dnssec-root package too old
On October 11, 2018 there was a key DNSSEC root key rollover:
https://www.redhat.com/en/blog/what-you-need-know-about-first-ever-dnssec-root-key-rollover-october-11-2018
Due to that dnssec-root package is outdated; unbound (and probably other resolvers) have stopped working in alpine.
Log from unbound:
services daemon.info unbound: [1453:0] info: failed to prime trust anchor -- DNSKEY rrset is not secure . DNSKEY IN
(from redmine: issue id 9552, created on 2018-10-14, closed on 2019-03-01)
- Changesets:
- Revision f897f1ae by Natanael Copa on 2019-02-25T20:10:42Z:
main/dnssec-root: upgrade to 20190225 and make reproducible
we store the key in our git repo so we are sure we get exactly same
build from same git checkout.
ref #9552
- Revision 0872674f by Natanael Copa on 2019-02-26T18:20:59Z:
main/dnssec-root: upgrade to 20190225 and make reproducible
we store the key in our git repo so we are sure we get exactly same
build from same git checkout.
fixes #9552
(cherry picked from commit f897f1ae96d9a1a398443338afb504d24e8106e3)