Looks sensible, I've pushed the equivalent, and removed the
now-redundant DSA signature verification code too.
Simon.
On 24/02/2020 07:08, Loganaden Velvindron wrote:
> Google might mangle the patch. Feedback welcomed.
>
> RFC 8624 Section 3.1 (https://www.rfc-editor.org/rfc/rfc8624.txt )says
onday, February 24, 2020 12:08 PM
To: dnsmasq-discuss@lists.thekelleys.org.uk
Subject: [Dnsmasq-discuss] Remove DSA-NSEC3-SHA1 & DSA DNSSEC algorithm as this
is set to status MUST NOT implement in RFC 8624
Google might mangle the patch. Feedback welcomed.
RFC 8624 Section 3.1 (https://www.rfc-e
Google might mangle the patch. Feedback welcomed.
RFC 8624 Section 3.1 (https://www.rfc-editor.org/rfc/rfc8624.txt )says:
3 | DSA| MUST NOT| MUST NOT
6 | DSA-NSEC3-SHA1 | MUST NOT| MUST NOT
I've added them on this gh repo:
1) Remove DSA-NSEC3-SHA