picnoir
/
Systemd
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Systemd/src/resolve
History
Lennart Poettering 2b442ac878 resolved: add basic DNSSEC support 
This adds most basic operation for doing DNSSEC validation on the
client side. However, it does not actually add the verification logic to
the resolver. Specifically, this patch only includes:

- Verifying DNSKEY RRs against a DS RRs
- Verifying RRSets against a combination of RRSIG and DNSKEY RRs
- Matching up RRSIG RRs and DNSKEY RRs
- Matching up RR keys and RRSIG RRs
- Calculating the DNSSEC key tag from a DNSKEY RR

All currently used DNSSEC combinations of SHA and RSA are implemented. Support
for MD5 hashing and DSA or EC cyphers are not. MD5 and DSA are probably
obsolete, and shouldn't be added. EC should probably be added
eventually, if it actually is deployed on the Internet.
 		2015-12-02 22:50:11 +01:00
..
.gitignore resolve: add more record types and convert to gperf table 2014-08-03 22:02:32 -04:00
Makefile resolved: add daemon to manage resolv.conf 2014-05-19 18:14:56 +02:00
dns-type.c treewide: fix typos 2015-07-29 12:29:46 +02:00
dns-type.h resolved: rr - ignore pseudo types in NSEC(3) bitmaps 2015-07-23 18:06:50 +02:00
org.freedesktop.resolve1.conf resolved: add legacy dbus service and policy files 2014-07-16 03:41:39 +02:00
org.freedesktop.resolve1.service resolved: add legacy dbus service and policy files 2014-07-16 03:41:39 +02:00
resolved-bus.c resolved: port ResolveRecord() bus call implementation to dns_resource_record_to_wire_format() 2015-12-02 22:50:11 +01:00
resolved-bus.h resolved: rename resolved.h to resolved-manager.h 2014-08-01 16:14:59 +02:00
resolved-conf.c resolved: unify DnsServer handling code between Link and Manager 2015-11-25 21:58:38 +01:00
resolved-conf.h resolved: add a generic DnsSearchDomain concept 2015-11-25 21:58:38 +01:00
resolved-def.h resolved: change query flag definitions 2015-11-27 00:03:39 +01:00
resolved-dns-answer.c resolved: fully support DNS search domains 2015-11-25 21:59:16 +01:00
resolved-dns-answer.h resolved: make sure DNS_ANSWER_FOREACH() can be nested 2015-12-02 20:43:11 +01:00
resolved-dns-cache.c resolved: implement client-side DNAME resolution 2015-11-24 00:20:39 +01:00
resolved-dns-cache.h resolved: add basic DNSSEC support 2015-12-02 22:50:11 +01:00
resolved-dns-dnssec.c resolved: add basic DNSSEC support 2015-12-02 22:50:11 +01:00
resolved-dns-dnssec.h resolved: add basic DNSSEC support 2015-12-02 22:50:11 +01:00
resolved-dns-packet.c resolved: add code to generate the wire format for a single RR 2015-12-02 22:50:11 +01:00
resolved-dns-packet.h resolved: add code to generate the wire format for a single RR 2015-12-02 22:50:11 +01:00
resolved-dns-query.c tree-wide: remove unused variables 2015-11-29 08:59:40 +01:00
resolved-dns-query.h resolved: store just the DnsAnswer instead of a DnsPacket as answer in DnsTransaction objects 2015-11-27 00:03:39 +01:00
resolved-dns-question.c resolved: fully support DNS search domains 2015-11-25 21:59:16 +01:00
resolved-dns-question.h resolved: make sure DNS_ANSWER_FOREACH() can be nested 2015-12-02 20:43:11 +01:00
resolved-dns-rr.c resolved: add code to generate the wire format for a single RR 2015-12-02 22:50:11 +01:00
resolved-dns-rr.h resolved: add code to generate the wire format for a single RR 2015-12-02 22:50:11 +01:00
resolved-dns-scope.c resolved: add code to generate the wire format for a single RR 2015-12-02 22:50:11 +01:00
resolved-dns-scope.h resolved: implement minimal EDNS0 support 2015-11-27 01:35:34 +01:00
resolved-dns-search-domain.c dns-domain: simplify dns_name_is_root() and dns_name_is_single_label() 2015-11-25 22:00:07 +01:00
resolved-dns-search-domain.h resolved: fully support DNS search domains 2015-11-25 21:59:16 +01:00
resolved-dns-server.c resolved: announce support for large UDP packets 2015-11-27 01:35:47 +01:00
resolved-dns-server.h resolved: announce support for large UDP packets 2015-11-27 01:35:47 +01:00
resolved-dns-stream.c util-lib: split out allocation calls into alloc-util.[ch] 2015-10-27 13:45:53 +01:00
resolved-dns-stream.h remove unused includes 2015-02-23 23:53:42 +01:00
resolved-dns-transaction.c resolved: announce support for large UDP packets 2015-11-27 01:35:47 +01:00
resolved-dns-transaction.h resolved: fallback to TCP if UDP fails 2015-11-27 01:35:33 +01:00
resolved-dns-zone.c resolved: fully support DNS search domains 2015-11-25 21:59:16 +01:00
resolved-dns-zone.h Merge pull request #1947 from phomes/sort-includes2 2015-11-19 23:32:30 +01:00
resolved-gperf.gperf resolved: add a generic DnsSearchDomain concept 2015-11-25 21:58:38 +01:00
resolved-link.c resolved: unify DnsServer handling code between Link and Manager 2015-11-25 21:58:38 +01:00
resolved-link.h resolved: enforce a maximum limit on both dns servers and search domains 2015-11-25 21:58:38 +01:00
resolved-llmnr.c tree-wide: sort includes 2015-11-16 22:09:36 +01:00
resolved-llmnr.h resolved: use a #define for LLMNR port 2015-07-13 11:28:29 -04:00
resolved-manager.c tree-wide: expose "p"-suffix unref calls in public APIs to make gcc cleanup easy 2015-11-27 19:19:36 +01:00
resolved-manager.h resolved: split out calls to compile full list of dns servers and search domains 2015-11-25 21:58:38 +01:00
resolved-resolv-conf.c resolved: flush the global DNS cache if /etc/resolv.conf is touched 2015-11-27 00:46:51 +01:00
resolved-resolv-conf.h resolved: split out all code dealing with /etc/resolv.conf into its own .c file 2015-11-25 21:58:37 +01:00
resolved.c resolved: make sure FallbackDNS= overrides built-in servers, doesn't extend them 2015-11-25 21:58:37 +01:00
resolved.conf.in resolved: add a generic DnsSearchDomain concept 2015-11-25 21:58:38 +01:00
test-dnssec.c resolved: add basic DNSSEC support 2015-12-02 22:50:11 +01:00