From karel.slany at nic.cz Mon Sep 3 13:20:24 2012 From: karel.slany at nic.cz (Karel Slany) Date: Mon, 03 Sep 2012 15:20:24 +0200 Subject: [ldns-users] pyLDNS -- added rich comparison methods Message-ID: <5044AE98.6080907@nic.cz> Hello, I've added the support for Python's rich comparison methods into ldns_dname, ldns_rdf, ldns_rr and ldns_rr_list classes. These are necessary for the proper function of binary comparison operators (<, ==, ...) in Python 3, because the __cmp__() special method isn't supported in Python 3. Also, please, run the command: chmod +x trunk/contrib/python/examples/test_rr.py The script should be marked as executable in order to be properly executed as the 'test' target from trunk/contrib/python/Makefile (the development Makefile of pyLDNS). Thanks. Best regards, K. -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: ldns_rich_comparison.diff URL: From julian.heisz at gmail.com Tue Sep 4 00:17:10 2012 From: julian.heisz at gmail.com (Julian Heisz) Date: Mon, 3 Sep 2012 20:17:10 -0400 Subject: [ldns-users] Compiling on Cygwin for OpenSSH Message-ID: I've been trying to build ldns and OpenSSH on Cygwin, but I can't configure OpenSSH because it can't find ldns, presumably because of this: *** Warning: linker path does not have real file for library -lcrypto. *** I have the capability to make that library automatically link in when *** you link to this library. But I can only do this if you have a *** shared version of the library, which you do not appear to have *** because I did check the linker path looking for a file starting *** with libcrypto and none of the candidates passed a file format test *** using a file magic. Last file checked: /usr/local/ssl/lib/libcrypto.a *** The inter-library dependencies that have been dropped here will be *** automatically added whenever a program is linked with this library *** or is declared to -dlopen it. *** Since this library must not contain undefined symbols, *** because either the platform does not support them or *** it was explicitly requested with -no-undefined, *** libtool will only create a static version of it. Every time I try to make ldns, I get that. It's probably a problem with OpenSSL, but I can't find anything online, so I'm trying here. Anybody have any idea why this is happening? --j -------------- next part -------------- An HTML attachment was scrubbed... URL: From willem at nlnetlabs.nl Tue Sep 4 07:44:13 2012 From: willem at nlnetlabs.nl (Willem Toorop) Date: Tue, 04 Sep 2012 09:44:13 +0200 Subject: [ldns-users] pyLDNS -- added rich comparison methods In-Reply-To: <5044AE98.6080907@nic.cz> References: <5044AE98.6080907@nic.cz> Message-ID: <5045B14D.5070303@nlnetlabs.nl> Thanks Karel! Very good. Committed. -- Willem Op 03-09-12 15:20, Karel Slany schreef: > Hello, > > I've added the support for Python's rich comparison methods into > ldns_dname, ldns_rdf, ldns_rr and ldns_rr_list classes. These are > necessary for the proper function of binary comparison operators (<, ==, > ...) in Python 3, because the __cmp__() special method isn't supported > in Python 3. > > Also, please, run the command: > > chmod +x trunk/contrib/python/examples/test_rr.py > > The script should be marked as executable in order to be properly > executed as the 'test' target from trunk/contrib/python/Makefile (the > development Makefile of pyLDNS). Thanks. > > Best regards, > K. > > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > From willem at nlnetlabs.nl Wed Sep 5 09:07:09 2012 From: willem at nlnetlabs.nl (Willem Toorop) Date: Wed, 05 Sep 2012 11:07:09 +0200 Subject: [ldns-users] Compiling on Cygwin for OpenSSH In-Reply-To: References: Message-ID: <5047163D.8000900@nlnetlabs.nl> Hi Julian, I was not able to reproduce. Could you perhaps give some more details (the output from configure, versions etc.). Regards, -- Willem Op 04-09-12 02:17, Julian Heisz schreef: > I've been trying to build ldns and OpenSSH on Cygwin, but I can't > configure OpenSSH because it can't find ldns, presumably because of this: > > *** Warning: linker path does not have real file