]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 315ad2d) | patch
Don't sign non-apex DNSKEY records
authorMark Andrews <marka@isc.org>
Tue, 9 Jan 2024 04:20:09 +0000 (15:20 +1100)
committerMark Andrews <marka@isc.org>
Thu, 16 May 2024 00:28:27 +0000 (10:28 +1000)
commitdd13f41ae193e9f597ac4d18cfb4daf64714907a
tree44a07d4b9b364cf01966e8313f1a6124e5262350tree | snapshot
parent315ad2df7adc7ff36ed435490fec067f11680b31commit | diff
Don't sign non-apex DNSKEY records

DNSKEY can only be validated if it is signed by itself.  Stop
attempting to sign non apex DNSKEY RRsets.
bin/tests/system/doth/example.axfr.good diff | blob | blame | history
bin/tests/system/doth/example8.axfr.good diff | blob | blame | history
bin/tests/system/genzone.sh diff | blob | blame | history
bin/tests/system/xfer/dig1.good diff | blob | blame | history
bin/tests/system/xfer/dig2.good diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git