resolved: allow name compression in NSEC records

author Daniel Mack <daniel@zonque.org>

Tue, 1 Sep 2015 15:17:27 +0000 (17:17 +0200)

committer Daniel Mack <daniel@zonque.org>

Tue, 8 Dec 2015 15:51:40 +0000 (16:51 +0100)
author Daniel Mack <daniel@zonque.org>
Tue, 1 Sep 2015 15:17:27 +0000 (17:17 +0200)
committer Daniel Mack <daniel@zonque.org>
Tue, 8 Dec 2015 15:51:40 +0000 (16:51 +0100)
diff --git a/src/resolve/resolved-dns-packet.c b/src/resolve/resolved-dns-packet.c

index 35d1fb0..9bd08ee 100644 (file)
--- a/src/resolve/resolved-dns-packet.c
+++ b/src/resolve/resolved-dns-packet.c
@@ -1819,8 +1819,16 @@ int dns_packet_read_rr(DnsPacket *p, DnsResourceRecord **ret, size_t *start) {
  
                  break;
  
-        case DNS_TYPE_NSEC:
-                r = dns_packet_read_name(p, &rr->nsec.next_domain_name, false, NULL);
+        case DNS_TYPE_NSEC: {
+
+                /*
+                 * RFC6762, section 18.14 explicly states mDNS should use name compression.
+                 * This contradicts RFC3845, section 2.1.1
+                 */
+
+                bool allow_compressed = p->protocol == DNS_PROTOCOL_MDNS;
+
+                r = dns_packet_read_name(p, &rr->nsec.next_domain_name, allow_compressed, NULL);
                  if (r < 0)
                          goto fail;
  
@@ -1833,7 +1841,7 @@ int dns_packet_read_rr(DnsPacket *p, DnsResourceRecord **ret, size_t *start) {
                   * without the NSEC bit set. */
  
                  break;
-
+        }
          case DNS_TYPE_NSEC3: {
                  uint8_t size;
author	Daniel Mack <daniel@zonque.org>
	Tue, 1 Sep 2015 15:17:27 +0000 (17:17 +0200)
committer	Daniel Mack <daniel@zonque.org>
	Tue, 8 Dec 2015 15:51:40 +0000 (16:51 +0100)