Skip to content

net: LookupSRV doesn't validate record names are consistent #47110

New issue
New issue
Open
Open
net: LookupSRV doesn't validate record names are consistent#47110
Labels
NeedsDecisionFeedback is required from experts, contributors, and/or the community before a change can be made.
Milestone
Backlog
@rolandshoemaker

Description

@rolandshoemaker
rolandshoemaker
opened on Jul 9, 2021

LookupSRV returns the 'canonical name' alongside the slice of SRV records, which is typically used to determine whether the name that was passed to LookupSRV was CNAME'd to another name. The returned canonical name is extracted from the first returned record header NAME, but it is not verified that the rest of the records are consistent.

If a resolver returns a response containing records with various names, LookupSRV obscures this by returning just the first name. Ideally it should verify that all of the names are consistent, returning an error if there were multiple names returned.

Metadata

Metadata

Assignees

No one assigned

    Labels

    NeedsDecisionFeedback is required from experts, contributors, and/or the community before a change can be made.

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions