[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: lib/49138: "libdns" cannot use "hmac-sha512" keys
The following reply was made to PR bin/49138; it has been noted by GNATS.
From: "Jeremy C. Reed" <reed%reedmedia.net@localhost>
To: Matthias Scheler <tron%zhadum.org.uk@localhost>
Subject: Re: lib/49138: "libdns" cannot use "hmac-sha512" keys
Date: Mon, 8 Sep 2014 14:25:58 -0500 (CDT)
On Mon, 8 Sep 2014, Matthias Scheler wrote:
> However this looks problematic. BIND calls e.g.
> "HMAC-SHA512.SIG-ALG.REG.INT" simply "hmac-sha512". It will therefore
> not be possible share key files between BIND and DHCPD if such keys
> are used.
I was told that while BIND9 does not like the full name, ISC DHCP will
allow you to abbreviate the algorithm name and will treat all three
forms of the algorithm name equivalently: HMAC-SHA512, hmac-sha512, and
HMAC-SHA512.SIG-ALG.REG.INT. (Both are case insensitive too.)
Main Index |
Thread Index |