2 files changed, 0 insertions, 393 deletions

diff --git a/external/unbound b/external/unbound
new file mode 160000
+Subproject 193bdc4ee3fe2b0d17e547e86512528c2614483
diff --git a/external/unbound/util/net_help.h b/external/unbound/util/net_help.h
deleted file mode 100644
index 54f4c9c0e..000000000
--- a/external/unbound/util/net_help.h
+++ /dev/null
@@ -1,393 +0,0 @@
-/*
- * util/net_help.h - network help functions 
- *
- * Copyright (c) 2007, NLnet Labs. All rights reserved.
- *
- * This software is open source.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 
- * Redistributions of source code must retain the above copyright notice,
- * this list of conditions and the following disclaimer.
- * 
- * Redistributions in binary form must reproduce the above copyright notice,
- * this list of conditions and the following disclaimer in the documentation
- * and/or other materials provided with the distribution.
- * 
- * Neither the name of the NLNET LABS nor the names of its contributors may
- * be used to endorse or promote products derived from this software without
- * specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
- * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
- * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
- * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
- * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
- * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
- * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
- * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
- * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
- * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
- * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
- */
-
-/**
- * \file
- *
- * This file contains functions to perform network related tasks.
- */
-
-#ifndef NET_HELP_H
-#define NET_HELP_H
-#include "util/log.h"
-struct sock_list;
-struct regional;
-
-/** DNS constants for uint16_t style flag manipulation. host byteorder. 
- *                                1  1  1  1  1  1
- *  0  1  2  3  4  5  6  7  8  9  0  1  2  3  4  5
- * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+
- * |QR|   Opcode  |AA|TC|RD|RA| Z|AD|CD|   RCODE   |
- * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+
- */ 
-/** CD flag */
-#define BIT_CD 0x0010
-/** AD flag */
-#define BIT_AD 0x0020
-/** Z flag */
-#define BIT_Z  0x0040
-/** RA flag */
-#define BIT_RA 0x0080
-/** RD flag */
-#define BIT_RD 0x0100
-/** TC flag */
-#define BIT_TC 0x0200
-/** AA flag */
-#define BIT_AA 0x0400
-/** QR flag */
-#define BIT_QR 0x8000
-/** get RCODE bits from uint16 flags */
-#define FLAGS_GET_RCODE(f) ((f) & 0xf)
-/** set RCODE bits in uint16 flags */
-#define FLAGS_SET_RCODE(f, r) (f = (((f) & 0xfff0) | (r)))
-
-/** timeout in seconds for UDP queries to auth servers. */
-#define UDP_AUTH_QUERY_TIMEOUT 4
-/** timeout in seconds for TCP queries to auth servers. */
-#define TCP_AUTH_QUERY_TIMEOUT 30
-/** Advertised version of EDNS capabilities */
-#define EDNS_ADVERTISED_VERSION         0
-/** Advertised size of EDNS capabilities */
-extern uint16_t EDNS_ADVERTISED_SIZE;
-/** bits for EDNS bitfield */
-#define EDNS_DO 0x8000 /* Dnssec Ok */
-/** byte size of ip4 address */
-#define INET_SIZE 4
-/** byte size of ip6 address */
-#define INET6_SIZE 16
-
-/** DNSKEY zone sign key flag */
-#define DNSKEY_BIT_ZSK 0x0100
-/** DNSKEY secure entry point, KSK flag */
-#define DNSKEY_BIT_SEP 0x0001
-
-/** minimal responses when positive answer */
-extern int MINIMAL_RESPONSES;
-
-/** rrset order roundrobin */
-extern int RRSET_ROUNDROBIN;
-
-/**
- * See if string is ip4 or ip6.
- * @param str: IP specification.
- * @return: true if string addr is an ip6 specced address.
- */
-int str_is_ip6(const char* str);
-
-/**
- * Set fd nonblocking.
- * @param s: file descriptor.
- * @return: 0 on error (error is printed to log).
- */
-int fd_set_nonblock(int s); 
-
-/**
- * Set fd (back to) blocking.
- * @param s: file descriptor.
- * @return: 0 on error (error is printed to log).
- */
-int fd_set_block(int s); 
-
-/**
- * See if number is a power of 2.
- * @param num: the value.
- * @return: true if the number is a power of 2.
- */
-int is_pow2(size_t num);
-
-/**
- * Allocate memory and copy over contents.
- * @param data: what to copy over.
- * @param len: length of data.
- * @return: NULL on malloc failure, or newly malloced data.
