dnsdist: Add HTTPStatusAction to return a specific HTTP response

[thirdparty/pdns.git] / pdns / dnsdist-dnscrypt.cc

diff --git a/pdns/dnsdist-dnscrypt.cc b/pdns/dnsdist-dnscrypt.cc
index 9b9c991a9bb5b8fb9832cdcc175c6fa74a5aa19c..448efcd6ea760c22f8a6b89aa2586f84659dc118 100644 (file)
--- a/pdns/dnsdist-dnscrypt.cc
+++ b/pdns/dnsdist-dnscrypt.cc
@@ -1,28 +1,46 @@
-
+/*
+ * This file is part of PowerDNS or dnsdist.
+ * Copyright -- PowerDNS.COM B.V. and its contributors
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of version 2 of the GNU General Public License as
+ * published by the Free Software Foundation.
+ *
+ * In addition, for the avoidance of any doubt, permission is granted to
+ * link this program with OpenSSL and to (re)distribute the binaries
+ * produced as the result of such linking.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
 #include "dolog.hh"
 #include "dnsdist.hh"
 #include "dnscrypt.hh"
 
 #ifdef HAVE_DNSCRYPT
-int handleDnsCryptQuery(DnsCryptContext* ctx, char* packet, uint16_t len, std::shared_ptr<DnsCryptQuery>& query, uint16_t* decryptedQueryLen, bool tcp, std::vector<uint8_t>& response)
+int handleDNSCryptQuery(char* packet, uint16_t len, std::shared_ptr<DNSCryptQuery> query, uint16_t* decryptedQueryLen, bool tcp, time_t now, std::vector<uint8_t>& response)
 {
-  query->ctx = ctx;
-
-  ctx->parsePacket(packet, len, query, tcp, decryptedQueryLen);
+  query->parsePacket(packet, len, tcp, decryptedQueryLen, now);
 
-  if (query->valid == false) {
-    vinfolog("Dropping DnsCrypt invalid query");
+  if (query->isValid() == false) {
+    vinfolog("Dropping DNSCrypt invalid query");
     return false;
   }
 
-  if (query->encrypted == false) {
-    ctx->getCertificateResponse(query, response);
+  if (query->isEncrypted() == false) {
+    query->getCertificateResponse(now, response);
 
     return false;
   }
 
-  if(*decryptedQueryLen < (int)sizeof(struct dnsheader)) {
-    g_stats.nonCompliantQueries++;
+  if(*decryptedQueryLen < static_cast<uint16_t>(sizeof(struct dnsheader))) {
+    ++g_stats.nonCompliantQueries;
     return false;
   }