mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-09-03 16:15:27 +00:00
Code Issues Releases Wiki Activity

reversed previous change: data that is neither secure not pending

Browse Source 
is assumed to be from insecure zones and therefore should have AD set
per server policy
This commit is contained in:
Andreas Gustafsson
2000-05-18 01:40:56 +00:00
parent 88e216c7b4
commit 0fd13c7aca
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/dns/message.c
View File

@@ -1664,7 +1664,7 @@ dns_message_rendersection(dns_message_t *msg, dns_section_t sectionid,
* If we have rendered pending data, ensure * If we have rendered pending data, ensure
* that the AD bit is not set. * that the AD bit is not set.
*/ */
if (rdataset->trust < dns_trust_secure && if (rdataset->trust == dns_trust_pending &&
(sectionid == DNS_SECTION_ANSWER || (sectionid == DNS_SECTION_ANSWER ||
sectionid == DNS_SECTION_AUTHORITY)) sectionid == DNS_SECTION_AUTHORITY))
msg->flags &= ~DNS_MESSAGEFLAG_AD; msg->flags &= ~DNS_MESSAGEFLAG_AD;