Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Handle domain names with '.' or /000 within labels.v2.73rc5escape_names | Simon Kelley | 2015-04-21 | 5 | -13/+71 |
| | | | | | Only in DNSSEC mode, where we might need to validate or store such names. In none-DNSSEC mode, simply don't cache these, as before. | ||||
* | Revert 61b838dd574c51d96fef100285a0d225824534f9 and just quieten log instead. | Simon Kelley | 2015-04-20 | 1 | -14/+10 |
| | |||||
* | Check IP address command line arg in dhcp_release.c | Moshe Levi | 2015-04-19 | 1 | -0/+5 |
| | |||||
* | Log domain when reporting DNSSEC validation failure. | Simon Kelley | 2015-04-17 | 1 | -5/+10 |
| | |||||
* | Note CVE-2015-3294 | Simon Kelley | 2015-04-16 | 1 | -0/+3 |
| | |||||
* | Fix (srk induced) crash in new tftp_no_fail code. | Stefan Tomanek | 2015-04-16 | 1 | -2/+4 |
| | |||||
* | Auth: correct replies to NS and SOA in .arpa zones. | Simon Kelley | 2015-04-16 | 2 | -21/+38 |
| | |||||
* | Fix crash in auth code with odd configuration. | Simon Kelley | 2015-04-12 | 2 | -16/+29 |
| | |||||
* | Fix crash on receipt of certain malformed DNS requests.v2.73rc4 | Simon Kelley | 2015-04-09 | 2 | -3/+9 |
| | |||||
* | Fix crash caused by looking up servers.bind when many servers defined. | Simon Kelley | 2015-04-06 | 2 | -3/+8 |
| | |||||
* | Fix compiler warning when not including DNSSEC. | Simon Kelley | 2015-04-03 | 1 | -1/+2 |
| | |||||
* | Return INSECURE, rather than BOGUS when DS proved not to exist. | Simon Kelley | 2015-04-03 | 3 | -21/+69 |
| | | | | | | | | | | | Return INSECURE when validating DNS replies which have RRSIGs, but when a needed DS record in the trust chain is proved not to exist. It's allowed for a zone to set up DNSKEY and RRSIG records first, then add a DS later, completing the chain of trust. Also, since we don't have the infrastructure to track that these non-validated replies have RRSIGS, don't cache them, so we don't provide answers with missing RRSIGS from the cache. | ||||
* | Whitespace fixes. | Stefan Tomanek | 2015-04-01 | 2 | -8/+8 |
| | |||||
* | add --tftp-no-fail to ignore missing tftp root | Stefan Tomanek | 2015-03-31 | 6 | -11/+45 |
| | |||||
* | Merge message translations.v2.73rc3v2.73rc2 | Simon Kelley | 2015-03-30 | 10 | -3573/+4396 |
| | |||||
* | Fix crash in last commit. | Simon Kelley | 2015-03-29 | 1 | -3/+4 |
| | |||||
* | Allow control characters in names in the cache, handle when logging. | Simon Kelley | 2015-03-29 | 3 | -23/+37 |
| | |||||
* | DNSSEC fix for non-ascii characters in labels. | Simon Kelley | 2015-03-28 | 2 | -19/+20 |
| | |||||
* | Protect against broken DNSSEC upstreams. | Simon Kelley | 2015-03-27 | 1 | -2/+5 |
| | |||||
* | Return SERVFAIL when validation abandoned. | Simon Kelley | 2015-03-27 | 1 | -2/+9 |
| | |||||
* | Don't fail DNSSEC when a signed CNAME dangles into an unsigned zone. | Simon Kelley | 2015-03-26 | 1 | -1/+2 |
| | |||||
* | dhcp: set outbound interface via cmsg in unicast replyv2.73rc1 | Lung-Pin Chang | 2015-03-19 | 1 | -20/+25 |
