iterate.c: fail on execissive data in a packet

diff --git a/lib/layer/iterate.c b/lib/layer/iterate.c
index 94342cfb510eccdf09d31ef3b76c09c33ea34512..09944d02753aa1ef609cebb8b44077e3ecc6cce2 100644 (file)
--- a/lib/layer/iterate.c
+++ b/lib/layer/iterate.c
@@ -1013,13 +1013,10 @@ static int resolve(kr_layer_t *ctx, knot_pkt_t *pkt)
        /* Check for packet processing errors first.
         * Note - we *MUST* check if it has at least a QUESTION,
         * otherwise it would crash on accessing QNAME. */
-#ifdef STRICT_MODE
        if (pkt->parsed < pkt->size) {
                VERBOSE_MSG("<= pkt contains excessive data\n");
                return KR_STATE_FAIL;
-       } else
-#endif
-       if (pkt->parsed <= KNOT_WIRE_HEADER_SIZE) {
+       } else if (pkt->parsed <= KNOT_WIRE_HEADER_SIZE) {
                if (pkt->parsed == KNOT_WIRE_HEADER_SIZE && knot_wire_get_rcode(pkt->wire) == KNOT_RCODE_FORMERR) {
                        /* This is a special case where we get valid header with FORMERR and nothing else.
                         * This happens on some authoritatives which don't support EDNS and don't