[Opendnssec-develop] OpenDNSSEC 1.4.2

Sara Dickinson sara at sinodun.com
Wed Sep 11 12:46:18 UTC 2013


Version 1.4.2 of OpenDNSSEC has now been released. This is the latest stable release.


* OPENDNSSEC-428: ods-ksmutil: Add option for 'ods-ksmutil key generate' to take number of zones as a parameter


* SUPPORT-66: Signer Engine: Fix file descriptor leak in case of TCP write error [OPENDNSSEC-427].
* SUPPORT-71: Signer Engine: Fix double free crash in case of HSM connection error during signing [OPENDNSSEC-444].
* OPENDNSSEC-401: 'ods-signer sign <zone> --serial <nr>' command produces seg fault when run directly on command line (i.e. not via interactive mode)
* OPENDNSSEC-440: 'ods-ksmutil key generate' and the enforcer can create too many keys if there are keys already available and the KSK and ZSK use same algorithm and length
* OPENDNSSEC-424: Signer Engine: Respond to SOA queries from file instead of memory. Makes response non-blocking.
* OPENDNSSEC-425 Change "hsmutil list" output so that the table header goes to stdout not stderr
* OPENDNSSEC-438: 'ods-ksmutil key generate' and the enforcer can create too many keys for <SharedKeys/> policies when KSK and ZSK use same algorithm and length
* OPENDNSSEC-443: ods-ksmutil: Clean up of hsm connection handling
* Signer Engine: Improved Inbound XFR checking.
* Signer Engine: Fix double free corruption in case of adding zone with DNS Outbound Adapters and NotifyCommand enabled.


* http://wiki.opendnssec.org/display/DOCS


* http://dist.opendnssec.org/source/opendnssec-1.4.2.tar.gz
* http://dist.opendnssec.org/source/opendnssec-1.4.2.tar.gz.sig
* Checksum sha1: 82991f3110820ec0b12608fd3175bb70252a6f2b
* Checksum sha256: b4bc70bfb54ede8ed657cc7f669b5f58bc5e20eabf9b01ca107a6876b08bed35

//OpenDNSSEC team

More information about the Opendnssec-develop mailing list