]> git.ipfire.org Git - thirdparty/pdns.git/commitdiff
projects / thirdparty / pdns.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: f21dbba)
auth API cryptokeys: skip SHA1 and GOST DSes, closes #13950
authorPeter van Dijk <peter.van.dijk@powerdns.com>
Tue, 19 Mar 2024 14:10:47 +0000 (15:10 +0100)
committerPeter van Dijk <peter.van.dijk@powerdns.com>
Thu, 21 Mar 2024 07:53:30 +0000 (08:53 +0100)
pdns/ws-auth.cc patch | blob | blame | history

diff --git a/pdns/ws-auth.cc b/pdns/ws-auth.cc
index 9c82d7dafa0f31b0fd4441e5269ec26d6dc39e5e..460734c4dc621335a3f85188beff48d082b9c049 100644 (file)
--- a/pdns/ws-auth.cc
+++ b/pdns/ws-auth.cc
@@ -1287,7 +1287,7 @@ static void apiZoneCryptokeysExport(const DNSName& zonename, int64_t inquireKeyI
     if (value.second.keyType == DNSSECKeeper::KSK || value.second.keyType == DNSSECKeeper::CSK) {
       Json::array cdses;
       Json::array dses;
-      for (const uint8_t keyid : {DNSSECKeeper::DIGEST_SHA1, DNSSECKeeper::DIGEST_SHA256, DNSSECKeeper::DIGEST_GOST, DNSSECKeeper::DIGEST_SHA384}) {
+      for (const uint8_t keyid : {DNSSECKeeper::DIGEST_SHA256, DNSSECKeeper::DIGEST_SHA384}) {
         try {
           string dsRecordContent = makeDSFromDNSKey(zonename, value.first.getDNSKEY(), keyid).getZoneRepresentation();
 
Unnamed repository; edit this file 'description' to name the repository.