git.ipfire.org Git - thirdparty/bind9.git/commit

author	Matthijs Mekking <matthijs@isc.org>
	Thu, 22 May 2025 09:23:48 +0000 (11:23 +0200)
committer	Matthijs Mekking <matthijs@isc.org>
	Thu, 19 Jun 2025 09:42:04 +0000 (11:42 +0200)
commit	54a68a4a97c78743ce15ecfc97e6d985c9372d34
tree	d269ae49ef614d534f7332d412b8ae6bcf4ab5dd	tree \| snapshot
parent	61b2b4074e046a1204cdd457d3658b7012a1263c	commit \| diff

Fix spurious missing key files log messages

This happens because old key is purged by one zone view, then the other
is freaking out about it.

Keys that are unused or being purged should not be taken into account
when verifying key files are available.

The keyring is maintained per zone. So in one zone, a key in the
keyring is being purged. The corresponding key file is removed.

The key maintenance is done for the other zone view. The key in that
keyring is not yet set to purge, but its corresponding key file is
removed. This leads to "some keys are missing" log errors.

We should not check the purge variable at this point, but the
current time and purge-keys duration.

This commit fixes this erroneous logic.

(cherry picked from commit d494698852e21e25d65d1e2453813a7b19a0a755)

lib/dns/dst_api.c		diff \| blob \| blame \| history
lib/dns/include/dns/keymgr.h		diff \| blob \| blame \| history
lib/dns/include/dst/dst.h		diff \| blob \| blame \| history
lib/dns/keymgr.c		diff \| blob \| blame \| history
lib/dns/zone.c		diff \| blob \| blame \| history