1 #include <ldns/config.h>
9 /* this entire file is rather useless when you don't have
12 #include <openssl/ssl.h>
13 #include <openssl/evp.h>
14 #include <openssl/rand.h>
15 #include <openssl/err.h>
16 #include <openssl/md5.h>
18 ldns_dnssec_data_chain *
19 ldns_dnssec_data_chain_new()
21 ldns_dnssec_data_chain *nc = LDNS_XMALLOC(ldns_dnssec_data_chain, 1);
26 nc->signatures = NULL;
29 nc->packet_nodata = false;
34 ldns_dnssec_data_chain_free(ldns_dnssec_data_chain *chain)
40 ldns_dnssec_data_chain_deep_free(ldns_dnssec_data_chain *chain)
42 ldns_rr_list_deep_free(chain->rrset);
43 ldns_rr_list_deep_free(chain->signatures);
45 ldns_dnssec_data_chain_deep_free(chain->parent);
51 ldns_dnssec_data_chain_print(FILE *out, const ldns_dnssec_data_chain *chain)
53 ldns_lookup_table *rcode;
54 const ldns_rr_descriptor *rr_descriptor;
56 ldns_dnssec_data_chain_print(out, chain->parent);
57 if (ldns_rr_list_rr_count(chain->rrset) > 0) {
58 rcode = ldns_lookup_by_id(ldns_rcodes,
59 (int) chain->packet_rcode);
61 fprintf(out, ";; rcode: %s\n", rcode->name);
64 rr_descriptor = ldns_rr_descript(chain->packet_qtype);
65 if (rr_descriptor && rr_descriptor->_name) {
66 fprintf(out, ";; qtype: %s\n", rr_descriptor->_name);
67 } else if (chain->packet_qtype != 0) {
68 fprintf(out, "TYPE%u",
71 if (chain->packet_nodata) {
72 fprintf(out, ";; NODATA response\n");
74 fprintf(out, "rrset:\n");
75 ldns_rr_list_print(out, chain->rrset);
76 fprintf(out, "sigs:\n");
77 ldns_rr_list_print(out, chain->signatures);
78 fprintf(out, "---\n");
80 fprintf(out, "<no data>\n");
86 ldns_dnssec_build_data_chain_dnskey(ldns_resolver *res,
89 ldns_rr_list *signatures,
90 ldns_dnssec_data_chain *new_chain,
95 if (signatures && ldns_rr_list_rr_count(signatures) > 0) {
96 new_chain->signatures = ldns_rr_list_clone(signatures);
97 new_chain->parent_type = 0;
99 keys = ldns_pkt_rr_list_by_name_and_type(
103 LDNS_SECTION_ANY_NOQUESTION
106 my_pkt = ldns_resolver_query(res,
112 keys = ldns_pkt_rr_list_by_name_and_type(
116 LDNS_SECTION_ANY_NOQUESTION
118 new_chain->parent = ldns_dnssec_build_data_chain(res,
123 new_chain->parent->packet_qtype = LDNS_RR_TYPE_DNSKEY;
124 ldns_pkt_free(my_pkt);
127 new_chain->parent = ldns_dnssec_build_data_chain(res,
132 new_chain->parent->packet_qtype = LDNS_RR_TYPE_DNSKEY;
134 ldns_rr_list_deep_free(keys);
139 ldns_dnssec_build_data_chain_other(ldns_resolver *res,
141 ldns_dnssec_data_chain *new_chain,
146 /* 'self-signed', parent is a DS */
148 /* okay, either we have other keys signing the current one,
150 * one should have a DS record in the parent zone.
151 * How do we find this out? Try both?
153 * request DNSKEYS for current zone,
154 * add all signatures to current level
157 ldns_rr_list *signatures2;
159 new_chain->parent_type = 1;
161 my_pkt = ldns_resolver_query(res,
167 dss = ldns_pkt_rr_list_by_name_and_type(my_pkt,
170 LDNS_SECTION_ANY_NOQUESTION
173 new_chain->parent = ldns_dnssec_build_data_chain(res,
178 new_chain->parent->packet_qtype = LDNS_RR_TYPE_DS;
179 ldns_rr_list_deep_free(dss);
181 ldns_pkt_free(my_pkt);
184 my_pkt = ldns_resolver_query(res,
190 signatures2 = ldns_pkt_rr_list_by_name_and_type(my_pkt,
193 LDNS_SECTION_ANSWER);
195 if (new_chain->signatures) {
196 printf("There were already sigs!\n");
197 ldns_rr_list_deep_free(new_chain->signatures);
198 printf("replacing the old sigs\n");
200 new_chain->signatures = signatures2;
202 ldns_pkt_free(my_pkt);
206 ldns_dnssec_data_chain *
207 ldns_dnssec_build_data_chain_nokeyname(ldns_resolver *res,
210 const ldns_rr_list *rrset,
211 ldns_dnssec_data_chain *new_chain)
213 ldns_rdf *possible_parent_name;
215 /* apparently we were not able to find a signing key, so
216 we assume the chain ends here
218 /* try parents for auth denial of DS */
220 possible_parent_name = ldns_rr_owner(orig_rr);
221 } else if (rrset && ldns_rr_list_rr_count(rrset) > 0) {
222 possible_parent_name = ldns_rr_owner(ldns_rr_list_rr(rrset, 0));
224 /* no information to go on, give up */
228 my_pkt = ldns_resolver_query(res,
229 possible_parent_name,
237 if (ldns_pkt_ancount(my_pkt) > 0) {
238 /* add error, no sigs but DS in parent */
239 /*ldns_pkt_print(stdout, my_pkt);*/
240 ldns_pkt_free(my_pkt);
242 /* are there signatures? */
243 new_chain->parent = ldns_dnssec_build_data_chain(res,
249 new_chain->parent->packet_qtype = LDNS_RR_TYPE_DS;
256 ldns_dnssec_data_chain *
257 ldns_dnssec_build_data_chain(ldns_resolver *res,
259 const ldns_rr_list *rrset,
263 ldns_rr_list *signatures = NULL;
264 ldns_rr_list *dss = NULL;
266 ldns_rr_list *my_rrset;
270 ldns_rdf *name = NULL, *key_name = NULL;
271 ldns_rr_type type = 0;
274 bool other_rrset = false;
276 ldns_dnssec_data_chain *new_chain = ldns_dnssec_data_chain_new();
278 if (!ldns_dnssec_pkt_has_rrsigs(pkt)) {
279 /* hmm. no dnssec data in the packet. go up to try and deny
285 new_chain->rrset = ldns_rr_list_new();
286 ldns_rr_list_push_rr(new_chain->rrset, orig_rr);
287 new_chain->parent = ldns_dnssec_build_data_chain(res,
292 new_chain->packet_rcode = ldns_pkt_get_rcode(pkt);
293 new_chain->packet_qtype = ldns_rr_get_type(orig_rr);
294 if (ldns_pkt_ancount(pkt) == 0) {
295 new_chain->packet_nodata = true;
300 if (!rrset || ldns_rr_list_rr_count(rrset) < 1) {
301 /* hmm, no data, do we have denial? only works if pkt was given,
302 otherwise caller has to do the check himself */
303 new_chain->packet_nodata = true;
305 my_rrset = ldns_pkt_rr_list_by_type(pkt,
307 LDNS_SECTION_ANY_NOQUESTION
310 if (ldns_rr_list_rr_count(my_rrset) > 0) {
311 type = LDNS_RR_TYPE_NSEC;
314 ldns_rr_list_deep_free(my_rrset);
318 /* nothing, try nsec3 */
319 my_rrset = ldns_pkt_rr_list_by_type(pkt,
321 LDNS_SECTION_ANY_NOQUESTION);
323 if (ldns_rr_list_rr_count(my_rrset) > 0) {
324 type = LDNS_RR_TYPE_NSEC3;
327 ldns_rr_list_deep_free(my_rrset);
332 /* try parent zone? for denied insecure? */
340 my_rrset = (ldns_rr_list *) rrset;
343 if (my_rrset && ldns_rr_list_rr_count(my_rrset) > 0) {
344 new_chain->rrset = ldns_rr_list_clone(my_rrset);
345 name = ldns_rr_owner(ldns_rr_list_rr(my_rrset, 0));
346 type = ldns_rr_get_type(ldns_rr_list_rr(my_rrset, 0));
347 c = ldns_rr_get_class(ldns_rr_list_rr(my_rrset, 0));
351 ldns_rr_list_deep_free(my_rrset);
354 /* normally there will only be 1 signature 'set'
355 but there can be more than 1 denial (wildcards)
358 if (type == LDNS_RR_TYPE_NSEC || type == LDNS_RR_TYPE_NSEC3) {
359 /* just throw in all signatures, the tree builder must sort
362 signatures = ldns_dnssec_pkt_get_rrsigs_for_type(pkt, type);
364 my_pkt = ldns_resolver_query(res, name, type, c, qflags);
366 signatures = ldns_dnssec_pkt_get_rrsigs_for_type(pkt, type);
367 ldns_pkt_free(my_pkt);
373 ldns_dnssec_pkt_get_rrsigs_for_name_and_type(pkt,
378 my_pkt = ldns_resolver_query(res, name, type, c, qflags);
381 ldns_dnssec_pkt_get_rrsigs_for_name_and_type(my_pkt,
384 ldns_pkt_free(my_pkt);
389 if (signatures && ldns_rr_list_rr_count(signatures) > 0) {
390 key_name = ldns_rr_rdf(ldns_rr_list_rr(signatures, 0), 7);
394 return ldns_dnssec_build_data_chain_nokeyname(res,
401 if (type != LDNS_RR_TYPE_DNSKEY) {
402 ldns_dnssec_build_data_chain_dnskey(res,
411 ldns_dnssec_build_data_chain_other(res,
