ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
Files
796a6c4e4e5872a85289097ee1e7f5eaed16c8a6
bind9/bin/tests/system/dnssec
History
Tony Finch 796a6c4e4e Deprecate SHA-1 in dnssec-dsfromkey 
This makes the `-12a` options to `dnssec-dsfromkey` work more like
`dnssec-cds`, in that you can specify more than one digest and you
will get multiple records. (Previously you could only get one
non-default digest type at a time.)

The default is now `-2`. You can get the old behaviour with `-12`.

Tests and tools that use `dnssec-dsfromkey` have been updated to use
`-12` where necessary.

This is for conformance with the DS/CDS algorithm requirements in
https://tools.ietf.org/html/draft-ietf-dnsop-algorithm-update
2019-05-08 18:17:55 -07:00
..
ns1
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
ns2
Simplify trailing period handling in system tests
2019-04-26 20:38:02 +02:00
ns3
Simplify trailing period handling in system tests
2019-04-26 20:38:02 +02:00
ns4
remove "dnssec-enable" from all system tests
2019-03-14 23:30:13 -07:00
ns5
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
ns6
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
ns7
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
ns8
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
signer
clean.sh
Add test for ZSK rollover while KSK offline
2019-04-11 15:22:30 +02:00
dnssec_update_test.pl
ntadiff.pl
prereq.sh
Run the dnssec system tests with set -e enabled
2018-12-10 19:47:32 +01:00
README
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
setup.sh
Ignore trust anchors using disabled algorithm
2019-03-19 17:14:18 +01:00
tests.sh
Deprecate SHA-1 in dnssec-dsfromkey
2019-05-08 18:17:55 -07:00

README 

Copyright (C) Internet Systems Consortium, Inc. ("ISC")

See COPYRIGHT in the source root or http://isc.org/copyright.html for terms.

The test setup for the DNSSEC tests has a secure root.

ns1 is the root server.

ns2 and ns3 are authoritative servers for the various test domains.

ns4 is a caching-only server, configured with the correct trusted key
for the root.

ns5 is a caching-only server, configured with the an incorrect trusted
key for the root.  It is used for testing failure cases.

ns6 is a caching-only server configured to use DLV.

ns7 is used for checking non-cacheable answers.

ns8 is a caching-only server, configured with unsupported and disabled
algorithms.  It is used for testing failure cases.
View Git Blame Copy Permalink