git.ipfire.org Git - thirdparty/bind9.git/commit

author	Matthijs Mekking <matthijs@isc.org>
	Thu, 17 Oct 2019 08:21:12 +0000 (10:21 +0200)
committer	Matthijs Mekking <matthijs@isc.org>
	Wed, 6 Nov 2019 21:36:21 +0000 (22:36 +0100)
commit	314b90dfddec4a507a28772e7e43566b89fc5c5b
tree	f30f8a9e21ca89f53e5c501c516bdad748dc314b	tree \| snapshot
parent	1f0d6296a1501e372a0abb1f1f0c76b7815d361f	commit \| diff

Useful dst_key functions

Add a couple of dst_key functions for determining hints that
consider key states if they are available.
- dst_key_is_unused:
  A key has no timing metadata set other than Created.
- dst_key_is_published:
  A key has publish timing metadata <= now, DNSKEY state in
  RUMOURED or OMNIPRESENT.
- dst_key_is_active:
  A key has active timing metadata <= now, RRSIG state in
  RUMOURED or OMNIPRESENT.
- dst_key_is_signing:
  KSK is_signing and is_active means different things than
  for a ZSK. A ZSK is active means it is also signing, but
  a KSK always signs its DNSKEY RRset but is considered
  active if its DS is present (rumoured or omnipresent).
- dst_key_is_revoked:
  A key has revoke timing metadata <= now.
- dst_key_is_removed:
  A key has delete timing metadata <= now, DNSKEY state in
  UNRETENTIVE or HIDDEN.

lib/dns/dst_api.c		diff \| blob \| blame \| history
lib/dns/include/dst/dst.h		diff \| blob \| blame \| history
lib/dns/win32/libdns.def.in		diff \| blob \| blame \| history