* PERFORMANCE OF THIS SOFTWARE.
*/
-/* $Id: zone.c,v 1.582.8.11 2011/03/11 06:47:06 marka Exp $ */
+/* $Id: zone.c,v 1.582.8.12 2011/03/11 13:22:40 marka Exp $ */
/*! \file */
sync_keyzone(dns_zone_t *zone, dns_db_t *db) {
isc_result_t result = ISC_R_SUCCESS;
isc_boolean_t changed = ISC_FALSE;
+ isc_boolean_t commit = ISC_FALSE;
dns_rbtnodechain_t chain;
dns_fixedname_t fn;
dns_name_t foundname, *origin;
if (changed) {
/* Write changes to journal file. */
- result = increment_soa_serial(db, ver, &diff, zone->mctx);
- if (result == ISC_R_SUCCESS)
- zone_journal(zone, &diff, "sync_keyzone");
+ CHECK(increment_soa_serial(db, ver, &diff, zone->mctx));
+ CHECK(zone_journal(zone, &diff, "sync_keyzone"));
DNS_ZONE_SETFLAG(zone, DNS_ZONEFLG_LOADED);
zone_needdump(zone, 30);
+ commit = ISC_TRUE;
}
failure:
if (sr != NULL)
dns_keytable_detach(&sr);
if (ver != NULL)
- dns_db_closeversion(db, &ver, changed);
+ dns_db_closeversion(db, &ver, commit);
dns_diff_clear(&diff);
return (result);
dns_keytable_t *secroots = NULL;
dns_dbversion_t *ver = NULL;
dns_diff_t diff;
- isc_boolean_t changed = ISC_FALSE;
isc_boolean_t alldone = ISC_FALSE;
+ isc_boolean_t commit = ISC_FALSE;
dns_name_t *keyname;
dns_rdata_t sigrr = DNS_RDATA_INIT;
dns_rdata_t dnskeyrr = DNS_RDATA_INIT;
"Unable to fetch DNSKEY set "
"'%s': %s", namebuf, dns_result_totext(eresult));
CHECK(minimal_update(kfetch, ver, &diff));
- changed = ISC_TRUE;
- goto failure;
+ goto done;
}
/* No RRSIGs found */
"No DNSKEY RRSIGs found for "
"'%s': %s", namebuf, dns_result_totext(eresult));
CHECK(minimal_update(kfetch, ver, &diff));
- changed = ISC_TRUE;
- goto failure;
+ goto done;
}
/*
CHECK(update_one_rr(kfetch->db, ver, &diff,
DNS_DIFFOP_DEL, keyname, 0,
&keydatarr));
- changed = ISC_TRUE;
}
if (!secure || deletekey)
CHECK(update_one_rr(kfetch->db, ver, &diff,
DNS_DIFFOP_ADD, keyname, 0,
&keydatarr));
- changed = ISC_TRUE;
set_refreshkeytimer(zone, &keydata, now);
}
}
/* Delete old version */
- if (deletekey || !newkey) {
+ if (deletekey || !newkey)
CHECK(update_one_rr(kfetch->db, ver, &diff,
DNS_DIFFOP_DEL, keyname, 0,
&keydatarr));
- changed = ISC_TRUE;
- }
if (updatekey) {
/* Set refresh timer */
CHECK(update_one_rr(kfetch->db, ver, &diff,
DNS_DIFFOP_ADD, keyname, 0,
&keydatarr));
- changed = ISC_TRUE;
} else if (newkey) {
/* Convert DNSKEY to KEYDATA */
dns_rdata_tostruct(&dnskeyrr, &dnskey, NULL);
CHECK(update_one_rr(kfetch->db, ver, &diff,
DNS_DIFFOP_ADD, keyname, 0,
&keydatarr));
- changed = ISC_TRUE;
}
if (trustkey) {
if (pending != 0)
fail_secure(zone, keyname);
- failure:
- if (changed) {
+ done:
+
+ if (!ISC_LIST_EMPTY(diff.tuples)) {
+ /* Write changes to journal file. */
+ CHECK(increment_soa_serial(kfetch->db, ver, &diff, mctx));
+ CHECK(zone_journal(zone, &diff, "keyfetch_done"));
+ commit = ISC_TRUE;
+
DNS_ZONE_SETFLAG(zone, DNS_ZONEFLG_LOADED);
zone_needdump(zone, 30);
}
+ failure:
UNLOCK_ZONE(zone);
- /* Write changes to journal file. */
- if (alldone) {
- result = increment_soa_serial(kfetch->db, ver, &diff, mctx);
- if (result == ISC_R_SUCCESS)
- result = zone_journal(zone, &diff, "keyfetch_done");
- }
-
dns_diff_clear(&diff);
- dns_db_closeversion(kfetch->db, &ver, changed);
+ dns_db_closeversion(kfetch->db, &ver, commit);
dns_db_detach(&kfetch->db);
dns_zone_detach(&kfetch->zone);
}
if (!ISC_LIST_EMPTY(diff.tuples)) {
CHECK(increment_soa_serial(db, ver, &diff, zone->mctx));
+ CHECK(zone_journal(zone, &diff, "sync_keyzone"));
commit = ISC_TRUE;
- zone_journal(zone, &diff, "sync_keyzone");
DNS_ZONE_SETFLAG(zone, DNS_ZONEFLG_LOADED);
zone_needdump(zone, 30);
}
projects / thirdparty / bind9.git / commitdiff
