Gitiles
Code Review Sign In
gerrit.nordix.org / thekelleys / dnsmasq / 1d7e0a36e3b46e630e90c9d9d18dfe06200802b9
  1. 1d7e0a3 ipv6.arpa -> ip6.arpa by Lutz Preßler · 11 years ago
  2. 1006860 Fix NXDOMAIN RCODE in auth PTR replies. by Simon Kelley · 11 years ago
  3. b7639d5 Fix ipsets logging patch. by Simon Kelley · 11 years ago
  4. 49752b9 Log IPSET actions. by Wang Jian · 11 years ago
  5. e98bd52 Add --dnssec-no-timecheck by Simon Kelley · 11 years ago
  6. 8a8bbad Ensure ->sentto is valid for DNSSEC forwards. Otherwise retries SEGV. by Simon Kelley · 11 years ago
  7. fec216d Cache stats availble in CHAOS .bind domain. by Simon Kelley · 11 years ago
  8. 4e1fe44 Terminate DS-search when reaching the root via cache entries. by Simon Kelley · 11 years ago
  9. 51967f9 SERVFAIL is an expected error return, don't try all servers. by Simon Kelley · 11 years ago
  10. b37f8b9 Handle failure of hash_questions() by Tomas Hozza · 11 years ago
  11. fc2833f Memory leak in error path. by Tomas Hozza · 11 years ago
  12. 490f907 Reorder sanity checks on UDP packet reception, to cope with failed recvfrom() by Simon Kelley · 11 years ago
  13. 56618c3 Add dnssec-check-unsigned to example config file. by Simon Kelley · 11 years ago
  14. 604f759 CHANGELOG update. by Simon Kelley · 11 years ago
  15. 2a7a2b8 Ignore DNS queries from port 0: http://www.ietf.org/mail-archive/web/dnsop/current/msg11441.html by Simon Kelley · 11 years ago
  16. 3e21a1a Tidy uid defines. by Andy · 11 years ago
  17. 2b29191 Fix DNSSEC crash retrying to IPv6 server. by Simon Kelley · 11 years ago
  18. 03431d6 Initialise uid when creating CNAME cache record. by Simon Kelley · 11 years ago
  19. cc1a29e Make --quiet-dhcp apply to DHCPDISCOVER when client ignored. by Simon Kelley · 11 years ago
  20. e62e9b6 Manpage typos. by Moritz Warning · 11 years ago
  21. 19c51cf Tidy and fix cache->uid handling. by Simon Kelley · 11 years ago
  22. d508215 Ensure next_uid() can never return 0. by Andy · 11 years ago
  23. 3f7483e Handle integer overflow in uid counter. Fixes rare crashes in cache code. by Simon Kelley · 11 years ago
  24. 0c8584e Warn about non-local queries once only for UDP. by Simon Kelley · 11 years ago
  25. f00690f Typo by Simon Kelley · 11 years ago
  26. 89b12ed OPT_LOCAL_SERVICE needs up-to-date interface list too. by Simon Kelley · 11 years ago
  27. 1a9a348 Set --local-service in Debian package startup. by Simon Kelley · 11 years ago
  28. c8a8048 --local-service. Default protection from DNS amplification attacks. by Simon Kelley · 11 years ago
  29. 4ea8e80 Add --static to pkg-config command when appropriate. by Simon Kelley · 11 years ago
  30. c07d30d Compiler warning. by Simon Kelley · 11 years ago
  31. d588ab5 Man page updates for DNSSEC. by Simon Kelley · 11 years ago
  32. f8b422a KEYBLOCK LEN better as a multiple of 8. by Simon Kelley · 11 years ago
  33. 29fe922 Can have local DS records (trust anchors). by Simon Kelley · 11 years ago
  34. 8707019 Mass edit of INSECURE->BOGUS returns for server failure/bad input. by Simon Kelley · 11 years ago
  35. d1fbb77 Don't cache secure replies which we've messsed with. by Simon Kelley · 11 years ago
  36. 1fbe4d2 Tweak tuning params. by Simon Kelley · 11 years ago
  37. 0575610 Handle replies with no answers and no NS in validate_reply. by Simon Kelley · 11 years ago
  38. e3f1455 Don't free blockdata for negative DS cache entries. by Simon Kelley · 11 years ago
  39. bd9b3cf Fix off-by-one overwrite. by Simon Kelley · 11 years ago
  40. 14db421 Tidy. by Simon Kelley · 11 years ago
  41. 00a5b5d Check that unsigned replies come from unsigned zones if --dnssec-check-unsigned set. by Simon Kelley · 11 years ago
  42. b8eac19 Negative caching for DS records. by Simon Kelley · 11 years ago
  43. b47b04c Return INSECURE when validation fails with proved non-existent DS. by Simon Kelley · 11 years ago
  44. 613ad15 Strip DNSSEC RRs when query doesn't have DO bit set. by Simon Kelley · 11 years ago
  45. 2418753 Speeling. by Simon Kelley · 11 years ago
  46. a857daa Code cleanup. by Simon Kelley · 11 years ago
  47. f01d7be An NSEC record cannot attest to its own non-existance! by Simon Kelley · 11 years ago
  48. d387380 Check signer name in RRSIGs. by Simon Kelley · 11 years ago
  49. f2e4c27 Bugfix for last commit. by Simon Kelley · 11 years ago
  50. 5107ace NSEC3 validation. First pass. by Simon Kelley · 11 years ago
