Derive maximum zone TTL from zone contents

The dnssec-policy system should look into the Zone as the default method of finding the "maximum zone TTL".

Currently max-zone-ttl defaults to 24 h. This silently breaks RRs with larger TTLs if rollover is happening. This is rare, but still a bug.

TTL caps for caches

Knot DNS 3.1 (authoritative) computes the value from zone data already.

Edited May 04, 2022 by Petr Špaček

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information