]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
projects / thirdparty / bind9.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d2cb28d)
Fix setting retire in dns_keymgr_key_init
authorMark Andrews <marka@isc.org>
Wed, 4 Mar 2026 04:14:14 +0000 (15:14 +1100)
committerMatthijs Mekking <matthijs@isc.org>
Thu, 5 Mar 2026 10:14:45 +0000 (10:14 +0000)
The wrong variable was passed to dst_key_gettime when attempting
to set retire.

lib/dns/keymgr.c patch | blob | blame | history

diff --git a/lib/dns/keymgr.c b/lib/dns/keymgr.c
index 704acca5ec39e5d822cbb99cbc06bb07739448c3..dd5b371afd4f8e363fb3651397abc3ab4670ea0f 100644 (file)
--- a/lib/dns/keymgr.c
+++ b/lib/dns/keymgr.c
@@ -1733,8 +1733,8 @@ dns_keymgr_key_init(dns_dnsseckey_t *key, dns_kasp_t *kasp, isc_stdtime_t now,
                }
                goal_state = OMNIPRESENT;
        }
-       result = dst_key_gettime(key->key, DST_TIME_INACTIVE, &result);
-       if (result <= now && result == ISC_R_SUCCESS) {
+       result = dst_key_gettime(key->key, DST_TIME_INACTIVE, &retire);
+       if (retire <= now && result == ISC_R_SUCCESS) {
                dns_ttl_t ttlsig = dns_kasp_zonemaxttl(kasp, true);
                ttlsig += dns_kasp_zonepropagationdelay(kasp);
                if ((retire + ttlsig) <= now) {
Mirror of https://gitlab.isc.org/isc-projects/bind9.git