upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-08 17:20:38 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add test that checks NSEC3PARAM TTL

Browse source 
The TTL should be equal to the SOA MINIMUM by default.
This commit is contained in:
Matthijs Mekking 2022-10-12 16:23:11 +02:00
parent 9eaa7e7d37
commit f51901eaca
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
bin/tests/system/nsec3/tests.sh
View file

@ -275,6 +275,14 @@ set_nsec3param "0" "0" "0"
set_key_default_values "KEY1"
echo_i "initial check zone ${ZONE}"
check_nsec3
# Test that NSEC3PARAM TTL is equal to SOA MINIMUM.
n=$((n+1))
echo_i "check TTL of NSEC3PARAM in zone $ZONE ($n)"
ret=0
dig_with_opts +noquestion "@${SERVER}" "$ZONE" NSEC3PARAM > "dig.out.test$n" || ret=1
grep "${ZONE}\..*3600.*IN.*NSEC3PARAM" "dig.out.test$n" > /dev/null || ret=1
test "$ret" -eq 0 || echo_i "failed"
status=$((status+ret))
# Zone: nsec3-dynamic.kasp.
set_zone_policy "nsec3-dynamic.kasp" "nsec3" 1 3600