Gitiles
Code Review Sign In
gerrit.nordix.org / thekelleys / dnsmasq / dfb1f7ccf19d07155adebc0fbd8308719fe91e69 / src / forward.c
  1. 8f9bd61 Correct missing SERV_DO_DNSSEC flag, add new spot by Petr Menšík · 3 years, 9 months ago
  2. ea28d0e Scale the DNS random scket pool on the value of dns-forward-max. by Simon Kelley · 3 years, 9 months ago
  3. ffa4628 Fix thinko in 51f7bc924cbcdeb09cbb83249b70c121d1ffa31e by 黎醒聪 · 3 years, 9 months ago
  4. e10a923 Move repeated test pattern to server_test_type by Petr Menšík · 3 years, 9 months ago
  5. 51f7bc9 Create common function for forward dump, log and send by Petr Menšík · 3 years, 9 months ago
  6. 6c0bf79 Reduce few repetitions in forward code by Petr Menšík · 3 years, 9 months ago
  7. 023ace8 Merge branch 'random-port' by Simon Kelley · 3 years, 9 months ago
  8. 74d4fcd Use random source ports where possible if source addresses/interfaces in use. by Simon Kelley · 3 years, 9 months ago
  9. 9eaa91b Teach --bogus-nxdomain and --ignore-address to take a subnet argument. by Simon Kelley · 3 years, 9 months ago
  10. 305cb79 Simplify preceding fix. by Simon Kelley · 3 years, 10 months ago
  11. 141a26f Fix problem with DNS retries in 2.83/2.84. by Simon Kelley · 3 years, 10 months ago
  12. c8e8f5c Bump copyright notices for 2021. Happy New Year! by Simon Kelley · 3 years, 11 months ago
  13. 3f535da Fix for 12af2b171de0d678d98583e2190789e544440e02 by Simon Kelley · 3 years, 11 months ago
  14. 12af2b1 Fix to 75e2f0aec33e58ef5b8d4d107d821c215a52827c by Simon Kelley · 3 years, 11 months ago
  15. 04490bf Move fd into frec_src, fixes 15b60ddf935a531269bb8c68198de012a4967156 by Simon Kelley · 3 years, 11 months ago
  16. cc0b448 Update to new struct frec fields in conntrack code. by Simon Kelley · 4 years ago
  17. 6a6e06f Small cleanups in frec_src datastucture handling. by Simon Kelley · 4 years ago
  18. 25e63f1 Handle caching with EDNS options better. by Simon Kelley · 4 years, 1 month ago
  19. 15b60dd Handle multiple identical near simultaneous DNS queries better. by Simon Kelley · 4 years, 1 month ago
  20. 8244611 Add missing check for NULL return from allocate_rfd(). by Simon Kelley · 4 years, 1 month ago
  21. 2d76586 Use SHA-256 to provide security against DNS cache poisoning. by Simon Kelley · 4 years, 1 month ago
  22. 257ac0c Check destination of DNS UDP query replies. by Simon Kelley · 4 years, 1 month ago
  23. 1c1b925 Remove duplicate address family from listener by Petr Menšík · 5 years ago
  24. 51cdd1a Explicitly mark address port not used by Petr Mensik · 5 years ago
  25. 8caf3d7 Fix rare problem allocating frec for DNSSEC. by Simon Kelley · 4 years, 8 months ago
  26. ea3c60a Diverge error handling between *BSD and Linux. by Brad Smith · 4 years, 9 months ago
  27. a914d0a Check for SERV_NO_REBIND on unqualified domains by Sung Pae · 5 years ago
  28. 2a8710a Update copyrights to 2020. by Simon Kelley · 5 years ago
  29. 203ce0a Update to 04db1483d1a86823240d986e10cfdbf75e1b9954 by Simon Kelley · 5 years ago
  30. e3002bf Add missing dump_packet() for DNSSEC query retries. by Simon Kelley · 5 years ago
  31. 04db148 Fix crash on REFUSED answers to DNSSEC queries. by Simon Kelley · 5 years ago
  32. fef2f1c DNSSEC: Unsigned RRs in auth section proving that a DS doesn't exist are OK. by Simon Kelley · 5 years ago
