Red Hat Bugzilla – Bug 107531
dnssec-keygen fails with new openssl package: openssl failure
Last modified: 2007-04-18 12:58:34 EDT
From Bugzilla Helper: User-Agent: Mozilla/5.0 Galeon/1.2.7 (X11; Linux i686; U;) Gecko/20030131 Description of problem: dnssec-keygen no longer works when openssl-0.9.7a-20 is installed. dnssec-signzone also fails with an existing key (which means that dnssec can no longer be used). Version-Release number of selected component (if applicable): bind-9.2.1-16 openssl-0.9.7a-20 How reproducible: Always Steps to Reproduce: 1. dnssec-keygen -a DSA -b 1024 -n ZONE test.domain Actual Results: dnssec-keygen: failed to generate key test.domain/DSA: openssl failure Expected Results: should generate a key Additional info:
Please attempt with latest bind bind-9.2.2.P3-8
I tried it with bind-9.2.2.P3-9 (couldn't find -8) and both the key generation and the zone signature seem to work with this openssl. Thanks. (Will there be an errata for Redhat 9?)