]> git.ipfire.org Git - thirdparty/knot-resolver.git/commit
projects / thirdparty / knot-resolver.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d8762fb) | patch
daemon: root trust anchors automatically bootstrapped from IANA
authorMarek Vavruša <marek.vavrusa@nic.cz>
Sat, 5 Dec 2015 17:09:23 +0000 (18:09 +0100)
committerMarek Vavruša <marek.vavrusa@nic.cz>
Sat, 5 Dec 2015 17:09:23 +0000 (18:09 +0100)
commit1af623da2463bed31cd12b014b1e232639b0fe3f
tree36901c157f0d8b1b203ac25da600cf6a93e29001tree
parentd8762fb767226d84be81b6a5c85957f3bc2dc56bcommit | diff
daemon: root trust anchors automatically bootstrapped from IANA

if the root key file doesn’t exist, it will be populated from root DNSKEY query, which will be validated against root trust anchors retrieved over HTTPS with IANA cert verification against built-in current IANA cert CA. it requires luasocket and luasec for it to work. trust anchors XML file signature is not checked, as there’s no facility for PKCS7 checking yet.
Makefile diff | blob | blame | history
config.mk diff | blob | blame | history
daemon/README.rst diff | blob | blame | history
daemon/engine.c diff | blob | blame | history
daemon/lua/trust_anchors.lua diff | blob | blame | history
daemon/main.c diff | blob | blame | history
doc/build.rst diff | blob | blame | history
etc/etc.mk [new file with mode: 0644] blob
etc/icann-ca.pem [new file with mode: 0644] blob
Mirror of https://gitlab.nic.cz/knot/knot-resolver.git