ldns_dnssec_verify_denial man page

ldns_dnssec_verify_denial, ldns_dnssec_verify_denial_nsec3

Synopsis

#include <stdint.h>
#include <stdbool.h>

#include <ldns/ldns.h>

ldns_status ldns_dnssec_verify_denial(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs);

ldns_status ldns_dnssec_verify_denial_nsec3(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs, ldns_pkt_rcode packet_rcode, ldns_rr_type packet_qtype, bool packet_nodata);

Description

ldns_dnssec_verify_denial() denial is not just a river in egypt

rr: The (query) RR to check the denial of existence for
nsecs: The list of NSEC RRs that are supposed to deny the existence of the RR
rrsigs: The RRSIG RR covering the NSEC RRs
Returns LDNS_STATUS_OK if the NSEC RRs deny the existence, error code containing the reason they do not otherwise

ldns_dnssec_verify_denial_nsec3() Denial of existence using NSEC3 records Since NSEC3 is a bit more complicated than normal denial, some context arguments are needed

rr: The (query) RR to check the denial of existence for
nsecs: The list of NSEC3 RRs that are supposed to deny the existence of the RR
rrsigs: The RRSIG rr covering the NSEC RRs
packet_rcode: The RCODE value of the packet that provided the NSEC3 RRs
packet_qtype: The original query RR type
packet_nodata: True if the providing packet had an empty ANSWER section
Returns LDNS_STATUS_OK if the NSEC3 RRs deny the existence, error code containing the reason they do not otherwise

Author

The ldns team at NLnet Labs. Which consists out of Jelte Jansen and Miek Gieben.

Reporting Bugs

Please report bugs to ldns-team@nlnetlabs.nl or in our bugzilla at http://www.nlnetlabs.nl/bugs/index.html

See Also

ldns_dnssec_trust_tree, ldns_dnssec_data_chain. And perldoc Net::DNS, RFC1034, RFC1035, RFC4033, RFC4034 and RFC4035.

Remarks

This manpage was automaticly generated from the ldns source code by use of Doxygen and some perl.

Referenced By

ldns_dnssec_verify_denial_nsec3(3) is an alias of ldns_dnssec_verify_denial(3).

30 May 2006