DNS_SIG_DATA structure

The DNS_SIG_DATA structure represents a DNS cryptographic signature (SIG) resource record (RR) as specified in RFC 2931 and RFC 2535.

Syntax

typedef struct {
 PWSTR pNameSigner;
 WORD  wTypeCovered;
 BYTE  chAlgorithm;
 BYTE  chLabelCount;
 DWORD dwOriginalTtl;
 DWORD dwExpiration;
 DWORD dwTimeSigned;
 WORD  wKeyTag;
 WORD  Pad;
 BYTE  Signature[1];
} DNS_SIG_DATA, *PDNS_SIG_DATA;

Members

• pNameSigner
  A pointer to a string that represents the name of the Signature generator.

• wTypeCovered
  The DNS Record Type of the signed RRs.

• chAlgorithm
  A value that specifies the algorithm used to generate Signature. The possible values are shown in the following table.

  Value	Meaning
  1	RSA/MD5 (RFC 2537)
  2	Diffie-Hellman (RFC 2539)
  3	DSA (RFC 2536)
  4	Elliptic curve cryptography

• chLabelCount
  The number of labels in the original signature RR owner name as specified in section 4.1.3 of RFC 2535

• dwOriginalTtl
  The Time-to-Live (TTL) value of the RR set signed by Signature.

• dwExpiration
  The expiration date of Signature, expressed in seconds since the beginning of January 1, 1970, Greenwich Mean Time (GMT), excluding leap seconds.

• dwTimeSigned
  The date and time at which Signature becomes valid, expressed in seconds since the beginning of January 1, 1970, Greenwich Mean Time (GMT), excluding leap seconds.

• wKeyTag
  A value that represents the method to choose which public key is used to verify Signature as specified in Appendix C of RFC 2535.

• Pad
  Reserved for padding. Do not use.

• Signature
  A BYTE array that contains the RR set signature as specified in RFC 2931. It is represented in base 64 format as defined in Appendix A of RFC 2535.

Remarks

The DNS_SIG_DATA structure is used in conjunction with the DNS_RECORD structure to programmatically manage DNS entries.

Requirements

See also

DNS_RECORD