unbound-devel-1.16.2-5.el8_9.6 > 6 6_6 3!pQp)Tξ7]mtZ`fJ ]mtZ`]SG:1##/{8rllJ q$K `$ĥJ<(<zNv^YGVMgЇ&rH JȒkk)x'{:C׹+]1\dH27 h_XbvQy<%D(J1oYY+ t(;]bTx4ޢZ?NS'Mw: *XVU{'d%m\%0A1ug%ϟUI1JbwXv|-(ʰ]-j0,r+GYv{ i !p<?d ! \  .4<## # T# #  #  # H# #  #T   (89:7Gh#H#I#XY\#]h#^b7deflt#u`#vwl#x#yCunbound-devel1.16.25.el8_9.6Development package that includes the unbound header filesThe devel package contains the unbound library and the include filesf ord1-prod-x86build005.svc.aws.rockylinux.orgKojiRockyBSDinfrastructure@rockylinux.orgUnspecifiedhttps://www.unbound.net/linuxi686++x6y******************************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.so.2.7.18rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootunbound-1.16.2-5.el8_9.6.src.rpmpkgconfig(libunbound)unbound-develunbound-devel(x86-32)@@@@    /usr/bin/pkg-configlibunbound.so.2openssl-develpkgconfigpkgconfig(libevent)pkgconfig(python3)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)unbound-libs(x86-32)3.0.4-14.6.0-14.0-15.2-11.16.2-5.el8_9.64.14.3f Df De@e @eBeN@cJcJcEZbL@bc@bbb1@`@`lM@_N7^ϧ^˳@^@^H]][`O@[U@[O+[I[CN@[<[:[3|@[3|@[0@ZUZUZa@ZI@Z`@ZZ_@Z_@Z$Z}@Ze@Z6\@YY@Y{Y*@Y@Y3Y@YyYX@YK@Y?Y9<@YXg@XXXXj@Xj@XZnXWXW_@W@W~D@WbW^@WVVV@VjVEV9@V @U@U6@UUUUU~@Ud`@US$U/@UTfT@T@T@TxcTxcTuTl@T"@S@SSP@Sb7@S!RRe@R:@RC@R@QB@QQکQ@Q@Q@QQu&@Qq1Qm=@Qg@Qb@Q5@Q#@PqP@Pb@PE@P6@P@P @LLLk@Lk@LLK@K8@K@KK}+KC)J@J@J@JF@JlE@J<@J<@JJIIV@II2Il@IsImIa@Ia@I= @I3I/@I%Q@I#I#Ih@HH@H!@H@H@H}H4H4HH$Petr Menšík - 1.16.2-5.6Petr Menšík - 1.16.2-5.5Petr Menšík - 1.16.2-5.4Petr Menšík - 1.16.2-5.3Tomas Korbar - 1.16.2-5.2Tomas Korbar - 1.16.2-5.1Petr Menšík - 1.16.2-5Petr Menšík - 1.16.2-4Petr Menšík - 1.16.2-3Petr Menšík - 1.16.2-2Petr Menšík - 1.16.2-1Petr Menšík - 1.16.0-2Petr Menšík - 1.16.0-1Richard Lescak - 1.7.3-18Artem Egorenkov - 1.7.3-17Artem Egorenkov - 1.7.3-16Anna Khaitovich - 1.7.3-15Anna Khaitovich - 1.7.3-14Anna Khaitovich - 1.7.3-13Anna Khaitovich - 1.7.3-12Artem Egorenkov - 1.7.3-11Tomas Korbar - 1.7.3-10Tomas Korbar - 1.7.3-9Petr Menšík - 1.7.3-8Petr Menšík - 1.7.3-7Petr Menšík - 1.7.3-6Fedora Release Engineering - 1.7.3-5Petr Menšík - 1.7.3-4Petr Menšík - 1.7.3-3Miro Hrončok - 1.7.3-2Petr Menšík - 1.7.3-1Petr Menšík - 1.7.2-3Tomas Hozza - 1.7.0-6Petr Menšík - 1.7.0-5Paul Wouters - 1.7.0-4Paul Wouters - 1.7.0-3Paul Wouters - 1.7.0-2Paul Wouters - 1.7.0-1Petr Menšík - 1.6.8-6Petr Menšík - 1.6.8-5Petr Menšík - 1.6.8-4Filipe Rosset - 1.6.8-3Igor Gnatenko - 1.6.8-2Paul Wouters - 1.6.8-1Zbigniew Jędrzejewski-Szmek - 1.6.7-2Paul Wouters - 1.6.7-1Petr Menšík - 1.6.6-3Paul Wouters - 1.6.6-2Paul Wouters - 1.6.6-1Paul Wouters - 1.6.4-4Fedora Release Engineering - 1.6.4-3Fedora Release Engineering - 1.6.4-2Paul Wouters - 1.6.4-1Paul Wouters - 1.6.4-0.rc2Paul Wouters - 1.6.3-1Paul Wouters - 1.6.2-2Paul Wouters - 1.6.2-1Paul Wouters - 1.6.0-6Fedora Release Engineering - 1.6.0-5Paul Wouters - 1.6.0-4Paul Wouters - 1.6.0-3Paul Wouters - 1.6.0-2Kevin Fenzi - 1.6.0-1Miro Hrončok - 1.5.10-3Ilya Evseev - 1.5.10-2Paul Wouters - 1.5.10-1Fedora Release Engineering - 1.5.9-4Paul Wouters - 1.5.9-3Paul Wouters - 1.5.9-2Paul Wouters - 1.5.9-1Toshio Kuratomi - 1.5.8-2Paul Wouters - 1.5.8-1Fedora Release Engineering - 1.5.7-3Tomas Hozza - 1.5.7-2Paul Wouters - 1.5.7-1Tomas Hozza - 1.5.6-1Robert Kuska - 1.5.5-2Tomas Hozza - 1.5.5-1Tomas Hozza - 1.5.4-5Tomas Hozza - 1.5.4-4Tomas Hozza - 1.5.4-3Tomas Hozza - 1.5.4-2Paul Wouters - 1.5.4-1Tomas Hozza - 1.5.3-8Tomas Hozza - 1.5.3-7Tomas Hozza - 1.5.3-6Tomas Hozza - 1.5.3-5Paul Wouters - 1.5.3-4Tomas Hozza - 1.5.3-3Tomas Hozza - 1.5.3-2Paul Wouters - 1.5.3-1Paul Wouters - 1.5.1-4Paul Wouters - 1.5.1-3Paul Wouters - 1.5.1-2Paul Wouters - 1.5.1-1Tomas Hozza - 1.5.1-0.1.rc1Marcin Juszkiewicz - 1.5.0-3Tomas Hozza - 1.5.0-2Tomas Hozza - 