dd/d8a/gss__tsig__context_8h_source.html

// Copyright (C) 2021-2025 Internet Systems Consortium, Inc. ("ISC")

//

// This Source Code Form is subject to the terms of the Mozilla Public

// License, v. 2.0. If a copy of the MPL was not distributed with this

// file, You can obtain one at http://mozilla.org/MPL/2.0/.


#ifndef GSS_TSIG_CONTEXT_H

#define GSS_TSIG_CONTEXT_H


#include <dns/tsig.h>

#include <gss_tsig_key.h>

#include <boost/shared_ptr.hpp>


namespace isc {

namespace gss_tsig {


class GssTsigContext : public dns::TSIGContext {

public:

    explicit GssTsigContext(GssTsigKey& key);


    virtual ~GssTsigContext();


    virtual dns::ConstTSIGRecordPtr

    sign(const uint16_t qid, const void* const data,

         const size_t data_len) override;


    virtual dns::TSIGError

    verify(const dns::TSIGRecord* const record, const void* const data,

           const size_t data_len) override;


    virtual bool lastHadSignature() const override;


    virtual size_t getTSIGLength() const override;


    virtual State getState() const override {

        return (state_);

    }


    virtual void setState(State state) {

        state_ = state;

    }


    virtual dns::TSIGError getError() const override {

        return (error_);

    }


    virtual void setError(dns::TSIGError error) {

        error_ = error;

    }


private:

    State state_;


    GssTsigKey& key_;


    std::vector<uint8_t> previous_digest_;


    dns::TSIGError error_;


    uint64_t previous_timesigned_;


    int last_sig_dist_;


    util::OutputBuffer tbs_;


protected:

    void update(const void* const data, size_t len);

};


typedef boost::shared_ptr<GssTsigContext> GssTsigContextPtr;


} // end of namespace isc::gss_tsig

} // end of namespace isc


#endif // GSS_TSIG_CONTEXT_H

isc::dns::TSIGContext
TSIG session context.
Definition tsig.h:171

isc::dns::TSIGContext::State
State
Internal state of context.
Definition tsig.h:181

isc::dns::TSIGError
TSIG errors.
Definition tsigerror.h:22

isc::dns::TSIGRecord
TSIG resource record.
Definition tsigrecord.h:51

isc::gss_tsig::GssTsigContext::lastHadSignature
virtual bool lastHadSignature() const override
Check whether the last verified message was signed.
Definition gss_tsig_context.cc:407

isc::gss_tsig::GssTsigContext::getError
virtual dns::TSIGError getError() const override
Return the TSIG error as a result of the latest verification.
Definition gss_tsig_context.h:121

isc::gss_tsig::GssTsigContext::~GssTsigContext
virtual ~GssTsigContext()
Destructor.
Definition gss_tsig_context.cc:149

isc::gss_tsig::GssTsigContext::sign
virtual dns::ConstTSIGRecordPtr sign(const uint16_t qid, const void *const data, const size_t data_len) override
Sign a DNS message.
Definition gss_tsig_context.cc:153

isc::gss_tsig::GssTsigContext::setState
virtual void setState(State state)
Set the current state of the context.
Definition gss_tsig_context.h:112

isc::gss_tsig::GssTsigContext::getTSIGLength
virtual size_t getTSIGLength() const override
Return the expected length of TSIG RR after sign().
Definition gss_tsig_context.cc:415

isc::gss_tsig::GssTsigContext::update
void update(const void *const data, size_t len)
Update internal MAC state by more data.
Definition gss_tsig_context.cc:458

isc::gss_tsig::GssTsigContext::getState
virtual State getState() const override
Return the current state of the context.
Definition gss_tsig_context.h:103

isc::gss_tsig::GssTsigContext::setError
virtual void setError(dns::TSIGError error)
Set the TSIG error.
Definition gss_tsig_context.h:130

isc::gss_tsig::GssTsigContext::verify
virtual dns::TSIGError verify(const dns::TSIGRecord *const record, const void *const data, const size_t data_len) override
a DNS message.
Definition gss_tsig_context.cc:248

isc::gss_tsig::GssTsigContext::GssTsigContext
GssTsigContext(GssTsigKey &key)
Constructor.
Definition gss_tsig_context.cc:143

isc::gss_tsig::GssTsigKey
GSS-TSIG extension of the D2 TSIG key class.
Definition gss_tsig_key.h:26

isc::util::OutputBuffer
The OutputBuffer class is a buffer abstraction for manipulating mutable data.
Definition buffer.h:346

isc::util::State
Defines a State within the State Model.
Definition state_model.h:61

gss_tsig_key.h

isc::data
Definition base_stamped_element.cc:12

isc::dns::ConstTSIGRecordPtr
boost::shared_ptr< const TSIGRecord > ConstTSIGRecordPtr
A pointer-like type pointing to an immutable TSIGRecord object.
Definition tsigrecord.h:283

isc::gss_tsig
Definition gss_tsig_api.cc:17

isc::gss_tsig::GssTsigContextPtr
boost::shared_ptr< GssTsigContext > GssTsigContextPtr
Type of pointer to a GSS-TSIG context.
Definition gss_tsig_context.h:178

isc
Defines the logger used by the top-level component of kea-lfc.
Definition agent_parser.cc:148

tsig.h