aboutsummaryrefslogtreecommitdiff
path: root/contrib/ntp/libntp/authreadkeys.c
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/ntp/libntp/authreadkeys.c')
-rw-r--r--contrib/ntp/libntp/authreadkeys.c12
1 files changed, 10 insertions, 2 deletions
diff --git a/contrib/ntp/libntp/authreadkeys.c b/contrib/ntp/libntp/authreadkeys.c
index da91bd0d3443..fa2f5b540de4 100644
--- a/contrib/ntp/libntp/authreadkeys.c
+++ b/contrib/ntp/libntp/authreadkeys.c
@@ -234,7 +234,7 @@ authreadkeys(
* The key type is unused, but is required to be 'M' or
* 'm' for compatibility.
*/
- if (!(*token == 'M' || *token == 'm')) {
+ if (! (toupper(*token) == 'M')) {
log_maybe(NULL,
"authreadkeys: invalid type for key %d",
keyno);
@@ -357,13 +357,21 @@ authreadkeys(
continue;
}
- INSIST(NULL != next);
+ DEBUG_INSIST(NULL != next);
+#if defined(OPENSSL) && defined(ENABLE_CMAC)
+ if (NID_cmac == keytype && len < 16) {
+ msyslog(LOG_WARNING, CMAC " keys are 128 bits, "
+ "zero-extending key %u by %u bits",
+ (u_int)keyno, 8 * (16 - (u_int)len));
+ }
+#endif /* OPENSSL && ENABLE_CMAC */
next->next = list;
list = next;
}
fclose(fp);
if (nerr > 0) {
const char * why = "";
+
if (nerr > nerr_maxlimit)
why = " (emergency break)";
msyslog(LOG_ERR,
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-03 16:21:20 +0000