subjectName *name*
when using DoT, verify the server certificate is issued for *name*. The `openssl` provider will accept an empty name and still
make sure the certificate is issued by a trusted CA, `gnutls` will only do the validation if a name is given.
- Default is the empty name.
+ Default is the empty name. Also, note that older provide libraries might not validate at all.
caStore *file*
- when using Dot, read the trusted CA certificates from *file*. Default is to use the system provided CA store.
+ when using DoT, read the trusted CA certificates from *file*. Default is to use the system provided CA store.
tlsProvider *name*
when using DoT, use TLS provider *name*. Currently supported (if compiled in): `openssl` and `gnutls`. Default is `openssl` if available.
xpf *XPFCODE* *XPFVERSION* *XPFPROTO* *XPFSRC* *XPFDST*
save_LIBS=$LIBS
CFLAGS="$GNUTLS_CFLAGS $CFLAGS"
LIBS="$GNUTLS_LIBS $LIBS"
- AC_CHECK_FUNCS([gnutls_memset, gnutls_session_set_verify_cert])
+ AC_CHECK_FUNCS([gnutls_memset gnutls_session_set_verify_cert])
CFLAGS=$save_CFLAGS
LIBS=$save_LIBS
int main(int argc, char** argv)
try {
- /* default timeout of 10s */
+ /* default timeout of 10s */
int timeout = 10;
bool dnssec = false;
bool recurse = false;
projects / thirdparty / pdns.git / commitdiff