for library -lcrypto. > *** I have the capability to make that library automatically link in > when > *** you link to this library. But I can only do this if you have a > *** shared version of the library, which you do not appear to have > *** because I did check the linker path looking for a file starting > *** with libcrypto and none of the candidates passed a file format test > *** using a file magic. Last file checked: > /usr/local/ssl/lib/libcrypto.a > *** The inter-library dependencies that have been dropped here will be > *** automatically added whenever a program is linked with this library > *** or is declared to -dlopen it. > > *** Since this library must not contain undefined symbols, > *** because either the platform does not support them or > *** it was explicitly requested with -no-undefined, > *** libtool will only create a static version of it. > > Every time I try to make ldns, I get that. It's probably a problem with > OpenSSL, but I can't find anything online, so I'm trying here. Anybody > have any idea why this is happening? > > --j > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > From julian.heisz at gmail.com Thu Sep 6 02:23:32 2012 From: julian.heisz at gmail.com (Julian Heisz) Date: Wed, 5 Sep 2012 22:23:32 -0400 Subject: [ldns-users] Compiling on Cygwin for OpenSSH In-Reply-To: <5047163D.8000900@nlnetlabs.nl> References: <5047163D.8000900@nlnetlabs.nl> Message-ID: I've got ldns 1.6.13 that I'm trying to build, OpenSSL 1.0.1c that I built from source (and all the tests worked, so it seems like that went well), and I'm trying to build OpenSSH6.1p1. Relevant pastes (you should be able to tell what they are from the contents): http://pastie.org/private/lpxw3v5wxkldyzaezs12ka http://pastie.org/private/1wobfotodukrtxwrw19hbw http://pastie.org/private/bi1luauhjnxqkhg4umblvw --j On Wed, Sep 5, 2012 at 5:07 AM, Willem Toorop wrote: > Hi Julian, > > I was not able to reproduce. Could you perhaps give some more details > (the output from configure, versions etc.). > > Regards, > -- Willem > > Op 04-09-12 02:17, Julian Heisz schreef: > > I've been trying to build ldns and OpenSSH on Cygwin, but I can't > > configure OpenSSH because it can't find ldns, presumably because of this: > > > > *** Warning: linker path does not have real file for library > -lcrypto. > > *** I have the capability to make that library automatically link in > > when > > *** you link to this library. But I can only do this if you have a > > *** shared version of the library, which you do not appear to have > > *** because I did check the linker path looking for a file starting > > *** with libcrypto and none of the candidates passed a file format > test > > *** using a file magic. Last file checked: > > /usr/local/ssl/lib/libcrypto.a > > *** The inter-library dependencies that have been dropped here will > be > > *** automatically added whenever a program is linked with this > library > > *** or is declared to -dlopen it. > > > > *** Since this library must not contain undefined symbols, > > *** because either the platform does not support them or > > *** it was explicitly requested with -no-undefined, > > *** libtool will only create a static version of it. > > > > Every time I try to make ldns, I get that. It's probably a problem with > > OpenSSL, but I can't find anything online, so I'm trying here. Anybody > > have any idea why this is happening? > > > > --j > > > > > > _______________________________________________ > > ldns-users mailing list > > ldns-users at open.nlnetlabs.nl > > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > -------------- next part -------------- An HTML attachment was scrubbed... URL: From willem at nlnetlabs.nl Thu Sep 6 09:04:41 2012 From: willem at nlnetlabs.nl (Willem Toorop) Date: Thu, 06 Sep 2012 11:04:41 +0200 Subject: [ldns-users] Compiling on Cygwin for OpenSSH In-Reply-To: References: <5047163D.8000900@nlnetlabs.nl> Message-ID: <50486729.2010108@nlnetlabs.nl> Maybe you have build OpenSSL statically i.s.o dynamically. Have you given the shared option to ./config with OpenSSL? That just