Miek Gieben
01258c0d97
Finish DSA support -- completely untested
2012-04-18 12:48:54 +02:00
Miek Gieben
96a9b0d7d1
Signing with dsa
2012-04-18 11:57:32 +02:00
Miek Gieben
7c9a376659
More DSA stuff: generation/signing/verifying
2012-04-17 11:58:06 +02:00
Miek Gieben
4536259037
1/2 support for DSA
2012-04-17 11:39:58 +02:00
Miek Gieben
70efdaabea
keytag calc. for RSAMD5 keys
2012-04-17 10:55:02 +02:00
Miek Gieben
daf51db85d
add indirect alg type
2012-04-16 09:09:32 +02:00
Miek Gieben
cf627feaa8
remove debugging.Validation code works, but isnt validating
2012-04-15 21:43:52 +02:00
Miek Gieben
e6b2ec8d72
Add ecdsa verification
2012-04-15 21:37:00 +02:00
Miek Gieben
b58c604e17
Add symmetry to the reading of public/private keys
...
Add a NewPrivateKey that works on strings and calls ReadPrivateKey
that works on io.Readers.
2012-04-15 20:50:53 +02:00
Miek Gieben
3e11306260
some debugging
2012-04-12 15:39:54 +02:00
Miek Gieben
134b557647
Start with validating Curve algos
2012-04-11 16:20:29 +02:00
Miek Gieben
1e1559423d
Fix EC signing
2012-04-11 16:09:40 +02:00
Miek Gieben
b1099c10b8
More stuff for ecdsa. Need to find good abstraction
2012-04-11 15:42:33 +02:00
Miek Gieben
edf4b3d11b
Test signing with ecdsa
2012-04-11 15:13:17 +02:00
Miek Gieben
35bfb48fac
fix the mnemonic for ecdsa*
2012-04-11 14:37:51 +02:00
Miek Gieben
a55014ff8a
elliptic curve stuff
2012-04-11 14:32:44 +02:00
Miek Gieben
1083e5542e
add comment
2012-04-06 20:12:00 +02:00
Miek Gieben
33a58c8cb7
make it compile
2012-03-19 20:00:40 +01:00
Miek Gieben
f38cd6abe0
better errors
2012-03-18 22:44:42 +01:00
Miek Gieben
9f14f2d5ab
Documentation updates
2012-03-08 20:47:45 +01:00
Miek Gieben
1744a80850
add a TsigStatus to the client as well
...
Bring server and client side more inline
with each other. For a client we also
use TsigStatus() to retrieve the tsig info.
2012-03-04 14:47:20 +01:00
Miek Gieben
dc16392734
Newly allocated names
2012-03-02 15:28:22 +01:00
Miek Gieben
104d875a75
Flag large RSA exponents as an error
2012-02-29 21:11:45 +01:00
Miek Gieben
c32c13ba25
dnssec-bis-16 updates fix
2012-02-28 20:09:00 +01:00
Miek Gieben
d7a7e6e112
Lowercase/uppercase mahem in DNSSEC
2012-02-28 19:25:09 +01:00
Miek Gieben
ea57a49d94
Allow mnemonic algorithm numbers in DS (and DS-like) records
2012-02-27 19:17:58 +01:00
Miek Gieben
ef2e12b0dd
Validation fixes, still not perfect, but much nicer
2012-02-25 22:04:29 +01:00
Miek Gieben
89c05b4f74
gofmt
2012-02-23 19:37:08 +01:00
Miek Gieben
c6042c4ce8
Work on copy of the header when validating
2012-02-23 12:46:39 +01:00
Miek Gieben
d0a45c667e
Downcase these domains
2012-02-23 10:47:50 +01:00
Miek Gieben
99ea36cd42
Check the protocol value of the key
2012-02-16 23:34:09 +01:00
Miek Gieben
2cb265697e
Documentation
...
Need to think about the non-existing root-label and the label
functions.
