unbound/validator/val_secalgo.c

495  * @param sigblock: signature rdata field from RRSIG
496  * @param sigblock_len: length of sigblock data.
504 verify_canonrrset(sldns_buffer* buf, int algo, unsigned char* sigblock,
522 		if(!setup_dsa_sig(&sigblock, &sigblock_len)) {
533 		if(!setup_ecdsa_sig(&sigblock, &sigblock_len)) {
548 		if(dofree) free(sigblock);
555 		if(dofree) free(sigblock);
559 	res = EVP_VerifyFinal(&ctx, sigblock, sigblock_len, evp_key);
563 		if(dofree) free(sigblock);
569 		free(sigblock);
1013  * @param sigblock: signature rdata field from RRSIG
1014  * @param sigblock_len: length of sigblock data.
1022 verify_canonrrset(sldns_buffer* buf, int algo, unsigned char* sigblock,
1032 	SECItem secsig = {siBuffer, sigblock, sigblock_len};
1285 _verify_nettle_dsa(sldns_buffer* buf, unsigned char* sigblock,
1300 		if(key[0] != sigblock[0])
1302 		nettle_mpz_set_str_256_u(signature.r, 20, sigblock+1);
1303 		nettle_mpz_set_str_256_u(signature.s, 20, sigblock+1+20);
1309 			(uint8_t*)sigblock) != ASN1_ITERATOR_CONSTRUCTED
1358 	/* Digest content of "buf" and verify its DSA signature in "sigblock"*/
1373 _verify_nettle_rsa(sldns_buffer* buf, unsigned int digest_size, char* sigblock,
1410 	/* Digest content of "buf" and verify its RSA signature in "sigblock"*/
1411 	nettle_mpz_init_set_str_256_u(signature, sigblock_len, (uint8_t*)sigblock);
1453 _verify_nettle_ecdsa(sldns_buffer* buf, unsigned int digest_size, unsigned char* sigblock,
1475 			nettle_mpz_set_str_256_u(signature.r, SHA256_DIGEST_SIZE, sigblock);
1476 			nettle_mpz_set_str_256_u(signature.s, SHA256_DIGEST_SIZE, sigblock+SHA256_DIGEST_SIZE);
1492 			nettle_mpz_set_str_256_u(signature.r, SHA384_DIGEST_SIZE, sigblock);
1493 			nettle_mpz_set_str_256_u(signature.s, SHA384_DIGEST_SIZE, sigblock+SHA384_DIGEST_SIZE);
1521  * @param sigblock: signature rdata field from RRSIG
1522  * @param sigblock_len: length of sigblock data.
1530 verify_canonrrset(sldns_buffer* buf, int algo, unsigned char* sigblock,
1544 		*reason = _verify_nettle_dsa(buf, sigblock, sigblock_len, key, keylen);
1560 		*reason = _verify_nettle_rsa(buf, digest_size, (char*)sigblock,
1572 		*reason = _verify_nettle_ecdsa(buf, digest_size, sigblock,