head	1.2;
access;
symbols
	pkgsrc-2013Q2:1.2.0.4
	pkgsrc-2013Q2-base:1.2
	pkgsrc-2012Q4:1.2.0.2
	pkgsrc-2012Q4-base:1.2;
locks; strict;
comment	@# @;


1.2
date	2012.10.25.20.59.46;	author he;	state dead;
branches;
next	1.1;

1.1
date	2012.10.08.13.58.48;	author he;	state Exp;
branches;
next	;


desc
@@


1.2
log
@Update to sync with the ldns update to version 1.6.15.

This changes the default trust anchor file from the dig-compatible
value to a default of /usr/pkg/etc/unbound/root.key.

Part of change log relevant to drill:

        * Configurable default trust anchor with --with-trust-anchor=FILE
          for drill, ldns-verify-zone and ldns-dane
        * bugfix #473: Dead code removal and resource leak fix in drill
@
text
@$NetBSD: patch-ab,v 1.1 2012/10/08 13:58:48 he Exp $

Document the automatic probing for /etc/trusted-key.key.

--- drill.1.orig	2010-08-06 07:09:45.000000000 +0000
+++ drill.1
@@@@ -161,6 +161,13 @@@@ given \fBdrill\fR tries to validate the 
 key. No chasing is done. When \fBdrill\fR is doing a secure trace, this
 key will be used as trust anchor. Can contain a DNSKEY or a DS record.
 
+Alternatively, if
+\fB-k\fR
+is not specified, and
+\fI/etc/trusted-key.key\fR
+exists and contains a valid DNSKEY or DS record, it will be used
+as the trust anchor.
+
 .TP
 \fB\-o \fImnemonic\fR
 Use this option to set or unset specific header bits. A bit is
@


1.1
log
@Add a patch each to code and documentation so that drill probes
for /etc/trusted-key.key, and uses that as a trust anchor if neither
-D nor -k options were specified. This feature is borrowed from
BIND's dig when it is compiled with SIGCHASE support.  Bump
PKGREVISION.
@
text
@d1 1
a1 1
$NetBSD$
@