[Opendnssec-develop] Signer Testplan: first try

Matthijs Mekking matthijs at NLnetLabs.nl
Wed Apr 8 13:02:22 UTC 2009


Jelte and I have started to setup a test plan for the Signer Engine.
This is the first try, and is incomplete. But this gives a general idea
of the direction we are heading.

During writing some questions popped up, that we would like to bring to
the list.

1. Jitter
We did not have come to a final conclusion about what Jitter exactly means.
- Do we need to add jitter or subtract it from the expiration datetime?
Or is both accepted?
- Is random jitter acceptable? We could also make use of modular jitter.
This ensures a better spreading and give more predictable outcomes
(which can be useful for testing)

Why do we need to configure the NSEC3PARAM TTL in signconf.xml? TTL for
NSEC3PARAM has no value because it is not used by resolvers or validators.

3. Software for component/system testing
Does anyone know good software to create component tests? At NLnet Labs,
we use our homebrew test tool, tpkg. But the issue with it is that it
has never been officially released.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: testplan.pdf
Type: application/pdf
Size: 44683 bytes
Desc: not available
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20090408/b4b3a124/attachment.pdf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 544 bytes
Desc: OpenPGP digital signature
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20090408/b4b3a124/attachment.bin>

More information about the Opendnssec-develop mailing list