[Opendnssec-develop] New zone reader
Matthijs Mekking
matthijs at NLnetLabs.nl
Tue Feb 16 11:00:53 UTC 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
I have just committed the new zone reader to trunk. This new tool uses a
lot of the structures that are going to be used in the new signer engine.
Basically, it takes the sorted zone file and adds empty non-terminals to
it, defines glue and unsigned delegations. It could also work on the
.unsorted file. It adds NSEC and NSEC3 records where necessary. The
nseccer and nsec3er tool become obsolete. No .processed files are
created anymore.
In case of NSEC: All glue records go into the <zone>.optout file.
In case of NSEC3: All glue records and unsigned delegations (in case of
optout) go into the <zone>.optout file.
The signer is presented with the other records, just like in versions
1.0.0 and before.
The finalizer glues back the .optout file to the .finalized file.
I would be grateful if you could test it.
Best regards,
Matthijs
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQEcBAEBAgAGBQJLenriAAoJEA8yVCPsQCW5LF4IAJNnikUfF7wZpMi7aHrgIiay
VW0Fb0gDYdG2JttXdz8wt/5b2USjGsMB2pl+whwvKK61RIMxRdcTzHzE1cjGjC9+
1KnSSy+msH4qo+AYCno0FarHDKg+QrQtt2PZJKm69BqG2/TWylbiL8zQViCllsCv
l0TdkG/MAmGtG0QeXZd2TnznHmCMDx7cOkii6Eb6V8C8/kZz/h7niVT/ty2nUIT/
XsKxxXfk5MZmLsSQ6mxg76ElbrBiREukbhAJLiMTv0PmKDDHJN/vqSsoaJViOmtC
z02NduYUmgdXXepJ2792csn5M5moeqPzl9k56ChKuydE2mcliEYTYiQ5BDRwDtM=
=Fi6f
-----END PGP SIGNATURE-----
More information about the Opendnssec-develop
mailing list