]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ce869a5) | patch
Ignore max-zone-ttl on dnssec-policy insecure
authorMatthijs Mekking <matthijs@isc.org>
Wed, 26 Jul 2023 09:50:57 +0000 (11:50 +0200)
committerMatthijs Mekking <matthijs@isc.org>
Tue, 1 Aug 2023 06:56:52 +0000 (08:56 +0200)
commitdc6dafdad1bce4c59bec0dbc355650c384cfc4d9
tree88775e42c3cc7dff74d1f895eb5123d3bdc80c26tree | snapshot
parentce869a521c8b38ad06c77c1100d9aa9fdbcf1be7commit | diff
Ignore max-zone-ttl on dnssec-policy insecure

Allow larger TTL values in zones that go insecure. This is necessary
because otherwise the zone will not be loaded due to the max-zone-ttl
of P1D that is part of the current insecure policy.

In the keymgr.c code, default back to P1D if the max-zone-ttl is set
to zero.
bin/named/config.c diff | blob | blame | history
bin/named/zoneconf.c diff | blob | blame | history
lib/dns/include/dns/kasp.h diff | blob | blame | history
lib/dns/kasp.c diff | blob | blame | history
lib/dns/keymgr.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git