Bug 206491 - dns/opendnssec: Update to 1.4.9
Summary: dns/opendnssec: Update to 1.4.9
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Erwin Lansing
URL:
Keywords: easy, needs-qa, patch
Depends on:
Blocks:
 
Reported: 2016-01-22 12:16 UTC by Jaap Akkerhuis
Modified: 2016-03-16 13:34 UTC (History)
2 users (show)

See Also:
jaap: maintainer-feedback+


Attachments
Patch to upgrade (756 bytes, patch)
2016-01-22 12:16 UTC, Jaap Akkerhuis
koobs: maintainer-approval+
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Jaap Akkerhuis 2016-01-22 12:16:53 UTC
Created attachment 165950 [details]
Patch to upgrade

The main motivations for this release are bug fixes related to use
cases with large number of zones (more than 50 zones) in combination
with an XFR based setup. Too much concurrent zone transfers causes new
transfers to be held back. These excess transfers however were not
properly scheduled for later.

No migration steps needed when upgrading from OpenDNSSEC 1.4.8.

Bugfixes:

* Add TCP waiting queue. Fix signer getting 'stuck' when adding many
  zones at once. Thanks to Håvard Eidnes to bringing this to our attention.
* OPENDNSSEC-723: received SOA serial reported as on disk.
* Fix potential locking issue on SOA serial.
* Crash on shutdown. At all times join xfr and dns handler threads.
* Make handling of notifies more consistent. Previous implementation would
  bounce between code paths.

Known Issues:

When using SoftHSM2 compiled with OpenSSL, and libmysql with OpenSSL
as database backend for OpenDNSSEC. "ods-ksmutil key list --verbose" 
crashes on exit. This is ultimately a bug in OpenSSL and not new for
this particular release. Make sure you don't use this specific
combination.

From <https://www.opendnssec.org>
Comment 1 Jaap Akkerhuis 2016-02-26 21:57:36 UTC
I thought that the maintainer approval was obvious, given the maintainer issued this patch
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-03-16 13:34:06 UTC
A commit references this bug:

Author: erwin
Date: Wed Mar 16 13:33:52 UTC 2016
New revision: 411235
URL: https://svnweb.freebsd.org/changeset/ports/411235

Log:
  Update to 1.4.9

  The main motivations for this release are bug fixes related to use
  cases with large number of zones (more than 50 zones) in combination
  with an XFR based setup. Too much concurrent zone transfers causes new
  transfers to be held back. These excess transfers however were not
  properly scheduled for later.

  No migration steps needed when upgrading from OpenDNSSEC 1.4.8.

  Bugfixes:

  * Add TCP waiting queue. Fix signer getting 'stuck' when adding many
    zones at once. Thanks to Haavard Eidnes to bringing this to our attention.
  * OPENDNSSEC-723: received SOA serial reported as on disk.
  * Fix potential locking issue on SOA serial.
  * Crash on shutdown. At all times join xfr and dns handler threads.
  * Make handling of notifies more consistent. Previous implementation would
    bounce between code paths.

  Known Issues:

  When using SoftHSM2 compiled with OpenSSL, and libmysql with OpenSSL
  as database backend for OpenDNSSEC. "ods-ksmutil key list --verbose"
  crashes on exit. This is ultimately a bug in OpenSSL and not new for
  this particular release. Make sure you don't use this specific
  combination.

  From <https://www.opendnssec.org>

  PR:             206491
  Submitted by:   Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
  Sponsored by:   DK Hostmaster A/S

Changes:
  head/dns/opendnssec/Makefile
  head/dns/opendnssec/distinfo
Comment 3 Erwin Lansing freebsd_committer freebsd_triage 2016-03-16 13:34:41 UTC
Committer timeout, stealing PR.

Committed, thanks!