Gitiles
Code Review Sign In
gerrit.nordix.org / thekelleys / dnsmasq / f2e4c277c49761479c9fc8ae7a7024e8a59aced2 / src / dnssec.c
  1. f2e4c27 Bugfix for last commit. by Simon Kelley · 11 years ago
  2. 5107ace NSEC3 validation. First pass. by Simon Kelley · 11 years ago
  3. 7b1eae4 Add --servers-file option. by Simon Kelley · 11 years ago
  4. c152dc8 Omit ECC from DNSSEC if nettle library is old. by Simon Kelley · 11 years ago
  5. e3ec15a Log BOGUS validation result when upstream sends SERVFAIL. by Simon Kelley · 11 years ago
  6. ebe95a8 Add RFC-6605 ECDSA DNSSEC verification. by Simon Kelley · 11 years ago
  7. 1633e30 Fix Byte-order botch: broke DNSSEC on big-endian platforms. by Simon Kelley · 11 years ago
  8. c8ca33f Fix DNSSEC caching problems: incomplete RRSIG RRsets. by Simon Kelley · 11 years ago
  9. 610e782 Fix stack-smashing crash in DNSSEC. Thanks to Henk Jan Agteresch. by Simon Kelley · 11 years ago
  10. bb201c2 Protect against malicious DNS replies with very large RRsets. by Simon Kelley · 11 years ago
  11. b98d22c Linking stuff. Latest Debian/Ubuntu don't automatically link gmp. by Simon Kelley · 11 years ago
  12. 8d718cb Nasty cache failure and memory leak with DNSSEC. by Simon Kelley · 11 years ago
  13. f6a2b79 Validate Ooops. by Simon Kelley · 11 years ago
  14. 6f46810 Code tidy. by Simon Kelley · 11 years ago
  15. 7d23a66 Remove --dnssec-permissive, pointless if we don't set CD upstream. by Simon Kelley · 11 years ago
  16. 703c7ff Fix to last commit. by Simon Kelley · 11 years ago
  17. 8a9be9e Replace CRC32 with SHA1 for spoof detection in DNSSEC builds. by Simon Kelley · 11 years ago
  18. b5dbfd1 RRSIG answer logging. by Simon Kelley · 11 years ago
  19. 5b3bf92 --dnssec-debug by Simon Kelley · 11 years ago
  20. 0744ca6 More DNSSEC caching logic, and avoid repeated validation of DS/DNSKEY by Simon Kelley · 11 years ago
  21. 2d33bda RRSIGS for PTR records from cache. by Simon Kelley · 11 years ago
  22. 824202e More DNSSEC cache readout. by Simon Kelley · 11 years ago
  23. e7829ae Cache RRSIGS. by Simon Kelley · 11 years ago
  24. 51ea3ca Caching of DNSSEC records. by Simon Kelley · 11 years ago
  25. 6fd6dac Fix loop in RR sort. by Simon Kelley · 11 years ago
  26. 979cdf9 Fix to hostname_cmp, and update to canonicalisation table. RFC 4034 LIES. by Simon Kelley · 11 years ago
  27. dbf7212 Rationalise hostname_cmp() by Simon Kelley · 11 years ago
  28. c5f4ec7 NSEC proof-of-non-existence. by Simon Kelley · 11 years ago
  29. 72ae2f3 Don't validate error returns. by Simon Kelley · 11 years ago
  30. e0c0ad3 UDP retries for DNSSEC by Simon Kelley · 11 years ago
  31. 4619d94 Fix SEGV and failure to validate on x86_64. by Simon Kelley · 11 years ago
  32. 86bec2d Swap crypto library from openSSL to nettle. by Simon Kelley · 11 years ago
  33. 1486a9c Furthet tweak to RRset sort. by Simon Kelley · 11 years ago
  34. 5ada888 RFC 4035 5.3.2 wildcard label rules. by Simon Kelley · 11 years ago
  35. 5f8e58f DNSSEC consolidation. by Simon Kelley · 11 years ago
  36. b6e9e7c Handle digest lengths greater than 1 block. by Simon Kelley · 11 years ago
  37. 60b6806 Rationalise DNS packet-buffer size calculations. by Simon Kelley · 11 years ago
  38. 0fc2f31 First functional DNSSEC - highly alpha. by Simon Kelley · 11 years ago
  39. c3e0b9b backup by Simon Kelley · 11 years ago
  40. 3a23715 Commit to allow master merge. by Simon Kelley · 11 years ago
  41. 8d41ebd Add copyright banners by Giovanni Bajo · 13 years ago
  42. 4f9aefc Don't fight over namespace with re-implementation of strchrnul() by Simon Kelley · 13 years ago
  43. 4b52870 Again make errors greppable. by Giovanni Bajo · 13 years ago
  44. ccd1d32 Make testsuite errors greppable. by Giovanni Bajo · 13 years ago
  45. 75ffc9b Implement RSA-MD5. by Giovanni Bajo · 13 years ago
  46. 3af1ea8 Simplify abstraction of verification algorithms (it was too flexible) by Giovanni Bajo · 13 years ago
  47. ed1fc98 Untangle digestalg from verifyalg; better separation, less code duplication. by Giovanni Bajo · 13 years ago
  48. b58fb39 Since extract_name() does not convert to lowercase, do it temporarly within convert_domain_to_wire(). by Giovanni Bajo · 13 years ago
  49. 0304d28 Parse and match DS records. by Giovanni Bajo · 13 years ago
  50. 32b826e Genericize verifyalg_add_data_domain() (rename to convert_domain_to_wire()). by Giovanni Bajo · 13 years ago
