[thirdparty/systemd.git] / src / resolve / resolved-dns-server.h

/* SPDX-License-Identifier: LGPL-2.1+ */
#pragma once

#include "in-addr-util.h"
#include "list.h"
#include "resolve-util.h"
#include "time-util.h"

typedef struct DnsScope DnsScope;
typedef struct DnsServer DnsServer;
typedef struct DnsStream DnsStream;
typedef struct DnsPacket DnsPacket;
typedef struct Link Link;
typedef struct Manager Manager;

#include "resolved-dnstls.h"

typedef enum DnsServerType {
        DNS_SERVER_SYSTEM,
        DNS_SERVER_FALLBACK,
        DNS_SERVER_LINK,
        _DNS_SERVER_TYPE_MAX,
        _DNS_SERVER_TYPE_INVALID = -1
} DnsServerType;

const char* dns_server_type_to_string(DnsServerType i) _const_;
DnsServerType dns_server_type_from_string(const char *s) _pure_;

typedef enum DnsServerFeatureLevel {
        DNS_SERVER_FEATURE_LEVEL_TCP,
        DNS_SERVER_FEATURE_LEVEL_UDP,
        DNS_SERVER_FEATURE_LEVEL_EDNS0,
        DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN,
        DNS_SERVER_FEATURE_LEVEL_DO,
        DNS_SERVER_FEATURE_LEVEL_LARGE,
        DNS_SERVER_FEATURE_LEVEL_TLS_DO,
        _DNS_SERVER_FEATURE_LEVEL_MAX,
        _DNS_SERVER_FEATURE_LEVEL_INVALID = -1
} DnsServerFeatureLevel;

#define DNS_SERVER_FEATURE_LEVEL_WORST 0
#define DNS_SERVER_FEATURE_LEVEL_BEST (_DNS_SERVER_FEATURE_LEVEL_MAX - 1)
#define DNS_SERVER_FEATURE_LEVEL_IS_TLS(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN, DNS_SERVER_FEATURE_LEVEL_TLS_DO)

const char* dns_server_feature_level_to_string(int i) _const_;
int dns_server_feature_level_from_string(const char *s) _pure_;

struct DnsServer {
        Manager *manager;

        unsigned n_ref;

        DnsServerType type;
        Link *link;

        int family;
        union in_addr_union address;
        int ifindex; /* for IPv6 link-local DNS servers */
        uint16_t port;
        char *server_name;

        char *server_string;
        char *server_string_full;

        /* The long-lived stream towards this server. */
        DnsStream *stream;

#if ENABLE_DNS_OVER_TLS
        DnsTlsServerData dnstls_data;
#endif

        DnsServerFeatureLevel verified_feature_level;
        DnsServerFeatureLevel possible_feature_level;

        size_t received_udp_packet_max;

        unsigned n_failed_udp;
        unsigned n_failed_tcp;
        unsigned n_failed_tls;

        bool packet_truncated:1;
        bool packet_bad_opt:1;
        bool packet_rrsig_missing:1;

        usec_t verified_usec;
        usec_t features_grace_period_usec;

        /* Whether we already warned about downgrading to non-DNSSEC mode for this server */
        bool warned_downgrade:1;

        /* Used when GC'ing old DNS servers when configuration changes. */
        bool marked:1;

        /* If linked is set, then this server appears in the servers linked list */
        bool linked:1;
        LIST_FIELDS(DnsServer, servers);
};

int dns_server_new(
                Manager *m,
                DnsServer **ret,
                DnsServerType type,
                Link *link,
                int family,
                const union in_addr_union *address,
                uint16_t port,
                int ifindex,
                const char *server_string);

