[master] max-zone-ttl
3746. [func] New "max-zone-ttl" option enforces maximum TTLs for zones. If loading a zone containing a higher TTL, the load fails. DDNS updates with higher TTLs are accepted but the TTL is truncated. (Note: Currently supported for master zones only; inline-signing slaves will be added.) [RT #38405]
This commit is contained in:
Evan Hunt
17
bin/tests/system/nsupdate/tests.sh
Normal file → Executable file
17
bin/tests/system/nsupdate/tests.sh
Normal file → Executable file
@@ -552,6 +552,23 @@ if [ $ret -ne 0 ]; then
|
||||
status=1
|
||||
fi
|
||||
|
||||
n=`expr $n + 1`
|
||||
ret=0
|
||||
echo "I:check that ttl is capped by max-ttl ($n)"
|
||||
$NSUPDATE <<END > /dev/null || ret=1
|
||||
server 10.53.0.1 5300
|
||||
update add cap.max-ttl.nil. 600 A 10.10.10.3
|
||||
update add nocap.max-ttl.nil. 150 A 10.10.10.3
|
||||
send
|
||||
END
|
||||
sleep 2
|
||||
$DIG @10.53.0.1 -p 5300 cap.max-ttl.nil | grep "^cap.max-ttl.nil. 300" > /dev/null 2>&1 || ret=1
|
||||
$DIG @10.53.0.1 -p 5300 nocap.max-ttl.nil | grep "^nocap.max-ttl.nil. 150" > /dev/null 2>&1 || ret=1
|
||||
if [ $ret -ne 0 ]; then
|
||||
echo "I:failed"
|
||||
status=1
|
||||
fi
|
||||
|
||||
n=`expr $n + 1`
|
||||
ret=0
|
||||
echo "I:add a record which is truncated when logged. ($n)"
|
||||
|
||||
Reference in New Issue
Block a user