Comment 4 for bug 886509

The DNS records are exactly the same for RFC5205 and RFC5205-bis.

I was planning on returning whatever the DNS proxy returns if there are no HIP records, if there are not HIP records with compatible algos.

Are there some well known HITs that use DSA instead of RSA as the algorithm or should I just generate my own for testing?

This is beginning to look suspiciously easy, but I'll just use more effort to make automated tests and refactor the huge mess that is the main loop currently.