]> git.ipfire.org Git - thirdparty/systemd.git/blob - src/resolve/resolved-dns-server.h
projects / thirdparty / systemd.git / blob
? search:


efc8de2f0a3213bdfaf3c87d82e4524acfb7dde7
[thirdparty/systemd.git] / src / resolve / resolved-dns-server.h
1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
2 #pragma once
3
4 #include "forward.h"
5 #include "in-addr-util.h"
6 #include "list.h"
7 #include "resolved-conf.h"
8 #include "resolved-dnstls.h"
9 #include "resolved-forward.h"
10
11 typedef enum DnsServerType {
12 DNS_SERVER_SYSTEM,
13 DNS_SERVER_FALLBACK,
14 DNS_SERVER_LINK,
15 DNS_SERVER_DELEGATE,
16 _DNS_SERVER_TYPE_MAX,
17 _DNS_SERVER_TYPE_INVALID = -EINVAL,
18 } DnsServerType;
19
20 const char* dns_server_type_to_string(DnsServerType i) _const_;
21 DnsServerType dns_server_type_from_string(const char *s) _pure_;
22
23 typedef enum DnsServerFeatureLevel {
24 DNS_SERVER_FEATURE_LEVEL_TCP,
25 DNS_SERVER_FEATURE_LEVEL_UDP,
26 DNS_SERVER_FEATURE_LEVEL_EDNS0,
27 DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN,
28 DNS_SERVER_FEATURE_LEVEL_DO,
29 DNS_SERVER_FEATURE_LEVEL_TLS_DO,
30 _DNS_SERVER_FEATURE_LEVEL_MAX,
31 _DNS_SERVER_FEATURE_LEVEL_INVALID = -EINVAL,
32 } DnsServerFeatureLevel;
33
34 #define DNS_SERVER_FEATURE_LEVEL_WORST 0
35 #define DNS_SERVER_FEATURE_LEVEL_BEST (_DNS_SERVER_FEATURE_LEVEL_MAX - 1)
36 #define DNS_SERVER_FEATURE_LEVEL_IS_EDNS0(x) ((x) >= DNS_SERVER_FEATURE_LEVEL_EDNS0)
37 #define DNS_SERVER_FEATURE_LEVEL_IS_TLS(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN, DNS_SERVER_FEATURE_LEVEL_TLS_DO)
38 #define DNS_SERVER_FEATURE_LEVEL_IS_DNSSEC(x) ((x) >= DNS_SERVER_FEATURE_LEVEL_DO)
39 #define DNS_SERVER_FEATURE_LEVEL_IS_UDP(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_UDP, DNS_SERVER_FEATURE_LEVEL_EDNS0, DNS_SERVER_FEATURE_LEVEL_DO)
40
41 const char* dns_server_feature_level_to_string(DnsServerFeatureLevel i) _const_;
42 DnsServerFeatureLevel dns_server_feature_level_from_string(const char *s) _pure_;
43
44 typedef struct DnsServer {
45 Manager *manager;
46
47 unsigned n_ref;
48
49 DnsServerType type;
50 Link *link;
51 DnsDelegate *delegate;
52
53 int family;
54 union in_addr_union address;
55 int ifindex; /* for IPv6 link-local DNS servers */
56 uint16_t port;
57 char *server_name;
58
59 char *server_string;
60 char *server_string_full;
61
62 /* The long-lived stream towards this server. */
63 DnsStream *stream;
64
65 #if ENABLE_DNS_OVER_TLS
66 DnsTlsServerData dnstls_data;
67 #endif
68
69 DnsServerFeatureLevel verified_feature_level;
70 DnsServerFeatureLevel possible_feature_level;
71
72 size_t received_udp_fragment_max; /* largest packet or fragment (without IP/UDP header) we saw so far */
73
74 unsigned n_failed_udp;
75 unsigned n_failed_tcp;
76 unsigned n_failed_tls;
77
78 bool packet_truncated:1; /* Set when TC bit was set on reply */
79 bool packet_bad_opt:1; /* Set when OPT was missing or otherwise bad on reply */
80 bool packet_rrsig_missing:1; /* Set when RRSIG was missing */
81 bool packet_invalid:1; /* Set when we failed to parse a reply */
82 bool packet_do_off:1; /* Set when the server didn't copy DNSSEC DO flag from request to response */
83 bool packet_fragmented:1; /* Set when we ever saw a fragmented packet */
84
85 usec_t verified_usec;
86 usec_t features_grace_period_usec;
87
88 /* Whether we already warned about downgrading to non-DNSSEC mode for this server */
89 bool warned_downgrade:1;
90
91 /* Used when GC'ing old DNS servers when configuration changes. */
92 bool marked:1;
93
94 /* If linked is set, then this server appears in the servers linked list */
95 bool linked:1;
96 LIST_FIELDS(DnsServer, servers);
97
98 /* Servers registered via D-Bus are not removed on reload */
99 ResolveConfigSource config_source;
100
101 /* Tri-state to indicate if the DNS server is accessible. */
102 int accessible;
103 } DnsServer;
104
105 int dns_server_new(
106 Manager *m,
107 DnsServer **ret,
108 DnsServerType type,
109 Link *link,
110 DnsDelegate *delegate,
111 int family,
112 const union in_addr_union *address,
113 uint16_t port,
114 int ifindex,
115 const char *server_string,
116 ResolveConfigSource config_source);
117
118 DnsServer* dns_server_ref(DnsServer *s);
119 DnsServer* dns_server_unref(DnsServer *s);
120
121 void dns_server_unlink(DnsServer *s);
122 void dns_server_move_back_and_unmark(DnsServer *s);
123
124 void dns_server_packet_received(DnsServer *s, int protocol, DnsServerFeatureLevel level, size_t fragsize);
125 void dns_server_packet_lost(DnsServer *s, int protocol, DnsServerFeatureLevel level);
126 void dns_server_packet_truncated(DnsServer *s, DnsServerFeatureLevel level);
127 void dns_server_packet_rrsig_missing(DnsServer *s, DnsServerFeatureLevel level);
128 void dns_server_packet_bad_opt(DnsServer *s, DnsServerFeatureLevel level);
129 void dns_server_packet_rcode_downgrade(DnsServer *s, DnsServerFeatureLevel level);
130 void dns_server_packet_invalid(DnsServer *s, DnsServerFeatureLevel level);
131 void dns_server_packet_do_off(DnsServer *s, DnsServerFeatureLevel level);
132 void dns_server_packet_udp_fragmented(DnsServer *s, size_t fragsize);
133
134 DnsServerFeatureLevel dns_server_possible_feature_level(DnsServer *s);
135
136 int dns_server_adjust_opt(DnsServer *server, DnsPacket *packet, DnsServerFeatureLevel level);
137
138 const char* dns_server_string(DnsServer *server);
139 const char* dns_server_string_full(DnsServer *server);
140 int dns_server_ifindex(const DnsServer *s);
141 uint16_t dns_server_port(const DnsServer *s);
142
143 bool dns_server_dnssec_supported(DnsServer *server);
144
145 void dns_server_warn_downgrade(DnsServer *server);
146
147 DnsServer *dns_server_find(DnsServer *first, int family, const union in_addr_union *in_addr, uint16_t port, int ifindex, const char *name);
148
149 void dns_server_unlink_all(DnsServer *first);
150 void dns_server_unlink_on_reload(DnsServer *server);
151 bool dns_server_unlink_marked(DnsServer *first);
152 void dns_server_mark_all(DnsServer *first);
153
154 int manager_parse_search_domains_and_warn(Manager *m, const char *string);
155 int manager_parse_dns_server_string_and_warn(Manager *m, DnsServerType type, const char *string);
156
157 DnsServer *manager_get_first_dns_server(Manager *m, DnsServerType t);
158
159 DnsServer *manager_set_dns_server(Manager *m, DnsServer *s);
160 DnsServer *manager_get_dns_server(Manager *m);
161 void manager_next_dns_server(Manager *m, DnsServer *if_current);
162
163 DnssecMode dns_server_get_dnssec_mode(DnsServer *s);
164 DnsOverTlsMode dns_server_get_dns_over_tls_mode(DnsServer *s);
165
166 size_t dns_server_get_mtu(DnsServer *s);
167
168 DEFINE_TRIVIAL_CLEANUP_FUNC(DnsServer*, dns_server_unref);
169
170 extern const struct hash_ops dns_server_hash_ops;
171
172 void dns_server_flush_cache(DnsServer *s);
173
174 void dns_server_reset_features(DnsServer *s);
175 void dns_server_reset_features_all(DnsServer *s);
176
177 void dns_server_dump(DnsServer *s, FILE *f);
178
179 void dns_server_unref_stream(DnsServer *s);
180
181 DnsScope *dns_server_scope(DnsServer *s);
182
183 static inline bool dns_server_is_fallback(DnsServer *s) {
184 return s && s->type == DNS_SERVER_FALLBACK;
185 }
186
187 int dns_server_dump_state_to_json(DnsServer *server, sd_json_variant **ret);
188 int dns_server_dump_configuration_to_json(DnsServer *server, sd_json_variant **ret);
189
190 int dns_server_is_accessible(DnsServer *s);
191 static inline void dns_server_reset_accessible(DnsServer *s) {
192 s->accessible = -1;
193 }
194 void dns_server_reset_accessible_all(DnsServer *first);
Unnamed repository; edit this file 'description' to name the repository.