Merge branch 'matthijs-fix-kasp-test-next-key-event' into 'main'

Update check next key events after rndc checkds See merge request isc-projects/bind9!3937
2025-08-31 14:35:26 +00:00 · 2020-08-13 10:04:10 +00:00
parent eeb8b80547 262b52a154
commit 9bb966d579
1 changed files with 7 additions and 2 deletions
--- a/bin/tests/system/kasp/tests.sh
+++ b/bin/tests/system/kasp/tests.sh
@@ -3681,8 +3681,13 @@ dnssec_verify
 # successor signatures.  This is the retire interval: Dsgn plus the
 # maximum zone TTL plus the zone propagation delay plus retire-safety. For the
 # csk-roll2 policy that means: 12h (because 1d validity and refresh within
-# 12 hours) + 1d + 1h + 1h = 38h = 136800 seconds.
-check_next_key_event 136800
+# 12 hours) + 1d + 1h + 1h = 38h = 136800 seconds.  Prevent intermittent false
+# positives on slow platforms by subtracting the number of seconds which
+# passed between key creation and invoking 'rndc dnssec -checkds'.
+now="$(TZ=UTC date +%s)"
+time_passed=$((now-start_time))
+next_time=$((136800-time_passed))
+check_next_key_event $next_time

 #
 # Zone: step4.csk-roll2.autosign.