mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-30 05:57:52 +00:00
Code Issues Releases Wiki Activity

-p for pseudorandom

Browse Source
This commit is contained in:
Brian Wellington 2000-06-12 19:32:10 +00:00
parent f7f3cc5ee6
commit 7f35bf8e17
1 changed files with 14 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
bin/dnssec/dnssec-signzone.c
View File

@ -1189,8 +1189,10 @@ usage(void) {
fprintf(stderr, "\t-f outfile:\n"); fprintf(stderr, "\t-f outfile:\n");
fprintf(stderr, "\t\tfile the signed zone is written in " fprintf(stderr, "\t\tfile the signed zone is written in "
"(zonefile + .signed)\n"); "(zonefile + .signed)\n");
fprintf(stderr, "\t-a:\n"); fprintf(stderr, "\t-a\n");
fprintf(stderr, "\t\tverify generated signatures\n"); fprintf(stderr, "\t\tverify generated signatures\n");
fprintf(stderr, "\t-p\n");
fprintf(stderr, "\t\tuse pseudorandom data (faster but less secure)\n");
fprintf(stderr, "\t-r randomdev:\n"); fprintf(stderr, "\t-r randomdev:\n");
fprintf(stderr, "\t\ta file containing random data\n"); fprintf(stderr, "\t\ta file containing random data\n");
@ -1214,6 +1216,8 @@ main(int argc, char *argv[]) {
signer_key_t *key; signer_key_t *key;
isc_result_t result; isc_result_t result;
isc_log_t *log = NULL; isc_log_t *log = NULL;
isc_boolean_t pseudorandom = ISC_FALSE;
unsigned int eflags;
result = isc_mem_create(0, 0, &mctx); result = isc_mem_create(0, 0, &mctx);
if (result != ISC_R_SUCCESS) if (result != ISC_R_SUCCESS)
@ -1221,7 +1225,7 @@ main(int argc, char *argv[]) {
dns_result_register(); dns_result_register();
while ((ch = isc_commandline_parse(argc, argv, "s:e:c:v:o:f:ahr:")) while ((ch = isc_commandline_parse(argc, argv, "s:e:c:v:o:f:ahpr:"))
!= -1) { != -1) {
switch (ch) { switch (ch) {
case 's': case 's':
@ -1245,6 +1249,10 @@ main(int argc, char *argv[]) {
fatal("cycle period must be numeric"); fatal("cycle period must be numeric");
break; break;
case 'p':
pseudorandom = ISC_TRUE;
break;
case 'r': case 'r':
randomfile = isc_mem_strdup(mctx, randomfile = isc_mem_strdup(mctx,
isc_commandline_argument); isc_commandline_argument);
@ -1287,8 +1295,10 @@ main(int argc, char *argv[]) {
setup_entropy(mctx, randomfile, &ectx); setup_entropy(mctx, randomfile, &ectx);
if (randomfile != NULL) if (randomfile != NULL)
isc_mem_free(mctx, randomfile); isc_mem_free(mctx, randomfile);
result = dst_lib_init(mctx, ectx, eflags = ISC_ENTROPY_BLOCKING;
ISC_ENTROPY_BLOCKING | ISC_ENTROPY_GOODONLY); if (!pseudorandom)
eflags |= ISC_ENTROPY_GOODONLY;
result = dst_lib_init(mctx, ectx, eflags);
if (result != ISC_R_SUCCESS) if (result != ISC_R_SUCCESS)
fatal("could not initialize dst"); fatal("could not initialize dst");