ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

4127. [protocol] CDS and CDNSKEY need to be signed by the key signing

Browse Source 
key as per RFC 7344, Section 4.1. [RT #37215]

(cherry picked from commit 598b502695)
This commit is contained in:
Mark Andrews
2015-05-27 15:25:45 +10:00
parent 15203066d1
commit f381cb86da
21 changed files with 717 additions and 75 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
bin/tests/system/dnssec/ns2/named.conf
View File

@@ -107,4 +107,40 @@ zone "in-addr.arpa" {
file "in-addr.arpa.db.signed";
};
zone "cds.secure" {
type master;
file "cds.secure.db.signed";
};
zone "cds-update.secure" {
type master;
file "cds-update.secure.db.signed";
allow-update { any; };
};
zone "cds-auto.secure" {
type master;
file "cds-auto.secure.db.signed";
auto-dnssec maintain;
allow-update { any; };
};
zone "cdnskey.secure" {
type master;
file "cdnskey.secure.db.signed";
};
zone "cdnskey-update.secure" {
type master;
file "cdnskey-update.secure.db.signed";
allow-update { any; };
};
zone "cdnskey-auto.secure" {
type master;
file "cdnskey-auto.secure.db.signed";
auto-dnssec maintain;
allow-update { any; };
};
include "trusted.conf";