resolved: actually check authenticated flag of SOA transaction

Fixes #25676 (cherry picked from commit 3b4cc1437b) (cherry picked from commit 6da5ca9dd6)
2025-01-03 01:17:45 +03:00 · 2023-12-20 16:44:14 +01:00 · 2023-12-20 16:44:14 +01:00 · 029272750f
commit 029272750f
parent 026d51dc9a
1 changed files with 2 additions and 2 deletions
--- a/src/resolve/resolved-dns-transaction.c
+++ b/src/resolve/resolved-dns-transaction.c
@ -2788,7 +2788,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord *
                        if (r == 0)
                                continue;

-                        return FLAGS_SET(t->answer_query_flags, SD_RESOLVED_AUTHENTICATED);
+                        return FLAGS_SET(dt->answer_query_flags, SD_RESOLVED_AUTHENTICATED);
                }

                return true;
@ -2815,7 +2815,7 @@ static int dns_transaction_requires_rrsig(DnsTransaction *t, DnsResourceRecord *
                        /* We found the transaction that was supposed to find the SOA RR for us. It was
                         * successful, but found no RR for us. This means we are not at a zone cut. In this
                         * case, we require authentication if the SOA lookup was authenticated too. */
-                        return FLAGS_SET(t->answer_query_flags, SD_RESOLVED_AUTHENTICATED);
+                        return FLAGS_SET(dt->answer_query_flags, SD_RESOLVED_AUTHENTICATED);
                }

                return true;