Bug #46404 for bind9-public: complete removal of HMAC from dnssec-keygen

Report information

The Basics

Id:

46404

Status:

resolved

Priority:

Low/Low

Queue:

bind9-public

People

Owner:

Evan Hunt <Evan_Hunt@isc.org>

Requestors:

Evan Hunt <Evan_Hunt@isc.org>

Cc:

AdminCc:

BugTracker

Version Fixed:

9.13.0

Version Found:

(no value)

Versions Affected:

(no value)

Versions Planned:

9.13

Priority:

P2 Normal

Severity:

S2 Normal

CVSS Score:

(no value)

CVE ID:

(no value)

Component:

(no value)

Area:

feature

Dates

Created:	Wed, 25 Oct 2017 13:50:00 -0400
Updated:	Thu, 18 Jan 2018 20:30:22 -0500
Closed:	Thu, 18 Jan 2018 20:30:22 -0500

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History

Wed, 25 Oct 2017 13:50:01 -0400 Evan Hunt <Evan_Hunt@isc.org> - Ticket created

Date:	Wed, 25 Oct 2017 17:50:00 +0000
Subject:	complete removal of HMAC from dnssec-keygen
From:	Evan_Hunt@isc.org
To:	bind9-public@isc.org

Finish the work started in RT #42272 by removing support for HMAC keys from dnssec-keygen after 9.12 is released.

Tue, 31 Oct 2017 16:30:04 -0400 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

Code for this is in rt46404. I'm not putting it in for review yet but will finish the work (release note, test, etc) after we branch 9.13.

Mon, 08 Jan 2018 20:12:12 -0500 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

Now that 9.12 is branched we can finish this. rt46404 ready for review.

Mon, 08 Jan 2018 20:12:59 -0500 Evan Hunt <Evan_Hunt@isc.org> - Status changed from 'open' to 'review'

Mon, 08 Jan 2018 20:13:00 -0500 Evan Hunt <Evan_Hunt@isc.org> - Untaken

Tue, 09 Jan 2018 01:14:00 -0500 Mark Andrews <marka@isc.org> - Correspondence added

looks fine

Tue, 09 Jan 2018 01:14:01 -0500 Mark Andrews <marka@isc.org> - Given to Evan Hunt <Evan_Hunt@isc.org>

Tue, 09 Jan 2018 01:14:01 -0500 Mark Andrews <marka@isc.org> - Severity S2 Normal added

Tue, 09 Jan 2018 01:14:01 -0500 Mark Andrews <marka@isc.org> - Priority P2 Normal added

Thu, 18 Jan 2018 20:30:20 -0500 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

4868. [func] dnssec-keygen can no longer generate HMAC keys. Use tsig-keygen instead. [RT #46404] 9.13.0

Thu, 18 Jan 2018 20:30:22 -0500 Evan Hunt <Evan_Hunt@isc.org> - Status changed from 'review' to 'resolved'

Thu, 18 Jan 2018 20:30:22 -0500 Evan Hunt <Evan_Hunt@isc.org> - Version Fixed 9.13.0 added