421 ldns_rr_list_deep_free(signatures);
427 ldns_dnssec_trust_tree *
428 ldns_dnssec_trust_tree_new()
430 ldns_dnssec_trust_tree *new_tree = LDNS_XMALLOC(ldns_dnssec_trust_tree,
432 if(!new_tree) return NULL;
434 new_tree->rrset = NULL;
435 new_tree->parent_count = 0;
441 ldns_dnssec_trust_tree_free(ldns_dnssec_trust_tree *tree)
445 for (i = 0; i < tree->parent_count; i++) {
446 ldns_dnssec_trust_tree_free(tree->parents[i]);
453 ldns_dnssec_trust_tree_depth(ldns_dnssec_trust_tree *tree)
459 for (i = 0; i < tree->parent_count; i++) {
460 parent = ldns_dnssec_trust_tree_depth(tree->parents[i]);
461 if (parent > result) {
470 print_tabs(FILE *out, size_t nr, uint8_t *map, size_t treedepth)
473 for (i = 0; i < nr; i++) {
475 fprintf(out, "|---");
476 } else if (map && i < treedepth && map[i] == 1) {
485 ldns_dnssec_trust_tree_print_sm(FILE *out,
486 ldns_dnssec_trust_tree *tree,
493 const ldns_rr_descriptor *descriptor;
497 treedepth = ldns_dnssec_trust_tree_depth(tree);
498 sibmap = malloc(treedepth);
500 return; /* mem err */
501 memset(sibmap, 0, treedepth);
507 print_tabs(out, tabs, sibmap, treedepth);
508 ldns_rdf_print(out, ldns_rr_owner(tree->rr));
509 descriptor = ldns_rr_descript(ldns_rr_get_type(tree->rr));
511 if (descriptor->_name) {
512 fprintf(out, " (%s", descriptor->_name);
514 fprintf(out, " (TYPE%d",
515 ldns_rr_get_type(tree->rr));
518 if (ldns_rr_get_type(tree->rr) == LDNS_RR_TYPE_DNSKEY) {
519 fprintf(out, " keytag: %u",
520 (unsigned int) ldns_calc_keytag(tree->rr));
521 fprintf(out, " alg: ");
522 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 2));
523 fprintf(out, " flags: ");
524 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 0));
525 } else if (ldns_rr_get_type(tree->rr) == LDNS_RR_TYPE_DS) {
526 fprintf(out, " keytag: ");
527 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 0));
528 fprintf(out, " digest type: ");
529 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 2));
531 if (ldns_rr_get_type(tree->rr) == LDNS_RR_TYPE_NSEC) {
533 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 0));
535 ldns_rdf_print(out, ldns_rr_rdf(tree->rr, 1));
540 for (i = 0; i < tree->parent_count; i++) {
541 if (tree->parent_count > 1 && i < tree->parent_count - 1) {
546 /* only print errors */
547 if (ldns_rr_get_type(tree->parents[i]->rr) ==
549 ldns_rr_get_type(tree->parents[i]->rr) ==
550 LDNS_RR_TYPE_NSEC3) {
551 if (tree->parent_status[i] == LDNS_STATUS_OK) {
552 print_tabs(out, tabs + 1, sibmap, treedepth);
554 ldns_rr_get_type(tree->rr) == LDNS_RR_TYPE_NS &&
555 ldns_rr_rd_count(tree->rr) > 0) {
556 fprintf(out, "Existence of DS is denied by:\n");
558 fprintf(out, "Existence is denied by:\n");
561 /* NS records aren't signed */
562 if (ldns_rr_get_type(tree->rr) == LDNS_RR_TYPE_NS) {
563 fprintf(out, "Existence of DS is denied by:\n");
565 print_tabs(out, tabs + 1, sibmap, treedepth);
567 "Error in denial of existence: %s\n",
568 ldns_get_errorstr_by_id(
569 tree->parent_status[i]));
573 if (tree->parent_status[i] != LDNS_STATUS_OK) {
574 print_tabs(out, tabs + 1, sibmap, treedepth);
577 ldns_get_errorstr_by_id(
578 tree->parent_status[i]));
579 if (tree->parent_status[i]
580 == LDNS_STATUS_SSL_ERR) {
581 printf("; SSL Error: ");
582 ERR_load_crypto_strings();
583 ERR_print_errors_fp(stdout);
586 ldns_rr_print(out, tree->parent_signature[i]);
587 printf("For RRset:\n");
588 ldns_rr_list_print(out, tree->rrset);
589 printf("With key:\n");
590 ldns_rr_print(out, tree->parents[i]->rr);
592 ldns_dnssec_trust_tree_print_sm(out,
600 print_tabs(out, tabs, sibmap, treedepth);
601 fprintf(out, "<no data>\n");
604 fprintf(out, "<null pointer>\n");
613 ldns_dnssec_trust_tree_print(FILE *out,
614 ldns_dnssec_trust_tree *tree,
618 ldns_dnssec_trust_tree_print_sm(out, tree, tabs, extended, NULL, 0);
622 ldns_dnssec_trust_tree_add_parent(ldns_dnssec_trust_tree *tree,
623 const ldns_dnssec_trust_tree *parent,
624 const ldns_rr *signature,
625 const ldns_status parent_status)
629 && tree->parent_count < LDNS_DNSSEC_TRUST_TREE_MAX_PARENTS) {
631 printf("Add parent for: ");
632 ldns_rr_print(stdout, tree->rr);
634 ldns_rr_print(stdout, parent->rr);
636 tree->parents[tree->parent_count] =
637 (ldns_dnssec_trust_tree *) parent;
638 tree->parent_status[tree->parent_count] = parent_status;
639 tree->parent_signature[tree->parent_count] = (ldns_rr *) signature;
640 tree->parent_count++;
641 return LDNS_STATUS_OK;
643 return LDNS_STATUS_ERR;
647 /* if rr is null, take the first from the rrset */
648 ldns_dnssec_trust_tree *
649 ldns_dnssec_derive_trust_tree(ldns_dnssec_data_chain *data_chain, ldns_rr *rr)
651 ldns_rr_list *cur_rrset;
652 ldns_rr_list *cur_sigs;
653 ldns_rr *cur_rr = NULL;
657 ldns_dnssec_trust_tree *new_tree = ldns_dnssec_trust_tree_new();
661 if (data_chain && data_chain->rrset) {
662 cur_rrset = data_chain->rrset;
664 cur_sigs = data_chain->signatures;
670 if (!cur_rr && ldns_rr_list_rr_count(cur_rrset) > 0) {
671 cur_rr = ldns_rr_list_rr(cur_rrset, 0);
675 new_tree->rr = cur_rr;
676 new_tree->rrset = cur_rrset;
677 /* there are three possibilities:
678 1 - 'normal' rrset, signed by a key
679 2 - dnskey signed by other dnskey
680 3 - dnskey proven by higher level DS
681 (data denied by nsec is a special case that can
682 occur in multiple places)
686 for (i = 0; i < ldns_rr_list_rr_count(cur_sigs); i++) {
687 /* find the appropriate key in the parent list */
688 cur_sig_rr = ldns_rr_list_rr(cur_sigs, i);
690 if (ldns_rr_get_type(cur_rr) == LDNS_RR_TYPE_NSEC) {
691 if (ldns_dname_compare(ldns_rr_owner(cur_sig_rr),
692 ldns_rr_owner(cur_rr)))
694 /* find first that does match */
697 j < ldns_rr_list_rr_count(cur_rrset) &&
698 ldns_dname_compare(ldns_rr_owner(cur_sig_rr),ldns_rr_owner(cur_rr)) != 0;
700 cur_rr = ldns_rr_list_rr(cur_rrset, j);
703 if (ldns_dname_compare(ldns_rr_owner(cur_sig_rr),
704 ldns_rr_owner(cur_rr)))
712 if (data_chain->parent) {
713 ldns_dnssec_derive_trust_tree_normal_rrset(
720 ldns_dnssec_derive_trust_tree_dnskey_rrset(
727 ldns_dnssec_derive_trust_tree_ds_rrset(new_tree,
731 /* no signatures? maybe it's nsec data */
733 /* just add every rr from parent as new parent */
734 ldns_dnssec_derive_trust_tree_no_sig(new_tree, data_chain);
743 ldns_dnssec_derive_trust_tree_normal_rrset(ldns_dnssec_trust_tree *new_tree,
744 ldns_dnssec_data_chain *data_chain,
748 ldns_rr_list *cur_rrset = ldns_rr_list_clone(data_chain->rrset);
749 ldns_dnssec_trust_tree *cur_parent_tree;
750 ldns_rr *cur_parent_rr;
752 ldns_rr_list *tmp_rrset = NULL;
753 ldns_status cur_status;
755 cur_keytag = ldns_rdf2native_int16(ldns_rr_rrsig_keytag(cur_sig_rr));
757 for (j = 0; j < ldns_rr_list_rr_count(data_chain->parent->rrset); j++) {
758 cur_parent_rr = ldns_rr_list_rr(data_chain->parent->rrset, j);
759 if (ldns_rr_get_type(cur_parent_rr) == LDNS_RR_TYPE_DNSKEY) {
760 if (ldns_calc_keytag(cur_parent_rr) == cur_keytag) {
762 /* TODO: check wildcard nsec too */
763 if (cur_rrset && ldns_rr_list_rr_count(cur_rrset) > 0) {
764 tmp_rrset = cur_rrset;
765 if (ldns_rr_get_type(ldns_rr_list_rr(cur_rrset, 0))
766 == LDNS_RR_TYPE_NSEC ||
767 ldns_rr_get_type(ldns_rr_list_rr(cur_rrset, 0))
768 == LDNS_RR_TYPE_NSEC3) {
769 /* might contain different names!
