1 /*------------------------------------------------------------------------------ 2 * 3 * Copyright (c) 2011-2021, EURid vzw. All rights reserved. 4 * The YADIFA TM software product is provided under the BSD 3-clause license: 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * * Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * * Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * * Neither the name of EURid nor the names of its contributors may be 16 * used to endorse or promote products derived from this software 17 * without specific prior written permission. 18 * 19 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" 20 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 22 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE 23 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 24 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 25 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 26 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 27 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 28 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 29 * POSSIBILITY OF SUCH DAMAGE. 30 * 31 *------------------------------------------------------------------------------ 32 * 33 */ 34 35 /** @defgroup dnsdbdnssec DNSSEC functions 36 * @ingroup dnsdb 37 * @brief 38 * 39 * @{ 40 */ 41 #pragma once 42 /*------------------------------------------------------------------------------ 43 * 44 * USE INCLUDES */ 45 #include <dnscore/dnskey.h> 46 #include <dnscore/dnskey_rsa.h> 47 #include <dnscore/dnskey_dsa.h> 48 #include <dnscore/dnskey_ecdsa.h> 49 #if DNSCORE_HAS_EDDSA_SUPPORT 50 #include <dnscore/dnskey_eddsa.h> 51 #endif 52 #ifdef DNSKEY_ALGORITHM_DUMMY 53 #include <dnscore/dnskey_dummy.h> 54 #endif 55 56 #include <dnsdb/zdb_types.h> 57 #include <dnsdb/dnssec_config.h> 58 #include <dnsdb/rrsig.h> 59 60 #include <dnsdb/dnssec-keystore.h> 61 62 #if ZDB_HAS_DNSSEC_SUPPORT 63 64 #ifndef _DNSSEC_C 65 #include <dnscore/logger.h> 66 extern logger_handle *g_dnssec_logger; 67 #endif 68 69 70 #ifdef __cplusplus 71 extern "C" { 72 #endif 73 74 #define DEFAULT_ENGINE_NAME "openssl" 75 76 #define DNSSEC_DIGEST_TYPE_SHA1 1 77 #define DNSSEC_DIGEST_TYPE_SHA256 2 78 79 #define DNSSEC_MINIMUM_KEY_SIZE_BYTES ((DNSSEC_MINIMUM_KEY_SIZE+7)/8) 80 #define DNSSEC_MAXIMUM_KEY_SIZE_BYTES ((DNSSEC_MAXIMUM_KEY_SIZE+7)/8) 81 82 #define ENGINE_PRESET_DELIMITER "," 83 #define ENGINE_COMMAND_DELIMITER ":" 84 85 ENGINE* dnssec_loadengine(const char *engine_name); 86 void dnssec_unloadengine(ENGINE *engine); 87 88 #ifdef __cplusplus 89 } 90 #endif 91 92 #endif 93 94 /** @} */ 95