Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx.pao1.isc.org", Issuer "COMODO RSA Organization Validation Secure Server CA" (not verified)) by bugs.isc.org (Postfix) with ESMTPS id 30B13D78B0A for ; Mon, 23 Oct 2017 08:29:07 +0000 (UTC) Received: from mail.banu.com (mail.banu.com [46.4.129.225]) by mx.pao1.isc.org (Postfix) with ESMTP id 767953ADD5E for ; Mon, 23 Oct 2017 08:29:05 +0000 (UTC) Received: from jurassic.lan.banu.com (unknown [115.118.69.126]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.banu.com (Postfix) with ESMTPSA id 9013856A06E4; Mon, 23 Oct 2017 08:29:01 +0000 (GMT) From muks@isc.org Mon Oct 23 08:29:07 2017 Date: Mon, 23 Oct 2017 13:58:55 +0530 Message-ID: <20171023082855.GA27755@jurassic.lan.banu.com> In-Reply-To: User-Agent: Mutt/1.9.1 (2017-09-22) Return-Path: MIME-Version: 1.0 Subject: Re: [ISC-Bugs #42272] stop dnssec-keygen generating hmac keys in 9.11 content-type: text/plain; charset="utf-8" X-Spam-Status: No, score=0.0 required=5.0 tests=none autolearn=unavailable autolearn_force=no version=3.4.1 X-RT-Original-Encoding: utf-8 X-RT-Interface: Email To: "Evan Hunt via RT" From: "Mukund Sivaraman" X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on mx.pao1.isc.org Content-Disposition: inline X-RT-Incoming-Encryption: Not encrypted Delivered-To: bind9-confidential@bugs.isc.org X-Original-To: bind9-confidential@bugs.isc.org References: RT-Message-ID: Content-Length: 362 On Mon, Oct 23, 2017 at 05:08:01AM +0000, Evan Hunt via RT wrote: > Dang it, we forgot to do this for 9.11 and then forgot again for 9.12. > > Is it too late to put in a deprecated-usage warning in 9.12? And be sure > to finish this in 9.13. Also add warning posters next to another thing we let pass: the default of HMAC-MD5 in rndc-confgen, etc. Mukund