Hi. On 10/06/2017 05:00 PM, Vernon Schryver wrote: > If you will include hooks for an RPZ implementation in your shipped > code as opposed to modified source in a 'contrib' directory that > users must compile specially, I'd be happy to try to propose such > hooks. In other words, I could try to make a patch for Knot Resolver > like the patch that I wrote for Unbound (without cost to NLnet Labs). > If you prefer, you could write the code.
The current very limited implementation of RPZ in knot-resolver [1] is done via a couple dozen lines of lua code, i.e. only JIT-compiled. The approach might remain similar, perhaps a bit more modularized, but in any case I expect it would be included by default, so I wouldn't fear about users having to recompile. [1] https://gitlab.labs.nic.cz/knot/knot-resolver/blob/v1.4.0/modules/policy/policy.lua#L294 --Vladimir _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
