summaryrefslogtreecommitdiffstats
path: root/src/resolve/resolved-dns-dnssec.c (follow)
Commit message (Expand)AuthorAgeFilesLines
...
* resolved: fix memleak of gcrypt context on errorZbigniew Jędrzejewski-Szmek2018-02-051-28/+13
* resolve: add support for RFC 8080 (#7600)ott2017-12-121-38/+187
* Add SPDX license identifiers to source files under the LGPLZbigniew Jędrzejewski-Szmek2017-11-191-0/+1
* Merge pull request #6974 from keszybz/clean-up-definesLennart Poettering2017-10-041-2/+2
|\
| * build-sys: use #if Y instead of #ifdef Y everywhereZbigniew Jędrzejewski-Szmek2017-10-041-2/+2
* | tree-wide: use IN_SET macro (#6977)Yu Watanabe2017-10-041-2/+2
|/
* resolved: fix NSEC proofs for missing TLDsLennart Poettering2017-02-171-2/+6
* tree-wide: drop NULL sentinel from strjoinZbigniew Jędrzejewski-Szmek2016-10-231-1/+1
* treewide: fix typos and remove accidental repetition of wordsTorstein Husebø2016-07-111-1/+1
* tree-wide: remove useless NULLs from strjoinaZbigniew Jędrzejewski-Szmek2016-04-131-1/+1
* Replace DNS_RESOURCE_KEY_NAME with a version which always returns "." for rootZbigniew Jędrzejewski-Szmek2016-02-171-26/+26
* Merge pull request #2589 from keszybz/resolve-tool-2Lennart Poettering2016-02-131-16/+4
|\
| * Move initialize_libgcrypt to separate fileZbigniew Jędrzejewski-Szmek2016-02-111-16/+4
* | Typo fixesMichael Biebl2016-02-121-3/+3
* | tree-wide: remove Emacs lines from all filesDaniel Mack2016-02-101-2/+0
* | treewide: fix typos and spacingTorstein Husebø2016-02-071-1/+1
|/
* resolved: allow building without libgcryptMichael Olbrich2016-01-311-0/+75
* resolved: make dnssec_nsec_test_enclosed() staticMichael Olbrich2016-01-311-1/+1
* resolved: reorder functionsMichael Olbrich2016-01-311-62/+62
* update TODOLennart Poettering2016-01-261-12/+0
* resolved: don't insist in RRSIG metadata for NSEC3 RRs that have not been aut...Lennart Poettering2016-01-251-3/+4
* update DNSSEC TODOLennart Poettering2016-01-251-3/+0
* resolved: log each time we increase the DNSSEC verdict countersLennart Poettering2016-01-251-0/+8
* resolve: use different bitmap checking rules when we find an exact NSEC3 matc...Lennart Poettering2016-01-251-12/+25
* update DNSSEC TODOLennart Poettering2016-01-181-3/+0
* resolved: rework IDNA logicLennart Poettering2016-01-181-10/+0
* resolved: update DNSSEC TODOLennart Poettering2016-01-171-2/+3
* resolved: update RFCs list and TODO listLennart Poettering2016-01-171-8/+5
* resolved: complete NSEC non-existance proofsLennart Poettering2016-01-171-68/+161
* resolved: make sure the NSEC proof-of-non-existance check also looks for wild...Lennart Poettering2016-01-171-11/+64
* resolved: on negative NODATA replies, properly deal with empty non-terminalsLennart Poettering2016-01-171-5/+58
* resolved: rename dnssec_verify_dnskey() → dnssec_verify_dnskey_by_ds()Lennart Poettering2016-01-171-3/+3
* resolved: be stricter when using NSEC3Lennart Poettering2016-01-171-1/+8
* resolved: when validating an RRset, store information about the synthesizing ...Lennart Poettering2016-01-171-49/+109
* resolved: do not use NSEC RRs from the wrong zone for proofsLennart Poettering2016-01-171-0/+13
* resolved: ignore DS RRs without generating an error if they use an unsupporte...Lennart Poettering2016-01-171-2/+2
* resolved: some RR types may appear only or not at all in a zone apexLennart Poettering2016-01-171-6/+30
* resolved: implement the full NSEC and NSEC3 postive wildcard proofsLennart Poettering2016-01-131-1/+143
* resolved: refuse validating wildcard RRs for SOA, NSEC3, DNAMELennart Poettering2016-01-131-0/+5
* resolved: properly handles RRs in domains beginning in an asterisk labelLennart Poettering2016-01-131-1/+12
* resolved: optimize dnssec_verify_rrset() a bitLennart Poettering2016-01-131-12/+16
* resolved: allocate bounded strings on stack instead of heap, if we canLennart Poettering2016-01-131-6/+3
* resolved: consider inverted RRSIG validity intervals expiredLennart Poettering2016-01-131-1/+2
* resolved: properly look for NSEC/NSEC3 RRs when getting a positive wildcard r...Lennart Poettering2016-01-111-5/+103
* resolved: split up nsec3_hashed_domain() into two callsLennart Poettering2016-01-111-25/+30
* resolved: drop flags unused parameter from nsec3_is_goodLennart Poettering2016-01-111-4/+4
* basic: introduce generic ascii_strlower_n() call and make use of it everywhereLennart Poettering2016-01-111-7/+1
* resolved: use dns_answer_size() where appropriate to handle NULL DnsAnswerLennart Poettering2016-01-111-1/+1
* resolved: rename suffix_rr → zone_rrLennart Poettering2016-01-111-7/+7
* resolved: fix NSEC3 iterations limit to what RFC5155 suggestsLennart Poettering2016-01-111-3/+5