]> git.ipfire.org Git - thirdparty/systemd.git/commit - src/resolve/resolved-dns-rr.c
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e30ec34) | patch
resolved: store DNSKEY fields flags+protocol as-is
authorLennart Poettering <lennart@poettering.net>
Wed, 2 Dec 2015 19:53:10 +0000 (20:53 +0100)
committerLennart Poettering <lennart@poettering.net>
Wed, 2 Dec 2015 21:50:11 +0000 (22:50 +0100)
commitf91dc2400dc33e9a0745ecaaef7489af116dca38
treeef3d5aa7d6a623a4360f62cf14b096327f730396tree | snapshot
parente30ec345ace45bfdd6e82fff60682ccf2942b238commit | diff
resolved: store DNSKEY fields flags+protocol as-is

When verifying signatures we need to be able to verify the original
data we got for an RR set, and that means we cannot simply drop flags
bits or consider RRs invalid too eagerly. Hence, instead of parsing the
DNSKEY flags store them as-is. Similar, accept the protocol field as it
is, and don't consider it a parsing error if it is not 3.

Of course, this means that the DNSKEY handling code later on needs to
check explicit for protocol != 3.
src/resolve/resolved-dns-packet.c diff | blob | blame | history
src/resolve/resolved-dns-packet.h diff | blob | blame | history
src/resolve/resolved-dns-rr.c diff | blob | blame | history
src/resolve/resolved-dns-rr.h diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.