Merge branch 'wpk-non-crypto-secure-cookies' into 'master'

Cookies with non-crypto-secure random

See merge request isc-projects/bind9!887
This commit is contained in:
Witold Krecicki 2018-10-26 04:03:55 -04:00
commit 7ef2467e6a
2 changed files with 4 additions and 1 deletions

View file

@ -1,3 +1,6 @@
5062. [func] Use non-crypto-secure PRNG to generate nonces for
cookies [GL !887]
5061. [protocol] Add support for EID and NIMLOC. [GL #626]
5060. [bug] GID, UID and UINFO could not be loaded using unknown

View file

@ -1656,7 +1656,7 @@ ns_client_addopt(ns_client_t *client, dns_message_t *message,
isc_buffer_init(&buf, cookie, sizeof(cookie));
isc_stdtime_get(&now);
isc_nonce_buf(&nonce, sizeof(nonce));
isc_random_buf(&nonce, sizeof(nonce));
compute_cookie(client, now, nonce, client->sctx->secret, &buf);