cubixle/packages
1
0
Fork 0
mirror of https://github.com/novatiq/packages.git synced 2026-04-30 15:38:40 +01:00
Code Issues Packages Projects Releases Wiki Activity

unbound: log openssl-1.0.2 lacks TLS host verification

Browse Source 
ssl_set1_host() is not available without openssl-1.1.0. Unbound can not do
host cert verification. DNS over TLS connects, but hosts are unverified. A
patch for log err is added with a noitce in README.md.
(see: https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=658)

Also, squash some minor robustness and TLS usability fixes.

Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
This commit is contained in:
Eric Luehrsen
2018-08-08 21:21:17 -04:00
parent ba5e9aa945
commit 1cccacf359
8 changed files with 118 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files
net/unbound/files/dnsmasq.sh
+1 -1
View File
@@ -80,7 +80,7 @@ create_host_record() {
case $ip in
fe80:*|169.254.*)
fe[89ab][0-9a-f]:*|169.254.*)
debug_ip="$ip@$host"
;;