picnoir
/
Systemd
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Systemd/src/resolve
History
Lennart Poettering 0b491556ac resolved: rework NSEC covering tests 
This makes two changes: first of all we will now explicitly check
whether a domain to test against an NSEC record is actually below the
signer's name. This is relevant for NSEC records that chain up the end
and the beginning of a zone: we shouldn't alow that NSEC record to match
against domains outside of the zone.

This also fixes how we handle NSEC checks for domains that are prefixes
of the NSEC RR domain itself, fixing #8164 which triggers this specific
case. The non-wildcard NSEC check is simplified for that, we can
directly make our between check, there's no need to find the "Next
Closer" first, as the between check should not be affected by additional
prefixes. For the wild card NSEC check we'll prepend the asterisk in
this case to the NSEC RR itself to make a correct check.

Fixes: #8164
 		2018-06-11 10:43:14 +02:00
..
RFCs resolve: add support for RFC 8080 (#7600) 2017-12-12 16:30:12 +01:00
dns-type.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
dns-type.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
dns_type-to-name.awk meson: also indent scripts with 8 spaces 2017-04-25 08:49:16 -04:00
generate-dns_type-gperf.py tree-wide: adjust fall through comments so that gcc is happy 2017-11-20 13:06:25 -08:00
generate-dns_type-list.sed meson: build systemd using meson 2017-04-23 21:47:26 -04:00
meson.build resolvectl: rename systemd-resolve to resolvectl 2018-04-19 03:24:23 +09:00
org.freedesktop.resolve1.conf resolved: add legacy dbus service and policy files 2014-07-16 03:41:39 +02:00
org.freedesktop.resolve1.policy meson: drop unnecessary "transformation" of policy files 2018-02-16 13:01:12 +01:00
org.freedesktop.resolve1.service Add SPDX license headers to various assorted files 2017-11-19 19:08:15 +01:00
resolv.conf resolve: update comments to mention resolvectl 2018-05-03 17:10:15 +09:00
resolvconf-compat.c resolve: update comments to mention resolvectl 2018-05-03 17:10:15 +09:00
resolvconf-compat.h resolve-tool: provide resolvconf(8) compatibility 2018-03-02 15:48:46 +01:00
resolvectl.c tree-wide: port various bits of the tree over to the new DUMP_STRING_TABLE() macro 2018-05-22 13:14:18 +02:00
resolvectl.h resolvectl: change syntax to use verb_dispatch() 2018-04-19 03:24:35 +09:00
resolved-bus.c resolve: enable DynamicUser= for systemd-resolved.service 2018-05-22 22:32:25 +09:00
resolved-bus.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-conf.c resolved: reindent specifier table 2018-05-29 11:39:15 +02:00
resolved-conf.h tree-wide: port over all code to the new CONFIG_PARSER_PROTOTYPE() macro 2018-05-22 13:18:44 +02:00
resolved-def.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-answer.c tree-wide: be more careful with the type of array sizes 2018-04-27 14:29:06 +02:00
resolved-dns-answer.h tree-wide: be more careful with the type of array sizes 2018-04-27 14:29:06 +02:00
resolved-dns-cache.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-cache.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-dnssec.c resolved: rework NSEC covering tests 2018-06-11 10:43:14 +02:00
resolved-dns-dnssec.h tree-wide: remove some double newlines in headers, too 2018-05-22 16:13:45 +02:00
resolved-dns-packet.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-packet.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-query.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-query.h tree-wide: remove some double newlines in headers, too 2018-05-22 16:13:45 +02:00
resolved-dns-question.c tree-wide: be more careful with the type of array sizes 2018-04-27 14:29:06 +02:00
resolved-dns-question.h tree-wide: be more careful with the type of array sizes 2018-04-27 14:29:06 +02:00
resolved-dns-rr.c tree-wide: drop spurious newlines (#8764) 2018-04-19 12:13:23 +02:00
resolved-dns-rr.h tree-wide: remove some double newlines in headers, too 2018-05-22 16:13:45 +02:00
resolved-dns-scope.c Rename ratelimit_test to ratelimit_below 2018-05-13 22:08:30 +02:00
resolved-dns-scope.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-search-domain.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-search-domain.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-server.c Remove NULL terminator from two log_struct calls 2018-06-06 14:44:34 +02:00
resolved-dns-server.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-stream.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-stream.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-stub.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-stub.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-synthesize.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-synthesize.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-transaction.c basic/log: add the log_struct terminator to macro 2018-06-04 13:46:03 +02:00
resolved-dns-transaction.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-trust-anchor.c resolved: reformat message about a revoked trust anchor 2018-06-06 14:55:31 +02:00
resolved-dns-trust-anchor.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-zone.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dns-zone.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dnssd-bus.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dnssd-bus.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-dnssd-gperf.gperf resolved: add enablers for DNS-SD 2017-12-08 14:29:27 +02:00
resolved-dnssd.c resolved: reindent specifier table 2018-05-29 11:39:15 +02:00
resolved-dnssd.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-etc-hosts.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-etc-hosts.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-gperf.gperf tree-wide: adjust fall through comments so that gcc is happy 2017-11-20 13:06:25 -08:00
resolved-link-bus.c resolve: use BUS_DEFINE_PROPERTY_GET* macros 2018-05-15 23:07:02 +09:00
resolved-link-bus.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-link.c resolved: whenever a link starts/stops being relevant flush global DNS caches 2018-06-08 15:16:10 +02:00
resolved-link.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-llmnr.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-llmnr.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-manager.c network,resolve: remove unused variables (#8738) 2018-04-17 12:40:45 +02:00
resolved-manager.h network,resolve: remove unused variables (#8738) 2018-04-17 12:40:45 +02:00
resolved-mdns.c Rename ratelimit_test to ratelimit_below 2018-05-13 22:08:30 +02:00
resolved-mdns.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved-resolv-conf.c Minor spelling error - "Our of"->"Out of" 2018-06-01 15:15:31 +02:00
resolved-resolv-conf.h tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
resolved.conf.in resolved: add global config option to control mDNS stack 2017-03-21 13:35:08 +09:00
test-dns-packet.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
test-dnssec-complex.c resolved: rework NSEC covering tests 2018-06-11 10:43:14 +02:00
test-dnssec.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
test-resolve-tables.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00
test-resolved-packet.c tree-wide: drop license boilerplate 2018-04-06 18:58:55 +02:00