Add changes and notes for [#2408]

author Matthijs Mekking <matthijs@isc.org>

Tue, 9 Feb 2021 13:42:05 +0000 (14:42 +0100)

committer Matthijs Mekking <matthijs@isc.org>

Tue, 23 Feb 2021 08:17:24 +0000 (09:17 +0100)
author Matthijs Mekking <matthijs@isc.org>
Tue, 9 Feb 2021 13:42:05 +0000 (14:42 +0100)
committer Matthijs Mekking <matthijs@isc.org>
Tue, 23 Feb 2021 08:17:24 +0000 (09:17 +0100)
diff --git a/CHANGES b/CHANGES

index 28aef3bef5354638f9e09f414c8143428a35f306..89f9500843a8228179d1377d7398f43e89ce0d0a 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,7 @@
+5588.  [func]          Add "purge-keys" option to "dnssec-policy". This sets
+                       the time how long key files should be retained after
+                       they have become obsolete. [GL #2408]
+
  5587.  [bug]           A standalone libtool script no longer needs to be
                         present in PATH in order to build BIND 9 from a source
                         tarball prepared using "make dist". [GL #2504]
diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst

index 508fbb02260e4a265dab6c0769c88d696d80d24d..c08c6f6954b096975bf4f8478b1dfce37f8ea21d 100644 (file)
--- a/doc/notes/notes-current.rst
+++ b/doc/notes/notes-current.rst
@@ -26,6 +26,11 @@ New Features
  
  - None.
  
+- A new option, ``purge-keys``, has been added to ``dnssec-policy``. It sets
+  the time how long key files should be retained after they have become
+  obsolete (due to a key rollover). Default is 90 days, and the feature can
+  be disabled by setting it to 0. [GL #2408]
+
  Removed Features
  ~~~~~~~~~~~~~~~~
author	Matthijs Mekking <matthijs@isc.org>
	Tue, 9 Feb 2021 13:42:05 +0000 (14:42 +0100)
committer	Matthijs Mekking <matthijs@isc.org>
	Tue, 23 Feb 2021 08:17:24 +0000 (09:17 +0100)
CHANGES		patch \| blob \| blame \| history
doc/notes/notes-current.rst		patch \| blob \| blame \| history