https://bugzilla.novell.com/show_bug.cgi?id=890731 https://bugzilla.novell.com/show_bug.cgi?id=890731#c0 Summary: DHCPD (dynamic DNS): HMAC-SHA{1|224|256|384|512} not supported by DHCPD Classification: openSUSE Product: openSUSE 13.1 Version: Final Platform: x86-64 OS/Version: openSUSE 13.1 Status: NEW Severity: Major Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: olafmartens@web.de QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0 When attempting to set up DHCPD to enable dynamic DNS updates, the daemon complains about not being able to set up a tsec structure. The only algorithm that seems to be supported, though, is HMAC-MD5. Adding any zones under these circumstances causes DHCPD to refuse to start up. Reproducible: Always Steps to Reproduce: 1. Generate a DNSSEC key with any of the HMAC-SHA algorithms 2. Configure BIND for dynamic zone updates 3. Configure DHCPD for dynamic zone updates, but without any zones so far (should still start up to here) 4. Add zones for dynamic updates Actual Results: DHCPD complains when attempting to set up zones for DDNS and algorithm that isn't HMAC-MD5 is used because of the rejected tsec structure. Expected Results: Set up the zones normally and do dynamic DNS updates whenever a lease is requested One can work around this problem by using HMAC-MD5 instead, but for obvious reasons this should be avoided. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.