Bug 1759888

Summary: Rebase OpenDNSSEC to 2.1
Product: Red Hat Enterprise Linux 8 Reporter: Alexander Bokovoy <abokovoy>
Component: opendnssecAssignee: François Cami <fcami>
Status: CLOSED ERRATA QA Contact: ipa-qe <ipa-qe>
Severity: unspecified Docs Contact:
Priority: medium    
Version: 8.2CC: pvrabec, ssidhaye, twoerner
Target Milestone: rcKeywords: Rebase, Triaged
Target Release: 8.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: opendnssec-2.1.6-1 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-04 02:50:15 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Alexander Bokovoy 2019-10-09 10:47:12 UTC 
OpenDNSSEC project announced that current long term support version, OpenDNSSEC 1.4, will not be supported anymore. Time is to migrate to OpenDNSSEC 2.1:
https://www.opendnssec.org/2019/10/opendnssec-1-4-end-of-life-upgrading-and-testing-versions/

In RHEL IdM OpenDNSSEC 1.4 is in use. A rebase of OpenDNSSEC will need to be tested against RHEL IdM.
Comment 1 Alexander Bokovoy 2020-03-25 18:27:16 UTC 
The work to support OpenDNSSEC 2.1 has landed in FreeIPA 4.8.5. This (or later) version is planned to be added to RHEL 8 as well.
Comment 6 Sumedh Sidhaye 2020-08-17 12:22:51 UTC 
[root@ci-vm-10-0-138-175 ~]# rpm -qi opendnssec
Name        : opendnssec
Version     : 2.1.6
Release     : 2.module+el8.3.0+6580+328a3362
Architecture: x86_64
Install Date: Monday 17 August 2020 06:36:21 AM EDT
Group       : Unspecified
Size        : 1728022
License     : BSD
Signature   : RSA/SHA256, Thursday 04 June 2020 10:10:47 AM EDT, Key ID 199e2f91fd431d51
Source RPM  : opendnssec-2.1.6-2.module+el8.3.0+6580+328a3362.src.rpm
Build Date  : Monday 11 May 2020 12:18:05 PM EDT
Build Host  : x86-vm-09.build.eng.bos.redhat.com
Relocations : (not relocatable)
Packager    : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
Vendor      : Red Hat, Inc.
URL         : http://www.opendnssec.org/
Summary     : DNSSEC key and zone management software
Description :
OpenDNSSEC was created as an open-source turn-key solution for DNSSEC.
It secures zone data just before it is published in an authoritative
name server. It requires a PKCS#11 crypto module library, such as softhsm
[root@ci-vm-10-0-138-175 ~]# cat /etc/redhat-release 
Red Hat Enterprise Linux release 8.3 Beta (Ootpa)
[root@ci-vm-10-0-138-175 ~]# 



upstream automated test report run in downstream CI attached for reference.
Comment 9 errata-xmlrpc 2020-11-04 02:50:15 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:4670