771 ldns_rr_list_sort(cur_rrset);
772 if (tmp_rrset && tmp_rrset != cur_rrset) {
773 ldns_rr_list_deep_free(tmp_rrset);
776 tmp_rrset = ldns_rr_list_pop_rrset(cur_rrset);
778 /* with nsecs, this might be the wrong one */
780 ldns_rr_list_rr_count(cur_rrset) > 0 &&
782 ldns_rr_owner(ldns_rr_list_rr(
784 ldns_rr_owner(cur_sig_rr)) != 0) {
785 ldns_rr_list_deep_free(tmp_rrset);
787 ldns_rr_list_pop_rrset(cur_rrset);
790 cur_status = ldns_verify_rrsig(tmp_rrset,
794 for (i = 0; i < new_tree->parent_count; i++) {
795 if (cur_parent_rr == new_tree->parents[i]->rr) {
801 ldns_dnssec_derive_trust_tree(data_chain->parent,
803 (void)ldns_dnssec_trust_tree_add_parent(new_tree,
812 if (tmp_rrset && tmp_rrset != cur_rrset) {
813 ldns_rr_list_deep_free(tmp_rrset);
815 ldns_rr_list_deep_free(cur_rrset);
819 ldns_dnssec_derive_trust_tree_dnskey_rrset(ldns_dnssec_trust_tree *new_tree,
820 ldns_dnssec_data_chain *data_chain,
825 ldns_rr_list *cur_rrset = data_chain->rrset;
826 ldns_dnssec_trust_tree *cur_parent_tree;
827 ldns_rr *cur_parent_rr;
829 ldns_status cur_status;
831 cur_keytag = ldns_rdf2native_int16(ldns_rr_rrsig_keytag(cur_sig_rr));
833 for (j = 0; j < ldns_rr_list_rr_count(cur_rrset); j++) {
834 cur_parent_rr = ldns_rr_list_rr(cur_rrset, j);
835 if (cur_parent_rr != cur_rr &&
836 ldns_rr_get_type(cur_parent_rr) == LDNS_RR_TYPE_DNSKEY) {
837 if (ldns_calc_keytag(cur_parent_rr) == cur_keytag
839 cur_parent_tree = ldns_dnssec_trust_tree_new();
840 cur_parent_tree->rr = cur_parent_rr;
841 cur_parent_tree->rrset = cur_rrset;
842 cur_status = ldns_verify_rrsig(cur_rrset,
845 (void) ldns_dnssec_trust_tree_add_parent(new_tree,
846 cur_parent_tree, cur_sig_rr, cur_status);
853 ldns_dnssec_derive_trust_tree_ds_rrset(ldns_dnssec_trust_tree *new_tree,
854 ldns_dnssec_data_chain *data_chain,
858 ldns_rr_list *cur_rrset = data_chain->rrset;
859 ldns_dnssec_trust_tree *cur_parent_tree;
860 ldns_rr *cur_parent_rr;
862 /* try the parent to see whether there are DSs there */
863 if (ldns_rr_get_type(cur_rr) == LDNS_RR_TYPE_DNSKEY &&
864 data_chain->parent &&
865 data_chain->parent->rrset
868 j < ldns_rr_list_rr_count(data_chain->parent->rrset);
870 cur_parent_rr = ldns_rr_list_rr(data_chain->parent->rrset, j);
871 if (ldns_rr_get_type(cur_parent_rr) == LDNS_RR_TYPE_DS) {
872 for (h = 0; h < ldns_rr_list_rr_count(cur_rrset); h++) {
873 cur_rr = ldns_rr_list_rr(cur_rrset, h);
874 if (ldns_rr_compare_ds(cur_rr, cur_parent_rr)) {
876 ldns_dnssec_derive_trust_tree(
877 data_chain->parent, cur_parent_rr);
878 (void) ldns_dnssec_trust_tree_add_parent(
884 /*ldns_rr_print(stdout, cur_parent_rr);*/
893 ldns_dnssec_derive_trust_tree_no_sig(ldns_dnssec_trust_tree *new_tree,
894 ldns_dnssec_data_chain *data_chain)
897 ldns_rr_list *cur_rrset;
898 ldns_rr *cur_parent_rr;
899 ldns_dnssec_trust_tree *cur_parent_tree;
902 if (data_chain->parent && data_chain->parent->rrset) {
903 cur_rrset = data_chain->parent->rrset;
905 if (cur_rrset && ldns_rr_list_rr_count(cur_rrset) > 0) {
906 if (ldns_rr_get_type(ldns_rr_list_rr(cur_rrset, 0)) ==
907 LDNS_RR_TYPE_NSEC3) {
908 result = ldns_dnssec_verify_denial_nsec3(
911 data_chain->parent->signatures,
912 data_chain->packet_rcode,
913 data_chain->packet_qtype,
914 data_chain->packet_nodata);
915 } else if (ldns_rr_get_type(ldns_rr_list_rr(cur_rrset, 0)) ==
916 LDNS_RR_TYPE_NSEC3) {
917 result = ldns_dnssec_verify_denial(
920 data_chain->parent->signatures);
922 /* unsigned zone, unsigned parent */
923 result = LDNS_STATUS_OK;
926 result = LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
928 for (i = 0; i < ldns_rr_list_rr_count(cur_rrset); i++) {
929 cur_parent_rr = ldns_rr_list_rr(cur_rrset, i);
931 ldns_dnssec_derive_trust_tree(data_chain->parent,
933 (void) ldns_dnssec_trust_tree_add_parent(new_tree,
934 cur_parent_tree, NULL, result);
940 * returns OK if there is a path from tree to key with only OK
941 * the (first) error in between otherwise
942 * or NOT_FOUND if the key wasn't present at all
945 ldns_dnssec_trust_tree_contains_keys(ldns_dnssec_trust_tree *tree,
946 ldns_rr_list *trusted_keys)
949 ldns_status result = LDNS_STATUS_CRYPTO_NO_DNSKEY;
951 ldns_status parent_result;
953 if (tree && trusted_keys && ldns_rr_list_rr_count(trusted_keys) > 0)
955 for (i = 0; i < ldns_rr_list_rr_count(trusted_keys); i++) {
956 equal = ldns_rr_compare_ds(
958 ldns_rr_list_rr(trusted_keys, i));
960 result = LDNS_STATUS_OK;
965 for (i = 0; i < tree->parent_count; i++) {
967 ldns_dnssec_trust_tree_contains_keys(tree->parents[i],
969 if (parent_result != LDNS_STATUS_CRYPTO_NO_DNSKEY) {
970 if (tree->parent_status[i] != LDNS_STATUS_OK) {
971 result = tree->parent_status[i];
973 if (ldns_rr_get_type(tree->rr)
974 == LDNS_RR_TYPE_NSEC &&
975 parent_result == LDNS_STATUS_OK
978 LDNS_STATUS_DNSSEC_EXISTENCE_DENIED;
980 result = parent_result;
986 result = LDNS_STATUS_ERR;
993 ldns_verify(ldns_rr_list *rrset, ldns_rr_list *rrsig, const ldns_rr_list *keys,
994 ldns_rr_list *good_keys)
997 ldns_status verify_result = LDNS_STATUS_ERR;
999 if (!rrset || !rrsig || !keys) {
1000 return LDNS_STATUS_ERR;
1003 if (ldns_rr_list_rr_count(rrset) < 1) {
1004 return LDNS_STATUS_ERR;
1007 if (ldns_rr_list_rr_count(rrsig) < 1) {
1008 return LDNS_STATUS_CRYPTO_NO_RRSIG;
1011 if (ldns_rr_list_rr_count(keys) < 1) {
1012 verify_result = LDNS_STATUS_CRYPTO_NO_TRUSTED_DNSKEY;
1014 for (i = 0; i < ldns_rr_list_rr_count(rrsig); i++) {
1015 ldns_status s = ldns_verify_rrsig_keylist(rrset,
1016 ldns_rr_list_rr(rrsig, i), keys, good_keys);
1017 /* try a little to get more descriptive error */
