Merge branch '2027-update-managed-keys-log-messages' into 'main'

Resolve "Slightly misleading diagnostic when revoked key is removed from managed-keys zone"

Closes #2027

See merge request isc-projects/bind9!3934

CHANGES

@@ -1,3 +1,6 @@
+5487.	[cleanup]	Update managed keys log messages to be less confusing.
+			[GL #2027]
+
 5486.	[func]		Add 'rndc dnssec -checkds' command to tell named
 			that the DS record has been published in the parent.
 			[GL #1613]

lib/dns/zone.c

@@ -10252,9 +10252,9 @@ anchors_done:
 			} else if (keydata.addhd > now) {
 				dnssec_log(zone, ISC_LOG_INFO,
 					   "Pending key %d for zone %s "
-					   "unexpectedly missing "
+					   "unexpectedly missing from DNSKEY "
-					   "restarting 30-day acceptance "
+					   "RRset: restarting 30-day "
-					   "timer",
+					   "acceptance timer",
 					   keytag, namebuf);
 				if (keydata.addhd < now + dns_zone_mkey_month) {
 					keydata.addhd = now +
@@ -10264,15 +10264,17 @@ anchors_done:
 			} else if (keydata.removehd == 0) {
 				dnssec_log(zone, ISC_LOG_INFO,
 					   "Active key %d for zone %s "
-					   "unexpectedly missing",
+					   "unexpectedly missing from DNSKEY "
+					   "RRset",
 					   keytag, namebuf);
 				keydata.refresh = now + dns_zone_mkey_hour;
 			} else if (keydata.removehd <= now) {
 				deletekey = true;
-				dnssec_log(zone, ISC_LOG_INFO,
+				dnssec_log(
-					   "Revoked key %d for zone %s "
+					zone, ISC_LOG_INFO,
-					   "missing: deleting from "
+					"Revoked key %d for zone %s no longer "
-					   "managed keys database",
+					"present in DNSKEY RRset: deleting "
+					"from managed keys database",
 					keytag, namebuf);
 			} else {
 				keydata.refresh = refresh_time(kfetch, false);