From sara at sinodun.com Fri Apr 4 17:10:29 2014 From: sara at sinodun.com (Sara Dickinson) Date: Fri, 4 Apr 2014 18:10:29 +0100 Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.5rc1 release candidate Message-ID: All, Version 1.4.5rc1 of OpenDNSSEC is now available. This is a release candidate for testing purposes: OpenDNSSEC 1.4.5rc1 ------------------------------- Bugfixes: * OPENDNSSEC-607: libhsm not using all mandatory attributes for GOST key generation. * OPENDNSSEC-609: ods-ksmutil: 'key list' command fails with error in 1.4.4 on MySQL. Reported by Mark Elkins Download: * https://dist.opendnssec.org/source/testing/opendnssec-1.4.5rc1.tar.gz * https://dist.opendnssec.org/source/testing/opendnssec-1.4.5rc1.tar.gz.sig * Checksum: SHA1 6cafb6d912f68db578139529c2aaaedf15e6d4da * Checksum: SHA256 2b579687131428038d2dc671cd78cf9b5605e1b8ecd258fc90fb7b77c12a034f A full OpenDNSSEC 1.4.5 release is planned for Friday 11th April. //OpenDNSSEC team From sara at sinodun.com Fri Apr 11 15:11:29 2014 From: sara at sinodun.com (Sara Dickinson) Date: Fri, 11 Apr 2014 16:11:29 +0100 Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.5 Message-ID: <3CACEEA8-8DFD-4FF7-8B38-5C592C548BFE@sinodun.com> All, Version 1.4.5 of OpenDNSSEC is now available. This is the latest stable release. Bugfixes: * OPENDNSSEC-607: libhsm not using all mandatory attributes for GOST key generation. * OPENDNSSEC-609: ods-ksmutil: 'key list' command fails with error in 1.4.4 on MySQL. Reported by Mark Elkins Documentation: * http://wiki.opendnssec.org/display/DOCS Download: * https://dist.opendnssec.org/source/opendnssec-1.4.5.tar.gz * https://dist.opendnssec.org/source/opendnssec-1.4.5.tar.gz.sig * Checksum SHA1: da2d97669a7688321ea563e0a512531d932f19d6 * Checksum SHA256: c4d4366497ab096c6887c51f7518d546a0419a44dfad1f57d4ec9e67bb95019b //OpenDNSSEC team From sara at sinodun.com Mon Apr 28 14:28:38 2014 From: sara at sinodun.com (Sara Dickinson) Date: Mon, 28 Apr 2014 15:28:38 +0100 Subject: [Opendnssec-maintainers] OpenDNSSEC 1.3.17rc1 release candidate Message-ID: <834A8E83-905B-40E8-A4DC-5D1E7FC97ED9@sinodun.com> All, Version 1.3.17rc1 of OpenDNSSEC is now available. This is a release candidate for testing purposes: OpenDNSSEC 1.3.17rc1 ??????????? Updates: * SUPPORT-114: libhsm: Optimize storage in HSM by deleting the public key directly if SkipPublicKey is used [OPENDNSSEC-575]. * Signer Engine: log serial of signed zone in STATS line. * OPENDNSSEC-550: Signer Engine: Put NSEC3 records on empty non-terminals derived from unsigned delegations (be compatible with servers that are incompatible with RFC 5155 errata 3441). * OPENDNSSEC-569: Build compatibility with SoftHSMv2. * Signer Engine: Examine unsigned zone checks for SOA RRset existence. * OPENDNSSEC-591: ods-ksmutil: Extend 'key list' command with options to filter on key type and state. This allows keys in the GENERATE and DEAD state to be output. Bugfixes: * SUPPORT-116: ods-ksmutil key import. Date validation fails on certain dates [OPENDNSSEC-589]. * OPENDNSSEC-481: libhsm: Fix an off-by-one length check error. * OPENDNSSEC-482: libhsm: Improved cleanup for C_FindObjects. * OPENDNSSEC-515: Signer Engine: Don't replace tabs in RRs with whitespace. * OPENDNSSEC-538: libhsm: Possible memory corruption in hsm_get_slot_id. * Signer Engine: Fix a race condition when stopping daemon. * OPENDNSSEC-586: enforcer & ods-ksmutil: Improve logging on key creation and alloctaion. * OPENDNSSEC-588: ods-ksmutil: Exported value of in 'policy export' output could be wrong on MySQL. Download: * https://dist.opendnssec.org/source/testing/opendnssec-1.3.17rc1.tar.gz * https://dist.opendnssec.org/source/testing/opendnssec-1.3.17rc1.tar.gz.sig * Checksum SHA1: 89f7c3b734080ef0472bcf39e11801b20d305e8d * Checksum SHA256: 0a38bd01a4aee2328b1129621c979eef72e6ed8fce6f39da6f53b8485eb658cd A full OpenDNSSEC 1.3.17 release is planned for Tuesday 6th May //OpenDNSSEC team