From 49c6cbaa656966a0f00c637591fdab1908c0c38b Mon Sep 17 00:00:00 2001
From: Luca Filipozzi <lfilipoz@emyr.net>
Date: Sat, 8 Mar 2014 05:46:40 +0000
Subject: [PATCH] easydns uses hmac-md5 algorithm

---
 .../named/templates/named.conf.puppet-shared-keys.erb    | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/modules/named/templates/named.conf.puppet-shared-keys.erb b/modules/named/templates/named.conf.puppet-shared-keys.erb
index e7f3722d..c9e68368 100644
--- a/modules/named/templates/named.conf.puppet-shared-keys.erb
+++ b/modules/named/templates/named.conf.puppet-shared-keys.erb
@@ -22,15 +22,16 @@ pairs.each do |pair|
 	pair.delete(fqdn)
 	other = pair[0]
 
-	key = scope.function_hkdf(['/etc/puppet/secret', "puppet-key-#{keyname}"])
-
-	lines << "key #{keyname} { algorithm hmac-sha256; secret \"#{key}\"; };"
-
 	if other == 'xfr0.easydns.com'
 		remote_ip = ['64.68.200.91']
+		algorithm = "hmac-md5";
 	else
 		remote_ip = scope.lookupvar('site::allnodeinfo')[other]['ipHostNumber']
+		algorithm = "hmac-sha256";
 	end
+
+	key = scope.function_hkdf(['/etc/puppet/secret', "puppet-key-#{keyname}"])
+	lines << "key #{keyname} { algorithm #{algorithm}; secret \"#{key}\"; };"
 	remote_ip.each do |r|
 		lines << "server #{r} { keys { #{keyname}; }; };"
 	end
-- 
2.39.2