]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e2f5390) | patch
Warn about deprecated DNSKEY and DS algorithms / digest types
authorMark Andrews <marka@isc.org>
Thu, 5 Jun 2025 04:49:10 +0000 (14:49 +1000)
committerMark Andrews <marka@isc.org>
Tue, 15 Jul 2025 23:14:22 +0000 (09:14 +1000)
commit2db0806b6c44e28cd0a63c8964cadc1914708b23
tree74c1632d502bde992c87bd6951a4de5739c58fd9tree | snapshot
parente2f539035dd0ff5d25b7668a1fdc3581fcf4f7b4commit | diff
Warn about deprecated DNSKEY and DS algorithms / digest types

DNSKEY algorithms RSASHA1 and RSASHA-NSEC3-SHA1 and DS digest type
SHA1 are deprecated.  Log when these are present in primary zone
files and when generating new DNSKEYs, DS and CDS records.

(cherry picked from commit cb6903c55e9ff6135a37c987fb6cee327967f0db)
bin/dnssec/dnssec-dsfromkey.c diff | blob | blame | history
bin/dnssec/dnssec-keyfromlabel.c diff | blob | blame | history
bin/dnssec/dnssec-keygen.c diff | blob | blame | history
bin/tests/system/checkconf/tests.sh diff | blob | blame | history
lib/dns/dnssec.c diff | blob | blame | history
lib/dns/include/dns/ds.h diff | blob | blame | history
lib/dns/zone.c diff | blob | blame | history
lib/isccfg/kaspconf.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git