1.5.0-1Pavel Šimerda - 1.4.22-6Kevin Fenzi - 1.4.22-5Fedora Release Engineering - 1.4.22-4Fedora Release Engineering - 1.4.22-3Paul Wouters - 1.4.22-2Paul Wouters - 1.4.22-1Tomas Hozza - 1.4.21-3Tomas Hozza - 1.4.21-2Paul Wouters - 1.4.21-1Tomas Hozza - 1.4.20-19Paul Wouters - 1.4.20-18Fedora Release Engineering - 1.4.20-17Tomas Hozza - 1.4.20-16Paul Wouters - 1.4.20-15Tomas Hozza - 1.4.20-14Paul Wouters - 1.4.20-13Paul Wouters - 1.4.20-12Paul Wouters - 1.4.20-10Paul Wouters - 1.4.20-8Paul Wouters - 1.4.20-7Paul Wouters - 1.4.20-6Paul Wouters - 1.4.20-5Paul Wouters - 1.4.20-4Adam Tkac - 1.4.19-5Fedora Release Engineering - 1.4.19-4Paul Wouters - 1.4.19-3Paul Wouters - 1.4.18-6Paul Wouters - 1.4.18-5Paul Wouters - 1.4.18-3Paul Wouters - 1.4.18-2Paul Wouters - 1.4.18-1Paul Wouters - 1.4.17-5Fedora Release Engineering - 1.4.17-4Paul Wouters - 1.4.17-3Adam Tkac - 1.4.17-2Paul Wouters - 1.4.17-1Paul Wouters - 1.4.16-3 Paul Wouters - 1.4.16-2Paul Wouters - 1.4.16-1Paul Wouters - 1.4.15-2Paul Wouters - 1.4.15-1Fedora Release Engineering - 1.4.14-2Paul Wouters - 1.4.14-1Paul Wouters - 1.4.13-1Tom Callaway - 1.4.12-4Paul Wouters - 1.4.12-3Paul Wouters - 1.4.12-2Paul Wouters - 1.4.12-1Paul Wouters - 1.4.11-1Paul Wouters - 1.4.10-1Paul Wouters - 1.4.9-3Paul Wouters - 1.4.9-2Paul Wouters - 1.4.9-1Paul Wouters - 1.4.8-2Paul Wouters - 1.4.8-1Paul Wouters - 1.4.5-4Paul Wouters - 1.4.5-3Paul Wouters - 1.4.5-2Paul Wouters - 1.4.5-1Paul Wouters - 1.4.4-2Paul Wouters - 1.4.4-1Paul Wouters - 1.4.3-1Paul Wouters - 1.4.2-1Paul Wouters - 1.4.1-5Paul Wouters - 1.4.1-3Paul Wouters - 1.4.1-2Paul Wouters - 1.4.1-1Paul Wouters - 1.3.4-2Paul Wouters - 1.3.4-1Tomas Mraz - 1.3.3-2Paul Wouters - 1.3.3-1Fedora Release Engineering - 1.3.0-3Paul Wouters - 1.3.0-2Paul Wouters - 1.3.0-1Paul Wouters - 1.2.1-7Paul Wouters - 1.2.1-6Paul Wouters - 1.2.1-5Adam Tkac - 1.2.1-4Adam Tkac - 1.2.1-3Fedora Release Engineering - 1.2.1-2Paul Wouters - 1.2.0-2Paul Wouters - 1.1.1-7Paul Wouters - 1.1.1-6Paul Wouters - 1.1.1-4Paul Wouters - 1.1.1-3Adam Tkac - 1.1.1-2Paul Wouters - 1.1.1-1Paul Wouters - 1.1.0-3Adam Tkac - 1.1.0-2Paul Wouters - 1.1.0-1Paul Wouters - 1.0.2-5Paul Wouters - 1.0.2-4Paul Wouters - 1.0.2-3Paul Wouters - 1.0.2-2Paul Wouters - 1.0.2-1Paul Wouters - 1.0.1-1Paul Wouters - 1.0.0-2Paul Wouters - 1.0.0-1Wouter Wijngaards - 0.12Wouter Wijngaards - 0.11- Rebuilt again with z-stream target- Correct typo in new config file- Ensure group access correction reaches also updated configs (CVE-2024-1488)- Ensure only unbound group can change configuration (CVE-2024-1488)- Fix wrong entry in changelog - Resolves: RHEL-25634- Fix KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 - Fix Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868 - Resolves: RHEL-25660 - Resolves: RHEL-25634- Stop creating wrong devel manual pages (#2135322)- Apply correctly previous change (CVE-2022-3204)- Fix NRDelegation attack leading to uncontrolled resource consumption (CVE-2022-3204)- Require openssl tool for unbound-keygen (#2018806)- Update to 1.16.2 (#2027735)- Restart keygen service before every unbound start (#1959468)- Upgrade to 9.16.0 (#2027735) - Update to recent version with compatibility with RHEL8 (#2027735) - Ensure also source level compatibility with previous version- Change file mode before owner when configuring remote control unix socket to avoid AVC denials - Resolves: rhbz#2038251- Option --enable-linux-ip-local-port-range added to use system configured port range for libunbound on Linux - Resolves: rhbz#1830625- Don't start unbound-anchor before unbound service if DISABLE_UNBOUND_ANCHOR environment variable equals to "yes" - Resolves: rhbz#1922448- Fix SPEC file to not check md5 mtime and size of /var/lib/unbound/root.key - Resolves: