Age | Commit message (Expand) | Author |
2015-12-29 | resolved: add a list of DNS-related RFCs and their implementation status in r... | Lennart Poettering |
2015-12-29 | resolved: append RFC6975 algorithm data to EDNS OPT RR | Lennart Poettering |
2015-12-29 | resolved: NSEC3 hash algorithms are distinct from DS digest algorithms | Lennart Poettering |
2015-12-29 | update DNSSEC TODO | Lennart Poettering |
2015-12-29 | resolved: add comments referencing various RFCs to various places | Lennart Poettering |
2015-12-29 | resolved: include GOST in list of DNSSEC algorithms | Lennart Poettering |
2015-12-29 | resolved: use CLAMP() intsead of MIN(MAX()) | Lennart Poettering |
2015-12-29 | resolved: don't allow RRs with TTL=0 and TTL!=0 in the same RRset | Lennart Poettering |
2015-12-29 | resolved: parse EDNS0 rcode extension bits | Lennart Poettering |
2015-12-29 | resolved: reset RR TTL to 0, if MSB is set | Lennart Poettering |
2015-12-29 | resolved: properly handle SRV RRs with the DNS root as hostname | Lennart Poettering |
2015-12-28 | Merge pull request #2231 from phomes/resolve-misc2 | Tom Gundersen |
2015-12-28 | resolved: update DNSSEC TODO | Lennart Poettering |
2015-12-28 | resolved: also use RRSIG expiry for negative caching | Lennart Poettering |
2015-12-28 | resolved: use RRSIG expiry and original TTL for cache management | Lennart Poettering |
2015-12-28 | resolved: clean up dns_transaction_stop() | Lennart Poettering |
2015-12-28 | resolved: only keep a single list of supported signature algorithms | Lennart Poettering |
2015-12-28 | resolved: add ECDSA signature support | Lennart Poettering |
2015-12-28 | resolved: split out RSA-specific code from dnssec_verify_rrset() | Lennart Poettering |
2015-12-28 | resolved: simplify MD algorithm initialization a bit | Lennart Poettering |
2015-12-28 | resolved: add SHA384 digest support | Lennart Poettering |
2015-12-28 | resolve: remove unused variables | Thomas Hindoe Paaboel Andersen |
2015-12-27 | resolved: rename "features" variables to "feature_level" | Lennart Poettering |
2015-12-27 | resolved: rework OPT RR generation logic | Lennart Poettering |
2015-12-27 | resolved: reuse dns_transaction_stop() when destructing transaction objects | Lennart Poettering |
2015-12-27 | resolved: add dns_transaction_close_connection() | Lennart Poettering |
2015-12-27 | resolved: make sure we reset the DNSSEC result when we accept a response packet | Lennart Poettering |
2015-12-27 | resolved: improve some log messages a bit | Lennart Poettering |
2015-12-27 | resolved: never proceed processing truncated packets | Lennart Poettering |
2015-12-27 | resolved: remember explicitly whether we already tried a stream connection | Lennart Poettering |
2015-12-27 | resolved: make sure we GC stream transactions properly | Lennart Poettering |
2015-12-27 | resolved: ignore additional DNS responses we get while validating | Lennart Poettering |
2015-12-27 | resolved: introduce dns_transaction_reset_answer() | Lennart Poettering |
2015-12-26 | resolved: don't unnecessarily allocate memory in dns_packet_append_name() | Lennart Poettering |
2015-12-26 | resolved: name TCP and UDP socket calls uniformly | Lennart Poettering |
2015-12-26 | resolved: add an automatic downgrade to non-DNSSEC mode | Lennart Poettering |
2015-12-26 | resolved: no need to store return value of dns_server_possible_features() | Lennart Poettering |
2015-12-26 | resolved: don't set TCP_NODELAY twice for TCP sockets | Lennart Poettering |
2015-12-26 | resolved: generate an explicit transaction error when we cannot reach server ... | Lennart Poettering |
2015-12-26 | resolved: deal with unsigned DS/NSEC/NSEC3 properly | Lennart Poettering |
2015-12-26 | resolved: log each dnssec failure, in a recognizable way | Lennart Poettering |
2015-12-26 | resolved: gather statistics about resolved names | Lennart Poettering |
2015-12-26 | resolved: if we accepted unauthenticated NSEC/NSEC3 RRs, use them for proofs | Lennart Poettering |
2015-12-26 | resolved: don't insist on finding DNSKEYs for RRsets of zones with DNSSEC off | Lennart Poettering |
2015-12-26 | resolved: be stricter when searching for a DS RR for a DNSKEY RR | Lennart Poettering |
2015-12-26 | resolved: make use of dns_type_may_redirect() where possible | Lennart Poettering |
2015-12-26 | update DNSSEC TODO | Lennart Poettering |
2015-12-26 | resolved: tighten search for NSEC3 RRs a bit | Lennart Poettering |
2015-12-26 | resolved: when doing NSEC3 proof, first find right NSEC3 suffix | Lennart Poettering |
2015-12-26 | resolved: properly implement RRSIG validation of wildcarded RRsets | Lennart Poettering |