Skip to content
Snippets Groups Projects
Select Git revision
  • separate-library
  • restore-cache-ops
  • anb/cache-stats
  • scan-fixes
  • master default
  • tmpfiles-create-cache
  • additional-path-fixes
  • ci-enable-infer
  • query-trace
  • cache-aggr-wip
  • marek/staging-changes
  • http-allow-reuseport
  • dnssec-by-default
  • keyfile-arg
  • vendor-ljdns
  • time-travel-detection
  • add-version-in-lua
  • zzz_archive_allow-separate-udp-tcp
  • packaging-docs
  • monotonic-time2
  • v1.5.1
  • v1.5.0
  • v1.99.1-alpha
  • v1.4.0
  • v1.3.3
  • v1.3.2
  • v1.3.1
  • v1.3.0
  • 1.3.0-rc1
  • v1.2.6
  • v1.2.5
  • v1.2.4
  • v1.2.3
  • v1.2.2
  • v1.2.1
  • v1.2.0
  • v1.2.0-rc3
  • v1.2.0-rc2
  • v1.2.0-rc1
  • v1.1.1
40 results
Blame History Permalink
  • Marek Vavruša's avatar
    lib/zonecut: do not fetch DS/DNSKEY for cached insecure delegations · b2838cc1
    Marek Vavruša authored 
    when a delegation is provably insecure, it is flagged as INSECURE in
cache (this is different from "unchecked"), when the next query finds
the same zone cut, this information is retrieved and if it was proved to
be insecure before, this status is reused

this prevents refetching of NS/DNSKEY in some situations
    b2838cc1
Forked from Knot projects / Knot Resolver
Source project has a limited visibility.