DNSSEC rrsig_expiration calculation (#977)

author Shaft Inc <141560544+ShaftInc@users.noreply.github.com>

Sun, 6 Aug 2023 17:33:32 +0000 (19:33 +0200)

committer GitHub <noreply@github.com>

Sun, 6 Aug 2023 17:33:32 +0000 (10:33 -0700)
author Shaft Inc <141560544+ShaftInc@users.noreply.github.com>
Sun, 6 Aug 2023 17:33:32 +0000 (19:33 +0200)
committer GitHub <noreply@github.com>
Sun, 6 Aug 2023 17:33:32 +0000 (10:33 -0700)
diff --git a/dns/dnssec.py b/dns/dnssec.py

index d63fc5a97e2eb489097a9eab82b7f2d5a6f387b8..2949f61977db17937e0a1895bb7a446f3d6a0af2 100644 (file)
--- a/dns/dnssec.py
+++ b/dns/dnssec.py
@@ -549,7 +549,7 @@ def _sign(
      if expiration is not None:
          rrsig_expiration = to_timestamp(expiration)
      elif lifetime is not None:
-        rrsig_expiration = int(time.time()) + lifetime
+        rrsig_expiration = rrsig_inception + lifetime
      else:
          raise ValueError("expiration or lifetime must be specified")
author	Shaft Inc <141560544+ShaftInc@users.noreply.github.com>
	Sun, 6 Aug 2023 17:33:32 +0000 (19:33 +0200)
committer	GitHub <noreply@github.com>
	Sun, 6 Aug 2023 17:33:32 +0000 (10:33 -0700)