[Opendnssec-user] auditor and rollover

sion at nominet.org.uk sion at nominet.org.uk
Tue Mar 30 08:21:10 UTC 2010


> It turns out that the problem was the vast quantity of errors the
> auditor (correctly) found in the signed zone. For some reason, it
> only seemed to be a problem when the auditor was run by the signer -
> not when run by the command line.
>
> I've updated the auditor in trunk to trim the output at 100 lines,
> which solves this issue.

The reason for the vast number of errors that the auditor finds is that we
are not handling the algorithm rollover correctly...

This will hopefully be fixed for v1.2 but is left as a known issue for
v1.1.

Sion




More information about the Opendnssec-user mailing list