OpenDNSSEC-signer 1.2.1
|
#include "signer/se_key.h"
#include <config.h>
#include <ctype.h>
#include <stdint.h>
#include <ldns/ldns.h>
#include <libhsm.h>
#include <libhsmdns.h>
Go to the source code of this file.
Functions | |
int | hsm_get_key (hsm_ctx_t *ctx, ldns_rdf *dname, key_type *key_id) |
ldns_rr * | hsm_sign_rrset_with_key (hsm_ctx_t *ctx, ldns_rdf *dname, key_type *key_id, ldns_rr_list *rrset, time_t inception, time_t expiration) |
int hsm_get_key | ( | hsm_ctx_t * | ctx, |
ldns_rdf * | dname, | ||
key_type * | key_id | ||
) |
Hardware Security Module support. Get key from one of the HSMs, store the DNSKEY and HSM key.
[in] | ctx | HSM context |
[in] | dname | the zone owner name |
[in] | key_id | key credentials |
Hardware Security Module support. Get key from one of the HSMs.
Definition at line 42 of file hsm.c.
References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, key_struct::locator, key_struct::params, se_log_assert, and se_log_error().
ldns_rr* hsm_sign_rrset_with_key | ( | hsm_ctx_t * | ctx, |
ldns_rdf * | dname, | ||
key_type * | key_id, | ||
ldns_rr_list * | rrset, | ||
time_t | inception, | ||
time_t | expiration | ||
) |
Get RRSIG from one of the HSMs, given a RRset and a key.
[in] | ctx | HSM context |
[in] | dname | owner of the keys |
[in] | key_id | key credentials |
[in] | rrset | RRset to be signed |
[in] | inception | signature inception |
[in] | expiration | signature expiration |
Get RRSIG from one of the HSMs, given a RRset and a key.
Definition at line 88 of file hsm.c.
References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, key_struct::locator, key_struct::params, se_log_assert, se_log_debug(), and se_log_error().
Referenced by rrset_sign().