[Opendnssec-user] TTL clamped to minimum 3600?

Havard Eidnes he at uninett.no
Fri Jan 22 22:53:07 UTC 2016

> [...] So it looks like only a TTL change doesn't make the
> record show up in IXFR (while it should), so the previous TTL
> will stick around.

...and I'm wondering if this piece of code has something to do
with the absence of the "only-ttl-changed" records in the IXFR:

signer/zone.c's zone_add_rr() has this piece of code:

    record = rrset_lookup_rr(rrset, rr);
    if (record) {
        record->is_added = 1; /* already exists, just mark added */
        record->is_removed = 0; /* unset is_removed */
        if (ldns_rr_ttl(rr) != ldns_rr_ttl(record->rr)) {
            ldns_rr_set_ttl(record->rr, ldns_rr_ttl(rr));
            rrset->needs_signing = 1;
        return ODS_STATUS_UNCHANGED;
    } else {

Should some other status than ODS_STATUS_UNCHANGED be returned if
the TTLs are different, such as ODS_STATUS_OK instead?


- Håvard

More information about the Opendnssec-user mailing list