]> git.ipfire.org Git - thirdparty/knot-resolver.git/commitdiff
projects / thirdparty / knot-resolver.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 042f105)
layer/iterate: cname chain processing with +cd was fixed
authorGrigorii Demidov <grigorii.demidov@nic.cz>
Fri, 9 Dec 2016 13:17:58 +0000 (14:17 +0100)
committerGrigorii Demidov <grigorii.demidov@nic.cz>
Fri, 9 Dec 2016 13:17:58 +0000 (14:17 +0100)
lib/layer/iterate.c patch | blob | blame | history

diff --git a/lib/layer/iterate.c b/lib/layer/iterate.c
index c90894670ac82fec968b80bf179f681a287b0906..90a141e52304136a9129b6958831f850f833d03d 100644 (file)
--- a/lib/layer/iterate.c
+++ b/lib/layer/iterate.c
@@ -402,8 +402,11 @@ static int process_answer(knot_pkt_t *pkt, struct kr_request *req)
                 * Try to find records for pending_cname owner from section start. */
                cname = pending_cname;
                pending_cname = NULL;
-               /* If not secure, always follow cname chain. */
-               can_follow = !(query->flags & QUERY_DNSSEC_WANT) || (query->flags & QUERY_STUB);
+               /* If not secure or validation is disabled,
+                * always follow cname chain. */
+               can_follow = !(query->flags & QUERY_DNSSEC_WANT) ||
+                            knot_wire_get_cd(req->answer->wire) ||
+                            (query->flags & QUERY_STUB);
                for (unsigned i = 0; i < an->count; ++i) {
                        const knot_rrset_t *rr = knot_pkt_rr(an, i);
                        if (!knot_dname_is_equal(rr->owner, cname)) {
Mirror of https://gitlab.nic.cz/knot/knot-resolver.git