upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-25 19:02:12 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
bind9/lib
History
Ondřej Surý 4e455365bf
Implement RFC 3645 Section 3.1.1 ret_flags check in GSS-API client 
After gss_init_sec_context() completes, verify that both MUTUAL and
INTEG flags are set in ret_flags.  RFC 3645 Section 3.1.1 requires
the client to abandon the algorithm if either flag is missing, as
the security context would not provide mutual authentication or
message integrity.

Also fix uninitialized gss_name_t variable in dst_gssapi_initctx()
that could cause undefined behavior if gss_import_name() fails and
the cleanup path calls gss_release_name() on the uninitialized
value.
2026-05-07 13:32:15 +02:00
..
dns Implement RFC 3645 Section 3.1.1 ret_flags check in GSS-API client 2026-05-07 13:32:15 +02:00
isc Dispatch ratelimiter events under the lock 2026-04-30 10:16:32 +02:00
isccc switch isc_md_type_t to a proper enum 2026-02-02 11:12:55 +03:00
isccfg Fix a bug with template filename reuse 2026-04-14 21:50:31 -07:00
ns Apply XFR-out quota after ACL is checked 2026-05-07 13:32:15 +02:00
.gitignore The isc/platform.h header has been completely removed 2021-07-06 05:33:48 +00:00
meson.build replace the build system with meson 2025-06-11 10:30:12 +03:00