- c1a4e25 Try to be a little more clever at falling back to smaller DNS packet sizes. by Simon Kelley · 7 years ago
- 3c973ad Use SIGINT (instead of overloading SIGHUP) to turn on DNSSEC time validation. by Simon Kelley · 7 years ago
- d1ced3a Update copyrights to 2018. by Simon Kelley · 7 years ago
- 373e917 Fix a6004d7f17687ac2455f724d0b57098c413f128d to cope with >256 RRs in answer section. by Simon Kelley · 7 years ago
- 087eb76 Always return a SERVFAIL response to DNS queries with RD=0. by Simon Kelley · 7 years ago
- b77efc1 Tidy DNSSEC algorithm table use. by Simon Kelley · 7 years ago
- ad9c6f0 Add support for Ed25519 DNSSEC signature algorithm. by Simon Kelley · 7 years ago
- a6004d7 Fix caching logic for validated answers. by Simon Kelley · 7 years ago
- 9d6918d Use IP[V6]_UNICAST_IF socket option instead of SO_BINDTODEVICE for DNS. by Simon Kelley · 7 years ago
- 0549c73 Security fix, CVE-2017-14491 DNS heap buffer overflow. by Simon Kelley · 7 years ago
- b697fbb Do not include stdio.h before dnsmasq.h by Christian Hesse · 7 years ago
- cbd29e5 Printf related fixes. by Rosen Penev · 7 years ago
- 50a2841 Fix function declarations. by Rosen Penev · 7 years ago
- 50ca855 Bump year in copyrights. by Simon Kelley · 7 years ago
- c7be016 Suppress DHCP ping checks when allocating on the loopback interface. by Simon Kelley · 8 years ago
- 4583dd9 Replace obsolete utime() usage with utimes(). by Vladislav Grishenko · 8 years ago
- 5ce3e76 DHCPv4: do ICMP-ping check in all cases other that current lease. by Simon Kelley · 8 years ago
- 6ec5f5c Extend --ra-param mtu: field to allow an interface name. by Vladislav Grishenko · 8 years ago
- c77fb9d Capture and log STDOUT and STDERR output from dhcp-script. by Petr Menšík · 8 years ago
- 005c46d Add mtu facility to --ra-param. by David Flamand · 8 years ago
- 503c609 --dhcp-reply-delay option to workaround PXE client bugs. by Floris Bos · 8 years ago
- 60704f5 Add support for unique TFTP root per MAC. by Floris Bos · 8 years ago
- ad59f27 Fix man page re interface labels and add warning when used badly. by Petr Menšík · 8 years ago
- 361dfe5 Improve connection handling when talking to TCP upsteam servers. by Simon Kelley · 8 years ago
- 730c674 Comprehensive spelling/typo fixes. by Josh Soref · 8 years ago
- 903df07 Detect and error loops in --cname configuration. by Simon Kelley · 8 years ago
- 7ac9ae1 Compile time option NO_ID by Kevin Darbyshire-Bryant · 8 years ago
- 2675f20 Handle binding upstream servers to an interface by Beniamino Galvani · 8 years ago
- 094bfae auth-zone: allow to exclude ip addresses from answer. by Mathias Kresin · 8 years ago
- fa78573 Zero packet buffers before building output, to reduce risk of information leakage. by Simon Kelley · 8 years ago
- 06093a9 Fix problem with --dnssec-timestamp by Kevin Darbyshire-Bryant · 8 years ago
- c7f3bd2 Replace incoming EDNS0_OPTION_NOMDEVICEID and EDNS0_OPTION_NOMCPEID options. by Simon Kelley · 9 years ago
- bec366b Add --tftp-mtu option. by Simon Kelley · 9 years ago
- 832e47b Add --dhcp-ttl option. by Simon Kelley · 9 years ago
- df3d54f Add TTL parameter to --host-record and --cname. by Simon Kelley · 9 years ago
- 9e4cf47 Add --add-mac=text option. by Simon Kelley · 9 years ago
- e6e751b Make names of ARP script actions consistent. by Simon Kelley · 9 years ago
- 1e50512 Final form of configuration for EDNS0 MAC-address code. by Simon Kelley · 9 years ago
- 926332a Add --max-port config option. by Hans Dedecker · 9 years ago
- 367341f Disable DNSSEC for server=/domain/.. servers unless trust-anchor provided. by Simon Kelley · 9 years ago
- c49778d Update copyright notices. Happy new year! by Simon Kelley · 9 years ago
- 33702ab First complete version of DNS-client-id EDNS0 and ARP tracking code. by Simon Kelley · 9 years ago
- 11867dc Cache access to the kernel's ARP table. by Simon Kelley · 9 years ago
- d3a8b39 More EDNS0 packet-size tweaks. by Simon Kelley · 9 years ago
- 15379ea Log signature algo with DNSKEY and DS, also digest with DS. by Simon Kelley · 9 years ago
- efef497 Fix build failure when DNSSEC code omitted. by Simon Kelley · 9 years ago
- 5bb88f0 Handle extending EDNS0 OPT RR. by Simon Kelley · 9 years ago
- 1d03016 Split EDNS0 stuff into its own source file. by Simon Kelley · 9 years ago
- fa14bec Major tidy up of EDNS0 handling and computation/use of udp packet size. by Simon Kelley · 9 years ago
- c2bcd1e Generalise RR-filtering code, for use with EDNS0. by Simon Kelley · 9 years ago
- 93be5b1 Abandon caching RRSIGs and returning them from cache. by Simon Kelley · 9 years ago
