[thirdparty/systemd.git] / src / resolve / resolved-dns-server.h

/* SPDX-License-Identifier: LGPL-2.1+ */
#pragma once

#include "in-addr-util.h"

typedef struct DnsServer DnsServer;

typedef enum DnsServerType {
        DNS_SERVER_SYSTEM,
        DNS_SERVER_FALLBACK,
        DNS_SERVER_LINK,
        _DNS_SERVER_TYPE_MAX,
        _DNS_SERVER_TYPE_INVALID = -1
} DnsServerType;

const char* dns_server_type_to_string(DnsServerType i) _const_;
DnsServerType dns_server_type_from_string(const char *s) _pure_;

typedef enum DnsServerFeatureLevel {
        DNS_SERVER_FEATURE_LEVEL_TCP,
        DNS_SERVER_FEATURE_LEVEL_UDP,
        DNS_SERVER_FEATURE_LEVEL_EDNS0,
        DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN,
        DNS_SERVER_FEATURE_LEVEL_DO,
        DNS_SERVER_FEATURE_LEVEL_LARGE,
        DNS_SERVER_FEATURE_LEVEL_TLS_DO,
        _DNS_SERVER_FEATURE_LEVEL_MAX,
        _DNS_SERVER_FEATURE_LEVEL_INVALID = -1
} DnsServerFeatureLevel;

#define DNS_SERVER_FEATURE_LEVEL_WORST 0
#define DNS_SERVER_FEATURE_LEVEL_BEST (_DNS_SERVER_FEATURE_LEVEL_MAX - 1)
#define DNS_SERVER_FEATURE_LEVEL_IS_TLS(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN, DNS_SERVER_FEATURE_LEVEL_TLS_DO)

const char* dns_server_feature_level_to_string(int i) _const_;
int dns_server_feature_level_from_string(const char *s) _pure_;

#include "resolved-link.h"
#include "resolved-manager.h"
#if ENABLE_DNS_OVER_TLS
#include "resolved-dnstls.h"
#endif

struct DnsServer {
        Manager *manager;

        unsigned n_ref;

        DnsServerType type;
        Link *link;

        int family;
        union in_addr_union address;
        int ifindex; /* for IPv6 link-local DNS servers */

        char *server_string;
        DnsStream *stream;

#if ENABLE_DNS_OVER_TLS
        DnsTlsServerData dnstls_data;
#endif

        DnsServerFeatureLevel verified_feature_level;
        DnsServerFeatureLevel possible_feature_level;

        size_t received_udp_packet_max;

        unsigned n_failed_udp;
        unsigned n_failed_tcp;
        unsigned n_failed_tls;

        bool packet_truncated:1;
        bool packet_bad_opt:1;
        bool packet_rrsig_missing:1;

        usec_t verified_usec;
        usec_t features_grace_period_usec;

        /* Whether we already warned about downgrading to non-DNSSEC mode for this server */
        bool warned_downgrade:1;

        /* Used when GC'ing old DNS servers when configuration changes. */
        bool marked:1;

        /* If linked is set, then this server appears in the servers linked list */
        bool linked:1;
        LIST_FIELDS(DnsServer, servers);
};

int dns_server_new(
                Manager *m,
                DnsServer **ret,
                DnsServerType type,
                Link *link,
                int family,
                const union in_addr_union *address,
                int ifindex);

DnsServer* dns_server_ref(DnsServer *s);
DnsServer* dns_server_unref(DnsServer *s);

void dns_server_unlink(DnsServer *s);
void dns_server_move_back_and_unmark(DnsServer *s);

void dns_server_packet_received(DnsServer *s, int protocol, DnsServerFeatureLevel level, size_t size);
void dns_server_packet_lost(DnsServer *s, int protocol, DnsServerFeatureLevel level);
void dns_server_packet_truncated(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_rrsig_missing(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_bad_opt(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_rcode_downgrade(DnsServer *s, DnsServerFeatureLevel level);

DnsServerFeatureLevel dns_server_possible_feature_level(DnsServer *s);

int dns_server_adjust_opt(DnsServer *server, DnsPacket *packet, DnsServerFeatureLevel level);

const char *dns_server_string(DnsServer *server);
int dns_server_ifindex(const DnsServer *s);

bool dns_server_dnssec_supported(DnsServer *server);

void dns_server_warn_downgrade(DnsServer *server);

bool dns_server_limited_domains(DnsServer *server);

DnsServer *dns_server_find(DnsServer *first, int family, const union in_addr_union *in_addr, int ifindex);

void dns_server_unlink_all(DnsServer *first);
void dns_server_unlink_marked(DnsServer *first);
void dns_server_mark_all(DnsServer *first);

DnsServer *manager_get_first_dns_server(Manager *m, DnsServerType t);

DnsServer *manager_set_dns_server(Manager *m, DnsServer *s);
DnsServer *manager_get_dns_server(Manager *m);
void manager_next_dns_server(Manager *m);

bool dns_server_address_valid(int family, const union in_addr_union *sa);

DnssecMode dns_server_get_dnssec_mode(DnsServer *s);
DnsOverTlsMode dns_server_get_dns_over_tls_mode(DnsServer *s);

DEFINE_TRIVIAL_CLEANUP_FUNC(DnsServer*, dns_server_unref);

extern const struct hash_ops dns_server_hash_ops;

void dns_server_flush_cache(DnsServer *s);

void dns_server_reset_features(DnsServer *s);
void dns_server_reset_features_all(DnsServer *s);

void dns_server_dump(DnsServer *s, FILE *f);
Commit	Line	Data
53e1b683	1	/* SPDX-License-Identifier: LGPL-2.1+ */
74b2466e LP	2	#pragma once
74b2466e LP	3
3c0cf502 LP	4	#include "in-addr-util.h"
3c0cf502 LP	5
74b2466e	6	typedef struct DnsServer DnsServer;
74b2466e	7
4e945a6f LP	8	typedef enum DnsServerType {
	9	DNS_SERVER_SYSTEM,
	10	DNS_SERVER_FALLBACK,
	11	DNS_SERVER_LINK,
3fe30d85 YW	12	_DNS_SERVER_TYPE_MAX,
3fe30d85 YW	13	_DNS_SERVER_TYPE_INVALID = -1
4e945a6f	14	} DnsServerType;
e3309036 ZJS	15
	16	const char* dns_server_type_to_string(DnsServerType i) _const_;
	17	DnsServerType dns_server_type_from_string(const char *s) _pure_;
4e945a6f	18
be808ea0 TG	19	typedef enum DnsServerFeatureLevel {
	20	DNS_SERVER_FEATURE_LEVEL_TCP,
	21	DNS_SERVER_FEATURE_LEVEL_UDP,
9c5e12a4	22	DNS_SERVER_FEATURE_LEVEL_EDNS0,
5d67a7ae	23	DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN,
7586f4d1	24	DNS_SERVER_FEATURE_LEVEL_DO,
d74fb368	25	DNS_SERVER_FEATURE_LEVEL_LARGE,
5d67a7ae	26	DNS_SERVER_FEATURE_LEVEL_TLS_DO,
be808ea0 TG	27	_DNS_SERVER_FEATURE_LEVEL_MAX,
	28	_DNS_SERVER_FEATURE_LEVEL_INVALID = -1
	29	} DnsServerFeatureLevel;
	30
	31	#define DNS_SERVER_FEATURE_LEVEL_WORST 0
	32	#define DNS_SERVER_FEATURE_LEVEL_BEST (_DNS_SERVER_FEATURE_LEVEL_MAX - 1)
5d67a7ae	33	#define DNS_SERVER_FEATURE_LEVEL_IS_TLS(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN, DNS_SERVER_FEATURE_LEVEL_TLS_DO)
be808ea0 TG	34
	35	const char* dns_server_feature_level_to_string(int i) _const_;
	36	int dns_server_feature_level_from_string(const char *s) _pure_;
	37
3e684349	38	#include "resolved-link.h"
be808ea0	39	#include "resolved-manager.h"
6016fcb0 IT	40	#if ENABLE_DNS_OVER_TLS
	41	#include "resolved-dnstls.h"
	42	#endif
3e684349	43
74b2466e LP	44	struct DnsServer {
74b2466e LP	45	Manager *manager;
74b2466e	46
91b14d6f TG	47	unsigned n_ref;
91b14d6f TG	48
4e945a6f	49	DnsServerType type;
3c0cf502 LP	50	Link *link;
3c0cf502 LP	51
0dd25fb9	52	int family;
74b2466e	53	union in_addr_union address;
2817157b	54	int ifindex; /* for IPv6 link-local DNS servers */
74b2466e	55
6cb08a89	56	char *server_string;
98767d75	57	DnsStream *stream;
6cb08a89	58
56ddbf10	59	#if ENABLE_DNS_OVER_TLS
6016fcb0	60	DnsTlsServerData dnstls_data;
5d67a7ae IT	61	#endif
5d67a7ae IT	62
f4461e56 LP	63	DnsServerFeatureLevel verified_feature_level;
f4461e56 LP	64	DnsServerFeatureLevel possible_feature_level;
de54e62b	65
d74fb368	66	size_t received_udp_packet_max;
de54e62b	67
6bb2c085 LP	68	unsigned n_failed_udp;
6bb2c085 LP	69	unsigned n_failed_tcp;
5d67a7ae	70	unsigned n_failed_tls;
de54e62b	71
6bb2c085	72	bool packet_truncated:1;
de54e62b LP	73	bool packet_bad_opt:1;
	74	bool packet_rrsig_missing:1;
	75
be808ea0 TG	76	usec_t verified_usec;
be808ea0 TG	77	usec_t features_grace_period_usec;
74b2466e	78
1e02e182 LP	79	/* Whether we already warned about downgrading to non-DNSSEC mode for this server */
	80	bool warned_downgrade:1;
	81
b652d4a2 LP	82	/* Used when GC'ing old DNS servers when configuration changes. */
	83	bool marked:1;
	84
0eac4623 LP	85	/* If linked is set, then this server appears in the servers linked list */
0eac4623 LP	86	bool linked:1;
74b2466e LP	87	LIST_FIELDS(DnsServer, servers);
	88	};
	89
	90	int dns_server_new(
	91	Manager *m,
0b58db65	92	DnsServer **ret,
4e945a6f	93	DnsServerType type,
0b58db65	94	Link *link,
0dd25fb9	95	int family,
2817157b LP	96	const union in_addr_union *address,
2817157b LP	97	int ifindex);
74b2466e	98
91b14d6f TG	99	DnsServer* dns_server_ref(DnsServer *s);
91b14d6f TG	100	DnsServer* dns_server_unref(DnsServer *s);
87f5a193	101
0eac4623	102	void dns_server_unlink(DnsServer *s);
0b58db65	103	void dns_server_move_back_and_unmark(DnsServer *s);
0eac4623	104
dbc4661a	105	void dns_server_packet_received(DnsServer *s, int protocol, DnsServerFeatureLevel level, size_t size);
3da3cdd5	106	void dns_server_packet_lost(DnsServer *s, int protocol, DnsServerFeatureLevel level);
6bb2c085	107	void dns_server_packet_truncated(DnsServer *s, DnsServerFeatureLevel level);
de54e62b LP	108	void dns_server_packet_rrsig_missing(DnsServer *s, DnsServerFeatureLevel level);
de54e62b LP	109	void dns_server_packet_bad_opt(DnsServer *s, DnsServerFeatureLevel level);
d001e0a3	110	void dns_server_packet_rcode_downgrade(DnsServer *s, DnsServerFeatureLevel level);
9df3ba6c	111
f4461e56 LP	112	DnsServerFeatureLevel dns_server_possible_feature_level(DnsServer *s);
f4461e56 LP	113
519ef046 LP	114	int dns_server_adjust_opt(DnsServer server, DnsPacket packet, DnsServerFeatureLevel level);
519ef046 LP	115
6cb08a89	116	const char dns_server_string(DnsServer server);
2817157b	117	int dns_server_ifindex(const DnsServer *s);
6cb08a89	118
92ec902a LP	119	bool dns_server_dnssec_supported(DnsServer *server);
92ec902a LP	120
1e02e182 LP	121	void dns_server_warn_downgrade(DnsServer *server);
1e02e182 LP	122
b9fe94ca MP	123	bool dns_server_limited_domains(DnsServer *server);
b9fe94ca MP	124
2817157b	125	DnsServer dns_server_find(DnsServer first, int family, const union in_addr_union *in_addr, int ifindex);
4b95f179 LP	126
	127	void dns_server_unlink_all(DnsServer *first);
	128	void dns_server_unlink_marked(DnsServer *first);
	129	void dns_server_mark_all(DnsServer *first);
f2f1dbe5	130
4b95f179	131	DnsServer manager_get_first_dns_server(Manager m, DnsServerType t);
636e813d	132
0eac4623	133	DnsServer manager_set_dns_server(Manager m, DnsServer *s);
0eac4623 LP	134	DnsServer manager_get_dns_server(Manager m);
	135	void manager_next_dns_server(Manager *m);
	136
b30bf55d LP	137	bool dns_server_address_valid(int family, const union in_addr_union *sa);
b30bf55d LP	138
12bf2331	139	DnssecMode dns_server_get_dnssec_mode(DnsServer *s);
c9299be2	140	DnsOverTlsMode dns_server_get_dns_over_tls_mode(DnsServer *s);
12bf2331	141
8300ba21 TG	142	DEFINE_TRIVIAL_CLEANUP_FUNC(DnsServer*, dns_server_unref);
8300ba21 TG	143
d5099efc	144	extern const struct hash_ops dns_server_hash_ops;
ce7c8b20 LP	145
ce7c8b20 LP	146	void dns_server_flush_cache(DnsServer *s);
59c0fd0e LP	147
	148	void dns_server_reset_features(DnsServer *s);
	149	void dns_server_reset_features_all(DnsServer *s);
cf84484a LP	150
cf84484a LP	151	void dns_server_dump(DnsServer s, FILE f);