summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Expand)Author
2015-12-29resolved: include GOST in list of DNSSEC algorithmsLennart Poettering
2015-12-29resolved: use CLAMP() intsead of MIN(MAX())Lennart Poettering
2015-12-29resolved: don't allow RRs with TTL=0 and TTL!=0 in the same RRsetLennart Poettering
2015-12-29resolved: parse EDNS0 rcode extension bitsLennart Poettering
2015-12-29resolved: reset RR TTL to 0, if MSB is setLennart Poettering
2015-12-29resolved: properly handle SRV RRs with the DNS root as hostnameLennart Poettering
2015-12-29resolved: add errno mapping for BUS_ERROR_CONNECTION_FAILURELennart Poettering
2015-12-29resolved: change mapping of BUS_ERROR_NO_NAME_SERVERS to ESRCHLennart Poettering
2015-12-29Merge pull request #2233 from kinvolk/alban/cgroup2-usernsLennart Poettering
2015-12-28Merge pull request #2231 from phomes/resolve-misc2Tom Gundersen
2015-12-28resolved: update DNSSEC TODOLennart Poettering
2015-12-28resolved: also use RRSIG expiry for negative cachingLennart Poettering
2015-12-28resolved: use RRSIG expiry and original TTL for cache managementLennart Poettering
2015-12-28resolved: clean up dns_transaction_stop()Lennart Poettering
2015-12-28resolved: only keep a single list of supported signature algorithmsLennart Poettering
2015-12-28resolve-host: log RR parsing errorsLennart Poettering
2015-12-28resolved: add ECDSA signature supportLennart Poettering
2015-12-28shared: relax restrictions on valid domain name characters a bitLennart Poettering
2015-12-28nspawn: userns and unified cgroup: chown cgroup.eventsAlban Crequy
2015-12-28resolved: split out RSA-specific code from dnssec_verify_rrset()Lennart Poettering
2015-12-28resolved: simplify MD algorithm initialization a bitLennart Poettering
2015-12-28resolved: add SHA384 digest supportLennart Poettering
2015-12-28resolve-host: add error checkingThomas Hindoe Paaboel Andersen
2015-12-28resolve: remove unused variablesThomas Hindoe Paaboel Andersen
2015-12-27Merge pull request #2225 from poettering/dnssec7Tom Gundersen
2015-12-27resolved: rename "features" variables to "feature_level"Lennart Poettering
2015-12-27resolved: rework OPT RR generation logicLennart Poettering
2015-12-27resolved: reuse dns_transaction_stop() when destructing transaction objectsLennart Poettering
2015-12-27resolved: add dns_transaction_close_connection()Lennart Poettering
2015-12-27resolved: make sure we reset the DNSSEC result when we accept a response packetLennart Poettering
2015-12-27resolved: improve some log messages a bitLennart Poettering
2015-12-27resolved: never proceed processing truncated packetsLennart Poettering
2015-12-27resolved: remember explicitly whether we already tried a stream connectionLennart Poettering
2015-12-27resolved: make sure we GC stream transactions properlyLennart Poettering
2015-12-27resolved: ignore additional DNS responses we get while validatingLennart Poettering
2015-12-27resolved: introduce dns_transaction_reset_answer()Lennart Poettering
2015-12-27shared: fix handling of suffix "." in dns_name_compare_func()Lennart Poettering
2015-12-26shared: fix error propagation in dns_name_compare_func()Lennart Poettering
2015-12-26resolved: don't unnecessarily allocate memory in dns_packet_append_name()Lennart Poettering
2015-12-26resolved: name TCP and UDP socket calls uniformlyLennart Poettering
2015-12-26resolved: add an automatic downgrade to non-DNSSEC modeLennart Poettering
2015-12-26resolved: no need to store return value of dns_server_possible_features()Lennart Poettering
2015-12-26resolved: don't set TCP_NODELAY twice for TCP socketsLennart Poettering
2015-12-26resolved: generate an explicit transaction error when we cannot reach server ...Lennart Poettering
2015-12-26resolved: deal with unsigned DS/NSEC/NSEC3 properlyLennart Poettering
2015-12-26resolved: log each dnssec failure, in a recognizable wayLennart Poettering
2015-12-26resolved: gather statistics about resolved namesLennart Poettering
2015-12-26resolved: if we accepted unauthenticated NSEC/NSEC3 RRs, use them for proofsLennart Poettering
2015-12-26resolved: don't insist on finding DNSKEYs for RRsets of zones with DNSSEC offLennart Poettering
2015-12-26resolved: be stricter when searching for a DS RR for a DNSKEY RRLennart Poettering