unbound-1.6.8

[bdubbs@…]

New point version.

[bdubbs@…]

19 January 2018: Wouter

• patch for CVE-2017-15105: vulnerability in the processing of wildcard synthesized NSEC records.

10 October 2017: Wouter

• tag 1.6.7

6 October 2017: Wouter

• Fix spelling in unbound-control man page.

5 October 2017: Wouter

• Fix trust-anchor-signaling works in libunbound.
• Fix some more crpls in testdata for different signaling default.
• tag 1.6.7rc1

5 October 2017: Ralph

• Set trust-anchor-signaling default to yes
• Use RCODE from A query on DNS64 synthesized answer.

2 October 2017: Wouter

• Fix param unused warning for windows exportsymbol compile.

25 September 2017: Ralph

• Fix #1450: Generate again patch contrib/aaaa-filter-iterator.patch

21 September 2017: Ralph

• Log name of looping module

19 September 2017: Wouter

• use a cachedb answer even if it's "expired" when serve-expired is yes (patch from Jinmei Tatuya).
• trigger refetching of the answer in that case (this will bypass cachedb lookup)
• allow storing a 0-TTL answer from cachedb in the in-memory message cache when serve-expired is yes
• Fix DNSCACHE_STORE_ZEROTTL to be bigger than 0xffff.

18 September 2017: Ralph

• Fix #1400: allowing use of global cache on ECS-forwarding unless always-forward.

[bdubbs@…]

Fixed at revision 19687.