Skip to content
GitLab

trust anchors: improvements around DNSKEY refusal 

- also refuse revoked DNSKEY (explicitly configured as TA)
- also downgrade missing the SEP bit to a warning
- explicit message when DNSKEY is refused, even without --verbose
- code rewrite, handle flags in a better way than "== 257"
31 jobs for dnssec_log
in 35 minutes and 25 seconds and was queued for 3 seconds
677282e5
1 related merge request: !737 Improvements for DNSSEC logging: trust anchors