From: Lennart Poettering <lennart@poettering.net>
Date: Wed, 30 Jul 2014 00:04:07 +0000 (+0200)
Subject: resolved: don't allow adding of ANY class/type RRs to local zones
X-Git-Tag: v216~382
X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=commitdiff_plain;h=1d3b690fbd9a89491d938188582a8031d91ebbc8;p=elogind.git

resolved: don't allow adding of ANY class/type RRs to local zones
---

diff --git a/src/resolve/resolved-dns-zone.c b/src/resolve/resolved-dns-zone.c
index 2325ddfe7..12a8512c7 100644
--- a/src/resolve/resolved-dns-zone.c
+++ b/src/resolve/resolved-dns-zone.c
@@ -165,6 +165,11 @@ int dns_zone_put(DnsZone *z, DnsResourceRecord *rr) {
         assert(z);
         assert(rr);
 
+        if (rr->key->class == DNS_CLASS_ANY)
+                return -EINVAL;
+        if (rr->key->type == DNS_TYPE_ANY)
+                return -EINVAL;
+
         existing = dns_zone_get(z, rr);
         if (existing)
                 return 0;