1ldns(3) Library Functions Manual ldns(3)
2
6 ldns_pkt_tsig_verify, ldns_pkt_tsig_sign
7
10 #include <stdint.h>
11 #include <stdbool.h>
12 #include <ldns/ldns.h>
14 bool ldns_pkt_tsig_verify(ldns_pkt *pkt, uint8_t *wire, size_t
16 wire_size, const char *key_name, const char *key_data, ldns_rdf *mac);
17 ldns_status ldns_pkt_tsig_sign(ldns_pkt *pkt, const char *key_name,
19 const char *key_data, uint16_t fudge, const char *algorithm_name,
20 ldns_rdf *query_mac);
21
23 ldns_pkt_tsig_verify() verifies the tsig rr for the given packet and
24 key. The wire must be given too because tsig does not sign nor‐
25 malized packets.
26 pkt: the packet to verify
27 wire: needed to verify the mac
28 wire_size: size of wire
29 key_name: the name of the shared key
30 key_data: the key in base 64 format
31 mac: original mac
32 Returns true if tsig is correct, false if not, or if tsig is not
33 set
34 ldns_pkt_tsig_sign() creates a tsig rr for the given packet and key.
36 pkt: the packet to sign
37 key_name: the name of the shared key
38 key_data: the key in base 64 format
39 fudge: seconds of error permitted in time signed
40 algorithm_name: the name of the algorithm used
41 query_mac: is added to the digest if not NULL (so NULL is for
42 signing queries, not NULL is for signing answers)
43 Returns status (OK if success)
44
46 The ldns team at NLnet Labs. Which consists out of Jelte Jansen and
47 Miek Gieben.
48
51 Please report bugs to ldns-team@nlnetlabs.nl or in our bugzilla at
52 http://www.nlnetlabs.nl/bugs/index.html
53
56 Copyright (c) 2004 - 2006 NLnet Labs.
57 Licensed under the BSD License. There is NO warranty; not even for MER‐
59 CHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
60
63 ldns_key. And perldoc Net::DNS, RFC1034, RFC1035, RFC4033, RFC4034
64 and RFC4035.
65
67 This manpage was automaticly generated from the ldns source code by use
68 of Doxygen and some perl.
69 30 May 2006 ldns(3)