From: Michal Sekletar <msekleta@redhat.com>
Date: Wed, 20 Dec 2023 15:44:14 +0000 (+0100)
Subject: resolved: actually check authenticated flag of SOA transaction
X-Git-Tag: archive/raspbian/247.3-7+rpi1+deb11u7^2~11
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=12c8984def8b9b8b0f68ec0bff6d8ead510f4d1c;p=systemd.git

resolved: actually check authenticated flag of SOA transaction

Fixes #25676

Gbp-Pq: Name 0001-resolved-actually-check-authenticated-flag-of-SOA-tr.patch
---

diff --git a/src/resolve/resolved-dns-transaction.c b/src/resolve/resolved-dns-transaction.c
index 37f0ddde..99364ca1 100644
--- a/src/resolve/resolved-dns-transaction.c
+++ b/src/resolve/resolved-dns-transaction.c
@@ -2446,7 +2446,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord *
                         if (r == 0)
                                 continue;
 
-                        return t->answer_authenticated;
+                        return dt->answer_authenticated;
                 }
 
                 return true;
@@ -2475,7 +2475,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord *
                          * RR for us. This means we are not at a zone cut. In
                          * this case, we require authentication if the SOA
                          * lookup was authenticated too. */
-                        return t->answer_authenticated;
+                        return dt->answer_authenticated;
                 }
 
                 return true;