crypto/openssh/dns.h

*ba1276acSMatthew Dillon/* $OpenBSD: dns.h,v 1.20 2023/02/10 04:56:30 djm Exp $ */
18de8d7fSPeter Avalos
18de8d7fSPeter Avalos/*
18de8d7fSPeter Avalos * Copyright (c) 2003 Wesley Griffin. All rights reserved.
18de8d7fSPeter Avalos * Copyright (c) 2003 Jakob Schlyter. All rights reserved.
18de8d7fSPeter Avalos *
18de8d7fSPeter Avalos * Redistribution and use in source and binary forms, with or without
18de8d7fSPeter Avalos * modification, are permitted provided that the following conditions
18de8d7fSPeter Avalos * are met:
18de8d7fSPeter Avalos * 1. Redistributions of source code must retain the above copyright
18de8d7fSPeter Avalos *    notice, this list of conditions and the following disclaimer.
18de8d7fSPeter Avalos * 2. Redistributions in binary form must reproduce the above copyright
18de8d7fSPeter Avalos *    notice, this list of conditions and the following disclaimer in the
18de8d7fSPeter Avalos *    documentation and/or other materials provided with the distribution.
18de8d7fSPeter Avalos *
18de8d7fSPeter Avalos * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
18de8d7fSPeter Avalos * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
18de8d7fSPeter Avalos * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
18de8d7fSPeter Avalos * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
18de8d7fSPeter Avalos * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
18de8d7fSPeter Avalos * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
18de8d7fSPeter Avalos * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
18de8d7fSPeter Avalos * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
18de8d7fSPeter Avalos * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
18de8d7fSPeter Avalos * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
18de8d7fSPeter Avalos */
18de8d7fSPeter Avalos
18de8d7fSPeter Avalos#ifndef DNS_H
18de8d7fSPeter Avalos#define DNS_H
18de8d7fSPeter Avalos
18de8d7fSPeter Avalosenum sshfp_types {
99e85e0dSPeter Avalos	SSHFP_KEY_RESERVED = 0,
99e85e0dSPeter Avalos	SSHFP_KEY_RSA = 1,
99e85e0dSPeter Avalos	SSHFP_KEY_DSA = 2,
36e94dc5SPeter Avalos	SSHFP_KEY_ECDSA = 3,
664f4763Szrj	SSHFP_KEY_ED25519 = 4,
664f4763Szrj	SSHFP_KEY_XMSS = 5
18de8d7fSPeter Avalos};
18de8d7fSPeter Avalos
18de8d7fSPeter Avalosenum sshfp_hashes {
99e85e0dSPeter Avalos	SSHFP_HASH_RESERVED = 0,
99e85e0dSPeter Avalos	SSHFP_HASH_SHA1 = 1,
99e85e0dSPeter Avalos	SSHFP_HASH_SHA256 = 2,
99e85e0dSPeter Avalos	SSHFP_HASH_MAX = 3
18de8d7fSPeter Avalos};
18de8d7fSPeter Avalos
18de8d7fSPeter Avalos#define DNS_RDATACLASS_IN	1
18de8d7fSPeter Avalos#define DNS_RDATATYPE_SSHFP	44
18de8d7fSPeter Avalos
18de8d7fSPeter Avalos#define DNS_VERIFY_FOUND	0x00000001
18de8d7fSPeter Avalos#define DNS_VERIFY_MATCH	0x00000002
18de8d7fSPeter Avalos#define DNS_VERIFY_SECURE	0x00000004
50a69bb5SSascha Wildner#define DNS_VERIFY_FAILED	0x00000008
18de8d7fSPeter Avalos
e9778795SPeter Avalosint	verify_host_key_dns(const char *, struct sockaddr *,
e9778795SPeter Avalos    struct sshkey *, int *);
*ba1276acSMatthew Dillonint	export_dns_rr(const char *, struct sshkey *, FILE *, int, int);
18de8d7fSPeter Avalos
18de8d7fSPeter Avalos#endif /* DNS_H */