536 	isc_boolean_t		delete;
672 				     isc_uint16_t keyid, isc_boolean_t delete);
2925 	int trusted = 0, revoked = 0, pending = 0;
2957 		 * If the add timer is still pending, this key is not
2961 			pending++;
2973 	if (trusted == 0 && pending != 0) {
2979 			     "%d key(s) revoked, %d still pending",
2980 			     revoked, pending);
3012 	 * Merge it into the current pending journal entry.
3148  * zone.  If a domain is no longer named in managed-keys, delete all keys
3189 	 * permanent and not RFC5011-maintained), delete them from the
4595  * Helper function to del_sigs(). We don't want to delete RRSIGs that
4603 	 * It's okay to delete a signature if there is an active ZSK
4613 	 * Failing that, it is *not* okay to delete a signature
4773 		 * delete the RRSIG.
5397 		 * We have a match.  If we were signing (!signing->delete)
5401 		 * the signatures (signing->delete), so any record indicating
5407 		if (!signing->delete && rdata.data[4] != 0) {
5418 	if (!signing->delete && !seen_done) {
5458  * delete the nsec3param record which indicates a full chain exists
6745 		if (first && signing->delete) {
6768 		if (signing->delete) {
6817 			if (!signing->delete &&
6826 			if (signing->delete &&
6873 			if (!signing->delete)
7367 	int pending = 0;
7628 					/* If initializing, delete now */
7657 					pending++;
7747 	 * see if there's pending keydata.  If so, we put a null key in
7750 	if (pending != 0)
8758 	/* More addresses pending? */
13676 		     isc_uint16_t keyid, isc_boolean_t delete)
13685 	result = zone_signwithkey(zone, algorithm, keyid, delete);
13759 		 isc_boolean_t delete)
13775 	signing->delete = delete;
13786 			if (current->delete != signing->delete)
14412 		 * Cause the zone to add/delete NSEC3 chains for the

Indexes created Thu Jun 27 20:29:42 MDT 2024