]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 837adb9) | patch
Add test for dnssec-signzone smooth ZSK roll
authorMatthijs Mekking <matthijs@isc.org>
Tue, 20 Jul 2021 06:34:10 +0000 (08:34 +0200)
committerMatthijs Mekking <matthijs@isc.org>
Wed, 11 Aug 2021 13:15:25 +0000 (15:15 +0200)
commit35efbc270fdc4e18efc7d38652a871f921084faf
tree99e8d08f2bafeb8cd45f3fa29235ad905e6ac5bdtree | snapshot
parent837adb93d3fe6ffad7aa8a7af58718930978545fcommit | diff
Add test for dnssec-signzone smooth ZSK roll

Add a test case to the dnssec system test to check that:
- a zone with a prepublished key is only signed with the active key.
- a zone with an inactive key but valid signatures retains those
  signatures and does not add signatures from successor key.
- signatures are swapped in a zone when signatures of predecessor
  inactive key are within the refresh interval.
bin/tests/system/dnssec/tests.sh diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git