rhbz#1714175 - Use system-wide crypto policy setting (PROFILE=SYSTEM) instead of custom setting - Resolves: rhbz#1842837 - Enable additional logging in unbound - Resolves: rhbz#1850460 - security hardening from x41 report - Resolves: rhbz#1859933 - symbolic link traversal when writing PID file - Resolves: rhbz#1899058- Fix unbound-1.7.3-amplifying-an-incoming-query.patch patch - Resolves: rhbz#1839178 (CVE-2020-12662)- Fix two previous patches and add missing patch lines to %prep - Fix amplifying an incoming query into a large number of queries directed to a target - Resolves: rhbz#1839178 (CVE-2020-12662)- Remove KSK-2010 from configuration files - Resolves: rhbz#1665502 - Replace legacy directory /var/run/ with /run - Resolves: rhbz#1766463 - Resolves: rhbz#1805978 - Fix memory leak when DNS over TLS forwarding is configured - Resolves: rhbz#1819870- Resolves bz1818761. unbound crash fixed.- Secure ipsec mode (#1772061) - CVE-2019-18934- Use pthread_mutex_t locks when dealing with I/O operations (#1775708)- Release memory in unbound-host- Remove unused Group tag- Cleanup generated client and server keys (#1601773)- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild- Do not call ldconfig if possible- Update trust anchors also behind firewall (#1598078)- Rebuilt for Python 3.7- Update to 1.7.3 (#1593708)- Remove last python2 dependency from python3 build- Disable Python2 support- Require gcc and make on build - Remove group, simplify systemd requires - Simplify building with single python version, make python3 primary- Patch for prefetching after flushing cache- Patch for referral with auth-zone: response- Patch for broken Aggressive NSEC + stub-zone configuration causing NXDOMAIN at TTL expiry- Updated to 1.7.0 (aggressive nsec, local root support, bugfixes)- Uncomment again original max-upd-size- Use default RPM build flags and configure parameters (#1539097)- Remove group writable bit from some config files (#1528445)- rebuilt due new libevent 2.1.8- Escape macros in %changelog- Resolves rhbz#1483572 unbound-1.6.8 is available - Resolves rhbz#1507049 CVE-2017-15105 unbound: Improper validation of wildcard synthesized NSEC records - Resolves rhbz#1536518 CVE-2017-15105 unbound: Improper validation of wildcard synthesized NSEC records [fedora-all]- Python 2 binary package renamed to python2-unbound See https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3- Updated to 1.6.7 (minor bugfixes)- Update icannbundle.pem- Enable RFC 8145 Trust Anchor Signaling to help the root zone get keytag statistics- Resolves: rhbz#1483572 unbound-1.6.6 is available - Resolves: rhbz#1465575 unbound fails to start up, complains about missing ipsecmod-hook (edit)- Rebuilt with KSK2017 added to root.key and root.anchor - Remove noreplace for root key files. We can only improve these files over local copies- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- Updated to 1.6.4 full release, patch to allow missing ipsechook - Resolves rhbz#1465575 unbound fails to start up, complains about missing ipsecmod-hook- Update to 1.6.4 (esubnet, ipsecmod support, bugfixes)- Updated to 1.6.3 (fixes assertion failure when receiving malformed packet with 0x20 enabled)- Patch for cmd: unbound-control set_option val-permissive-mode: yes- Update to 1.6.2 (rhbz#1425649) - Updated unbound.conf with new options- Call make unbound-event-install to install unbound-event.h- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- Remove obsoleted DLV key- Actually remove dependency because minimum is always satisfied- Depend on openssl-libs, not opensl- Update to 1.6.0- Rebuild for Python 3.6- Bugfix building without python2 and python3 - Fixup streamtcp build (Paul)- Updated to 1.5.10 (better TCP handling, bugfixes) - Install