aboutsummaryrefslogtreecommitdiff
path: root/middleware/dnssec/rrsig.go
diff options
context:
space:
mode:
Diffstat (limited to 'middleware/dnssec/rrsig.go')
-rw-r--r--middleware/dnssec/rrsig.go53
1 files changed, 0 insertions, 53 deletions
diff --git a/middleware/dnssec/rrsig.go b/middleware/dnssec/rrsig.go
deleted file mode 100644
index c68413622..000000000
--- a/middleware/dnssec/rrsig.go
+++ /dev/null
@@ -1,53 +0,0 @@
-package dnssec
-
-import "github.com/miekg/dns"
-
-// newRRSIG return a new RRSIG, with all fields filled out, except the signed data.
-func (k *DNSKEY) newRRSIG(signerName string, ttl, incep, expir uint32) *dns.RRSIG {
- sig := new(dns.RRSIG)
-
- sig.Hdr.Rrtype = dns.TypeRRSIG
- sig.Algorithm = k.K.Algorithm
- sig.KeyTag = k.keytag
- sig.SignerName = signerName
- sig.Hdr.Ttl = ttl
- sig.OrigTtl = origTTL
-
- sig.Inception = incep
- sig.Expiration = expir
-
- return sig
-}
-
-type rrset struct {
- qname string
- qtype uint16
-}
-
-// rrSets returns rrs as a map of RRsets. It skips RRSIG and OPT records as those don't need to be signed.
-func rrSets(rrs []dns.RR) map[rrset][]dns.RR {
- m := make(map[rrset][]dns.RR)
-
- for _, r := range rrs {
- if r.Header().Rrtype == dns.TypeRRSIG || r.Header().Rrtype == dns.TypeOPT {
- continue
- }
-
- if s, ok := m[rrset{r.Header().Name, r.Header().Rrtype}]; ok {
- s = append(s, r)
- m[rrset{r.Header().Name, r.Header().Rrtype}] = s
- continue
- }
-
- s := make([]dns.RR, 1, 3)
- s[0] = r
- m[rrset{r.Header().Name, r.Header().Rrtype}] = s
- }
-
- if len(m) > 0 {
- return m
- }
- return nil
-}
-
-const origTTL = 3600
generated by cgit v1.2.3 (git 2.39.1) at 2025-07-24 04:20:48 +0000