Miek Gieben
dc16392734
Newly allocated names
2012-03-02 15:28:22 +01:00
Miek Gieben
104d875a75
Flag large RSA exponents as an error
2012-02-29 21:11:45 +01:00
Miek Gieben
c32c13ba25
dnssec-bis-16 updates fix
2012-02-28 20:09:00 +01:00
Miek Gieben
d7a7e6e112
Lowercase/uppercase mahem in DNSSEC
2012-02-28 19:25:09 +01:00
Miek Gieben
ea57a49d94
Allow mnemonic algorithm numbers in DS (and DS-like) records
2012-02-27 19:17:58 +01:00
Miek Gieben
ef2e12b0dd
Validation fixes, still not perfect, but much nicer
2012-02-25 22:04:29 +01:00
Miek Gieben
89c05b4f74
gofmt
2012-02-23 19:37:08 +01:00
Miek Gieben
c6042c4ce8
Work on copy of the header when validating
2012-02-23 12:46:39 +01:00
Miek Gieben
d0a45c667e
Downcase these domains
2012-02-23 10:47:50 +01:00
Miek Gieben
99ea36cd42
Check the protocol value of the key
2012-02-16 23:34:09 +01:00
Miek Gieben
2cb265697e
Documentation
...
Need to think about the non-existing root-label and the label
functions.
2012-02-12 11:34:28 +01:00
Peter van Dijk
448596bccb
fix typo
2012-02-10 09:19:23 +01:00
Peter van Dijk
c05615b783
fix RRSIG wildcard checking
2012-02-10 09:19:00 +01:00
Miek Gieben
ed61734c89
Optimize the RR reading further
...
remove len(strings) from the code. 16% increase
in speed. Getting about 35K RR/s
2012-01-30 21:26:29 +01:00
Miek Gieben
bfc928973f
Remove/fix some todo
2012-01-29 00:34:59 +01:00
Miek Gieben
19f8d266b5
Remove the RRset type - only add obvious stuff
2012-01-28 01:14:07 +01:00
Miek Gieben
6d5fd7f975
Some more tweaks into verifying nsec3 messages
2012-01-22 16:12:10 +01:00
Miek Gieben
c051e5eec5
Small tweaks
2012-01-22 12:24:31 +01:00
Miek Gieben
f25584e94e
Overflow fixes
2012-01-21 12:35:19 +01:00
Miek Gieben
c9fc2ea493
Enable signature checking in messages
2012-01-21 11:58:26 +01:00
Miek Gieben
5917838cbb
gofmt
2012-01-20 12:24:20 +01:00
Miek Gieben
509912d4c4
Fixes for weekly.2012-01-20
2012-01-20 12:24:05 +01:00
Miek Gieben
9f3a1c1f13
Documentation and make ParseKey private (parseKey)
2012-01-16 21:44:49 +01:00
Miek Gieben
50a62b9c68
Dont downcase
2012-01-16 10:50:35 +01:00
Miek Gieben
4bd5d7f3f2
Lowercase rdata of rr to be signed/verified
2012-01-16 09:54:05 +01:00
Miek Gieben
8608def558
Documentation
2012-01-15 16:14:22 +01:00
Miek Gieben
5c74f7285f
Save some bytes in the dnssec signature validation
2012-01-15 16:00:40 +01:00
Miek Gieben
0509df509e
gofmt
2012-01-12 23:17:34 +01:00
Miek Gieben
d53102fc7b
Make alg_str public: Alg_str
2012-01-12 13:01:43 +01:00
Miek Gieben
f1a3b31384
Make a packStructCompress() to leave packStruct() simpler
2012-01-11 20:33:38 +01:00
Miek Gieben
eafe995a56
Add a compression flag to msg struct
2012-01-11 20:26:39 +01:00
Miek Gieben
6d95911558
Dont allow the question section to be compressed
2012-01-11 16:16:09 +01:00
Miek Gieben
974c28d1b1
More fixes for compression
2012-01-11 11:13:17 +01:00
Miek Gieben
7f77e5e6b4
Fix key2ds
2012-01-08 16:49:54 +01:00
Miek Gieben
cd266d5f0f
Its a uint8
2012-01-08 15:56:19 +01:00
Miek Gieben
ecfd5451a9
Remove the Labels() function.