pkgconfig file in -devel package - Updated unbound.conf- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages- Fix upper port range to 60999 because that's what selinux allows- Patch for allowing more queries before failure (needed for query minimalization)- Updated to 1.5.9- Fix streamtcp to link against libpython3.x instead of libpython2.x- Update to 1.5.8 (rhbz#1313831) which incorporates rhbz#1294339 patch - Updated unbound.conf with new upstream options - Enabled ip-transparent: yes (see rhbz#1291449)- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Fix escaping of shell chars in unbound-control-setup (#1294339)- Update to 1.5.7 - Enable query minimalization for enhanced DNS query privacy - Enable nxdomain hardening to assist with query minimalization and SBLs - Updated default unbound.conf for new features from upstream.- Update to 1.5.6 (#1176729)- Rebuilt for Python3.5 rebuild- New upstream release 1.5.5 (#1269137) - Removed the anchor update from %post section of -libs subpackage (#1269137#c2)- Removed dependency and ordering on unbound-anchor.service in unbound.service- Prefer Python3 build over Python2 build for now (#1254566)- Added ExecReload section to unbound.service (#1195785) - Removed After syslog.target since it is not needed any more- Start unbound-anchor.timer only on new installations - Rename root.anchor to root.key in %post section- Update to 1.5.4 - Removed patches merged into upstream- Revert: Use low maximum negative cache TTL (5 sec) (#1229596)- Add option for maximum negative cache TTL (#1229599) - Use low maximum negative cache TTL (5 sec) (#1229596)- Removed usage of DLV from the default configuration (#1223363)- unbound.service now Wants unbound-anchor.timer - unbound-anchor man page moved to the unbound-libs- Fixup scriptlets causing systemctl: command not found - Resolves rhbz#1219587 Error in PREIN scriptlet in rpm package unbound-libs- migrate cronjob to systemd timer unit (#1177285) - change the period for unbound-anchor from monthly to daily (#1180267) - Thanks to Tomasz Torcz for the initial patch- Fix FTBFS (#1206129) - Build python3-unbound and python-unbound bindings for Python 3 and 2 (#1188080)- Updated to 1.5.3 which is a bugfix on 1.5.2 for sighup handling - Updated to 1.5.2 which fixes DNSSEC validation with different trust anchors upstream, local-zone has a new keyword 'inform'- Build with --enable-ecdsa- Fix post to create root.anchor, not root.key, to match cron job- Change systemd-units to systemd - Use _tmpfilesdir macro, don't mark tmpfiles as config- Update to 1.5.1 for CVE-2014-8602 (rhbz#1172066) - Removed unbound-aarch64.patch which was merged upstream - Don't require autotools for non snapshots or run autoreconf- update to 1.5.1rc1- fix build on aarch64- Fix race condition in arc4random (#1166878)- update to 1.5.0- Resolves: #1115489 - build with python 3.x for fedora >= 22- Rebuild for rpm bug 1131960- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- Added flushcache patch (SVN commit 3125)- Updated to 1.4.22 - No longer requires the ldns library- Fix segfault on adding insecure forward zone when using only iterator (#1054192)- run test suite during the build- Updated to 1.4.21, - Enabled new max-udp-size: 3072 (so ANY isc.org won't fit) - Removed patched merged in by upstream - Enable statistics-cumulative for munin-plugin - Added outgoing-port-avoid: 0-32767 conformant to SElinux restrictions - Updated unbound.conf- Fix errors found by static analysis of source- Change unbound.conf to only use ephemeral ports (32768-65535)- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild- provide man page for unbound-streamtcp- Re-introduce hardening flags for full relro and pie - Fixes compilation failure for python module- remove missing unbound-rootkey.service from post/preun/postun sections - don't hardcode hardening flags, let hardened build macro handles it- Run unbound-anchor as user unbound in unbound.service- Enable round-robin (with noths() patch) - Change cron and systemd service to use root.key, not root.anchor- Use /var/lib/unbound/root.key (more consistent with other distros) - Enable minimal responses- Refix- Fix runuser call in post.