From: Remi Gacogne <remi.gacogne@powerdns.com>
Date: Mon, 3 Jul 2017 08:56:19 +0000 (+0200)
Subject: rec: Fix invalid test for Secure to Insecure on the same auth servers
X-Git-Tag: rec-4.1.0-alpha1~39^2~1
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=9fd5d8bd048536751cf4f31bcc297c3d06c81ea4;p=pdns

rec: Fix invalid test for Secure to Insecure on the same auth servers

The answer for the NS of the insecure sub-zone have neither RRSIG nor
secure DS denial.
---

diff --git a/pdns/recursordist/test-syncres_cc.cc b/pdns/recursordist/test-syncres_cc.cc
index 0e1e5051b..9d1d8873f 100644
--- a/pdns/recursordist/test-syncres_cc.cc
+++ b/pdns/recursordist/test-syncres_cc.cc
@@ -5343,9 +5343,6 @@ BOOST_AUTO_TEST_CASE(test_dnssec_secure_to_insecure_skipped_cut) {
             }
             else if (domain == DNSName("sub.powerdns.com.")) {
               addRecordToLW(res, domain, QType::NS, "ns1.powerdns.com.");
-              addRRSIG(keys, res->d_records, DNSName("powerdns.com"), 300);
-              addNSECRecordToLW(domain, DNSName("tub.powerdns.com."), { QType::NS }, 600, res->d_records);
-              addRRSIG(keys, res->d_records, DNSName("powerdns.com"), 300);
             }
             else if (domain == DNSName("powerdns.com.")) {
               addRecordToLW(res, domain, QType::NS, "ns1.powerdns.com.");