...
This is now handled inside IsDomainName, which really parses
the name and then (also) returns the number of labels found.
2012-01-08 15:54:33 +01:00
Miek Gieben
d1b0ee219f
Digest fixes
2011-12-16 15:06:24 +01:00
Miek Gieben
131f6962d1
gofmt
2011-12-09 21:45:57 +01:00
Miek Gieben
17d3f12d31
Fix NSEC presentation
2011-12-09 16:11:37 +01:00
Miek Gieben
96cbd9420c
add privatedns/oid
2011-12-09 16:00:41 +01:00
Miek Gieben
ad11f2425e
export Unpack/PackDomainName
2011-12-09 15:58:36 +01:00
Miek Gieben
e115e5da6e
Update to the latest weekly: weekly/weekly.2011-12-06
...
The new time API must still be used. But for now it compiles.
All DNSSEC/TSIG timing is probably broken
2011-12-09 11:16:49 +01:00
Miek Gieben
22a467e718
Fixes the latest weekly
2011-11-02 23:06:54 +01:00
Miek Gieben
b7ca96e7d4
Normalize errors
...
Use the errors as defined in msg.go and a few.
2011-09-09 10:21:04 +02:00
Taral
24a912919f
Change Sign() and Verify() to return more useful os.Error
2011-09-08 12:14:41 -07:00
Taral
220ad18ded
Remove redundant sorting and fix small error
2011-09-08 12:14:06 -07:00
Taral
ca33c9ad0e
Add sorting to DNSSEC signature verify
2011-09-08 12:14:06 -07:00
Miek Gieben
c104ee05b8
documentation updates
2011-09-08 19:25:45 +02:00
Miek Gieben
6034016b29
tweak the documentation a bit
2011-09-08 08:30:17 +02:00
Miek Gieben
7897c8f088
Add RSASHA1NSEC3SHA1 alg
...
From Taral <taralx@gmail.com>
2011-09-08 08:26:40 +02:00
Miek Gieben
4671072027
Error handling
...
Handle semantic errors in the input stream.
Try to use Ragel's error handling when seeing a non-supported
class. This does not work yet.
2011-07-24 17:08:33 +02:00
Miek Gieben
da0603089a
gofmt -w
2011-07-23 23:43:43 +02:00
Miek Gieben
9b1e7b4b3d
documentation
...
make Str_rr and Str_class private, prolly only needed
for parsing
2011-07-23 23:15:40 +02:00
Miek Gieben
fd0064c805
Parsings works - clean up the tests
...
RR_DNSKEY has now a
* Read (to read an RR)
* ReadPrivateKey (to read an private key file)
Together you have enough data to sign and verify DNSSEC data.
I'm thinking about a better API, but I think one will emerge
whenever I complete the zone parsin.
2011-07-17 20:51:27 +02:00
Miek Gieben
4c26df63ba
Drop the Alg and Hash prefixes
2011-07-08 17:27:44 +02:00
Miek Gieben
b84e27535c
More ECC updates - we should be able to sign
2011-07-08 14:51:40 +02:00
Miek Gieben
ad5b59c09d
Prepare ecdsa signing/verification
2011-07-08 11:40:32 +02:00
Miek Gieben
e73c759491
More curve updates
2011-07-08 11:08:31 +02:00
Miek Gieben
328931d079
implement (part of) ecdsa256/384
2011-07-08 10:41:07 +02:00
Miek Gieben
582766d6fe
Tweaks preparing for ECC
2011-07-07 11:19:57 +02:00
Miek Gieben
df10cc187e
Add the new hashes
2011-07-07 10:00:42 +02:00
Miek Gieben
7cc28a94e9
Fix funkensturm signing
...
make LabelCount public account.
