git.ipfire.org Git - thirdparty/bind9.git/commit

]> git.ipfire.org Git - thirdparty/bind9.git/commit

projects / thirdparty / bind9.git / commit

author	Matthijs Mekking <matthijs@isc.org>
	Wed, 4 Sep 2024 14:00:13 +0000 (16:00 +0200)
committer	Matthijs Mekking <matthijs@isc.org>
	Fri, 1 Nov 2024 14:50:16 +0000 (15:50 +0100)
commit	d7f2a2f43781285381ea49771aac31f06ce337c4
tree	75662c77a17792e2e230c5ec80776695b277759b	tree \| snapshot
parent	8cf5f972f4e92b732d34a7715a789c64cdf997e4	commit \| diff

Fix dnssec-ksr to support KSK rollovers

dnssec-ksr can now sign KSR files with multiple KSKs. A planned KSK
rollover is supported, meaning the KSR will first be signed with
one KSK and later with another. The timing metadata for CDS and
CDNSKEY records are also taken into account, so these records are
only published when the time is between "SyncPublish" and "SyncDelete".

bin/dnssec/dnssec-ksr.c

diff | blob | blame | history

Mirror of https://gitlab.isc.org/isc-projects/bind9.git

RSS Atom