interesting
/
getdns
mirror of https://github.com/getdnsapi/getdns.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

set ds_signer only when actually signed

This commit is contained in:
Willem Toorop 2015-07-08 17:15:27 +02:00
parent d4849dc0ba
commit d87d951874
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/dnssec.c
View File

@ -2336,9 +2336,9 @@ static int chain_node_get_trusted_keys(
node->ds_signer = keytag;
return GETDNS_DNSSEC_INSECURE;
}
if ((keytag = key_matches_signer(ta, &node->ds))) {
node->ds_signer = keytag;
if (a_key_signed_rrset(ta, &node->ds) &&
if (key_matches_signer(ta, &node->ds)) {
if ((node->ds_signer = a_key_signed_rrset(ta, &node->ds)) &&
(keytag = ds_authenticates_keys(&node->ds, &node->dnskey))){
*keys = &node->dnskey;