[Opendnssec-user]Zone XX Not Found

Paul Wouters paul at nohats.ca
Tue Oct 16 03:35:21 UTC 2012


On Mon, 15 Oct 2012, Jerry Lundström wrote:

>> I'm testing 1.4.0b1, I got a problem that my newly added zones were imported successfully and after updating zonelist I could see them by 'ods-ksmutil key list', but ods-signerd
>> complained 'Zone XX not found'.

> After you add a zone the Enforcer needs to run and generate the signer configurations and then the Signer needs to read the new zonelist and the new zones signer configuration.

I've run into this too while doing testing. I would delete a zone, add
it, then sign it. Using the arrow up keys in a shell to repeat after
testing. The failure range varies from less then a second to a handful
of seconds, and I suspect entropy or key generation is not completed
yet while "add zone" returned.

Perhaps the ods-sign command could linger/retry for a few seconds before
throwing an error and giving up.

Paul



More information about the Opendnssec-user mailing list