1. 25 Jun, 2018 2 commits
    • Vladimír Čunát's avatar
      val_ta_sentinel_insecure: fix problem with NTA · 31445c99
      Vladimír Čunát authored
      It didn't work properly due to negative trust anchor being outside a
      zone cut, so I move the tested names to an unsigned zone.
      
      root.db: the only real change was addition of "unsigned." delegation,
      causing root-key-sentinel-not-ta-48409.test. NSEC to get modified.
      The other changes are just reordering and drops of "resign=" lines;
      I'm not sure why dnssec-signzone decided to do such changes.
      (I didn't put the unsigned. zone into any zone file.)
      31445c99
    • Vladimír Čunát's avatar
      becadd39
  2. 10 Apr, 2018 1 commit
  3. 05 Mar, 2018 1 commit
  4. 01 Mar, 2018 1 commit
  5. 15 Feb, 2018 2 commits
  6. 02 Feb, 2018 1 commit
  7. 26 Jan, 2018 1 commit
  8. 22 Jan, 2018 2 commits
  9. 27 Nov, 2017 2 commits
  10. 21 Sep, 2017 1 commit
  11. 23 Aug, 2017 1 commit
  12. 17 Aug, 2017 1 commit
  13. 15 Aug, 2017 3 commits
  14. 02 Aug, 2017 1 commit
  15. 24 Jul, 2017 1 commit
    • Vladimír Čunát's avatar
      resolver/val_unknown_algorithm_insecure: fix with kresd · 0c0b91ee
      Vladimír Čunát authored
      In current kresd implementation, in some cases it requires existence
      of RRSIGs and DNSKEYs even if the zone uses an unknown algorithm.
      There seems no indication that missing those records should be OK for
      some future algorithms, so we fix the test instead of kresd, for now.
      0c0b91ee
  16. 17 Jul, 2017 1 commit
  17. 15 Jun, 2017 1 commit
  18. 05 Jun, 2017 1 commit
  19. 19 Apr, 2017 1 commit
  20. 13 Apr, 2017 1 commit
  21. 10 Apr, 2017 1 commit
  22. 03 Apr, 2017 1 commit
  23. 27 Mar, 2017 1 commit
  24. 24 Mar, 2017 4 commits
  25. 23 Mar, 2017 7 commits