[Dnssec-trigger] OpenSSL 1.1.0 incompatibility and git repo on GitHub

Tomas Hozza thozza at redhat.com
Wed Mar 1 11:58:37 UTC 2017


I updated dnssec-trigger in Fedora to the upstream version 0.13. While it compiles with OpenSSL 1.1.0, it does not work with it. We have a bug in Fedora for that https://bugzilla.redhat.com/show_bug.cgi?id=1427561. It seems that the fix has been already provided by Ondrej Sury as a pull request on GitHub - https://github.com/NLnetLabs/dnssec-trigger/pull/1. Would you please consider reviewing the changes and merging them?

Additionally I would like to ask if you ever considered moving away from SVN and using e.g. the GitHub repository as the main upstream source control? From my point of view, it would help to get contributions for the project. We could easily create pull requests to propose changes and one could connect it to a CI system, that would also test pull requests and the master itself. One of the engineers in my team (Martin Sehnoutka - https://github.com/msehnout/dnssec-trigger-fedora) is currently working on rewriting the configuration of forward zones for e.g. VPNs from the Python script to the daemon, so that the logic is in a single place. Martin is also working on some unit tests and a way to test dnssec-trigger daemon itself. I think having a repository on GitHub could help to have an automated CI taking advantage of any unit tests and integration tests.


Tomas Hozza
Associate Manager, Software Engineering - EMEA ENG Mainstream RHEL

Red Hat Inc.                 http://cz.redhat.com

More information about the dnssec-trigger mailing list