Opened 8 years ago

Last modified 4 years ago

#895 assigned enhancement

"null" crypto module

Reported by: jinmei Owned by: UnAssigned
Priority: medium Milestone: Outstanding Tasks
Component: crypto Version: git
Keywords: Cc:
CVSS Scoring: Parent Tickets:
Sensitive: no Defect Severity: N/A
Sub-Project: Core Feature Depending on Ticket:
Estimated Difficulty: 0.0 Add Hours to Ticket: 0
Total Hours: 0 Internal?: no

Description

It will help if we add an internal backend crypto module (used from
libcryptolink) for environments where Botan is not available. It will
also be helpful for users who don't need any crypto related DNS
operations (no TSIG, no DNSSEC) and don't want to install Botan just
to compile BIND 10.

This should be configurable in configure.ac and should be disabled by
default. It was also suggested that if the null module is enabled a
warning message (that no TSIG or DNSSEC will be usable) be shown.

Note also that when the null module is enabled some unit tests will
fail. We'll need to work around it in some way.

Subtickets

Change History (11)

comment:1 Changed 8 years ago by shane

  • Milestone changed from New Tasks to Year 3 Task Backlog

comment:2 Changed 8 years ago by jinmei

  • Milestone changed from Year 3 Task Backlog to Next-Sprint-Proposed

comment:3 Changed 8 years ago by jinmei

  • Owner changed from jreed to UnAssigned
  • Status changed from new to assigned

comment:4 Changed 8 years ago by jinmei

Apparently the botan issue with Solaris+SunStudio? is not an issue any
more, so this ticket isn't urgent. I'll get it back from the "next
sprint proposed" queue.

comment:5 Changed 8 years ago by jinmei

  • Milestone changed from Next-Sprint-Proposed to Year 3 Task Backlog

comment:6 Changed 5 years ago by tomek

  • Milestone set to Remaining BIND10 tickets

comment:7 Changed 5 years ago by tomek

  • Component changed from build system to crypto
  • Milestone changed from Remaining BIND10 tickets to Common Outstanding Tasks
  • Sub-Project changed from DNS to Core
  • Version set to git

Hmmm, it seems like a good idea. In Kea context, lack of crypto would mean "no DDNS", but there are DHCP deployments that don't need DDNS.

Let's move this to Outstanding Common Tickets.

comment:8 Changed 5 years ago by fdupont

Which exception do you want? And when? (as soon as getCryptoLink() or at any createXXX()?)
BTW is it null crypto or no crypto? (the background idea is not the same).

comment:9 Changed 5 years ago by fdupont

Ping?

comment:10 Changed 4 years ago by tomek

  • Milestone changed from Common Outstanding Tasks to DHCP Outstanding Tasks

comment:11 Changed 4 years ago by tomek

  • Milestone changed from DHCP Outstanding Tasks to Outstanding Tasks

Milestone renamed

Note: See TracTickets for help on using tickets.