summaryrefslogtreecommitdiff
path: root/src/resolve/resolved-dns-transaction.c
AgeCommit message (Expand)Author
2016-01-06resolved: introduce support for per-interface negative trust anchorsLennart Poettering
2016-01-06resolved: count unsupported dnssec algorithm as indeterminate RRsetLennart Poettering
2016-01-05resolved: try to detect fritz.box-style private DNS zones, and downgrade to n...Lennart Poettering
2016-01-05resolved: fix DNSSEC transaction dependency recursion checkLennart Poettering
2016-01-05resolved: rename "downgrade-ok" mode to "allow-downgrade"Lennart Poettering
2016-01-05resolved: when caching negative responses, honour NSEC/NSEC3 TTLsLennart Poettering
2016-01-04resolved: explicitly handle case when the trust anchor is emptyLennart Poettering
2016-01-04resolved: explicitly avoid cyclic transaction dependenciesLennart Poettering
2016-01-04resolved: block transaction GC'ing while dns_transaction_request_dnssec_keys(...Lennart Poettering
2016-01-04resolved: partially implement RFC5011 Trust Anchor supportLennart Poettering
2016-01-04resolved: actually make use of message ID when logging about failed DNSSEC va...Lennart Poettering
2016-01-03Merge pull request #2255 from teg/resolved-fixes-2Lennart Poettering
2016-01-03resolved: add negative trust anchro support, and add trust anchor configurati...Lennart Poettering
2016-01-03resolved: don't conclude NODATA if CNAME existsTom Gundersen
2016-01-02resolved: explain why we don't check IP addresses/ports of incoming DNS UDP t...Lennart Poettering
2015-12-28resolved: clean up dns_transaction_stop()Lennart Poettering
2015-12-27resolved: rename "features" variables to "feature_level"Lennart Poettering
2015-12-27resolved: rework OPT RR generation logicLennart Poettering
2015-12-27resolved: reuse dns_transaction_stop() when destructing transaction objectsLennart Poettering
2015-12-27resolved: add dns_transaction_close_connection()Lennart Poettering
2015-12-27resolved: make sure we reset the DNSSEC result when we accept a response packetLennart Poettering
2015-12-27resolved: improve some log messages a bitLennart Poettering
2015-12-27resolved: never proceed processing truncated packetsLennart Poettering
2015-12-27resolved: remember explicitly whether we already tried a stream connectionLennart Poettering
2015-12-27resolved: make sure we GC stream transactions properlyLennart Poettering
2015-12-27resolved: ignore additional DNS responses we get while validatingLennart Poettering
2015-12-27resolved: introduce dns_transaction_reset_answer()Lennart Poettering
2015-12-26resolved: name TCP and UDP socket calls uniformlyLennart Poettering
2015-12-26resolved: add an automatic downgrade to non-DNSSEC modeLennart Poettering
2015-12-26resolved: generate an explicit transaction error when we cannot reach server ...Lennart Poettering
2015-12-26resolved: deal with unsigned DS/NSEC/NSEC3 properlyLennart Poettering
2015-12-26resolved: log each dnssec failure, in a recognizable wayLennart Poettering
2015-12-26resolved: gather statistics about resolved namesLennart Poettering
2015-12-26resolved: if we accepted unauthenticated NSEC/NSEC3 RRs, use them for proofsLennart Poettering
2015-12-26resolved: don't insist on finding DNSKEYs for RRsets of zones with DNSSEC offLennart Poettering
2015-12-26resolved: tighten search for NSEC3 RRs a bitLennart Poettering
2015-12-26resolved: internalize string buffer of dns_resource_record_to_string()Lennart Poettering
2015-12-20resolve: fix indentationThomas Hindoe Paaboel Andersen
2015-12-18resolved: propagate DNSSEC validation status from auxiliary transactionsLennart Poettering
2015-12-18resolved: propagate the DNSSEC result from the transaction to the query and t...Lennart Poettering
2015-12-18resolved: rename DNS_TRANSACTION_FAILURE → DNS_TRANSACTION_RCODE_FAILURELennart Poettering
2015-12-18resolved: add support NSEC3 proofs, as well as proofs for domains that are OK...Lennart Poettering
2015-12-18resolved: refuse to add auxiliary transactions loopsLennart Poettering
2015-12-18resolved: stop timeout timer when validating transactionsLennart Poettering
2015-12-18resolved: make sure we don't get confused when notifying transactions while t...Lennart Poettering
2015-12-18resolved: cache stringified transaction key once per transactionLennart Poettering
2015-12-14resolved: add basic proof of non-existance support for NSEC+NSEC3Lennart Poettering
2015-12-14resolved: always consider NSEC/NSEC3 RRs as "primary"Lennart Poettering
2015-12-14treewide: fix typos and indentationTorstein Husebø
2015-12-11resolved: refactor DNSSEC answer validationLennart Poettering