Archives
/
ncdns
mirror of https://github.com/namecoin/ncdns
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Move RRSIG inception time slightly into the past to account for clock skew.

Browse Source
pull/18/head
Hugo Landau 10 years ago
parent ba25f39c86
commit 14eda99127
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
util.go
Unescape Escape View File

@ -133,7 +133,7 @@ func (tx *Tx) signRRs(rra []dns.RR, useKSK bool) (dns.RR, error) {
Hdr: dns.RR_Header { Ttl: maxttl, }, Hdr: dns.RR_Header { Ttl: maxttl, },
Algorithm: dns.RSASHA256, Algorithm: dns.RSASHA256,
Expiration: uint32(now.Add(exp).Unix()), Expiration: uint32(now.Add(exp).Unix()),
Inception: uint32(now.Unix()), Inception: uint32(now.Add(time.Duration(-10)*time.Minute).Unix()),
SignerName: absname(tx.soa.Hdr.Name), SignerName: absname(tx.soa.Hdr.Name),
} }
pk := tx.s.zskPrivate pk := tx.s.zskPrivate

Write Preview
Loading…
Cancel
Save