Browse Source

unbound: Support for validating ECDSA DNSSEC signatures

This patch enables support for validating ECDSA signatures, which
are being deployed more and more in DNSSEC.

Proper validating can be tested by observing the AD flag in following
query (courtesy of Olafur Gudmundsson, CloudFlare):
 $ dig ds-4.alg-14-nsec.dnssec-test.org

Signed-off-by: Ondřej Caletka <ondrej@caletka.cz>
lilik-openwrt-22.03
Ondřej Caletka 10 years ago
parent
commit
a8b46fbc80
1 changed files with 1 additions and 2 deletions
  1. +1
    -2
      net/unbound/Makefile

+ 1
- 2
net/unbound/Makefile View File

@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk
PKG_NAME:=unbound PKG_NAME:=unbound
PKG_VERSION:=1.5.3 PKG_VERSION:=1.5.3
PKG_RELEASE:=1
PKG_RELEASE:=2
PKG_LICENSE:=BSD-3-Clause PKG_LICENSE:=BSD-3-Clause
PKG_LICENSE_FILES:=LICENSE PKG_LICENSE_FILES:=LICENSE
@ -109,7 +109,6 @@ define Package/libunbound/description
endef endef
CONFIGURE_ARGS += \ CONFIGURE_ARGS += \
--disable-ecdsa \
--disable-gost \ --disable-gost \
--enable-allsymbols \ --enable-allsymbols \
--with-libexpat="$(STAGING_DIR)/usr" \ --with-libexpat="$(STAGING_DIR)/usr" \


Loading…
Cancel
Save