]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 77c7d1c) | patch
[master] tag initializing keys so they can't be used for normal validation
authorEvan Hunt <each@isc.org>
Thu, 12 Oct 2017 04:01:13 +0000 (21:01 -0700)
committerEvan Hunt <each@isc.org>
Thu, 12 Oct 2017 04:01:13 +0000 (21:01 -0700)
commit560d8b833edceb4b715fe46b45f2009dc09fdb5d
tree881deb969828c9cdb19972ce191267d003100bd7tree | snapshot
parent77c7d1c5556dee0716a65065f4abf82bb15ccac4commit | diff
[master] tag initializing keys so they can't be used for normal validation

4773. [bug] Keys specified in "managed-keys" statements
can now only be used when validating key refresh
queries during initialization of RFC 5011 key
maintenance. If initialization fails, DNSSEC
validation of normal queries will also fail.
Previously, validation of normal queries could
succeed using the initializing key, potentially
masking problems with managed-keys. [RT #46077]
24 files changed:
CHANGES diff | blob | blame | history
bin/named/server.c diff | blob | blame | history
bin/tests/system/mkeys/README diff | blob | blame | history
bin/tests/system/mkeys/clean.sh diff | blob | blame | history
bin/tests/system/mkeys/ns1/named1.conf diff | blob | blame | history
bin/tests/system/mkeys/ns1/named2.conf diff | blob | blame | history
bin/tests/system/mkeys/ns1/sign.sh diff | blob | blame | history
bin/tests/system/mkeys/ns2/named.args diff | blob | blame | history
bin/tests/system/mkeys/ns4/named.conf [new file with mode: 0644] blob
bin/tests/system/mkeys/ns5/named.conf [new file with mode: 0644] blob
bin/tests/system/mkeys/setup.sh diff | blob | blame | history
bin/tests/system/mkeys/tests.sh diff | blob | blame | history
bin/tests/system/runtime/ns2/named-alt2.conf diff | blob | blame | history
bin/tests/system/runtime/ns2/named-alt3.conf diff | blob | blame | history
bin/tests/system/runtime/ns2/named-alt4.conf diff | blob | blame | history
bin/tests/system/runtime/ns2/named-alt5.conf diff | blob | blame | history
bin/tests/system/runtime/tests.sh diff | blob | blame | history
doc/arm/notes.xml diff | blob | blame | history
lib/dns/client.c diff | blob | blame | history
lib/dns/include/dns/keytable.h diff | blob | blame | history
lib/dns/keytable.c diff | blob | blame | history
lib/dns/tests/keytable_test.c diff | blob | blame | history
lib/dns/validator.c diff | blob | blame | history
lib/dns/zone.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git