A change in
6aba56ae8 (checking whether a rejected RRset was identical
to the data it would have replaced, so that we could still cache a
signature) inadvertently introduced cases where processing of a
response would continue when previously it would have been skipped.
(cherry picked from commit
d0fd9cbe3b0455d0db04b5afe67b7edc44e55965)
if (result == DNS_R_UNCHANGED) {
result = ISC_R_SUCCESS;
if (!need_validation &&
- ardataset != NULL)
+ ardataset != NULL &&
+ NEGATIVE(ardataset))
{
/*
* The answer in the
if (NXDOMAIN(ardataset)) {
eresult =
DNS_R_NCACHENXDOMAIN;
- } else if (NEGATIVE(ardataset))
- {
+ } else {
eresult =
DNS_R_NCACHENXRRSET;
}
-
+ continue;
+ } else if (!need_validation &&
+ ardataset != NULL &&
+ sigrdataset != NULL &&
+ !dns_rdataset_equals(
+ rdataset, ardataset))
+ {
/*
* The cache wasn't updated
* because something was
* data was the same as what
* we were trying to add,
* then sigrdataset might
- * still be useful. If
- * not, move on.
+ * still be useful, and we
+ * should carry on caching
+ * it. Otherwise, move on.
*/
- if (sigrdataset != NULL &&
- !dns_rdataset_equals(
- rdataset,
- addedrdataset))
- {
- continue;
- }
+ continue;
}
}
if (result != ISC_R_SUCCESS) {
projects / thirdparty / bind9.git / commitdiff