DnsServer* dns_server_ref(DnsServer *s);
DnsServer* dns_server_unref(DnsServer *s);

void dns_server_unlink(DnsServer *s);
void dns_server_move_back_and_unmark(DnsServer *s);

void dns_server_packet_received(DnsServer *s, int protocol, DnsServerFeatureLevel level, size_t size);
void dns_server_packet_lost(DnsServer *s, int protocol, DnsServerFeatureLevel level);
void dns_server_packet_truncated(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_rrsig_missing(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_bad_opt(DnsServer *s, DnsServerFeatureLevel level);
void dns_server_packet_rcode_downgrade(DnsServer *s, DnsServerFeatureLevel level);

DnsServerFeatureLevel dns_server_possible_feature_level(DnsServer *s);

int dns_server_adjust_opt(DnsServer *server, DnsPacket *packet, DnsServerFeatureLevel level);

const char *dns_server_string(DnsServer *server);
const char *dns_server_string_full(DnsServer *server);
int dns_server_ifindex(const DnsServer *s);
uint16_t dns_server_port(const DnsServer *s);

bool dns_server_dnssec_supported(DnsServer *server);

void dns_server_warn_downgrade(DnsServer *server);

DnsServer *dns_server_find(DnsServer *first, int family, const union in_addr_union *in_addr, uint16_t port, int ifindex, const char *name);

void dns_server_unlink_all(DnsServer *first);
void dns_server_unlink_marked(DnsServer *first);
void dns_server_mark_all(DnsServer *first);

DnsServer *manager_get_first_dns_server(Manager *m, DnsServerType t);

DnsServer *manager_set_dns_server(Manager *m, DnsServer *s);
DnsServer *manager_get_dns_server(Manager *m);
void manager_next_dns_server(Manager *m);

DnssecMode dns_server_get_dnssec_mode(DnsServer *s);
DnsOverTlsMode dns_server_get_dns_over_tls_mode(DnsServer *s);

DEFINE_TRIVIAL_CLEANUP_FUNC(DnsServer*, dns_server_unref);

extern const struct hash_ops dns_server_hash_ops;

void dns_server_flush_cache(DnsServer *s);

void dns_server_reset_features(DnsServer *s);
void dns_server_reset_features_all(DnsServer *s);

void dns_server_dump(DnsServer *s, FILE *f);

void dns_server_unref_stream(DnsServer *s);

