[Opendnssec-develop] RE: OpenDNSSEC 1.4.2rc1 release candidate
Sara Dickinson
sara at sinodun.com
Tue Sep 3 12:00:50 UTC 2013
All,
Version 1.4.2rc1 of OpenDNSSEC is now available. This is a release candidate for testing purposes:
OpenDNSSEC 1.4.2rc1 - 2013-09-03
-----------------------------------------------------
Updates:
* OPENDNSSEC-428: ods-ksmutil: Add option for 'ods-ksmutil key generate' to take number of zones as a parameter
Bugfixes:
* OPENDNSSEC-438: 'ods-ksmutil key generate' and the enforcer can create too many keys for <SharedKeys/> policies when KSK and ZSK use same algorithm and length
* OPENDNSSEC_440: 'ods-ksmutil key generate' and the enforcer can create too many keys if there are keys already available and the KSK and ZSK use same algorithm and length
* SUPPORT-66: Signer Engine: Fix file descriptor leak in case of TCP write error [OPENDNSSEC-427].
* OPENDNSSEC-424: Signer Engine: Respond to SOA queries from file instead of memory. Makes response non-blocking.
* OPENDNSSEC-425 Change "hsmutil list" output so that the table header goes to stdout not stderr
* Signer Engine: Improved Inbound XFR checking.
* Signer Engine: Fix double free corruption in case of adding zone with DNS Outbound Adapters and NotifyCommand enabled.
* OPENDNSSEC-443: ods-ksmutil: Clean up of hsm connection handling
* OPENDNSSEC-401: 'ods-signer sign <zone> --serial <nr>' command produces seg fault when run directly on command line (i.e. not via interactive mode)
* OPENDNSSEC-444: Fix double free corruption in case of HSM connection error while signing RRsets (also fixes SUPPORT-71).
Downloads:
* http://dist.opendnssec.org/source/testing/opendnssec-1.4.2rc1.tar.gz
* http://dist.opendnssec.org/source/testing/opendnssec-1.4.2rc1.tar.gz.sig
* Checksum sha1: 5766c5510f225f09c13e9ffaaf09cb447aa428f1
* Checksum sha256: c3ad800b7548480fa36d65889d452333f7e03ef8909719d4ffdb97274452a186
A full 1.4.2 release is planned for Tuesday 10th September.
//OpenDNSSEC team
More information about the Opendnssec-develop
mailing list