git.ipfire.org Git - thirdparty/bind9.git/commit

author	Matthijs Mekking <matthijs@isc.org>
	Tue, 3 Mar 2026 07:37:34 +0000 (08:37 +0100)
committer	Matthijs Mekking <matthijs@isc.org>
	Mon, 16 Mar 2026 16:46:51 +0000 (16:46 +0000)
commit	bc1d177cc2e82f18a77985c518e169f0e37d88c7
tree	d515ff479a1833575bcb4c32dcdbad8913d35a69	tree \| snapshot
parent	e0211a727b1756b41a3d714625177ad1ec125669	commit \| diff

Fast fail a validator deadlock

We return DNS_R_NOVALIDSIG if we detected a deadlock. Then in
'validate_async_done()', this result value is used to check if we
need to fall back to insecure. As part of that we create a new fetch
but that fails because of the detected deadlock. This results in a loop
of deadlock detected, fallback to insecure, deadlock detected, ...

Add a new result value, ISC_R_DEADLOCK, and return this instead when
we have detected a deadlock. This will be treated as a generic error,
as there is no special handling for this result value.

lib/dns/validator.c		diff \| blob \| blame \| history
lib/isc/include/isc/result.h		diff \| blob \| blame \| history
lib/isc/result.c		diff \| blob \| blame \| history