From 60ec880c48acee50b8f057a78bdf371963a7a714 Mon Sep 17 00:00:00 2001 From: Kim Alvefur Date: Wed, 3 Mar 2021 18:42:54 +0100 Subject: net.resolvers.basic: Don't enable DANE with zero TLSA records Turns out it doesn't work with zero. --- net/resolvers/basic.lua | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'net') diff --git a/net/resolvers/basic.lua b/net/resolvers/basic.lua index 2153a641..220cb0c8 100644 --- a/net/resolvers/basic.lua +++ b/net/resolvers/basic.lua @@ -37,7 +37,7 @@ function methods:next(cb) if n > 0 then return; end self.targets = targets; if self.extra and self.extra.use_dane then - if secure then + if secure and tlsa[1] then self.extra.tlsa = tlsa; self.extra.dane_hostname = self.hostname; else -- cgit v1.2.3