nsec3.c: Add a missing dns_db_detachnode() call

There is one case in 'dns_nsec3_activex()' where it returns but forgets
to detach the db node. Add the missing 'dns_db_detachnode()' call.

This case only triggers if 'sig-signing-type' (privatetype) is set to 0
(which by default is not), or if the function is called with 'complete'
is set to 'true' (which at this moment do not exist).

(cherry picked from commit 0cf6c18ccb2205a1fc81431f908c8310f6136bbb)

diff --git a/lib/dns/nsec3.c b/lib/dns/nsec3.c
index c553cdaf1e4fa30097b522e2f8eda0a8b5182a33..ca60b12c5f3b2590b879b763ff3ab0c39732d927 100644 (file)
--- a/lib/dns/nsec3.c
+++ b/lib/dns/nsec3.c
@@ -1833,6 +1833,7 @@ dns_nsec3_activex(dns_db_t *db, dns_dbversion_t *version, bool complete,
 
 try_private:
        if (privatetype == 0 || complete) {
+               dns_db_detachnode(db, &node);
                *answer = false;
                return (ISC_R_SUCCESS);
        }