The validation and resolution results. More...
|The original question, name text string. |
|the type asked for |
|the class asked for |
|a list of network order DNS rdata items, terminated with a NULL pointer, so that data is the first result entry, data the second, and the last entry is NULL. More...|
|the length in bytes of the data items, len[i] for data[i] |
|canonical name for the result (the final cname). More...|
|DNS RCODE for the result. More...|
|The DNS answer packet. More...|
|length of the answer packet in octets. |
|If there is any data, this is true. More...|
|If there was no data, and the domain did not exist, this is true. More...|
|True, if the result is validated securely. More...|
|If the result was not secure (secure==0), and this result is due to a security failure, bogus is true. More...|
|If the result is bogus this contains a string (zero terminated) that describes the failure. More...|
|If the query or one of its subqueries was ratelimited. More...|
|TTL for the result, in seconds. More...|
The validation and resolution results.
Allocated by the resolver, and need to be freed by the application with ub_resolve_free().
a list of network order DNS rdata items, terminated with a NULL pointer, so that data is the first result entry, data the second, and the last entry is NULL.
If there was no data, data is NULL.
DNS RCODE for the result.
May contain additional error code if there was no data due to an error. 0 (NOERROR) if okay.
Referenced by do_root_update_work(), ext_check_result(), libworker_enter_result(), libworker_fillup_fg(), pretty_output(), print_result(), process_answer_detail(), resolve_host_ip(), and secure_str().
True, if the result is validated securely.
False, if validation failed or domain queried has no security info.
It is possible to get a result with no data (havedata is false), and secure is true. This means that the non-existence of the data was cryptographically proven (with signatures).
If the result was not secure (secure==0), and this result is due to a security failure, bogus is true.
This means the data has been actively tampered with, signatures failed, expected signatures were not present, timestamps on signatures were out of date and so on.
If !secure and !bogus, this can happen if the data is not secure because security is disabled for that domain name. This means the data is from a domain where data is not signed.
If the result is bogus this contains a string (zero terminated) that describes the failure.
There may be other errors as well as the one described, the description may not be perfectly accurate. Is NULL if the result is not bogus.
TTL for the result, in seconds.
If the security is bogus, then you also cannot trust this value.
Referenced by fill_res().