OpenDNSSEC-signer 1.2.1
|
00001 /* 00002 * $Id: signconf.h 4294 2011-01-13 19:58:29Z jakob $ 00003 * 00004 * Copyright (c) 2009 NLNet Labs. All rights reserved. 00005 * 00006 * Redistribution and use in source and binary forms, with or without 00007 * modification, are permitted provided that the following conditions 00008 * are met: 00009 * 1. Redistributions of source code must retain the above copyright 00010 * notice, this list of conditions and the following disclaimer. 00011 * 2. Redistributions in binary form must reproduce the above copyright 00012 * notice, this list of conditions and the following disclaimer in the 00013 * documentation and/or other materials provided with the distribution. 00014 * 00015 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 00016 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 00017 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 00018 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY 00019 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 00020 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE 00021 * GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 00022 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER 00023 * IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR 00024 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN 00025 * IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 00026 * 00027 */ 00028 00034 #ifndef SIGNER_SIGNCONF_H 00035 #define SIGNER_SIGNCONF_H 00036 00037 #include "signer/se_key.h" 00038 #include "util/duration.h" 00039 00040 #include <ldns/ldns.h> 00041 #include <time.h> 00042 00043 00048 typedef struct signconf_struct signconf_type; 00049 struct signconf_struct { 00050 /* Zone */ 00051 const char* name; 00052 /* Signatures */ 00053 duration_type* sig_resign_interval; 00054 duration_type* sig_refresh_interval; 00055 duration_type* sig_validity_default; 00056 duration_type* sig_validity_denial; 00057 duration_type* sig_jitter; 00058 duration_type* sig_inception_offset; 00059 /* Denial of existence */ 00060 ldns_rr_type nsec_type; 00061 int nsec3_optout; 00062 uint32_t nsec3_algo; 00063 uint32_t nsec3_iterations; 00064 const char* nsec3_salt; 00065 /* Keys */ 00066 duration_type* dnskey_ttl; 00067 keylist_type* keys; 00068 /* Source of authority */ 00069 duration_type* soa_ttl; 00070 duration_type* soa_min; 00071 const char* soa_serial; 00072 /* Other useful information */ 00073 const char* filename; 00074 time_t last_modified; 00075 int audit; 00076 }; 00077 00083 signconf_type* signconf_create(void); 00084 00092 signconf_type* signconf_read(const char* filename, time_t last_modified); 00093 00100 signconf_type* signconf_recover_from_backup(const char* filename); 00101 00107 void signconf_backup(signconf_type* sc); 00108 00115 int signconf_check(signconf_type* sc); 00116 00125 int signconf_compare(signconf_type* a, signconf_type* b, int* update); 00126 00132 void signconf_cleanup(signconf_type* sc); 00133 00141 void signconf_print(FILE* out, signconf_type* sc, const char* name); 00142 00143 #endif /* SIGNER_SIGNCONF_H */