summaryrefslogtreecommitdiff
path: root/usr.sbin/unbound/validator/validator.c
diff options
context:
space:
mode:
Diffstat (limited to 'usr.sbin/unbound/validator/validator.c')
-rw-r--r--usr.sbin/unbound/validator/validator.c11
1 files changed, 11 insertions, 0 deletions
diff --git a/usr.sbin/unbound/validator/validator.c b/usr.sbin/unbound/validator/validator.c
index 4dca35bbac7..26d33a37ff3 100644
--- a/usr.sbin/unbound/validator/validator.c
+++ b/usr.sbin/unbound/validator/validator.c
@@ -205,6 +205,17 @@ val_init(struct module_env* env, int id)
log_err("validator: could not apply configuration settings.");
return 0;
}
+ if(env->cfg->disable_edns_do) {
+ struct trust_anchor* anchor = anchors_find_any_noninsecure(
+ env->anchors);
+ if(anchor) {
+ char b[LDNS_MAX_DOMAINLEN+2];
+ dname_str(anchor->name, b);
+ log_warn("validator: disable-edns-do is enabled, but there is a trust anchor for '%s'. Since DNSSEC could not work, the disable-edns-do setting is turned off. Continuing without it.", b);
+ lock_basic_unlock(&anchor->lock);
+ env->cfg->disable_edns_do = 0;
+ }
+ }
return 1;
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 08:14:47 +0000