ldns_dnssec_verify_denial - Man Page

#include <stdint.h>
#include <stdbool.h>

#include <ldns/ldns.h>

ldns_status ldns_dnssec_verify_denial(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs);

ldns_status ldns_dnssec_verify_denial_nsec3(ldns_rr *rr, ldns_rr_list *nsecs, ldns_rr_list *rrsigs, ldns_pkt_rcode packet_rcode, ldns_rr_type packet_qtype, bool packet_nodata);

ldns_dnssec_verify_denial() denial is not just a river in egypt

rr: The (query) RR to check the denial of existence for
nsecs: The list of NSEC RRs that are supposed to deny the existence of the RR
rrsigs: The RRSIG RR covering the NSEC RRs
Returns LDNS_STATUS_OK if the NSEC RRs deny the existence, error code containing the reason they do not otherwise

ldns_dnssec_verify_denial_nsec3() Denial of existence using NSEC3 records Since NSEC3 is a bit more complicated than normal denial, some context arguments are needed

rr: The (query) RR to check the denial of existence for
nsecs: The list of NSEC3 RRs that are supposed to deny the existence of the RR
rrsigs: The RRSIG rr covering the NSEC RRs
packet_rcode: The RCODE value of the packet that provided the NSEC3 RRs
packet_qtype: The original query RR type
packet_nodata: True if the providing packet had an empty ANSWER section
Returns LDNS_STATUS_OK if the NSEC3 RRs deny the existence, error code containing the reason they do not otherwise

The ldns team at NLnet Labs.

Please report bugs to dns-team@nlnetlabs.nl or on GitHub at https://github.com/NLnetLabs/ldns/issues

Copyright (c) 2004 - 2006 NLnet Labs.

Licensed under the BSD License. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

ldns_dnssec_trust_tree, ldns_dnssec_data_chain. And perldoc Net::DNS, RFC1034, RFC1035, RFC4033, RFC4034  and RFC4035.

This manpage was automatically generated from the ldns source code.

The man page ldns_dnssec_verify_denial_nsec3(3) is an alias of ldns_dnssec_verify_denial(3).