forked from rpms/glibc
e43852d149
* Thu Oct 13 2022 Arjun Shankar <arjun@redhat.com> - 2.34-48 - Handle non-hostname CNAME aliases during name resolution (#2129005) - Sync with upstream branch release/2.34/master, commit e3976287b22422787f3cc6fc9adda58304b55bd9: - nscd: Drop local address tuple variable [BZ #29607] - x86-64: Require BMI1/BMI2 for AVX2 strrchr and wcsrchr implementations - x86-64: Require BMI2 and LZCNT for AVX2 memrchr implementation - x86-64: Require BMI2 for AVX2 (raw|w)memchr implementations - x86-64: Require BMI2 for AVX2 wcs(n)cmp implementations - x86-64: Require BMI2 for AVX2 strncmp implementation - x86-64: Require BMI2 for AVX2 strcmp implementation - x86-64: Require BMI2 for AVX2 str(n)casecmp implementations - x86: include BMI1 and BMI2 in x86-64-v3 level - nptl: Add backoff mechanism to spinlock loop - sysdeps: Add 'get_fast_jitter' interace in fast-jitter.h - nptl: Effectively skip CAS in spinlock loop - Move assignment out of the CAS condition - Add LLL_MUTEX_READ_LOCK [BZ #28537] - Avoid extra load with CAS in __pthread_mutex_clocklock_common [BZ #28537] - Avoid extra load with CAS in __pthread_mutex_lock_full [BZ #28537] - resolv: Fix building tst-resolv-invalid-cname for earlier C standards - nss_dns: Rewrite _nss_dns_gethostbyname4_r using current interfaces - resolv: Add new tst-resolv-invalid-cname - nss_dns: In gaih_getanswer_slice, skip strange aliases (bug 12154) (#2129005) - nss_dns: Rewrite getanswer_r to match getanswer_ptr (bug 12154, bug 29305) - nss_dns: Remove remnants of IPv6 address mapping - nss_dns: Rewrite _nss_dns_gethostbyaddr2_r and getanswer_ptr - nss_dns: Split getanswer_ptr from getanswer_r - resolv: Add DNS packet parsing helpers geared towards wire format - resolv: Add internal __ns_name_length_uncompressed function - resolv: Add the __ns_samebinaryname function - resolv: Add internal __res_binary_hnok function - resolv: Add tst-resolv-aliases - resolv: Add tst-resolv-byaddr for testing reverse lookup - gconv: Use 64-bit interfaces in gconv_parseconfdir (bug 29583) - elf: Fix hwcaps string size overestimation - nscd: Fix netlink cache invalidation if epoll is used [BZ #29415] - Apply asm redirections in wchar.h before first use - Apply asm redirections in stdio.h before first use [BZ #27087] - elf: Call __libc_early_init for reused namespaces (bug 29528) Resolves: #2129005 Resolves: #2116960
59 lines
2.1 KiB
Diff
59 lines
2.1 KiB
Diff
commit 4d2e67d6e5c910114dbccd17d9b93f06552c0024
|
|
Author: Florian Weimer <fweimer@redhat.com>
|
|
Date: Tue Aug 30 10:02:49 2022 +0200
|
|
|
|
resolv: Add internal __res_binary_hnok function
|
|
|
|
During package parsing, only the binary representation is available,
|
|
and it is convenient to check that directly for conformance with host
|
|
name requirements.
|
|
|
|
Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
|
|
(cherry picked from commit c79327bf00a4be6d60259227acc78ef80ead3622)
|
|
|
|
diff --git a/include/resolv.h b/include/resolv.h
|
|
index 3590b6f496d47710..4dbbac3800b7ef30 100644
|
|
--- a/include/resolv.h
|
|
+++ b/include/resolv.h
|
|
@@ -70,5 +70,8 @@ libc_hidden_proto (__libc_res_nameinquery)
|
|
extern __typeof (__res_queriesmatch) __libc_res_queriesmatch;
|
|
libc_hidden_proto (__libc_res_queriesmatch)
|
|
|
|
+/* Variant of res_hnok which operates on binary (but uncompressed) names. */
|
|
+bool __res_binary_hnok (const unsigned char *dn) attribute_hidden;
|
|
+
|
|
# endif /* _RESOLV_H_ && !_ISOMAC */
|
|
#endif
|
|
diff --git a/resolv/res-name-checking.c b/resolv/res-name-checking.c
|
|
index 2c603494fa3ca992..513ddb5f6b12ccb0 100644
|
|
--- a/resolv/res-name-checking.c
|
|
+++ b/resolv/res-name-checking.c
|
|
@@ -138,6 +138,12 @@ binary_leading_dash (const unsigned char *dn)
|
|
return dn[0] > 0 && dn[1] == '-';
|
|
}
|
|
|
|
+bool
|
|
+__res_binary_hnok (const unsigned char *dn)
|
|
+{
|
|
+ return !binary_leading_dash (dn) && binary_hnok (dn);
|
|
+}
|
|
+
|
|
/* Return 1 if res_hnok is a valid host name. Labels must only
|
|
contain [0-9a-zA-Z_-] characters, and the name must not start with
|
|
a '-'. The latter is to avoid confusion with program options. */
|
|
@@ -145,11 +151,9 @@ int
|
|
___res_hnok (const char *dn)
|
|
{
|
|
unsigned char buf[NS_MAXCDNAME];
|
|
- if (!printable_string (dn)
|
|
- || __ns_name_pton (dn, buf, sizeof (buf)) < 0
|
|
- || binary_leading_dash (buf))
|
|
- return 0;
|
|
- return binary_hnok (buf);
|
|
+ return (printable_string (dn)
|
|
+ && __ns_name_pton (dn, buf, sizeof (buf)) >= 0
|
|
+ && __res_binary_hnok (buf));
|
|
}
|
|
versioned_symbol (libc, ___res_hnok, res_hnok, GLIBC_2_34);
|
|
versioned_symbol (libc, ___res_hnok, __libc_res_hnok, GLIBC_PRIVATE);
|