1018 if(s == LDNS_STATUS_OK) {
1019 verify_result = LDNS_STATUS_OK;
1020 } else if(verify_result == LDNS_STATUS_ERR)
1022 else if(s != LDNS_STATUS_ERR && verify_result ==
1023 LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY)
1027 return verify_result;
1031 ldns_verify_notime(ldns_rr_list *rrset, ldns_rr_list *rrsig,
1032 const ldns_rr_list *keys, ldns_rr_list *good_keys)
1035 ldns_status verify_result = LDNS_STATUS_ERR;
1037 if (!rrset || !rrsig || !keys) {
1038 return LDNS_STATUS_ERR;
1041 if (ldns_rr_list_rr_count(rrset) < 1) {
1042 return LDNS_STATUS_ERR;
1045 if (ldns_rr_list_rr_count(rrsig) < 1) {
1046 return LDNS_STATUS_CRYPTO_NO_RRSIG;
1049 if (ldns_rr_list_rr_count(keys) < 1) {
1050 verify_result = LDNS_STATUS_CRYPTO_NO_TRUSTED_DNSKEY;
1052 for (i = 0; i < ldns_rr_list_rr_count(rrsig); i++) {
1053 ldns_status s = ldns_verify_rrsig_keylist_notime(rrset,
1054 ldns_rr_list_rr(rrsig, i), keys, good_keys);
1056 /* try a little to get more descriptive error */
1057 if (s == LDNS_STATUS_OK) {
1058 verify_result = LDNS_STATUS_OK;
1059 } else if (verify_result == LDNS_STATUS_ERR) {
1061 } else if (s != LDNS_STATUS_ERR && verify_result ==
1062 LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY) {
1067 return verify_result;
1071 ldns_fetch_valid_domain_keys(const ldns_resolver *res,
1072 const ldns_rdf *domain,
1073 const ldns_rr_list *keys,
1074 ldns_status *status)
1076 ldns_rr_list * trusted_keys = NULL;
1077 ldns_rr_list * ds_keys = NULL;
1079 if (res && domain && keys) {
1081 if ((trusted_keys = ldns_validate_domain_dnskey(res,
1084 *status = LDNS_STATUS_OK;
1086 /* No trusted keys in this domain, we'll have to find some in the parent domain */
1087 *status = LDNS_STATUS_CRYPTO_NO_TRUSTED_DNSKEY;
1089 if (ldns_rdf_size(domain) > 1) {
1090 /* Fail if we are at the root */
1091 ldns_rr_list * parent_keys;
1092 ldns_rdf * parent_domain = ldns_dname_left_chop(domain);
1095 ldns_fetch_valid_domain_keys(res,
1099 /* Check DS records */
1101 ldns_validate_domain_ds(res,
1105 ldns_fetch_valid_domain_keys(res,
1109 ldns_rr_list_deep_free(ds_keys);
1111 /* No valid DS at the parent -- fail */
1112 *status = LDNS_STATUS_CRYPTO_NO_TRUSTED_DS ;
1114 ldns_rr_list_deep_free(parent_keys);
1116 ldns_rdf_deep_free(parent_domain);
1120 return trusted_keys;
1124 ldns_validate_domain_dnskey(const ldns_resolver * res,
1125 const ldns_rdf * domain,
1126 const ldns_rr_list * keys)
1130 uint16_t key_i; uint16_t key_j; uint16_t key_k;
1131 uint16_t sig_i; ldns_rr * cur_sig;
1133 ldns_rr_list * domain_keys = NULL;
1134 ldns_rr_list * domain_sigs = NULL;
1135 ldns_rr_list * trusted_keys = NULL;
1137 /* Fetch keys for the domain */
1138 keypkt = ldns_resolver_query(res, domain,
1139 LDNS_RR_TYPE_DNSKEY, LDNS_RR_CLASS_IN, LDNS_RD);
1141 domain_keys = ldns_pkt_rr_list_by_type(keypkt,
1142 LDNS_RR_TYPE_DNSKEY,
1143 LDNS_SECTION_ANSWER);
1144 domain_sigs = ldns_pkt_rr_list_by_type(keypkt,
1146 LDNS_SECTION_ANSWER);
1148 /* Try to validate the record using our keys */
1149 for (key_i=0; key_i< ldns_rr_list_rr_count(domain_keys); key_i++) {
1151 cur_key = ldns_rr_list_rr(domain_keys, key_i);
1152 for (key_j=0; key_j<ldns_rr_list_rr_count(keys); key_j++) {
1153 if (ldns_rr_compare_ds(ldns_rr_list_rr(keys, key_j),
1156 /* Current key is trusted -- validate */
1157 trusted_keys = ldns_rr_list_new();
1160 sig_i<ldns_rr_list_rr_count(domain_sigs);
1162 cur_sig = ldns_rr_list_rr(domain_sigs, sig_i);
1163 /* Avoid non-matching sigs */
1164 if (ldns_rdf2native_int16(
1165 ldns_rr_rrsig_keytag(cur_sig))
1166 == ldns_calc_keytag(cur_key)) {
1167 if (ldns_verify_rrsig(domain_keys,
1170 == LDNS_STATUS_OK) {
1172 /* Push the whole rrset
1173 -- we can't do much more */
1175 key_k<ldns_rr_list_rr_count(
1178 ldns_rr_list_push_rr(
1186 ldns_rr_list_deep_free(domain_keys);
1187 ldns_rr_list_deep_free(domain_sigs);
1188 ldns_pkt_free(keypkt);
1189 return trusted_keys;
1194 /* Only push our trusted key */
1195 ldns_rr_list_push_rr(trusted_keys,
1196 ldns_rr_clone(cur_key));
1201 ldns_rr_list_deep_free(domain_keys);
1202 ldns_rr_list_deep_free(domain_sigs);
1203 ldns_pkt_free(keypkt);
1206 /* LDNS_STATUS_CRYPTO_NO_DNSKEY */
1209 return trusted_keys;
1213 ldns_validate_domain_ds(const ldns_resolver *res,
1214 const ldns_rdf * domain,
1215 const ldns_rr_list * keys)
1219 ldns_rr_list * rrset = NULL;
1220 ldns_rr_list * sigs = NULL;
1221 ldns_rr_list * trusted_keys = NULL;
1223 /* Fetch DS for the domain */
1224 dspkt = ldns_resolver_query(res, domain,
1225 LDNS_RR_TYPE_DS, LDNS_RR_CLASS_IN, LDNS_RD);
1227 rrset = ldns_pkt_rr_list_by_type(dspkt,
1229 LDNS_SECTION_ANSWER);
1230 sigs = ldns_pkt_rr_list_by_type(dspkt,
1232 LDNS_SECTION_ANSWER);
1235 if (ldns_verify(rrset, sigs, keys, NULL) == LDNS_STATUS_OK) {
1236 trusted_keys = ldns_rr_list_new();
1237 for (key_i=0; key_i<ldns_rr_list_rr_count(rrset); key_i++) {
1238 ldns_rr_list_push_rr(trusted_keys,
1239 ldns_rr_clone(ldns_rr_list_rr(rrset,
1246 ldns_rr_list_deep_free(rrset);
1247 ldns_rr_list_deep_free(sigs);
1248 ldns_pkt_free(dspkt);
1251 /* LDNS_STATUS_CRYPTO_NO_DS */
1254 return trusted_keys;
1258 ldns_verify_trusted(ldns_resolver *res,
1259 ldns_rr_list *rrset,
1260 ldns_rr_list * rrsigs,
1261 ldns_rr_list * validating_keys)
1263 uint16_t sig_i; uint16_t key_i;
1264 ldns_rr * cur_sig; ldns_rr * cur_key;
1265 ldns_rr_list * trusted_keys = NULL;
1266 ldns_status result = LDNS_STATUS_ERR;
1268 if (!res || !rrset || !rrsigs) {
1269 return LDNS_STATUS_ERR;
1272 if (ldns_rr_list_rr_count(rrset) < 1) {
1273 return LDNS_STATUS_ERR;
