autotrust.h

Go to the documentation of this file.

/*
 * validator/autotrust.h - RFC5011 trust anchor management for unbound.
 *
 * Copyright (c) 2009, NLnet Labs. All rights reserved.
 *
 * This software is open source.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 
 * Redistributions of source code must retain the above copyright notice,
 * this list of conditions and the following disclaimer.
 * 
 * Redistributions in binary form must reproduce the above copyright notice,
 * this list of conditions and the following disclaimer in the documentation
 * and/or other materials provided with the distribution.
 * 
 * Neither the name of the NLNET LABS nor the names of its contributors may
 * be used to endorse or promote products derived from this software without
 * specific prior written permission.
 * 
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
 * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
 * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
 * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

 
#ifndef VALIDATOR_AUTOTRUST_H
#define VALIDATOR_AUTOTRUST_H
#include "util/rbtree.h"
#include "util/data/packed_rrset.h"
struct val_anchors;
struct trust_anchor;
struct ub_packed_rrset_key;
struct module_env;
struct module_qstate;
struct val_env;
struct sldns_buffer;

typedef enum {
    AUTR_STATE_START   = 0,
    AUTR_STATE_ADDPEND = 1,
    AUTR_STATE_VALID   = 2,
    AUTR_STATE_MISSING = 3,
    AUTR_STATE_REVOKED = 4,
    AUTR_STATE_REMOVED = 5
} autr_state_type;

struct autr_ta {
    struct autr_ta* next;
    uint8_t* rr;
    size_t rr_len, dname_len;
    time_t last_change;
    autr_state_type s;
    uint8_t pending_count;
    uint8_t fetched;
    uint8_t revoked;
};

struct autr_point_data {
    char* file;
    rbnode_type pnode;

    struct autr_ta* keys;

    time_t last_queried;
    time_t last_success;
    time_t next_probe_time;

    time_t query_interval;
    time_t retry_time;

    uint8_t query_failed;
    uint8_t revoked;
};

struct autr_global_data {
    rbtree_type probe;
};

struct autr_global_data* autr_global_create(void);

void autr_global_delete(struct autr_global_data* global);

size_t autr_get_num_anchors(struct val_anchors* anchors);

time_t autr_probe_timer(struct module_env* env);

int probetree_cmp(const void* x, const void* y);

int autr_read_file(struct val_anchors* anchors, const char* nm);

void autr_write_file(struct module_env* env, struct trust_anchor* tp);

void autr_point_delete(struct trust_anchor* tp);

int autr_process_prime(struct module_env* env, struct val_env* ve,
    struct trust_anchor* tp, struct ub_packed_rrset_key* dnskey_rrset,
    struct module_qstate* qstate);

void autr_debug_print(struct val_anchors* anchors);

void probe_answer_cb(void* arg, int rcode, struct sldns_buffer* buf, 
    enum sec_status sec, char* errinf);
 
#endif /* VALIDATOR_AUTOTRUST_H */