- Change syntax of particular validator error to be easier for

  machine parse, swap rrset and ip adres info so it looks like:
  validation failure <www.example.nl. TXT IN>: signature crypto
  failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN>

git-svn-id: file:///svn/unbound/trunk@3422 be551aaa-1e26-0410-a405-d3ace91eadb9

diff --git a/doc/Changelog b/doc/Changelog
index 669e083a3a5e2d3d3ecaa1eac98a05eccf69a5ec..571c980af8196578c41cf274b4962ca4a7f12175 100644 (file)
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -1,3 +1,9 @@
+10 May 2015: Wouter
+       - Change syntax of particular validator error to be easier for
+         machine parse, swap rrset and ip adres info so it looks like:
+         validation failure <www.example.nl. TXT IN>: signature crypto
+         failed from 2001:DB8:7:bba4::53 for <*.example.nl. NSEC IN>
+
 1 May 2015: Wouter
        - caps-whitelist in unbound.conf allows whitelist of loadbalancers
          that cannot work with caps-for-id or its fallback.

diff --git a/validator/validator.c b/validator/validator.c
index a02525fee0ce5ceb40ce1b93f68a12411dc77876..3981d4fa16c2b51e43db4f9822a0a8f3ff12dffa 100644 (file)
--- a/validator/validator.c
+++ b/validator/validator.c
@@ -519,8 +519,8 @@ validate_msg_signatures(struct module_qstate* qstate, struct module_env* env,
                                "has failed AUTHORITY rrset:", s->rk.dname,
                                ntohs(s->rk.type), ntohs(s->rk.rrset_class));
                        errinf(qstate, reason);
-                       errinf_rrset(qstate, s);
                        errinf_origin(qstate, qstate->reply_origin);
+                       errinf_rrset(qstate, s);
                        chase_reply->security = sec_status_bogus;
                        return 0;
                }