upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-04 17:24:47 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/bin/tests/system/nsupdate
History
Matthijs Mekking bbfdcc36c8 Add inline-signing to dnssec-policy 
Add an option to enable/disable inline-signing inside the
dnssec-policy clause. The existing inline-signing option that is
set in the zone clause takes priority, but if it is omitted, then the
value that is set in dnssec-policy is taken.

The built-in policies use inline-signing.

This means that if you want to use the default policy without
inline-signing you either have to set it explicitly in the zone
clause:

    zone "example" {
        ...
        dnssec-policy default;
        inline-signing no;
    };

Or create a new policy, only overriding the inline-signing option:

    dnssec-policy "default-dynamic" {
        inline-signing no;
    };

    zone "example" {
        ...
        dnssec-policy default-dynamic;
    };

This also means that if you are going insecure with a dynamic zone,
the built-in "insecure" policy needs to be accompanied with
"inline-signing no;".
2023-08-01 06:55:48 +00:00
..
ans4 Add nsupdate timeout tests 2023-04-03 15:21:43 +00:00
CA Remove trailing whitespace from all text files 2023-06-13 15:05:40 +02:00
krb Use $(...) notation for subshells in system tests 2023-07-14 15:49:18 +02:00
ns1 Test support with legacy HMAC K files with nsupdate 2023-06-29 08:28:48 +10:00
ns2 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
ns3 Add inline-signing to dnssec-policy 2023-08-01 06:55:48 +00:00
ns5 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
ns6 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
ns7 Check GSS-API TKEY against non configured server 2023-07-28 14:38:20 +10:00
ns8 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
ns9 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
ns10 explicitly set dnssec-validation in system tests 2023-06-26 13:41:56 -07:00
.gitignore Extend the nsupdate system test with DoT-related checks 2022-09-23 13:23:49 +00:00
clean.sh Update nsupdate system test 2023-07-20 11:04:23 +02:00
commandlist 3379. [bug] nsupdate terminated unexpectedly in interactive mode 2012-08-22 13:38:51 +10:00
dhparam3072.pem Extend the nsupdate system test with DoT-related checks 2022-09-23 13:23:49 +00:00
knowngood.ns1.after 2534. [func] Check NAPTR records regular expressions and 2009-01-21 05:37:55 +00:00
knowngood.ns1.afterstop 1763. [func] Perform sanity checks on NS records which refer to 2004-11-23 05:23:46 +00:00
knowngood.ns1.before 2534. [func] Check NAPTR records regular expressions and 2009-01-21 05:37:55 +00:00
resolv.conf Update the copyright information in all files in the repository 2022-01-11 09:05:02 +01:00
setup.sh Check GSS-API TKEY against non configured server 2023-07-28 14:38:20 +10:00
tests.sh Check GSS-API TKEY against non configured server 2023-07-28 14:38:20 +10:00
tests_sh_nsupdate.py Add pytest functions for shell system tests 2023-05-22 14:11:39 +02:00
update_test.pl Update the copyright information in all files in the repository 2022-01-11 09:05:02 +01:00
verylarge.in parallelize most system tests 2018-02-22 15:29:02 -08:00