resolved: add "confidential" flag for replies passed to clients

Let's introduce a new flag that indicates whether the response was acquired in "confidential" mode, i.e. via encrypted DNS-over-TLS, or synthesized locally. Fixes: #12859
author: Lennart Poettering <lennart@poettering.net> 2020-11-10 18:06:19 +0100
committer: Lennart Poettering <lennart@poettering.net> 2021-02-16 10:03:43 +0100
commit: 43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b (patch)
tree: 48a1349811c1c8e62c10e7dada6f6a3a99bcc2f7 /src/resolve/resolved-mdns.c
parent: 6f055e43b817b66e6d4f6e4022f0a115dc35651b (diff)
download: systemd-43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b.tar.gz
1 files changed, 4 insertions, 4 deletions
diff --git a/src/resolve/resolved-mdns.c b/src/resolve/resolved-mdns.c
index 6fccc5a1e5..5b4d08cce8 100644
--- a/src/resolve/resolved-mdns.c
+++ b/src/resolve/resolved-mdns.c
@@ -303,20 +303,20 @@ static int on_mdns_packet(sd_event_source *s, int fd, uint32_t revents, void *us
 
                         t = dns_scope_find_transaction(scope, rr->key, SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE);
                         if (t)
-                                dns_transaction_process_reply(t, p);
+                                dns_transaction_process_reply(t, p, false);
 
                         /* Also look for the various types of ANY transactions */
                         t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(rr->key->class, DNS_TYPE_ANY, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE);
                         if (t)
-                                dns_transaction_process_reply(t, p);
+                                dns_transaction_process_reply(t, p, false);
 
                         t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(DNS_CLASS_ANY, rr->key->type, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE);
                         if (t)
-                                dns_transaction_process_reply(t, p);
+                                dns_transaction_process_reply(t, p, false);
 
                         t = dns_scope_find_transaction(scope, &DNS_RESOURCE_KEY_CONST(DNS_CLASS_ANY, DNS_TYPE_ANY, dns_resource_key_name(rr->key)), SD_RESOLVED_NO_CACHE|SD_RESOLVED_NO_ZONE);
                         if (t)
-                                dns_transaction_process_reply(t, p);
+                                dns_transaction_process_reply(t, p, false);
                 }
 
                 dns_cache_put(&scope->cache, scope->manager->enable_cache, NULL, DNS_PACKET_RCODE(p), p->answer, NULL, false, _DNSSEC_RESULT_INVALID, (uint32_t) -1, p->family, &p->sender);
author	Lennart Poettering <lennart@poettering.net>	2020-11-10 18:06:19 +0100
committer	Lennart Poettering <lennart@poettering.net>	2021-02-16 10:03:43 +0100
commit	43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b (patch)
tree	48a1349811c1c8e62c10e7dada6f6a3a99bcc2f7 /src/resolve/resolved-mdns.c
parent	6f055e43b817b66e6d4f6e4022f0a115dc35651b (diff)
download	systemd-43fc4baa26ccf3bc5ee65d4c6fa4890084632f2b.tar.gz