  51. 7b1eae4 Add --servers-file option. by Simon Kelley · 11 years ago
  52. c152dc8 Omit ECC from DNSSEC if nettle library is old. by Simon Kelley · 11 years ago
  53. 7bcca00 More server cleanup. by Simon Kelley · 11 years ago
  54. d68c2ca Cleanup of server reading code, preparation, for dynamic reading from files. by Simon Kelley · 11 years ago
  55. de73a49 --rev-server option. Syntactic sugar for PTR queries. by Simon Kelley · 11 years ago
  56. e3ec15a Log BOGUS validation result when upstream sends SERVFAIL. by Simon Kelley · 11 years ago
  57. dac7431 TYpo. by Simon Kelley · 11 years ago
  58. 2ecd9bd No CD in forwarded queries unless dnssec-debug for TCP too. by Simon Kelley · 11 years ago
  59. a0ab18f Don't mess with the TTL of DNSSEC RRs. by Simon Kelley · 11 years ago
  60. ebe95a8 Add RFC-6605 ECDSA DNSSEC verification. by Simon Kelley · 11 years ago
  61. ee41586 Use DS records as trust anchors, not DNSKEYs. by Simon Kelley · 11 years ago
  62. 83349b8 Further tidying of AD and DO bit handling. by Simon Kelley · 11 years ago
  63. 7fa836e Handle validation when more one key is needed. by Simon Kelley · 11 years ago
  64. 1633e30 Fix Byte-order botch: broke DNSSEC on big-endian platforms. by Simon Kelley · 11 years ago
  65. c8ca33f Fix DNSSEC caching problems: incomplete RRSIG RRsets. by Simon Kelley · 11 years ago
  66. e243c07 AD bit in queries handled as RFC6840 p5.7 by Simon Kelley · 11 years ago
  67. da4f372 Add trust-anchors file to Debian package. by Simon Kelley · 11 years ago
  68. 610e782 Fix stack-smashing crash in DNSSEC. Thanks to Henk Jan Agteresch. by Simon Kelley · 11 years ago
  69. 854cf26 DNSSEC config in example file. by Simon Kelley · 11 years ago
  70. bb201c2 Protect against malicious DNS replies with very large RRsets. by Simon Kelley · 11 years ago
  71. 12fae49 Make RR work when returning A/AAAA records and an RRSIG. by Simon Kelley · 11 years ago
  72. fd37227 Updated version of contrib/try-all-ns by Jesse Glick · 11 years ago
  73. b98d22c Linking stuff. Latest Debian/Ubuntu don't automatically link gmp. by Simon Kelley · 11 years ago
  74. 160f650 Make DNSEC default, add build-depends for same, bump version. by Simon Kelley · 11 years ago
  75. 613d6c5 CHANGLEOG for DNSSEC. by Simon Kelley · 11 years ago
  76. 81a883f Format tweak. by Simon Kelley · 11 years ago
  77. 40b695c Log NXDOMAIN correctly. by Simon Kelley · 11 years ago
  78. 5f93853 Return configured DNSKEYs even though we don't have RRSIGS for them. by Simon Kelley · 11 years ago
  79. 8d718cb Nasty cache failure and memory leak with DNSSEC. by Simon Kelley · 11 years ago
  80. f6a2b79 Validate Ooops. by Simon Kelley · 11 years ago
  81. 82e3f45 Blockdata fixes and tuning. by Simon Kelley · 11 years ago
  82. 072e81b Blockdata leak. by Simon Kelley · 11 years ago
  83. 1d97ac4 copy-n-paste error. by Simon Kelley · 11 years ago
  84. db73746 Anounce DNSSEC at startup. by Simon Kelley · 11 years ago
  85. 97bc798 Init ->dependent field in frec allocation. by Simon Kelley · 11 years ago
  86. edc231b Compiler warning. by Simon Kelley · 11 years ago
  87. b85e092 Add a file containing current root trust anchors, for convenience. by Simon Kelley · 11 years ago
  88. 583043f Crash in cache code when compiled with HAVE_DNSSEC. by Simon Kelley · 11 years ago
  89. 8f6213c Allow use of COPTS in Debian rules invokation for nefarious purposes. by Simon Kelley · 11 years ago
  90. 00ec693 Debian package with DNSSEC now possible. by Simon Kelley · 11 years ago
  91. 70b4a81 Man page entries for DNSSEC flags. by Simon Kelley · 11 years ago
  92. 7c28612 Trivial format fix. by Simon Kelley · 11 years ago
  93. 6f46810 Code tidy. by Simon Kelley · 11 years ago
  94. 6938f34 Don't mark answers as DNSEC validated if DNS-doctored. by Simon Kelley · 11 years ago
  95. 17fb9ea Exclude CRC code in DNSSEC build - replaced with SHA1. by Simon Kelley · 11 years ago
  96. 7d23a66 Remove --dnssec-permissive, pointless if we don't set CD upstream. by Simon Kelley · 11 years ago
  97. 703c7ff Fix to last commit. by Simon Kelley · 11 years ago
  98. 8a9be9e Replace CRC32 with SHA1 for spoof detection in DNSSEC builds. by Simon Kelley · 11 years ago
  99. c92f008 Get AA flag right in DNSSEC answers from cache. by Simon Kelley · 11 years ago
  100. b5dbfd1 RRSIG answer logging. by Simon Kelley · 11 years ago