worked for me... Op 06-09-12 04:23, Julian Heisz schreef: > I've got ldns 1.6.13 that I'm trying to build, OpenSSL 1.0.1c that I > built from source (and all the tests worked, so it seems like that went > well), and I'm trying to build OpenSSH6.1p1. > > Relevant pastes (you should be able to tell what they are from the > contents): > http://pastie.org/private/lpxw3v5wxkldyzaezs12ka > http://pastie.org/private/1wobfotodukrtxwrw19hbw > http://pastie.org/private/bi1luauhjnxqkhg4umblvw > > --j > > > > On Wed, Sep 5, 2012 at 5:07 AM, Willem Toorop > wrote: > > Hi Julian, > > I was not able to reproduce. Could you perhaps give some more details > (the output from configure, versions etc.). > > Regards, > -- Willem > > Op 04-09-12 02:17, Julian Heisz schreef: > > I've been trying to build ldns and OpenSSH on Cygwin, but I can't > > configure OpenSSH because it can't find ldns, presumably because > of this: > > > > *** Warning: linker path does not have real file for library > -lcrypto. > > *** I have the capability to make that library automatically > link in > > when > > *** you link to this library. But I can only do this if you > have a > > *** shared version of the library, which you do not appear to have > > *** because I did check the linker path looking for a file > starting > > *** with libcrypto and none of the candidates passed a file > format test > > *** using a file magic. Last file checked: > > /usr/local/ssl/lib/libcrypto.a > > *** The inter-library dependencies that have been dropped here > will be > > *** automatically added whenever a program is linked with this > library > > *** or is declared to -dlopen it. > > > > *** Since this library must not contain undefined symbols, > > *** because either the platform does not support them or > > *** it was explicitly requested with -no-undefined, > > *** libtool will only create a static version of it. > > > > Every time I try to make ldns, I get that. It's probably a problem > with > > OpenSSL, but I can't find anything online, so I'm trying here. Anybody > > have any idea why this is happening? > > > > --j > > > > > > _______________________________________________ > > ldns-users mailing list > > ldns-users at open.nlnetlabs.nl > > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > From julian.heisz at gmail.com Fri Sep 7 00:43:42 2012 From: julian.heisz at gmail.com (Julian Heisz) Date: Thu, 6 Sep 2012 20:43:42 -0400 Subject: [ldns-users] Compiling on Cygwin for OpenSSH In-Reply-To: <50486729.2010108@nlnetlabs.nl> References: <5047163D.8000900@nlnetlabs.nl> <50486729.2010108@nlnetlabs.nl> Message-ID: I just tried building it all again with --shared for OpenSSL. It fixed the libtool warning, but OpenSSH still won't build. It looks like the version in Cygwin's repositories was compiled with ldns though. --j On Thu, Sep 6, 2012 at 5:04 AM, Willem Toorop wrote: > Maybe you have build OpenSSL statically i.s.o dynamically. > Have you given the shared option to ./config with OpenSSL? > That just worked for me... > > > Op 06-09-12 04:23, Julian Heisz schreef: > > I've got ldns 1.6.13 that I'm trying to build, OpenSSL 1.0.1c that I > > built from source (and all the tests worked, so it seems like that went > > well), and I'm trying to build OpenSSH6.1p1. > > > > Relevant pastes (you should be able to tell what they are from the > > contents): > > http://pastie.org/private/lpxw3v5wxkldyzaezs12ka > > http://pastie.org/private/1wobfotodukrtxwrw19hbw > > http://pastie.org/private/bi1luauhjnxqkhg4umblvw > > > > --j > > > > > > > > On Wed, Sep 5, 2012 at 5:07 AM, Willem Toorop > > wrote: > > > > Hi Julian, > > > > I was not able to reproduce. Could you perhaps give some more details > > (the output from configure, versions etc.). > > > > Regards, > > -- Willem > > > > Op 04-09-12 02:17, Julian Heisz schreef: > > > I've been trying to build ldns and OpenSSH on Cygwin, but I can't > > > configure OpenSSH because it can't find ldns, presumably because > > of this: > > > > > > *** Warning: linker path does not have real file for library > > -lcrypto. > > > *** I have the capability