Maintained by: NLnet Labs

[Unbound-users] unbound 1.4.18 released

W.C.A. Wijngaards
Thu Aug 2 09:52:05 CEST 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Unbound 1.4.18 is released
http://unbound.net/downloads/unbound-1.4.18.tar.gz
sha1 b64b4c9f7981df4e7589ebb770a31352a09db3fb
sha256 b20f45ff90b944f306fc1875084af8ecba68ca0db16895148288d43cec225b8d

This release has bugfixes, notably two assertion failures.  And fixes
a bogus nodata cname chain which was not reported as bogus by
validator (Thanks Peter van Dijk).

Features
    implement log-time-ascii on windows.
    --with-libunbound-only build option, only builds the library and
not the daemon and other tools.
    --with-nss build option (for now, --with-libunbound-only), uses
libNSS for crypto operations.
    disable RSAMD5 if in FIPS mode (for openssl and for libnss).
    Add flush_bogus option for unbound-control.

Bug Fixes
    Fix libunbound report of errors when in background mode.
    [bugzilla: 454 ]
    Fix for ACX_CHECK_COMPILER_FLAG from configure.ac, if CFLAGS is
specified at configure time then '-g -O2' is not appended to CFLAGS,
so that the user can override them.
    FIPS_mode openssl does not use arc4random but RAND_pseudo_bytes.
    fix missing break for GOST DS hash function.
    implemented forward_first for the root.
    code review: return value of cache_store can be ignored for better
performance in out of memory conditions.
    patch for unbound_munin_ script to handle arbitrary thread count
by Sven Ulland.
    Fix validation of qtype DS queries that result in no data for
non-optout NSEC3 zones.
    fix edns-buffer-size and msg-buffer-size manpage documentation.
    fix error handling of alloc failure during rrsig verification.
    The key-cache bad key ttl is now 60 seconds.
    [bugzilla: 452 ]
    fix crash on assert in mesh_state_attachment. Fixes DS NS search
to not generate duplicate sub queries.
    silence warning from swig-generated code (md set but not used in
swig initmodule, due to ifdefs in swig-generated code).
    Fix debian-bugs-658021: Please enable hardened build flags.
    update iana ports list

Best regards,
   Wouter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=gKh8
-----END PGP SIGNATURE-----