]> git.ipfire.org Git - thirdparty/knot-resolver.git/commit
projects / thirdparty / knot-resolver.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6c98b01) | patch
This is an attempt to repurpose experimental_dot_auth for the ds-dotpin draft. ds-dotpin
authorPeter van Dijk <peter.van.dijk@powerdns.com>
Wed, 3 Jun 2020 10:08:10 +0000 (12:08 +0200)
committerPeter van Dijk <peter.van.dijk@powerdns.com>
Wed, 3 Jun 2020 11:03:07 +0000 (13:03 +0200)
commit78c684ba51f98a0c141d78b22abe4c5763a332ba
treea92100bc6350a54cf265bf945c5149acc1dd61d5tree
parent6c98b0114b0576067ba44b09e325dd1bfa4add09commit | diff
This is an attempt to repurpose experimental_dot_auth for the ds-dotpin draft.

It does not work for at least the following reasons:
* the pin-sha256 in net.tls_client pins to the certs, not the key
* the hashing of the pin needs to be prefixed by 'example.com DNSKEY ....'
daemon/bindings/net.c diff | blob | blame | history
modules/experimental_dot_auth/experimental_dot_auth.lua diff | blob | blame | history
Mirror of https://gitlab.nic.cz/knot/knot-resolver.git