ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

add basic test for TSIG key dump/restore functionality

Browse Source 
stop and restart the server in the 'tsiggss' test, in order
to confirm that GSS negotiated TSIG keys are saved and restored
when named loads.

added logging to dns_tsigkey_createfromkey() to indicate whether
a key has been statically configured, generated via GSS negotiation,
or restored from a file.
This commit is contained in:
Evan Hunt
2023-02-28 18:29:38 -08:00
parent 7e4414d02d
commit e914c5e194
11 changed files with 80 additions and 58 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
fuzz/dns_message_checksig.c
View File

@@ -263,8 +263,8 @@ LLVMFuzzerInitialize(int *argc __attribute__((unused)),
}
result = dns_tsigkey_create(name, dns_tsig_hmacsha256_name, secret,
sizeof(secret), false, NULL, 0, 0, mctx,
ring, &tsigkey);
sizeof(secret), false, false, NULL, 0, 0,
mctx, ring, &tsigkey);
if (result != ISC_R_SUCCESS) {
fprintf(stderr, "dns_tsigkey_create failed: %s\n",
isc_result_totext(result));