Lines Matching defs:sig
113 digestSIG(DNSOutput out, SIGBase sig) {
114 out.writeU16(sig.getTypeCovered());
115 out.writeU8(sig.getAlgorithm());
116 out.writeU8(sig.getLabels());
117 out.writeU32(sig.getOrigTTL());
118 out.writeU32(sig.getExpire().getTime() / 1000);
119 out.writeU32(sig.getTimeSigned().getTime() / 1000);
120 out.writeU16(sig.getFootprint());
121 sig.getSigner().toWireCanonical(out);
126 * SIG record and the RRsets to be signed/verified. This does not perform
174 * SIG(0) record and the message to be signed. This does not perform
176 * @param sig The SIG record used to sign the rrset.
182 digestMessage(SIGRecord sig, Message msg, byte [] previous) {
184 digestSIG(out, sig);
226 private SIGBase sig;
228 KeyMismatchException(KEYBase key, SIGBase sig) {
234 sig.getSigner() + "/" +
235 DNSSEC.Algorithm.string(sig.getAlgorithm()) + "/" +
236 sig.getFootprint());
769 matches(SIGBase sig, KEYBase key)
771 return (key.getAlgorithm() == sig.getAlgorithm() &&
772 key.getFootprint() == sig.getFootprint() &&
773 key.getName().equals(sig.getSigner()));
946 SIGRecord sig = new SIGRecord(Name.root, DClass.ANY, 0, 0,
951 digestSIG(out, sig);
956 sig.setSignature(sign(privkey, key.getPublicKey(),
958 return sig;
962 verifyMessage(Message message, byte [] bytes, SIGRecord sig, SIGRecord previous,
965 if (!matches(sig, key))
966 throw new KeyMismatchException(key, sig);
970 if (now.compareTo(sig.getExpire()) > 0)
971 throw new SignatureExpiredException(sig.getExpire(), now);
972 if (now.compareTo(sig.getTimeSigned()) < 0)
973 throw new SignatureNotYetValidException(sig.getTimeSigned(),
977 digestSIG(out, sig);
988 verify(key.getPublicKey(), sig.getAlgorithm(),
989 out.toByteArray(), sig.getSignature());
