[ldns-users] Caching of DNSKEY/DS RRs for trust chain validation

Willem Toorop Willem at NLnetLabs.nl
Thu Mar 8 10:00:04 CET 2012


Hi Reto,

Proper caching is not an ambition of ldns; At NLnet Labs we also
distribute a resolver library that does just that: libunbound.
I suggest you to have a look at it.

See: http://unbound.net/documentation/libunbound.html
and: http://unbound.net/documentation/libunbound-tutorial-1.html

Good luck,

-- Willem

Op 07-03-12 17:08, rguadagn at hsr.ch schreef:
> Hello,
> 
> I'm using the ldns function "ldns_verify_trusted" to verify the Resource Records I get.
> As I noticed all Resource Records which form the trust chain are fetched again and again (through a call to "ldns_fetch_valid_domain_keys_time") each time I call the function "ldns_verfiy_trusted".
> 
> Is there any caching mechanism in the library which caches DNSKEY/DS Resource Records which have already been validated to speed up the verification process?
> 
> 
> Thanks
> 
> Reto
> _______________________________________________
> ldns-users mailing list
> ldns-users at open.nlnetlabs.nl
> http://open.nlnetlabs.nl/mailman/listinfo/ldns-users



More information about the ldns-users mailing list