diff options
author | Lennart Poettering <lennart@poettering.net> | 2020-11-10 18:06:19 +0100 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2021-02-16 10:03:43 +0100 |
commit | 43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b (patch) | |
tree | 48a1349811c1c8e62c10e7dada6f6a3a99bcc2f7 /src/resolve/resolved-mdns.c | |
parent | 6f055e43b817b66e6d4f6e4022f0a115dc35651b (diff) | |
download | systemd-43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b.tar.gz |
resolved: add "confidential" flag for replies passed to clients
Let's introduce a new flag that indicates whether the response was
acquired in "confidential" mode, i.e. via encrypted DNS-over-TLS, or
synthesized locally.
Fixes: #12859
Diffstat (limited to 'src/resolve/resolved-mdns.c')
-rw-r--r-- | src/resolve/resolved-mdns.c | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/src/resolve/resolved-mdns.c b/src/resolve/resolved-mdns.c index 6fccc5a1e5..5b4d08cce8 100644 --- a/src/resolve/resolved-mdns.c +++ b/src/resolve/resolved-mdns.c @@ -303,20 +303,20 @@ static int on_mdns_packet(sd_event_source *s, int fd, uint32_t revents, void *us t = dns_scope_find_transaction(scope, rr->key, SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE); if (t) - dns_transaction_process_reply(t, p); + dns_transaction_process_reply(t, p, false); /* Also look for the various types of ANY transactions */ t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(rr->key->class, DNS_TYPE_ANY, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE); if (t) - dns_transaction_process_reply(t, p); + dns_transaction_process_reply(t, p, false); t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(DNS_CLASS_ANY, rr->key->type, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE); if (t) - dns_transaction_process_reply(t, p); + dns_transaction_process_reply(t, p, false); t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(DNS_CLASS_ANY, DNS_TYPE_ANY, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE); if (t) - dns_transaction_process_reply(t, p); + dns_transaction_process_reply(t, p, false); } dns_cache_put(&scope->cache, scope->manager->enable_cache, NULL, DNS_PACKET_RCODE(p), p->answer, NULL, false, _DNSSEC_RESULT_INVALID, (uint32_t) -1, p->family, &p->sender); |