  51. 0937692 Add rdata description for MX. by Giovanni Bajo · 13 years ago
  52. 785ee80 Describe SOA rdata section. by Giovanni Bajo · 13 years ago
  53. f119ed3 Simplify verifyalg_add_rdata() with new canonicalization functions. by Giovanni Bajo · 13 years ago
  54. da23c4f Simplify rrset_canonical_order() with new canonicalization functions. by Giovanni Bajo · 13 years ago
  55. 4885d57 Add rdata canonicalization functions. by Giovanni Bajo · 13 years ago
  56. 0db0e0c Fix a bug in rdlen update while decompressing a name by Giovanni Bajo · 13 years ago
  57. ec2962e Fix the macro names. by Giovanni Bajo · 13 years ago
  58. 0ca895f Fix rrset_canonical_order() to correct handle canonicalization of domain names in RDATA. by Giovanni Bajo · 13 years ago
  59. 6299ffb Start refactoring for correct handling of domain wire-format. by Giovanni Bajo · 13 years ago
  60. 7f0485c verifyalg_add_data_domain: fix for root domain (""). by Giovanni Bajo · 13 years ago
  61. d1ca25c Canonicalize NS records. by Giovanni Bajo · 13 years ago
  62. 23c2176 Process RRSIGs also in authority and additional sections. by Giovanni Bajo · 13 years ago
  63. 41de744 Reformat some code (no semantic difference). by Giovanni Bajo · 13 years ago
  64. 0852d76 Start implementing canonicalization of RDATA wire formats. by Giovanni Bajo · 13 years ago
  65. a55ce08 Silence a few warnings. by Giovanni Bajo · 13 years ago
  66. dd09056 Convert to C-style comments. by Giovanni Bajo · 13 years ago
  67. 50a96b6 Fix a validation bug when owner != signer. by Giovanni Bajo · 13 years ago
  68. 00b963a Improve logging message. by Giovanni Bajo · 13 years ago
  69. 79333a2 Fix a bug in extract_name_no_compression. by Giovanni Bajo · 13 years ago
  70. 13e435e Bugfix: domain names must go through hash function in DNS format (but uncompressed!) by Giovanni Bajo · 13 years ago
  71. 4b0eecb Bugfix: rdata flags must go through hash function in network byte order. by Giovanni Bajo · 13 years ago
  72. 262ac85 verify() function must take a keydata chained buffer for input key. by Giovanni Bajo · 13 years ago
  73. 4c70046 Move helper functions to common header file. by Giovanni Bajo · 13 years ago
  74. a733864 Add a FIXME for missing logic. by Giovanni Bajo · 13 years ago
  75. 20bccd4 Rework the loop a little (no functionality changes) by Giovanni Bajo · 13 years ago
  76. 708bcd2 Call valg verify functions (unimplemented for now) by Giovanni Bajo · 13 years ago
  77. d0edff7 Insert all DNSKEY/DS records into cache in one transaction. by Giovanni Bajo · 13 years ago
  78. ccca70c Change some logging messages. by Giovanni Bajo · 13 years ago
  79. 0d829eb Skip non-signing keys by Giovanni Bajo · 13 years ago
  80. 4137b84 Postpone RRSIG processing after all DNSKEY/DS have been parsed. by Giovanni Bajo · 13 years ago
  81. e6c2a67 Before using a key for validation, also verify that algorithm matches. by Giovanni Bajo · 13 years ago
  82. 47f99dd Fix argument in dnssec_parsekey() call. by Giovanni Bajo · 13 years ago
  83. 3471f18 Start parsing DNSKEY records and insert them into cache. by Giovanni Bajo · 13 years ago
  84. 2ef843d extract_name_no_compression: strip trailing dot. by Giovanni Bajo · 13 years ago
  85. ce2a0f5 Macros to simplify tentative parsing. by Giovanni Bajo · 13 years ago
  86. adca3e9 Refactor to use new VerifyAlg context, and start implementing logic for querying DNSKEYs. by Giovanni Bajo · 13 years ago
  87. 366dfcb Explicitize the context of verification algorithm. by Giovanni Bajo · 13 years ago
  88. 28c6255 Move general macros in dnsmasq.h by Giovanni Bajo · 13 years ago
  89. 0decc86 Fix rrset qsort comparison function. by Giovanni Bajo · 13 years ago
  90. b573aeb Add skeleton for RSASHA256. by Giovanni Bajo · 13 years ago
  91. d31d057 Remove useless endian-conversion after GETLONG(). by Giovanni Bajo · 13 years ago
  92. 6445c8e Fix off-by-one in iteration. by Giovanni Bajo · 13 years ago
  93. 382e38f Specify the correct place where to canonicalize RR within RRset. by Giovanni Bajo · 13 years ago
  94. d322de0 Further abstract API of verify crypto. by Giovanni Bajo · 13 years ago
  95. b98f771 Filter out invalid characters in domain names. by Giovanni Bajo · 13 years ago
  96. c7a93f6 Skip trailing \0 in domain name. by Giovanni Bajo · 13 years ago
  97. 970ce22 Augment verify algorithm table. by Giovanni Bajo · 13 years ago
  98. e292e93 Initial dnssec structure. by Giovanni Bajo · 13 years ago