{ KNOT_EMALF, "malformed data" },
{ KNOT_ENOENT, "not found" },
- { DNSSEC_PKCS8_IMPORT_ERROR, "PKCS #8 import error" },
+ { KNOT_KEY_EIMPORT, "PKCS #8 import error" },
{ DNSSEC_KEY_EXPORT_ERROR, "key export error" },
- { DNSSEC_KEY_IMPORT_ERROR, "key import error" },
+ { KNOT_KEY_EIMPORT, "key import error" },
{ DNSSEC_KEY_GENERATE_ERROR, "key generation error" },
{ DNSSEC_INVALID_PUBLIC_KEY, "invalid public key" },
KNOT_EMALF,
KNOT_ENOENT,
- DNSSEC_PKCS8_IMPORT_ERROR,
+ KNOT_KEY_EIMPORT,
DNSSEC_KEY_EXPORT_ERROR,
- DNSSEC_KEY_IMPORT_ERROR,
+ KNOT_KEY_EIMPORT,
DNSSEC_KEY_GENERATE_ERROR,
DNSSEC_INVALID_PUBLIC_KEY,
int result = gnutls_pubkey_import_rsa_raw(key, &modulus, &exponent);
if (result != GNUTLS_E_SUCCESS) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
return KNOT_EOK;
int result = gnutls_pubkey_import_ecc_raw(key, curve, &point_x, &point_y);
if (result != GNUTLS_E_SUCCESS) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
return KNOT_EOK;
int result = gnutls_pubkey_import_ecc_raw(key, curve, &point_x, NULL);
if (result != GNUTLS_E_SUCCESS) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
return KNOT_EOK;
result = gnutls_pubkey_import_privkey(new_key, privkey, 0, 0);
if (result != GNUTLS_E_SUCCESS) {
gnutls_pubkey_deinit(new_key);
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
*pubkey = new_key;
if (gnutls_privkey_import_x509(key, x509_key, 0) != GNUTLS_E_SUCCESS ||
gnutls_pubkey_import_privkey(pubkey, key, 0, 0) != GNUTLS_E_SUCCESS
) {
- r = DNSSEC_KEY_IMPORT_ERROR;
+ r = KNOT_KEY_EIMPORT;
goto fail;
}
r = gnutls_pkcs11_copy_x509_privkey2(ctx->url, key, NULL, &gid, 0, flags);
if (r != GNUTLS_E_SUCCESS) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
r = gnutls_pkcs11_copy_pubkey(ctx->url, pubkey, NULL, &gid, 0, flags);
if (r != GNUTLS_E_SUCCESS) {
// note, we result with dangling private key in the token
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
*id_ptr = bin_to_hex(id.data, id.size, false);
r = gnutls_x509_privkey_import_pkcs8(_key, &data, format, password, flags);
if (r != GNUTLS_E_SUCCESS) {
gnutls_x509_privkey_deinit(_key);
- return DNSSEC_PKCS8_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
*key = _key;
KNOT_DNSSEC_ENSEC3_OPTOUT,
KNOT_DNSSEC_EKEYTAG_LIMIT,
KNOT_DNSSEC_EXTRA_NSEC,
+ KNOT_KEY_EIMPORT,
+ KNOT_KEY_EEXPORT,
+ KNOT_KEY_EGENERATE,
KNOT_ERROR_MAX = -501
};
{ KNOT_DNSSEC_ENSEC3_OPTOUT, "wrong NSEC3 opt-out" },
{ KNOT_DNSSEC_EKEYTAG_LIMIT, "many keys with equal keytag" },
{ KNOT_DNSSEC_EXTRA_NSEC, "superfluous NSEC(3)" },
+ { KNOT_KEY_EIMPORT, "failed to import key" },
+ { KNOT_KEY_EEXPORT, "failed to export key" },
+ { KNOT_KEY_EGENERATE, "failed to generate key" },
/* Terminator */
{ KNOT_ERROR, NULL }
result = gnutls_x509_privkey_import_rsa_raw(key, &m, &e, &d, &p, &q, &u);
if (result != GNUTLS_E_SUCCESS) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
return dnssec_pem_from_x509(key, pem);
result = gnutls_x509_privkey_import_ecc_raw(key, curve, &x, &y, &k);
if (result != KNOT_EOK) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
gnutls_x509_privkey_fix(key);
result = gnutls_x509_privkey_import_ecc_raw(key, curve, &x, NULL, &k);
if (result != KNOT_EOK) {
- return DNSSEC_KEY_IMPORT_ERROR;
+ return KNOT_KEY_EIMPORT;
}
gnutls_x509_privkey_fix(key);
projects / thirdparty / knot-dns.git / commitdiff
