[thirdparty/systemd.git] / src / resolve / resolved-dns-trust-anchor.h

/*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/

#pragma once

/***
  This file is part of systemd.

  Copyright 2015 Lennart Poettering

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/

typedef struct DnsTrustAnchor DnsTrustAnchor;

#include "hashmap.h"
#include "resolved-dns-answer.h"
#include "resolved-dns-rr.h"

/* This contains a fixed database mapping domain names to DS or DNSKEY records. */

struct DnsTrustAnchor {
        Hashmap *positive_by_key;
        Set *negative_by_name;
        Set *revoked_by_rr;
};

int dns_trust_anchor_load(DnsTrustAnchor *d);
void dns_trust_anchor_flush(DnsTrustAnchor *d);

int dns_trust_anchor_lookup_positive(DnsTrustAnchor *d, const DnsResourceKey* key, DnsAnswer **answer);
int dns_trust_anchor_lookup_negative(DnsTrustAnchor *d, const char *name);

int dns_trust_anchor_check_revoked(DnsTrustAnchor *d, DnsResourceRecord *dnskey, DnsAnswer *rrs);
int dns_trust_anchor_is_revoked(DnsTrustAnchor *d, DnsResourceRecord *rr);
Commit	Line	Data
0d2cd476 LP	1	/-- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil --/
	2
	3	#pragma once
	4
	5	/***
	6	This file is part of systemd.
	7
	8	Copyright 2015 Lennart Poettering
	9
	10	systemd is free software; you can redistribute it and/or modify it
	11	under the terms of the GNU Lesser General Public License as published by
	12	the Free Software Foundation; either version 2.1 of the License, or
	13	(at your option) any later version.
	14
	15	systemd is distributed in the hope that it will be useful, but
	16	WITHOUT ANY WARRANTY; without even the implied warranty of
	17	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	18	Lesser General Public License for more details.
	19
	20	You should have received a copy of the GNU Lesser General Public License
	21	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	22	***/
	23
	24	typedef struct DnsTrustAnchor DnsTrustAnchor;
	25
	26	#include "hashmap.h"
	27	#include "resolved-dns-answer.h"
	28	#include "resolved-dns-rr.h"
	29
	30	/* This contains a fixed database mapping domain names to DS or DNSKEY records. */
	31
	32	struct DnsTrustAnchor {
8e54f5d9 LP	33	Hashmap *positive_by_key;
8e54f5d9 LP	34	Set *negative_by_name;
c9c72065	35	Set *revoked_by_rr;
0d2cd476 LP	36	};
	37
	38	int dns_trust_anchor_load(DnsTrustAnchor *d);
	39	void dns_trust_anchor_flush(DnsTrustAnchor *d);
	40
8e54f5d9 LP	41	int dns_trust_anchor_lookup_positive(DnsTrustAnchor d, const DnsResourceKey key, DnsAnswer **answer);
8e54f5d9 LP	42	int dns_trust_anchor_lookup_negative(DnsTrustAnchor d, const char name);
0c857028	43
d424da2a	44	int dns_trust_anchor_check_revoked(DnsTrustAnchor d, DnsResourceRecord dnskey, DnsAnswer *rrs);
c9c72065	45	int dns_trust_anchor_is_revoked(DnsTrustAnchor d, DnsResourceRecord rr);