Update unbound to version 1.8.1

Upstream changes:

Features:
- Perform TLS SNI indication of the host that is being contacted
  for DNS over TLS service.  It sets the configured tls auth name.
  This is useful for hosts that apart from the DNS over TLS services
  also provide other (web) services.

Bug Fixes:
- More explicitly mention the type of ratelimit when applying
  ip-ratelimit.
- Fix spelling error in header, from getdns commit by Andreas Gelmini.
- iana port update.
- Fixed unused return value warnings in contrib/fastrpz.patch for
  asprintf.
- Fix to squelch respip warning in unit test, it is printed at
  higher verbosity settings.
- Fix spelling errors.
- Fix initialisation in remote.c
- Fix seed for random backup code to use explicit zero when wiped.
- exit log routine is annotated as noreturn function.
- free memory leaks in config strlist and str2list insert functions.
- do not move unused argv variable after getopt.
- Remove unused if clause in testcode.
- in testcode, free async ids, initialise array, and check for null
  pointer during test of the test.  And use exit for return to note
  irregular program stop.
- Free memory leak in config strlist append.
- make sure nsec3 comparison salt is initialized.
- unit test has clang analysis.
- remove unused variable assignment from iterator scrub routine.
- check for null in delegation point during iterator refetch
  in forward zone.
- neater pointer cast in libunbound context quit routine.
- initialize statistics totals for printout.
- in authzone check that node exists before adding rrset.
- in unbound-anchor, use readwrite memory BIO.
- assertion in autotrust that packed rrset is formed correctly.
- Fix memory leak when message parse fails partway through copy.
- remove unused udpsize assignment in message encode.
- nicer bio free code in unbound-anchor.
- annotate exit functions with noreturn in unbound-control.
- Fix compile on Mac for unbound, provide explicit_bzero when libc
  does not have it.
- Fix unbound for openssl in FIPS mode, it uses the digests with
  the EVP call contexts.
- Fix that with harden-below-nxdomain and qname minisation enabled
  some iterator states for nonresponsive domains can get into a
  state where they waited for an empty list.
- Stop UDP to TCP failover after timeouts that causes the ping count
  to be reset by the TCP time measurement (that exists for TLS),
  because that causes the UDP part to not be measured as timeout.
- Fix #4156: Fix systemd service manager state change notification.
- Fix #4149: Add SSL cleanup for tcp timeout.
- Fix #4188: IPv6 forwarders without ipv6 result in SERVFAIL, fixes
  qname minimisation with a forwarder when connectivity has issues
  from rejecting responses.
This commit is contained in:
he 2018-10-08 12:26:17 +00:00
parent 159016e56f
commit 5ce025e3c7
2 changed files with 7 additions and 7 deletions

View file

@ -1,6 +1,6 @@
# $NetBSD: Makefile,v 1.58 2018/09/10 14:31:48 he Exp $
# $NetBSD: Makefile,v 1.59 2018/10/08 12:26:17 he Exp $
DISTNAME= unbound-1.8.0
DISTNAME= unbound-1.8.1
CATEGORIES= net
MASTER_SITES= http://www.nlnetlabs.nl/downloads/unbound/

View file

@ -1,7 +1,7 @@
$NetBSD: distinfo,v 1.44 2018/09/10 14:31:48 he Exp $
$NetBSD: distinfo,v 1.45 2018/10/08 12:26:17 he Exp $
SHA1 (unbound-1.8.0.tar.gz) = 52b5b4169b9adaa24cc668976b9dffcc025120d6
RMD160 (unbound-1.8.0.tar.gz) = 2ab5ea1f6495d358f2a3642e2589d7530d79687d
SHA512 (unbound-1.8.0.tar.gz) = 6c46f5b86b5bd98a7b549b660173d487e59e65385cebd7bc29429b4fee69f2b490651a409c57b072b9b604fa98e289fa82eeecfea8779900038c25b28a6bd064
Size (unbound-1.8.0.tar.gz) = 5609213 bytes
SHA1 (unbound-1.8.1.tar.gz) = 63849ece517e06b2a3c2e6917d522682da794f87
RMD160 (unbound-1.8.1.tar.gz) = 415447310f1db78146c43c639d84598f5bb07e10
SHA512 (unbound-1.8.1.tar.gz) = 1872a980e06258d28d2bc7f69a4c56fc07e03e4c9856161e89abc28527fff5812a47ea9927fd362bca690e3a87b95046ac96c8beeccaeb8596458f140c33b217
Size (unbound-1.8.1.tar.gz) = 5610191 bytes
SHA1 (patch-configure) = 769ad52b9ab93bc8e48d2ffe8fef5b4b61070eba