1 /* 2 * Copyright (C) Internet Systems Consortium, Inc. ("ISC") 3 * 4 * SPDX-License-Identifier: MPL-2.0 5 * 6 * This Source Code Form is subject to the terms of the Mozilla Public 7 * License, v. 2.0. If a copy of the MPL was not distributed with this 8 * file, you can obtain one at https://mozilla.org/MPL/2.0/. 9 * 10 * See the COPYRIGHT file distributed with this work for additional 11 * information regarding copyright ownership. 12 */ 13 14 {% set alg_roll = alg_roll | default(False) %} 15 {% set policy = "rsasha256" if not alg_roll else "ecdsa256" %} 16 {% set zones = ["kasp", "manual"] %} 17 18 include "kasp.conf"; 19 include "named.common.conf"; 20 21 {% for tld in zones %} 22 zone "step1.algorithm-roll.@tld@" { 23 type primary; 24 file "step1.algorithm-roll.@tld@.db"; 25 dnssec-policy @policy@-@tld@; 26 }; 27 28 {% if alg_roll %} 29 zone "step2.algorithm-roll.@tld@" { 30 type primary; 31 file "step2.algorithm-roll.@tld@.db"; 32 dnssec-policy "ecdsa256-@tld@"; 33 }; 34 35 zone "step3.algorithm-roll.@tld@" { 36 type primary; 37 file "step3.algorithm-roll.@tld@.db"; 38 dnssec-policy "ecdsa256-@tld@"; 39 }; 40 41 zone "step4.algorithm-roll.@tld@" { 42 type primary; 43 file "step4.algorithm-roll.@tld@.db"; 44 dnssec-policy "ecdsa256-@tld@"; 45 }; 46 47 zone "step5.algorithm-roll.@tld@" { 48 type primary; 49 file "step5.algorithm-roll.@tld@.db"; 50 dnssec-policy "ecdsa256-@tld@"; 51 }; 52 53 zone "step6.algorithm-roll.@tld@" { 54 type primary; 55 file "step6.algorithm-roll.@tld@.db"; 56 dnssec-policy "ecdsa256-@tld@"; 57 }; 58 59 {% endif %} 60 {% endfor %} 61
Indexes created Sat Feb 28 05:31:39 UTC 2026