[Opendnssec-commits] matthijs r7113 - branches/OpenDNSSEC-1.3 branches/OpenDNSSEC-1.4 trunk/OpenDNSSEC

commits at svn.opendnssec.org commits at svn.opendnssec.org
Mon Apr 22 14:34:52 CEST 2013


Author: matthijs
Date: Mon Apr 22 14:34:52 2013
New Revision: 7113
URL: http://fisheye.opendnssec.org/changelog/opendnssec?cs=7113

Log:
cleanup NEWS files

Modified:
   branches/OpenDNSSEC-1.3/NEWS
   branches/OpenDNSSEC-1.4/NEWS
   trunk/OpenDNSSEC/NEWS

Modified: branches/OpenDNSSEC-1.3/NEWS
==============================================================================
--- branches/OpenDNSSEC-1.3/NEWS	Mon Apr 22 14:21:46 2013	(r7112)
+++ branches/OpenDNSSEC-1.3/NEWS	Mon Apr 22 14:34:52 2013	(r7113)
@@ -181,7 +181,7 @@
 Bugfixes:
 * Auditor: Handle ruby 1.9 differences in ods-kaspcheck.
 * Auditor: Require dnsruby 1.53 for bugfixes.
-* Bugfix #262: Drudgers seem to be in a waiting state, but the RRset FIFO 
+* Bugfix #262: Drudgers seem to be in a waiting state, but the RRset FIFO
   queue is full. Do an additional broadcast.
 * Enforcer: Check HSM connection when waking up from sleep, attempt to
   reconnect if it is not valid. (r5511 in trunk, ported into the branch due
@@ -197,9 +197,9 @@
 * Signer Engine: Deal with carriage returns (dos format) in zone file.
 * Signer Engine: <Refresh> is PT0S means that refresh equals signtime.
 * Signer Engine: Defense in depth in signer for duplicate keys.
-* Signer Engine: Make sure that all required zonelist elements exist, 
+* Signer Engine: Make sure that all required zonelist elements exist,
   otherwise error.
-* Signer Engine: Warn the user if the serial is b0rk, and you can not 
+* Signer Engine: Warn the user if the serial is b0rk, and you can not
   use the serial from the signconf.
 * Signer Engine: Log Auditor exit code.
 * Fix a similar bug like #257: Error in ods-signerd, where a corrupted
@@ -209,7 +209,7 @@
 OpenDNSSEC 1.3.2 - 2011-09-13
 
 Bugfixes:
-* Bugfix #257: Error in ods-signerd, where a corrupted backup file results 
+* Bugfix #257: Error in ods-signerd, where a corrupted backup file results
   in an invalid pointer free().
 * Signer Engine: Mark that a zone has a valid signer configuration, after
   recovering the zone from the backup files.
@@ -221,12 +221,12 @@
 * Auditor: Fix 'ZSK in use too long' message to handle new signer behaviour.
 * Bugfix #255: RHEL6 patch to contrib/opendnssec.spec. (Rick van Rein)
 * Bugfix #256: Make sure argument in "ods-control signer" is not stripped off.
-* Bugfix #259: ods-ksmutil: Prevent MySQL username or password being interpreted
-  by the shell when running "ods-ksmutil setup".
+* Bugfix #259: ods-ksmutil: Prevent MySQL username or password being
+  interpreted by the shell when running "ods-ksmutil setup".
 * Bugfix #260: "ods-ksmutil zone list" now handles empty zonelists.
 * Enforcer: Unsigned comparison resulting in wrong error message.
-* ods-ksmutil: fixed issue where first ds-seen command run on a zone would work,
-  but return an error code and not send a HUP to the enforcerd.
+* ods-ksmutil: fixed issue where first ds-seen command run on a zone would
+  work, but return an error code and not send a HUP to the enforcerd.
 * Signer Engine: A threading issue occasionally puts the default validity
   on NSEC(3) RRs and the denial validity on other RRs.
 * Signer Engine: An update command could interrupt the signing process and the
@@ -242,11 +242,12 @@
 * Enforcer: Change message about KSK retirement to make it less confusing.
 
