fix: usr: Fix crash on badly configured secondary signer

A badly configured secondary signer that was missing the 'file' entry caused the server to crash, rather than to reject the configuration. This has been fixed.

Closes #5993

Merge branch '5993-fix-bump-in-the-wire-crash' into 'main'

See merge request isc-projects/bind9!12045

bin/tests/system/checkconf/inline-inherit.conf

@@ -0,0 +1,7 @@
+remote-servers "stealthPrimaries" {127.0.0.1;};
+zone "example.net" {
+	type secondary;
+	dnssec-policy default;
+	primaries { stealthPrimaries; };
+};
+

bin/tests/system/checkconf/tests.sh

@@ -277,6 +277,9 @@ l=$(grep "missing 'file' entry" <checkconf.out$n.2 | wc -l)
 $CHECKCONF inline-bad.conf >checkconf.out$n.3 2>&1 && ret=1
 l=$(grep "missing 'file' entry" <checkconf.out$n.3 | wc -l)
 [ $l -eq 1 ] || ret=1
+$CHECKCONF inline-inherit.conf >checkconf.out$n.3 2>&1 && ret=1
+l=$(grep "missing 'file' entry" <checkconf.out$n.3 | wc -l)
+[ $l -eq 1 ] || ret=1
 if [ $ret -ne 0 ]; then echo_i "failed"; fi
 status=$((status + ret))
 

lib/isccfg/check.c

@@ -3900,7 +3900,7 @@ isccfg_check_zoneconf(const cfg_obj_t *zconfig, const cfg_obj_t *voptions,
 		if (obj != NULL) {
 			inline_signing = signing = cfg_obj_asboolean(obj);
 		} else if (has_dnssecpolicy) {
-			signing = kasp_inlinesigning;
+			inline_signing = signing = kasp_inlinesigning;
 		}
 
 		if (has_dnssecpolicy) {