dns/dnssec.go

package dns

import (
	"crypto/sha1"
	"time"
)

const (
	year68 = 2 << (32 - 1)
)

// Translate the RRSIG's incep. and expir. time to the correct date.
// Taking into account serial arithmetic (RFC 1982)
func timeToDate(t uint32) string {
	utc := time.UTC().Seconds()
	mod := (int64(t) - utc) / year68

	// If needed assume wrap around(s)
	ti := time.SecondsToUTC(int64(t) + (mod * year68)) // abs()? TODO
	return ti.Format("20060102030405")
}

// Using RFC1982 calculate if a signature is valid
func validSignaturePeriod(start, end uint32) bool {
	utc := time.UTC().Seconds() // maybe as parameter?? TODO MG
	return int64(start) <= utc && utc <= int64(end)
}

// Convert an DNSKEY record to a DS record.
func KeyToDS(k *RR_DNSKEY, hash int) *RR_DS {
	switch hash {
	case HashSHA1:
		var _ = sha1.New()

	case HashSHA256:

	}
	return nil
}

// Calculate the keytag of the DNSKEY
func KeyTag(k *RR_DNSKEY) int {
	return 0
}
prepare stuff for DNSSEC 2010-12-24 20:59:15 +11:00			`package dns`

More stuff added, first stab at using hashing functions 2010-12-25 21:43:12 +11:00			`import (`
			`"crypto/sha1"`
			`"time"`
			`)`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00
			`const (`
Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`year68 = 2 << (32 - 1)`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00			`)`

Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`// Translate the RRSIG's incep. and expir. time to the correct date.`
			`// Taking into account serial arithmetic (RFC 1982)`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00			`func timeToDate(t uint32) string {`
			`utc := time.UTC().Seconds()`
Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`mod := (int64(t) - utc) / year68`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00
Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`// If needed assume wrap around(s)`
			`ti := time.SecondsToUTC(int64(t) + (mod * year68)) // abs()? TODO`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00			`return ti.Format("20060102030405")`
			`}`

Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`// Using RFC1982 calculate if a signature is valid`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00			`func validSignaturePeriod(start, end uint32) bool {`
Documentation! Make the packet documentation much nicer. 2010-12-25 21:14:11 +11:00			`utc := time.UTC().Seconds() // maybe as parameter?? TODO MG`
			`return int64(start) <= utc && utc <= int64(end)`
Add signature helper function Do this in dnssec.go so that all DNSSEC stuff in contained in that file. Add testing too 2010-12-24 21:50:42 +11:00			`}`
More stuff added, first stab at using hashing functions 2010-12-25 21:43:12 +11:00
			`// Convert an DNSKEY record to a DS record.`
			`func KeyToDS(k RR_DNSKEY, hash int) RR_DS {`
			`switch hash {`
			`case HashSHA1:`
			`var _ = sha1.New()`

			`case HashSHA256:`

			`}`
			`return nil`
			`}`

			`// Calculate the keytag of the DNSKEY`
			`func KeyTag(k *RR_DNSKEY) int {`
			`return 0`
			`}`