- 09 May, 2022 1 commit
-
-
Vladimír Čunát authored
-
- 26 Apr, 2022 2 commits
-
-
Vladimír Čunát authored
The test was removed by commit 5573a6dd.
-
Vladimír Čunát authored
For now at least. This basically reverts 68abde7f which tried to make it work, but this negative trust anchor was a really bad idea. The test (also) relies on names underneath getting validated and used by aggressive cache later. (They are also signed as belonging to the root zone, so it's ugly.) With "previous" kresd versions the problematic NSEC inside somehow validated as secure, but I don't want to be restricted here.
-
- 24 Mar, 2022 1 commit
-
-
Tomas Krizek authored
Support for BIND See merge request !217
-
- 20 Mar, 2022 1 commit
-
-
Petr Špaček authored
Older versions of BIND require commenting out qname-minimization configuration. BIND builds linked to jemalloc or Clang ASAN will fail to start on systems with libfaketime versions > 0.9.6: - jemalloc https://github.com/wolfcw/libfaketime/issues/130 - Clang ASAN https://github.com/wolfcw/libfaketime/issues/365
-
- 16 Feb, 2022 1 commit
-
-
Petr Špaček authored
BIND 9.17.22 treated the old responses as "non-improving delegation".
-
- 15 Feb, 2022 8 commits
-
-
Tomas Krizek authored
ci: fix some pylint issues See merge request !215
-
Tomas Krizek authored
-
Tomas Krizek authored
-
Tomas Krizek authored
-
Tomas Krizek authored
-
Tomas Krizek authored
improve links and e-mail contact See merge request !216
-
Vladimír Čunát authored
It was migrated long ago. The old URLs still work (redirect) at this point, but I see no reason to keep using them.
-
Vladimír Čunát authored
It's not ideal, but so far the communication traffic has been very low.
-
- 15 Nov, 2021 1 commit
-
-
Štěpán Balážik authored
template/kresd: replace verbose log with request log See merge request !213
-
- 22 Oct, 2021 1 commit
-
-
Tomas Krizek authored
Since kresd 5.4.0, using both debug level logging _and_ request log will duplicate the request log lines in the output. I think it is sufficient to log just everything related to the request and otherwise stick with the default log level. This makes the resulting log more readable.
-
- 03 May, 2021 1 commit
-
-
Tomas Krizek authored
val_iter_high.rpl: new tests for NSEC3 with many iterations See merge request !212
-
- 30 Apr, 2021 2 commits
-
-
Vladimír Čunát authored
It works with Unbound, too. The wildcard part triggers an assertion in kresd 5.3.1.
-
Vladimír Čunát authored
-
- 16 Apr, 2021 1 commit
-
-
Vladimír Čunát authored
I wanted to pass --junitxml=path/file.xml and the logs from the currently empty set of tests were overwriting the interesting ones; the other way it will be just fine ;-)
-
- 02 Feb, 2021 3 commits
-
-
Štěpán Balážik authored
iter_formerr.rpl: remove for now See merge request !210
-
Vladimír Čunát authored
Note: it was confusing that the copy of iter_formerr.rpl started already one step above the comment describing it.
-
Vladimír Čunát authored
We need to control EDNS presence in the auth packet to test this well.
-
- 27 Jan, 2021 2 commits
-
-
Štěpán Balážik authored
remove kresd's option NO_THROTTLE See merge request !209
-
Štěpán Balážik authored
-
- 25 Jan, 2021 3 commits
-
-
Štěpán Balážik authored
Accomodate workaround changes in Knot Resolver See merge request !208
-
Štěpán Balážik authored
There might be more missing, these will be uncovered by more runs in CI, I quess.
-
Štěpán Balážik authored
Fix for resolver that does apply query minimization.
-
- 31 Dec, 2020 1 commit
-
-
Vladimír Čunát authored
-
- 17 Dec, 2020 9 commits
-
-
Štěpán Balážik authored
Some are intentional and since rplint doesn't allow selective disabling of checks, we have to live with them for now.
-
Štěpán Balážik authored
-
Štěpán Balážik authored
This allows the test to work with more adventurous DNS resolvers which search for missing AAAA records on NS names. We also avoid resigning the whole test by selectively turning off validation for some subtrees. This however triggers a probable bug in Knot Resolver which tries to validate names from zones that are set as insecure. We therefore use built-in root hints which is fragile but works for now.
🤷 -
Štěpán Balážik authored
-
Štěpán Balážik authored
Partial fix for #65.
-
Štěpán Balážik authored
This is a workaround for knot-resolver#626 and to avoid rewriting/regenerationg some of signed tests with missing A records.
-
Štěpán Balážik authored
-
Štěpán Balážik authored
-
Štěpán Balážik authored
-
- 26 Nov, 2020 2 commits
-
-
Štěpán Balážik authored
-
Štěpán Balážik authored
-