unbound: Vendor import 1.20.0

Release notes at
https://www.nlnetlabs.nl/news/2024/May/08/unbound-1.20.0-released/

Security: The DNSBomb vulnerability CVE-2024-33655

Merge commit 'c2a80056864d6eda0398fd127dc0ae515b39752b' into main

unbound: Vendor import 1.19.0

Release notes at
https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.19.0-released/

MFC after: 2 weeks

Merge commit '16fd0b24910488e59ca1941387b9ac7fb646a837' into unbound

unbound: Vendor import 1.18.0

Release notes at
https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.18.0-released/

MFC after: 2 weeks

Merge commit '401770e05c71ecb5ae61a59d316069b4b78bf622' into main

unbound: Reapply Vendor import 1.17.0

Reapply 643f9a0581e8aac7eb790ced1164748939829826. 64d318ea98b7 was a
mismerge during fake rebase. Let's reapply it.

Changes include: Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into main

Revert "unbound: Vendor import 1.17.0"

This reverts commit 64d318ea98b7c59f5567d47a9a8474887d8b5cb8, reversing
changes made to 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

Revert a mismerge which reversed 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

unbound: Vendor import 1.17.0

Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into new_merge

unbound: Vendor import 1.16.0

Merge commit '5f9f82264b91e041df7cba2406625146e7268ce4' into main

MFC after: 1 month

unbound: Vendor import 1.15.0

Vendor import GA release of unbound 1.15.0.

MFC after: 2 weeks

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbound: Vendor import 1.19.0

Release notes at
https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.19.0-released/

MFC after: 2 weeks

Merge commit '16fd0b24910488e59ca1941387b9ac7fb646a837' into unbound

unbound: Vendor import 1.18.0

Release notes at
https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.18.0-released/

MFC after: 2 weeks

Merge commit '401770e05c71ecb5ae61a59d316069b4b78bf622' into main

unbound: Reapply Vendor import 1.17.0

Reapply 643f9a0581e8aac7eb790ced1164748939829826. 64d318ea98b7 was a
mismerge during fake rebase. Let's reapply it.

Changes include: Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into main

Revert "unbound: Vendor import 1.17.0"

This reverts commit 64d318ea98b7c59f5567d47a9a8474887d8b5cb8, reversing
changes made to 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

Revert a mismerge which reversed 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

unbound: Vendor import 1.17.0

Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into new_merge

unbound: Vendor import 1.16.0

Merge commit '5f9f82264b91e041df7cba2406625146e7268ce4' into main

MFC after: 1 month

unbound: Vendor import 1.15.0

Vendor import GA release of unbound 1.15.0.

MFC after: 2 weeks

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbound: Vendor import 1.18.0

Release notes at
https://www.nlnetlabs.nl/news/2023/Aug/30/unbound-1.18.0-released/

MFC after: 2 weeks

Merge commit '401770e05c71ecb5ae61a59d316069b4b78bf622' into main

unbound: Reapply Vendor import 1.17.0

Reapply 643f9a0581e8aac7eb790ced1164748939829826. 64d318ea98b7 was a
mismerge during fake rebase. Let's reapply it.

Changes include: Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into main

Revert "unbound: Vendor import 1.17.0"

This reverts commit 64d318ea98b7c59f5567d47a9a8474887d8b5cb8, reversing
changes made to 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

Revert a mismerge which reversed 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

unbound: Vendor import 1.17.0

Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into new_merge

unbound: Vendor import 1.16.0

Merge commit '5f9f82264b91e041df7cba2406625146e7268ce4' into main

MFC after: 1 month

unbound: Vendor import 1.15.0

Vendor import GA release of unbound 1.15.0.

MFC after: 2 weeks

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbound: Reapply Vendor import 1.17.0

Reapply 643f9a0581e8aac7eb790ced1164748939829826. 64d318ea98b7 was a
mismerge during fake rebase. Let's reapply it.

Changes include: Added ACL per interface, proxy protocol and bug fixes.

Announcement: https://nlnetlabs.nl/news/2022/Oct/13/unbound-1.17.0-released/

Merge commit '643f9a0581e8aac7eb790ced1164748939829826' into main

Revert "unbound: Vendor import 1.17.0"

This reverts commit 64d318ea98b7c59f5567d47a9a8474887d8b5cb8, reversing
changes made to 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

Revert a mismerge which reversed 8063dc03202fad7d6bdf34976bc8556fa3f23fa1.

unbound: Vendor import 1.16.0

Merge commit '5f9f82264b91e041df7cba2406625146e7268ce4' into main

MFC after: 1 month

unbound: Vendor import 1.15.0

Vendor import GA release of unbound 1.15.0.

MFC after: 2 weeks

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbound: Vendor import 1.15.0

Vendor import GA release of unbound 1.15.0.

MFC after: 2 weeks

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbount: Vendor import 1.14.0rc1

This vendor import was requested by glebius@ as it should fix unbound
crashes.

Reported by: glebius
MFC after: 1 week

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663

unbound: Vendor import 1.13.2

Merge commit '625f1c1312fb7defbd148c8ba121a0cf058707ef'

MFC after: 1 month

MFV d60fa10fd872db7e3d8cb1e161cfdae026c43b14:

Update unbound 1.13.0 --> 1.13.1.

Includes numerous bugfixes documented at:
https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-13-1

MFC after: 1 month

MFV r368464:

Update unbound from 1.12.0 to 1.13.0

MFC after: 1 week
Security: CVE-2020-28935

MFV r367082:

Update unbound 1.11.0 --> 1.12.0.

MFC after: 1 month.

MFV 364468:

Update unbound 1.10.1 --> 1.11.0.

MFH: 1 month

MFV r361322:

Update unbound 1.9.6 --> 1.10.1.

Bug Fixes:
- CVE-2020-12662 Unbound can be tricked into amplifying an incoming
query into a large number of queries directed to a target.
- CVE-2020-12663 Malformed answers from upstream name servers can be
used to make Unbound unresponsive.

Reported by: emaste
MFC after: 3 days
Relnotes: yes
Security: CVE-2020-12662, CVE-2020-12663