[Opendnssec-user] termination of obs2 DelegationSignerSubmitCommand input stream missing?

Wed Dec 21 14:18:19 UTC 2016

On 12/21/2016 02:12 AM, Yuri Schaeffer wrote:
>> after a bit of digging, seems !ods-ksmutil, but ods-enforcer is to be used (would be helpful if DOCS reflected that)
> 
> Whoops, I'll update the 2.0 documentation. There where multiple
> erroneous mentions of ods-ksmutil.

Thanks

> The email should have been sent at an earlier stage. Internally DS
> records have these states:
> 
> * unsubmitted
> * submit
> * submitted (waiting for ds-seen)
> * seen
> * retract
> * retracted
> 
> The transition between submit and submitted should go automatically when
> you have a DelegationSignerSubmitCommand specified. Like you have.
> 
> In case the enforcer logged an error it should prepend it with
> 'keystate_ds_x_cmd'. So please grep your logs for that.

I've something amiss re state mgmt.

at verbosity = 6, on exec

	/usr/local/opendnssec/sbin/ods-enforcer zone add -z example.info -p lab

there's no such log entry,

	tail -f /var/log/mrssages | grep -i keystate

		Dec 21 06:11:36 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:36 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:36 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:37 dns ods-enforcerd: INSERT INTO keyState ( keyDataId, type, state, lastChange, minimize, ttl, rev ) VALUES ( ?, ?, ?, ?, ?, ?, ? )
		Dec 21 06:11:37 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:37 dns ods-enforcerd: UPDATE keyState SET keyDataId = ?, type = ?, state = ?, lastChange = ?, minimize = ?, ttl = ?, rev = ? WHERE keyState.id = ? AND keyState.rev = ?
		Dec 21 06:11:37 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:37 dns ods-enforcerd: UPDATE keyState SET keyDataId = ?, type = ?, state = ?, lastChange = ?, minimize = ?, ttl = ?, rev = ? WHERE keyState.id = ? AND keyState.rev = ?
		Dec 21 06:11:37 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:37 dns ods-enforcerd: UPDATE keyState SET keyDataId = ?, type = ?, state = ?, lastChange = ?, minimize = ?, ttl = ?, rev = ? WHERE keyState.id = ? AND keyState.rev = ?
		Dec 21 06:11:37 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?
		Dec 21 06:11:37 dns ods-enforcerd: UPDATE keyState SET keyDataId = ?, type = ?, state = ?, lastChange = ?, minimize = ?, ttl = ?, rev = ? WHERE keyState.id = ? AND keyState.rev = ?
		Dec 21 06:11:37 dns ods-enforcerd: SELECT keyState.id, keyState.rev, keyState.keyDataId, keyState.type, keyState.state, keyState.lastChange, keyState.minimize, keyState.ttl FROM keyState WHERE keyState.keyDataId = ?

Those "?" don't look promising ...