]> git.ipfire.org Git - thirdparty/unbound.git/commit
projects / thirdparty / unbound.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c112bcf) | patch
- Fix that a DNAME with an unsigned CNAME is checked for
authorW.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 21 Apr 2026 11:19:13 +0000 (13:19 +0200)
committerW.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 21 Apr 2026 11:19:13 +0000 (13:19 +0200)
commit8a25a97687f4fa8978cd739288ceb58caec28997
treea5c68c6a58f2fbd4251304ad9d9377debbdb4fd1tree | snapshot
parentc112bcf2fdef000abda7e607f2f70fe08d1a33c6commit | diff
- Fix that a DNAME with an unsigned CNAME is checked for
  the correct match. This stops that for certain zone
  configurations an unchecked unsigned CNAME could get
  secure status. Thanks to Qifan Zhang, Palo Alto Networks
  for the report.
doc/Changelog diff | blob | blame | history
testdata/dname_unsigned_cname.rpl [new file with mode: 0644] blob
validator/val_utils.c diff | blob | blame | history
validator/val_utils.h diff | blob | blame | history
validator/validator.c diff | blob | blame | history
Mirror of https://github.com/NLnetLabs/unbound.git