]> git.ipfire.org Git - thirdparty/knot-resolver.git/commit
projects / thirdparty / knot-resolver.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bb6e2de) | patch
TTL bounds: improve the logic
authorVladimír Čunát <vladimir.cunat@nic.cz>
Thu, 14 Jul 2022 08:53:27 +0000 (10:53 +0200)
committerVladimír Čunát <vladimir.cunat@nic.cz>
Tue, 13 Dec 2022 09:58:33 +0000 (10:58 +0100)
commita4455c78c47a09e5d30bc6e212b4afb71aff5aab
tree07b8babc969621e1331f66505c6f00501a64eb51tree
parentbb6e2de2195914c791d76fa56828050468349337commit | diff
TTL bounds: improve the logic

- apply to first (uncached) answer already
- don't extend over signature validity

Nit: the tests were using too high TTL (RFCs disallow the "sign bit").
It was working because (manual) cache-insertion was applying bounds,
but now the bounds don't get applied anymore, so it would fail.
daemon/cache.test/insert_ns.test.integr/kresd_config.j2 diff | blob | blame | history
lib/cache/api.c diff | blob | blame | history
lib/cache/api.h diff | blob | blame | history
lib/dnssec.c diff | blob | blame | history
lib/dnssec.h diff | blob | blame | history
lib/layer/iterate.c diff | blob | blame | history
lib/layer/validate.c diff | blob | blame | history
modules/policy/policy.rpz.test.lua diff | blob | blame | history
Mirror of https://gitlab.nic.cz/knot/knot-resolver.git