[Opendnssec-develop] Trailing dot in enforcer

Siôn Lloyd sion at nominet.org.uk
Wed Mar 2 11:34:47 UTC 2011

I've committed the code that I think takes care of the trailing dot. There are 
a couple of cases that are not covered.

Firstly a zone "." will be left as-is.

Secondly, if the user edits the zonelist and includes a zone with a trailing 
dot then they will need to be consistent.

So, if you call "ods-ksmutil zone add -z test." the zone "test" is added. You 
can then interact with this zone via "-z test" _or_ "-z test." (E.g. issuing 
the ds-seen command.)

However, if you add "test." directly to zonelist.xml then you will need to use 
"-z test.". (This is to avoid trashing existing zones which have trailing 

The other time when the dot is significant is on zone delete where "-z test." 
will not delete a zone called "test" and vice versa...

Does this seem reasonable?


More information about the Opendnssec-develop mailing list