upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-04-09 19:18:29 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/lib
History
Mark Andrews e09eb2ff21 Fix OID check for PRIVATEOID keys and signatures 
We were failing to account for the length byte before the OID.
See RFC 4034.

   Algorithm number 254 is reserved for private use and will never be
   assigned to a specific algorithm.  The public key area in the DNSKEY
   RR and the signature area in the RRSIG RR begin with an unsigned
   length byte followed by a BER encoded Object Identifier (ISO OID) of
   that length.  The OID indicates the private algorithm in use, and the
   remainder of the area is whatever is required by that algorithm.
   Entities should only use OIDs they control to designate their private
   algorithms.

(cherry picked from commit ca7355b7d0)
2025-04-09 20:07:31 +00:00
..
dns Fix OID check for PRIVATEOID keys and signatures 2025-04-09 20:07:31 +00:00
isc Add isc_tls_valid_sni_hostname() 2025-03-31 15:06:59 +03:00
isccc Remove redundant parentheses from the return statement 2024-11-19 14:26:52 +01:00
isccfg Implement sig0key-checks-limit and sig0message-checks-limit 2025-02-20 14:48:01 +00:00
ns Don't pass edectx from fetch_and_forget 2025-04-02 16:42:23 +00:00
.gitignore The isc/platform.h header has been completely removed 2021-07-06 05:33:48 +00:00
Makefile.am Move irs_resconf into libdns and remove libirs 2023-02-24 09:38:59 +00:00