- 9a31b68 Major rationalisation of DNSSEC validation. by Simon Kelley · 9 years ago
- a7369be Enhance --add-subnet to allow arbitary subnet addresses. by Ed Bardsley · 9 years ago
- f6381cf Declare utime(). by Simon Kelley · 9 years ago
- 34b5d19 Update DNSSEC timestamp file on process TERM. by Kevin Darbyshire-Bryant · 9 years ago
- b842bc9 Use poll() instead of select() to remove limits on open file descriptors. by Simon Kelley · 9 years ago
- f6d6956 Test for overflowing platform FD_SET size. by Simon Kelley · 9 years ago
- 2fd5bc9 Allow router advertisements to have the "off-link" bit set. by Neil Jerram · 9 years ago
- a77cec8 Handle UDP packet loss when fragmentation of large packets is broken. by Simon Kelley · 10 years ago
- 64bcff1 Constify some DHCP lease management functions. by Nicolas Cavallari · 10 years ago
- fe3992f Return INSECURE, rather than BOGUS when DS proved not to exist. by Simon Kelley · 10 years ago
- 30d0879 add --tftp-no-fail to ignore missing tftp root by Stefan Tomanek · 10 years ago
- ff841eb Fix boilerplate code for re-running system calls on EINTR and EAGAIN etc. by Simon Kelley · 10 years ago
- 360f251 Tweak DNSSEC timestamp code to create file later, removing need to chown it. by Simon Kelley · 10 years ago
- 9003b50 Fix last commit to not crash if uid changing not configured. by Simon Kelley · 10 years ago
- f6e62e2 Add --dnssec-timestamp option and facility. by Simon Kelley · 10 years ago
- aff3396 Update copyrights for dawn of 2015. by Simon Kelley · 10 years ago
- 70d1873 Expand inotify code to dhcp-hostsdir, dhcp-optsdir and hostsdir. by Simon Kelley · 10 years ago
- 0491805 Allow inotify to be disabled at compile time on Linux. by Simon Kelley · 10 years ago
- 5f4dc5c Add --dhcp-hostsdir config option. by Simon Kelley · 10 years ago
- 28de387 Add --min-cache-ttl option. by RinSatsuki · 10 years ago
- 25cf5e3 Add --log-queries=extra option for more complete logging. by Simon Kelley · 10 years ago
- 97e618a DNSSEC: do top-down search for limit of secure delegation. by Simon Kelley · 10 years ago
- 32fc6db Add --ignore-address option. by Glen Huang · 10 years ago
- 4766936 Eliminate IPv6 privacy addresses from --interface-name answers. by Simon Kelley · 10 years ago
- 193de4a Use inotify instead of polling on Linux. by Simon Kelley · 10 years ago
- 288df49 Fix bug when resulted in NXDOMAIN answers instead of NODATA. by Simon Kelley · 10 years ago
- b5ea1cc Add --dns-loop-detect feature. by Simon Kelley · 10 years ago
- 6d8e8ac Tidy up previous commit. by Simon Kelley · 10 years ago
- 24b167a Fix logic for associating leases with interfaces. by Simon Kelley · 10 years ago
- 47a9516 Use event system to re-send query on new route. Tidies module boundaries. by Simon Kelley · 10 years ago
- dc8a1b1 Set interface with longest prefix in DHCP & DHCPv6 lease by Lung-Pin Chang · 10 years ago
- 70772c9 Allow wildcard aliases in --bridge-interface option by Neil Jerram · 10 years ago
- a0358e5 Handle async notification of address changes using the event system. by Simon Kelley · 11 years ago
- 7ea3d3f ra-advrouter mode for RFC-3775 mobile IPv6 support. by Simon Kelley · 11 years ago
- 49752b9 Log IPSET actions. by Wang Jian · 11 years ago
- e98bd52 Add --dnssec-no-timecheck by Simon Kelley · 11 years ago
- fec216d Cache stats availble in CHAOS .bind domain. by Simon Kelley · 11 years ago
- 19c51cf Tidy and fix cache->uid handling. by Simon Kelley · 11 years ago
- 3f7483e Handle integer overflow in uid counter. Fixes rare crashes in cache code. by Simon Kelley · 11 years ago
- c8a8048 --local-service. Default protection from DNS amplification attacks. by Simon Kelley · 11 years ago
- 00a5b5d Check that unsigned replies come from unsigned zones if --dnssec-check-unsigned set. by Simon Kelley · 11 years ago
- 613ad15 Strip DNSSEC RRs when query doesn't have DO bit set. by Simon Kelley · 11 years ago
- 5107ace NSEC3 validation. First pass. by Simon Kelley · 11 years ago
- 7b1eae4 Add --servers-file option. by Simon Kelley · 11 years ago
- d68c2ca Cleanup of server reading code, preparation, for dynamic reading from files. by Simon Kelley · 11 years ago
- ee41586 Use DS records as trust anchors, not DNSKEYs. by Simon Kelley · 11 years ago
- 83349b8 Further tidying of AD and DO bit handling. by Simon Kelley · 11 years ago
- 7fa836e Handle validation when more one key is needed. by Simon Kelley · 11 years ago
- 610e782 Fix stack-smashing crash in DNSSEC. Thanks to Henk Jan Agteresch. by Simon Kelley · 11 years ago