1276 if (ldns_rr_list_rr_count(rrsigs) < 1) {
1277 return LDNS_STATUS_CRYPTO_NO_RRSIG;
1280 /* Look at each sig */
1281 for (sig_i=0; sig_i < ldns_rr_list_rr_count(rrsigs); sig_i++) {
1283 cur_sig = ldns_rr_list_rr(rrsigs, sig_i);
1284 /* Get a valid signer key and validate the sig */
1285 if ((trusted_keys = ldns_fetch_valid_domain_keys(
1287 ldns_rr_rrsig_signame(cur_sig),
1288 ldns_resolver_dnssec_anchors(res),
1292 key_i < ldns_rr_list_rr_count(trusted_keys);
1294 cur_key = ldns_rr_list_rr(trusted_keys, key_i);
1296 if ((result = ldns_verify_rrsig(rrset,
1299 == LDNS_STATUS_OK) {
1300 if (validating_keys) {
1301 ldns_rr_list_push_rr(validating_keys,
1302 ldns_rr_clone(cur_key));
1304 ldns_rr_list_deep_free(trusted_keys);
1305 return LDNS_STATUS_OK;
1307 ldns_rr_list_print(stdout, rrset);
1308 ldns_rr_print(stdout, cur_sig);
1309 ldns_rr_print(stdout, cur_key);
1316 ldns_rr_list_deep_free(trusted_keys);
1321 ldns_dnssec_verify_denial(ldns_rr *rr,
1322 ldns_rr_list *nsecs,
1323 ldns_rr_list *rrsigs)
1326 ldns_rdf *wildcard_name;
1327 ldns_rdf *chopped_dname;
1331 /* needed for wildcard check on exact match */
1333 bool name_covered = false;
1334 bool type_covered = false;
1335 bool wildcard_covered = false;
1336 bool wildcard_type_covered = false;
1338 wildcard_name = ldns_dname_new_frm_str("*");
1339 rr_name = ldns_rr_owner(rr);
1340 chopped_dname = ldns_dname_left_chop(rr_name);
1341 result = ldns_dname_cat(wildcard_name, chopped_dname);
1342 if (result != LDNS_STATUS_OK) {
1346 ldns_rdf_deep_free(chopped_dname);
1348 for (i = 0; i < ldns_rr_list_rr_count(nsecs); i++) {
1349 cur_nsec = ldns_rr_list_rr(nsecs, i);
1350 if (ldns_dname_compare(rr_name, ldns_rr_owner(cur_nsec)) == 0) {
1351 /* see section 5.4 of RFC4035, if the label count of the NSEC's
1352 RRSIG is equal, then it is proven that wildcard expansion
1353 could not have been used to match the request */
1354 rrsig = ldns_dnssec_get_rrsig_for_name_and_type(
1355 ldns_rr_owner(cur_nsec),
1356 ldns_rr_get_type(cur_nsec),
1358 if (rrsig && ldns_rdf2native_int8(ldns_rr_rrsig_labels(rrsig))
1359 == ldns_dname_label_count(rr_name)) {
1360 wildcard_covered = true;
1363 if (ldns_nsec_bitmap_covers_type(ldns_nsec_get_bitmap(cur_nsec),
1364 ldns_rr_get_type(rr))) {
1365 type_covered = true;
1368 if (ldns_nsec_covers_name(cur_nsec, rr_name)) {
1369 name_covered = true;
1372 if (ldns_dname_compare(wildcard_name,
1373 ldns_rr_owner(cur_nsec)) == 0) {
1374 if (ldns_nsec_bitmap_covers_type(ldns_nsec_get_bitmap(cur_nsec),
1375 ldns_rr_get_type(rr))) {
1376 wildcard_type_covered = true;
1380 if (ldns_nsec_covers_name(cur_nsec, wildcard_name)) {
1381 wildcard_covered = true;
1386 ldns_rdf_deep_free(wildcard_name);
1388 if (type_covered || !name_covered) {
1389 return LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
1392 if (wildcard_type_covered || !wildcard_covered) {
1393 return LDNS_STATUS_DNSSEC_NSEC_WILDCARD_NOT_COVERED;
1396 return LDNS_STATUS_OK;
1401 ldns_dnssec_verify_denial_nsec3(ldns_rr *rr,
1402 ldns_rr_list *nsecs,
1403 ldns_rr_list *rrsigs,
1404 ldns_pkt_rcode packet_rcode,
1405 ldns_rr_type packet_qtype,
1408 ldns_rdf *closest_encloser;
1410 ldns_rdf *hashed_wildcard_name;
1411 bool wildcard_covered = false;
1412 ldns_rdf *zone_name;
1413 ldns_rdf *hashed_name;
1415 ldns_status result = LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
1419 zone_name = ldns_dname_left_chop(ldns_rr_owner(ldns_rr_list_rr(nsecs,0)));
1422 if (packet_rcode == LDNS_RCODE_NXDOMAIN) {
1423 closest_encloser = ldns_dnssec_nsec3_closest_encloser(
1425 ldns_rr_get_type(rr),
1427 if(!closest_encloser) {
1428 result = LDNS_STATUS_NSEC3_ERR;
1432 wildcard = ldns_dname_new_frm_str("*");
1433 (void) ldns_dname_cat(wildcard, closest_encloser);
1435 for (i = 0; i < ldns_rr_list_rr_count(nsecs); i++) {
1436 hashed_wildcard_name =
1437 ldns_nsec3_hash_name_frm_nsec3(ldns_rr_list_rr(nsecs, 0),
1440 (void) ldns_dname_cat(hashed_wildcard_name, zone_name);
1442 if (ldns_nsec_covers_name(ldns_rr_list_rr(nsecs, i),
1443 hashed_wildcard_name)) {
1444 wildcard_covered = true;
1446 ldns_rdf_deep_free(hashed_wildcard_name);
1449 ldns_rdf_deep_free(closest_encloser);
1450 ldns_rdf_deep_free(wildcard);
1452 if (!wildcard_covered) {
1453 result = LDNS_STATUS_DNSSEC_NSEC_WILDCARD_NOT_COVERED;
1454 } else if (closest_encloser && wildcard_covered) {
1455 result = LDNS_STATUS_OK;
1457 result = LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
1459 } else if (packet_nodata && packet_qtype != LDNS_RR_TYPE_DS) {
1461 hashed_name = ldns_nsec3_hash_name_frm_nsec3(
1462 ldns_rr_list_rr(nsecs, 0),
1464 (void) ldns_dname_cat(hashed_name, zone_name);
1465 for (i = 0; i < ldns_rr_list_rr_count(nsecs); i++) {
1466 if (ldns_dname_compare(hashed_name,
1467 ldns_rr_owner(ldns_rr_list_rr(nsecs, i)))
1469 if (!ldns_nsec_bitmap_covers_type(
1470 ldns_nsec3_bitmap(ldns_rr_list_rr(nsecs, i)),
1473 !ldns_nsec_bitmap_covers_type(
1474 ldns_nsec3_bitmap(ldns_rr_list_rr(nsecs, i)),
1475 LDNS_RR_TYPE_CNAME)) {
1476 result = LDNS_STATUS_OK;
1481 result = LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
1482 } else if (packet_nodata && packet_qtype == LDNS_RR_TYPE_DS) {
1484 /* note: up to XXX this is the same as for 8.5 */
1485 hashed_name = ldns_nsec3_hash_name_frm_nsec3(ldns_rr_list_rr(nsecs,
1489 (void) ldns_dname_cat(hashed_name, zone_name);
1490 for (i = 0; i < ldns_rr_list_rr_count(nsecs); i++) {
1491 if (ldns_dname_compare(hashed_name,
1492 ldns_rr_owner(ldns_rr_list_rr(nsecs,
1495 if (!ldns_nsec_bitmap_covers_type(
1496 ldns_nsec3_bitmap(ldns_rr_list_rr(nsecs, i)),
