#8214 Support for opendnssec 2.1.6
Closed: fixed 2 years ago by frenaud. Opened 2 years ago by frenaud.

Issue

On rawhide, the command ipa-dns-install --dnssec-master fails with an error because the command /usr/bin/ods-ksmutil could not be found:

DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557 Done configuring IPA OpenDNSSEC exporter daemon (ipa-ods-exporter).
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557 Configuring OpenDNSSEC enforcer daemon (ods-enforcerd)
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [1/8]: checking status
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [2/8]: setting up configuration files
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [3/8]: setting up ownership and file mode bits
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [4/8]: generating master key
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [5/8]: setting up OpenDNSSEC
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557   [error] FileNotFoundError: [Errno 2] No such file or directory: '/usr/bin/ods-ksmutil'
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:557 [Errno 2] No such file or directory: '/usr/bin/ods-ksmutil'
DEBUG    ipatests.pytest_ipa.integration.host.Host.master.cmd37:transport.py:217 Exit code: 1

Fedora rawhide is shipping opendnssec 2.1.6 that removed this command.

Steps to Reproduce

  1. Install freeipa-server and freeipa-server-dns packages on rawhide. Check that opendnssec 2.1.6 is installed
  2. Install ipa server without dns
  3. install the DNS component with ipa-dns-install --dnssec-master

Actual behavior

ipa-dns-install fails with [error] FileNotFoundError: [Errno 2] No such file or directory: '/usr/bin/ods-ksmutil'

Expected behavior

ipa-dns-install should succeed

Version/Release/Distribution

freeipa-server-4.9.0.dev-0.fc33.x86_64
opendnssec-2.1.6-2.fc33.x86_64

Additional info:

Issue was detected during the nightly test on rawhide: PR 148


Metadata Update from @frenaud:
- Issue assigned to frenaud

2 years ago

Metadata Update from @frenaud:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/4295

2 years ago

master:

  • 7ae1352 Support opendnssec 2.1.6
  • c2e355a Remove the <Interval> from opendnssec conf
  • b857828 With opendnssec 2, read the zone list from file
  • 8080bf7 Support OpenDNSSEC 2.1: new ods-signer protocol
  • b686583 DnsSecMaster migration: move the call to zonelist export later
  • 682b59c opendnssec2.1 support: move all ods tasks to specific file

ipa-4-8:

  • 23993f5 Support opendnssec 2.1.6
  • 5716c3b Remove the <Interval> from opendnssec conf
  • 6cb3b11 With opendnssec 2, read the zone list from file
  • fc4ccfa Support OpenDNSSEC 2.1: new ods-signer protocol
  • 598c55c DnsSecMaster migration: move the call to zonelist export later
  • 799ebc8 opendnssec2.1 support: move all ods tasks to specific file

Metadata Update from @frenaud:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

2 years ago

Login to comment on this ticket.

Metadata