mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-30 14:07:59 +00:00
Code Issues Releases Wiki Activity

Log a warning if TSIG keys are too short (where too short is less than 8 bytes).

Browse Source
This commit is contained in:
Brian Wellington
2000-09-07 20:34:04 +00:00
parent 3ad16d4c3a
commit 70d950d16e
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
lib/dns/tsig.c
View File

@@ -16,7 +16,7 @@
*/ */
/* /*
* $Id: tsig.c,v 1.86 2000/08/17 02:08:25 bwelling Exp $ * $Id: tsig.c,v 1.87 2000/09/07 20:34:04 bwelling Exp $
* Principal Author: Brian Wellington * Principal Author: Brian Wellington
*/ */
@@ -183,6 +183,14 @@ dns_tsigkey_createfromkey(dns_name_t *name, dns_name_t *algorithm,
tkey->magic = TSIG_MAGIC; tkey->magic = TSIG_MAGIC;
if (dst_key_size(dstkey) < 64) {
char namestr[DNS_NAME_FORMATSIZE];
dns_name_format(name, namestr, sizeof(namestr));
isc_log_write(dns_lctx, DNS_LOGCATEGORY_DNSSEC,
DNS_LOGMODULE_TSIG, ISC_LOG_INFO,
"the TSIG key for '%s' is too short to "
"be secure", namestr);
}
if (key != NULL) if (key != NULL)
*key = tkey; *key = tkey;