== nginx and openssl ==
The following patch adds Patches that add DNSSEC-TLS functionality to nginx 1.0.4: [http://wiki.mozilla.org/File:Nginxand openssl-1.0.4-pwyll.patch.gz nginx-1.0.4-dnssec-tls.patch.gz]0d can be found in the repository (see below). This requires the generation of a dnssec chain file (see the "ssl_dnssec_chain" option in nginx's conf/nginx.conf). The code to do this has not been released yetis also in the repository (see "generate.c").
This patch Of course, this is adds DNSSEC-TLS useless without a client that also supports this functionality to openssl 1.0A simple telnet-like client has been modified as a proof of concept (client.0d (required for nginxc) : [http://wiki.mozilla.org/File:Openssl-1.0.0d-pwyll.patch.gz openssl-1.0.0d-dnssec-tls.patch.gz]
Of course, this There is useless without also a client patch that also supports adds preliminary support for this functionality. A simple telnet-like client has been written mechanism in Firefox (as a proof of concept, but patch on the code has not yet been releasedmozilla-central branch).
== Code Repository ==
Preliminary code for this project can be found [http://hg.mozilla.org/users/dkeeler_mozilla.com/dnssec-tls/ here].