- /var/lib/unbound should be owned by unbound. group write is not enough- Fix cron job syntax (rhbz#951725) - Use install -p to prevent .rpmnew files that are identical to originals- Updated to 1.4.20 - Build with full RELRO (not use -z,relro but with -z,relo,-z,now) - Fixup man page for unbound-control-setup - unbound.service should start before nss-lookup.target (rhbz#919955) - Removed patch for rhbz#888759 merged in upstream - Move root.anchor to /var/lib/unbound to make selinux policy easier for updating (rhbz#896599/rhbz#891008) - Move cronjob for root.anchor from unbound to unbound-libs, require crontabs - /etc/unbound (and all) should be owned by unbound-libs (rhbz#909691) - Remove Obsolete/Provides for dnssec-conf which was last seen in f13 - Ensure any unbound-anchor failure in post is ignored- build with full RELRO - symlink unbound-control-setup.8 manpage to unbound-control.8- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- Updated to 1.4.19 - this integrates all existing patches - Patch for unbound-anchor (rhbz#888759)- Patch to ensure stube-zone's aren't lost when using dnssec-triggerd - added unbound-munin.README file- Patch to allow wildcards in include: statements - Add directories /etc/unbound/keys.d,conf.d,local.d with example entries - Added /etc/unbound/root.anchor, maintained by unbound-anchor which is installed as monthly cron and PreExec in systemd config (root.key is unused, but left installed in case people depend on it) - Native systemd (simple) and /etc/sysconfig/unbound support - Run unbound-checkconf in PreExec - Moved trust anchor related files to unbound-libs, as they can be used without the daemon. - sub packages now depends on base package of same arch - Build munin package as noarch - unbound-anchor moved to unbound-libs package. It is needed to update the root.anchor key file.- Fix openssl thread locking bug under high query load- Use new systemd-rpm macros (rhbz#850351) - Clean up old obsoleted dnssec-conf from < fedora 15- Updated to 1.4.18 (FIPS related fixes mostly) - Removed patches that were merged in upstream - Added comment to root.key- Fix for unbound crasher (upstream bug #452) - Support libunbound functions in man pages and place in -devel- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- unbound FIPS patches for MD5,randomness (rhbz#835106)- don't build unbound-munin on RHEL- Updated to 1.4.17 (which mostly brings in patches we already applied from svn trunk)- Since the daemon links to the libs staticly, add Requires: (this is rhbz#745288) - Package up streamtcp as unbound-streamtcp (for monitoring)- Don't ghost the directory (rhbz#788805) - Patch for unbound to support unbound-control forward_zone (needed for openswan in XAUTH mode)- Upgraded to 1.4.16, which was relesed due to the soname and some DNSSEC validation failures- Patch for SONAME version (libtool's -version-number vs -version-info)- Upgraded to 1.4.15 - Updated unbound.conf to show how to configure listening on tls443- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Upgraded to 1.4.14 for CVE-2011-4528 / VU#209659 - SSL-wrapped query support for dnssec-trigger - EDNS handling changes - Removed integrated EDNS patches - Disabled use-caps-for-id, GoDaddy domains now break on it - Enabled new harden-below-nxdomain- Upgraded to 1.4.13 - Removed merged in pythonmod patch - Added EDNS1480 patch to fix unbound on broken EDNS/UDP networks - Fix python to go into sitearch instead of sitelib- convert to systemd, tmpfiles.d- Added pythonmod docs and examples- Fix for python module load in the server (Tom Hendrikx) - No longer enable --enable-debug as it causes degraded performance under load.