[people/ms/strongswan.git] / scripts / dnssec.c

/*
 * Copyright (C) 2011-2012 Reto Guadagnini
 * Hochschule fuer Technik Rapperswil
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the
 * Free Software Foundation; either version 2 of the License, or (at your
 * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
 * for more details.
 */

#include <stdio.h>

#include <library.h>
#include <utils/debug.h>

/**
 * Define debug level
 */
static level_t dbg_level = 1;

static void dbg_dnssec(debug_t group, level_t level, char *fmt, ...)
{
	if ((level <= dbg_level) || level <= 1)
	{
		va_list args;

		va_start(args, fmt);
		vfprintf(stderr, fmt, args);
		fprintf(stderr, "\n");
		va_end(args);
	}
}

int main(int argc, char *argv[])
{
	resolver_t *resolver;
	resolver_response_t *response;
	enumerator_t *enumerator;
	chunk_t rdata;
	rr_set_t *rrset;
	rr_t *rr;

	library_init(NULL, "dnssec");
	atexit(library_deinit);

	dbg = dbg_dnssec;

	if (!lib->plugins->load(lib->plugins, PLUGINS))
	{
		return 1;
	}
	if (argc != 2)
	{
		fprintf(stderr, "usage: dnssec <name>\n");
		return 1;
	}

	resolver = lib->resolver->create(lib->resolver);
	if (!resolver)
	{
		printf("failed to create a resolver!\n");
		return 1;
	}

	response = resolver->query(resolver, argv[1], RR_CLASS_IN, RR_TYPE_A);
	if (!response)
	{
		printf("no response received!\n");
		resolver->destroy(resolver);
		return 1;
	}

	printf("DNS response:\n");
	if (!response->has_data(response) || !response->query_name_exist(response))
	{
		if (!response->has_data(response))
		{
			printf("  no data in the response\n");
		}
		if (!response->query_name_exist(response))
		{
			printf("  query name does not exist\n");
		}
		response->destroy(response);
		resolver->destroy(resolver);
		return 1;
	}

	printf("  RRs in the response:\n");
	rrset = response->get_rr_set(response);
	if (!rrset)
	{
		printf("    response contains no RRset!\n");
		response->destroy(response);
		resolver->destroy(resolver);
		return 1;
	}

	enumerator = rrset->create_rr_enumerator(rrset);
	while (enumerator->enumerate(enumerator, &rr))
	{
		printf("    name: %s\n", rr->get_name(rr));
	}

	enumerator = rrset->create_rrsig_enumerator(rrset);
	if (enumerator)
	{
		printf("  RRSIGs for the RRset:\n");
		while (enumerator->enumerate(enumerator, &rr))
		{
			rdata = rr->get_rdata(rr);

			printf("    name: %s\n", rr->get_name(rr));
			printf("    RDATA: %#B\n", &rdata);
		}
	}

	printf("  security status of the response: ");
	switch (response->get_security_state(response))
	{
		case SECURE:
			printf("SECURE\n\n");
			break;
		case INSECURE:
			printf("INSECURE\n\n");
			break;
		case BOGUS:
			printf("BOGUS\n\n");
			break;
		case INDETERMINATE:
			printf("INDETERMINATE\n\n");
			break;
	}
	response->destroy(response);
	resolver->destroy(resolver);
	return 0;
}
Commit	Line	Data
d786cbda RG	1	/*
	2	* Copyright (C) 2011-2012 Reto Guadagnini
	3	* Hochschule fuer Technik Rapperswil
	4	*
	5	* This program is free software; you can redistribute it and/or modify it
	6	* under the terms of the GNU General Public License as published by the
	7	* Free Software Foundation; either version 2 of the License, or (at your
	8	* option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
	9	*
	10	* This program is distributed in the hope that it will be useful, but
	11	* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
	12	* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
	13	* for more details.
	14	*/
	15
	16	#include <stdio.h>
	17
	18	#include <library.h>
1a185ae1 AS	19	#include <utils/debug.h>
	20
	21	/**
	22	* Define debug level
	23	*/
	24	static level_t dbg_level = 1;
	25
	26	static void dbg_dnssec(debug_t group, level_t level, char *fmt, ...)
	27	{
	28	if ((level <= dbg_level) \|\| level <= 1)
	29	{
	30	va_list args;
	31
	32	va_start(args, fmt);
	33	vfprintf(stderr, fmt, args);
	34	fprintf(stderr, "\n");
	35	va_end(args);
	36	}
	37	}
d786cbda RG	38
	39	int main(int argc, char *argv[])
	40	{
	41	resolver_t *resolver;
	42	resolver_response_t *response;
	43	enumerator_t *enumerator;
1a185ae1	44	chunk_t rdata;
d786cbda RG	45	rr_set_t *rrset;
d786cbda RG	46	rr_t *rr;
d786cbda	47
34d3bfcf	48	library_init(NULL, "dnssec");
d786cbda	49	atexit(library_deinit);
1a185ae1 AS	50
	51	dbg = dbg_dnssec;
	52
b18a5317	53	if (!lib->plugins->load(lib->plugins, PLUGINS))
d786cbda RG	54	{
	55	return 1;
	56	}
	57	if (argc != 2)
	58	{
1a185ae1	59	fprintf(stderr, "usage: dnssec <name>\n");
d786cbda RG	60	return 1;
	61	}
	62
	63	resolver = lib->resolver->create(lib->resolver);
	64	if (!resolver)
	65	{
	66	printf("failed to create a resolver!\n");
	67	return 1;
	68	}
	69
	70	response = resolver->query(resolver, argv[1], RR_CLASS_IN, RR_TYPE_A);
	71	if (!response)
	72	{
	73	printf("no response received!\n");
	74	resolver->destroy(resolver);
	75	return 1;
	76	}
	77
	78	printf("DNS response:\n");
	79	if (!response->has_data(response) \|\| !response->query_name_exist(response))
	80	{
	81	if (!response->has_data(response))
	82	{
	83	printf(" no data in the response\n");
	84	}
	85	if (!response->query_name_exist(response))
	86	{
	87	printf(" query name does not exist\n");
	88	}
	89	response->destroy(response);
	90	resolver->destroy(resolver);
	91	return 1;
	92	}
	93
	94	printf(" RRs in the response:\n");
	95	rrset = response->get_rr_set(response);
	96	if (!rrset)
	97	{
	98	printf(" response contains no RRset!\n");
	99	response->destroy(response);
	100	resolver->destroy(resolver);
	101	return 1;
	102	}
	103
	104	enumerator = rrset->create_rr_enumerator(rrset);
	105	while (enumerator->enumerate(enumerator, &rr))
	106	{
676e8624	107	printf(" name: %s\n", rr->get_name(rr));
d786cbda RG	108	}
	109
	110	enumerator = rrset->create_rrsig_enumerator(rrset);
	111	if (enumerator)
	112	{
	113	printf(" RRSIGs for the RRset:\n");
	114	while (enumerator->enumerate(enumerator, &rr))
	115	{
1a185ae1 AS	116	rdata = rr->get_rdata(rr);
	117
	118	printf(" name: %s\n", rr->get_name(rr));
	119	printf(" RDATA: %#B\n", &rdata);
d786cbda RG	120	}
	121	}
	122
	123	printf(" security status of the response: ");
	124	switch (response->get_security_state(response))
	125	{
	126	case SECURE:
	127	printf("SECURE\n\n");
	128	break;
	129	case INSECURE:
	130	printf("INSECURE\n\n");
	131	break;
	132	case BOGUS:
	133	printf("BOGUS\n\n");
	134	break;
	135	case INDETERMINATE:
	136	printf("INDETERMINATE\n\n");
	137	break;
	138	}
	139	response->destroy(response);
	140	resolver->destroy(resolver);
	141	return 0;
	142	}