projects / systemd / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0d14eef) | patch
systemd-resolved: use hostname for certificate validation in DoT
authorJörg Thalheim <joerg@thalheim.io>
Tue, 3 Mar 2020 23:31:25 +0000 (23:31 +0000)
committerYu Watanabe <watanabe.yu+github@gmail.com>
Fri, 6 Mar 2020 16:37:30 +0000 (01:37 +0900)
commiteec394f10bbfcc3d2fc8504ad8ff5be44231abd5
tree988c6bff507f51d7531a2ec9d960a69440680d3dtree | snapshot
parent0d14eefb0d5d0a7149113111d77c3f7b87e636a4commit | diff
systemd-resolved: use hostname for certificate validation in DoT

Widely accepted certificates for IP addresses are expensive and only
affordable for larger organizations. Therefore if the user provides
the hostname in the DNS= option, we should use it instead of the IP
address.
man/resolved.conf.xml diff | blob | history
src/resolve/resolved-dnstls-gnutls.c diff | blob | history
src/resolve/resolved-dnstls-openssl.c diff | blob | history
https://github.com/systemd/systemd.git