]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0eb278f) | patch
rec: A ServFail while retrieving DS/DNSKEY records is just that 9292/head
authorRemi Gacogne <remi.gacogne@powerdns.com>
Thu, 2 Jul 2020 08:31:31 +0000 (10:31 +0200)
committerRemi Gacogne <remi.gacogne@powerdns.com>
Thu, 2 Jul 2020 08:31:31 +0000 (10:31 +0200)
commite122af1cf073cab4bd0b1b346b6e166b49870d70
treeeb57698aa4e53bee0f14ec845056ab182e4c943btree
parent0eb278f885288852cf18cfe3dfdc0a325508e519commit | diff
rec: A ServFail while retrieving DS/DNSKEY records is just that

Before that commit, failing to get the DS or DNSKEY records needed
during validation because of a network issue would trigger a Bogus
DNSSEC validation result because validation could not be performed,
but that should just be a Server Failure instead.
This is especially an issue because the Bogus result would get
inserted into the cache and could stay there for as long as
'max-cache-bogus-ttl' seconds.
pdns/recursordist/test-syncres_cc5.cc diff | blob | blame | history
pdns/syncres.cc diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.