blob: 7456b89f47a0597eb716dde8830e71db637b18d8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
|
/*
* Copyright (C) Internet Systems Consortium, Inc. ("ISC")
*
* SPDX-License-Identifier: MPL-2.0
*
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, you can obtain one at https://mozilla.org/MPL/2.0/.
*
* See the COPYRIGHT file distributed with this work for additional
* information regarding copyright ownership.
*/
#ifndef IRS_DNSCONF_H
#define IRS_DNSCONF_H 1
/*! \file
*
* \brief
* The IRS dnsconf module parses an "advanced" configuration file related to
* the DNS library, such as trust anchors for DNSSEC validation, and creates
* the corresponding configuration objects for the DNS library modules.
*
* Notes:
* This module is very experimental and the configuration syntax or library
* interfaces may change in future versions. Currently, only static
* key configuration is supported; "trusted-keys" and "trust-anchors"/
* "managed-keys" statements will be parsed exactly as they are in
* named.conf, except that "trust-anchors" and "managed-keys" entries will
* be treated as if they were configured with "static-key", even if they
* were actually configured with "initial-key".
*/
#include <irs/types.h>
/*%
* A compound structure storing DNS key information mainly for DNSSEC
* validation. A dns_key_t object will be created using the 'keyname' and
* 'keydatabuf' members with the dst_key_fromdns() function.
*/
typedef struct irs_dnsconf_dnskey {
dns_name_t *keyname;
isc_buffer_t *keydatabuf;
ISC_LINK(struct irs_dnsconf_dnskey) link;
} irs_dnsconf_dnskey_t;
typedef ISC_LIST(irs_dnsconf_dnskey_t) irs_dnsconf_dnskeylist_t;
ISC_LANG_BEGINDECLS
isc_result_t
irs_dnsconf_load(isc_mem_t *mctx, const char *filename, irs_dnsconf_t **confp);
/*%<
* Load the "advanced" DNS configuration file 'filename' in the "dns.conf"
* format, and create a new irs_dnsconf_t object from the configuration.
*
* Requires:
*
*\li 'mctx' is a valid memory context.
*
*\li 'filename' != NULL
*
*\li 'confp' != NULL && '*confp' == NULL
*/
void
irs_dnsconf_destroy(irs_dnsconf_t **confp);
/*%<
* Destroy the dnsconf object.
*
* Requires:
*
*\li '*confp' is a valid dnsconf object.
*
* Ensures:
*
*\li *confp == NULL
*/
irs_dnsconf_dnskeylist_t *
irs_dnsconf_gettrustedkeys(irs_dnsconf_t *conf);
/*%<
* Return a list of key information stored in 'conf'.
*
* Requires:
*
*\li 'conf' is a valid dnsconf object.
*/
ISC_LANG_ENDDECLS
#endif /* IRS_DNSCONF_H */
|