D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
proc
/
self
/
root
/
lib64
/
perl5
/
vendor_perl
/
Net
/
DNS
/
RR
/
Filename :
TLSA.pm
back
Copy
package Net::DNS::RR::TLSA; # # $Id: TLSA.pm 1096 2012-12-28 13:35:15Z willem $ # use vars qw($VERSION); $VERSION = (qw$LastChangedRevision: 1096 $)[1]; # Unchanged since 1037 use base Net::DNS::RR; =head1 NAME Net::DNS::RR::TLSA - DNS TLSA resource record =cut sub decode_rdata { ## decode rdata from wire-format octet string my $self = shift; my ( $data, $offset ) = @_; my $next = $offset + $self->{rdlength}; @{$self}{qw(usage selector matchingtype)} = unpack "\@$offset C3", $$data; $offset += 3; $self->{certbin} = substr $$data, $offset, $next - $offset; } sub encode_rdata { ## encode rdata as wire-format octet string my $self = shift; return '' unless defined $self->{certbin}; return pack 'C3 a*', @{$self}{qw(usage selector matchingtype certbin)}; } sub format_rdata { ## format rdata portion of RR string. my $self = shift; return '' unless defined $self->{certbin}; my @params = map $self->$_, qw(usage selector matchingtype); my $certificate = $self->cert; $certificate =~ s/(\S{64})/$1\n/g; $certificate = "(\n$certificate )" if length $certificate > 40; return join ' ', @params, $certificate; } sub parse_rdata { ## populate RR from rdata in argument list my $self = shift; $self->$_(shift) for qw(usage selector matchingtype); $self->cert(@_); } sub usage { my $self = shift; $self->{usage} = shift if @_; return 0 + ( $self->{usage} || 0 ); } sub selector { my $self = shift; $self->{selector} = shift if @_; return 0 + ( $self->{selector} || 0 ); } sub matchingtype { my $self = shift; $self->{matchingtype} = shift if @_; return 0 + ( $self->{matchingtype} || 0 ); } sub cert { my $self = shift; $self->{certbin} = pack "H*", map { s/\s+//g; $_ } join "", @_ if @_; unpack "H*", $self->{certbin} || "" if defined wantarray; } sub certbin { my $self = shift; $self->{certbin} = shift if @_; $self->{certbin} || ""; } sub certificate { &cert; } 1; __END__ =head1 SYNOPSIS use Net::DNS; $rr = new Net::DNS::RR('name TLSA usage selector matchingtype certificate'); =head1 DESCRIPTION The Transport Layer Security Authentication (TLSA) DNS resource record is used to associate a TLS server certificate or public key with the domain name where the record is found, forming a "TLSA certificate association". The semantics of how the TLSA RR is interpreted are described in RFC6698. =head1 METHODS The available methods are those inherited from the base class augmented by the type-specific methods defined in this package. Use of undocumented package features or direct access to internal data structures is discouraged and could result in program termination or other unpredictable behaviour. =head2 usage $usage = $rr->usage; 8-bit integer value which specifies the provided association that will be used to match the certificate presented in the TLS handshake. =head2 selector $selector = $rr->selector; 8-bit integer value which specifies which part of the TLS certificate presented by the server will be matched against the association data. =head2 matchingtype $matchingtype = $rr->matchingtype; 8-bit integer value which specifies how the certificate association is presented. =head2 cert $cert = $rr->cert; Hexadecimal representation of the certificate data. =head2 certbin $certbin = $rr->certbin; Binary representation of the certificate data. =head1 COPYRIGHT Copyright (c)2012 Willem Toorop, NLnet Labs. Package template (c)2009,2012 O.M.Kolkman and R.W.Franks. All rights reserved. This program is free software; you may redistribute it and/or modify it under the same terms as Perl itself. =head1 SEE ALSO L<perl>, L<Net::DNS>, L<Net::DNS::RR>, RFC6698 =cut