git.99rst.org / openwrt-packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ba5e9aa)
unbound: log openssl-1.0.2 lacks TLS host verification
authorEric Luehrsen <redacted>
Thu, 9 Aug 2018 01:21:17 +0000 (21:21 -0400)
committerEric Luehrsen <redacted>
Fri, 10 Aug 2018 06:11:13 +0000 (02:11 -0400)
commit1cccacf359ab99ec26bfc66ebd0e0a27053bfcef
treebed6639537d049f2bbe70734a83bbfad69903dd7tree | snapshot
parentba5e9aa9458c6d12ec8acc3798ea95c3c0cc897acommit | diff
unbound: log openssl-1.0.2 lacks TLS host verification

ssl_set1_host() is not available without openssl-1.1.0. Unbound can not do
host cert verification. DNS over TLS connects, but hosts are unverified. A
patch for log err is added with a noitce in README.md.
(see: https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=658)

Also, squash some minor robustness and TLS usability fixes.

Signed-off-by: Eric Luehrsen <redacted>
net/unbound/Makefile diff | blob | history
net/unbound/files/README.md diff | blob | history
net/unbound/files/dnsmasq.sh diff | blob | history
net/unbound/files/iptools.sh diff | blob | history
net/unbound/files/unbound.init diff | blob | history
net/unbound/files/unbound.sh diff | blob | history
net/unbound/patches/100-example-conf-in.patch [moved from net/unbound/patches/001-conf.patch with 96% similarity] diff | blob | history
net/unbound/patches/200-openssl-log-err.patch [new file with mode: 0644] blob
git clone https://git.99rst.org/PROJECT