2011-07-06 21:50:23 +02:00
Miek Gieben
ffd7a5acb6
documentation
2011-03-30 15:44:28 +02:00
Miek Gieben
8a4647ec22
documentation
2011-03-30 15:35:49 +02:00
Miek Gieben
f44bf2d656
Formatting
2011-03-24 09:24:24 +01:00
Miek Gieben
d8d4d000bc
Fix test and robustness
2011-03-24 09:02:19 +01:00
Miek Gieben
3af023bda9
Use bufio.Reader in private key reading
2011-03-23 16:10:15 +01:00
Miek Gieben
bc4d7ed748
add this example too
2011-03-22 09:13:25 +01:00
Miek Gieben
50ecc8d2a6
the comments
2011-03-15 19:41:28 +01:00
Miek Gieben
115309962a
Add const for KSK/ZSK and REVOKE
2011-03-03 11:45:33 +01:00
Miek Gieben
2b5a97570a
Made a start with ixfr
2011-02-24 21:44:55 +01:00
Miek Gieben
98e4b33cb5
formatting and documentation
2011-02-24 16:22:14 +01:00
Miek Gieben
71b860e0d3
comment updates
2011-02-24 15:31:58 +01:00
Miek Gieben
266ed16e72
refactor the rrset to signedata function
2011-02-24 15:29:36 +01:00
Miek Gieben
9ea988d5fa
doc update
2011-02-11 22:21:41 +01:00
Miek Gieben
1e111c9571
Make it work with the new Go release
2011-02-02 09:05:25 +01:00
Miek Gieben
8fbcb3e408
loose the dns. prefix
2011-01-27 20:43:55 +01:00
Miek Gieben
bc53ca75e1
some buf sizes
2011-01-27 20:30:16 +01:00
Miek Gieben
f934968d00
remove printlns
2011-01-27 20:24:58 +01:00
Miek Gieben
13574b6c97
use DefaultMsgSize
2011-01-27 09:38:52 +01:00
Miek Gieben
0e0c6fd024
use DefaultMsgSize
2011-01-27 09:38:30 +01:00
Miek Gieben
d9dfd913a7
documentation updates
2011-01-27 09:29:11 +01:00
Miek Gieben
7e1f9490f2
Cert RR added
...
PubKey is named PublicKey in the RR_DNSKEY
2011-01-25 13:57:54 +01:00
Miek Gieben
fc0ffa20f7
Not possible to create keytag from privkey alone
2011-01-18 11:43:08 +01:00
Miek Gieben
68e0e0b1be
Set the algorithm too in the test
2011-01-18 11:34:48 +01:00
Miek Gieben
3df903d6e6
Small signing tweaks
...
* Get more info from the rrset your are signing
* Still todo, calculate publickey and keytag etc.
2011-01-18 11:25:47 +01:00
Miek Gieben
9eea4682fd
Fix documentation
2011-01-17 21:10:48 +01:00
Miek Gieben
96a55dee9b
Less verbose tests
2011-01-17 20:29:40 +01:00
Miek Gieben
48cbf55a23
completely fix private key reading
2011-01-17 20:18:51 +01:00
Miek Gieben
1f6a221bd8
Private key completely works. Can read BIND9 files
2011-01-17 19:52:28 +01:00
Miek Gieben
ea08cb2d7b
Fix all exponent issues in rsa keys
2011-01-17 18:13:52 +01:00
Miek Gieben
2041cffcfc
Fix exp 65537 in RSA keys
2011-01-17 17:55:58 +01:00
Miek Gieben
d086722c36
Add rrset check function
2011-01-16 20:07:17 +01:00
Miek Gieben
2cfa45408d
trying to set the pubkey from the private key
2011-01-16 18:37:29 +01:00
Miek Gieben
54f158c23d
Helper functions for base64 encoding/decoding
2011-01-15 10:38:14 +01:00
Miek Gieben
15bf984f3f
LabelCount() made public and various other tweaks
2011-01-14 18:55:18 +01:00
Miek Gieben
ab4a5b5477
Love interfaces
...
Using interfaces to make key.Generate and Sign much more generic
2011-01-14 18:25:36 +01:00
Miek Gieben
0c95585952
Signing works, dont know yet if it would validate
2011-01-14 13:22:24 +01:00
Miek Gieben
67230e9759
Fixed signing stuff (doesn't work yet)
...
Need a nice priv-key representation to make it all work
2011-01-14 12:10:54 +01:00
Miek Gieben
a60238bdde
Remove unwanted wire conversion functions
2011-01-14 11:57:28 +01:00