ldns_dnssec_verify_denial(3) ldns_dnssec_verify_denial_nsec3-

SYNOPSIS

#include <stdint.h>
#include <stdbool.h>

#include <ldns/ldns.h>

ldns_status ldns_dnssec_verify_denial(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs);

ldns_status ldns_dnssec_verify_denial_nsec3(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs, ldns_pkt_rcode packet_rcode, ldns_rr_type packet_qtype, bool packet_nodata);

DESCRIPTION

ldns_dnssec_verify_denial()
denial is not just a river in egypt

.br rr: The (query) RR to check the denial of existence for .br nsecs: The list of NSEC RRs that are supposed to deny the existence of the RR .br rrsigs: The RRSIG RR covering the NSEC RRs .br Returns LDNS_STATUS_OK if the NSEC RRs deny the existence, error code containing the reason they do not otherwise

ldns_dnssec_verify_denial_nsec3()
Denial of existence using NSEC3 records Since NSEC3 is a bit more complicated than normal denial, some context arguments are needed

.br rr: The (query) RR to check the denial of existence for .br nsecs: The list of NSEC3 RRs that are supposed to deny the existence of the RR .br rrsigs: The RRSIG rr covering the NSEC RRs .br packet_rcode: The RCODE value of the packet that provided the NSEC3 RRs .br packet_qtype: The original query RR type .br packet_nodata: True if the providing packet had an empty ANSWER section .br Returns LDNS_STATUS_OK if the NSEC3 RRs deny the existence, error code containing the reason they do not otherwise

AUTHOR

The ldns team at NLnet Labs. Which consists out of Jelte Jansen and Miek Gieben.

REPORTING BUGS

Please report bugs to [email protected] or in our bugzilla at http://www.nlnetlabs.nl/bugs/index.html

COPYRIGHT

Copyright (c) 2004 - 2006 NLnet Labs.

Licensed under the BSD License. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

REMARKS

This manpage was automaticly generated from the ldns source code by use of Doxygen and some perl.