1499 !ldns_nsec_bitmap_covers_type(
1500 ldns_nsec3_bitmap(ldns_rr_list_rr(nsecs, i)),
1501 LDNS_RR_TYPE_CNAME)) {
1502 result = LDNS_STATUS_OK;
1508 /* XXX see note above */
1509 result = LDNS_STATUS_DNSSEC_NSEC_RR_NOT_COVERED;
1513 ldns_rdf_deep_free(zone_name);
1516 #endif /* HAVE_SSL */
1520 ldns_gost2pkey_raw(unsigned char* key, size_t keylen)
1522 /* prefix header for X509 encoding */
1523 uint8_t asn[37] = { 0x30, 0x63, 0x30, 0x1c, 0x06, 0x06, 0x2a, 0x85,
1524 0x03, 0x02, 0x02, 0x13, 0x30, 0x12, 0x06, 0x07, 0x2a, 0x85,
1525 0x03, 0x02, 0x02, 0x23, 0x01, 0x06, 0x07, 0x2a, 0x85, 0x03,
1526 0x02, 0x02, 0x1e, 0x01, 0x03, 0x43, 0x00, 0x04, 0x40};
1527 unsigned char encoded[37+64];
1528 const unsigned char* pp;
1530 /* key wrong size */
1534 /* create evp_key */
1535 memmove(encoded, asn, 37);
1536 memmove(encoded+37, key, 64);
1537 pp = (unsigned char*)&encoded[0];
1539 return d2i_PUBKEY(NULL, &pp, (int)sizeof(encoded));
1543 ldns_verify_rrsig_gost_raw(unsigned char* sig, size_t siglen,
1544 ldns_buffer* rrset, unsigned char* key, size_t keylen)
1549 (void) ldns_key_EVP_load_gost_id();
1550 evp_key = ldns_gost2pkey_raw(key, keylen);
1552 /* could not convert key */
1553 return LDNS_STATUS_CRYPTO_BOGUS;
1556 /* verify signature */
1557 result = ldns_verify_rrsig_evp_raw(sig, siglen, rrset,
1558 evp_key, EVP_get_digestbyname("md_gost94"));
1559 EVP_PKEY_free(evp_key);
1567 ldns_ecdsa2pkey_raw(unsigned char* key, size_t keylen, uint8_t algo)
1569 unsigned char buf[256+2]; /* sufficient for 2*384/8+1 */
1570 const unsigned char* pp = buf;
1573 /* check length, which uncompressed must be 2 bignums */
1574 if(algo == LDNS_ECDSAP256SHA256) {
1575 if(keylen != 2*256/8) return NULL;
1576 ec = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);
1577 } else if(algo == LDNS_ECDSAP384SHA384) {
1578 if(keylen != 2*384/8) return NULL;
1579 ec = EC_KEY_new_by_curve_name(NID_secp384r1);
1581 if(!ec) return NULL;
1582 if(keylen+1 > sizeof(buf))
1583 return NULL; /* sanity check */
1584 /* prepend the 0x02 (from docs) (or actually 0x04 from implementation
1585 * of openssl) for uncompressed data */
1586 buf[0] = POINT_CONVERSION_UNCOMPRESSED;
1587 memmove(buf+1, key, keylen);
1588 if(!o2i_ECPublicKey(&ec, &pp, (int)keylen+1)) {
1592 evp_key = EVP_PKEY_new();
1597 EVP_PKEY_assign_EC_KEY(evp_key, ec);
1602 ldns_verify_rrsig_ecdsa_raw(unsigned char* sig, size_t siglen,
1603 ldns_buffer* rrset, unsigned char* key, size_t keylen, uint8_t algo)
1609 evp_key = ldns_ecdsa2pkey_raw(key, keylen, algo);
1611 /* could not convert key */
1612 return LDNS_STATUS_CRYPTO_BOGUS;
1614 if(algo == LDNS_ECDSAP256SHA256)
1616 else d = EVP_sha384(); /* LDNS_ECDSAP384SHA384 */
1617 result = ldns_verify_rrsig_evp_raw(sig, siglen, rrset, evp_key, d);
1618 EVP_PKEY_free(evp_key);
1624 ldns_verify_rrsig_buffers(ldns_buffer *rawsig_buf, ldns_buffer *verify_buf,
1625 ldns_buffer *key_buf, uint8_t algo)
1627 return ldns_verify_rrsig_buffers_raw(
1628 (unsigned char*)ldns_buffer_begin(rawsig_buf),
1629 ldns_buffer_position(rawsig_buf),
1631 (unsigned char*)ldns_buffer_begin(key_buf),
1632 ldns_buffer_position(key_buf), algo);
1636 ldns_verify_rrsig_buffers_raw(unsigned char* sig, size_t siglen,
1637 ldns_buffer *verify_buf, unsigned char* key, size_t keylen,
1640 /* check for right key */
1643 case LDNS_DSA_NSEC3:
1644 return ldns_verify_rrsig_dsa_raw(sig,
1651 case LDNS_RSASHA1_NSEC3:
1652 return ldns_verify_rrsig_rsasha1_raw(sig,
1659 case LDNS_RSASHA256:
1660 return ldns_verify_rrsig_rsasha256_raw(sig,
1666 case LDNS_RSASHA512:
1667 return ldns_verify_rrsig_rsasha512_raw(sig,
1676 return ldns_verify_rrsig_gost_raw(sig, siglen, verify_buf,
1681 case LDNS_ECDSAP256SHA256:
1682 case LDNS_ECDSAP384SHA384:
1683 return ldns_verify_rrsig_ecdsa_raw(sig, siglen, verify_buf,
1688 return ldns_verify_rrsig_rsamd5_raw(sig,
1695 /* do you know this alg?! */
1696 return LDNS_STATUS_CRYPTO_UNKNOWN_ALGO;
1702 * Reset the ttl in the rrset with the orig_ttl from the sig
1703 * and update owner name if it was wildcard
1704 * Also canonicalizes the rrset.
1705 * @param rrset: rrset to modify
1706 * @param sig: signature to take TTL and wildcard values from
1709 ldns_rrset_use_signature_ttl(ldns_rr_list* rrset_clone, ldns_rr* rrsig)
1713 uint8_t label_count;
1714 ldns_rdf *wildcard_name;
1715 ldns_rdf *wildcard_chopped;
1716 ldns_rdf *wildcard_chopped_tmp;
1718 orig_ttl = ldns_rdf2native_int32( ldns_rr_rdf(rrsig, 3));
1719 label_count = ldns_rdf2native_int8(ldns_rr_rdf(rrsig, 2));
1721 for(i = 0; i < ldns_rr_list_rr_count(rrset_clone); i++) {
1723 ldns_dname_label_count(
1724 ldns_rr_owner(ldns_rr_list_rr(rrset_clone, i)))) {
1725 (void) ldns_str2rdf_dname(&wildcard_name, "*");
1726 wildcard_chopped = ldns_rdf_clone(ldns_rr_owner(
1727 ldns_rr_list_rr(rrset_clone, i)));
1728 while (label_count < ldns_dname_label_count(wildcard_chopped)) {
1729 wildcard_chopped_tmp = ldns_dname_left_chop(
1731 ldns_rdf_deep_free(wildcard_chopped);
1732 wildcard_chopped = wildcard_chopped_tmp;
1734 (void) ldns_dname_cat(wildcard_name, wildcard_chopped);
1735 ldns_rdf_deep_free(wildcard_chopped);
1736 ldns_rdf_deep_free(ldns_rr_owner(ldns_rr_list_rr(
1738 ldns_rr_set_owner(ldns_rr_list_rr(rrset_clone, i),
1741 ldns_rr_set_ttl(ldns_rr_list_rr(rrset_clone, i), orig_ttl);
1742 /* convert to lowercase */
1743 ldns_rr2canonical(ldns_rr_list_rr(rrset_clone, i));
1748 * Make raw signature buffer out of rrsig
1749 * @param rawsig_buf: raw signature buffer for result
1750 * @param rrsig: signature to convert
1751 * @return OK or more specific error.
