summaryrefslogtreecommitdiff
path: root/src/resolve
AgeCommit message (Expand)Author
2016-01-18resolved: fix how we detect whether auxiliary DNSSEC transactions are readyLennart Poettering
2016-01-18resolved: end log messages in a full stopLennart Poettering
2016-01-18resolved: never consider following a CNAME/DNAME chain for a CNAME/DNAME lookupLennart Poettering
2016-01-18resolved: when following a CNAME, turn off search domainsLennart Poettering
2016-01-18resolved: properly reset old collected data when following a CNAME redirectLennart Poettering
2016-01-18resolved: beef up complex dnssec test to also use ResolveAddress() and do IDN...Lennart Poettering
2016-01-18resolved: rework IDNA logicLennart Poettering
2016-01-18resolved: minor optimization for dns_question_is_equal()Lennart Poettering
2016-01-18resolved: be slightly stricter when validating DnsQuestionLennart Poettering
2016-01-18resolved: make key argument of dns_question_contains() constLennart Poettering
2016-01-18resolve: fix return value from dns_packet_append_rr()Zbigniew Jędrzejewski-Szmek
2016-01-17resolved: fix logging about DNAME redirectionLennart Poettering
2016-01-17resolved: when we find a DNAME RR, don't insist in a signed CNAME RRLennart Poettering
2016-01-17resolved: update DNSSEC TODOLennart Poettering
2016-01-17resolved: try to reduce number or DnsResourceKeys we keep around by merging themLennart Poettering
2016-01-17resolved: when switching between DNSSEC modes, possibly flush cachesLennart Poettering
2016-01-17resolved: when the server feature level changes between query and response re...Lennart Poettering
2016-01-17resolved: check OPT RR before accepting a reply for verification of server fe...Lennart Poettering
2016-01-17resolved: when restarting a DNS transaction, remove all auxiliary DNSSEC tran...Lennart Poettering
2016-01-17resolved: when we receive an reply which is OPT-less or RRSIG-less, downgrade...Lennart Poettering
2016-01-17resolved: downgrade server feature level more aggressively when we have reaso...Lennart Poettering
2016-01-17resolved: ignore invalid OPT RRs in incoming packetsLennart Poettering
2016-01-17resolved: update RFCs list and TODO listLennart Poettering
2016-01-17resolved: add complex test caseLennart Poettering
2016-01-17resolved: complete NSEC non-existance proofsLennart Poettering
2016-01-17resolved: make sure the NSEC proof-of-non-existance check also looks for wild...Lennart Poettering
2016-01-17resolved: on negative NODATA replies, properly deal with empty non-terminalsLennart Poettering
2016-01-17resolved: rename dnssec_verify_dnskey() → dnssec_verify_dnskey_by_ds()Lennart Poettering
2016-01-17resolved: be stricter when using NSEC3Lennart Poettering
2016-01-17resolved: when validating an RRset, store information about the synthesizing ...Lennart Poettering
2016-01-17resolved: do not use NSEC RRs from the wrong zone for proofsLennart Poettering
2016-01-17resolved: ignore DS RRs without generating an error if they use an unsupporte...Lennart Poettering
2016-01-17resolved: some RR types may appear only or not at all in a zone apexLennart Poettering
2016-01-13resolved: implement the full NSEC and NSEC3 postive wildcard proofsLennart Poettering
2016-01-13resolved: refuse validating wildcard RRs for SOA, NSEC3, DNAMELennart Poettering
2016-01-13resolved: properly handles RRs in domains beginning in an asterisk labelLennart Poettering
2016-01-13resolved: optimize dnssec_verify_rrset() a bitLennart Poettering
2016-01-13resolved: allocate bounded strings on stack instead of heap, if we canLennart Poettering
2016-01-13resolved: consider inverted RRSIG validity intervals expiredLennart Poettering
2016-01-11resolved: improve query RR type error wording a bitLennart Poettering
2016-01-11resolved: don#t allow explicit queries for RRSIG RRsLennart Poettering
2016-01-11resolved: refuse doing queries for known-obsolete RR typesLennart Poettering
2016-01-11resolved: rename DnsTransaction's current_features field to current_feature_l...Lennart Poettering
2016-01-11resolved: split out resetting of DNS server counters into a function call of ...Lennart Poettering
2016-01-11resolved: accept rightfully unsigned NSEC responsesLennart Poettering
2016-01-11resolved: rework how and when we detect whether our chosen DNS server knows D...Lennart Poettering
2016-01-11resolved: cache formatted server string in DnsServer structureLennart Poettering
2016-01-11resolved: rework server feature level logicLennart Poettering
2016-01-11resolved: add missing case to switch statementLennart Poettering
2016-01-11resolved: log why we use TCP when UDP isn't supported by a serverLennart Poettering