From 25bf2076f3e35d9da64fe9fd8a704e06a398dfc1 Mon Sep 17 00:00:00 2001 From: "Heiko Schlittermann (HS12)" Date: Sun, 21 Jun 2015 17:03:50 +0200 Subject: [PATCH] Fix and extend the checks in dns_is_secure() --- src/src/dns.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/src/dns.c b/src/src/dns.c index 4f84bfc45..2efcbaaff 100644 --- a/src/src/dns.c +++ b/src/src/dns.c @@ -460,7 +460,8 @@ if (h->ad) return TRUE; if ( !h->aa || !dns_trust_aa - || !*(trusted = expand_string(dns_trust_aa)) + || !(trusted = expand_string(dns_trust_aa)) + || !*trusted || !(auth_name = dns_extract_auth_name(dnsa)) || OK != match_isinlist(auth_name, &trusted, 0, NULL, NULL, MCL_DOMAIN, TRUE, NULL) -- 2.25.1