1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
6 This file is part of systemd.
8 Copyright 2014 Lennart Poettering
10 systemd is free software; you can redistribute it and/or modify it
11 under the terms of the GNU Lesser General Public License as published by
12 the Free Software Foundation; either version 2.1 of the License, or
13 (at your option) any later version.
15 systemd is distributed in the hope that it will be useful, but
16 WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public License
21 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <netinet/in.h>
29 #include "in-addr-util.h"
32 typedef struct DnsResourceKey DnsResourceKey
;
33 typedef struct DnsResourceRecord DnsResourceRecord
;
34 typedef struct DnsTxtItem DnsTxtItem
;
37 #define DNSKEY_FLAG_ZONE_KEY (UINT16_C(1) << 8)
38 #define DNSKEY_FLAG_SEP (UINT16_C(1) << 0)
41 #define MDNS_RR_CACHE_FLUSH (UINT16_C(1) << 15)
43 /* DNSSEC algorithm identifiers, see
44 * http://tools.ietf.org/html/rfc4034#appendix-A.1 and
45 * https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml */
47 DNSSEC_ALGORITHM_RSAMD5
= 1,
51 DNSSEC_ALGORITHM_RSASHA1
,
52 DNSSEC_ALGORITHM_DSA_NSEC3_SHA1
,
53 DNSSEC_ALGORITHM_RSASHA1_NSEC3_SHA1
,
54 DNSSEC_ALGORITHM_RSASHA256
= 8, /* RFC 5702 */
55 DNSSEC_ALGORITHM_RSASHA512
= 10, /* RFC 5702 */
56 DNSSEC_ALGORITHM_ECDSAP256SHA256
= 13, /* RFC 6605 */
57 DNSSEC_ALGORITHM_ECDSAP384SHA384
= 14, /* RFC 6605 */
58 DNSSEC_ALGORITHM_INDIRECT
= 252,
59 DNSSEC_ALGORITHM_PRIVATEDNS
,
60 DNSSEC_ALGORITHM_PRIVATEOID
,
61 _DNSSEC_ALGORITHM_MAX_DEFINED
64 /* DNSSEC digest identifiers, see
65 * https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml */
67 DNSSEC_DIGEST_SHA1
= 1,
68 DNSSEC_DIGEST_SHA256
= 2,
69 DNSSEC_DIGEST_SHA384
= 4,
70 _DNSSEC_DIGEST_MAX_DEFINED
73 struct DnsResourceKey
{
76 char *_name
; /* don't access directy, use DNS_RESOURCE_KEY_NAME()! */
79 /* Creates a temporary resource key. This is only useful to quickly
80 * look up something, without allocating a full DnsResourceKey object
81 * for it. Note that it is not OK to take references to this kind of
82 * resource key object. */
83 #define DNS_RESOURCE_KEY_CONST(c, t, n) \
85 .n_ref = (unsigned) -1, \
94 LIST_FIELDS(DnsTxtItem
, items
);
98 struct DnsResourceRecord
{
103 usec_t expiry
; /* RRSIG signature expiry */
105 bool wire_format_canonical
:1;
107 size_t wire_format_size
;
108 size_t wire_format_rdata_offset
;
124 } ptr
, ns
, cname
, dname
;
136 struct in_addr in_addr
;
140 struct in6_addr in6_addr
;
176 /* https://tools.ietf.org/html/rfc4255#section-3.1 */
181 size_t fingerprint_size
;
184 /* http://tools.ietf.org/html/rfc4034#section-2.1 */
193 /* http://tools.ietf.org/html/rfc4034#section-3.1 */
195 uint16_t type_covered
;
198 uint32_t original_ttl
;
204 size_t signature_size
;
207 /* https://tools.ietf.org/html/rfc4034#section-4.1 */
209 char *next_domain_name
;
219 void *next_hashed_name
;
220 size_t next_hashed_name_size
;
226 static inline const char* DNS_RESOURCE_KEY_NAME(const DnsResourceKey
*key
) {
227 if (_unlikely_(!key
))
233 return (char*) key
+ sizeof(DnsResourceKey
);
236 DnsResourceKey
* dns_resource_key_new(uint16_t class, uint16_t type
, const char *name
);
237 DnsResourceKey
* dns_resource_key_new_redirect(const DnsResourceKey
*key
, const DnsResourceRecord
*cname
);
238 int dns_resource_key_new_append_suffix(DnsResourceKey
**ret
, DnsResourceKey
*key
, char *name
);
239 DnsResourceKey
* dns_resource_key_new_consume(uint16_t class, uint16_t type
, char *name
);
240 DnsResourceKey
* dns_resource_key_ref(DnsResourceKey
*key
);
241 DnsResourceKey
* dns_resource_key_unref(DnsResourceKey
*key
);
242 bool dns_resource_key_is_address(const DnsResourceKey
*key
);
243 int dns_resource_key_equal(const DnsResourceKey
*a
, const DnsResourceKey
*b
);
244 int dns_resource_key_match_rr(const DnsResourceKey
*key
, DnsResourceRecord
*rr
, const char *search_domain
);
245 int dns_resource_key_match_cname_or_dname(const DnsResourceKey
*key
, const DnsResourceKey
*cname
, const char *search_domain
);
246 int dns_resource_key_match_soa(const DnsResourceKey
*key
, const DnsResourceKey
*soa
);
247 int dns_resource_key_to_string(const DnsResourceKey
*key
, char **ret
);
248 DEFINE_TRIVIAL_CLEANUP_FUNC(DnsResourceKey
*, dns_resource_key_unref
);
250 static inline bool dns_key_is_shared(const DnsResourceKey
*key
) {
251 return IN_SET(key
->type
, DNS_TYPE_PTR
);
254 DnsResourceRecord
* dns_resource_record_new(DnsResourceKey
*key
);
255 DnsResourceRecord
* dns_resource_record_new_full(uint16_t class, uint16_t type
, const char *name
);
256 DnsResourceRecord
* dns_resource_record_ref(DnsResourceRecord
*rr
);
257 DnsResourceRecord
* dns_resource_record_unref(DnsResourceRecord
*rr
);
258 int dns_resource_record_new_reverse(DnsResourceRecord
**ret
, int family
, const union in_addr_union
*address
, const char *name
);
259 int dns_resource_record_new_address(DnsResourceRecord
**ret
, int family
, const union in_addr_union
*address
, const char *name
);
260 int dns_resource_record_equal(const DnsResourceRecord
*a
, const DnsResourceRecord
*b
);
261 const char* dns_resource_record_to_string(DnsResourceRecord
*rr
);
262 DEFINE_TRIVIAL_CLEANUP_FUNC(DnsResourceRecord
*, dns_resource_record_unref
);
264 int dns_resource_record_to_wire_format(DnsResourceRecord
*rr
, bool canonical
);
266 DnsTxtItem
*dns_txt_item_free_all(DnsTxtItem
*i
);
267 bool dns_txt_item_equal(DnsTxtItem
*a
, DnsTxtItem
*b
);
269 extern const struct hash_ops dns_resource_key_hash_ops
;
271 const char* dnssec_algorithm_to_string(int i
) _const_
;
272 int dnssec_algorithm_from_string(const char *s
) _pure_
;
274 const char *dnssec_digest_to_string(int i
) _const_
;
275 int dnssec_digest_from_string(const char *s
) _pure_
;