For consistency with all other domainmetadata settings names.
PowerDNS will not be able to correctly serve the zone if the imported data is
bogus or incomplete. Also see `set-presigned` in [`pdnsutil`](dnssec.md#pdnsutil).
-## PUBLISH_CDNSKEY, PUBLISH_CDS
+## PUBLISH-CDNSKEY, PUBLISH-CDS
Whether to publish CDNSKEY and/or CDS recording defined in [RFC 7344](https://tools.ietf.org/html/rfc7344).
-To publish CDNSKEY records of the KSKs for the zone, set `PUBLISH_CDNSKEY` to `1`.
+To publish CDNSKEY records of the KSKs for the zone, set `PUBLISH-CDNSKEY` to `1`.
-To publish CDS records for the KSKs in the zone, set `PUBLISH_CDS` to a comma-
+To publish CDS records for the KSKs in the zone, set `PUBLISH-CDS` to a comma-
separated list of [signature algorithm numbers](http://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml#ds-rr-types-1).
This metadata can also be set using the [`pdnsutil`](dnssec.md#pdnsutil) options
clearCaches(zname);
vector<string> meta;
meta.push_back(digestAlgos);
- return d_keymetadb->setDomainMetadata(zname, "PUBLISH_CDS", meta);
+ return d_keymetadb->setDomainMetadata(zname, "PUBLISH-CDS", meta);
}
/**
bool DNSSECKeeper::unsetPublishCDS(const DNSName& zname)
{
clearCaches(zname);
- return d_keymetadb->setDomainMetadata(zname, "PUBLISH_CDS", vector<string>());
+ return d_keymetadb->setDomainMetadata(zname, "PUBLISH-CDS", vector<string>());
}
/**
clearCaches(zname);
vector<string> meta;
meta.push_back("1");
- return d_keymetadb->setDomainMetadata(zname, "PUBLISH_CDNSKEY", meta);
+ return d_keymetadb->setDomainMetadata(zname, "PUBLISH-CDNSKEY", meta);
}
/**
bool DNSSECKeeper::unsetPublishCDNSKEY(const DNSName& zname)
{
clearCaches(zname);
- return d_keymetadb->setDomainMetadata(zname, "PUBLISH_CDNSKEY", vector<string>());
+ return d_keymetadb->setDomainMetadata(zname, "PUBLISH-CDNSKEY", vector<string>());
}
/**
bool PacketHandler::addCDNSKEY(DNSPacket *p, DNSPacket *r, const SOAData& sd)
{
string publishCDNSKEY;
- d_dk.getFromMeta(p->qdomain, "PUBLISH_CDNSKEY", publishCDNSKEY);
+ d_dk.getFromMeta(p->qdomain, "PUBLISH-CDNSKEY", publishCDNSKEY);
if (publishCDNSKEY != "1")
return false;
bool PacketHandler::addCDS(DNSPacket *p, DNSPacket *r, const SOAData& sd)
{
string publishCDS;
- d_dk.getFromMeta(p->qdomain, "PUBLISH_CDS", publishCDS);
+ d_dk.getFromMeta(p->qdomain, "PUBLISH-CDS", publishCDS);
if (publishCDS.empty())
return false;
nrc.d_set.insert(QType::SOA); // 1dfd8ad SOA can live outside the records table
nrc.d_set.insert(QType::DNSKEY);
string publishCDNSKEY;
- d_dk.getFromMeta(name, "PUBLISH_CDNSKEY", publishCDNSKEY);
+ d_dk.getFromMeta(name, "PUBLISH-CDNSKEY", publishCDNSKEY);
if (publishCDNSKEY == "1")
nrc.d_set.insert(QType::CDNSKEY);
string publishCDS;
- d_dk.getFromMeta(name, "PUBLISH_CDS", publishCDS);
+ d_dk.getFromMeta(name, "PUBLISH-CDS", publishCDS);
if (! publishCDS.empty())
nrc.d_set.insert(QType::CDS);
}
n3rc.d_set.insert(QType::NSEC3PARAM);
n3rc.d_set.insert(QType::DNSKEY);
string publishCDNSKEY;
- d_dk.getFromMeta(name, "PUBLISH_CDNSKEY", publishCDNSKEY);
+ d_dk.getFromMeta(name, "PUBLISH-CDNSKEY", publishCDNSKEY);
if (publishCDNSKEY == "1")
n3rc.d_set.insert(QType::CDNSKEY);
string publishCDS;
- d_dk.getFromMeta(name, "PUBLISH_CDS", publishCDS);
+ d_dk.getFromMeta(name, "PUBLISH-CDS", publishCDS);
if (! publishCDS.empty())
n3rc.d_set.insert(QType::CDS);
}
rr.auth = 1; // please sign!
string publishCDNSKEY, publishCDS;
- dk.getFromMeta(q->qdomain, "PUBLISH_CDNSKEY", publishCDNSKEY);
- dk.getFromMeta(q->qdomain, "PUBLISH_CDS", publishCDS);
+ dk.getFromMeta(q->qdomain, "PUBLISH-CDNSKEY", publishCDNSKEY);
+ dk.getFromMeta(q->qdomain, "PUBLISH-CDS", publishCDS);
vector<DNSResourceRecord> cds, cdnskey;
DNSSECKeeper::keyset_t entryPoints = dk.getEntryPoints(q->qdomain);
set<uint32_t> entryPointIds;
projects / thirdparty / pdns.git / commitdiff
