manpagez: man pages & more
man ldns_dnssec_trust_tree(3)
Home | html | info | man
ldns(3)                                                                ldns(3)




NAME

       ldns_dnssec_data_chain,                  ldns_dnssec_data_chain_struct,
       ldns_dnssec_trust_tree



SYNOPSIS

       #include <stdint.h>
       #include <stdbool.h>

       #include <ldns/ldns.h>

        ldns_dnssec_data_chain_struct();




DESCRIPTION

       ldns_dnssec_data_chain
              Chain structure that contains all DNSSEC data needed to
              verify an rrset
              struct ldns_dnssec_data_chain_struct
              {
                   ldns_rr_list *rrset;
                   ldns_rr_list *signatures;
                   ldns_rr_type parent_type;
                   ldns_dnssec_data_chain *parent;
                   ldns_pkt_rcode packet_rcode;
                   ldns_rr_type packet_qtype;
                   bool packet_nodata;
              };

              typedef           struct           ldns_dnssec_data_chain_struct
              ldns_dnssec_data_chain;


       ldns_dnssec_data_chain_struct()


       ldns_dnssec_trust_tree
              Tree structure that contains the relation of DNSSEC data,
              and their cryptographic status.

              This tree is derived from a data_chain, and can be used
              to look whether there is a connection between an RRSET
              and a trusted key. The tree only contains pointers to the
              data_chain, and therefore one should *never* free() the
              data_chain when there is still a trust tree derived from
              that chain.

              Example tree:
                  key   key    key
                    \    |    /
                     \   |   /
                      \  |  /
                         ds
                         |
                        key
                         |
                        key
                         |
                         rr

              For each signature there is a parent; if the parent
              pointer is null, it couldn't be found and there was no
              denial; otherwise is a tree which contains either a
              DNSKEY, a DS, or a NSEC rr
              struct ldns_dnssec_trust_tree_struct
              {
                   ldns_rr *rr;
                   /* the complete rrset this rr was in */
                   ldns_rr_list *rrset;
                   ldns_dnssec_trust_tree                                *par-
              ents[LDNS_DNSSEC_TRUST_TREE_MAX_PARENTS];
                   ldns_status   parent_status[LDNS_DNSSEC_TRUST_TREE_MAX_PAR-
              ENTS];
                   /** for debugging, add signatures too (you might want
                       those if they contain errors) */
                   ldns_rr   *parent_signature[LDNS_DNSSEC_TRUST_TREE_MAX_PAR-
              ENTS];
                   size_t parent_count;
              };

              typedef           struct           ldns_dnssec_trust_tree_struct
              ldns_dnssec_trust_tree;



AUTHOR

       The  ldns  team  at  NLnet Labs. Which consists out of Jelte Jansen and
       Miek Gieben.



REPORTING BUGS

       Please report bugs to ldns-team@nlnetlabs.nl  or  in  our  bugzilla  at
       http://www.nlnetlabs.nl/bugs/index.html



COPYRIGHT

       Copyright (c) 2004 - 2006 NLnet Labs.

       Licensed under the BSD License. There is NO warranty; not even for MER-
       CHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.



SEE ALSO

       ldns_dnssec_data_chain_new(3), ldns_dnssec_trust_tree_new(3),
       ldns_dnssec_verify_denial(3). And perldoc Net::DNS(3), RFC1034,
       RFC1035, RFC4033, RFC4034  and RFC4035.


REMARKS

       This manpage was automaticly generated from the ldns source code by use
       of Doxygen and some perl.



                                  30 May 2006                          ldns(3)

ldns 1.6.17 - Generated Sun Feb 2 16:14:26 CST 2014
© manpagez.com 2000-2024
Individual documents may contain additional copyright information.