From 50b83be77b44fa173e3d2e59bb845e761e80caaa Mon Sep 17 00:00:00 2001 From: Matthias Schiffer Date: Mon, 13 Oct 2014 21:44:09 +0200 Subject: ec25519-fhmqvc: improve unknown key message --- src/protocols/ec25519_fhmqvc/handshake.c | 13 ++++++++++--- 1 file changed, 10 insertions(+), 3 deletions(-) diff --git a/src/protocols/ec25519_fhmqvc/handshake.c b/src/protocols/ec25519_fhmqvc/handshake.c index 50fc594..e975e6d 100644 --- a/src/protocols/ec25519_fhmqvc/handshake.c +++ b/src/protocols/ec25519_fhmqvc/handshake.c @@ -519,6 +519,13 @@ void fastd_protocol_ec25519_fhmqvc_handshake_init(fastd_socket_t *sock, const fa } +static inline void print_unknown_key(const fastd_peer_address_t *addr, const unsigned char key[PUBLICKEYBYTES]) { + char buf[65]; + hexdump(buf, key); + + pr_verbose("ignoring handshake from %I (unknown key %s)", addr, buf); +} + #ifdef WITH_DYNAMIC_PEERS /** Data attached to an asynchronous on-verify run */ @@ -529,7 +536,7 @@ typedef struct verify_data { /** Adds a dynamic peer for an unknown key */ static fastd_peer_t * add_dynamic(fastd_socket_t *sock, const fastd_peer_address_t *addr, const unsigned char key[PUBLICKEYBYTES]) { if (!fastd_allow_verify()) { - pr_debug("ignoring handshake from %I (unknown key)", addr); + print_unknown_key(addr, key); return NULL; } @@ -606,8 +613,8 @@ void fastd_protocol_ec25519_fhmqvc_handle_verify_return(fastd_peer_t *peer, fast #else /** Dummy add dynamic function for fastd versions without on-verify support */ -static inline fastd_peer_t * add_dynamic(UNUSED fastd_socket_t *sock, const fastd_peer_address_t *addr, UNUSED const unsigned char key[PUBLICKEYBYTES]) { - pr_debug("ignoring handshake from %I (unknown key)", addr); +static inline fastd_peer_t * add_dynamic(UNUSED fastd_socket_t *sock, const fastd_peer_address_t *addr, const unsigned char key[PUBLICKEYBYTES]) { + print_unknown_key(addr, key); return NULL; } -- cgit v1.2.3