Bug 1204100

Summary: Rebase to opendnssec 1.4.7+
Product: Red Hat Enterprise Linux 7 Reporter: Petr Spacek <pspacek>
Component: opendnssecAssignee: Paul Wouters <pwouters>
Status: CLOSED ERRATA QA Contact: Namita Soman <nsoman>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 7.2CC: lmiksik, pspacek, pwouters, thozza
Target Milestone: rcKeywords: Rebase
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Rebase: Bug Fixes and Enhancements
Doc Text:
The opendnssec packages have been upgraded to upstream version 1.4.7, which provides a number of bug fixes and enhancements over the previous version. Notably, this update adds the AllowExtraction option, which enables users to generate private keys with the CKA_EXTRACTABLE flag set to TRUE.
 Story Points: ---
Clone Of: 1123354 Environment:
Last Closed: 2015-11-19 10:20:02 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1115294, 1181710, 1249775, 2084180    

Description Petr Spacek 2015-03-20 11:52:55 UTC 
Please rebase to a variant of version 1.4.7 which includes https://github.com/opendnssec/opendnssec/pull/110 (when it is merged...).

FreeIPA's DNSSEC support depends on the pull request #110 and version 1.4.7 contains important fix.

Please see http://lists.opendnssec.org/pipermail/opendnssec-user/2015-March/003272.html before rebasing.

Thank you!
Comment 7 Namita Soman 2015-09-21 19:50:02 UTC 
# cat /etc/redhat-release 
Red Hat Enterprise Linux Server release 7.2 Beta (Maipo)


# rpm -qi opendnssec
Name        : opendnssec
Version     : 1.4.7
Release     : 3.el7
Architecture: x86_64
Install Date: Wed 16 Sep 2015 02:08:46 PM EDT
Group       : Applications/System
Size        : 2006535
License     : BSD
Signature   : (none)
Source RPM  : opendnssec-1.4.7-3.el7.src.rpm
Build Date  : Thu 10 Sep 2015 07:46:03 PM EDT
Build Host  : x86-020.build.eng.bos.redhat.com
Relocations : (not relocatable)
Packager    : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
Vendor      : Red Hat, Inc.
URL         : http://www.opendnssec.org/
Summary     : DNSSEC key and zone management software
Description :
OpenDNSSEC was created as an open-source turn-key solution for DNSSEC.
It secures zone data just before it is published in an authoritative
name server. It requires a PKCS#11 crypto module library, such as softhsm.

This is UNSUPPORTED EXPERIMENTAL package.



opened bz1264984 to update the description to not include the phrase that it is an experimental feature
Comment 9 errata-xmlrpc 2015-11-19 10:20:02 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-2303.html