Changeset View
Changeset View
Standalone View
Standalone View
contrib/ldns/ldns/dnssec_verify.h
Show First 20 Lines • Show All 586 Lines • ▼ Show 20 Lines | |||||
* \param[in] nsecs The list of NSEC3 RRs that are supposed to deny the | * \param[in] nsecs The list of NSEC3 RRs that are supposed to deny the | ||||
* existence of the RR | * existence of the RR | ||||
* \param[in] rrsigs The RRSIG rr covering the NSEC RRs | * \param[in] rrsigs The RRSIG rr covering the NSEC RRs | ||||
* \param[in] packet_rcode The RCODE value of the packet that provided the | * \param[in] packet_rcode The RCODE value of the packet that provided the | ||||
* NSEC3 RRs | * NSEC3 RRs | ||||
* \param[in] packet_qtype The original query RR type | * \param[in] packet_qtype The original query RR type | ||||
* \param[in] packet_nodata True if the providing packet had an empty ANSWER | * \param[in] packet_nodata True if the providing packet had an empty ANSWER | ||||
* section | * section | ||||
* \param[in] match On match, the given (reference to a) pointer will be set | * \param[out] match On match, the given (reference to a) pointer will be set | ||||
* to point to the matching nsec resource record. | * to point to the matching nsec resource record. | ||||
* \return LDNS_STATUS_OK if the NSEC3 RRs deny the existence, error code | * \return LDNS_STATUS_OK if the NSEC3 RRs deny the existence, error code | ||||
* containing the reason they do not otherwise | * containing the reason they do not otherwise | ||||
*/ | */ | ||||
ldns_status ldns_dnssec_verify_denial_nsec3_match(ldns_rr *rr, | ldns_status ldns_dnssec_verify_denial_nsec3_match(ldns_rr *rr, | ||||
ldns_rr_list *nsecs, | ldns_rr_list *nsecs, | ||||
ldns_rr_list *rrsigs, | ldns_rr_list *rrsigs, | ||||
ldns_pkt_rcode packet_rcode, | ldns_pkt_rcode packet_rcode, | ||||
▲ Show 20 Lines • Show All 83 Lines • ▼ Show 20 Lines | ldns_status ldns_verify_rrsig_keylist_notime(const ldns_rr_list *rrset, | ||||
const ldns_rr_list *keys, | const ldns_rr_list *keys, | ||||
ldns_rr_list *good_keys); | ldns_rr_list *good_keys); | ||||
/** | /** | ||||
* verify an rrsig with 1 key | * verify an rrsig with 1 key | ||||
* \param[in] rrset the rrset | * \param[in] rrset the rrset | ||||
* \param[in] rrsig the rrsig to verify | * \param[in] rrsig the rrsig to verify | ||||
* \param[in] key the key to use | * \param[in] key the key to use | ||||
* \return status message wether verification succeeded. | * \return status message whether verification succeeded. | ||||
*/ | */ | ||||
ldns_status ldns_verify_rrsig(ldns_rr_list *rrset, | ldns_status ldns_verify_rrsig(ldns_rr_list *rrset, | ||||
ldns_rr *rrsig, | ldns_rr *rrsig, | ||||
ldns_rr *key); | ldns_rr *key); | ||||
/** | /** | ||||
* verify an rrsig with 1 key | * verify an rrsig with 1 key | ||||
* \param[in] rrset the rrset | * \param[in] rrset the rrset | ||||
* \param[in] rrsig the rrsig to verify | * \param[in] rrsig the rrsig to verify | ||||
* \param[in] key the key to use | * \param[in] key the key to use | ||||
* \param[in] check_time the time for which the validation is performed | * \param[in] check_time the time for which the validation is performed | ||||
* \return status message wether verification succeeded. | * \return status message whether verification succeeded. | ||||
*/ | */ | ||||
ldns_status ldns_verify_rrsig_time( | ldns_status ldns_verify_rrsig_time( | ||||
ldns_rr_list *rrset, ldns_rr *rrsig, | ldns_rr_list *rrset, ldns_rr *rrsig, | ||||
ldns_rr *key, time_t check_time); | ldns_rr *key, time_t check_time); | ||||
#if LDNS_BUILD_CONFIG_HAVE_SSL | #if LDNS_BUILD_CONFIG_HAVE_SSL | ||||
/** | /** | ||||
▲ Show 20 Lines • Show All 141 Lines • Show Last 20 Lines |