Bug #46743 for bind9-public: When checking whether there are both KSK and ZSK keys the inner loop needs to ignore non private keys.

Report information

The Basics

Id:

46743

Status:

resolved

Priority:

Low/Low

Queue:

bind9-public

People

Owner:

Curtis Blackburn <ckb@isc.org>

Requestors:

Mark Andrews <marka@isc.org>

Cc:

AdminCc:

BugTracker

Version Fixed:

9.9.12, 9.9.12(sub), 9.10.7, 9.10.7(sub), 9.11.3, 9.12.0

Version Found:

(no value)

Versions Affected:

(no value)

Versions Planned:

(no value)

Priority:

P2 Normal

Severity:

S2 Normal

CVSS Score:

(no value)

CVE ID:

(no value)

Component:

(no value)

Area:

bug

Dates

Created:	Fri, 01 Dec 2017 00:12:45 -0500
Updated:	Wed, 06 Dec 2017 12:31:59 -0500
Closed:	Wed, 06 Dec 2017 12:31:59 -0500

This bug tracker is no longer active.

Please go to our Gitlab to submit issues (both feature requests and bug reports) for active projects maintained by Internet Systems Consortium (ISC).

Due to security and confidentiality requirements, full access is limited to the primary maintainers.

History

Fri, 01 Dec 2017 00:12:45 -0500 Mark Andrews <marka@isc.org> - Ticket created

Subject:	When checking whether there are both KSK and ZSK keys the inner loop needs to ignore non private keys.
From:	marka@isc.org
To:	bind9-public@isc.org
Date:	Thu, 30 Nov 2017 19:12:44 -1000

Fri, 01 Dec 2017 00:16:26 -0500 Mark Andrews <marka@isc.org> - Status changed from 'open' to 'review'

Fri, 01 Dec 2017 00:39:19 -0500 Evan Hunt <Evan_Hunt@isc.org> - Correspondence added

Code looks fine. There's no test.

Fri, 01 Dec 2017 00:39:21 -0500 Evan Hunt <Evan_Hunt@isc.org> - Given to Mark Andrews <marka@isc.org>

Sun, 03 Dec 2017 02:20:03 -0500 Mark Andrews <marka@isc.org> - Correspondence added

On Thu Nov 30 19:39:19 2017, each wrote: > Code looks fine. There's no test. Added

Sun, 03 Dec 2017 02:20:49 -0500 Mark Andrews <marka@isc.org> - Given to Evan Hunt <Evan_Hunt@isc.org>

Sun, 03 Dec 2017 03:08:01 -0500 Evan Hunt <each@isc.org> - Correspondence added

To:	"Mark Andrews via RT" <bind9-public@isc.org>
CC:
Date:	Sun, 3 Dec 2017 08:08:00 +0000
From:	"Evan Hunt" <each@isc.org>
Subject:	Re: [ISC-Bugs #46743] When checking whether there are both KSK and ZSK keys the inner loop needs to ignore non private keys.

> Added Looks fine.

Sun, 03 Dec 2017 03:08:28 -0500 Evan Hunt <Evan_Hunt@isc.org> - Given to Mark Andrews <marka@isc.org>

Sun, 03 Dec 2017 18:12:01 -0500 Mark Andrews <marka@isc.org> - Version Fixed 9.9.12, 9.9.12(sub), 9.10.7, 9.10.7(sub), 9.11.3, 9.12.0 added

Sun, 03 Dec 2017 18:12:01 -0500 Mark Andrews <marka@isc.org> - Correspondence added

4837. [bug] dns_update_signatures{inc} (add_sigs) was not properly determining if there were active KSK and ZSK keys for a algorithm when update-check-ksk is true (default) leaving records unsigned. [RT #46743]

Sun, 03 Dec 2017 18:12:02 -0500 Mark Andrews <marka@isc.org> - Status changed from 'review' to 'resolved'

Sun, 03 Dec 2017 18:12:02 -0500 Mark Andrews <marka@isc.org> - Untaken

Mon, 04 Dec 2017 04:16:40 -0500 Ondrej Sury <ondrej@isc.org> - Correspondence added

Moving to qa state for QA to determine whether the test suite is sufficient.

Mon, 04 Dec 2017 04:16:41 -0500 The RT System itself - Status changed from 'resolved' to 'open'

Mon, 04 Dec 2017 04:16:41 -0500 Ondrej Sury <ondrej@isc.org> - Status changed from 'open' to 'qa'

Wed, 06 Dec 2017 12:29:49 -0500 Curtis Blackburn <ckb@isc.org> - Taken

Wed, 06 Dec 2017 12:31:59 -0500 Curtis Blackburn <ckb@isc.org> - Status changed from 'qa' to 'resolved'