Merge pull request #2143 from poettering/dnssec4

Another batch of DNSSEC fixes
author: Tom Gundersen <teg@jklm.no> 2015-12-11 18:38:14 +0100
committer: Tom Gundersen <teg@jklm.no> 2015-12-11 18:38:14 +0100
commit: a0361331758dbdb2375d6f871bc959116b699e31 (patch)
tree: 5a874c08bd80fc886c9481e59037df246a87c0f8 /src/resolve/resolved-dns-packet.c
parent: c57d67f718077aadee4e2d0940fb87f513b98671 (diff)
parent: 29c1519ed4899d139fa7b2079311cff6c4fb64a8 (diff)
1 files changed, 19 insertions, 7 deletions
diff --git a/src/resolve/resolved-dns-packet.c b/src/resolve/resolved-dns-packet.c
index e90500ce70..4e069ab4cb 100644
--- a/src/resolve/resolved-dns-packet.c
+++ b/src/resolve/resolved-dns-packet.c
@@ -171,8 +171,7 @@ DnsPacket *dns_packet_unref(DnsPacket *p) {
 
         assert(p->n_ref > 0);
 
-        if (p->more)
-                dns_packet_unref(p->more);
+        dns_packet_unref(p->more);
 
         if (p->n_ref == 1)
                 dns_packet_free(p);
@@ -1526,9 +1525,7 @@ int dns_packet_read_rr(DnsPacket *p, DnsResourceRecord **ret, size_t *start) {
                 goto fail;
 
         if (key->class == DNS_CLASS_ANY ||
-            key->type == DNS_TYPE_ANY ||
-            key->type == DNS_TYPE_AXFR ||
-            key->type == DNS_TYPE_IXFR) {
+            !dns_type_is_valid_rr(key->type)) {
                 r = -EBADMSG;
                 goto fail;
         }
@@ -1972,6 +1969,11 @@ int dns_packet_extract(DnsPacket *p) {
                         if (r < 0)
                                 goto finish;
 
+                        if (!dns_type_is_valid_query(key->type)) {
+                                r = -EBADMSG;
+                                goto finish;
+                        }
+
                         r = dns_question_add(question, key);
                         if (r < 0)
                                 goto finish;
@@ -1994,8 +1996,18 @@ int dns_packet_extract(DnsPacket *p) {
                                 goto finish;
 
                         if (rr->key->type == DNS_TYPE_OPT) {
-                                if (p->opt)
-                                        return -EBADMSG;
+
+                                /* The OPT RR is only valid in the Additional section */
+                                if (i < DNS_PACKET_ANCOUNT(p) + DNS_PACKET_NSCOUNT(p)) {
+                                        r = -EBADMSG;
+                                        goto finish;
+                                }
+
+                                /* Two OPT RRs? */
+                                if (p->opt) {
+                                        r = -EBADMSG;
+                                        goto finish;
+                                }
 
                                 p->opt = dns_resource_record_ref(rr);
                         } else {
author	Tom Gundersen <teg@jklm.no>	2015-12-11 18:38:14 +0100
committer	Tom Gundersen <teg@jklm.no>	2015-12-11 18:38:14 +0100
commit	a0361331758dbdb2375d6f871bc959116b699e31 (patch)
tree	5a874c08bd80fc886c9481e59037df246a87c0f8 /src/resolve/resolved-dns-packet.c
parent	c57d67f718077aadee4e2d0940fb87f513b98671 (diff)
parent	29c1519ed4899d139fa7b2079311cff6c4fb64a8 (diff)