projects / ipfire-2.x.git / blame
| Commit | Line | Data |
|---|---|---|
| c3b4c861 MF |
1 | From a86fdf437ecc29398f9715ceb5240442a17ac014 Mon Sep 17 00:00:00 2001 |
| 2 | From: Simon Kelley <simon@thekelleys.org.uk> | |
| 3 | Date: Sun, 20 Dec 2015 21:19:20 +0000 | |
| 4 | Subject: [PATCH] Minor tweak to previous commit. | |
| 5 | ||
| 6 | --- | |
| 7 | src/dnssec.c | 6 ++---- | |
| 8 | 1 file changed, 2 insertions(+), 4 deletions(-) | |
| 9 | ||
| 10 | diff --git a/src/dnssec.c b/src/dnssec.c | |
| 11 | index 29848e1..9fa64b6 100644 | |
| 12 | --- a/src/dnssec.c | |
| 13 | +++ b/src/dnssec.c | |
| 14 | @@ -1889,8 +1889,6 @@ static int zone_status(char *name, int class, char *keyname, time_t now) | |
| 15 | } | |
| 16 | else | |
| 17 | { | |
| 18 | - int gotone = 0; | |
| 19 | - | |
| 20 | /* If all the DS records have digest and/or sig algos we don't support, | |
| 21 | then the zone is insecure. Note that if an algo | |
| 22 | appears in the DS, then RRSIGs for that algo MUST | |
| 23 | @@ -1904,11 +1902,11 @@ static int zone_status(char *name, int class, char *keyname, time_t now) | |
| 24 | if (crecp->uid == (unsigned int)class && | |
| 25 | hash_find(ds_digest_name(crecp->addr.ds.digest)) && | |
| 26 | verify_func(crecp->addr.ds.algo)) | |
| 27 | - gotone = 1; | |
| 28 | + break; | |
| 29 | } | |
| 30 | while ((crecp = cache_find_by_name(crecp, keyname, now, F_DS))); | |
| 31 | ||
| 32 | - if (!gotone) | |
| 33 | + if (!crecp) | |
| 34 | return STAT_INSECURE; | |
| 35 | } | |
| 36 | ||
| 37 | -- | |
| 38 | 1.7.10.4 | |
| 39 |