Age | Commit message (Expand) | Author |
2016-01-11 | basic: introduce generic ascii_strlower_n() call and make use of it everywhere | Lennart Poettering |
2016-01-11 | resolved: rework trust anchor revoke checking | Lennart Poettering |
2016-01-11 | resolved: look for revoked trust anchors before validating a message | Lennart Poettering |
2016-01-11 | resolved: use dns_answer_size() where appropriate to handle NULL DnsAnswer | Lennart Poettering |
2016-01-11 | resolved: remove one level of indentation in dns_transaction_validate_dnssec() | Lennart Poettering |
2016-01-11 | resolved: be less strict where the OPT pseudo-RR is placed | Lennart Poettering |
2016-01-11 | resolved: rename suffix_rr → zone_rr | Lennart Poettering |
2016-01-11 | resolved: fix NSEC3 iterations limit to what RFC5155 suggests | Lennart Poettering |
2016-01-07 | Merge pull request #2284 from teg/resolved-cname-2 | Lennart Poettering |
2016-01-07 | resolved: query_process_cname - make fully recursive | Tom Gundersen |
2016-01-06 | update DNSSEC TODO | Lennart Poettering |
2016-01-06 | resolved: introduce support for per-interface negative trust anchors | Lennart Poettering |
2016-01-06 | resolved: when dumping the NTA database, sort output | Lennart Poettering |
2016-01-06 | resolved: populate negative trust anchor by default | Lennart Poettering |
2016-01-06 | resolved: log all OOM errors | Lennart Poettering |
2016-01-06 | resolved: reuse dns_trust_anchor_knows_domain() at another location | Lennart Poettering |
2016-01-06 | resolved: count unsupported dnssec algorithm as indeterminate RRset | Lennart Poettering |
2016-01-05 | resolved: try to detect fritz.box-style private DNS zones, and downgrade to n... | Lennart Poettering |
2016-01-05 | resolved: when dumping trust anchor contents, clarify when it is empty | Lennart Poettering |
2016-01-05 | resolved: fix DNSSEC transaction dependency recursion check | Lennart Poettering |
2016-01-05 | update DNSSEC TODO | Lennart Poettering |
2016-01-05 | resolved,networkd: add a per-interface DNSSEC setting | Lennart Poettering |
2016-01-05 | resolved: log about per-interface setting parse errors | Lennart Poettering |
2016-01-05 | resolved: properly release all DnsServers that belong to a link | Lennart Poettering |
2016-01-05 | resolved: rename "downgrade-ok" mode to "allow-downgrade" | Lennart Poettering |
2016-01-05 | resolved: make MulticastDNS support configurable in resolved.conf | Lennart Poettering |
2016-01-05 | networkd,resolved: add a per-interface mdns configuration option | Lennart Poettering |
2016-01-05 | resolved,networkd: unify ResolveSupport enum | Lennart Poettering |
2016-01-05 | basic: add string table macros for "extended boolean" enums | Lennart Poettering |
2016-01-05 | resolved: also skip built-in trust anchor addition of there's a DNSKEY RR for... | Lennart Poettering |
2016-01-05 | resolved: move trust anchor files to /etc/dnssec-trust-anchors.d/ | Lennart Poettering |
2016-01-05 | resolved: when caching negative responses, honour NSEC/NSEC3 TTLs | Lennart Poettering |
2016-01-04 | update DNSSEC TODO | Lennart Poettering |
2016-01-04 | resolved: explicitly handle case when the trust anchor is empty | Lennart Poettering |
2016-01-04 | resolved: introduce a proper bus error for DNSSEC validation errors | Lennart Poettering |
2016-01-04 | resolved: explicitly avoid cyclic transaction dependencies | Lennart Poettering |
2016-01-04 | resolved: block transaction GC'ing while dns_transaction_request_dnssec_keys(... | Lennart Poettering |
2016-01-04 | update RFCs | Lennart Poettering |
2016-01-04 | resolved: partially implement RFC5011 Trust Anchor support | Lennart Poettering |
2016-01-04 | resolved: fix DNSSEC canonical ordering logic | Lennart Poettering |
2016-01-04 | resolved: actually make use of message ID when logging about failed DNSSEC va... | Lennart Poettering |
2016-01-03 | resolved: refuse revoked DNSKEYs in trust anchor | Lennart Poettering |
2016-01-03 | resolved: never authenticate RRsets with revoked keys | Lennart Poettering |
2016-01-03 | resolved: print a log message when we ignore an NSEC3 RR with an excessive am... | Lennart Poettering |
2016-01-03 | Merge pull request #2255 from teg/resolved-fixes-2 | Lennart Poettering |
2016-01-03 | resolve: add RFC4501 URI support to systemd-resolve-host | Lennart Poettering |
2016-01-03 | resolved: add negative trust anchro support, and add trust anchor configurati... | Lennart Poettering |
2016-01-03 | resolved: dnssec - properly take wildcards into account in NESC3 proof | Tom Gundersen |
2016-01-03 | resolved: dnssec - factor out hashed domain generation | Tom Gundersen |
2016-01-03 | resolved: don't conclude NODATA if CNAME exists | Tom Gundersen |