#include "config.h"#include "shared/status.h"#include "signer/keys.h"#include <ctype.h>#include <stdint.h>#include <ldns/ldns.h>#include <libhsm.h>#include <libhsmdns.h>
Go to the source code of this file.
Functions | |
| ods_status | lhsm_get_key (hsm_ctx_t *ctx, ldns_rdf *owner, key_type *key_id) |
| ldns_rr * | lhsm_sign (hsm_ctx_t *ctx, ldns_rr_list *rrset, key_type *key_id, ldns_rdf *owner, time_t inception, time_t expiration) |
Function Documentation
| ods_status lhsm_get_key | ( | hsm_ctx_t * | ctx, | |
| ldns_rdf * | owner, | |||
| key_type * | key_id | |||
| ) |
Hardware Security Module support. Get key from one of the HSMs, store the DNSKEY and HSM key.
- Parameters:
-
[in] ctx HSM context [in] owner the zone owner name [in] key_id key credentials
- Returns:
- ods_status status
Get key from one of the HSMs.
Definition at line 45 of file hsm.c.
References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, key_struct::locator, ods_log_assert, ods_log_error(), and key_struct::params.
Referenced by lhsm_sign(), signconf_compare_keys(), and zone_publish_dnskeys().
| ldns_rr* lhsm_sign | ( | hsm_ctx_t * | ctx, | |
| ldns_rr_list * | rrset, | |||
| key_type * | key_id, | |||
| ldns_rdf * | owner, | |||
| time_t | inception, | |||
| time_t | expiration | |||
| ) |
Get RRSIG from one of the HSMs, given a RRset and a key.
- Parameters:
-
[in] ctx HSM context [in] rrset RRset to be signed [in] key_id key credentials [in] owner owner of the keys [in] inception signature inception [in] expiration signature expiration
- Returns:
- ldns_rr* RRSIG record
Get RRSIG from one of the HSMs, given a RRset and a key.
Definition at line 116 of file hsm.c.
References key_struct::algorithm, key_struct::dnskey, key_struct::flags, key_struct::hsmkey, lhsm_get_key(), key_struct::locator, ods_log_assert, ods_log_debug(), ods_log_error(), ODS_STATUS_OK, and key_struct::params.
Referenced by rrset_sign().