- Updated to 1.4.12- Updated to 1.4.11 - removed integrated CVE patch - updated stock unbound.conf for new options introduced- Added ghost for /var/run/unbound (bz#656710)- rebuilt- Applied patch for CVE-2011-1922 DoS vulnerability- Updated to 1.4.9- rebuilt- Updated to 1.4.8 - Enable root key for DNSSEC - Fix unbound-munin to use proper file (could cause excessive logging) - Build unbound-python per default - Disable gost as Fedora/EPEL does not allow ECC and has mangled openssl- Revert last build - it was on the wrong branch- Disable do-ipv6 per default - causes severe degradation on non-ipv6 machines (see comments in inbound.conf)- Bump release - forgot to upload the new tar ball.- Upgraded to 1.4.5- Added accidentally omitted svn patches to cvs- Upgraded to 1.4.4 with svn patches - Obsolete dnssec-conf to ensure it is de-installed- Update to 1.4.3 that fixes 64bit crasher- Updated to 1.4.2 - Updated unbound.conf with new options - Enabled pre-fetching DNSKEY records (DNSSEC speedup) - Enabled re-fetching popular records before they expire - Enabled logging of DNSSEC validation errors- Overriding -D_GNU_SOURCE is no longer needed. This fixes DSO issues with pthreads- Change make/configure lines to attempt to fix -lphtread linking issue- Removed dependancy for dnssec-conf - Added ISC DLV key (formerly in dnssec-conf) - Fixup old DLV locations in unbound.conf file via %post - Fix parent child disagreement handling and no-ipv6 present [svn r1953]- Updated to 1.4.1 - Changed %define to %global- Bump version- Upgraded to 1.3.4. Security fix with validating NSEC3 records- rebuilt with new openssl- Updated to 1.3.3- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Added missing glob patch to cvs - Place python macros within the %with_python check- Updated to 1.3.0 - Added unbound-python sub package. disabled for now - Patch from svn to fix DLV lookups - Patches from svn to detect wrong truncated response from BIND 9.6.1 with minimal-responses) - Added Default-Start and Default-Stop to unbound.init - Re-enabled --enable-sha2 - Re-enabled glob.patch- unbound-iterator.patch was not commited- Fix for https://bugzilla.redhat.com/show_bug.cgi?id=499793- Use --nocheck to avoid giving an error on missing unbound-remote certs/keys- enable DNSSEC only if it is enabled in sysconfig/dnssec- add DNSSEC support to initscript and enabled it per default - add requires dnssec-conf- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- updated to 1.2.1- rebuild with new openssl- Updated to 1.2.0 - Added dependancy on minimum SSL for CVE-2008-5077 - Added dependancy on bc for unbound-munin - Added minimum requirement of libevent 1.4.5. Crashes with older versions (note: libevent is stale in EL-4 and not in EL-5, needs fixing there) - Removed dependancy on selinux-policy (will get used when available) - Enable options as per draft-wijngaards-dnsext-resolver-side-mitigation-00.txt - Enable unwanted-reply-threshold to mitigate against a Kaminsky attack - Enable val-clean-additional to drop addition unsigned data from signed response. - Removed patches (got merged into upstream)- Modified scandir patch to silently fail when wildcard matches nothing - Patch to allow unbound-checkconf to find empty wildcard matches- Added scandir patch for trusted-keys-file: option, which is used to load multiple dnssec keys in bind file format- Added Requires: for selinux-policy >= 3.5.13-33 for proper SElinux rules.