days

Merge commit '9b76d32f2310b735dbeb896cbf2776cad61f23e8' into main
 2022-08-05 18:44:40 -07:00
Cy Schubert 0a92a9fca7 unbound: Vendor import 1.16.1 
Merge commit 'd57351465531b38689892ec862de2725b52842dd' into unbound/main2

MFC after:	1 month
 2022-07-13 12:30:14 -07:00
Cy Schubert a39a5a6905 unbound: Vendor import 1.16.0 
Merge commit '5f9f82264b91e041df7cba2406625146e7268ce4' into main

MFC after:	1 month
 2022-06-08 15:08:42 -07:00
Cy Schubert 9cf5bc93f6 unbound: Vendor import 1.15.0 
Vendor import GA release of unbound 1.15.0.

MFC after:      2 weeks
 2022-02-17 16:05:15 -08:00
Cy Schubert 24e3652200 unbount: Vendor import 1.14.0rc1 
This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by:	glebius
MFC after:	1 week
 2021-12-02 22:11:04 -08:00
Cy Schubert 5469a99530 unbound: Vendor import 1.13.2 
Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after:	1 month
 2021-08-17 02:32:56 -07:00
Cy Schubert f44e67d120 MFV d60fa10fd8: 
Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after:	1 month
 2021-02-09 20:27:25 -08:00
Xin LI 7341cb0cd1 MFV r368746: 
Apply upstream fix 08968baec1122a58bb90d8f97ad948a75f8a5d69:

Fix error cases when udp-connect is set and send() returns an error

Obtained from:	unbound git
MFC after:	3 days
 2020-12-18 04:23:20 +00:00
Cy Schubert 369c692350 MFV r368464: 
Update unbound from 1.12.0 to 1.13.0

MFC after:	1 week
Security:	CVE-2020-28935
 2020-12-09 02:59:24 +00:00
Cy Schubert c0caa2e24e MFV r367082: 
Update unbound 1.11.0 --> 1.12.0.

MFC after:	1 month.
 2020-10-27 23:03:15 +00:00
Cy Schubert 25039b37d3 MFV 364468: 
Update unbound 1.10.1 --> 1.11.0.

MFH:		1 month
 2020-08-24 18:14:04 +00:00
Cy Schubert 091e9e469b MFV r361322: 
Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
 - CVE-2020-12662 Unbound can be tricked into amplifying an incoming
   query into a large number of queries directed to a target.
 - CVE-2020-12663 Malformed answers from upstream name servers can be
   used to make Unbound unresponsive.

Reported by:	emaste
MFC after:	3 days
Relnotes:	yes
Security:	CVE-2020-12662, CVE-2020-12663
 2020-05-21 21:00:46 +00:00
Cy Schubert 0eefd3079a MFV r356143: 
Update unbound 1.9.2 --> 1.9.6.

MFC after:	3 days
Security:	CVE-2019-18934 (fixed by 1.9.5)
 2019-12-31 15:50:41 +00:00
Dag-Erling Smørgrav e86b909626 Upgrade Unbound to 1.9.2. 2019-07-04 08:40:10 +00:00
Dag-Erling Smørgrav 209fcf8ed9 Merge upstream r4932: turn so-reuseport option off by default. 
MFC after:	3 days
 2018-11-01 23:42:35 +00:00
Dag-Erling Smørgrav a755b6f6ca Upgrade to 1.8.1. 
Approved by:	re (kib)
 2018-10-10 08:53:47 +00:00
Dag-Erling Smørgrav 4c75e3aa0f Upgrade Unbound to 1.8.0. More to follow. 
Approved by:	re (kib)
 2018-10-10 07:55:06 +00:00
Dag-Erling Smørgrav 7da0adf72b Upgrade Unbound to 1.7.3. More to follow. 
Approved by:	re (kib@)
 2018-09-10 17:37:34 +00:00
Dag-Erling Smørgrav 3bd4df0a68 Upgrade Unbound to 1.7.2. More to follow. 
Approved by:	re (kib@)
 2018-09-10 16:56:44 +00:00
Dag-Erling Smørgrav 0fb349906e Upgrade Unbound to 1.7.1. 2018-05-12 15:20:39 +00:00
Dag-Erling Smørgrav 57bddd215c Upgrade Unbound to 1.7.0. More to follow. 2018-05-12 15:04:05 +00:00
Dag-Erling Smørgrav 8a384985ac Upgrade Unbound to 1.6.7. More to follow. 2018-05-12 14:51:18 +00:00
Dag-Erling Smørgrav 971980c374 Upgrade Unbound to 1.6.6. More to follow. 2018-05-12 14:48:38 +00:00
Dag-Erling Smørgrav c7f4d7ad9b Upgrade Unbound to 1.6.4. More to follow. 2018-05-12 14:36:58 +00:00
Dag-Erling Smørgrav 65b390aa03 Upgrade Unbound to 1.6.2. More to follow. 2018-05-12 14:15:39 +00:00
Dag-Erling Smørgrav 3005e0a300 Upgrade Unbound to 1.6.1. More to follow. 2018-05-12 14:04:48 +00:00
Dag-Erling Smørgrav bc89214039 Upgrade Unbound to 1.6.0. More to follow. 2018-05-12 12:57:34 +00:00
Dag-Erling Smørgrav b5663de9eb Upgrade to Unbound 1.5.10. 2016-09-29 18:24:29 +00:00
Dag-Erling Smørgrav e2d1500434 Upgrade to Unbound 1.5.9. 2016-09-04 12:17:57 +00:00
Dag-Erling Smørgrav f61ef7f679 Upgrade to Unbound 1.5.8. 2016-03-05 19:29:18 +00:00
Dag-Erling Smørgrav 0de4f1bf64 Use the new insecure-lan-zones option instead of listing each AS112 zone 
separately.

MFC after:	3 days
 2016-02-11 17:37:02 +00:00
Dag-Erling Smørgrav 05ab290102 Upgrade to Unbound 1.5.7. 2015-12-14 13:01:51 +00:00
Dag-Erling Smørgrav b75612f8e7 Upgrade to Unbound 1.5.5. 2015-10-09 11:46:27 +00:00
Dag-Erling Smørgrav e4c53d3bf0 When chrooted, we need to strip the chroot directory from the front of 
included paths.  Don't forget to do it for globs as well.
 2015-09-17 16:19:36 +00:00
Dag-Erling Smørgrav 09a3aaf3e0 Upgrade to Unbound 1.5.4. 2015-09-17 16:10:11 +00:00
Dag-Erling Smørgrav 6480faa8a2 Upgrade Unbound to 1.5.3. 2015-04-27 12:06:13 +00:00
Dag-Erling Smørgrav 748bd82957 MFV (r277045): merge upstream version of the local socket patch. 2015-01-12 09:46:49 +00:00
Dag-Erling Smørgrav 31099b506d mfv (r276698): support for remote control over local sockets. 2015-01-05 14:59:18 +00:00
Dag-Erling Smørgrav ff8258499c Upgrade to Unbound 1.5.1. Almost all our local changes to date have been 
adopted upstream, greatly reducing the diff.
 2015-01-03 02:40:51 +00:00
Dag-Erling Smørgrav e8263e185c Clean up the libunbound build to avoid accidentally regenerating the 
configuration lexer and parser during buildworld.  Instead of being
included in the source as it is in the upstream distribution, the code is
now always generated (in ${.OBJDIR}) at build time.

PR:		190739
MFC after:	1 week
 2014-07-19 18:38:48 +00:00