From a8b46fbc807ab5e8477e57db156141121a0a6b09 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Ond=C5=99ej=20Caletka?= Date: Sun, 28 Jun 2015 11:16:30 +0200 Subject: [PATCH] unbound: Support for validating ECDSA DNSSEC signatures MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit This patch enables support for validating ECDSA signatures, which are being deployed more and more in DNSSEC. Proper validating can be tested by observing the AD flag in following query (courtesy of Olafur Gudmundsson, CloudFlare): $ dig ds-4.alg-14-nsec.dnssec-test.org Signed-off-by: Ondřej Caletka --- net/unbound/Makefile | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/net/unbound/Makefile b/net/unbound/Makefile index bc54bb75f3..e39c3b2e32 100644 --- a/net/unbound/Makefile +++ b/net/unbound/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=unbound PKG_VERSION:=1.5.3 -PKG_RELEASE:=1 +PKG_RELEASE:=2 PKG_LICENSE:=BSD-3-Clause PKG_LICENSE_FILES:=LICENSE @@ -109,7 +109,6 @@ define Package/libunbound/description endef CONFIGURE_ARGS += \ - --disable-ecdsa \ --disable-gost \ --enable-allsymbols \ --with-libexpat="$(STAGING_DIR)/usr" \ -- 2.30.2