Use parent domain for BIMI

pull/200/head
M66B 4 years ago
parent 6375a502c0
commit 908bd5784a

@ -85,11 +85,13 @@ public class Bimi {
if (TextUtils.isEmpty(selector)) if (TextUtils.isEmpty(selector))
selector = "default"; selector = "default";
String parent = UriHelper.getParentDomain(context, domain);
Log.i("BIMI domain=" + domain + " parent=" + parent);
// Get DNS record // Get DNS record
DnsHelper.DnsRecord[] records; DnsHelper.DnsRecord[] records;
try { try {
String txt = selector + "._bimi." + domain; String txt = selector + "._bimi." + parent;
Log.i("BIMI fetch TXT " + txt); Log.i("BIMI fetch TXT " + txt);
records = DnsHelper.lookup(context, txt, "txt"); records = DnsHelper.lookup(context, txt, "txt");
if (records.length == 0) if (records.length == 0)
@ -210,7 +212,7 @@ public class Bimi {
// Check subject // Check subject
List<String> names = EntityCertificate.getDnsNames(cert); List<String> names = EntityCertificate.getDnsNames(cert);
if (!names.contains(domain)) if (!names.contains(parent))
throw new IllegalArgumentException("Invalid certificate domain" + throw new IllegalArgumentException("Invalid certificate domain" +
" names=" + TextUtils.join(", ", names)); " names=" + TextUtils.join(", ", names));
@ -301,10 +303,10 @@ public class Bimi {
CertPathValidator cpv = CertPathValidator.getInstance("PKIX"); CertPathValidator cpv = CertPathValidator.getInstance("PKIX");
cpv.validate(path.getCertPath(), pparams); cpv.validate(path.getCertPath(), pparams);
Log.i("BIMI valid domain=" + domain); Log.i("BIMI valid domain=" + parent);
// Get DMARC record // Get DMARC record
String txt = "_dmarc." + domain; String txt = "_dmarc." + parent;
Log.i("BIMI fetch TXT " + txt); Log.i("BIMI fetch TXT " + txt);
records = DnsHelper.lookup(context, txt, "txt"); records = DnsHelper.lookup(context, txt, "txt");
if (records.length == 0) if (records.length == 0)
@ -321,7 +323,7 @@ public class Bimi {
} catch (MalformedURLException ex) { } catch (MalformedURLException ex) {
Log.i(ex); Log.i(ex);
} catch (Throwable ex) { } catch (Throwable ex) {
Log.w(new Throwable("BIMI " + domain, ex)); Log.w(new Throwable("BIMI " + parent, ex));
} }
break; break;

Loading…
Cancel
Save