From 25bf2076f3e35d9da64fe9fd8a704e06a398dfc1 Mon Sep 17 00:00:00 2001
From: "Heiko Schlittermann (HS12)" <hs@schlittermann.de>
Date: Sun, 21 Jun 2015 17:03:50 +0200
Subject: [PATCH] Fix and extend the checks in dns_is_secure()

---
 src/src/dns.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/src/dns.c b/src/src/dns.c
index 4f84bfc45..2efcbaaff 100644
--- a/src/src/dns.c
+++ b/src/src/dns.c
@@ -460,7 +460,8 @@ if (h->ad) return TRUE;
 
 if (  !h->aa
    || !dns_trust_aa
-   || !*(trusted = expand_string(dns_trust_aa))
+   || !(trusted = expand_string(dns_trust_aa))
+   || !*trusted
    || !(auth_name = dns_extract_auth_name(dnsa))
    || OK != match_isinlist(auth_name, &trusted, 0, NULL, NULL,
 			    MCL_DOMAIN, TRUE, NULL) 
-- 
2.30.2