1. 21 Dec, 2022 12 commits
  2. 16 Dec, 2022 6 commits
  3. 08 Apr, 2022 2 commits
    • Petr Špaček's avatar
      Merge branch '2950-cache-acceptance-rules-test-v9_11' into 'v9_11' · 5349dbc6
      Petr Špaček authored
      [CVE-2021-25220] Add tests for forwarder cache poisoning scenarios [v9_11]
      
      See merge request !6108
      5349dbc6
    • Mark Andrews's avatar
      Add tests for forwarder cache poisoning scenarios · 29f08170
      Mark Andrews authored and Petr Špaček's avatar Petr Špaček committed
      - Check that an NS in an authority section returned from a forwarder
        which is above the name in a configured "forward first" or "forward
        only" zone (i.e., net/NS in a response from a forwarder configured for
        local.net) is not cached.
      - Test that a DNAME for a parent domain will not be cached when sent
        in a response from a forwarder configured to answer for a child.
      - Check that glue is rejected if its name falls below that of zone
        configured locally.
      - Check that an extra out-of-bailiwick data in the answer section is
        not cached (this was already working correctly, but was not explicitly
        tested before).
      
      - v9_11 backport: Revert primary/secondary to master/slave,
        backport rndc helper, backport ns8 config.
      
      (cherry picked from commit bf3fffff)
      29f08170
  4. 23 Mar, 2022 2 commits
  5. 16 Mar, 2022 1 commit
  6. 07 Mar, 2022 3 commits
  7. 04 Mar, 2022 1 commit
  8. 03 Mar, 2022 8 commits
  9. 14 Feb, 2022 4 commits
  10. 03 Jan, 2022 1 commit