2.2.1.1.3 TRUSTPOINT_STATE
The TRUSTPOINT_STATE enumeration identifies the current state of the life cycle of a DNSSEC trust point. The state of the trust point is determined by the states of its trust anchors and is given for informational purposes only; it does not affect the DNS or LDAP protocol.
-
typedef enum { TRUSTPOINT_STATE_INITIALIZED, TRUSTPOINT_STATE_DSPENDING, TRUSTPOINT_STATE_ACTIVE, TRUSTPOINT_STATE_DELETE_PENDING, TRUSTPOINT_STATE_DELETED } TRUSTPOINT_STATE, *PTRUSTPOINT_STATE;
TRUSTPOINT_STATE_INITIALIZED: Indicates a trust point that has no trust anchors but has child nodes that do have trust anchors.
TRUSTPOINT_STATE_DSPENDING: Indicates a trust point that has only DS trust anchors and is therefore ineffective for DNSSEC operations.
TRUSTPOINT_STATE_ACTIVE: Indicates a trust point that has one or more DNSKEY trust anchors. Queries covered by this trust point will be validated using the DNSKEY trust anchors.
TRUSTPOINT_STATE_DELETE_PENDING: Indicates a trust point containing only revoked DNSKEY trust anchors. When the [RFC5011] remove-hold-down time is exceeded for all revoked trust anchors, this trust point will be deleted.
TRUSTPOINT_STATE_DELETED: Reserved. MUST NOT be sent by the server, MUST be ignored by the receiver.