Add comment on DNSSEC signing zone configuration

I was slightly confused here, so IMO it can use a comment.

(cherry picked from commit c80531758cb2bfc5aa4cea14046f0daba4f87dd6)

diff --git a/bin/named/zoneconf.c b/bin/named/zoneconf.c
index 868216c950343892d42441dc67a42fb630261993..7a414201709bc9073a0ed03f44d82d6a2cc98dd7 100644 (file)
--- a/bin/named/zoneconf.c
+++ b/bin/named/zoneconf.c
@@ -1557,6 +1557,10 @@ named_zone_configure(const cfg_obj_t *config, const cfg_obj_t *vconfig,
                RETERR(configure_zone_ssutable(zoptions, mayberaw, zname));
        }
 
+       /*
+        * Configure DNSSEC signing. These apply to primary zones or zones that
+        * use inline-signing (raw != NULL).
+        */
        if (ztype == dns_zone_primary || raw != NULL) {
                const cfg_obj_t *validity, *resign;
                bool allow = false, maint = false;