aboutsummaryrefslogtreecommitdiff
path: root/validator/autotrust.c
diff options
context:
space:
mode:
authorDag-Erling Smørgrav <des@FreeBSD.org>2018-05-12 11:54:48 +0000
committerDag-Erling Smørgrav <des@FreeBSD.org>2018-05-12 11:54:48 +0000
commit8c2647a7dc721c8e5349bd194b8e8e178412057e (patch)
tree0e581b9a6739bcca77a11f0d800c23de59fdd37f /validator/autotrust.c
parent15de2de8449b4f5063f93578ae68aa0bc79a205c (diff)
vendor/unbound/1.6.5
Diffstat (limited to 'validator/autotrust.c')
-rw-r--r--validator/autotrust.c6
1 files changed, 6 insertions, 0 deletions
diff --git a/validator/autotrust.c b/validator/autotrust.c
index a533733c7a67..5bf815b5ec12 100644
--- a/validator/autotrust.c
+++ b/validator/autotrust.c
@@ -1571,6 +1571,11 @@ key_matches_a_ds(struct module_env* env, struct val_env* ve,
verbose(VERB_ALGO, "DS match attempt failed");
continue;
}
+ /* match of hash is sufficient for bootstrap of trust point */
+ (void)reason;
+ (void)ve;
+ return 1;
+ /* no need to check RRSIG, DS hash already matched with source
if(dnskey_verify_rrset(env, ve, dnskey_rrset,
dnskey_rrset, key_idx, &reason) == sec_status_secure) {
return 1;
@@ -1578,6 +1583,7 @@ key_matches_a_ds(struct module_env* env, struct val_env* ve,
verbose(VERB_ALGO, "DS match failed because the key "
"does not verify the keyset: %s", reason);
}
+ */
}
return 0;
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-31 20:32:37 +0000