to make that library automatically > > link in > > > when > > > *** you link to this library. But I can only do this if you > > have a > > > *** shared version of the library, which you do not appear to > have > > > *** because I did check the linker path looking for a file > > starting > > > *** with libcrypto and none of the candidates passed a file > > format test > > > *** using a file magic. Last file checked: > > > /usr/local/ssl/lib/libcrypto.a > > > *** The inter-library dependencies that have been dropped here > > will be > > > *** automatically added whenever a program is linked with this > > library > > > *** or is declared to -dlopen it. > > > > > > *** Since this library must not contain undefined symbols, > > > *** because either the platform does not support them or > > > *** it was explicitly requested with -no-undefined, > > > *** libtool will only create a static version of it. > > > > > > Every time I try to make ldns, I get that. It's probably a problem > > with > > > OpenSSL, but I can't find anything online, so I'm trying here. > Anybody > > > have any idea why this is happening? > > > > > > --j > > > > > > > > > _______________________________________________ > > > ldns-users mailing list > > > ldns-users at open.nlnetlabs.nl > > > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > > > > _______________________________________________ > > ldns-users mailing list > > ldns-users at open.nlnetlabs.nl > > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > > > > > > > _______________________________________________ > > ldns-users mailing list > > ldns-users at open.nlnetlabs.nl > > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > > > > _______________________________________________ > ldns-users mailing list > ldns-users at open.nlnetlabs.nl > http://open.nlnetlabs.nl/mailman/listinfo/ldns-users > -------------- next part -------------- An HTML attachment was scrubbed... URL: From paul at nohats.ca Mon Sep 10 18:32:00 2012 From: paul at nohats.ca (Paul Wouters) Date: Mon, 10 Sep 2012 14:32:00 -0400 (EDT) Subject: [ldns-users] ldns-read-zone crasher Message-ID: I ran into this on ldns-1.6.13: [root at validator01 xx-zone]# cat dnskey.good xx. 3600 IN SOA zonegen01.lab-servers.lab. admin-dns.cira.xx. 2012091012 1800 900 3456000 3600 xx. 86400 IN DNSKEY 256 3 8 AwEAAa7Al6/xcNqehtQ6dYxiBywljH1VjPIN/VG9 AOfv3H2ItYeUEpYe3Msf/TXj7dKKxc6bTNEdkR7fvFSK0VpwC9SJdf6E/PfAxRZYkZ1ckDZHcB404/67 WFdjVX1zh7cOZwYPL6AjZWdFHloym2+lXrBAt/Pyifu3d7eZTiwjmuJN ;{id = 20853 (zsk), siz e = 1024b} xx. 86400 IN DNSKEY 257 3 8 AwEAAcdgvgJkdaAU3YYh8YvaK8vLKM51oOR6T/ag wDnc1v1CaNfVC6Afm1JSe+x5XG+GePHmhjKDeTOT/JKBrFmvz7coILFju2l1ZRbZiohuWPoI3a+ue7Ew D2Ed9BTJ/zUvFks72G0Jrf3Fwx0WVXO2Upskpgq172Q/ydL3OmobJCHGNenQKhLcFBUf6uNR/hj43ZSN 5cgNJBXarP7XKNWkAjxUUUMQXMWmYGRH6iwn0G+xFyTqTZWkxws+5yeouBidjPWUQ9PpfVmmM+sW/XwL NDmvcSkauWx2PmX7/4MsoluThqvQZZGrsrZAxN9Y+WZ+5wsHqgpUyDy2AlxVru6xr/k= ;{id = 5315 6 (ksk), size = 2048b} Note the lines are already split in the original dnskey.good file. [root at validator01 xx-zone]# cat dnskey.good |ldns-read-zone -c -d Segmentation fault (core dumped) Paul From willem at nlnetlabs.nl Tue Sep 11 09:55:59 2012 From: willem at nlnetlabs.nl (Willem Toorop) Date: Tue, 11 Sep 2012 11:55:59 +0200 Subject: [ldns-users] ldns-read-zone crasher In-Reply-To: References: Message-ID: <504F0AAF.3050603@nlnetlabs.nl> Fixed in trunk. Thanks! -- Willem From el.baby at gmail.com Sun Sep 23 00:04:19 2012 From: el.baby at gmail.com (Mariano Absatz - gmail) Date: Sat, 22 Sep 2012 21:04:19 -0300 Subject: [ldns-users] generate TSIG key? Message-ID: Hi, I just compiled and installed NSD and ldns and want to generate a TSIG key for zone transfers. It seems like ldns-keygen does NOT do this (it doesn't have a HOST or TSIG option) and I can't find any other way to do it even when "TSIG support" is in the feature list at http://www.nlnetlabs.nl/projects/ldns/ and a 5 year old message on this list ( http://open.nlnetlabs.nl/pipermail/ldns-users/2007-October/000091.html) claiming it would be added in the following release. I know ldns