5887N/ACopyright (C) 2015, 2016 Internet Systems Consortium, Inc. ("ISC")
5887N/AThis Source Code Form is subject to the terms of the Mozilla Public
5887N/ALicense, v. 2.0. If a copy of the MPL was not distributed with this
5887N/AThis is for testing managed-keys, in particular with problems
5887N/Awith RFC 5011 Automated Updates of DNSSEC Trust Anchors.
5887N/Ans1 is the root server that offers new KSKs and hosts one record for
5887N/Atesting. The TTL for the zone's records is 2 seconds.
5887N/Ans2 is a validator that uses managed-keys. "-T mkeytimers=2/20/40"
5887N/Ais used so it will attempt do automated updates frequently. "-T tat=1"
5887N/Ais used so it will send TAT queries once per second.
5887N/Ans3 is a validator with a broken key in managed-keys.
5887N/ATODO: test using delv with new trusted key too
5887N/ATODO: also same things with dlv auto updates of trust anchor