[Opendnssec-develop] [OpenDNSSEC] #109: ods-ksmutil key import does not allow RSASHA1

OpenDNSSEC owner-dnssec-trac at kirei.se
Fri Mar 12 13:58:39 UTC 2010

#109: ods-ksmutil key import does not allow RSASHA1
Reporter:  jaroslav.benkovsky@…       |       Owner:  sion    
    Type:  defect                     |      Status:  new     
Priority:  major                      |   Component:  Enforcer
 Version:  1.0.0                      |    Keywords:          
 I use version 1.0.0, with Sun sca6000 HSM.

 # ods-ksmutil key import --cka_id 59cf3f08f5e9b1f9bc5156602eed4080 -r
 sca6000 -z cz -b 1024 -g RSASHA1 --keystate generated --keytype ZSK
 --time '2010-03-12 14:00:00'
 SQLite database set to: /var/opendnssec/kasp.db
 Error: Key algorithm RSASHA1 not supported; try one of RSASHA1,

 The reason seems to be that there are methods rsasha1 and
 rsasha1-nsec3-sha1 in keywords and the logic of StrKeywordSearch ensures
 that search for rsasha1 only returns an error.

Ticket URL: <http://trac.opendnssec.org/ticket/109>
OpenDNSSEC <http://www.opendnssec.org/>

More information about the Opendnssec-develop mailing list