is a library and the ldns-* utilities are more like programming examples but, given that I'm not a programmer, what should I do? Install bind and use its utilities? -- Mariano Absatz - El Baby www.clueless.com.ar -------------- next part -------------- An HTML attachment was scrubbed... URL: From jpmens.dns at gmail.com Sun Sep 23 06:08:23 2012 From: jpmens.dns at gmail.com (Jan-Piet Mens) Date: Sun, 23 Sep 2012 08:08:23 +0200 Subject: [ldns-users] generate TSIG key? In-Reply-To: References: Message-ID: <20120923060823.GD22756@jmbp.ww.mens.de> > It seems like ldns-keygen does NOT do this (it doesn't have a HOST or TSIG > option) I think this is what you're looking for: (adapt key size and name of course): ldns-keygen -a hmac-md5.sig-alg.reg.int -b 128 name Regards, -JP From el.baby at gmail.com Sun Sep 23 23:18:40 2012 From: el.baby at gmail.com (Mariano Absatz - gmail) Date: Sun, 23 Sep 2012 20:18:40 -0300 Subject: [ldns-users] generate TSIG key? In-Reply-To: <20120923060823.GD22756@jmbp.ww.mens.de> References: <20120923060823.GD22756@jmbp.ww.mens.de> Message-ID: On Sun, Sep 23, 2012 at 3:08 AM, Jan-Piet Mens wrote: > > It seems like ldns-keygen does NOT do this (it doesn't have a HOST or > TSIG > > option) > > I think this is what you're looking for: (adapt key size and name of > course): > > ldns-keygen -a hmac-md5.sig-alg.reg.int -b 128 name > Excelent! Thanx a lot for your help, Jan-Piet. That's precisely what I needed... maybe a note somewhere in the docs (either in NSD or ldns) would help newbies (like me). Regards. -- Mariano Absatz - El Baby www.clueless.com.ar -------------- next part -------------- An HTML attachment was scrubbed... URL: From willem at nlnetlabs.nl Tue Sep 25 12:31:54 2012 From: willem at nlnetlabs.nl (Willem Toorop) Date: Tue, 25 Sep 2012 14:31:54 +0200 Subject: [ldns-users] generate TSIG key? In-Reply-To: References: <20120923060823.GD22756@jmbp.ww.mens.de> Message-ID: <5061A43A.5020000@nlnetlabs.nl> Op 24-09-12 01:18, Mariano Absatz - gmail schreef: > That's precisely what I needed... maybe a note somewhere in the docs > (either in NSD or ldns) would help newbies (like me). Hi Mariano, Changed DESCRIPTION section of the manpage into: DESCRIPTION ldns-keygen is used to generate a private/public keypair. When run, it will create 3 files; a .key file with the public DNSKEY, a .private file with the private keydata and a .ds with the DS record of the DNSKEY record. ldns-keygen can also be used to create symmetric keys (for TSIG) by selecting the appropriate algorithm: hmac-md5.sig-alg.reg.int, hmac-sha1 or hmac-sha256. In that case no DS record will be cre? ated and no .ds file. ldns-keygen prints the basename for the key files: K++ Good? -- Willem From el.baby at gmail.com Tue Sep 25 12:34:39 2012 From: el.baby at gmail.com (Mariano Absatz - gmail) Date: Tue, 25 Sep 2012 09:34:39 -0300 Subject: [ldns-users] generate TSIG key? In-Reply-To: <5061A43A.5020000@nlnetlabs.nl> References: <20120923060823.GD22756@jmbp.ww.mens.de> <5061A43A.5020000@nlnetlabs.nl> Message-ID: On Tue, Sep 25, 2012 at 9:31 AM, Willem Toorop wrote: > Op 24-09-12 01:18, Mariano Absatz - gmail schreef: > > That's precisely what I needed... maybe a note somewhere in the docs > > (either in NSD or ldns) would help newbies (like me). > > Hi Mariano, > > Changed DESCRIPTION section of the manpage into: > > DESCRIPTION > ldns-keygen is used to generate a private/public keypair. When > run, it will create 3 files; a .key file with the public DNSKEY, > a .private file with the private keydata and a .ds with the DS > record of the DNSKEY record. > > ldns-keygen can also be used to create symmetric keys (for TSIG) > by selecting the appropriate algorithm: hmac-md5.sig-alg.reg.int, > hmac-sha1 or hmac-sha256. In that case no DS record will be cre? > ated and no .ds file. > > ldns-keygen prints the basename for the key files: > K++ > > Good? > > Cool! Seems like something even I can understand :-) Thanx a lot. -- Mariano Absatz - El Baby www.clueless.com.ar -------------- next part -------------- An HTML attachment was scrubbed... URL: