]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
projects / thirdparty / bind9.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 780e8e8)
Add NSEC for opt-out names
authorMatthijs Mekking <matthijs@isc.org>
Tue, 9 Dec 2025 17:03:13 +0000 (18:03 +0100)
committerMatthijs Mekking <matthijs@isc.org>
Fri, 19 Dec 2025 15:55:34 +0000 (16:55 +0100)
When switching from NSEC3 opt-out to NSEC, add NSEC records if we saw an
RR. This corrects a mistake in style cleanups done in commit
308ab1b4a5c5239860ca06c64b0def9b98ae4b17.

lib/dns/zone.c patch | blob | blame | history

diff --git a/lib/dns/zone.c b/lib/dns/zone.c
index 216ad0328073ec63ca2ef6272fee870161ca438d..9de591b50ad72faa7527aef0022ae1ec4923252d 100644 (file)
--- a/lib/dns/zone.c
+++ b/lib/dns/zone.c
@@ -9097,7 +9097,8 @@ zone_nsec3chain(dns_zone_t *zone) {
                                seen_nsec = true;
                        } else if (rdataset.type == dns_rdatatype_nsec3) {
                                seen_nsec3 = true;
-                       } else if (rdataset.type != dns_rdatatype_rrsig) {
+                       }
+                       if (rdataset.type != dns_rdatatype_rrsig) {
                                seen_rr = true;
                        }
                        dns_rdataset_disassociate(&rdataset);
Mirror of https://gitlab.isc.org/isc-projects/bind9.git