1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
6 This file is part of systemd.
8 Copyright 2014 Lennart Poettering
10 systemd is free software; you can redistribute it and/or modify it
11 under the terms of the GNU Lesser General Public License as published by
12 the Free Software Foundation; either version 2.1 of the License, or
13 (at your option) any later version.
15 systemd is distributed in the hope that it will be useful, but
16 WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public License
21 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <netinet/in.h>
29 #include "in-addr-util.h"
32 typedef struct DnsResourceKey DnsResourceKey
;
33 typedef struct DnsResourceRecord DnsResourceRecord
;
34 typedef struct DnsTxtItem DnsTxtItem
;
37 #define DNSKEY_FLAG_SEP (UINT16_C(1) << 0)
38 #define DNSKEY_FLAG_REVOKE (UINT16_C(1) << 7)
39 #define DNSKEY_FLAG_ZONE_KEY (UINT16_C(1) << 8)
42 #define MDNS_RR_CACHE_FLUSH (UINT16_C(1) << 15)
44 /* DNSSEC algorithm identifiers, see
45 * http://tools.ietf.org/html/rfc4034#appendix-A.1 and
46 * https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml */
48 DNSSEC_ALGORITHM_RSAMD5
= 1,
52 DNSSEC_ALGORITHM_RSASHA1
,
53 DNSSEC_ALGORITHM_DSA_NSEC3_SHA1
,
54 DNSSEC_ALGORITHM_RSASHA1_NSEC3_SHA1
,
55 DNSSEC_ALGORITHM_RSASHA256
= 8, /* RFC 5702 */
56 DNSSEC_ALGORITHM_RSASHA512
= 10, /* RFC 5702 */
57 DNSSEC_ALGORITHM_ECC_GOST
= 12, /* RFC 5933 */
58 DNSSEC_ALGORITHM_ECDSAP256SHA256
= 13, /* RFC 6605 */
59 DNSSEC_ALGORITHM_ECDSAP384SHA384
= 14, /* RFC 6605 */
60 DNSSEC_ALGORITHM_INDIRECT
= 252,
61 DNSSEC_ALGORITHM_PRIVATEDNS
,
62 DNSSEC_ALGORITHM_PRIVATEOID
,
63 _DNSSEC_ALGORITHM_MAX_DEFINED
66 /* DNSSEC digest identifiers, see
67 * https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml */
69 DNSSEC_DIGEST_SHA1
= 1,
70 DNSSEC_DIGEST_SHA256
= 2, /* RFC 4509 */
71 DNSSEC_DIGEST_GOST_R_34_11_94
= 3, /* RFC 5933 */
72 DNSSEC_DIGEST_SHA384
= 4, /* RFC 6605 */
73 _DNSSEC_DIGEST_MAX_DEFINED
76 /* DNSSEC NSEC3 hash algorithms, see
77 * https://www.iana.org/assignments/dnssec-nsec3-parameters/dnssec-nsec3-parameters.xhtml */
79 NSEC3_ALGORITHM_SHA1
= 1,
80 _NSEC3_ALGORITHM_MAX_DEFINED
83 struct DnsResourceKey
{
86 char *_name
; /* don't access directy, use DNS_RESOURCE_KEY_NAME()! */
89 /* Creates a temporary resource key. This is only useful to quickly
90 * look up something, without allocating a full DnsResourceKey object
91 * for it. Note that it is not OK to take references to this kind of
92 * resource key object. */
93 #define DNS_RESOURCE_KEY_CONST(c, t, n) \
95 .n_ref = (unsigned) -1, \
104 LIST_FIELDS(DnsTxtItem
, items
);
108 struct DnsResourceRecord
{
113 usec_t expiry
; /* RRSIG signature expiry */
115 bool wire_format_canonical
:1;
117 size_t wire_format_size
;
118 size_t wire_format_rdata_offset
;
134 } ptr
, ns
, cname
, dname
;
146 struct in_addr in_addr
;
150 struct in6_addr in6_addr
;
168 /* https://tools.ietf.org/html/rfc1876 */
179 /* https://tools.ietf.org/html/rfc4255#section-3.1 */
184 size_t fingerprint_size
;
187 /* http://tools.ietf.org/html/rfc4034#section-2.1 */
196 /* http://tools.ietf.org/html/rfc4034#section-3.1 */
198 uint16_t type_covered
;
201 uint32_t original_ttl
;
207 size_t signature_size
;
210 /* https://tools.ietf.org/html/rfc4034#section-4.1 */
212 char *next_domain_name
;
216 /* https://tools.ietf.org/html/rfc4034#section-5.1 */
231 void *next_hashed_name
;
232 size_t next_hashed_name_size
;
238 static inline const char* DNS_RESOURCE_KEY_NAME(const DnsResourceKey
*key
) {
245 return (char*) key
+ sizeof(DnsResourceKey
);
248 static inline const void* DNS_RESOURCE_RECORD_RDATA(DnsResourceRecord
*rr
) {
252 if (!rr
->wire_format
)
255 assert(rr
->wire_format_rdata_offset
<= rr
->wire_format_size
);
256 return (uint8_t*) rr
->wire_format
+ rr
->wire_format_rdata_offset
;
259 static inline size_t DNS_RESOURCE_RECORD_RDATA_SIZE(DnsResourceRecord
*rr
) {
262 if (!rr
->wire_format
)
265 assert(rr
->wire_format_rdata_offset
<= rr
->wire_format_size
);
266 return rr
->wire_format_size
- rr
->wire_format_rdata_offset
;
269 DnsResourceKey
* dns_resource_key_new(uint16_t class, uint16_t type
, const char *name
);
270 DnsResourceKey
* dns_resource_key_new_redirect(const DnsResourceKey
*key
, const DnsResourceRecord
*cname
);
271 int dns_resource_key_new_append_suffix(DnsResourceKey
**ret
, DnsResourceKey
*key
, char *name
);
272 DnsResourceKey
* dns_resource_key_new_consume(uint16_t class, uint16_t type
, char *name
);
273 DnsResourceKey
* dns_resource_key_ref(DnsResourceKey
*key
);
274 DnsResourceKey
* dns_resource_key_unref(DnsResourceKey
*key
);
275 bool dns_resource_key_is_address(const DnsResourceKey
*key
);
276 int dns_resource_key_equal(const DnsResourceKey
*a
, const DnsResourceKey
*b
);
277 int dns_resource_key_match_rr(const DnsResourceKey
*key
, DnsResourceRecord
*rr
, const char *search_domain
);
278 int dns_resource_key_match_cname_or_dname(const DnsResourceKey
*key
, const DnsResourceKey
*cname
, const char *search_domain
);
279 int dns_resource_key_match_soa(const DnsResourceKey
*key
, const DnsResourceKey
*soa
);
280 int dns_resource_key_to_string(const DnsResourceKey
*key
, char **ret
);
281 DEFINE_TRIVIAL_CLEANUP_FUNC(DnsResourceKey
*, dns_resource_key_unref
);
283 static inline bool dns_key_is_shared(const DnsResourceKey
*key
) {
284 return IN_SET(key
->type
, DNS_TYPE_PTR
);
287 DnsResourceRecord
* dns_resource_record_new(DnsResourceKey
*key
);
288 DnsResourceRecord
* dns_resource_record_new_full(uint16_t class, uint16_t type
, const char *name
);
289 DnsResourceRecord
* dns_resource_record_ref(DnsResourceRecord
*rr
);
290 DnsResourceRecord
* dns_resource_record_unref(DnsResourceRecord
*rr
);
291 int dns_resource_record_new_reverse(DnsResourceRecord
**ret
, int family
, const union in_addr_union
*address
, const char *name
);
292 int dns_resource_record_new_address(DnsResourceRecord
**ret
, int family
, const union in_addr_union
*address
, const char *name
);
293 int dns_resource_record_equal(const DnsResourceRecord
*a
, const DnsResourceRecord
*b
);
294 const char* dns_resource_record_to_string(DnsResourceRecord
*rr
);
295 DEFINE_TRIVIAL_CLEANUP_FUNC(DnsResourceRecord
*, dns_resource_record_unref
);
297 int dns_resource_record_to_wire_format(DnsResourceRecord
*rr
, bool canonical
);
299 DnsTxtItem
*dns_txt_item_free_all(DnsTxtItem
*i
);
300 bool dns_txt_item_equal(DnsTxtItem
*a
, DnsTxtItem
*b
);
302 extern const struct hash_ops dns_resource_key_hash_ops
;
304 int dnssec_algorithm_to_string_alloc(int i
, char **ret
);
305 int dnssec_algorithm_from_string(const char *s
) _pure_
;
307 int dnssec_digest_to_string_alloc(int i
, char **ret
);
308 int dnssec_digest_from_string(const char *s
) _pure_
;