On Tue, Jan 24, 2017 at 09:02:46AM +0100, Kirill Miazine wrote:
>
> Let's give it another try:
>
a little inconsistency here... we already note that edns does nothing in
resolv.conf(5) but that file makes no mention of dnssec. so i'm not sure
if something needs to be added to resolv.conf(5) too.
in the meantime i'm ok with the diff if someone wants to ok it. however
the wording we use in resolv.conf(5) is
By default on OpenBSD this option does nothing.
i'd rather stick with that, or adjust resolv.conf(5) if there is some
pressing need.
anyone?
jmc
> Index: lib/libc/net/resolver.3
> ===================================================================
> RCS file: /cvs/src/lib/libc/net/resolver.3,v
> retrieving revision 1.33
> diff -u -p -r1.33 resolver.3
> --- lib/libc/net/resolver.3 16 Dec 2015 18:12:42 -0000 1.33
> +++ lib/libc/net/resolver.3 24 Jan 2017 08:02:01 -0000
> @@ -188,10 +188,12 @@ allowing them to take advantage of a non
> and thus to send larger replies.
> DNS query packets with the EDNS0 extension are not compatible with
> non-EDNS0 DNS servers.
> +At the moment this option does nothing.
> .It Dv RES_USE_DNSSEC
> Request that the resolver uses
> Domain Name System Security Extensions (DNSSEC),
> as defined in RFCs 4033, 4034, and 4035.
> +At the moment this option does nothing.
> .El
> .Pp
> The
>
>
>
