]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6469ebd) | patch
Check recovery from spoofed server addresses
authorMark Andrews <marka@isc.org>
Wed, 22 Jan 2025 12:54:53 +0000 (23:54 +1100)
committerMark Andrews <marka@isc.org>
Mon, 3 Feb 2025 00:24:34 +0000 (00:24 +0000)
commit88c31fdd52ceee43224b83847247057f8aecbf76
tree134cad76a7b1243daf7cf116b0d5e5547547c290tree | snapshot
parent6469ebd08e1fd18ecb87be6d9ec7111d55d4c820commit | diff
Check recovery from spoofed server addresses

Named was failing to recover when spoofed nameserver address from
a signed zone for a peer zone were returned to a previous CD=1
query. Validate non-glue interior server addresses before using them.
bin/tests/system/dnssec/ns1/root.db.in diff | blob | blame | history
bin/tests/system/dnssec/ns1/sign.sh diff | blob | blame | history
bin/tests/system/dnssec/ns2/named.conf.in diff | blob | blame | history
bin/tests/system/dnssec/ns2/peer-ns-spoof.db.in [new file with mode: 0644] blob
bin/tests/system/dnssec/ns2/peer.peer-ns-spoof.db.in [new file with mode: 0644] blob
bin/tests/system/dnssec/ns2/sign.sh diff | blob | blame | history
bin/tests/system/dnssec/ns3/named.conf.in diff | blob | blame | history
bin/tests/system/dnssec/ns3/sign.sh diff | blob | blame | history
bin/tests/system/dnssec/ns3/target.peer-ns-spoof.db.in [new file with mode: 0644] blob
bin/tests/system/dnssec/tests.sh diff | blob | blame | history
bin/tests/system/dnssec/tests_sh_dnssec.py diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git