Report information
The Basics
Id:
44531
Status:
resolved
Priority:
Medium/Medium
Queue:
bind9-public
People
BugTracker
Version Fixed:
9.9.10, 9.10.5, 9.11.1, 9.12.0
Version Found:
(no value)
Versions Affected:
(no value)
Versions Planned:
(no value)
Priority:
(no value)
Severity:
(no value)
CVSS Score:
(no value)
CVE ID:
(no value)
Component:
(no value)
Area:
bug
Dates
Created:Wed, 25 Jan 2017 14:36:16 -0500
Updated:Thu, 03 Aug 2017 22:28:03 -0400
Closed:Sat, 04 Feb 2017 03:46:15 -0500

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History
  Wed, 25 Jan 2017 14:36:16 -0500 Evan Hunt <Evan_Hunt@isc.org> - Ticket created
Subject: named doesn't fall back to built-in keys if bind.keys is empty

If bind.keys is missing, named falls back to using built-in keys for dnssec-validation (and currently lookaside) auto. However, if bind.keys exists but is empty, then named doesn't fall back; it just treats it as an empty trust anchor configuration and runs without validating. It should detect the absence of the key it wanted and either fall back to built-in, or log an error and exit.
Tue, 31 Jan 2017 09:32:42 -0500 Mukund Sivaraman <muks@isc.org> - Queue changed from #6 to #7
Wed, 01 Feb 2017 17:49:46 -0500 Evan Hunt <Evan_Hunt@isc.org> - Given to Mukund Sivaraman <muks@isc.org>
Sat, 04 Feb 2017 03:46:15 -0500 Evan Hunt <Evan_Hunt@isc.org> - Status changed from 'open' to 'resolved'
Fri, 24 Mar 2017 13:05:28 -0400 Mukund Sivaraman <muks@isc.org> - Version Fixed 9.12.0, 9.11.1, 9.10.5, 9.9.10 added
Mon, 26 Jun 2017 20:34:59 -0400 Vicky Risk <vicky@isc.org> - Queue changed from #7 to bind9-public
Mon, 26 Jun 2017 20:34:59 -0400 Vicky Risk <vicky@isc.org> - Area bug added
Thu, 03 Aug 2017 22:28:03 -0400 Mark Andrews <marka@isc.org> - Version Fixed 9.12.0, 9.11.1, 9.10.5, 9.9.10 changed to 9.9.10, 9.10.5, 9.11.1, 9.12.0