Re: [Opendnssec-user] Release candidate for OpenDNSSEC 2.1.8

Tue, 24 Nov 2020 03:57:21 -0800 

On 2020-11-24 06:06, Stefan Ubbink wrote:

Yes, we really have a zone called politie.


Ok, of course, a TLD :)


I tried to compile softhsm2 and opendnssec. I have no keys to purge, but it 
accepts the command.

$ sbin/ods-enforcer --version
opendnssec version 2.1.8rc1

$ sbin/ods-enforcer key list
Keys:
Zone:                           Keytype: State:    Date of next transition:
example.com                     KSK      publish   2020-11-24 12:46:12
example.com                     ZSK      ready     2020-11-24 12:46:12
example                         KSK      publish   2020-11-24 12:48:55
example                         ZSK      ready     2020-11-24 12:48:55

$ sbin/ods-enforcer key purge --zone example --delete
No keys to purge for example
Found no keys to delete from HSM

Your error message Is from the validation logic in 
enforcer/src/keystate/key_purge.c

Are you sure you are running the correct version?


Nov 23 07:08:38 signt1 ods-enforcerd: [key_purge_cmd] unknown arguments for key 
purge command


        while ((opt = getopt_long(argc, (char* const*)argv, "z:p:d", long_options, 
&long_index)) != -1) {
                switch (opt) {
                        case 'z':
                                zone_name = optarg;
                                break;
                        case 'p':
                                policy_name = optarg;
                                break;
                        case 'd':
                                hsmPurge = 1;
                                break;
                        default:
                                client_printf_err(sockfd, "unknown 
arguments\n");
*ods_log_error("[%s] unknown arguments for %s command",****module_str, 
key_purge_funcblock.cmdname);*
                                free(buf);
                                return -1;
                }
        }


--
MVH / Regards
Anders Löwinger, Abundo AB, 072-2060322


_______________________________________________
Opendnssec-user mailing list
[email protected]
https://lists.opendnssec.org/mailman/listinfo/opendnssec-user






















					Reply via email to