- We did not own the /etc/unbound directory (#474020) - Fixed cvs anomalies- removed all obsolete chroot related stuff - label control certs after generation correctly- Updated to unbound 1.1.1 which fixes a crasher and addresses nlnetlabs bug #219- Remove the chroot, obsoleted by SElinux - Add additional munin plugin links supported by unbound plugin - Move configuration directory from /var/lib/unbound to /etc/unbound - Modified unbound.init and unbound.conf to account for chroot changes - Updated unbound.conf with new available options - Enabled dns-0x20 protection per default- unbound-1.1.0-log_open.patch - make sure log is opened before chroot call - tracked as http://www.nlnetlabs.nl/bugs/show_bug.cgi?id=219 - removed /dev/log and /var/run/unbound and /etc/resolv.conf from chroot, not needed - don't mount files in chroot, it causes problems during updates - fixed typo in default config file- Updated to version 1.1.0 - Updated unbound.conf's statistics options and remote-control to work properly for munin - Added unbound-munin package - Generate unbound remote-control key/certs on first startup - Required ldns is now 1.4.0- Only call ldconfig in -libs package - Move configure into build section - devel subpackage should only depend on libs subpackage- Fix CFLAGS getting lost in build - Don't enable interface-automatic:yes because that causes unbound to listen on 0.0.0.0 instead of 127.0.0.1- Split off unbound-libs, make build verbose- FSB compliance, chroot fixes, initscript fixes- Upgraded to 1.0.2- upgraded to new release- Build against ldns-1.3.0- Split of -devel package, fixed dependancies, make rpmlint happy- Using parts from ports collection entry by Jaap Akkerhuis. - Using Fedoraproject wiki guidelines.- Initial version.  !"#1.16.21.16.2-5.el8_9.61.16.2-5.el8_9.6unbound-event.hunbound.hlibunbound.solibunbound.pclibunbound.3.gzub_cancel.3.gzub_ctx.3.gzub_ctx_add_ta.3.gzub_ctx_add_ta_file.3.gzub_ctx_async.3.gzub_ctx_config.3.gzub_ctx_create.3.gzub_ctx_data_add.3.gzub_ctx_data_remove.3.gzub_ctx_debuglevel.3.gzub_ctx_debugout.3.gzub_ctx_delete.3.gzub_ctx_get_option.3.gzub_ctx_hosts.3.gzub_ctx_print_local_zones.3.gzub_ctx_resolvconf.3.gzub_ctx_set_fwd.3.gzub_ctx_set_option.3.gzub_ctx_trustedkeys.3.gzub_ctx_zone_add.3.gzub_ctx_zone_remove.3.gzub_fd.3.gzub_poll.3.gzub_process.3.gzub_resolve.3.gzub_resolve_async.3.gzub_resolve_free.3.gzub_result.3.gzub_strerror.3.gzub_wait.3.gz/usr/include//usr/lib//usr/lib/pkgconfig//usr/share/man/man3/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m32 -march=x86-64 -mtune=generic -mfpmath=sse -mstackrealign -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2i686-redhat-linux-gnuC source, ASCII textpkgconfig filetroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)RPRRRutf-8c85cd65031a6f27726825219f3119d95c3acbbf2c21b3c43e988c0d354b5aa4b?@7zXZ !#,A] b2u Q{LY,Y#1lGGv@Kdx`tyq۩4}e `I*aZ0B3Sso{팓 (x?2'SdIkc7lr' [vŏylni}ӂN/G Tq"J{2n8YFLGom8|Q˿>8 \Pho&aԨ1Sl?{mϰC";}2'՗t縆V߽Fml}W O5媩-T@7lrs/$VUe9q;YGy UwLbSyerȅ`9j^<u!.Fa*#Nom6Y9ڬz=6~,s)^<(=.5Ljلey[mNWXo-r4@̨؅]݂?S{l\P!osrDVɟ<س<q>gAFHPa/.U>SuglQnr9iC,wmnUx]&}u Ԍ2 nó=C|$$?m:N;a|fYw #z@{ BXLa}?h +̟k)Gf9dj]YNY* a}+Di4Zl;eaj9tcGecJ뗺g nwq`Ʈ/t۩Uϼ&nJ{M/l7TT o ”T;<Dm7PX/6᳻Gq]&8hdesxEI_ĕq8z!kT|l;BXSL9Ba?!xd4 k.Z5ҤOS _-Y{Fp.CupI20\1aLځI2i.gNFu;j͘ݶz#< 鍑 MC xiѢxN$q%yWjx>dM#+Qz1G)-ϙ!ae˔=M !Em4PA|K&=kXAN48 y鯤o `6pX_ҡ2B}5Fӕε&o*3x2ɑqjR&ǩUkţ, ʥhV(FXl] BKx 7X.&=7I;+x.ړ,L s?g%Ƕl%q7pYp.mBu,i䡤`_ TV.2K*Fk Vs:+Fu]3Tt%~'<lON\M6D$PO'e>_ؚ>R|o/@p ݶiŠabXلzudOMϩo&qompth%W $[]աm&#}):tGڰB{~6gQhzmXMI^gAwfj+V'4A^-g,aʄB\:|!y!9qVtr0ΕSw{JPե AX‹p2(sX^zJqFp 4vICzٙ^^B ZBA`ty1 v8k]&\hߗe:\cmPmB=O'b 4z,U܀RD4䌺5GBb7s|Ӓ+dJg *~*azC)5i{]6Qvѵ ԏ"߃"ǫOU~QbƏ.:4Z}×.0ɏ$b"N5f1ӃFrWfu%BAv(:sUWRToOx}7W:չ_fNc%ϛ:Mڀr!sģYkYSV_T&$qfw`Z݅ёNL0N%9Vb7T]P]쫀'Bjh$N?!