| | | | | | | | If multiple routes to the same network exist, Linux blindly picks the first interface (route) based on destination address, which might not be the one we're actually offering leases. Rather than relying on this, always set the interface for outgoing unicast DHCP packets. | ||||
* | Make --address=/example.com/ equivalent to --server=/example.com/ | Simon Kelley | 2015-03-19 | 3 | -6/+7 |
| | |||||
* | Fix boilerplate code for re-running system calls on EINTR and EAGAIN etc. | Simon Kelley | 2015-03-11 | 11 | -84/+93 |
| | | | | | | The nasty code with static variable in retry_send() which avoids looping forever needs to be called on success of the syscall, to reset the static variable. | ||||
* | Tweak DNSSEC timestamp code to create file later, removing need to chown it.domain_lookup | Simon Kelley | 2015-03-07 | 4 | -23/+36 |
| | |||||
* | New version of contrib/reverse-dns | Simon Kelley | 2015-03-04 | 3 | -57/+125 |
| | |||||
* | Fix last commit to not crash if uid changing not configured. | Simon Kelley | 2015-03-02 | 3 | -4/+4 |
| | |||||
* | Add --dnssec-timestamp option and facility. | Simon Kelley | 2015-03-01 | 6 | -6/+108 |
| | |||||
* | Log parsing utils in contrib/reverse-dns | Joachim Zobel | 2015-02-23 | 3 | -0/+75 |
| | |||||
* | Fix uninitialized value used in get_client_mac() | Tomas Hozza | 2015-02-23 | 1 | -1/+3 |
| | |||||
* | Fix trivial memory leaks to quieten valgrind. | Chen Wei | 2015-02-17 | 2 | -2/+11 |
| | |||||
* | Make dynamic hosts files work when --no-hosts set. | Simon Kelley | 2015-02-14 | 1 | -10/+11 |
| | |||||
* | Typos. | Simon Kelley | 2015-02-14 | 1 | -1/+2 |
| | |||||
* | Debian systemd fixes. | Simon Kelley | 2015-02-12 | 4 | -13/+16 |
| | |||||
* | Fix get-version script which returned wrong tag in some situations. | Shantanu Gadgil | 2015-02-11 | 1 | -1/+1 |
| | |||||
* | Make Debian build reproducible. | Chris Lamb | 2015-02-09 | 2 | -11/+12 |
| | |||||
* | man page typo. | Simon Kelley | 2015-02-07 | 1 | -0/+1 |
| | |||||
* | Extra logging for inotify code. | Simon Kelley | 2015-02-03 | 3 | -7/+10 |
| | |||||
* | Fixup dhcp-configs after reading extra hostfiles with inotify. | Simon Kelley | 2015-02-02 | 1 | -1/+13 |
| | |||||
* | Manpage typo fix. | ThiƩbaud Weksteen | 2015-02-02 | 1 | -1/+1 |
| | |||||
* | Debian changelog bugfix. | Simon Kelley | 2015-02-02 | 1 | -0/+1 |
| | |||||
* | Fix build failure on openBSD. | Simon Kelley | 2015-02-01 | 1 | -1/+1 |
| | |||||
* | BSD make support | Simon Kelley | 2015-02-01 | 1 | -2/+4 |
| | |||||
* | Fix broken ECDSA DNSSEC signatures. | Simon Kelley | 2015-01-31 | 2 | -1/+3 |
| | |||||
* | inotify documentation updates. | Simon Kelley | 2015-01-31 | 1 | -2/+9 |
| | |||||
* | Update copyrights for dawn of 2015. | Simon Kelley | 2015-01-31 | 38 | -39/+39 |
| | |||||
* | Expand inotify code to dhcp-hostsdir, dhcp-optsdir and hostsdir. | Simon Kelley | 2015-01-31 | 5 | -133/+187 |
| | |||||
* | Allow inotify to be disabled at compile time on Linux. | Simon Kelley | 2015-01-26 | 5 | -16/+37 |
| | |||||
* | Don't reply to DHCPv6 SOLICIT messages when not configured for statefull DHCPv6. | Win King Wan | 2015-01-21 | 2 | -0/+17 |
| | |||||
* | Update German translation. | Conrad Kostecki | 2015-01-20 | 1 | -54/+47 |
| |