Version 1.0.0rc2 of OpenDNSSEC has now been released.

Bugfixes:

• Signer Engine: Signer processes could remain open, if they were not close correctly.
• ods-ksmutil: Got a segmentation fault, when an HSM was missing in the configuration. Only applied to versions using MySQL.
• Zone fetcher: Did not close files before moving them.
• Zone fetcher: The serial arithmetic was not correct.
• Auditor: It now ignores unrecognized RR types.
• Signer Engine: Wrong handling of escaped characters in strings (fixed in ldns trunk)
• Set correct permissions on the configuration files.

Known issues:

• Zone fetcher: When using TSIG, an incorrect MAC can be created if the length of the used secret is ‘too long’ (longer than the maximum digest length). This problem is in LDNS 1.6.3 and previous versions. This bug is fixed in the upcoming LDNS 1.6.4 release.
• Auditor: Some good NAPTR records may fail to verify with dnsruby-1.41. This will be fixed in a future dnsruby release.
• TXT RRs: Some TXT RRs with escape characters may fail to parse correctly with dnsruby-1.41 and ldns 1.6.3. This is fixed in the upcoming releases.

Download the tarball from: opendnssec-1.0.0rc2.tar.gz

This entry was posted on Thursday, December 17th, 2009 at 09:35 and is filed under Releases. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.