[Opendnssec-develop] Re: [Opendnssec-user] Error returned from ds-seen command
Siôn Lloyd
sion at nominet.org.uk
Tue Aug 30 11:41:38 UTC 2011
>> I see now, it is only when there is no existing key to retire (i.e. the
>> zone is new), I have a fix for trunk (revision 5493).
>>
>> It changes the behaviour slightly too, as in this situation the
>> enforcerd would not get a HUP; which I think was wrong.
> Glad to have squeezed that one out before people really need it :-)
>
> The missing HUP may have been the cause of the delayed 2nd key logged.
>
Should this be patched into the 1.3 branch? I'm not sure if the lack of
a HUP to the enforcerd if this was the first KSK in a zone was
deliberate. I doubt it was, but I'd rather not break 1.3 just before we
release it.
I could patch a fix in which only changes the return code? Or leave it
as it is.
Sion
More information about the Opendnssec-develop
mailing list