SPF: fix result for case of only non-spf TXT RRs. Bug 2499

author Wolfgang Breyha <wbreyha@gmx.net>

Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)

committer Jeremy Harris <jgh146exb@wizmail.org>

Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)
author Wolfgang Breyha <wbreyha@gmx.net>
Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)
committer Jeremy Harris <jgh146exb@wizmail.org>
Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)
diff --git a/src/src/spf.c b/src/src/spf.c

index 7671551bca4b8c3af115065e8221acea13ece51a..9b053ccf98e0f563444b917532897b2f0c27c70b 100644 (file)
--- a/src/src/spf.c
+++ b/src/src/spf.c
@@ -152,7 +152,12 @@ for (dns_record * rr = dns_next_rr(dnsa, &dnss, RESET_ANSWERS); rr;
      srr.rr[found++] = (void *) s;
      }
  
-srr.num_rr = found;
+/* Did we filter out all TXT RRs? Return NO_DATA instead of SUCCESS with
+empty ANSWER section. */
+
+if (!(srr.num_rr = found))
+  srr.herrno = NO_DATA;
+
  /* spfrr->rr must have been malloc()d for this */
  SPF_dns_rr_dup(&spfrr, &srr);
  return spfrr;
diff --git a/test/scripts/4600-SPF/4601 b/test/scripts/4600-SPF/4601

index 96f06a6d12fa2a7807399f148d70bc0178a15632..5e6602ab02926087b407a81cdf508ebb4b16cb20 100644 (file)
--- a/test/scripts/4600-SPF/4601
+++ b/test/scripts/4600-SPF/4601
@@ -25,14 +25,13 @@ quit
  #
  killdaemon
  #
-# SERVFAIL -> temperror
-# A multiple spf-RR return should get permerror
-# - and not crash with non-spf txt records
-# v=spf1 is casr-insensitive
+#
+#
  exim -be
-none      ${lookup {fred@v6.test.ex} spf {HOSTIPV4}}
-temperror ${lookup {fred@test.again.dns} spf {HOSTIPV4}}
-permerror ${lookup {fred@double.example.com} spf {8.8.8.8}}
-permerror ${lookup {fred@doubleplus.example.com} spf {8.8.8.8}}
-pass      ${lookup {fred@uppercase.example.com} spf {HOSTIPV4}}
+eDNS_NOMATCH       none      ${lookup {fred@v6.test.ex} spf {HOSTIPV4}}
+eDNS_AGAIN         temperror ${lookup {fred@test.again.dns} spf {HOSTIPV4}}
+multiple rr        permerror ${lookup {fred@double.example.com} spf {8.8.8.8}}
+multi + non-spf    permerror ${lookup {fred@doubleplus.example.com} spf {8.8.8.8}}
+uppercase in v=    pass      ${lookup {fred@uppercase.example.com} spf {HOSTIPV4}}
+only non-spf txt   none      ${lookup {fred@test.ex} spf {HOSTIPV4}}
  ****
diff --git a/test/stdout/4601 b/test/stdout/4601

index cbb4cf502092cfe824420c675c98254edadc1ca4..38eefab33fe7975ffd76aa2e9f92e274ef713a23 100644 (file)
--- a/test/stdout/4601
+++ b/test/stdout/4601
@@ -26,9 +26,10 @@ Connecting to 127.0.0.1 port 1224 ... connected
  <<< 250 Accepted
  >>> quit
  End of script
-> none      none
-> temperror temperror
-> permerror permerror
-> permerror permerror
-> pass      pass
+> eDNS_NOMATCH       none      none
+> eDNS_AGAIN         temperror temperror
+> multiple rr        permerror permerror
+> multi + non-spf    permerror permerror
+> uppercase in v=    pass      pass
+> only non-spf txt   none      none
  >
author	Wolfgang Breyha <wbreyha@gmx.net>
	Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)
committer	Jeremy Harris <jgh146exb@wizmail.org>
	Tue, 7 Jan 2020 13:03:18 +0000 (13:03 +0000)
src/src/spf.c		patch \| blob \| blame \| history
test/scripts/4600-SPF/4601		patch \| blob \| blame \| history
test/stdout/4601		patch \| blob \| blame \| history