unbound
0.1
|
This file contains a module that performs validation of DNS queries. More...
Data Structures | |
struct | val_env |
Global state for the validator. More... | |
struct | val_qstate |
Per query state for the validator module. More... |
Macros | |
#define | NULL_KEY_TTL 900 /* seconds */ |
This is the TTL to use when a trust anchor fails to prime. | |
#define | BOGUS_KEY_TTL 900 /* seconds */ |
TTL for bogus key entries. | |
#define | VAL_MAX_RESTART_COUNT 5 |
max number of query restarts, number of IPs to probe |
Enumerations | |
enum | val_state { VAL_INIT_STATE = 0, VAL_FINDKEY_STATE, VAL_VALIDATE_STATE, VAL_FINISHED_STATE, VAL_DLVLOOKUP_STATE } |
State of the validator for a query. More... |
Functions | |
struct module_func_block * | val_get_funcblock (void) |
Get the validator function block. | |
const char * | val_state_to_string (enum val_state state) |
Get validator state as a string. | |
int | val_init (struct module_env *env, int id) |
validator init | |
void | val_deinit (struct module_env *env, int id) |
validator deinit | |
void | val_operate (struct module_qstate *qstate, enum module_ev event, int id, struct outbound_entry *outbound) |
validator operate on a query | |
void | val_inform_super (struct module_qstate *qstate, int id, struct module_qstate *super) |
inform validator super. | |
void | val_clear (struct module_qstate *qstate, int id) |
validator cleanup query state | |
size_t | val_get_mem (struct module_env *env, int id) |
Debug helper routine that assists worker in determining memory in use. |
This file contains a module that performs validation of DNS queries.
According to RFC 4034.
#define NULL_KEY_TTL 900 /* seconds */ |
This is the TTL to use when a trust anchor fails to prime.
A trust anchor will be primed no more often than this interval. Used when harden- dnssec-stripped is off and the trust anchor fails.
Referenced by primeResponseToKE().
#define BOGUS_KEY_TTL 900 /* seconds */ |
TTL for bogus key entries.
When a DS or DNSKEY fails in the chain of trust the entire zone for that name is blacked out for this TTL.
Referenced by ds_response_to_ke(), primeResponseToKE(), process_dnskey_response(), val_verify_new_DNSKEYs(), and val_verify_new_DNSKEYs_with_ta().
enum val_state |
State of the validator for a query.
|
read |
Get the validator function block.
References val_block.
Referenced by checkconf(), and module_funcs_avail().
const char* val_state_to_string | ( | enum val_state | state | ) |
Get validator state as a string.
state,: | to convert |
References VAL_DLVLOOKUP_STATE, VAL_FINDKEY_STATE, VAL_FINISHED_STATE, VAL_INIT_STATE, and VAL_VALIDATE_STATE.
Referenced by val_handle().
void val_inform_super | ( | struct module_qstate * | qstate, |
int | id, | ||
struct module_qstate * | super | ||
) |
inform validator super.
qstate,: | query state that finished. |
id,: | module id. |
super,: | the qstate to inform. |
References log_err(), log_query_info(), module_qstate::minfo, process_dlv_response(), process_dnskey_response(), process_ds_response(), process_prime_response(), module_qstate::qinfo, query_info::qtype, module_qstate::reply_origin, module_qstate::return_msg, module_qstate::return_rcode, VERB_ALGO, verbose(), and val_qstate::wait_prime_ta.
Referenced by fptr_whitelist_mod_inform_super().
size_t val_get_mem | ( | struct module_env * | env, |
int | id | ||
) |
Debug helper routine that assists worker in determining memory in use.
env,: | module environment |
id,: | module id. |
References val_env::kcache, key_cache_get_mem(), module_env::modinfo, val_env::neg_cache, val_env::nsec3_keyiter_count, and val_neg_get_mem().
Referenced by fptr_whitelist_mod_get_mem().