DnsScope *dns_server_scope(DnsServer *s);
Commit	Line	Data
53e1b683	1	/* SPDX-License-Identifier: LGPL-2.1+ */
74b2466e LP	2	#pragma once
74b2466e LP	3
3c0cf502	4	#include "in-addr-util.h"
be28f72d DDM	5	#include "list.h"
	6	#include "resolve-util.h"
	7	#include "time-util.h"
3c0cf502	8
be28f72d	9	typedef struct DnsScope DnsScope;
74b2466e	10	typedef struct DnsServer DnsServer;
be28f72d DDM	11	typedef struct DnsStream DnsStream;
	12	typedef struct DnsPacket DnsPacket;
	13	typedef struct Link Link;
	14	typedef struct Manager Manager;
	15
	16	#include "resolved-dnstls.h"
74b2466e	17
4e945a6f LP	18	typedef enum DnsServerType {
	19	DNS_SERVER_SYSTEM,
	20	DNS_SERVER_FALLBACK,
	21	DNS_SERVER_LINK,
3fe30d85 YW	22	_DNS_SERVER_TYPE_MAX,
3fe30d85 YW	23	_DNS_SERVER_TYPE_INVALID = -1
4e945a6f	24	} DnsServerType;
e3309036 ZJS	25
	26	const char* dns_server_type_to_string(DnsServerType i) _const_;
	27	DnsServerType dns_server_type_from_string(const char *s) _pure_;
4e945a6f	28
be808ea0 TG	29	typedef enum DnsServerFeatureLevel {
	30	DNS_SERVER_FEATURE_LEVEL_TCP,
	31	DNS_SERVER_FEATURE_LEVEL_UDP,
9c5e12a4	32	DNS_SERVER_FEATURE_LEVEL_EDNS0,
5d67a7ae	33	DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN,
7586f4d1	34	DNS_SERVER_FEATURE_LEVEL_DO,
d74fb368	35	DNS_SERVER_FEATURE_LEVEL_LARGE,
5d67a7ae	36	DNS_SERVER_FEATURE_LEVEL_TLS_DO,
be808ea0 TG	37	_DNS_SERVER_FEATURE_LEVEL_MAX,
	38	_DNS_SERVER_FEATURE_LEVEL_INVALID = -1
	39	} DnsServerFeatureLevel;
	40
	41	#define DNS_SERVER_FEATURE_LEVEL_WORST 0
	42	#define DNS_SERVER_FEATURE_LEVEL_BEST (_DNS_SERVER_FEATURE_LEVEL_MAX - 1)
5d67a7ae	43	#define DNS_SERVER_FEATURE_LEVEL_IS_TLS(x) IN_SET(x, DNS_SERVER_FEATURE_LEVEL_TLS_PLAIN, DNS_SERVER_FEATURE_LEVEL_TLS_DO)
be808ea0 TG	44
	45	const char* dns_server_feature_level_to_string(int i) _const_;
	46	int dns_server_feature_level_from_string(const char *s) _pure_;
	47
74b2466e LP	48	struct DnsServer {
74b2466e LP	49	Manager *manager;
74b2466e	50
91b14d6f TG	51	unsigned n_ref;
91b14d6f TG	52
4e945a6f	53	DnsServerType type;
3c0cf502 LP	54	Link *link;
3c0cf502 LP	55
0dd25fb9	56	int family;
74b2466e	57	union in_addr_union address;
2817157b	58	int ifindex; /* for IPv6 link-local DNS servers */
da9de738 YW	59	uint16_t port;
da9de738 YW	60	char *server_name;
74b2466e	61
6cb08a89	62	char *server_string;
8aa5afd2	63	char *server_string_full;
51bc63fe LP	64
51bc63fe LP	65	/* The long-lived stream towards this server. */
98767d75	66	DnsStream *stream;
6cb08a89	67
56ddbf10	68	#if ENABLE_DNS_OVER_TLS
6016fcb0	69	DnsTlsServerData dnstls_data;
5d67a7ae IT	70	#endif
5d67a7ae IT	71
f4461e56 LP	72	DnsServerFeatureLevel verified_feature_level;
f4461e56 LP	73	DnsServerFeatureLevel possible_feature_level;
de54e62b	74
d74fb368	75	size_t received_udp_packet_max;
de54e62b	76
6bb2c085 LP	77	unsigned n_failed_udp;
6bb2c085 LP	78	unsigned n_failed_tcp;
5d67a7ae	79	unsigned n_failed_tls;
de54e62b	80
6bb2c085	81	bool packet_truncated:1;
de54e62b LP	82	bool packet_bad_opt:1;
	83	bool packet_rrsig_missing:1;
	84
be808ea0 TG	85	usec_t verified_usec;
be808ea0 TG	86	usec_t features_grace_period_usec;
74b2466e	87
1e02e182 LP	88	/* Whether we already warned about downgrading to non-DNSSEC mode for this server */
	89	bool warned_downgrade:1;
	90
b652d4a2 LP	91	/* Used when GC'ing old DNS servers when configuration changes. */
	92	bool marked:1;
	93
