107531 – dnssec-keygen fails with new openssl package: openssl failure

Bug 107531 - dnssec-keygen fails with new openssl package: openssl failure

Summary: dnssec-keygen fails with new openssl package: openssl failure

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	bind
Sub Component:
Version:	9
Hardware:	athlon
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Daniel Walsh
QA Contact:	Ben Levenson
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2003-10-20 07:01 UTC by Andre
Modified:	2007-04-18 16:58 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2003-10-22 13:31:42 UTC
Embargoed:

Attachments	(Terms of Use)

Description Andre 2003-10-20 07:01:24 UTC

From Bugzilla Helper:
User-Agent: Mozilla/5.0 Galeon/1.2.7 (X11; Linux i686; U;) Gecko/20030131

Description of problem:
dnssec-keygen no longer works when openssl-0.9.7a-20 is installed. 
dnssec-signzone also fails with an existing key (which means that dnssec can no
longer be used).

Version-Release number of selected component (if applicable):
bind-9.2.1-16
openssl-0.9.7a-20

How reproducible:
Always

Steps to Reproduce:
1. dnssec-keygen -a DSA -b 1024 -n ZONE test.domain


Actual Results:  dnssec-keygen: failed to generate key test.domain/DSA: openssl
failure

Expected Results:  should generate a key

Additional info:

Comment 1 Daniel Walsh 2003-10-22 13:31:42 UTC

Please attempt with latest bind
bind-9.2.2.P3-8

Comment 2 Andre 2003-10-23 03:25:58 UTC

I tried it with bind-9.2.2.P3-9 (couldn't find -8) and both the key generation
and the zone signature seem to work with this openssl.  Thanks. (Will there be
an errata for Redhat 9?)

Note You need to log in before you can comment on or make changes to this bug.