mirror of
https://github.com/isc-projects/bind9.git
synced 2026-03-11 02:30:44 -04:00
a2b61c0a65
Send three updates with three different keys, and expect that one of them should fail. Also retain more artifacts for neighboring nsupdate calls.
53 lines
1.5 KiB
Bash
53 lines
1.5 KiB
Bash
#!/bin/sh
|
|
|
|
# Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
|
#
|
|
# SPDX-License-Identifier: MPL-2.0
|
|
#
|
|
# This Source Code Form is subject to the terms of the Mozilla Public
|
|
# License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
# file, you can obtain one at https://mozilla.org/MPL/2.0/.
|
|
#
|
|
# See the COPYRIGHT file distributed with this work for additional
|
|
# information regarding copyright ownership.
|
|
|
|
. ../conf.sh
|
|
|
|
cp -f ns1/example1.db ns1/example.db
|
|
cp -f ns3/noprimary.db ns3/noprimary1.db
|
|
|
|
copy_setports ns1/named.conf.in ns1/named.conf
|
|
copy_setports ns2/named.conf.in ns2/named.conf
|
|
copy_setports ns3/named1.conf.in ns3/named.conf
|
|
|
|
if $FEATURETEST --enable-dnstap; then
|
|
cat <<'EOF' >ns3/dnstap.conf
|
|
dnstap-identity "ns3";
|
|
dnstap-version "xxx";
|
|
dnstap-output file "dnstap.out";
|
|
dnstap { all; };
|
|
EOF
|
|
else
|
|
echo "/* DNSTAP NOT ENABLED */" >ns3/dnstap.conf
|
|
fi
|
|
|
|
#
|
|
# SIG(0) requires cryptographic support which may not be configured.
|
|
#
|
|
keyname=$($KEYGEN -q -n HOST -a ${DEFAULT_ALGORITHM} -T KEY sig0.example2 2>keyname.err)
|
|
if test -n "$keyname"; then
|
|
cat ns1/example1.db $keyname.key >ns1/example2.db
|
|
echo $keyname >keyname
|
|
else
|
|
cat ns1/example1.db >ns1/example2.db
|
|
fi
|
|
cat_i <keyname.err
|
|
|
|
cat ns1/example1.db >ns1/example2-toomanykeys.db
|
|
for i in 1 2 3; do
|
|
keyname=$($KEYGEN -q -n HOST -a ${DEFAULT_ALGORITHM} -T KEY sig0.example2-toomanykeys 2>/dev/null)
|
|
if test -n "$keyname"; then
|
|
cat $keyname.key >>ns1/example2-toomanykeys.db
|
|
echo $keyname >keyname$i
|
|
fi
|
|
done
|