- If unknown trust anchor algorithm, and libressl is used, error

  message encourages upgrade of the libressl package.

git-svn-id: file:///svn/unbound/trunk@3378 be551aaa-1e26-0410-a405-d3ace91eadb9

diff --git a/doc/Changelog b/doc/Changelog
index d806b5ca67981ad5e1063f46e5ccdce13d8dbe80..d5ee3bb0e92030605c3893d37c11f08dfeac2375 100644 (file)
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -1,6 +1,8 @@
 25 March 2015: Wouter
        - Fix #657:  libunbound(3) recommends deprecated
          CRYPTO_set_id_callback.
+       - If unknown trust anchor algorithm, and libressl is used, error
+         message encourages upgrade of the libressl package.
 
 23 March 2015: Wouter
        - Fix segfault on user not found at startup (from Maciej Soltysiak).

diff --git a/validator/val_anchor.c b/validator/val_anchor.c
index 2d9d4aba60211afc629ea5a6dd13130c29652024..79581cc46bf056c26a65bad0d93fcb8fca3b8f60 100644 (file)
--- a/validator/val_anchor.c
+++ b/validator/val_anchor.c
@@ -1020,7 +1020,13 @@ anchors_assemble_rrsets(struct val_anchors* anchors)
                        dname_str(ta->name, b);
                        log_warn("trust anchor %s has no supported algorithms,"
                                " the anchor is ignored (check if you need to"
-                               " upgrade unbound and openssl)", b);
+                               " upgrade unbound and "
+#ifdef HAVE_LIBRESSL
+                               "libressl"
+#else
+                               "openssl"
+#endif
+                               ")", b);
                        (void)rbtree_delete(anchors->tree, &ta->node);
                        lock_basic_unlock(&ta->lock);
                        anchors_delfunc(&ta->node, NULL);