upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-27 20:25:55 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
bind9/lib
History
Matthijs Mekking 6a60bf637d Update smart signing when key is offline 
BIND 9 is smart about when to sign with what key. If a key is offline,
BIND will delete the old signature anyway if there is another key to
sign the RRset with.

With KASP we don't want to fallback to the KSK if the ZSK is missing,
only for the SOA RRset. If the KSK is missing, but we do have a ZSK,
deleting the signature is fine. Otherwise it depends on if we use KASP
or not. Update the 'delsig_ok' function to reflect that.
2021-05-05 11:13:19 +02:00
..
bind9 named-checkconf now detects redefinition of dnssec-policy 'insecure' 2021-05-05 16:23:19 +10:00
dns Update smart signing when key is offline 2021-05-05 11:13:19 +02:00
irs Record skipped unit test as skipped in Automake framework 2021-02-15 11:18:03 +01:00
isc Add support for generating backtraces on Windows 2021-05-03 20:31:52 +02:00
isccc Record skipped unit test as skipped in Automake framework 2021-02-15 11:18:03 +01:00
isccfg inline-signing should have been in zone_only_clauses 2021-05-04 23:35:59 +00:00
ns Add nanosleep and usleep Windows shims 2021-05-03 20:22:54 +02:00
win32/bindevt update all copyright headers to eliminate the typo 2020-09-14 16:20:40 -07:00
.gitignore Provide unit test driver 2020-05-21 12:13:01 +02:00
Makefile.am move samples/resolve.c to bin/tests/system 2021-04-16 14:29:43 +02:00
unit-test-driver.sh.in Enforce a run time limit on unit test binaries 2021-04-07 11:41:45 +02:00