ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

Check unsigned serial number in signed zone files

Browse Source 
All signed zone files present in bin/tests/system/inline/ns8 should
contain the unsigned serial number in the raw-format header.  Add a
check to ensure that is the case.  Extend the dnssec-signzone command
line in ns8/sign.sh with the -L option to allow the zones initially
signed there to pass the newly added check.  Add another zone to the
configuration for the ns8 named instance to ensure the check also passes
when multiple zones are inline-signed by a single named instance.
This commit is contained in:
Michał Kępień
2022-01-04 15:41:46 +01:00
committed by Ondřej Surý
parent b65b5dbade
commit ab49205af3
4 changed files with 84 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
util/copyrights
View File

@@ -426,6 +426,7 @@
./bin/tests/system/inline/ns8/sign.sh SH 2020,2021,2022
./bin/tests/system/inline/setup.sh SH 2011,2012,2013,2014,2016,2017,2018,2019,2020,2021,2022
./bin/tests/system/inline/tests.sh SH 2011,2012,2013,2014,2016,2017,2018,2019,2020,2021,2022
./bin/tests/system/inline/tests_signed_zone_files.py PYTHON 2022
./bin/tests/system/integrity/clean.sh SH 2017,2018,2019,2020,2021,2022
./bin/tests/system/integrity/setup.sh SH 2018,2019,2020,2021,2022
./bin/tests/system/integrity/tests.sh SH 2017,2018,2019,2020,2021,2022