nsec: correct wildcard proof check with queried for literal wildcard
Compare changes
Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.
The validation fails in current implementation when queried directly for the wildcard. In that case the count of the common labels with the NSEC record is the same, and not shorter by 1 (to accomodate wildcard expansion).