BIND 10 #1370: xfrout must add TSIG (when used) for all messages
BIND 10 Development
do-not-reply at isc.org
Sat Nov 5 05:44:12 UTC 2011
#1370: xfrout must add TSIG (when used) for all messages
-------------------------------------+-------------------------------------
Reporter: jinmei | Owner:
Type: defect | Status: new
Priority: critical | Milestone: Next-
Component: xfrout | Sprint-Proposed
Sensitive: 0 | Keywords:
Sub-Project: DNS | Defect Severity: N/A
Estimated Difficulty: 0 | Feature Depending on Ticket:
Total Hours: 0 | Add Hours to Ticket: 0
| Internal?: 0
-------------------------------------+-------------------------------------
If I read the code correctly, it skips TSIG signing for up to
96 messages. This doesn't work, becasue TSIGContext currently
doesn't support this type of signing.
We need to sign all messages. This is a quite critical bug, because
it can easily happen for reasonably large zones. So I propose
we fix it ASAP.
--
Ticket URL: <http://bind10.isc.org/ticket/1370>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list