diff options
-rw-r--r-- | doc/cha-gtls-app.texi | 4 | ||||
-rw-r--r-- | libdane/dane.c | 6 |
2 files changed, 7 insertions, 3 deletions
diff --git a/doc/cha-gtls-app.texi b/doc/cha-gtls-app.texi index f5ca04d4fe..89bd1027e4 100644 --- a/doc/cha-gtls-app.texi +++ b/doc/cha-gtls-app.texi @@ -1558,7 +1558,9 @@ The high level functionality provided by the DANE library is shown below. Note that the @code{dane_state_t} structure that is accepted by both verification functions is optional. It is required when many queries -are performed to facilitate caching. +are performed to optimize against multiple re-initializations of the +resolving back-end and loading of DNSSEC keys. + The following flags are returned by the verify functions to indicate the status of the verification. diff --git a/libdane/dane.c b/libdane/dane.c index 4223350497..dd5378ef41 100644 --- a/libdane/dane.c +++ b/libdane/dane.c @@ -223,7 +223,9 @@ dane_query_to_raw_tlsa(dane_query_t q, unsigned int *data_entries, * @s: The structure to be initialized * @flags: flags from the %dane_state_flags enumeration * - * This function will initialize a DANE query structure. + * This function will initialize the backend resolver. It is + * intended to be used in scenarios where multiple resolvings + * occur, to optimize against multiple re-initializations. * * Returns: On success, %DANE_E_SUCCESS (0) is returned, otherwise a * negative error value. @@ -303,7 +305,7 @@ void dane_state_deinit(dane_state_t s) * @file: The file holding the DLV keys. * * This function will set a file with trusted keys - * for DLV (DNSSEC Lookaside Validation). + * for DLV (DNSSEC Lookaside Validation). * **/ int dane_state_set_dlv_file(dane_state_t s, const char *file) |