  33. c6cc455 Fix cmsg(3) API usage on OpenBSD by Jérémie Courrèges-Anglas · 6 years ago
  34. 608aa9f Support TCP fastopen on incoming and outgoing connections. by Simon Kelley · 6 years ago
  35. cc921df Remove nested struct/union in cache records and all_addr. by Simon Kelley · 6 years ago
  36. bde4647 Tidy all_addr union, merge log and rcode fields. by Simon Kelley · 6 years ago
  37. 122392e Revert 68f6312d4bae30b78daafcd6f51dc441b8685b1e by Simon Kelley · 6 years ago
  38. ee87504 Remove ability to compile without IPv6 support. by Simon Kelley · 6 years ago
  39. e1791f3 Fix logging of DNSSEC queries in TCP mode. Destination server address was misleading. by Simon Kelley · 6 years ago
  40. c346f61 Handle ANY queries in context of da8b6517decdac593e7ce24bde2824dd841725c8 by Simon Kelley · 6 years ago
  41. da8b651 Implement --address=/example.com/# by Simon Kelley · 6 years ago
  42. 1682d15 Add missing EDNS0 section. by Simon Kelley · 6 years ago
  43. aba8bbb Add collection of metrics by Julian Kornberger · 6 years ago
  44. e27825b Fix logging in previous. by Simon Kelley · 7 years ago
  45. 1f60a18 Retry SERVFAIL DNSSEC queries to a different server, if possible. by Simon Kelley · 7 years ago
  46. a0088e8 Handle query retry on REFUSED or SERVFAIL for DNSSEC-generated queries. by Simon Kelley · 7 years ago
  47. 34e26e1 Retry query to other servers on receipt of SERVFAIL rcode. by Simon Kelley · 7 years ago
  48. 6b17335 Add packet-dump debugging facility. by Simon Kelley · 7 years ago
  49. 07ed585 Add logging for DNS error returns from upstream and local configuration. by Simon Kelley · 7 years ago
  50. a691853 Change default for dnssec-check-unsigned. by Simon Kelley · 7 years ago
  51. c1a4e25 Try to be a little more clever at falling back to smaller DNS packet sizes. by Simon Kelley · 7 years ago
  52. faaf306 Spelling fixes. by Ville Skyttä · 7 years ago
  53. d1ced3a Update copyrights to 2018. by Simon Kelley · 7 years ago
  54. ef3d137 Fix infinite retries in strict-order mode. by Simon Kelley · 7 years ago
  55. 373e917 Fix a6004d7f17687ac2455f724d0b57098c413f128d to cope with >256 RRs in answer section. by Simon Kelley · 7 years ago
  56. ebedcba Typo in printf format string added in 22dee512f3738f87539a79aeb52b9e670b3bd104 by Simon Kelley · 7 years ago
  57. a6004d7 Fix caching logic for validated answers. by Simon Kelley · 7 years ago
  58. 22dee51 Log DNS server max packet size reduction. by Simon Kelley · 7 years ago
  59. 6fd5d79 Fix logic on EDNS0 headers. by Simon Kelley · 7 years ago
  60. 9d6918d Use IP[V6]_UNICAST_IF socket option instead of SO_BINDTODEVICE for DNS. by Simon Kelley · 7 years ago
  61. a3303e1 Don't return arcount=1 if EDNS0 RR won't fit in the packet. by Simon Kelley · 7 years ago
  62. 63437ff Fix CVE-2017-13704, which resulted in a crash on a large DNS query. by Simon Kelley · 7 years ago
  63. 9396752 Try other servers if first returns REFUSED when --strict-order active. by Hans Dedecker · 7 years ago
  64. 50ca855 Bump year in copyrights. by Simon Kelley · 7 years ago
  65. ff19b1a Fix &/&& confusion. by Simon Kelley · 8 years ago
  66. bf05f8f Fix crash introduced by 09f3b2cd9c7b5b5e0e96ba41f666e69808862620. by Simon Kelley · 8 years ago
  67. 09f3b2c Fix case of DS queries to domains marked as not doing DNSSEC. by Simon Kelley · 8 years ago