1754 ldns_rrsig2rawsig_buffer(ldns_buffer* rawsig_buf, ldns_rr* rrsig)
1756 uint8_t sig_algo = ldns_rdf2native_int8(ldns_rr_rdf(rrsig, 1));
1757 /* check for known and implemented algo's now (otherwise
1758 * the function could return a wrong error
1760 /* create a buffer with signature rdata */
1761 /* for some algorithms we need other data than for others... */
1762 /* (the DSA API wants DER encoding for instance) */
1767 case LDNS_RSASHA1_NSEC3:
1769 case LDNS_RSASHA256:
1770 case LDNS_RSASHA512:
1775 if (ldns_rdf2buffer_wire(rawsig_buf,
1776 ldns_rr_rdf(rrsig, 8)) != LDNS_STATUS_OK) {
1777 return LDNS_STATUS_MEM_ERR;
1781 case LDNS_DSA_NSEC3:
1782 /* EVP takes rfc2459 format, which is a tad longer than dns format */
1783 if (ldns_convert_dsa_rrsig_rdf2asn1(rawsig_buf,
1784 ldns_rr_rdf(rrsig, 8)) != LDNS_STATUS_OK) {
1786 if (ldns_rdf2buffer_wire(rawsig_buf,
1787 ldns_rr_rdf(rrsig, 8)) != LDNS_STATUS_OK) {
1789 return LDNS_STATUS_MEM_ERR;
1793 case LDNS_ECDSAP256SHA256:
1794 case LDNS_ECDSAP384SHA384:
1795 /* EVP produces an ASN prefix on the signature, which is
1796 * not used in the DNS */
1797 if (ldns_convert_ecdsa_rrsig_rdf2asn1(rawsig_buf,
1798 ldns_rr_rdf(rrsig, 8)) != LDNS_STATUS_OK) {
1799 return LDNS_STATUS_MEM_ERR;
1806 return LDNS_STATUS_CRYPTO_ALGO_NOT_IMPL;
1808 return LDNS_STATUS_CRYPTO_UNKNOWN_ALGO;
1810 return LDNS_STATUS_OK;
1814 * Check RRSIG timestamps against the given 'now' time.
1815 * @param rrsig: signature to check.
1816 * @param now: the current time in seconds epoch.
1817 * @return status code LDNS_STATUS_OK if all is fine.
1820 ldns_rrsig_check_timestamps(ldns_rr* rrsig, int32_t now)
1822 int32_t inception, expiration;
1824 /* check the signature time stamps */
1825 inception = (int32_t)ldns_rdf2native_time_t(
1826 ldns_rr_rrsig_inception(rrsig));
1827 expiration = (int32_t)ldns_rdf2native_time_t(
1828 ldns_rr_rrsig_expiration(rrsig));
1830 if (expiration - inception < 0) {
1831 /* bad sig, expiration before inception?? Tsssg */
1832 return LDNS_STATUS_CRYPTO_EXPIRATION_BEFORE_INCEPTION;
1834 if (now - inception < 0) {
1835 /* bad sig, inception date has not yet come to pass */
1836 return LDNS_STATUS_CRYPTO_SIG_NOT_INCEPTED;
1838 if (expiration - now < 0) {
1839 /* bad sig, expiration date has passed */
1840 return LDNS_STATUS_CRYPTO_SIG_EXPIRED;
1842 return LDNS_STATUS_OK;
1846 * Prepare for verification.
1847 * @param rawsig_buf: raw signature buffer made ready.
1848 * @param verify_buf: data for verification buffer made ready.
1849 * @param rrset_clone: made ready.
1850 * @param rrsig: signature to prepare for.
1851 * @return LDNS_STATUS_OK is all went well. Otherwise specific error.
1854 ldns_prepare_for_verify(ldns_buffer* rawsig_buf, ldns_buffer* verify_buf,
1855 ldns_rr_list* rrset_clone, ldns_rr* rrsig)
1859 /* canonicalize the sig */
1860 ldns_dname2canonical(ldns_rr_owner(rrsig));
1862 /* check if the typecovered is equal to the type checked */
1863 if (ldns_rdf2rr_type(ldns_rr_rrsig_typecovered(rrsig)) !=
1864 ldns_rr_get_type(ldns_rr_list_rr(rrset_clone, 0)))
1865 return LDNS_STATUS_CRYPTO_TYPE_COVERED_ERR;
1867 /* create a buffer with b64 signature rdata */
1868 result = ldns_rrsig2rawsig_buffer(rawsig_buf, rrsig);
1869 if(result != LDNS_STATUS_OK)
1872 /* use TTL from signature. Use wildcard names for wildcards */
1873 /* also canonicalizes rrset_clone */
1874 ldns_rrset_use_signature_ttl(rrset_clone, rrsig);
1876 /* sort the rrset in canonical order */
1877 ldns_rr_list_sort(rrset_clone);
1879 /* put the signature rr (without the b64) to the verify_buf */
1880 if (ldns_rrsig2buffer_wire(verify_buf, rrsig) != LDNS_STATUS_OK)
1881 return LDNS_STATUS_MEM_ERR;
1883 /* add the rrset in verify_buf */
1884 if(ldns_rr_list2buffer_wire(verify_buf, rrset_clone)
1886 return LDNS_STATUS_MEM_ERR;
1888 return LDNS_STATUS_OK;
1892 * Check if a key matches a signature.
1893 * Checks keytag, sigalgo and signature.
1894 * @param rawsig_buf: raw signature buffer for verify
1895 * @param verify_buf: raw data buffer for verify
1896 * @param rrsig: the rrsig
1897 * @param key: key to attempt.
1898 * @return LDNS_STATUS_OK if OK, else some specific error.
1901 ldns_verify_test_sig_key(ldns_buffer* rawsig_buf, ldns_buffer* verify_buf,
1902 ldns_rr* rrsig, ldns_rr* key)
1904 uint8_t sig_algo = ldns_rdf2native_int8(ldns_rr_rdf(rrsig, 1));
1906 /* before anything, check if the keytags match */
1907 if (ldns_calc_keytag(key)
1909 ldns_rdf2native_int16(ldns_rr_rrsig_keytag(rrsig))
1911 ldns_buffer* key_buf = ldns_buffer_new(LDNS_MAX_PACKETLEN);
1912 ldns_status result = LDNS_STATUS_ERR;
1914 /* put the key-data in a buffer, that's the third rdf, with
1915 * the base64 encoded key data */
1916 if (ldns_rdf2buffer_wire(key_buf, ldns_rr_rdf(key, 3))
1917 != LDNS_STATUS_OK) {
1918 ldns_buffer_free(key_buf);
1919 /* returning is bad might screw up
1920 good keys later in the list
1922 return LDNS_STATUS_ERR;
1925 if (sig_algo == ldns_rdf2native_int8(ldns_rr_rdf(key, 2))) {
1926 result = ldns_verify_rrsig_buffers(rawsig_buf,
1927 verify_buf, key_buf, sig_algo);
1929 /* No keys with the corresponding algorithm are found */
1930 result = LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY;
1933 ldns_buffer_free(key_buf);
1937 /* No keys with the corresponding keytag are found */
1938 return LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY;
1944 * - create the wire fmt of the b64 key rdata
1945 * - create the wire fmt of the sorted rrset
1946 * - create the wire fmt of the b64 sig rdata
1947 * - create the wire fmt of the sig without the b64 rdata
1948 * - cat the sig data (without b64 rdata) to the rrset
1949 * - verify the rrset+sig, with the b64 data and the b64 key data
1952 ldns_verify_rrsig_keylist(ldns_rr_list *rrset,
1954 const ldns_rr_list *keys,
1955 ldns_rr_list *good_keys)
1958 ldns_rr_list *valid = ldns_rr_list_new();
1960 return LDNS_STATUS_MEM_ERR;
1962 result = ldns_verify_rrsig_keylist_notime(rrset, rrsig, keys, valid);
1963 if(result != LDNS_STATUS_OK) {
1964 ldns_rr_list_free(valid);
1968 /* check timestamps last; its OK except time */
1969 result = ldns_rrsig_check_timestamps(rrsig, (int32_t)time(NULL));
1970 if(result != LDNS_STATUS_OK) {
1971 ldns_rr_list_free(valid);
1975 ldns_rr_list_cat(good_keys, valid);
1976 ldns_rr_list_free(valid);
1977 return LDNS_STATUS_OK;
