projects / systemd / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e9bac37) | patch
systemd-resolved: use hostname for certificate validation in DoT v245.9
authorJörg Thalheim <joerg@thalheim.io>
Tue, 3 Mar 2020 23:31:25 +0000 (23:31 +0000)
committerZbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
Thu, 10 Dec 2020 17:05:15 +0000 (18:05 +0100)
commitff26d281aec0877b43269f18c6282cd79a7f5529
treeb87462b385d1ff479c62e50cabd49873e2496376tree | snapshot
parente9bac3752edaa6b364def3c1f8b79ce246de2783commit | diff
systemd-resolved: use hostname for certificate validation in DoT

Widely accepted certificates for IP addresses are expensive and only
affordable for larger organizations. Therefore if the user provides
the hostname in the DNS= option, we should use it instead of the IP
address.

(cherry picked from commit eec394f10bbfcc3d2fc8504ad8ff5be44231abd5)
man/resolved.conf.xml diff | blob | history
src/resolve/resolved-dnstls-gnutls.c diff | blob | history
src/resolve/resolved-dnstls-openssl.c diff | blob | history
https://github.com/systemd/systemd.git