diff options
| author | Dag-Erling Smørgrav <des@FreeBSD.org> | 2018-05-12 11:54:48 +0000 |
|---|---|---|
| committer | Dag-Erling Smørgrav <des@FreeBSD.org> | 2018-05-12 11:54:48 +0000 |
| commit | 8c2647a7dc721c8e5349bd194b8e8e178412057e (patch) | |
| tree | 0e581b9a6739bcca77a11f0d800c23de59fdd37f /validator | |
| parent | 15de2de8449b4f5063f93578ae68aa0bc79a205c (diff) | |
| download | src-test-8c2647a7dc721c8e5349bd194b8e8e178412057e.tar.gz src-test-8c2647a7dc721c8e5349bd194b8e8e178412057e.zip | |
Notes
Diffstat (limited to 'validator')
| -rw-r--r-- | validator/autotrust.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/validator/autotrust.c b/validator/autotrust.c index a533733c7a676..5bf815b5ec126 100644 --- a/validator/autotrust.c +++ b/validator/autotrust.c @@ -1571,6 +1571,11 @@ key_matches_a_ds(struct module_env* env, struct val_env* ve, verbose(VERB_ALGO, "DS match attempt failed"); continue; } + /* match of hash is sufficient for bootstrap of trust point */ + (void)reason; + (void)ve; + return 1; + /* no need to check RRSIG, DS hash already matched with source if(dnskey_verify_rrset(env, ve, dnskey_rrset, dnskey_rrset, key_idx, &reason) == sec_status_secure) { return 1; @@ -1578,6 +1583,7 @@ key_matches_a_ds(struct module_env* env, struct val_env* ve, verbose(VERB_ALGO, "DS match failed because the key " "does not verify the keyset: %s", reason); } + */ } return 0; } |