1981 ldns_verify_rrsig_keylist_notime(ldns_rr_list *rrset,
1983 const ldns_rr_list *keys,
1984 ldns_rr_list *good_keys)
1986 ldns_buffer *rawsig_buf;
1987 ldns_buffer *verify_buf;
1989 ldns_status result, status;
1990 ldns_rr_list *rrset_clone;
1991 ldns_rr_list *validkeys;
1994 return LDNS_STATUS_ERR;
1997 validkeys = ldns_rr_list_new();
1999 return LDNS_STATUS_MEM_ERR;
2002 /* clone the rrset so that we can fiddle with it */
2003 rrset_clone = ldns_rr_list_clone(rrset);
2005 /* create the buffers which will certainly hold the raw data */
2006 rawsig_buf = ldns_buffer_new(LDNS_MAX_PACKETLEN);
2007 verify_buf = ldns_buffer_new(LDNS_MAX_PACKETLEN);
2009 result = ldns_prepare_for_verify(rawsig_buf, verify_buf,
2010 rrset_clone, rrsig);
2011 if(result != LDNS_STATUS_OK) {
2012 ldns_buffer_free(verify_buf);
2013 ldns_buffer_free(rawsig_buf);
2014 ldns_rr_list_deep_free(rrset_clone);
2015 ldns_rr_list_free(validkeys);
2019 result = LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY;
2020 for(i = 0; i < ldns_rr_list_rr_count(keys); i++) {
2021 status = ldns_verify_test_sig_key(rawsig_buf, verify_buf,
2022 rrsig, ldns_rr_list_rr(keys, i));
2023 if (status == LDNS_STATUS_OK) {
2024 /* one of the keys has matched, don't break
2025 * here, instead put the 'winning' key in
2026 * the validkey list and return the list
2028 if (!ldns_rr_list_push_rr(validkeys,
2029 ldns_rr_list_rr(keys,i))) {
2030 /* couldn't push the key?? */
2031 ldns_buffer_free(rawsig_buf);
2032 ldns_buffer_free(verify_buf);
2033 ldns_rr_list_deep_free(rrset_clone);
2034 ldns_rr_list_free(validkeys);
2035 return LDNS_STATUS_MEM_ERR;
2041 if (result == LDNS_STATUS_CRYPTO_NO_MATCHING_KEYTAG_DNSKEY) {
2046 /* no longer needed */
2047 ldns_rr_list_deep_free(rrset_clone);
2048 ldns_buffer_free(rawsig_buf);
2049 ldns_buffer_free(verify_buf);
2051 if (ldns_rr_list_rr_count(validkeys) == 0) {
2052 /* no keys were added, return last error */
2053 ldns_rr_list_free(validkeys);
2057 /* do not check timestamps */
2059 ldns_rr_list_cat(good_keys, validkeys);
2060 ldns_rr_list_free(validkeys);
2061 return LDNS_STATUS_OK;
2065 ldns_verify_rrsig(ldns_rr_list *rrset, ldns_rr *rrsig, ldns_rr *key)
2067 ldns_buffer *rawsig_buf;
2068 ldns_buffer *verify_buf;
2070 ldns_rr_list *rrset_clone;
2073 return LDNS_STATUS_NO_DATA;
2075 /* clone the rrset so that we can fiddle with it */
2076 rrset_clone = ldns_rr_list_clone(rrset);
2077 /* create the buffers which will certainly hold the raw data */
2078 rawsig_buf = ldns_buffer_new(LDNS_MAX_PACKETLEN);
2079 verify_buf = ldns_buffer_new(LDNS_MAX_PACKETLEN);
2081 result = ldns_prepare_for_verify(rawsig_buf, verify_buf,
2082 rrset_clone, rrsig);
2083 if(result != LDNS_STATUS_OK) {
2084 ldns_rr_list_deep_free(rrset_clone);
2085 ldns_buffer_free(rawsig_buf);
2086 ldns_buffer_free(verify_buf);
2089 result = ldns_verify_test_sig_key(rawsig_buf, verify_buf,
2091 /* no longer needed */
2092 ldns_rr_list_deep_free(rrset_clone);
2093 ldns_buffer_free(rawsig_buf);
2094 ldns_buffer_free(verify_buf);
2096 /* check timestamp last, apart from time its OK */
2097 if(result == LDNS_STATUS_OK)
2098 result = ldns_rrsig_check_timestamps(rrsig,
2099 (int32_t)time(NULL));
2105 ldns_verify_rrsig_evp(ldns_buffer *sig,
2108 const EVP_MD *digest_type)
2110 return ldns_verify_rrsig_evp_raw(
2111 (unsigned char*)ldns_buffer_begin(sig),
2112 ldns_buffer_position(sig),
2119 ldns_verify_rrsig_evp_raw(unsigned char *sig, size_t siglen,
2120 ldns_buffer *rrset, EVP_PKEY *key, const EVP_MD *digest_type)
2125 EVP_MD_CTX_init(&ctx);
2127 EVP_VerifyInit(&ctx, digest_type);
2128 EVP_VerifyUpdate(&ctx,
2129 ldns_buffer_begin(rrset),
2130 ldns_buffer_position(rrset));
2131 res = EVP_VerifyFinal(&ctx, sig, (unsigned int) siglen, key);
2133 EVP_MD_CTX_cleanup(&ctx);
2136 return LDNS_STATUS_OK;
2137 } else if (res == 0) {
2138 return LDNS_STATUS_CRYPTO_BOGUS;
2140 /* TODO how to communicate internal SSL error?
2141 let caller use ssl's get_error() */
2142 return LDNS_STATUS_SSL_ERR;
2146 ldns_verify_rrsig_dsa(ldns_buffer *sig, ldns_buffer *rrset, ldns_buffer *key)
2148 return ldns_verify_rrsig_dsa_raw(
2149 (unsigned char*) ldns_buffer_begin(sig),
2150 ldns_buffer_position(sig),
2152 (unsigned char*) ldns_buffer_begin(key),
2153 ldns_buffer_position(key));
2157 ldns_verify_rrsig_rsasha1(ldns_buffer *sig, ldns_buffer *rrset, ldns_buffer *key)
2159 return ldns_verify_rrsig_rsasha1_raw(
2160 (unsigned char*)ldns_buffer_begin(sig),
2161 ldns_buffer_position(sig),
2163 (unsigned char*) ldns_buffer_begin(key),
2164 ldns_buffer_position(key));
2168 ldns_verify_rrsig_rsamd5(ldns_buffer *sig, ldns_buffer *rrset, ldns_buffer *key)
2170 return ldns_verify_rrsig_rsamd5_raw(
2171 (unsigned char*)ldns_buffer_begin(sig),
2172 ldns_buffer_position(sig),
2174 (unsigned char*) ldns_buffer_begin(key),
2175 ldns_buffer_position(key));
2179 ldns_verify_rrsig_dsa_raw(unsigned char* sig, size_t siglen,
2180 ldns_buffer* rrset, unsigned char* key, size_t keylen)
2185 evp_key = EVP_PKEY_new();
2186 EVP_PKEY_assign_DSA(evp_key, ldns_key_buf2dsa_raw(key, keylen));
2187 result = ldns_verify_rrsig_evp_raw(sig,
2192 EVP_PKEY_free(evp_key);
2198 ldns_verify_rrsig_rsasha1_raw(unsigned char* sig, size_t siglen,
2199 ldns_buffer* rrset, unsigned char* key, size_t keylen)
2204 evp_key = EVP_PKEY_new();
2205 EVP_PKEY_assign_RSA(evp_key, ldns_key_buf2rsa_raw(key, keylen));
2206 result = ldns_verify_rrsig_evp_raw(sig,
2211 EVP_PKEY_free(evp_key);
2217 ldns_verify_rrsig_rsasha256_raw(unsigned char* sig,
2227 evp_key = EVP_PKEY_new();
2228 EVP_PKEY_assign_RSA(evp_key, ldns_key_buf2rsa_raw(key, keylen));
2229 result = ldns_verify_rrsig_evp_raw(sig,
2234 EVP_PKEY_free(evp_key);
2238 /* touch these to prevent compiler warnings */
2244 return LDNS_STATUS_CRYPTO_UNKNOWN_ALGO;
2249 ldns_verify_rrsig_rsasha512_raw(unsigned char* sig,
2259 evp_key = EVP_PKEY_new();
2260 EVP_PKEY_assign_RSA(evp_key, ldns_key_buf2rsa_raw(key, keylen));
2261 result = ldns_verify_rrsig_evp_raw(sig,
2266 EVP_PKEY_free(evp_key);
2270 /* touch these to prevent compiler warnings */
2276 return LDNS_STATUS_CRYPTO_UNKNOWN_ALGO;
2282 ldns_verify_rrsig_rsamd5_raw(unsigned char* sig,
2291 evp_key = EVP_PKEY_new();
2292 EVP_PKEY_assign_RSA(evp_key, ldns_key_buf2rsa_raw(key, keylen));
2293 result = ldns_verify_rrsig_evp_raw(sig,
2298 EVP_PKEY_free(evp_key);
nant's projects / dragonfly.git / blob