  68. e33b487 When forwarding a query to a non-DNSSEC nameserver, don't verify the lack of DNSSEC. by James Bottomley · 8 years ago
  69. 43517fc Spelling fixes. by klemens · 8 years ago
  70. 361dfe5 Improve connection handling when talking to TCP upsteam servers. by Simon Kelley · 8 years ago
  71. 68f6312 Stop treating SERVFAIL as a successful response from upstream servers. by Baptiste Jonglez · 8 years ago
  72. 730c674 Comprehensive spelling/typo fixes. by Josh Soref · 8 years ago
  73. 4ace25c Treat REFUSED (not SERVFAIL) as an unsuccessful upstream response by Chris Novakovic · 9 years ago
  74. d05dd58 Fix wrong reply to simple name when --domain-needed set and no servers configured. by Simon Kelley · 9 years ago
  75. f7443d7 Fix problems in last commit when DNSSEC not enabled. by Simon Kelley · 9 years ago
  76. f344dbc Complete DNSSEC server-selection code and set conntrack on DNSSEC queries. by Simon Kelley · 9 years ago
  77. 1801a29 Fix botch in forward.c flags code. by Simon Kelley · 9 years ago
  78. 92be34a Complete work to allow DNSSEC validation with private DNS servers. by Simon Kelley · 9 years ago
  79. 367341f Disable DNSSEC for server=/domain/.. servers unless trust-anchor provided. by Simon Kelley · 9 years ago
  80. 5757371 Inhibit DNSSEC validation when forwarding to private servers for a domain. by Simon Kelley · 9 years ago
  81. c49778d Update copyright notices. Happy new year! by Simon Kelley · 9 years ago
  82. 33702ab First complete version of DNS-client-id EDNS0 and ARP tracking code. by Simon Kelley · 9 years ago
  83. d3a8b39 More EDNS0 packet-size tweaks. by Simon Kelley · 9 years ago
  84. 5aa5f0f Truncate DNS replies >512 bytes that the client isn't expecting. by Simon Kelley · 9 years ago
  85. 5bb88f0 Handle extending EDNS0 OPT RR. by Simon Kelley · 9 years ago
  86. fa14bec Major tidy up of EDNS0 handling and computation/use of udp packet size. by Simon Kelley · 9 years ago
  87. c2bcd1e Generalise RR-filtering code, for use with EDNS0. by Simon Kelley · 9 years ago
  88. 9a31b68 Major rationalisation of DNSSEC validation. by Simon Kelley · 9 years ago
  89. 3a3965a Don't answer non-auth queries for auth zones locally when --localise-queries set. by Simon Kelley · 9 years ago
  90. d389e01 DNSSEC fix: correct logic for signed records in unsigned DNS space. by Simon Kelley · 9 years ago
  91. b842bc9 Use poll() instead of select() to remove limits on open file descriptors. by Simon Kelley · 9 years ago
  92. e3ec6f0 Handle CNAMEs to DS records when confirming absence of DS for DNSSEC. by Simon Kelley · 10 years ago
  93. bd7bfa2 Correctly sanitise DNS header bits in answer when recreating query for retry. by swigger · 10 years ago
  94. 86fa104 Tweak EDNS timeout code. by Simon Kelley · 10 years ago
  95. a77cec8 Handle UDP packet loss when fragmentation of large packets is broken. by Simon Kelley · 10 years ago
  96. e66b4df Fix argument-order botch which broke DNSSEC for TCP queries. by Simon Kelley · 10 years ago
  97. 554b580 Log domain when reporting DNSSEC validation failure. by Simon Kelley · 10 years ago
  98. 982faf4 Fix compiler warning when not including DNSSEC. by Simon Kelley · 10 years ago
  99. fe3992f Return INSECURE, rather than BOGUS when DS proved not to exist. by Simon Kelley · 10 years ago
  100. 150162b Return SERVFAIL when validation abandoned. by Simon Kelley · 10 years ago