Skip to content

Use default padding policy for responses.

Daniel Kahn Gillmor requested to merge dkg/resolver:better-padding-default into master

net.tls_padding() can now take a boolean in addition to a numeric value. true means "use sensible default padding policy", false means "never pad".

In the struct kr_context, we change tls_padding from a uint32_t to an int32_t so that we can explicitly represent the default value (-1). This should be a safe ABI/API change, since no one had ever set a padding > 4096 anyway.

This depends on libknot having adopted the changes in:

https://gitlab.labs.nic.cz/labs/knot/merge_requests/692

Once that's done, if there's a release, then this changeset needs to also update kresd's versioned dependency on libknot.

Merge request reports