- */
-void* memdup(void* data, size_t len);
-
-/**
- * Prints the sockaddr in readable format with log_info. Debug helper.
- * @param v: at what verbosity level to print this.
- * @param str: descriptive string printed with it.
- * @param addr: the sockaddr to print. Can be ip4 or ip6.
- * @param addrlen: length of addr.
- */
-void log_addr(enum verbosity_value v, const char* str, 
-	struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * Prints zone name and sockaddr in readable format with log_info. Debug.
- * @param v: at what verbosity level to print this.
- * @param str: descriptive string printed with it.
- * @param zone: DNS domain name, uncompressed wireformat.
- * @param addr: the sockaddr to print. Can be ip4 or ip6.
- * @param addrlen: length of addr.
- */
-void log_name_addr(enum verbosity_value v, const char* str, uint8_t* zone, 
-	struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * Log errno and addr.
- * @param str: descriptive string printed with it.
- * @param err: errno string to print, i.e. strerror(errno).
- * @param addr: the sockaddr to print. Can be ip4 or ip6.
- * @param addrlen: length of addr.
- */
-void log_err_addr(const char* str, const char* err,
-	struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * Convert address string, with "@port" appendix, to sockaddr.
- * Uses DNS port by default.
- * @param str: the string
- * @param addr: where to store sockaddr.
- * @param addrlen: length of stored sockaddr is returned.
- * @return 0 on error.
- */
-int extstrtoaddr(const char* str, struct sockaddr_storage* addr, 
-	socklen_t* addrlen);
-
-/**
- * Convert ip address string and port to sockaddr.
- * @param ip: ip4 or ip6 address string.
- * @param port: port number, host format.
- * @param addr: where to store sockaddr.
- * @param addrlen: length of stored sockaddr is returned.
- * @return 0 on error.
- */
-int ipstrtoaddr(const char* ip, int port, struct sockaddr_storage* addr,
-	socklen_t* addrlen);
-
-/**
- * Convert ip netblock (ip/netsize) string and port to sockaddr.
- * *SLOW*, does a malloc internally to avoid writing over 'ip' string.
- * @param ip: ip4 or ip6 address string.
- * @param port: port number, host format.
- * @param addr: where to store sockaddr.
- * @param addrlen: length of stored sockaddr is returned.
- * @param net: netblock size is returned.
- * @return 0 on error.
- */
-int netblockstrtoaddr(const char* ip, int port, struct sockaddr_storage* addr,
-	socklen_t* addrlen, int* net);
-
-/**
- * Print string with neat domain name, type and class.
- * @param v: at what verbosity level to print this.
- * @param str: string of message.
- * @param name: domain name uncompressed wireformat.
- * @param type: host format RR type.
- * @param dclass: host format RR class.
- */
-void log_nametypeclass(enum verbosity_value v, const char* str, 
-	uint8_t* name, uint16_t type, uint16_t dclass);
-
-/**
- * Compare two sockaddrs. Imposes an ordering on the addresses.
- * Compares address and port.
- * @param addr1: address 1.
- * @param len1: lengths of addr1.
- * @param addr2: address 2.
- * @param len2: lengths of addr2.
- * @return: 0 if addr1 == addr2. -1 if addr1 is smaller, +1 if larger.
- */
-int sockaddr_cmp(struct sockaddr_storage* addr1, socklen_t len1, 
-	struct sockaddr_storage* addr2, socklen_t len2);
-
-/**
- * Compare two sockaddrs. Compares address, not the port.
- * @param addr1: address 1.
- * @param len1: lengths of addr1.
- * @param addr2: address 2.
- * @param len2: lengths of addr2.
- * @return: 0 if addr1 == addr2. -1 if addr1 is smaller, +1 if larger.
- */
-int sockaddr_cmp_addr(struct sockaddr_storage* addr1, socklen_t len1, 
-	struct sockaddr_storage* addr2, socklen_t len2);
-
-/**
- * Checkout address family.
- * @param addr: the sockaddr to examine.
- * @param len: the length of addr.
- * @return: true if sockaddr is ip6.
- */
-int addr_is_ip6(struct sockaddr_storage* addr, socklen_t len);
-
-/**
- * Make sure the sockaddr ends in zeroes. For tree insertion and subsequent
- * comparison.
- * @param addr: the ip4 or ip6 addr.
- * @param len: length of addr.
- * @param net: number of bits to leave untouched, the rest of the netblock
- * 	address is zeroed.
- */
-void addr_mask(struct sockaddr_storage* addr, socklen_t len, int net);
-
-/**
- * See how many bits are shared, equal, between two addrs.
