New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

dnsdist: grepq returns garbage for DNSCrypt-encrypted responses #5566

Closed
rgacogne opened this Issue Aug 1, 2017 · 0 comments

Comments

Projects
None yet
1 participant
@rgacogne
Member

rgacogne commented Aug 1, 2017

  • Program: dnsdist
  • Issue type: Bug report

Short description

As reported by @bjoe2k4 on IRC (thanks), grepq() returns strange results for DNSCrypt-encrypted responses. It looks like the pointer we use to insert the DNS header into our response ring buffer points the DNSCrypt response, and not to the actual response from the backend anymore, meaning we would be reading the resolver magic and part of the nonce instead of the actual DNS header.

@rgacogne rgacogne added this to the dnsdist-1.2.0 milestone Aug 1, 2017

@rgacogne rgacogne self-assigned this Aug 1, 2017

@rgacogne rgacogne changed the title from dnsdist: grepq returns garbage for DNSCrypt-ecnrypted responses to dnsdist: grepq returns garbage for DNSCrypt-encrypted responses Aug 1, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment