OpenDNSSEC-signer 1.2.1
Functions

/build/buildd-opendnssec_1.2.1.dfsg-1-ia64-j6OroR/opendnssec-1.2.1.dfsg/signer/src/signer/hsm.h File Reference

#include "signer/se_key.h"
#include <config.h>
#include <ctype.h>
#include <stdint.h>
#include <ldns/ldns.h>
#include <libhsm.h>
#include <libhsmdns.h>
Include dependency graph for hsm.h:

Go to the source code of this file.

Functions

int hsm_get_key (hsm_ctx_t *ctx, ldns_rdf *dname, key_type *key_id)
ldns_rr * hsm_sign_rrset_with_key (hsm_ctx_t *ctx, ldns_rdf *dname, key_type *key_id, ldns_rr_list *rrset, time_t inception, time_t expiration)

Function Documentation

int hsm_get_key ( hsm_ctx_t *  ctx,
ldns_rdf *  dname,
key_type key_id 
)

Hardware Security Module support. Get key from one of the HSMs, store the DNSKEY and HSM key.

Parameters:
[in]ctxHSM context
[in]dnamethe zone owner name
[in]key_idkey credentials
Returns:
int 0 on ok, 1 on error

Hardware Security Module support. Get key from one of the HSMs.

Definition at line 42 of file hsm.c.

References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, key_struct::locator, key_struct::params, se_log_assert, and se_log_error().

ldns_rr* hsm_sign_rrset_with_key ( hsm_ctx_t *  ctx,
ldns_rdf *  dname,
key_type key_id,
ldns_rr_list *  rrset,
time_t  inception,
time_t  expiration 
)

Get RRSIG from one of the HSMs, given a RRset and a key.

Parameters:
[in]ctxHSM context
[in]dnameowner of the keys
[in]key_idkey credentials
[in]rrsetRRset to be signed
[in]inceptionsignature inception
[in]expirationsignature expiration
Returns:
ldns_rr* RRSIG rr

Get RRSIG from one of the HSMs, given a RRset and a key.

Definition at line 88 of file hsm.c.

References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, key_struct::locator, key_struct::params, se_log_assert, se_log_debug(), and se_log_error().

Referenced by rrset_sign().