sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-08-26 01:49:31 +03:00
Code Activity

s4/dns_server: enable sending of TSIG error records

Browse Source 
This final patch enables sending TSIG error records by adding
DNS_RCODE_NOTAUTH to the set of error conditions that are allowed to
trigger sending a full generated response.

See RFC 2845 "4.5.1. KEY check and error handling" and "4.5.3. MAC check
and error handling".

Bug: https://bugzilla.samba.org/show_bug.cgi?id=11520

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>
This commit is contained in:
Ralph Boehme
2016-05-30 16:44:00 +02:00
committed by Garming Sam
parent ba683d459e
commit 88700e7d89
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
source4/dns_server/dns_server.c
View File

@ -235,7 +235,9 @@ static WERROR dns_process_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx,
return ret;
}
if ((state->dns_err != DNS_RCODE_OK) &&
(state->dns_err != DNS_RCODE_NXDOMAIN)) {
(state->dns_err != DNS_RCODE_NXDOMAIN) &&
(state->dns_err != DNS_RCODE_NOTAUTH))
{
goto drop;
}
if (state->dns_err != DNS_RCODE_OK) {