BIND 10 #936: Make libcryptolink compatible with botan 1.9 as well as 1.8
BIND 10 Development
do-not-reply at isc.org
Wed May 18 19:00:50 UTC 2011
#936: Make libcryptolink compatible with botan 1.9 as well as 1.8
-------------------------------------+-------------------------------------
Reporter: jelte | Owner: jreed
Type: | Status: reviewing
enhancement | Milestone:
Priority: major | Resolution:
Component: | Sensitive: 0
Unclassified | Sub-Project: DNS
Keywords: | Estimated Difficulty: 0.0
Defect Severity: N/A | Total Hours: 0
Feature Depending on Ticket: |
Add Hours to Ticket: 0 |
Internal?: 0 |
-------------------------------------+-------------------------------------
Comment (by jreed):
Replying to [comment:5 jelte]:
> > - Do we need to report problem about 0 secret length?
> >
> > - Does it hurt to do that secret_len == 0 regardless of version?
> >
>
> i'm not sure about either; on the one hand, at least the HMAC RFC does
not really specify (it says 'secret can be of any length', and that might
include 0 (though it then goes on to say to not use a short one). I don't
know if the rest of our system would actually allow such secrets to be
specified, but more importantly, if we do use 1.8 is will bail out on 0
length, and i'm not sure we should change behaviour depending on de
backend version. (and we could not make tests i think, 0 is the only
'wrong' length, really)
>
Okay maybe you can add a comment about this in the code.
You may merge to master. (I know you tested with 1.8 -- I didn't test with
1.8 only 1.9.) Thanks.
--
Ticket URL: <http://bind10.isc.org/ticket/936#comment:6>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list