Hi Ian,
On Sat, Feb 24, 2024 at 02:16:46PM +0000, Ian Jackson wrote:
> Daniel Gröber writes ("Bug#1064452: dkim-rotate: Errors during --new leave
> state corrupted"):
> > I'm trying to get started with dkim-rotate, but I hit an error during
> > initial provisioning with --new. I use knot for auth DNS so I don't
> > have the rndc, hence I tried to override dns_reload in the config.
>
> Thanks for the report. I'm sorry it didn't work as expected.
>
> > $ sudo dkim-rotate --status dkim
> > dkim-rotate: instance dkim: error: state corrupted!
> > /var/lib/dkim-rotate/dkim/state:5: bad key line
>
> I have reproduced this and will fix it. I agree that this is a
> serious bug and I will try to get it fixed in a stable update.
>
> I'm afraid I don't have a clear workaround for you right now but I
> will send you one as soon as I do.After fixing the config it does go through successfully so no workaround is really needed. I just had to wipe the state first. > > Seems a bit of a usability problem for new users. I'd recommend not > > commenting out directives in the example config without an > > explaination > > Yes. I may change the syntax too to remove the `;` from the SERIAL, > but that's not entirely trivial since I would want it to be backward > compatible. I don't think it's entirely necessary to do that. Just have to take care to provide new users with an example that doesn't have this ambiguity. FYI: You might also want to include an example config in the .7 manpage. I found having to dig through the Debian package to find one a bit inconvenient ;) Thanks, --Daniel
signature.asc
Description: PGP signature
