DNS.Message.Record.Data.NSEC3 (DNS v0.4.1)

View Source

DNS NSEC3 Record (Type 50)

The NSEC3 record provides authenticated denial of existence for DNSSEC, using hashed owner names instead of the original NSEC approach.

RFC 5155 defines the NSEC3 record format:

  • Hash Algorithm: 1 octet
  • Flags: 1 octet
  • Iterations: 2 octets
  • Salt Length: 1 octet
  • Salt: variable length
  • Hash Length: 1 octet
  • Next Hashed Owner Name: variable length
  • Type Bit Maps: variable length

Summary

Types

t()

Functions

from_iodata(raw, message \\ nil)
new(arg)

Types

t()

@type t() :: %DNS.Message.Record.Data.NSEC3{
  data:
    {hash_algorithm :: 0..255, flags :: 0..255, iterations :: 0..65535,
     salt :: binary(), next_hashed_owner_name :: binary(),
     type_bit_maps :: binary()},
  raw: bitstring(),
  rdlength: 0..65535,
  type: DNS.ResourceRecordType.t()
}

Functions

from_iodata(raw, message \\ nil)

@spec from_iodata(bitstring(), bitstring() | nil) :: t()

new(arg)

@spec new({integer(), integer(), integer(), binary(), binary(), binary()}) :: t()