On Tue, 13 Apr 2010, Cillian Sharkey wrote:
Hi,I'm using the latest dnspython from git and can't get any of the HMAC SHA algorithms to work with a TSIG update. They all result in a PeerBadKey exception. I've verified all my SHA keys work correctly with BIND's nsupdate. The code below works when using an MD5 key.
[snip]
update = dns.update.Update('www.testing.heanet.ie.', keyring=keyring)
You need to specify the algorithm to use, so try something like:update = dns.update.Update('www.testing.heanet.ie.', keyring=keyring, keyalgorithm="hmac-sha1")
The valid values for keyalgorithm are are "hmac-sha224", "hmac-sha256", "hmac-sha384", "hmac-sha512", "hmac-sha1", and "HMAC-MD5.SIG-ALG.REG.INT". keyalgorithm defaults to "HMAC-MD5.SIG-ALG.REG.INT" if not specified.
-- Kevin Chen _______________________________________________ dnspython-bugs mailing list [email protected] http://howl.play-bow.org/mailman/listinfo.cgi/dnspython-bugs
