Commit e5f137c2 authored by Libor Peltan's avatar Libor Peltan Committed by Daniel Salzman

dnssec: fixed detection of signing scheme rollover necessity

parent a678c1e2
......@@ -69,7 +69,7 @@ static unsigned algorithm_present(const kdnssec_ctx_t *ctx, uint8_t alg)
static bool signing_scheme_present(const kdnssec_ctx_t *ctx)
if (ctx->policy->singe_type_signing) {
return key_present(ctx, true, true);
return (!key_present(ctx, true, false) || !key_present(ctx, false, true));
} else {
return (key_present(ctx, true, false) && key_present(ctx, false, true));
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment