Go to the source code of this file.
Defines | |
| #define | DNS_KEYVALUES_H 1 |
| #define | DNS_KEYFLAG_TYPEMASK 0xC000 |
| Mask for "type" bits. | |
| #define | DNS_KEYTYPE_AUTHCONF 0x0000 |
| Key usable for both. | |
| #define | DNS_KEYTYPE_CONFONLY 0x8000 |
| Key usable for confidentiality. | |
| #define | DNS_KEYTYPE_AUTHONLY 0x4000 |
| Key usable for authentication. | |
| #define | DNS_KEYTYPE_NOKEY 0xC000 |
| No key usable for either; no key. | |
| #define | DNS_KEYTYPE_NOAUTH DNS_KEYTYPE_CONFONLY |
| #define | DNS_KEYTYPE_NOCONF DNS_KEYTYPE_AUTHONLY |
| #define | DNS_KEYFLAG_RESERVED2 0x2000 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_EXTENDED 0x1000 |
| key has extended flags | |
| #define | DNS_KEYFLAG_RESERVED4 0x0800 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_RESERVED5 0x0400 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_OWNERMASK 0x0300 |
| these bits determine the type | |
| #define | DNS_KEYOWNER_USER 0x0000 |
| key is assoc. with user | |
| #define | DNS_KEYOWNER_ENTITY 0x0200 |
| key is assoc. with entity eg host | |
| #define | DNS_KEYOWNER_ZONE 0x0100 |
| key is zone key | |
| #define | DNS_KEYOWNER_RESERVED 0x0300 |
| reserved meaning | |
| #define | DNS_KEYFLAG_REVOKE 0x0080 |
| key revoked (per rfc5011) | |
| #define | DNS_KEYFLAG_RESERVED9 0x0040 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_RESERVED10 0x0020 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_RESERVED11 0x0010 |
| reserved - must be zero | |
| #define | DNS_KEYFLAG_SIGNATORYMASK 0x000F |
| key can sign RR's of same name | |
| #define | DNS_KEYFLAG_RESERVEDMASK |
| #define | DNS_KEYFLAG_KSK 0x0001 |
| key signing key | |
| #define | DNS_KEYFLAG_RESERVEDMASK2 0xFFFF |
| no bits defined here | |
| #define | DNS_KEYALG_RSAMD5 1 |
| RSA with MD5. | |
| #define | DNS_KEYALG_RSA DNS_KEYALG_RSAMD5 |
| #define | DNS_KEYALG_DH 2 |
| Diffie Hellman KEY. | |
| #define | DNS_KEYALG_DSA 3 |
| DSA KEY. | |
| #define | DNS_KEYALG_NSEC3DSA 6 |
| #define | DNS_KEYALG_DSS DNS_ALG_DSA |
| #define | DNS_KEYALG_ECC 4 |
| #define | DNS_KEYALG_RSASHA1 5 |
| #define | DNS_KEYALG_NSEC3RSASHA1 7 |
| #define | DNS_KEYALG_RSASHA256 8 |
| #define | DNS_KEYALG_RSASHA512 10 |
| #define | DNS_KEYALG_ECCGOST 12 |
| #define | DNS_KEYALG_ECDSA256 13 |
| #define | DNS_KEYALG_ECDSA384 14 |
| #define | DNS_KEYALG_INDIRECT 252 |
| #define | DNS_KEYALG_PRIVATEDNS 253 |
| #define | DNS_KEYALG_PRIVATEOID 254 |
| Key begins with OID giving alg. | |
| #define | DNS_KEYPROTO_RESERVED 0 |
| #define | DNS_KEYPROTO_TLS 1 |
| #define | DNS_KEYPROTO_EMAIL 2 |
| #define | DNS_KEYPROTO_DNSSEC 3 |
| #define | DNS_KEYPROTO_IPSEC 4 |
| #define | DNS_KEYPROTO_ANY 255 |
| #define | DNS_SIG_RSAMINBITS 512 |
| Size of a mod or exp in bits. | |
| #define | DNS_SIG_RSAMAXBITS 2552 |
| #define | DNS_SIG_RSAMAXBYTES ((DNS_SIG_RSAMAXBITS+7/8)*2+3) |
| Max length of text sig block. | |
| #define | DNS_SIG_RSAMAXBASE64 (((DNS_SIG_RSAMAXBYTES+2)/3)*4) |
| #define | DNS_SIG_RSAMINSIZE ((DNS_SIG_RSAMINBITS+7)/8) |
| #define | DNS_SIG_RSAMAXSIZE ((DNS_SIG_RSAMAXBITS+7)/8) |
| #define | DNS_SIG_DSASIGSIZE 41 |
| #define | DNS_SIG_DSAMINBITS 512 |
| #define | DNS_SIG_DSAMAXBITS 1024 |
| #define | DNS_SIG_DSAMINBYTES 213 |
| #define | DNS_SIG_DSAMAXBYTES 405 |
| #define | DNS_SIG_GOSTSIGSIZE 64 |
| #define | DNS_SIG_ECDSA256SIZE 64 |
| #define | DNS_SIG_ECDSA384SIZE 96 |
| #define | DNS_KEY_ECDSA256SIZE 64 |
| #define | DNS_KEY_ECDSA384SIZE 96 |
Definition in file keyvalues.h.
| #define DNS_KEYVALUES_H 1 |
Definition at line 21 of file keyvalues.h.
| #define DNS_KEYFLAG_TYPEMASK 0xC000 |
Mask for "type" bits.
Definition at line 28 of file keyvalues.h.
Referenced by dst_key_fromnamedfile(), dst_key_isnullkey(), dst_key_tofile(), and main().
| #define DNS_KEYTYPE_AUTHCONF 0x0000 |
| #define DNS_KEYTYPE_CONFONLY 0x8000 |
| #define DNS_KEYTYPE_AUTHONLY 0x4000 |
| #define DNS_KEYTYPE_NOKEY 0xC000 |
No key usable for either; no key.
Definition at line 32 of file keyvalues.h.
Referenced by dst_key_fromnamedfile(), dst_key_generate2(), dst_key_isnullkey(), dst_key_tofile(), and main().
| #define DNS_KEYTYPE_NOAUTH DNS_KEYTYPE_CONFONLY |
Definition at line 33 of file keyvalues.h.
Referenced by add_signing_records(), dns_dnssec_findzonekeys2(), dns_dnssec_keylistfromrdataset(), dns_dnssec_sign(), dns_dnssec_verify3(), dns_zonekey_iszonekey(), dst_key_iszonekey(), main(), and update_action().
| #define DNS_KEYTYPE_NOCONF DNS_KEYTYPE_AUTHONLY |
| #define DNS_KEYFLAG_RESERVED2 0x2000 |
| #define DNS_KEYFLAG_EXTENDED 0x1000 |
key has extended flags
Definition at line 37 of file keyvalues.h.
Referenced by dst_key_fromdns(), dst_key_todns(), and pub_compare().
| #define DNS_KEYFLAG_RESERVED4 0x0800 |
| #define DNS_KEYFLAG_RESERVED5 0x0400 |
| #define DNS_KEYFLAG_OWNERMASK 0x0300 |
these bits determine the type
Definition at line 40 of file keyvalues.h.
Referenced by add_signing_records(), dns_dnssec_sign(), dns_dnssec_verify3(), dns_zonekey_iszonekey(), dst_key_isnullkey(), dst_key_iszonekey(), main(), and update_action().
| #define DNS_KEYOWNER_USER 0x0000 |
| #define DNS_KEYOWNER_ENTITY 0x0200 |
key is assoc. with entity eg host
Definition at line 42 of file keyvalues.h.
Referenced by dns_tsigkey_create(), main(), and restore_key().
| #define DNS_KEYOWNER_ZONE 0x0100 |
key is zone key
Definition at line 43 of file keyvalues.h.
Referenced by add_signing_records(), dns_dnssec_sign(), dns_dnssec_verify3(), dns_zonekey_iszonekey(), dst_key_isnullkey(), dst_key_iszonekey(), main(), update_action(), and verifyzone().
| #define DNS_KEYOWNER_RESERVED 0x0300 |
| #define DNS_KEYFLAG_REVOKE 0x0080 |
key revoked (per rfc5011)
Definition at line 45 of file keyvalues.h.
Referenced by comparekeys(), dns_dnssec_findzonekeys2(), dns_dnssec_keylistfromrdataset(), dns_dnssec_updatekeys(), dns_view_untrust(), dst_region_computerid(), get_hints(), isselfsigned(), keyfetch_done(), main(), mkey_dumpzone(), normalize_key(), totext_cdnskey(), totext_dnskey(), totext_keydata(), verifyzone(), and write_public_key().
| #define DNS_KEYFLAG_RESERVED9 0x0040 |
| #define DNS_KEYFLAG_RESERVED10 0x0020 |
| #define DNS_KEYFLAG_RESERVED11 0x0010 |
| #define DNS_KEYFLAG_SIGNATORYMASK 0x000F |
| #define DNS_KEYFLAG_RESERVEDMASK |
Value:
(DNS_KEYFLAG_RESERVED2 | \ DNS_KEYFLAG_RESERVED4 | \ DNS_KEYFLAG_RESERVED5 | \ DNS_KEYFLAG_RESERVED9 | \ DNS_KEYFLAG_RESERVED10 | \ DNS_KEYFLAG_RESERVED11 )
Definition at line 51 of file keyvalues.h.
| #define DNS_KEYFLAG_KSK 0x0001 |
key signing key
Definition at line 57 of file keyvalues.h.
