ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
Files
c8de677eaeec447b5c8eb562fa025bf57d8fa982
bind9/bin/tests/system/mkeys
History
Evan Hunt a7a2fa296a update system tests so validation won't fail when using IANA key 
- all tests with "recursion yes" now also specify "dnssec-validation yes",
  and all tests with "recursion no" also specify "dnssec-validation no".
  this must be maintained in all new tests, or else validation will fail
  when we use local root zones for testing.
- clean.sh has been modified where necessary to remove managed-keys.bind
  and viewname.mkeys files.
2018-05-31 18:22:33 +02:00
..
ns1
Remove genrandom command and all usage of specific random files throughout the system test suite
2018-05-16 09:54:35 +02:00
ns2
Update license headers to not include years in copyright in all applicable files
2018-02-23 10:12:02 +01:00
ns3
Update license headers to not include years in copyright in all applicable files
2018-02-23 10:12:02 +01:00
ns4
Update license headers to not include years in copyright in all applicable files
2018-02-23 10:12:02 +01:00
ns5
Update license headers to not include years in copyright in all applicable files
2018-02-23 10:12:02 +01:00
clean.sh
update system tests so validation won't fail when using IANA key
2018-05-31 18:22:33 +02:00
prereq.sh
Update license headers to not include years in copyright in all applicable files
2018-02-23 10:12:02 +01:00
README
update file headers
2018-03-15 18:33:13 -07:00
setup.sh
Remove genrandom command and all usage of specific random files throughout the system test suite
2018-05-16 09:54:35 +02:00
tests.sh
Remove genrandom command and all usage of specific random files throughout the system test suite
2018-05-16 09:54:35 +02:00

README 

Copyright (C) Internet Systems Consortium, Inc. ("ISC")

See COPYRIGHT in the source root or http://isc.org/copyright.html for terms.

This is for testing managed-keys, in particular with problems
with RFC 5011 Automated Updates of DNSSEC Trust Anchors.

ns1 is the root server that offers new KSKs and hosts one record for
testing. The TTL for the zone's records is 2 seconds.

ns2 is a validator that uses managed-keys.  "-T mkeytimers=2/20/40"
is used so it will attempt do automated updates frequently. "-T tat=1"
is used so it will send TAT queries once per second.

ns3 is a validator with a broken key in managed-keys.

ns4 is a validator with a deliberately broken managed-keys.bind and
managed-keys.jnl, causing RFC 5011 initialization to fail.

ns5 is a validator which is prevented from getting a response from the
root server, causing key refresh queries to fail.
View Git Blame Copy Permalink