projects / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7af8f98) | patch
[PATCH] hsts: improve subdomain handling
authorDaniel Stenberg <daniel@haxx.se>
Wed, 9 Oct 2024 08:04:35 +0000 (10:04 +0200)
committerSamuel Henrique <samueloph@debian.org>
Sat, 19 Jul 2025 19:04:59 +0000 (21:04 +0200)
commitcfc58c0d4d7d8b97759cf4f31ec9d6b597ba2720
tree88153ff2c38dd4a474c5f23caee56813230d45dctree | snapshot
parent7af8f985d9214f557c3c692ec07fcbd5362ecefecommit | diff
[PATCH] hsts: improve subdomain handling

- on load, only replace existing HSTS entries if there is a full host
  match

- on matching, prefer a full host match and secondary the longest tail
  subdomain match

Closes #15210

Backported by: Aquila Macedo Costa <aquilamacedo@riseup.net>.

Changes:
- Refresh patch context.

Gbp-Pq: Name CVE-2024-9681-0.patch
lib/hsts.c diff | blob | history
tests/data/test1660 diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.