Referenced by dns_dnsseckey_create(), emit(), keyfetch_done(), main(), mkey_dumpzone(), totext_cdnskey(), totext_dnskey(), totext_keydata(), verifyzone(), warnifallksk(), and write_public_key().
| #define DNS_KEYFLAG_RESERVEDMASK2 0xFFFF |
| #define DNS_KEYALG_RSAMD5 1 |
| #define DNS_KEYALG_RSA DNS_KEYALG_RSAMD5 |
Definition at line 63 of file keyvalues.h.
| #define DNS_KEYALG_DH 2 |
Diffie Hellman KEY.
Definition at line 64 of file keyvalues.h.
Referenced by dns_tkey_builddhquery(), dns_tkey_processdhresponse(), main(), ns_tkeyctx_fromconfig(), and process_dhtkey().
| #define DNS_KEYALG_DSA 3 |
| #define DNS_KEYALG_NSEC3DSA 6 |
| #define DNS_KEYALG_DSS DNS_ALG_DSA |
Definition at line 67 of file keyvalues.h.
| #define DNS_KEYALG_ECC 4 |
Definition at line 68 of file keyvalues.h.
| #define DNS_KEYALG_RSASHA1 5 |
| #define DNS_KEYALG_NSEC3RSASHA1 7 |
| #define DNS_KEYALG_RSASHA256 8 |
| #define DNS_KEYALG_RSASHA512 10 |
| #define DNS_KEYALG_ECCGOST 12 |
Definition at line 73 of file keyvalues.h.
| #define DNS_KEYALG_ECDSA256 13 |
Definition at line 74 of file keyvalues.h.
| #define DNS_KEYALG_ECDSA384 14 |
Definition at line 75 of file keyvalues.h.
| #define DNS_KEYALG_INDIRECT 252 |
Definition at line 76 of file keyvalues.h.
| #define DNS_KEYALG_PRIVATEDNS 253 |
Definition at line 77 of file keyvalues.h.
Referenced by fromwire_cdnskey(), fromwire_dnskey(), fromwire_key(), totext_cdnskey(), totext_dnskey(), and totext_key().
| #define DNS_KEYALG_PRIVATEOID 254 |
| #define DNS_KEYPROTO_RESERVED 0 |
Definition at line 81 of file keyvalues.h.
| #define DNS_KEYPROTO_TLS 1 |
Definition at line 82 of file keyvalues.h.
| #define DNS_KEYPROTO_EMAIL 2 |
Definition at line 83 of file keyvalues.h.
| #define DNS_KEYPROTO_DNSSEC 3 |
Definition at line 84 of file keyvalues.h.
Referenced by dns_message_checksig(), dns_tsigkey_create(), dns_zonekey_iszonekey(), dst_key_fromgssapi(), dst_key_isnullkey(), dst_key_iszonekey(), main(), and restore_key().
| #define DNS_KEYPROTO_IPSEC 4 |
Definition at line 85 of file keyvalues.h.
| #define DNS_KEYPROTO_ANY 255 |
Definition at line 86 of file keyvalues.h.
Referenced by dns_message_checksig(), dns_zonekey_iszonekey(), dst_key_isnullkey(), dst_key_iszonekey(), and generate_session_key().
| #define DNS_SIG_RSAMINBITS 512 |
| #define DNS_SIG_RSAMAXBITS 2552 |
Definition at line 90 of file keyvalues.h.
| #define DNS_SIG_RSAMAXBYTES ((DNS_SIG_RSAMAXBITS+7/8)*2+3) |
| #define DNS_SIG_RSAMAXBASE64 (((DNS_SIG_RSAMAXBYTES+2)/3)*4) |
Definition at line 94 of file keyvalues.h.
| #define DNS_SIG_RSAMINSIZE ((DNS_SIG_RSAMINBITS+7)/8) |
Definition at line 95 of file keyvalues.h.
| #define DNS_SIG_RSAMAXSIZE ((DNS_SIG_RSAMAXBITS+7)/8) |
Definition at line 96 of file keyvalues.h.
| #define DNS_SIG_DSASIGSIZE 41 |
| #define DNS_SIG_DSAMINBITS 512 |
Definition at line 99 of file keyvalues.h.
| #define DNS_SIG_DSAMAXBITS 1024 |
Definition at line 100 of file keyvalues.h.
| #define DNS_SIG_DSAMINBYTES 213 |
Definition at line 101 of file keyvalues.h.
| #define DNS_SIG_DSAMAXBYTES 405 |
Definition at line 102 of file keyvalues.h.
| #define DNS_SIG_GOSTSIGSIZE 64 |
| #define DNS_SIG_ECDSA256SIZE 64 |
| #define DNS_SIG_ECDSA384SIZE 96 |
| #define DNS_KEY_ECDSA256SIZE 64 |
Definition at line 109 of file keyvalues.h.
| #define DNS_KEY_ECDSA384SIZE 96 |
Definition at line 110 of file keyvalues.h.