 Bugfixes:
-* ods-control: If the Enforcer did not close down, you entered an infinite loop.
+* ods-control: If the Enforcer did not close down, you entered an infinite
+  loop.
 * Signer Engine: Fix log message typos.
 * Signer Engine: Fix crash where ods-signer update
 * Signer Engine: Also replace DNSKEYs if <DNSKEY><TTL> has changed in policy.
-* Zonefetcher: Sometimes invalid 'Address already in use' occurred. 
+* Zonefetcher: Sometimes invalid 'Address already in use' occurred.
 * Bugfix #247: Fixes bug introduced by bugfix #242.
 
 
@@ -286,6 +287,7 @@
 * <SkipPublicKey/> is enabled for SoftHSM in the default configuration.
   It improves the performance by only using the private key objects.
 * Document the <RolloverNotification> tag in conf.xml.
+* Include check for resign < resalt in ods-kaspcheck.
 
 Bugfixes:
 * Bugfix #221: Segmentation Fault on schedule.c:232
@@ -301,7 +303,8 @@
 * Enforcer: Stop import of policy if it is not consistent.
 * ods-signer: The queue command will now also show what tasks the workers
   are working on.
-* Signer Engine: Just warn if occluded zone data was found, don't stop signing process.
+* Signer Engine: Just warn if occluded zone data was found, don't stop signing
+  process.
 * Signer Engine: Simpler serial maintenance, reduces the number of conflicts.
   Less chance to hit a 'cannot update: serial too small' error message.
 * Signer Engine: Simpler NSEC(3) maintenance.
@@ -647,8 +650,8 @@
 * ods-ksmutil: update zonelist correctly links keys to new zones if key sharing 
   is turned on.
 * Bugreport #59: Problem starting ods-signer on a 64-bit machine
-* ods-ksmutil: update zonelist command now correctly adds and deletes zones (and
-  sorts out their keys).
+* ods-ksmutil: update zonelist command now correctly adds and deletes zones
+  (and sorts out their keys).
 
 OpenDNSSEC 1.0.0b8 - 2009-11-23
 

Modified: branches/OpenDNSSEC-1.4/NEWS
==============================================================================
--- branches/OpenDNSSEC-1.4/NEWS	Mon Apr 22 14:21:46 2013	(r7112)
+++ branches/OpenDNSSEC-1.4/NEWS	Mon Apr 22 14:34:52 2013	(r7113)
@@ -1,6 +1,5 @@
 $Id$
 
-
 OpenDNSSEC 1.4.1
 
 * OPENDNSSEC-247: Signer Engine: TTL on NSEC3 was not updated on SOA
@@ -219,6 +218,88 @@
 * ods-ksmutil: Fix typo in policy export with NSEC3.
 
