make TsigVerify check time after signature per rfc2845bis

[jinmeiib]

The current implementation of TsigVerify is compliant to RFC2845 in that it first checks 'time signed' and then verifies the signature. But this logic is known to have a security vulnerability as reported in CVE-2017-3142/3143.

The protocol is being revised as draft-ietf-dnsop-rfc2845bis, reversing the order of these checks. This PR implements the new behavior in a straightforward way. While the new protocol spec is still an internet draft, it's already in the RFC editor queue, so I believe it's mature enough.

(Added test covers this specific case with some other error conditions from TsigVerify)

[codecov-commenter]

Codecov Report

Merging #1135 into master will increase coverage by 0.10%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##           master    #1135      +/-   ##
==========================================
+ Coverage   55.32%   55.43%   +0.10%     
==========================================
  Files          41       41              
  Lines       10109    10110       +1     
==========================================
+ Hits         5593     5604      +11     
+ Misses       3488     3482       -6     
+ Partials     1028     1024       -4     

Impacted Files	Coverage Δ
tsig.go	54.67% <100.00%> (+6.78%)	⬆️
msg.go	76.53% <0.00%> (-0.69%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 50b4756...e4c64dd. Read the comment docs.

[tmthrgd]

This can just be: copy(msgData[67:], "bogus").

[jinmeiib]

thanks, updated it as suggested.

[tmthrgd]

Ditch this because it doesn’t match the rest of the tests and just include only the if actual != expected check directly.

[jinmeiib]

do you mean instead of

checkError(ErrTime, tsigVerify(buildMsgData(timeSigned), testSecret, "", false, timeSigned+301))

do something like this?

	if err := tsigVerify(buildMsgData(timeSigned), testSecret, "", false, timeSigned+301); err != ErrTime {
		t.Fatalf("expected an error '%v' but got '%v'", ErrTime, err)
	}

[tmthrgd]

@jinmeiib Exactly that.

[jinmeiib]

@tmthrgd okay, updated as such.

[tmthrgd]

LGTM.

[miekg]

/merge

…

On Sat, 18 Jul 2020, 06:13 Tom Thorogood, ***@***.***> wrote: ***@***.**** approved this pull request. LGTM. — You are receiving this because your review was requested. Reply to this email directly, view it on GitHub <#1135 (review)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AACWIWZZNVD4ERRPH73U64LR4EONHANCNFSM4O5COLAA> .