Commit 5a4280cb authored by Libor Peltan's avatar Libor Peltan

dnssec: fixed detection of signing scheme rollover necessity

parent b8190251
......@@ -69,7 +69,7 @@ static unsigned algorithm_present(const kdnssec_ctx_t *ctx, uint8_t alg)
static bool signing_scheme_present(const kdnssec_ctx_t *ctx)
{
if (ctx->policy->singe_type_signing) {
return key_present(ctx, true, true);
return (!key_present(ctx, true, false) || !key_present(ctx, false, true));
} else {
return (key_present(ctx, true, false) && key_present(ctx, false, true));
}
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment