• Vladimír Čunát's avatar
    lib/cache: don't stash packets with zeros in QNAME · a6ecb58f
    Vladimír Čunát authored
    Cache uses dname_lf for keys, i.e. zero bytes serve as separators
    between labels.  Therefore having a zero inside label could masquerade
    for QNAME that does have label separators instead of these zeros.
    That doesn't seem really exploitable in practice, as standard registries
    won't allow such labels, so I can't see any possible attack that would
    "cross border" of these registries, e.g. attacking anything inside
    example.org without any cooperation from its owner (or org or root).
    a6ecb58f
Name
Last commit
Last update
..
cache Loading commit data...
cookies Loading commit data...
dnssec Loading commit data...
generic Loading commit data...
layer Loading commit data...
README.rst Loading commit data...
defines.h Loading commit data...
dnssec.c Loading commit data...
dnssec.h Loading commit data...
layer.h Loading commit data...
meson.build Loading commit data...
module.c Loading commit data...
module.h Loading commit data...
nsrep.c Loading commit data...
nsrep.h Loading commit data...
resolve.c Loading commit data...
resolve.h Loading commit data...
rplan.c Loading commit data...
rplan.h Loading commit data...
test_module.c Loading commit data...
test_rplan.c Loading commit data...
test_utils.c Loading commit data...
test_zonecut.c Loading commit data...
utils.c Loading commit data...
utils.h Loading commit data...
zonecut.c Loading commit data...
zonecut.h Loading commit data...