| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
* plugin/dnssec: Add support for KSK/ZSK split key setups
* plugin/dnssec: Update README to document split ZSK/KSK operation
|
|
Another thing we can test automatically, we sorta settled on using an
uppercase letter in in t.Log and t.Fatal calls.
Let's just check for this.
|
|
* plugin/dnssec: add per server metrics
final plugin.
Fixes #1696 #1492 #1189
* Move cache cap into handler so we can access the server label
* Remove cache-capacity from it entirely
|
|
* plugin/dnssec: check validityperiod of RRSIGs
Somehow we missed implementing this. If a sig a retrieved from the
cache, but not valid anymore, regenerate it instead of server invalid
signatures.
Fixes #1378
* drop from cache after 3/4 validity
* six days means 6 days
|
|
* plugin/dnssec: implement shotgun from CloudFlare
Put a whole bunch of types in the NSEC bitmap and remove the one that's
being asked for.
Add more records for queries to the apex, SOA, DNSKEY, MX.
|
|
* Rename middleware to plugin
first pass; mostly used 'sed', few spots where I manually changed
text.
This still builds a coredns binary.
* fmt error
* Rename AddMiddleware to AddPlugin
* Readd AddMiddleware to remain backwards compat
|
Manuel Stocker
Miek Gieben
