Home Explore Help
Sign In
zorun
/
kea
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

[trac936] always fail on secret_len == 0

Jelte Jansen 14 years ago
parent
71eb80242f
commit
89e3ffaa1f
1 changed files with 2 additions and 4 deletions
Split View Show Diff Stats
  1. 2 4
      src/lib/cryptolink/crypto_hmac.cc

+ 2 - 4
src/lib/cryptolink/crypto_hmac.cc
View File 

@@ -88,13 +88,11 @@ public:
 
                                   secret_len);
 
                 hmac_->set_key(hashed_key.begin(), hashed_key.size());
 
             } else {
 
-                // Apparently 1.9 considers 0 a valid secret length.
 
-                // We do not.
 
-#if BOTAN_VERSION_CODE >= BOTAN_VERSION_CODE_FOR(1,9,0)
 
+                // Botan 1.8 considers len 0 a bad key. 1.9 does not,
 
+                // but we won't accept it anyway, and fail early
 
                 if (secret_len == 0) {
 
                     isc_throw(BadKey, "Bad HMAC secret length: 0");
 
                 }
 
-#endif
 
                 hmac_->set_key(static_cast<const Botan::byte*>(secret),
 
                                secret_len);
 
             }