git.ipfire.org Git - thirdparty/unbound.git/commit

]> git.ipfire.org Git - thirdparty/unbound.git/commit

projects / thirdparty / unbound.git / commit

author	Yorgos Thessalonikefs <yorgos@nlnetlabs.nl>
	Mon, 15 Sep 2025 08:03:35 +0000 (10:03 +0200)
committer	Yorgos Thessalonikefs <yorgos@nlnetlabs.nl>
	Mon, 15 Sep 2025 08:03:35 +0000 (10:03 +0200)
commit	73e408f1d0792267429e9f5f89537cda61297952
tree	5cc79714c31a4bda4bcd575b3e63a665891cd186	tree \| snapshot
parent	d521135f667e30e9e099e6971364537ba9d8247a	commit \| diff

A few changes for TTL processing:
- Cached messages that reach 0 TTL are considered expired. This prevents
  Unbound itself from issuing replies with TTL 0 and possibly causing a
  thundering herd at the last second. Upstream replies of TTL 0 still
  get the usual pass-through but they are not considered for caching
  from Unbound or any of its caching modules.
- 'serve-expired-reply-ttl' is changed and is now capped by the original
  TTL value of the record to try and make some sense when replying
  with expired records.
- TTL decoding was updated to adhere to RFC8767 section 4 where a set
  high-order bit means the value is positive instead of 0.

43 files changed:

cachedb/cachedb.c		diff \| blob \| blame \| history
daemon/worker.c		diff \| blob \| blame \| history
doc/example.conf.in		diff \| blob \| blame \| history
doc/unbound.conf.rst		diff \| blob \| blame \| history
services/authzone.c		diff \| blob \| blame \| history
services/cache/dns.c		diff \| blob \| blame \| history
services/cache/dns.h		diff \| blob \| blame \| history
services/cache/rrset.c		diff \| blob \| blame \| history
services/localzone.c		diff \| blob \| blame \| history
services/mesh.c		diff \| blob \| blame \| history
services/rpz.c		diff \| blob \| blame \| history
testcode/unitmain.c		diff \| blob \| blame \| history
testdata/cachedb_expired.crpl		diff \| blob \| blame \| history
testdata/cachedb_expired_client_timeout.crpl		diff \| blob \| blame \| history
testdata/cachedb_expired_reply_ttl.crpl		diff \| blob \| blame \| history
testdata/cachedb_subnet_change.crpl		diff \| blob \| blame \| history
testdata/cachedb_val_expired.crpl		diff \| blob \| blame \| history
testdata/fwd_0ttlservfail.rpl		diff \| blob \| blame \| history
testdata/rrset_use_cached.rpl		diff \| blob \| blame \| history
testdata/serve_expired.rpl		diff \| blob \| blame \| history
testdata/serve_expired_0ttl_nodata.rpl		diff \| blob \| blame \| history
testdata/serve_expired_0ttl_nxdomain.rpl		diff \| blob \| blame \| history
testdata/serve_expired_0ttl_servfail.rpl		diff \| blob \| blame \| history
testdata/serve_expired_client_timeout.rpl		diff \| blob \| blame \| history
testdata/serve_expired_client_timeout_no_prefetch.rpl	[deleted file]	blob \| blame \| history
testdata/serve_expired_client_timeout_servfail.rpl		diff \| blob \| blame \| history
testdata/serve_expired_reply_ttl.rpl		diff \| blob \| blame \| history
testdata/serve_expired_ttl_client_timeout.rpl		diff \| blob \| blame \| history
testdata/serve_expired_ttl_reset.rpl		diff \| blob \| blame \| history
testdata/serve_expired_zerottl.rpl		diff \| blob \| blame \| history
testdata/subnet_global_prefetch_always_forward.crpl		diff \| blob \| blame \| history
testdata/subnet_global_prefetch_expired.crpl		diff \| blob \| blame \| history
testdata/ttl_zero_cacherep.rpl		diff \| blob \| blame \| history
util/data/msgencode.c		diff \| blob \| blame \| history
util/data/msgencode.h		diff \| blob \| blame \| history
util/data/msgparse.c		diff \| blob \| blame \| history
util/data/msgparse.h		diff \| blob \| blame \| history
util/data/msgreply.c		diff \| blob \| blame \| history
util/data/msgreply.h		diff \| blob \| blame \| history
util/data/packed_rrset.c		diff \| blob \| blame \| history
util/data/packed_rrset.h		diff \| blob \| blame \| history
validator/val_neg.c		diff \| blob \| blame \| history
validator/val_utils.c		diff \| blob \| blame \| history

Mirror of https://github.com/NLnetLabs/unbound.git

RSS Atom