SRCID=342a0dd0e5Test Failed: keymgrS:keymgr:Tue Jan 29 11:01:08 PST 2019T:keymgr:1:AA:keymgr:System test keymgrI:keymgr:PORTRANGE:6700 - 6799I:keymgr:set up 01-ksk-inactiveI:keymgr:set up 02-zsk-inactiveI:keymgr:set up 03-ksk-unpublishedI:keymgr:set up 04-zsk-unpublishedI:keymgr:set up 05-ksk-unpub-activeI:keymgr:set up 06-zsk-unpub-activeI:keymgr:set up 07-ksk-ttlI:keymgr:set up 08-zsk-ttlI:keymgr:set up 10-change-rollI:keymgr:set up 11-many-simulI:keymgr:set up 12-many-activeI:keymgr:set up 13-norollI:keymgr:set up 14-wrongalgI:keymgr:set up 15-unspecI:keymgr:set up 16-wrongalg-unspecI:keymgr:set up 17-noforceI:keymgr:set up 18-nonstd-prepubI:keymgr:set up 19-old-keysI:keymgr:checking for DNSSEC key coverage issuesI:keymgr:01-ksk-inactive (1)I:keymgr:02-zsk-inactive (2)I:keymgr:03-ksk-unpublished (3)I:keymgr:04-zsk-unpublished (4)I:keymgr:05-ksk-unpub-active (5)I:keymgr:06-zsk-unpub-active (6)I:keymgr:07-ksk-ttl (7)I:keymgr:08-zsk-ttl (8)I:keymgr:09-no-keys (9)I:keymgr:10-change-roll (10)I:keymgr:11-many-simul (11)I:keymgr:12-many-active (12)I:keymgr:13-noroll (13)I:keymgr:14-wrongalg (14)I:keymgr:15-unspec (15)I:keymgr:16-wrongalg-unspec (16)I:keymgr:17-noforce (17)I:keymgr:18-nonstd-prepub (18)I:keymgr:19-old-keys (19)keymgr retcode was 1 expected 0coverage retcode was 1 expected 0error count was 1 expected 0good count was 1 expected 2'Publish': expected 4 found 2I:keymgr:failedI:keymgr:checking domains ending in . (20)I:keymgr:checking policy.conf parser (21)I:keymgr:exit status: 1R:keymgr:FAILE:keymgr:Tue Jan 29 11:01:21 PST 2019penguin:~/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/tests/system/keymgr> more *.19::::::::::::::coverage.19::::::::::::::PHASE 1--Loading keys to check for internal timing problemsPHASE 2--Scanning future key events for coverage failuresChecking scheduled KSK events for zone example.com, algorithm NSEC3RSASHA1... Sun Jan 29 19:01:14 UTC 2017: Publish: example.com/NSEC3RSASHA1/23253 (KSK) Activate: example.com/NSEC3RSASHA1/23253 (KSK)No errors foundChecking scheduled ZSK events for zone example.com, algorithm NSEC3RSASHA1... Sun Jan 29 19:01:14 UTC 2017: Publish: example.com/NSEC3RSASHA1/04478 (ZSK) Activate: example.com/NSEC3RSASHA1/04478 (ZSK) Tue Mar 12 19:01:19 UTC 2019: Inactive: example.com/NSEC3RSASHA1/04478 (ZSK)ERROR: No ZSK's are active after this event::::::::::::::keymgr.19::::::::::::::# /home/tbox/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/dnssec/dnssec-settime -K 19-old-keys -I 20190312190119 -D 20190423190119 Kexample.com.+007+04478# /home/tbox/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/dnssec/dnssec-keygen -q -K 19-old-keys -S Kexample.com.+007+04478 -L 3600 -r /home/tbox/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/tests/system/random.data -i 3628800Unable to apply policy: example.com/NSEC3RSASHA1: unable to generate key: dnssec-keygen: fatal: Key example.com/NSEC3RSASHA1/4478 becomes inactive sooner than the prepublication period for the new key ends. Either change the inactivation date with dnssec-settime -I, or use the -i option to set a shorter prepublication interval.penguin:~/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/tests/system/keymgr> ls 19-old-keysexpect Kexample.com.+007+04478.key Kexample.com.+007+23253.key policy.confextra.sh Kexample.com.+007+04478.private Kexample.com.+007+23253.private READMEpenguin:~/cvs/robie/builds/bind9.v9_11.no-ipv6/bind9/bin/tests/system/keymgr>