resolved: refuse doing queries for known-obsolete RR types

Given how fragile DNS servers are with some DNS types, and given that we really should avoid confusing them with known-weird lookups, refuse doing lookups for known-obsolete RR types.
author: Lennart Poettering <lennart@poettering.net> 2016-01-11 20:05:29 +0100
committer: Lennart Poettering <lennart@poettering.net> 2016-01-11 20:05:29 +0100
commit: d0129ddb9fbb07bed7c8ea51b8031f824bf506fb (patch)
tree: 9467e4acba84631984450893495e50a9bde15720 /src/resolve/resolved-dns-transaction.c
parent: 274b874830b93e6592f190608866133384066a35 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/src/resolve/resolved-dns-transaction.c b/src/resolve/resolved-dns-transaction.c
index a6d3a27f8b..9ee10f21c8 100644
--- a/src/resolve/resolved-dns-transaction.c
+++ b/src/resolve/resolved-dns-transaction.c
@@ -138,6 +138,8 @@ int dns_transaction_new(DnsTransaction **ret, DnsScope *s, DnsResourceKey *key)
         /* Don't allow looking up invalid or pseudo RRs */
         if (!dns_type_is_valid_query(key->type))
                 return -EINVAL;
+        if (dns_type_is_obsolete(key->type))
+                return -EOPNOTSUPP;
 
         /* We only support the IN class */
         if (key->class != DNS_CLASS_IN && key->class != DNS_CLASS_ANY)
author	Lennart Poettering <lennart@poettering.net>	2016-01-11 20:05:29 +0100
committer	Lennart Poettering <lennart@poettering.net>	2016-01-11 20:05:29 +0100
commit	d0129ddb9fbb07bed7c8ea51b8031f824bf506fb (patch)
tree	9467e4acba84631984450893495e50a9bde15720 /src/resolve/resolved-dns-transaction.c
parent	274b874830b93e6592f190608866133384066a35 (diff)