git.ipfire.org Git - thirdparty/bind9.git/commit

author	Matthijs Mekking <matthijs@isc.org>
	Tue, 7 Apr 2020 13:51:43 +0000 (15:51 +0200)
committer	Matthijs Mekking <matthijs@isc.org>
	Wed, 8 Apr 2020 07:47:36 +0000 (09:47 +0200)
commit	0d050323c08c06b426e045e3759b262c20a2224e
tree	4e750a1375eae95404148b8ab375fa2d9642859b	tree \| snapshot
parent	02a2de8adbae167eb31cef31827ce253e35ec95a	commit \| diff

Increase migrate.kasp DNSKEY TTL

Increate the DNSKEY TTL of the migrate.kasp zone for the following
reason:  The key states are initialized depending on the timing
metadata. If a key is present long enough in the zone it will be
initialized to OMNIPRESENT.  Long enough here is the time when it
was published (when the setup script was run) plus DNSKEY TTL.
Otherwise it is set to RUMOURED, or to HIDDEN if no timing metadata
is set or the time is still in the future.

Since the TTL is "only" 5 minutes, the DNSKEY state may be
initialized to OMNIPRESENT if the test is slow, but we expect it
to be in RUMOURED state.  If we increase the TTL to a couple of
hours it is very unlikely that it will be initialized to something
else than RUMOURED.

(cherry picked from commit 04e67110290dd0fa1157a32dfca04af4f8f8f4c0)

bin/tests/system/kasp/ns6/policies/kasp.conf		diff \| blob \| blame \| history
bin/tests/system/kasp/ns6/setup.sh		diff \| blob \| blame \| history
bin/tests/system/kasp/tests.sh		diff \| blob \| blame \| history