]>
Commit | Line | Data |
---|---|---|
0d2cd476 LP |
1 | #pragma once |
2 | ||
3 | /*** | |
4 | This file is part of systemd. | |
5 | ||
6 | Copyright 2015 Lennart Poettering | |
7 | ||
8 | systemd is free software; you can redistribute it and/or modify it | |
9 | under the terms of the GNU Lesser General Public License as published by | |
10 | the Free Software Foundation; either version 2.1 of the License, or | |
11 | (at your option) any later version. | |
12 | ||
13 | systemd is distributed in the hope that it will be useful, but | |
14 | WITHOUT ANY WARRANTY; without even the implied warranty of | |
15 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
16 | Lesser General Public License for more details. | |
17 | ||
18 | You should have received a copy of the GNU Lesser General Public License | |
19 | along with systemd; If not, see <http://www.gnu.org/licenses/>. | |
20 | ***/ | |
21 | ||
22 | typedef struct DnsTrustAnchor DnsTrustAnchor; | |
23 | ||
24 | #include "hashmap.h" | |
25 | #include "resolved-dns-answer.h" | |
26 | #include "resolved-dns-rr.h" | |
27 | ||
28 | /* This contains a fixed database mapping domain names to DS or DNSKEY records. */ | |
29 | ||
30 | struct DnsTrustAnchor { | |
8e54f5d9 LP |
31 | Hashmap *positive_by_key; |
32 | Set *negative_by_name; | |
c9c72065 | 33 | Set *revoked_by_rr; |
0d2cd476 LP |
34 | }; |
35 | ||
36 | int dns_trust_anchor_load(DnsTrustAnchor *d); | |
37 | void dns_trust_anchor_flush(DnsTrustAnchor *d); | |
38 | ||
8e54f5d9 LP |
39 | int dns_trust_anchor_lookup_positive(DnsTrustAnchor *d, const DnsResourceKey* key, DnsAnswer **answer); |
40 | int dns_trust_anchor_lookup_negative(DnsTrustAnchor *d, const char *name); | |
0c857028 | 41 | |
d424da2a | 42 | int dns_trust_anchor_check_revoked(DnsTrustAnchor *d, DnsResourceRecord *dnskey, DnsAnswer *rrs); |
c9c72065 | 43 | int dns_trust_anchor_is_revoked(DnsTrustAnchor *d, DnsResourceRecord *rr); |