0eac4623 LP	94	/* If linked is set, then this server appears in the servers linked list */
0eac4623 LP	95	bool linked:1;
74b2466e LP	96	LIST_FIELDS(DnsServer, servers);
	97	};
	98
	99	int dns_server_new(
	100	Manager *m,
0b58db65	101	DnsServer **ret,
4e945a6f	102	DnsServerType type,
0b58db65	103	Link *link,
0dd25fb9	104	int family,
2817157b	105	const union in_addr_union *address,
da9de738	106	uint16_t port,
2e22a54f GL	107	int ifindex,
2e22a54f GL	108	const char *server_string);
74b2466e	109
91b14d6f TG	110	DnsServer* dns_server_ref(DnsServer *s);
91b14d6f TG	111	DnsServer* dns_server_unref(DnsServer *s);
87f5a193	112
0eac4623	113	void dns_server_unlink(DnsServer *s);
0b58db65	114	void dns_server_move_back_and_unmark(DnsServer *s);
0eac4623	115
dbc4661a	116	void dns_server_packet_received(DnsServer *s, int protocol, DnsServerFeatureLevel level, size_t size);
3da3cdd5	117	void dns_server_packet_lost(DnsServer *s, int protocol, DnsServerFeatureLevel level);
6bb2c085	118	void dns_server_packet_truncated(DnsServer *s, DnsServerFeatureLevel level);
de54e62b LP	119	void dns_server_packet_rrsig_missing(DnsServer *s, DnsServerFeatureLevel level);
de54e62b LP	120	void dns_server_packet_bad_opt(DnsServer *s, DnsServerFeatureLevel level);
d001e0a3	121	void dns_server_packet_rcode_downgrade(DnsServer *s, DnsServerFeatureLevel level);
9df3ba6c	122
f4461e56 LP	123	DnsServerFeatureLevel dns_server_possible_feature_level(DnsServer *s);
f4461e56 LP	124
519ef046 LP	125	int dns_server_adjust_opt(DnsServer server, DnsPacket packet, DnsServerFeatureLevel level);
519ef046 LP	126
6cb08a89	127	const char dns_server_string(DnsServer server);
8aa5afd2	128	const char dns_server_string_full(DnsServer server);
2817157b	129	int dns_server_ifindex(const DnsServer *s);
da9de738	130	uint16_t dns_server_port(const DnsServer *s);
6cb08a89	131
92ec902a LP	132	bool dns_server_dnssec_supported(DnsServer *server);
92ec902a LP	133
1e02e182 LP	134	void dns_server_warn_downgrade(DnsServer *server);
1e02e182 LP	135
1b860092	136	DnsServer dns_server_find(DnsServer first, int family, const union in_addr_union in_addr, uint16_t port, int ifindex, const char name);
4b95f179 LP	137
	138	void dns_server_unlink_all(DnsServer *first);
	139	void dns_server_unlink_marked(DnsServer *first);
	140	void dns_server_mark_all(DnsServer *first);
f2f1dbe5	141
4b95f179	142	DnsServer manager_get_first_dns_server(Manager m, DnsServerType t);
636e813d	143
0eac4623	144	DnsServer manager_set_dns_server(Manager m, DnsServer *s);
0eac4623 LP	145	DnsServer manager_get_dns_server(Manager m);
	146	void manager_next_dns_server(Manager *m);
	147
12bf2331	148	DnssecMode dns_server_get_dnssec_mode(DnsServer *s);
c9299be2	149	DnsOverTlsMode dns_server_get_dns_over_tls_mode(DnsServer *s);
12bf2331	150
8300ba21 TG	151	DEFINE_TRIVIAL_CLEANUP_FUNC(DnsServer*, dns_server_unref);
8300ba21 TG	152
d5099efc	153	extern const struct hash_ops dns_server_hash_ops;
ce7c8b20 LP	154
ce7c8b20 LP	155	void dns_server_flush_cache(DnsServer *s);
59c0fd0e LP	156
	157	void dns_server_reset_features(DnsServer *s);
	158	void dns_server_reset_features_all(DnsServer *s);
cf84484a LP	159
cf84484a LP	160	void dns_server_dump(DnsServer s, FILE f);
904dcaf9 LP	161
904dcaf9 LP	162	void dns_server_unref_stream(DnsServer *s);
f76fa088 LP	163
f76fa088 LP	164	DnsScope dns_server_scope(DnsServer s);