b9726ad03c
Add one more case that tests reconfiguring a zone to turn off
inline-signing. It should still be a valid DNSSEC zone and the NSEC3
parameters should not change.
Add another test to ensure that you cannot update the zone with a
NSEC3 record.
(cherry picked from commit 4cd8e8e9c3)
23 lines
764 B
Bash
23 lines
764 B
Bash
#!/bin/sh
|
|
|
|
# Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
|
#
|
|
# SPDX-License-Identifier: MPL-2.0
|
|
#
|
|
# This Source Code Form is subject to the terms of the Mozilla Public
|
|
# License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
# file, you can obtain one at https://mozilla.org/MPL/2.0/.
|
|
#
|
|
# See the COPYRIGHT file distributed with this work for additional
|
|
# information regarding copyright ownership.
|
|
|
|
set -e
|
|
|
|
rm -f dig.out.* rndc.signing.* update.out.* verify.out.*
|
|
rm -f ns*/named.conf ns*/named.memstats ns*/named.run*
|
|
rm -f ns*/*.jnl ns*/*.jbk ns*/managed-keys.bind
|
|
rm -f ns*/K*.private ns*/K*.key ns*/K*.state
|
|
rm -f ns*/dsset-* ns*/*.db ns*/*.db.signed
|
|
rm -f ns*/keygen.out.* ns*/settime.out.*
|
|
rm -f created.key-* *.created unused.key-*
|