2012-02-12 11:34:28 +01:00
Peter van Dijk
448596bccb
fix typo
2012-02-10 09:19:23 +01:00
Peter van Dijk
c05615b783
fix RRSIG wildcard checking
2012-02-10 09:19:00 +01:00
Miek Gieben
ed61734c89
Optimize the RR reading further
...
remove len(strings) from the code. 16% increase
in speed. Getting about 35K RR/s
2012-01-30 21:26:29 +01:00
Miek Gieben
bfc928973f
Remove/fix some todo
2012-01-29 00:34:59 +01:00
Miek Gieben
19f8d266b5
Remove the RRset type - only add obvious stuff
2012-01-28 01:14:07 +01:00
Miek Gieben
6d5fd7f975
Some more tweaks into verifying nsec3 messages
2012-01-22 16:12:10 +01:00
Miek Gieben
c051e5eec5
Small tweaks
2012-01-22 12:24:31 +01:00
Miek Gieben
f25584e94e
Overflow fixes
2012-01-21 12:35:19 +01:00
Miek Gieben
c9fc2ea493
Enable signature checking in messages
2012-01-21 11:58:26 +01:00
Miek Gieben
5917838cbb
gofmt
2012-01-20 12:24:20 +01:00
Miek Gieben
509912d4c4
Fixes for weekly.2012-01-20
2012-01-20 12:24:05 +01:00
Miek Gieben
9f3a1c1f13
Documentation and make ParseKey private (parseKey)
2012-01-16 21:44:49 +01:00
Miek Gieben
50a62b9c68
Dont downcase
2012-01-16 10:50:35 +01:00
Miek Gieben
4bd5d7f3f2
Lowercase rdata of rr to be signed/verified
2012-01-16 09:54:05 +01:00
Miek Gieben
8608def558
Documentation
2012-01-15 16:14:22 +01:00
Miek Gieben
5c74f7285f
Save some bytes in the dnssec signature validation
2012-01-15 16:00:40 +01:00
Miek Gieben
0509df509e
gofmt
2012-01-12 23:17:34 +01:00
Miek Gieben
d53102fc7b
Make alg_str public: Alg_str
2012-01-12 13:01:43 +01:00
Miek Gieben
f1a3b31384
Make a packStructCompress() to leave packStruct() simpler
2012-01-11 20:33:38 +01:00
Miek Gieben
eafe995a56
Add a compression flag to msg struct
2012-01-11 20:26:39 +01:00
Miek Gieben
6d95911558
Dont allow the question section to be compressed
2012-01-11 16:16:09 +01:00
Miek Gieben
974c28d1b1
More fixes for compression
2012-01-11 11:13:17 +01:00
Miek Gieben
7f77e5e6b4
Fix key2ds
2012-01-08 16:49:54 +01:00
Miek Gieben
cd266d5f0f
Its a uint8
2012-01-08 15:56:19 +01:00
Miek Gieben
ecfd5451a9
Remove the Labels() function.
...
This is now handled inside IsDomainName, which really parses
the name and then (also) returns the number of labels found.
2012-01-08 15:54:33 +01:00
Miek Gieben
d1b0ee219f
Digest fixes
2011-12-16 15:06:24 +01:00
Miek Gieben
131f6962d1
gofmt
2011-12-09 21:45:57 +01:00
Miek Gieben
17d3f12d31
Fix NSEC presentation
2011-12-09 16:11:37 +01:00
Miek Gieben
96cbd9420c
add privatedns/oid
2011-12-09 16:00:41 +01:00
Miek Gieben
ad11f2425e
export Unpack/PackDomainName
2011-12-09 15:58:36 +01:00
Miek Gieben
e115e5da6e
Update to the latest weekly: weekly/weekly.2011-12-06
...
The new time API must still be used. But for now it compiles.
All DNSSEC/TSIG timing is probably broken
2011-12-09 11:16:49 +01:00
Miek Gieben
22a467e718
Fixes the latest weekly
2011-11-02 23:06:54 +01:00
Miek Gieben
b7ca96e7d4
Normalize errors
...
Use the errors as defined in msg.go and a few.
