Uploaded image for project: 'Support'
  1. Support
  2. SUPPORT-223

ods-ksmutil key list --verbose lists ZSK and KSK keys wrongly

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: OpenDNSSEC 1.4.9
    • Fix Version/s: None
    • Component/s: Signer
    • Labels:
      None
    • Environment:

      uname -r
      3.19.8-100.fc20.x86_64

       

      Issue reproducible irrespective of the platform.

      Description

      Steps to reproduce:

      1) /etc/opendnssec/kasp.xml  is modified to generate ZSK and KSK keys of the same size

      2) ods-ksmutil key generate --policy default --interval 10

      3) ods-ksmutil notify

      4) ods-ksmutil key list --verbose

       

      Make sure atleast 2 zones are added for signing. The listed keys will show different type from the ones listed during "ods-ksmutil key generate --policy default --interval 10".

       

      Issue is that when both keys are of same size, the query returns  keypair id value incorrectly from the KEYDATA_VIEW for insertion into dnsseckeys table.

       

        Attachments

          Activity

            People

            Assignee:
            Unassigned
            Reporter:
            nidikurup Nidhi D
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: