From sara at sinodun.com  Tue May  6 12:44:38 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Tue, 6 May 2014 13:44:38 +0100
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.3.17
Message-ID: <53BE3F7B-DB29-46A1-B5B4-C8F341A6BBD2@sinodun.com>

All, 

Version 1.3.17 of OpenDNSSEC has now been released:


Updates:

* SUPPORT-114: libhsm: Optimize storage in HSM by deleting the public key directly if SkipPublicKey is used [OPENDNSSEC-575].
* Signer Engine: log serial of signed zone in STATS line.
* OPENDNSSEC-550: Signer Engine: Put NSEC3 records on empty non-terminals derived from unsigned delegations (be compatible with servers that are incompatible with RFC 5155 errata 3441).
* OPENDNSSEC-569: Build compatibility with SoftHSMv2.
* Signer Engine: Examine unsigned zone checks for SOA RRset existence.
* OPENDNSSEC-591: ods-ksmutil: Extend 'key list' command with options to filter on key type and state. This allows keys in the GENERATE and DEAD state to be output.

Bugfixes:

* SUPPORT-116: ods-ksmutil key import. Date validation fails on certain dates [OPENDNSSEC-589].
* OPENDNSSEC-481: libhsm: Fix an off-by-one length check error.
* OPENDNSSEC-482: libhsm: Improved cleanup for C_FindObjects.
* OPENDNSSEC-515: Signer Engine: Don't replace tabs in RRs with whitespace.
* OPENDNSSEC-538: libhsm: Possible memory corruption in hsm_get_slot_id.
* Signer Engine: Fix a race condition when stopping daemon.
* OPENDNSSEC-586: enforcer & ods-ksmutil: Improve logging on key creation and alloctaion.
* OPENDNSSEC-588: ods-ksmutil: Exported value of <Parent><SOA><TTL> in 'policy export' output could be wrong on MySQL.

Documentation:

* http://wiki.opendnssec.org/display/DOCS13

Download:

* http://dist.opendnssec.org/source/opendnssec-1.3.17.tar.gz
* http://dist.opendnssec.org/source/opendnssec-1.3.17.tar.gz.sig
* Checksum SHA1: 732ffcbb3b7ca39e35b053dc1d4e516a9b9bbaa2
* Checksum SHA256: 9f0dcfb53a3e10255b2d85e6a30663548eca1ec2e900b7cd5db9329f1710e323


//OpenDNSSEC team




From sara at sinodun.com  Tue May 20 16:17:14 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Tue, 20 May 2014 17:17:14 +0100
Subject: [Opendnssec-maintainers] SoftHSM 1.3.7rc1 release candidate
Message-ID: <ECBCDA42-2638-4528-AA0B-3C5AA80BA2A7@sinodun.com>

All, 

Version 1.3.7rc1 of SoftHSM is now available. This is a release candidate for testing purposes:


SoftHSM 1.3.7rc1
------------------------

Bugfixes:
* SOFTHSM-94: umask affecting the calling application.
* SOFTHSM-96: Check if Botan has already been initialised.

Download:
* https://dist.opendnssec.org/source/testing/softhsm-1.3.7rc1.tar.gz
* https://dist.opendnssec.org/source/testing/softhsm-1.3.7rc1.tar.gz.sig
* Checksum SHA1: 61ea9cb52d2abad84053e77efbebd853963b1c89
* Checksum SHA256:  c28049f483a211294721bae27a2efa7f17a7495d6f2f8a6a3fe54a4c72f1c5e6


A full SoftHSM 1.3.7 release is planned for Tuesday 27th May.


//OpenDNSSEC team




From sara at sinodun.com  Wed May 28 13:18:21 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Wed, 28 May 2014 14:18:21 +0100
Subject: [Opendnssec-maintainers] SoftHSM 1.3.7
Message-ID: <A2A7FC5C-B139-4A30-B043-2D8E42DD366B@sinodun.com>

All, 

Version 1.3.7 of SoftHSM has now been released. This is the latest stable release.

Bugfixes:
* SOFTHSM-94: umask affecting the calling application.
* SOFTHSM-96: Check if Botan has already been initialised.

Documentation:
* https://wiki.opendnssec.org/display/SoftHSMDOCS/SoftHSM+Documentation+v1.3

Download:
* https://dist.opendnssec.org/source/softhsm-1.3.7.tar.gz
* https://dist.opendnssec.org/source/softhsm-1.3.7.tar.gz.sig
* Checksum SHA1: e8bf4269472f9e63d1dfeda238b1d542d6c036f2
* Checksum SHA256: d12d6456a85561266d9da427565f3ee3746a35df6670d5e6be75de253c2810a4


//OpenDNSSEC team