summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
...
* Cleanup of server reading code, preparation, for dynamic reading from files.Simon Kelley2014-02-184-176/+145
* --rev-server option. Syntactic sugar for PTR queries.Simon Kelley2014-02-173-52/+102
* Log BOGUS validation result when upstream sends SERVFAIL.Simon Kelley2014-02-131-0/+3
* TYpo.Simon Kelley2014-02-131-1/+1
* No CD in forwarded queries unless dnssec-debug for TCP too.Simon Kelley2014-02-131-1/+4
* Don't mess with the TTL of DNSSEC RRs.Simon Kelley2014-02-131-5/+7
* Add RFC-6605 ECDSA DNSSEC verification.Simon Kelley2014-02-131-6/+80
* Use DS records as trust anchors, not DNSKEYs.v2.69test8Simon Kelley2014-02-118-119/+84
* Further tidying of AD and DO bit handling.Simon Kelley2014-02-103-37/+44
* Handle validation when more one key is needed.Simon Kelley2014-02-103-119/+142
* Fix Byte-order botch: broke DNSSEC on big-endian platforms.Simon Kelley2014-02-101-2/+2
* Fix DNSSEC caching problems: incomplete RRSIG RRsets.Simon Kelley2014-02-103-62/+59
* AD bit in queries handled as RFC6840 p5.7Simon Kelley2014-02-062-13/+10
* Add trust-anchors file to Debian package.v2.69test7Simon Kelley2014-02-061-0/+2
* Fix stack-smashing crash in DNSSEC. Thanks to Henk Jan Agteresch.Simon Kelley2014-02-065-22/+44
* DNSSEC config in example file.Simon Kelley2014-02-061-0/+4
* Protect against malicious DNS replies with very large RRsets.Simon Kelley2014-02-061-0/+5
* Make RR work when returning A/AAAA records and an RRSIG.Simon Kelley2014-02-043-26/+31
* Updated version of contrib/try-all-nsv2.69test6Jesse Glick2014-02-041-0/+29
* Linking stuff. Latest Debian/Ubuntu don't automatically link gmp.Simon Kelley2014-02-043-16/+22
* Make DNSEC default, add build-depends for same, bump version.Simon Kelley2014-02-043-3/+10
* CHANGLEOG for DNSSEC.v2.69test5Simon Kelley2014-02-041-1/+46
* Format tweak.v2.69test4Simon Kelley2014-02-031-1/+1
* Log NXDOMAIN correctly.Simon Kelley2014-02-031-8/+1
* Return configured DNSKEYs even though we don't have RRSIGS for them.Simon Kelley2014-02-033-66/+68
* Nasty cache failure and memory leak with DNSSEC.Simon Kelley2014-02-034-138/+217
* Validate Ooops.Simon Kelley2014-02-011-1/+1
* Blockdata fixes and tuning.Simon Kelley2014-01-314-13/+51
* Blockdata leak.Simon Kelley2014-01-311-1/+2
* copy-n-paste error.Simon Kelley2014-01-311-1/+1
* Anounce DNSSEC at startup.Simon Kelley2014-01-311-1/+6
* Init ->dependent field in frec allocation.Simon Kelley2014-01-311-0/+1
* Compiler warning.Simon Kelley2014-01-311-1/+1
* Add a file containing current root trust anchors, for convenience.Simon Kelley2014-01-301-0/+8
* Crash in cache code when compiled with HAVE_DNSSEC.Simon Kelley2014-01-281-1/+2
* Allow use of COPTS in Debian rules invokation for nefarious purposes.Simon Kelley2014-01-281-15/+15
* Debian package with DNSSEC now possible.Simon Kelley2014-01-282-3/+7
* Man page entries for DNSSEC flags.Simon Kelley2014-01-271-12/+22
* Trivial format fix.Simon Kelley2014-01-271-1/+1
* Code tidy.Simon Kelley2014-01-261-9/+7
* Don't mark answers as DNSEC validated if DNS-doctored.Simon Kelley2014-01-263-20/+31
* Exclude CRC code in DNSSEC build - replaced with SHA1.Simon Kelley2014-01-261-1/+2
* Remove --dnssec-permissive, pointless if we don't set CD upstream.Simon Kelley2014-01-263-20/+4
* Fix to last commit.Simon Kelley2014-01-252-4/+11
* Replace CRC32 with SHA1 for spoof detection in DNSSEC builds.Simon Kelley2014-01-253-26/+93
* Get AA flag right in DNSSEC answers from cache.Simon Kelley2014-01-251-1/+7
* RRSIG answer logging.Simon Kelley2014-01-252-6/+15
* Class specifier in --dnskey, instead of hardwiring C_IN.Simon Kelley2014-01-254-8/+28
* --dnssec-debugSimon Kelley2014-01-255-5/+15
* More DNSSEC caching logic, and avoid repeated validation of DS/DNSKEYSimon Kelley2014-01-254-84/+88
View Lorry Controller Status