Bug #45807 for bind9-public: dnssec-settime can print a bogus warning for a key which has no deletion date set

Report information

The Basics

Id:

45807

Status:

resolved

Priority:

Low/Low

Queue:

bind9-public

People

Owner:

Michał Kępień <michal@isc.org>

Requestors:

Michał Kępień <michal@isc.org>

Cc:

AdminCc:

BugTracker

Version Fixed:

9.9.12, 9.10.7, 9.11.3, 9.12.0

Version Found:

9.9.3

Versions Affected:

(no value)

Versions Planned:

(no value)

Priority:

P3 Low

Severity:

S3 Low

CVSS Score:

(no value)

CVE ID:

(no value)

Component:

BIND Utilities

Area:

bug

Dates

Created:	Fri, 18 Aug 2017 07:32:33 -0400
Updated:	Mon, 21 Aug 2017 04:25:46 -0400
Closed:	Mon, 21 Aug 2017 04:25:46 -0400

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History

Fri, 18 Aug 2017 07:32:33 -0400 Michał Kępień <michal@isc.org> - Ticket created

Date:	Fri, 18 Aug 2017 11:32:33 +0000
Subject:	dnssec-settime can print a bogus warning for a key which has no deletion date set
To:	bind9-public@isc.org
From:	michal@isc.org

When dnssec-settime is called with the -p command line switch for a key which has an inactivation date set but no deletion date set, a bogus warning is printed stating that key deletion is scheduled before its inactivation.

Fri, 18 Aug 2017 07:40:11 -0400 Michał Kępień <michal@isc.org> - Correspondence added

Proposed fix is in rt45807, please review.

Fri, 18 Aug 2017 07:40:12 -0400 Michał Kępień <michal@isc.org> - Status changed from 'open' to 'review'

Fri, 18 Aug 2017 07:40:12 -0400 Michał Kępień <michal@isc.org> - Untaken

Sat, 19 Aug 2017 20:13:03 -0400 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

Looks fine.

Sat, 19 Aug 2017 20:13:05 -0400 Evan Hunt <Evan_Hunt@isc.org> - Given to Michał Kępień <michal@isc.org>

Mon, 21 Aug 2017 04:25:45 -0400 Michał Kępień <michal@isc.org> - Correspondence added

4686. [bug] dnssec-settime -p could print a bogus warning about key deletion scheduled before its inactivation when a key had an inactivation date set but no deletion date set. [RT #45807] 9.9.12, 9.10.7, 9.11.3, 9.12.0

Mon, 21 Aug 2017 04:25:46 -0400 Michał Kępień <michal@isc.org> - Status changed from 'review' to 'resolved'

Mon, 21 Aug 2017 04:25:46 -0400 Michał Kępień <michal@isc.org> - Version Fixed 9.9.12, 9.10.7, 9.11.3, 9.12.0 added