]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 70ff4a3) | patch
Limit the number of keys for SIG(0) message verification
authorAram Sargsyan <aram@isc.org>
Wed, 15 May 2024 12:57:56 +0000 (12:57 +0000)
committerNicki Křížek <nicki@isc.org>
Mon, 10 Jun 2024 15:33:11 +0000 (17:33 +0200)
commit7ca9bd6014a8a2962a281a64c512358454d753f8
treea40e2b4a146f97566a53ce52f8375fc8c6f4c6b0tree | snapshot
parent70ff4a3f85f0df98cc4db5462f3ea6be0d76e584commit | diff
Limit the number of keys for SIG(0) message verification

Check at most two KEY RRs agains a SIG(0) signature. This should
limit potential abuse and at the same time allow key rollover.
lib/dns/message.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git