Reimplement:

4578. [security] Some chaining (CNAME or DNAME) responses to upstream queries could trigger assertion failures. (CVE-2017-3137) [RT #44734] (cherry picked from commit f240f4a5de)
2017-03-01 12:01:16 +11:00
parent cb9582623e
commit c006cfc5a2
4 changed files with 332 additions and 523 deletions
--- a/bin/tests/system/dname/ns2/example.db
+++ b/bin/tests/system/dname/ns2/example.db
@@ -21,6 +21,7 @@ a.short			A	10.0.0.1
 short-dname		DNAME	short
 a.longlonglonglonglonglonglonglonglonglonglonglonglong	A 10.0.0.2
 long-dname		DNAME	longlonglonglonglonglonglonglonglonglonglonglonglong
+toolong-dname		DNAME	longlonglonglonglonglonglonglonglonglonglonglonglong
 cname			CNAME	a.cnamedname
 cnamedname		DNAME	target
 a.target		A	10.0.0.3