2011-09-09 10:21:04 +02:00
Taral
24a912919f
Change Sign() and Verify() to return more useful os.Error
2011-09-08 12:14:41 -07:00
Taral
220ad18ded
Remove redundant sorting and fix small error
2011-09-08 12:14:06 -07:00
Taral
ca33c9ad0e
Add sorting to DNSSEC signature verify
2011-09-08 12:14:06 -07:00
Miek Gieben
c104ee05b8
documentation updates
2011-09-08 19:25:45 +02:00
Miek Gieben
6034016b29
tweak the documentation a bit
2011-09-08 08:30:17 +02:00
Miek Gieben
7897c8f088
Add RSASHA1NSEC3SHA1 alg
...
From Taral <taralx@gmail.com>
2011-09-08 08:26:40 +02:00
Miek Gieben
4671072027
Error handling
...
Handle semantic errors in the input stream.
Try to use Ragel's error handling when seeing a non-supported
class. This does not work yet.
2011-07-24 17:08:33 +02:00
Miek Gieben
da0603089a
gofmt -w
2011-07-23 23:43:43 +02:00
Miek Gieben
9b1e7b4b3d
documentation
...
make Str_rr and Str_class private, prolly only needed
for parsing
2011-07-23 23:15:40 +02:00
Miek Gieben
fd0064c805
Parsings works - clean up the tests
...
RR_DNSKEY has now a
* Read (to read an RR)
* ReadPrivateKey (to read an private key file)
Together you have enough data to sign and verify DNSSEC data.
I'm thinking about a better API, but I think one will emerge
whenever I complete the zone parsin.
2011-07-17 20:51:27 +02:00
Miek Gieben
4c26df63ba
Drop the Alg and Hash prefixes
2011-07-08 17:27:44 +02:00
Miek Gieben
b84e27535c
More ECC updates - we should be able to sign
2011-07-08 14:51:40 +02:00
Miek Gieben
ad5b59c09d
Prepare ecdsa signing/verification
2011-07-08 11:40:32 +02:00
Miek Gieben
e73c759491
More curve updates
2011-07-08 11:08:31 +02:00
Miek Gieben
328931d079
implement (part of) ecdsa256/384
2011-07-08 10:41:07 +02:00
Miek Gieben
582766d6fe
Tweaks preparing for ECC
2011-07-07 11:19:57 +02:00
Miek Gieben
df10cc187e
Add the new hashes
2011-07-07 10:00:42 +02:00
Miek Gieben
7cc28a94e9
Fix funkensturm signing
...
make LabelCount public account.
2011-07-06 21:50:23 +02:00
Miek Gieben
ffd7a5acb6
documentation
2011-03-30 15:44:28 +02:00
Miek Gieben
8a4647ec22
documentation
2011-03-30 15:35:49 +02:00
Miek Gieben
f44bf2d656
Formatting
2011-03-24 09:24:24 +01:00
Miek Gieben
d8d4d000bc
Fix test and robustness
2011-03-24 09:02:19 +01:00
Miek Gieben
3af023bda9
Use bufio.Reader in private key reading
2011-03-23 16:10:15 +01:00
Miek Gieben
bc4d7ed748
add this example too
2011-03-22 09:13:25 +01:00
Miek Gieben
50ecc8d2a6
the comments
2011-03-15 19:41:28 +01:00
Miek Gieben
115309962a
Add const for KSK/ZSK and REVOKE
2011-03-03 11:45:33 +01:00
Miek Gieben
2b5a97570a
Made a start with ixfr
2011-02-24 21:44:55 +01:00
Miek Gieben
98e4b33cb5
formatting and documentation
2011-02-24 16:22:14 +01:00
Miek Gieben
71b860e0d3
comment updates
2011-02-24 15:31:58 +01:00
Miek Gieben
266ed16e72
refactor the rrset to signedata function
2011-02-24 15:29:36 +01:00
Miek Gieben
9ea988d5fa
doc update
2011-02-11 22:21:41 +01:00
Miek Gieben
1e111c9571
Make it work with the new Go release
2011-02-02 09:05:25 +01:00
Miek Gieben
8fbcb3e408
loose the dns. prefix
2011-01-27 20:43:55 +01:00
Miek Gieben
bc53ca75e1
some buf sizes
2011-01-27 20:30:16 +01:00
Miek Gieben
f934968d00
remove printlns
2011-01-27 20:24:58 +01:00