git.ipfire.org Git - thirdparty/bind9.git/commit

]> git.ipfire.org Git - thirdparty/bind9.git/commit

projects / thirdparty / bind9.git / commit

author	Matthijs Mekking <matthijs@isc.org>
	Thu, 3 Dec 2020 15:04:28 +0000 (16:04 +0100)
committer	Matthijs Mekking <matthijs@isc.org>
	Wed, 23 Dec 2020 10:56:54 +0000 (11:56 +0100)
commit	d564ad5f52d40948bd1e2e4c677c8c174cad973a
tree	8ffd3263b8c252d912e092a9854d5476153580b1	tree \| snapshot
parent	6da379d844e7d3e8a05faea2dafbbce22d4612d3	commit \| diff

Update keymgr to allow transition to insecure mode

The keymgr prevented zones from going to insecure mode. If we
have a policy with an empty key list this is a signal that the zone
wants to go back to insecure mode. In this case allow one extra state
transition to be valid when checking for DNSSEC safety.

(cherry picked from commit 913410006912984b49f9e8efa74e7c1f274cbe4d)

lib/dns/keymgr.c

diff | blob | blame | history

Mirror of https://gitlab.isc.org/isc-projects/bind9.git

RSS Atom