]> granicus.if.org Git - pdns/commit
projects / pdns / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bc0aec9) | patch
Add support for encrypting IP addresses #gdpr
authorbert hubert <bert.hubert@netherlabs.nl>
Fri, 2 Feb 2018 10:43:20 +0000 (11:43 +0100)
committerRemi Gacogne <remi.gacogne@powerdns.com>
Mon, 25 Mar 2019 09:22:39 +0000 (10:22 +0100)
commit7d2803422b988ebed885ac25b0c3a6dff56d7e1a
tree0c83113ef622c36f24b93d06c9337481bedfc57etree | snapshot
parentbc0aec951716bfa6b0a79343cd0370638524a041commit | diff
Add support for encrypting IP addresses #gdpr
With this change, PowerDNS core gains ability to encrypt & decrypt IP addresses as described in https://medium.com/@bert.hubert/on-ip-address-encryption-security-analysis-with-respect-for-privacy-dabe1201b476
For IPv4 this uses ipcrypt, for IPv6 it uses a 128-bit AES ECB operation.
This CR also hooks up ipencrypt() and ipdecrypt() methods for dnsdist use, specifically to pseudonomyse logging.
13 files changed:
ext/ipcrypt/LICENSE [new file with mode: 0644] blob
ext/ipcrypt/ipcrypt.c [new file with mode: 0644] blob
ext/ipcrypt/ipcrypt.h [new file with mode: 0644] blob
pdns/Makefile.am diff | blob | history
pdns/dnsdist-lua-bindings.cc diff | blob | history
pdns/dnsdistdist/Makefile.am diff | blob | history
pdns/dnsdistdist/configure.ac diff | blob | history
pdns/dnsdistdist/ext/ipcrypt/LICENSE [new symlink] blob
pdns/dnsdistdist/ext/ipcrypt/ipcrypt.c [new symlink] blob
pdns/dnsdistdist/ext/ipcrypt/ipcrypt.h [new symlink] blob
pdns/ipcrypt.cc [new file with mode: 0644] blob
pdns/ipcrypt.hh [new file with mode: 0644] blob
pdns/test-ipcrypt_cc.cc [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.