 
+OpenDNSSEC 1.3.13 - 2013-02-20
+
+Bugfixes:
+* OPENDNSSEC-388: Signer Engine: Internal serial should take into account
+  the inbound serial.
+* OPENDNSSEC-242: Signer Engine: Could get stuck on load signconf while
+  signconf was not changed.
+* Signer Engine: Fixed locking and notification on the drudge work queue,
+  signals could be missed so that drudgers would stall when there was work to
+  be done.
+
+
+OpenDNSSEC 1.3.12 - 2012-12-03
+
+Bugfixes:
+* SUPPORT-42: ./configure fails on FreeBSD (or if ldns is not installed in a 
+  directory in the default search path of the complier).
+* OpenDNSSEC does not compile against ldns 1.6.16 on platforms that rely on
+  the OpenDNSSEC implementation of strlcpy/cat 
+
+
+OpenDNSSEC 1.3.11 - 2012-11-13
+
+* OPENDNSSEC-330: NSEC3PARAM TTL should be set to zero.
+
+Bugfixes:
+* OPENDNSSEC-306: Cant delete zone until Enforcer made signerconf.
+* OPENDNSSEC-281: Commandhandler sometimes unresponsive.
+* OPENDNSSEC-299: ods-ksmutil <enter> now includes policy import
+* OPENDNSSEC-300: ods-ksmutil policy purge documented with a warning
+* OPENDNSSEC-338: ods-ksmutil: fix zone delete on MySQL (broken by SUPPORT-27)
+* OPENDNSSEC-342: Auditor comparisons made case-insensitive
+* OPENDNSSEC-345: ods-ksmutil: use ods-control to HUP the enforcerd process
+
+
+OpenDNSSEC 1.3.10 - 2012-08-10
+
+Bugfixes:
+* SUPPORT-30: RRSIGs are left in the signed zone when authoritative RRsets
+  become glue [OPENDNSSEC-282].
+* OPENDNSSEC-261: Ldns fails to parse RR that seems syntactically correct.
+  Was due to memory allocation issues. Provided better log message.
+* OPENDNSSEC-285: Signer segfault for 6 or more -v options
+* OPENDNSSEC-298: Only unlink existing pidfile on exit if we wrote it.
+* OPENDNSSEC-303: Return if open/parse of zonelist.xml fails in ksmutil.c
+  update_zones() and cmd_listzone().
+* OPENDNSSEC-304: Signer Engine: Check pidfile on startup, if pidfile exists
+  and corresponding process is running, then complain and exit.
+* Signer seems to hang on a ods-signer command. Shutdown client explicitly
+  with shutdown().
+* opendnssec.spec file removed
+   
+
+OpenDNSSEC 1.3.9 - 2012-06-15
+
+* OPENDNSSEC-277: Enforcer: Performance optimisation of database access.
+
+Bugfixes:
+* SUPPORT-27: ods-ksmutil: simplify zone delete so that it only marks keys as
+  dead (rather than actually removing them). Leave the key removal to purge
+  jobs.
+
+
+OpenDNSSEC 1.3.8 - 2012-05-09
+
+* OPENDNSSEC-228: Signer Engine: Make 'ods-signer update' reload signconfs
+  even if zonelist has not changed. 
+* OPENDNSSEC-231: Signer Engine: Allow for Classless IN-ADDR.ARPA names
+  (RFC 2317).
+* OPENDNSSEC-234: Enforcer: Add indexes for foreign keys in kasp DB. (sqlite
+  only, MySQL already has them.)
+* OPENDNSSEC-246: Signer Engine: Warn if <Audit/> is in signer configuration,
+  but ods-auditor is not installed
+* OPENDNSSEC-249: Enforcer: ods-ksmutil: If key export finds nothing to do
+  then say so rather than display nothing which might be misinterpreted.
+
+Bugfixes:
+* OPENDNSSEC-247: Signer Engine: TTL on NSEC(3) was not updated on SOA
+  Minimum change.
+* OPENDNSSEC-253: Enforcer: Fix "ods-ksmutil zone delete --all"
+
+
 OpenDNSSEC 1.3.7 - 2012-03-13
 
 * OPENDNSSEC-215: Signer Engine: Always recover serial from backup,

Modified: trunk/OpenDNSSEC/NEWS
==============================================================================
--- trunk/OpenDNSSEC/NEWS	Mon Apr 22 14:21:46 2013	(r7112)
+++ trunk/OpenDNSSEC/NEWS	Mon Apr 22 14:34:52 2013	(r7113)
@@ -219,6 +219,88 @@
 * ods-ksmutil: Fix typo in policy export with NSEC3.
 
