From 3749774b44405f7cdafcd3bb13c7ecbcf34a2f26 Mon Sep 17 00:00:00 2001
From: defanor <defanor@uberspace.net>
Date: Fri, 13 Nov 2020 14:40:11 +0300
Subject: Switch from c-ares to libunbound

libunbound supports DNSSEC, which is needed for DANE TLSA: GnuTLS
verifies a certificate for the final host, but SRV and A/AAAA records
leading to it should be verified as well.

c-ares is still used to parse domain names in SRV records, but should
be replaced soon.
---
 configure.ac | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'configure.ac')

diff --git a/configure.ac b/configure.ac
index 589fd4e..8fd21d6 100644
--- a/configure.ac
+++ b/configure.ac
@@ -36,6 +36,9 @@ PKG_CHECK_MODULES([CARES], [libcares])
 AC_SUBST(CARES_CFLAGS)
 AC_SUBST(CARES_LIBS)
 
+PKG_CHECK_MODULES([UNBOUND], [libunbound])
+AC_SUBST(UNBOUND_CFLAGS)
+AC_SUBST(UNBOUND_LIBS)
 
 # Checks for header files.
 AC_CHECK_HEADERS([arpa/inet.h netdb.h netinet/in.h sys/socket.h syslog.h])
-- 
cgit v1.2.3