diff options
| author |   florian <florian@openbsd.org> | 2021-01-23 16:27:24 +0000 |
|---|---|---|
| committer | florian <florian@openbsd.org> | 2021-01-23 16:27:24 +0000 |
| commit | 5df3f0b055646f69a626855be703bc85f08c8c22 (patch) | |
| tree | 8d25c6a5646da0f7894e44305de6b5e497ccd38f | |
| parent | Remove unused variables found by clang. Additional unused var spotted by eric@. (diff) | |
| download | wireguard-openbsd-5df3f0b055646f69a626855be703bc85f08c8c22.tar.xz wireguard-openbsd-5df3f0b055646f69a626855be703bc85f08c8c22.zip | |
Don't just blindly upgrade to VALIDATING if we see a SECURE answer.
Let's go through the check_resolver() / new_resolver() code path
which will also hook up the resovler to the shared cache.
This means also one less special case for upcomming DNS64 support.
| -rw-r--r-- | sbin/unwind/resolver.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/sbin/unwind/resolver.c b/sbin/unwind/resolver.c index f5a1f3e1f59..b4ae3fd0abf 100644 --- a/sbin/unwind/resolver.c +++ b/sbin/unwind/resolver.c @@ -1,4 +1,4 @@ -/* $OpenBSD: resolver.c,v 1.131 2021/01/19 16:52:40 florian Exp $ */ +/* $OpenBSD: resolver.c,v 1.132 2021/01/23 16:27:24 florian Exp $ */ /* * Copyright (c) 2018 Florian Obser <florian@openbsd.org> @@ -1008,8 +1008,8 @@ resolve_done(struct uw_resolver *res, void *arg, int rcode, if (result->rcode == LDNS_RCODE_SERVFAIL) goto servfail; - if (sec == SECURE) - res->state = VALIDATING; + if (sec == SECURE && res->state != VALIDATING && res->stop != -1) + check_resolver(res); if (res->state == VALIDATING && sec == BOGUS) { answer_header->bogus = !force_acceptbogus; |