]> git.ipfire.org Git - thirdparty/unbound.git/commit
projects / thirdparty / unbound.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8a25a97) | patch
- Fix handling of wildcard CNAMEs in the chain of trust.
authorW.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 21 Apr 2026 11:24:40 +0000 (13:24 +0200)
committerW.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 21 Apr 2026 11:24:40 +0000 (13:24 +0200)
commit53499e4a882b7cd22fc8824ca864cafd0dde41be
tree906a1934489dffd48e8d473b1a79f50c1cef1e9ctree | snapshot
parent8a25a97687f4fa8978cd739288ceb58caec28997commit | diff
- Fix handling of wildcard CNAMEs in the chain of trust.
  An improper wildcard in the chain of trust would send
  the retries to the wrong upstream. Also it could label
  the step in the chain of trust as secure, when it was not.
  Thanks to Qifan Zhang, Palo Alto Networks for the report.
doc/Changelog diff | blob | blame | history
testdata/ds_wildcard_cname.rpl [new file with mode: 0644] blob
testdata/val_ds_cname.rpl diff | blob | blame | history
validator/validator.c diff | blob | blame | history
Mirror of https://github.com/NLnetLabs/unbound.git