fergalmoran/DnsServer
1
0
Fork 0
mirror of https://github.com/fergalmoran/DnsServer.git synced 2026-03-12 00:19:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

AuthZoneManager: updated LoadTrustAnchorsTo() to skip revoked dns keys.

Browse Source
This commit is contained in:
Shreyas Zare
2022-02-27 19:57:39 +05:30
parent 9b6b78500b
commit 79282be643
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
DnsServerCore/Dns/ZoneManagers/AuthZoneManager.cs
View File

@@ -1897,7 +1897,7 @@ namespace DnsServerCore.Dns.ZoneManagers
{
DnsDNSKEYRecord dnsKey = dnsKeyRecord.RDATA as DnsDNSKEYRecord;
if (dnsKey.Flags.HasFlag(DnsDnsKeyFlag.SecureEntryPoint))
if (dnsKey.Flags.HasFlag(DnsDnsKeyFlag.SecureEntryPoint) && !dnsKey.Flags.HasFlag(DnsDnsKeyFlag.Revoke))
{
DnsDSRecord dsRecord = dnsKey.CreateDS(dnsKeyRecord.Name, DnssecDigestType.SHA256);
dnsClient.AddTrustAnchor(zoneInfo.Name, dsRecord);