 
+OpenDNSSEC 1.3.13 - 2013-02-20
+
+Bugfixes:
+* OPENDNSSEC-388: Signer Engine: Internal serial should take into account
+  the inbound serial.
+* OPENDNSSEC-242: Signer Engine: Could get stuck on load signconf while
+  signconf was not changed.
+* Signer Engine: Fixed locking and notification on the drudge work queue,
+  signals could be missed so that drudgers would stall when there was work to
+  be done.
+
+
+OpenDNSSEC 1.3.12 - 2012-12-03
+
+Bugfixes:
+* SUPPORT-42: ./configure fails on FreeBSD (or if ldns is not installed in a 
+  directory in the default search path of the complier).
+* OpenDNSSEC does not compile against ldns 1.6.16 on platforms that rely on
+  the OpenDNSSEC implementation of strlcpy/cat 
+
+
+OpenDNSSEC 1.3.11 - 2012-11-13
+
+* OPENDNSSEC-330: NSEC3PARAM TTL should be set to zero.
+
+Bugfixes:
+* OPENDNSSEC-306: Cant delete zone until Enforcer made signerconf.
+* OPENDNSSEC-281: Commandhandler sometimes unresponsive.
+* OPENDNSSEC-299: ods-ksmutil <enter> now includes policy import
+* OPENDNSSEC-300: ods-ksmutil policy purge documented with a warning
+* OPENDNSSEC-338: ods-ksmutil: fix zone delete on MySQL (broken by SUPPORT-27)
+* OPENDNSSEC-342: Auditor comparisons made case-insensitive
+* OPENDNSSEC-345: ods-ksmutil: use ods-control to HUP the enforcerd process
+
+
+OpenDNSSEC 1.3.10 - 2012-08-10
+
+Bugfixes:
+* SUPPORT-30: RRSIGs are left in the signed zone when authoritative RRsets
+  become glue [OPENDNSSEC-282].
+* OPENDNSSEC-261: Ldns fails to parse RR that seems syntactically correct.
+  Was due to memory allocation issues. Provided better log message.
+* OPENDNSSEC-285: Signer segfault for 6 or more -v options
+* OPENDNSSEC-298: Only unlink existing pidfile on exit if we wrote it.
+* OPENDNSSEC-303: Return if open/parse of zonelist.xml fails in ksmutil.c
+  update_zones() and cmd_listzone().
+* OPENDNSSEC-304: Signer Engine: Check pidfile on startup, if pidfile exists
+  and corresponding process is running, then complain and exit.
+* Signer seems to hang on a ods-signer command. Shutdown client explicitly
+  with shutdown().
+* opendnssec.spec file removed
+   
+
+OpenDNSSEC 1.3.9 - 2012-06-15
+
+* OPENDNSSEC-277: Enforcer: Performance optimisation of database access.
+
+Bugfixes:
+* SUPPORT-27: ods-ksmutil: simplify zone delete so that it only marks keys as
+  dead (rather than actually removing them). Leave the key removal to purge
+  jobs.
+
+
+OpenDNSSEC 1.3.8 - 2012-05-09
+
+* OPENDNSSEC-228: Signer Engine: Make 'ods-signer update' reload signconfs
+  even if zonelist has not changed. 
+* OPENDNSSEC-231: Signer Engine: Allow for Classless IN-ADDR.ARPA names
+  (RFC 2317).
+* OPENDNSSEC-234: Enforcer: Add indexes for foreign keys in kasp DB. (sqlite
+  only, MySQL already has them.)
+* OPENDNSSEC-246: Signer Engine: Warn if <Audit/> is in signer configuration,
+  but ods-auditor is not installed
+* OPENDNSSEC-249: Enforcer: ods-ksmutil: If key export finds nothing to do
+  then say so rather than display nothing which might be misinterpreted.
+
+Bugfixes:
+* OPENDNSSEC-247: Signer Engine: TTL on NSEC(3) was not updated on SOA
+  Minimum change.
+* OPENDNSSEC-253: Enforcer: Fix "ods-ksmutil zone delete --all"
+
+
 OpenDNSSEC 1.3.7 - 2012-03-13
 
 * OPENDNSSEC-215: Signer Engine: Always recover serial from backup,



More information about the Opendnssec-commits mailing list