upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-05-26 03:12:16 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
bind9/lib/bind9
History
Evan Hunt 401a6374b0
Disable recursion for non-IN classes 
Force recursion off, and set allow-recursion/allow-recursion-on ACLs
to none, for views with a class other than IN. Log a configuration
warning if recursion is explicitly enabled for a non-IN view.

This addresses YWH-PGM40640-74 and YWH-PGM40640-75 by preventing any
attempt at recursive processing in a class-CHAOS view, ensuring that
server addresses used for recursive queries and received in recursive
responses are of the expected format.

Fixes: isc-projects/bind9#5780
Fixes: isc-projects/bind9#5781

(cherry picked from commit 7becff1a14684a68208c92b3b0315c045c05ad75)
2026-05-07 13:21:59 +02:00
..
include deprecate delegation-only and root-delegation only 2023-03-23 14:09:53 -07:00
check.c Disable recursion for non-IN classes 2026-05-07 13:21:59 +02:00
getaddresses.c Remove redundant parentheses from the return statement 2024-11-19 16:06:16 +01:00
Makefile.am Add OPENSSL_CFLAGS to libbind9 Makefile.am 2021-10-05 13:13:53 +00:00