libdnssec: ignore reserved bits in DNSKEY flags (!1751) · Merge requests · Knot projects / Knot DNS · GitLab

Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.

Vladimír Čunát requested to merge dnskey-flags into master Mar 13, 2025

Otherwise Knot Resolver would be breaking a MUST at the very end of https://datatracker.ietf.org/doc/html/rfc4034#section-2.1.1

Real-life example: https://mailarchive.ietf.org/arch/msg/dd/W4lOTgd8-3NF0pbjtqP7YUz6Puk/