diff options
| author | Matt Jolly <Matt.Jolly@footclan.ninja> | 2023-03-08 02:16:45 +1100 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2023-03-30 15:51:06 +0200 |
| commit | 0ae0abbe72514a75c10bfc4108d9f254f594c086 (patch) | |
| tree | 546b89bff46473e9f613913121aa3d4ee83a9e02 /docs | |
| parent | 67546aea90176c87cd7d16c3b21a3f1ea4739447 (diff) | |
| download | curl-0ae0abbe72514a75c10bfc4108d9f254f594c086.tar.gz | |
hostip: refuse to resolve the .onion TLD
RFC 7686 states that:
> Applications that do not implement the Tor
> protocol SHOULD generate an error upon the use of .onion and
> SHOULD NOT perform a DNS lookup.
Let's do that.
https://www.rfc-editor.org/rfc/rfc7686#section-2
Add test 1471 and 1472 to verify
Fixes #543
Closes #10705
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/KNOWN_BUGS | 9 |
1 files changed, 0 insertions, 9 deletions
diff --git a/docs/KNOWN_BUGS b/docs/KNOWN_BUGS index 754ac0348..7e0313cbe 100644 --- a/docs/KNOWN_BUGS +++ b/docs/KNOWN_BUGS @@ -80,7 +80,6 @@ problems may have been fixed or changed somewhat since this was written. 10.3 FTPS over SOCKS 11. Internals - 11.1 Curl leaks .onion hostnames in DNS 11.2 error buffer not set if connection to multiple addresses fails 11.4 HTTP test server 'connection-monitor' problems 11.5 Connection information when using TCP Fast Open @@ -525,14 +524,6 @@ problems may have been fixed or changed somewhat since this was written. 11. Internals -11.1 Curl leaks .onion hostnames in DNS - - Curl sends DNS requests for hostnames with a .onion TLD. This leaks - information about what the user is attempting to access, and violates this - requirement of RFC7686: https://datatracker.ietf.org/doc/html/rfc7686 - - Issue: https://github.com/curl/curl/issues/543 - 11.2 error buffer not set if connection to multiple addresses fails If you ask libcurl to resolve a hostname like example.com to IPv6 addresses |