Gitiles
Code Review Sign In
gerrit.nordix.org / thekelleys / dnsmasq / b47b04c8460321d18bd76e641f7cf2ba626e32ad / src
  1. b47b04c Return INSECURE when validation fails with proved non-existent DS. by Simon Kelley · 11 years ago
  2. 613ad15 Strip DNSSEC RRs when query doesn't have DO bit set. by Simon Kelley · 11 years ago
  3. 2418753 Speeling. by Simon Kelley · 11 years ago
  4. a857daa Code cleanup. by Simon Kelley · 11 years ago
  5. f01d7be An NSEC record cannot attest to its own non-existance! by Simon Kelley · 11 years ago
  6. d387380 Check signer name in RRSIGs. by Simon Kelley · 11 years ago
  7. f2e4c27 Bugfix for last commit. by Simon Kelley · 11 years ago
  8. 5107ace NSEC3 validation. First pass. by Simon Kelley · 11 years ago
  9. 7b1eae4 Add --servers-file option. by Simon Kelley · 11 years ago
  10. c152dc8 Omit ECC from DNSSEC if nettle library is old. by Simon Kelley · 11 years ago
  11. 7bcca00 More server cleanup. by Simon Kelley · 11 years ago
  12. d68c2ca Cleanup of server reading code, preparation, for dynamic reading from files. by Simon Kelley · 11 years ago
  13. de73a49 --rev-server option. Syntactic sugar for PTR queries. by Simon Kelley · 11 years ago
  14. e3ec15a Log BOGUS validation result when upstream sends SERVFAIL. by Simon Kelley · 11 years ago
  15. dac7431 TYpo. by Simon Kelley · 11 years ago
  16. 2ecd9bd No CD in forwarded queries unless dnssec-debug for TCP too. by Simon Kelley · 11 years ago
  17. a0ab18f Don't mess with the TTL of DNSSEC RRs. by Simon Kelley · 11 years ago
  18. ebe95a8 Add RFC-6605 ECDSA DNSSEC verification. by Simon Kelley · 11 years ago
  19. ee41586 Use DS records as trust anchors, not DNSKEYs. by Simon Kelley · 11 years ago
  20. 83349b8 Further tidying of AD and DO bit handling. by Simon Kelley · 11 years ago
  21. 7fa836e Handle validation when more one key is needed. by Simon Kelley · 11 years ago
  22. 1633e30 Fix Byte-order botch: broke DNSSEC on big-endian platforms. by Simon Kelley · 11 years ago
  23. c8ca33f Fix DNSSEC caching problems: incomplete RRSIG RRsets. by Simon Kelley · 11 years ago
  24. e243c07 AD bit in queries handled as RFC6840 p5.7 by Simon Kelley · 11 years ago
  25. 610e782 Fix stack-smashing crash in DNSSEC. Thanks to Henk Jan Agteresch. by Simon Kelley · 11 years ago
  26. bb201c2 Protect against malicious DNS replies with very large RRsets. by Simon Kelley · 11 years ago
  27. 12fae49 Make RR work when returning A/AAAA records and an RRSIG. by Simon Kelley · 11 years ago
  28. b98d22c Linking stuff. Latest Debian/Ubuntu don't automatically link gmp. by Simon Kelley · 11 years ago
  29. 81a883f Format tweak. by Simon Kelley · 11 years ago
  30. 40b695c Log NXDOMAIN correctly. by Simon Kelley · 11 years ago
  31. 5f93853 Return configured DNSKEYs even though we don't have RRSIGS for them. by Simon Kelley · 11 years ago
  32. 8d718cb Nasty cache failure and memory leak with DNSSEC. by Simon Kelley · 11 years ago
  33. f6a2b79 Validate Ooops. by Simon Kelley · 11 years ago
  34. 82e3f45 Blockdata fixes and tuning. by Simon Kelley · 11 years ago
  35. 072e81b Blockdata leak. by Simon Kelley · 11 years ago
  36. 1d97ac4 copy-n-paste error. by Simon Kelley · 11 years ago
  37. db73746 Anounce DNSSEC at startup. by Simon Kelley · 11 years ago
  38. 97bc798 Init ->dependent field in frec allocation. by Simon Kelley · 11 years ago
  39. edc231b Compiler warning. by Simon Kelley · 11 years ago
  40. 583043f Crash in cache code when compiled with HAVE_DNSSEC. by Simon Kelley · 11 years ago
  41. 7c28612 Trivial format fix. by Simon Kelley · 11 years ago
  42. 6f46810 Code tidy. by Simon Kelley · 11 years ago
  43. 6938f34 Don't mark answers as DNSEC validated if DNS-doctored. by Simon Kelley · 11 years ago
  44. 17fb9ea Exclude CRC code in DNSSEC build - replaced with SHA1. by Simon Kelley · 11 years ago
  45. 7d23a66 Remove --dnssec-permissive, pointless if we don't set CD upstream. by Simon Kelley · 11 years ago
  46. 703c7ff Fix to last commit. by Simon Kelley · 11 years ago
  47. 8a9be9e Replace CRC32 with SHA1 for spoof detection in DNSSEC builds. by Simon Kelley · 11 years ago
  48. c92f008 Get AA flag right in DNSSEC answers from cache. by Simon Kelley · 11 years ago
  49. b5dbfd1 RRSIG answer logging. by Simon Kelley · 11 years ago
  50. cbf13a2 Class specifier in --dnskey, instead of hardwiring C_IN. by Simon Kelley · 11 years ago
  51. 5b3bf92 --dnssec-debug by Simon Kelley · 11 years ago
  52. 0744ca6 More DNSSEC caching logic, and avoid repeated validation of DS/DNSKEY by Simon Kelley · 11 years ago
  53. 2d33bda RRSIGS for PTR records from cache. by Simon Kelley · 11 years ago
  54. 32f90c0 Tweak. by Simon Kelley · 11 years ago
  55. bce6e1b RRSIGs in DS and DNSKEY cached answers. by Simon Kelley · 11 years ago
  56. 824202e More DNSSEC cache readout. by Simon Kelley · 11 years ago
  57. 9ebfca1 Compiler warning. by Simon Kelley · 11 years ago
  58. 6429e42 Compiler warning. by Simon Kelley · 11 years ago
  59. c9bfa94 remove redundant headerage by Simon Kelley · 11 years ago
  60. e7829ae Cache RRSIGS. by Simon Kelley · 11 years ago
  61. 51ea3ca Caching of DNSSEC records. by Simon Kelley · 11 years ago
  62. 57ab36e Tweak definition of a permanent IPv6 address on Linux. by Jonas Gorski · 11 years ago
  63. dd0e0a3 Handle time_t wraparound more sanely. by Simon Kelley · 11 years ago
  64. 6fd6dac Fix loop in RR sort. by Simon Kelley · 11 years ago
  65. 39048ad bug fix, avoids infinite loop in forwarding code. by Simon Kelley · 11 years ago
  66. 979cdf9 Fix to hostname_cmp, and update to canonicalisation table. RFC 4034 LIES. by Simon Kelley · 11 years ago
  67. dbf7212 Rationalise hostname_cmp() by Simon Kelley · 11 years ago
  68. c979fa0 Provide for static library linking. by Simon Kelley · 11 years ago
  69. c5f4ec7 NSEC proof-of-non-existence. by Simon Kelley · 11 years ago
  70. 5d3b87a Better handling of truncated DNSSEC replies. by Simon Kelley · 11 years ago
  71. 72ae2f3 Don't validate error returns. by Simon Kelley · 11 years ago
  72. 6c0cb85 Trivial format fix by Simon Kelley · 11 years ago
  73. e0c0ad3 UDP retries for DNSSEC by Simon Kelley · 11 years ago
  74. 4619d94 Fix SEGV and failure to validate on x86_64. by Simon Kelley · 11 years ago
  75. 0975a58 Merge branch 'master' of ssh://central/var/cache/git/dnsmasq by Simon Kelley · 11 years ago
  76. a25720a protocol handling for DNSSEC by Simon Kelley · 11 years ago
  77. 86bec2d Swap crypto library from openSSL to nettle. by Simon Kelley · 11 years ago
  78. a59ff5f Merge branch 'master' of ssh://central/var/cache/git/dnsmasq by Simon Kelley · 11 years ago
  79. c3a0408 [fd00::} and [fe80::] special addresses in DHCPv6 options. by Simon Kelley · 11 years ago
  80. ae76242 Fix missing RA RDNS option with --dhcp-option=option6:23,[::] by Simon Kelley · 11 years ago
  81. 4f04476 Set AD bit for address replies from /etc/hosts &c by Simon Kelley · 11 years ago
  82. 1486a9c Furthet tweak to RRset sort. by Simon Kelley · 11 years ago
  83. 5ada888 RFC 4035 5.3.2 wildcard label rules. by Simon Kelley · 11 years ago
  84. 5f8e58f DNSSEC consolidation. by Simon Kelley · 11 years ago
  85. b8071a8 Tweak blockdata accounting. by Simon Kelley · 11 years ago
  86. b6e9e7c Handle digest lengths greater than 1 block. by Simon Kelley · 11 years ago
  87. 0435d04 AD into cache fixes. by Simon Kelley · 11 years ago
  88. 795501b AD bit handling when doing validation. by Simon Kelley · 11 years ago
  89. c220768 Memory stats for DNSSEC. by Simon Kelley · 11 years ago
  90. 98c098b Move blockdata to it's own file. by Simon Kelley · 11 years ago
  91. c47e3ba Update copyright for 2014. by Simon Kelley · 11 years ago
  92. f1668d2 New source port for DNSSEC-originated queries. by Simon Kelley · 11 years ago
  93. 7d7b7b3 DNSSEC for TCP queries. by Simon Kelley · 11 years ago
  94. 3ddacb8 Ensure cache is big enough to do DNSSEC. by Simon Kelley · 11 years ago
  95. 60b6806 Rationalise DNS packet-buffer size calculations. by Simon Kelley · 11 years ago
  96. 871417d Handle truncated replies in DNSSEC validation. by Simon Kelley · 11 years ago
  97. 65d1e3b Tweak libraries and make DNSSEC compile optional. by Simon Kelley · 11 years ago
  98. 0fc2f31 First functional DNSSEC - highly alpha. by Simon Kelley · 11 years ago
  99. c3e0b9b backup by Simon Kelley · 11 years ago
  100. 6ea1f23 Send correct O and M bits when advertising only deprecated prefixes. by Simon Kelley · 11 years ago