projects / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1fa44ac) | patch
[PATCH] hsts: improve subdomain handling
authorDaniel Stenberg <daniel@haxx.se>
Wed, 9 Oct 2024 08:04:35 +0000 (10:04 +0200)
committerSamuel Henrique <samueloph@debian.org>
Sun, 9 Mar 2025 10:45:45 +0000 (10:45 +0000)
commitfaaa762391c6571506f3a6fe812415398376b3a5
tree640fd3eb63cc14560708b07e5976dc45ad3c057btree | snapshot
parent1fa44ac96213d7a546bc38923159e3878805efd9commit | diff
[PATCH] hsts: improve subdomain handling

- on load, only replace existing HSTS entries if there is a full host
  match

- on matching, prefer a full host match and secondary the longest tail
  subdomain match

Closes #15210

Backported by: Aquila Macedo Costa <aquilamacedo@riseup.net>.

Changes:
- Refresh patch context.

Gbp-Pq: Name CVE-2024-9681-0.patch
lib/hsts.c diff | blob | history
tests/data/test1660 diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.