]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d69fab1) | patch
Require local KEYs for SIG(0) verification
authorPetr Špaček <pspacek@isc.org>
Tue, 4 Jun 2024 16:41:44 +0000 (18:41 +0200)
committerNicki Křížek <nicki@isc.org>
Mon, 10 Jun 2024 15:36:45 +0000 (17:36 +0200)
commit9370acd3a798b266bcb62d476ef1969934eabeb8
tree7d7b8a1cab5452a36c8b5694ae056655f2939645tree | snapshot
parentd69fab15306704f529c375e33d73d3ee741fa086commit | diff
Require local KEYs for SIG(0) verification

This is additional hardening. There is no known use-case for KEY RRs
from DNS cache and it potentially allows attackers to put weird keys
into cache.
lib/dns/message.c diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git