[Opendnssec-develop] Re: [Opendnssec-announce] OpenDNSSEC 1.2.2

Matthijs Mekking matthijs at NLnetLabs.nl
Thu Aug 11 12:38:29 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

The following bugfixes are not covered by 1.3.0. They should be fixed
for 1.3.1:

* ods-ksmutil: manual keyroll on zones which have moved policies fixed.
* Zonefetcher: Check inbound serial in transferred file, to prevent
  redundant zone transfers. [done]

I think an additional requirement in the release process is needed:

When a new version of an older release of OpenDNSSEC is brought out, we
should make sure that newer released versions are not affected by the
bugs that were fixed. Otherwise, a release in the newer series is required.

Best regards,

Matthijs






On 08/11/2011 11:40 AM, Rickard Bellgrim wrote:
> Hi
> 
> Version 1.2.2 of OpenDNSSEC has now been released.
> 
> Bugfixes:
> * signconf.rnc now allows NSEC3 Iterations of 0
> * Auditor: Fix delegation checks.
> * Bugfix #242: Race condition when receiving multiple NOTIFIES for a zone.
> * Enforcer: Change message about KSK retirement to make it less confusing.
> * ods-ksmutil: manual keyroll on zones which have moved policies fixed.
> * Signer Engine: Handle stdout console output throttling that would
> truncate daemon output intermittently.
> * Signer Engine: When removing records, also remove NSEC3 records that
> belong to the empty-non terminal.
> * Signer Engine: Ifdef the zone fetcher header file.
> * Zonefetcher: Sometimes invalid ‘Address already in use’ occurred.
> * Zonefetcher: Check inbound serial in transferred file, to prevent
> redundant zone transfers.
> 
> Download the tarball from:
> http://www.opendnssec.org/files/source/opendnssec-1.2.2.tar.gz
> 
> // OpenDNSSEC team
> _______________________________________________
> Opendnssec-announce mailing list
> Opendnssec-announce at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-announce
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJOQ81FAAoJEA8yVCPsQCW5nK0H/0vJBb//UKtUZLWw2kWZkjtU
IsL9olgDpAxDktw7eblFVN4yBHxgjUtTAj1OCt2smlsy/l+K+lmcS5ZbsPdkKEnm
oJkzU5KVOk2ypWoXBNbaF5pxmvoukQ7LlP3Jg9mEUUgG0BAEqpN/Ak8j+Gj9jlye
ECGyTtoY38Ym/P7w5HTwsupdxDz599tptN9XS+d4iMlLlIqVPdVDzoXzMM+Glzyt
tq93KVusFCmaNEhBYgSgIbrHiVbtUNuSsAJF88Vl5HvtZ05+T2jEVbtcT5SejMOv
rCGA8MHlOQ4QOogo3yqwolYm8TKZ5bo4JKp4aav5AwC5YhoXJzNTl4zcuae4gog=
=gvUe
-----END PGP SIGNATURE-----



More information about the Opendnssec-develop mailing list