- * @param addr1: first addr.
- * @param net1: netblock size of first addr.
- * @param addr2: second addr.
- * @param net2: netblock size of second addr.
- * @param addrlen: length of first addr and of second addr.
- * 	They must be of the same length (i.e. same type IP4, IP6).
- * @return: number of bits the same.
- */
-int addr_in_common(struct sockaddr_storage* addr1, int net1,
-	struct sockaddr_storage* addr2, int net2, socklen_t addrlen);
-
-/**
- * Put address into string, works for IPv4 and IPv6.
- * @param addr: address
- * @param addrlen: length of address
- * @param buf: result string stored here
- * @param len: length of buf.
- * On failure a string with "error" is stored inside.
- */
-void addr_to_str(struct sockaddr_storage* addr, socklen_t addrlen,
-	char* buf, size_t len);
-
-/**
- * See if sockaddr is an ipv6 mapped ipv4 address, "::ffff:0.0.0.0"
- * @param addr: address
- * @param addrlen: length of address
- * @return true if so
- */
-int addr_is_ip4mapped(struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * See if sockaddr is 255.255.255.255.
- * @param addr: address
- * @param addrlen: length of address
- * @return true if so
- */
-int addr_is_broadcast(struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * See if sockaddr is 0.0.0.0 or ::0.
- * @param addr: address
- * @param addrlen: length of address
- * @return true if so
- */
-int addr_is_any(struct sockaddr_storage* addr, socklen_t addrlen);
-
-/**
- * Insert new socket list item. If fails logs error.
- * @param list: pointer to pointer to first item.
- * @param addr: address or NULL if 'cache'.
- * @param len: length of addr, or 0 if 'cache'.
- * @param region: where to allocate
- */
-void sock_list_insert(struct sock_list** list, struct sockaddr_storage* addr,
-	socklen_t len, struct regional* region);
-
-/**
- * Append one list to another.  Must both be from same qstate(regional).
- * @param list: pointer to result list that is modified.
- * @param add: item(s) to add.  They are prepended to list.
- */
-void sock_list_prepend(struct sock_list** list, struct sock_list* add);
-
-/**
- * Find addr in list.
- * @param list: to search in
- * @param addr: address to look for.
- * @param len: length. Can be 0, look for 'cache entry'.
- * @return true if found.
- */
-int sock_list_find(struct sock_list* list, struct sockaddr_storage* addr,
-        socklen_t len);
-
-/**
- * Merge socklist into another socket list.  Allocates the new entries
- * freshly and copies them over, so also performs a region switchover.
- * Allocation failures are logged.
- * @param list: the destination list (checked for duplicates)
- * @param region: where to allocate
- * @param add: the list of entries to add.
- */
-void sock_list_merge(struct sock_list** list, struct regional* region,
-	struct sock_list* add);
-
-/**
- * Log libcrypto error with descriptive string. Calls log_err().
- * @param str: what failed.
- */
-void log_crypto_err(const char* str);
-
-/** 
- * create SSL listen context
- * @param key: private key file.
- * @param pem: public key cert.
- * @param verifypem: if nonNULL, verifylocation file.
- * return SSL_CTX* or NULL on failure (logged).
- */
-void* listen_sslctx_create(char* key, char* pem, char* verifypem);
-
-/**
- * create SSL connect context
- * @param key: if nonNULL (also pem nonNULL), the client private key.
- * @param pem: client public key (or NULL if key is NULL).
- * @param verifypem: if nonNULL used for verifylocation file.
- * @return SSL_CTX* or NULL on failure (logged).
- */
-void* connect_sslctx_create(char* key, char* pem, char* verifypem);
-
-/**
- * accept a new fd and wrap it in a BIO in SSL
- * @param sslctx: the SSL_CTX to use (from listen_sslctx_create()).
- * @param fd: from accept, nonblocking.
- * @return SSL or NULL on alloc failure.
- */
-void* incoming_ssl_fd(void* sslctx, int fd);
-
-/**
- * connect a new fd and wrap it in a BIO in SSL
- * @param sslctx: the SSL_CTX to use (from connect_sslctx_create())
- * @param fd: from connect.
- * @return SSL or NULL on alloc failure
- */
-void* outgoing_ssl_fd(void* sslctx, int fd);
-
-/**
- * Initialize openssl locking for thread safety
- * @return false on failure (alloc failure).
- */
-int ub_openssl_lock_init(void);
-
-/**
- * De-init the allocated openssl locks
- */
-void ub_openssl_lock_delete(void);
-
-#endif /* NET_HELP_H */