Skip to content
Snippets Groups Projects
Commit 03dd6651 authored by Libor Peltan's avatar Libor Peltan
Browse files

dnssec: avoid checking existing correct RRSIGs twice 

...once in remove_expired_rrsigs(), once in add_missing_rrsigs()
this is important because unlike RSASHA, with ECDSA is checking signature far slower than creating one
little side effect: signatures of DNSKEY record by ZSK are always removed
parent 6ac496a4
No related branches found
No related tags found
1 merge request!1001Resign optimi
Pipeline #48035 passed
Stage: build
Stage: test
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment