dnssec: bugfix: key rollovers timing according to real TTLs (!1146) · Merge requests · Knot projects / Knot DNS

GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.

Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.

Libor Peltan requested to merge fix_roll_ttl_change into master Jun 03, 2020

It's necessary to save the DNSKEY TTL and zone maximal TTL at the time of previous rollover step, so that the next step corresponds with TTLs in resolvers' caches.

Admin message

Admin message

dnssec: bugfix: key rollovers timing according to real TTLs

Merge request reports