Open rolandshoemaker opened 7 years ago
@rolandshoemaker was this resolved by https://github.com/letsencrypt/boulder/pull/2716 ?
This is related to the Present: xxx, Valid for issuance: xxx
logging code in the VA.
The metric set in https://github.com/letsencrypt/boulder/pull/2716 no longer exists, so we're no longer collecting this data, let alone logging it. This data is particularly of interest again as we work with the Princeton CITP on investigating the benefits of DNSSEC on the WebPKI.
Simplest solution is just to check if the resolver set the AD bit in the response in our
LookupCAA
function.