summaryrefslogtreecommitdiffstats
path: root/doc/man_knsec3hash.rst
blob: 3b4be45fca841961b5d76a20c6ea714516c9a2e2 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
.. highlight:: console

knsec3hash – NSEC hash computation utility
==========================================

Synopsis
--------

:program:`knsec3hash` *salt* *algorithm* *iterations* *name*

Description
-----------

This utility generates a NSEC3 hash for a given domain name and parameters of NSEC3 hash.

Parameters
..........

*salt*
  Specifies a binary salt encoded as a hexadecimal string.

*algorithm*
  Specifies a hashing algorithm by number. Currently, the only supported algorithm is SHA-1 (number 1).

*iterations*
  Specifies the number of additional iterations of the hashing algorithm.

*name*
  Specifies the domain name to be hashed.

Exit values
-----------

Exit status of 0 means successful operation. Any other exit status indicates
an error.

Examples
--------

::

  $ knsec3hash c01dcafe 1 10 knot-dns.cz
  7PTVGE7QV67EM61ROS9238P5RAKR2DM7 (salt=c01dcafe, hash=1, iterations=10)

::

  $ knsec3hash - 1 0 net
  A1RT98BS5QGC9NFI51S9HCI47ULJG6JH (salt=-, hash=1, iterations=0)

See Also
--------

:rfc:`5155` – DNS Security (DNSSEC) Hashed Authenticated Denial of Existence.

:manpage:`knotc(8)`, :manpage:`knotd(8)`.