-]Y`=كsOjXg i %F ]!QSGmLs{퓯j^c+32a& fZE$.*Z \y5Φ`cЖ LTKu*4v( '1+ H4to :8N_"ڪNxl6Tp:--* B1]SU.9_ԒZUpb b4?H S#N4C2%M@VxkfӐj'ˉF/}>;c/h5+$u+~P[&!Xxji㖧/~0s)FV&Eј>ށhL-0(E荦sڜz5sn|b&aܸ*w(JKs AuSݴDwEhx=OW0*0Pc9=T)g> FAx$$0E1/W{ 3$Oα=LƴkxcP ʵHxo3[xJ5_OqWb9.UF .A>c?Yk`nĺNT"@@9x!E%+%PS3TE. )zPZiH"븐F>m|:]/[mH,ͩ[M3 !y38eJ-7vQǟ ?IO$4Q UN݉Kgřօ  蟸mDcDٮܟRD7LKF5?5^e3U--[ԕB ;b m`3Vz?QqRXT2ta&/VQJ ½7|'nT}dZ'd8N {hz{,:oH C~wŬ`畳D{K}VD{ C8=W7 -<3<;Y\<#*.ul{x i ~7TůM)>t4OD Q}026bfш8,il=M ݆?5yeᶃb^a=(j`c*8^woTSc@NMW VrŏUf塗8RLL_NLӵ81#9Éf0VI`ݵr[y}a`soy m@bcu)aqG&^$\Xַ䚀ums ep JH;K|9 }iTDmuvMOĀNN Pjr,4KK g wq͕E({"z"d?DDYgt )ε' [CB;I10f*":1wDDGE+O]t ' >1ڟ+Qkay1%/cڑxؽHQ1N7F> gRTHmS0(?!֮˚PoLᔒcqub7nbJM 5;>Ȇf>"'ܲ9ON{X@Oz3_Z,uەCZpe)E.|/UϗP,;HIwzUȯE"ݯeY\y +py.ۛGr[&Y7mX &qIp `\c+N;Rd/KdNU7jjeg`xNAX1jxkCip`;= ,U&"in8h'l#,~:\XQbcԍ(-#Iy63eEp?ցs.vQy KKRb M=3ͭBJZN=Fl:Q 9mLUԒ4 - nGۼp7 1=~r0rAMv<8$m\Ml&/! uauys˾᲻M;n9@MW;/.Xچ}'-nTP~F1%Ѭ TC+ҩr84sO=֌y/"4rX~a<^Rb'-()k/6 k 2$;ۻR|`E44 L :5ZyK>T ՑWǘt,ȰDWKQZiU&0v]my3tiwO[jB)ef c5 *rkڕ }, ^;),K" 8Ř'e"qG#ߢKP￞n .1s,e@RC*'Ud'ǢxA_r'a߹7sZ(&Q ,Sy'j iKƚqZC.PՕv…]LzvOb/'Dܶ~M8zL5H81%h4FJy`p@{8_ ^9x}~fʏxye KM]#7P뼙]M|]@o^lWćcp4fI/0m2_l,&;u^.kAr`j6 L1o6wFh[(ձ=tĴt>){``9&Z;Xm(ճE|RIU:1Kp_* :;UJ;R,y dAa2.CH;v9; QP҆\Xu پR+xM.2q W 23lI6.E7~F 'A1Vwg-wX"g.q13 Z|'W[s",#L12Q$of4у:Kj!m :1NӐ {mkSdXh}4EԵP^jT*)5^Mң88V=OFCئ^lhi|f(\G>4p -hsyp'f%?Yi*dw::g= _?Z zo]ﳨ˓qxt:ߍmY.>SYΘk>-{R&ܜf㕵\ t iu\.Dq. 30aMI띚71kQbCEBԂ.(Ei4+Epvy49?&҄3u Q@ʗ0X2eqP54lZrwmB=yddkרEL} QY kWHfұ(mmj 򽘞1orfe!uA$/n[?\ϼirAvKgAj&9PmbF=FP5íح  =Ô;>`'9`ܶk@O!Le+1 iJ!+(Y, ` ڡN}9t) (@#ĥFr֒Uv9 !J@4q-9x5 _p>˫͋})k`sB8$]3 P8XMV`V5MO~5NA&Tk"opa.[LRKb3DMEo_ueFa}qǖʜ r*禫Us*}& %tW3ђ\QY{$~:Sc?zp%6%?U;Ϗ Sӊ@)jUw~LYK=B?2 *0[t' kX2*[Ss:b]b"uBw#}'i|߂#R Ft#;{;Ď*pa?WQ:wOBA#c*ȍpŸbwdĻҹ3 QQW?Ț7nhzwY%0Mr*|8@`oBcFYGեv}L*_ ricW7tI-/Vk1)C0 _$-Bh2*=YF, !+Yaaet3bt sv1[%w Ƶ´- εMl?AJj`gLeS{}W}nUꐘ ݃X|pl ߺλ:?(0_#fG9p~ o"ːt,;z}nzuuaF OIfy 0܏qܗ6栯섨f6msOi(S>46r/6_U,WaDYo؆peFQcWSDs@uyEstfJ ~ [Fk_d f"2;ҥ^jg48kU ߖJp*جh_lq"agQ?~`882YFp9JIUY!~|,o_ˍzm&b~ZWKD穼ɉWp阓+{:MtQVݿr2ꅞLLCPSv R ,pc@I{`xqp8f+cV;MfY*B4!GEi){ށ."W>;@X0 `/uTސg5)rֵQuO 9) t^1aƕ!>$Kql*^m{=D il>2*KZ<ۑ 9Wv;4E{0[pT0LuT+!; ~ Ql @a^iPAX3RI%YE ]7_XmR"Ə#Vgw> [fY\Ff4o8:n̮,䅏CB鱒gjcvMbf`8K߁s`˜y68tIxKl Bvh\Ű}S3ÁOMoVv]l.P'0f0E{z?bA S5D,>IW9"H˶lM.nk %n=+$\N%e]lMy8R.KS 7?5-A8Ib0#T@i$ !놧TI94GV#f~䉻2nOSjV |t,mrjmRT?O4jtrnw[Ξf7gߺ*V9ļ-ؼ3v'jG~`LPjT!*qG욮$xwҫuIؖV|O޻6L0,Xj:+;&M/b/./?|O.%n-bkiK4>-5(%6{Oo$=pv3949jWn=|#XxI-40UISPdGF J0rU1H*7wĝUlXIR^b~͝J.CZűQ]LMꐓʗ&* K̥{\ 9k=P7'mpϨs؛ B^zD}5a(y5rz=3)ˈ% ]5F†[ N^ܷ-v_9`!t#40.(%hHEg,v cɐQ|t4jP1ϲHbj!c$I0->HiBTG|ztyB˽j SMQ;^@i-IƠ+ `m&0$e~S'aA R ݣƺe@-" ~LLÄ>t |blO;UFҠ_@h.ߓ@a?!E#'m¨k]{;/}\B|?9Lۣ@B2ajOMjUF6>m\lz rgN&לIO|tq}ԄxrvDIM+FiՉ-}IhqłAbog ZDd;cf3ϮK2ȗMFDzZX=HE8HGmV_LNED(=e.!f3<Xu_.읻F&>SSe 1cj,1 jOj~Rzp~iّovmd_3Y%ꔜyq~F8Ap*W@/?_VYr{T LpC1d8Jz8 5NCU 31Hsn@s%VjS6bA\XMTgY @Q@491uеVfgNk{xHN^{8.j*U@W涛EȞa2(9tx°z4wȄ7\3_};"o Шbo/ɡ9u~u‰fjU~\I>d]݅\EGpmJUX-m -40~4QS֐ y/8GtDx QH‰~wԮa@T&YR2>Duc]QxBQCAhg O+-Uҳ_y-/AmSv,b6p(D6u]5Ӷ0!3So[=r}WK/⠶$[(JRFskDwQL@7bs#(h/C8(ƨk{ {jN:E4B!MG&\;]hx)?)$!K?t/=}SWw4^wPg:h&˟ % )prtkC~owi,`-p䇦Mdy7I?h0㏁ƓD8[ȂTjΎ ҙ]?)6\ ̓=xMYBnlȦJLE& Xx1{{ƬBL=x!O@?|M|<ŊROBbbō@IQj;}!ftggIE-T_t1u=Ɓ9@ ۏatNw /b0'r+=zn7,A3"oɮ&uߣ C {\%GxC}ш V/uatF )d3/8J&q +eBl뿮T>{0 ERюҥ] 3U[h}>=H~ۯ afK%jqWek `i )r+aKGRi.c0`& 8 ^rcxlMY^1R$ُK!HsK)UR]rTOl-4WdMv*EsQ5>]f"6n&N{:)aFoX!t5s bSkjp5 ڄa> }*n$4 ~O8NF}X%Q4!{*zIapZf#y8c샱rFA1b^ W}^"X${ّ>5nf\,-wh/;(E>洍S%S?ٽ<;rozwVB4j:GCն VޟΡ;"7|!ȶ`N_)-g\yz1:qSSFn8 {$I&w L2-#,9 ܝ*!ͣS](ۢдIǐ>? &=Uh٬u O%RF=g(])XP}_o Wߙl*ϤZJ FуI%BaqmN ڢ(-G\\?Ƕ9C;ÄiR C\NJH8]p_,i8e"/sE5 M0FNx,,rY^ޒٶ3Ub Sw<}XnӍ0Jb εik_+W<M2 A/ucM+qagpL5R Y1K~'SyW^-r":D/qی΅L0~> M:Nx\9~G(%d`zhBs]LE\Z$#݁ "-Ȥ"l'a!M~Sۚ*}Ȕ#>%㳠ٲJ#TO#li&G˫}d΄˴<9;i(.u`UV` `("` _s p2,{e'L =tSecP߈z)FU[ҵLvqWGu2*WRDSfF &c=8wSa|;(:kbO#8mchs61a g!Tq8Յ6ZšSŽ2ω5E]+4 v q U%>J!NJAut0