cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
72,072 Commits 1 Branch 0 Tags 554 MiB
8903ff6939
Commit Graph

39 Commits

Author SHA1 Message Date
sthen
bcfb306eca Fix to randomize hash function, based on 28c3 congress, reported 
by Peter van Dijk. Committed upstream in r2580.

Port diff from Brad, ok jakob@
 2012-01-10 22:15:54 +00:00
sthen
0345976a63 Adjust unbound.rc to use unbound-control to stop/start/check Unbound. 
Previously if unbound-control was used to restart the daemon, further
use of /etc/rc.d/unbound would no longer match the process title.
Reported by camield@, ok aja@ jakob@
 2012-01-09 11:55:10 +00:00
sthen
609d9f15b2 Add a patch from upstream fixing a small memory leak (about 20 bytes when a 
tcp or udp send operation towards authority servers failed).  ok jakob@
 2012-01-04 21:41:45 +00:00
sthen
fcb33424c5 SECURITY update to Unbound 1.4.14, incorporating various diffs from Brad, 
jakob@ and myself. See http://www.unbound.net/downloads/CVE-2011-4528.txt
for more details, summary from the above is below:

--
Unbound crashes when confronted with a non-standard response from a
server for a domain. This domain produces duplicate RRs from a certain
type and is DNSSEC signed.Unbound also crashes when confronted with a
query that eventually, and under specific circumstances, resolves to a
domain that misses expected NSEC3 records.

These two problems were discovered within 24 hours, hence a combined
vulnerability disclosure.

By constructing the non standard responses an attacker can use these
vulnerabilities for a DOS attack.

To our knowledge 'denial of service' is the only type of exploit possible.
--
 2011-12-20 10:49:19 +00:00
jakob
264605fac6 upgrade to Unbound 1.4.13 2011-09-17 17:57:38 +00:00
jakob
750a5817f3 Unbound 1.4.12; bugfix release 2011-07-14 09:23:04 +00:00
sthen
2971384363 - fix wrong replyaddr count after jostled queries, which leads to eventual 
starvation where the daemon has no replyaddrs left to use. from upstream svn.

- use the new --enable-allsymbols flag, exporting all (including internal)
symbols from libunbound and linking binaries to it. saves 4MB in installed
size on amd64.

ok jakob@
 2011-07-01 10:20:02 +00:00
sthen
398afeb365 regenerate patch 2011-07-01 08:27:34 +00:00
jakob
889b9d9187 upgrade to unbound v1.4.11; bugfix release 2011-06-30 18:35:58 +00:00
sthen
d99db5acf5 Update unbound to 1.4.10, fixes CVE-2011-1922 which doesn't affect us - 
this is only applicable if assertions are enabled in the arguments to the
configure script which this port doesn't do.

ok jakob@
 2011-05-26 19:55:25 +00:00
jakob
a61d1d27f4 update Unbound to version 1.4.9 2011-03-24 20:30:42 +00:00
jakob
d978636a3c upgrade to Unbound 1.4.8; mostly from sthen@ 2011-03-06 09:24:41 +00:00
espie
0397d65db0 new depends 2010-11-19 22:31:32 +00:00
sthen
5c1f7d3519 update unbound to 1.4.7, from Brad. "please commit" jakob@ (maintainer). 2010-11-10 08:29:01 +00:00
sthen
0666992301 fix tabs 2010-10-18 21:50:38 +00:00
espie
47ff75aa46 USE_GROFF=Yes 2010-10-18 18:36:45 +00:00
jakob
a23d402776 update to Unbound v1.4.6 2010-08-22 09:03:11 +00:00
jakob
a8533f1cef upgrade unbound to v1.4.4 2010-06-19 21:26:07 +00:00
jakob
4dba02c51b require libldns.4.3 2010-04-25 21:35:20 +00:00
jakob
fc855435cd upgrade to Unbound v1.4.4 2010-04-23 07:05:02 +00:00
sthen
acc93fda02 update to 1.4.3; ok jakob@ 2010-03-21 13:50:43 +00:00
jakob
b023b4d16a update unbound to 1.4.1 2009-12-18 07:49:22 +00:00
jakob
d4fc627dcd update to unbound v1.4.0 2009-11-27 18:34:25 +00:00
jakob
d9e659ab74 upgrade to Unbound 1.3.4 (security update) 2009-10-09 20:52:43 +00:00
jakob
9e737e73be upgrade to unbound v1.3.3 2009-08-04 15:45:26 +00:00
jakob
80d53eeb56 upgrade to unbound 1.3.1; from brad 2009-07-15 22:18:09 +00:00
jakob
42bc4a94c3 upgrade to Unbound 1.3.0 2009-06-15 19:03:23 +00:00
sthen
6a7f8d0ab9 add the package spec to libldns LIB_DEPENDS in unbound/Makefile, 
making it easier to install/update unbound if you have an old libldns
already installed.  ok jakob@
 2009-03-16 09:56:15 +00:00
jakob
cded14b4ee update to unbound 1.2.1; from brad 2009-02-10 20:05:26 +00:00
jakob
99b3aec53e A fix from upstream for a race condition which can cause a crash 
upon starting up or restarting Unbound.
 2009-02-02 07:09:37 +00:00
jakob
9590ff9609 upgrade to unbound v1.2.0; from brad 2009-01-14 17:44:51 +00:00
jakob
5d8b62cb1c merge 2 patches from unbound trunk: 
- fixup BSD port for infra host storage. It hashed wrongly.
- do not reopen syslog to avoid dev/log dependency.
 2008-12-30 10:40:13 +00:00
sthen
7f80494ed0 WANTLIB+=ssl and bump, ok jakob@ 2008-12-15 22:41:38 +00:00
jakob
cdd6dcbe9b upgrade to unbound v1.1.1 2008-11-20 17:06:59 +00:00
jakob
dc8544a725 upgrade to unbound 1.0.2 2008-08-20 08:25:41 +00:00
jakob
2d9513a060 unbound 1.0.1; bugfix release 2008-07-16 20:34:10 +00:00
naddy
76fca74c8d do not add a build directory to the configured directories for ld.so 
ok jakob@
 2008-07-02 19:01:41 +00:00
jakob
aee9804355 make unbound use ldns from ports now that ldns 1.3.0 is released. 2008-06-03 15:09:59 +00:00
jakob
72abc03bfb unbound port 2008-05-23 06:52:21 +00:00