resolved: rework DNSSECSupported property

Not only report whether the server actually supports DNSSEC, but also first check whether DNSSEC is actually enabled for it in our local configuration. Also, export a per-link DNSSECSupported property in addition to the existing manager-wide property.
author: Lennart Poettering <lennart@poettering.net> 2016-01-19 21:48:01 +0100
committer: Lennart Poettering <lennart@poettering.net> 2016-01-19 21:56:54 +0100
commit: c69fa7e3c44240bedc0ee1bd89fecf954783ac85 (patch)
tree: 42c7490e0639a76a2a56227ea56a928c2a3bca58 /src/resolve/resolved-dns-scope.c
parent: d2ec6608b93e3f74345c737637af24e9e75c209b (diff)
1 files changed, 3 insertions, 5 deletions
diff --git a/src/resolve/resolved-dns-scope.c b/src/resolve/resolved-dns-scope.c
index dd3609bd12..8a52d66fad 100644
--- a/src/resolve/resolved-dns-scope.c
+++ b/src/resolve/resolved-dns-scope.c
@@ -67,11 +67,9 @@ int dns_scope_new(Manager *m, DnsScope **ret, Link *l, DnsProtocol protocol, int
                  * changes. */
 
                 if (l)
-                        s->dnssec_mode = l->dnssec_mode;
-                if (s->dnssec_mode == _DNSSEC_MODE_INVALID)
-                        s->dnssec_mode = m->dnssec_mode;
-                if (s->dnssec_mode == _DNSSEC_MODE_INVALID)
-                        s->dnssec_mode = DNSSEC_NO;
+                        s->dnssec_mode = link_get_dnssec_mode(l);
+                else
+                        s->dnssec_mode = manager_get_dnssec_mode(m);
         }
 
         LIST_PREPEND(scopes, m->dns_scopes, s);
author	Lennart Poettering <lennart@poettering.net>	2016-01-19 21:48:01 +0100
committer	Lennart Poettering <lennart@poettering.net>	2016-01-19 21:56:54 +0100
commit	c69fa7e3c44240bedc0ee1bd89fecf954783ac85 (patch)
tree	42c7490e0639a76a2a56227ea56a928c2a3bca58 /src/resolve/resolved-dns-scope.c
parent	d2ec6608b93e3f74345c737637af24e9e75c209b (diff)