projects / platform / upstream / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4b05f0c) | patch
resolved: correctly prove the non-existense of wildcard
authorAlexander Tsoy <alexander@tsoy.me>
Wed, 23 Jan 2019 13:33:50 +0000 (16:33 +0300)
committerLennart Poettering <lennart@poettering.net>
Mon, 18 Feb 2019 17:34:53 +0000 (18:34 +0100)
commit13e6f3831d986dffbcf2ff5628f53bf1ecf0c22b
treedecdd36c4481306969ad717a28c5dfac8653b443tree | snapshot
parent4b05f0c9d9f6df4e0dab518f8e1ae537bf948f92commit | diff
resolved: correctly prove the non-existense of wildcard

* Current logic:
For each NSEC RR find the common suffix between the owner name and
the next name, append asterisk to that suffix and check that
generated wildcard is covered by the NSEC RR in question.

* New logic:
Find NSEC RR covering queried name, generate wildcard as
<asterisk>.<closest encloser> using this RR, then check if any
of the NSEC RRs covers generated wildcard.
src/resolve/resolved-dns-dnssec.c diff | blob | history
Domain: System / System Framework;