dns.h

Go to the documentation of this file.

/*
 *  OpenVPN -- An application to securely tunnel IP networks
 *             over a single UDP port, with support for SSL/TLS-based
 *             session authentication and key exchange,
 *             packet encryption, packet authentication, and
 *             packet compression.
 *
 *  Copyright (C) 2022-2024 OpenVPN Inc <sales@openvpn.net>
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License version 2
 *  as published by the Free Software Foundation.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License along
 *  with this program; if not, write to the Free Software Foundation, Inc.,
 *  51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */
 
#ifndef DNS_H
#define DNS_H
 
#include "buffer.h"
#include "env_set.h"
 
enum dns_security {
    DNS_SECURITY_UNSET,
    DNS_SECURITY_NO,
    DNS_SECURITY_YES,
    DNS_SECURITY_OPTIONAL
};
 
enum dns_server_transport {
    DNS_TRANSPORT_UNSET,
    DNS_TRANSPORT_PLAIN,
    DNS_TRANSPORT_HTTPS,
    DNS_TRANSPORT_TLS
};
 
struct dns_domain {
    struct dns_domain *next;
    const char *name;
};
 
struct dns_server_addr
{
    union {
        struct in_addr a4;
        struct in6_addr a6;
    } in;
    sa_family_t family;
    in_port_t port;
};
 
struct dns_server {
    struct dns_server *next;
    long priority;
    size_t addr_count;
    struct dns_server_addr addr[8];
    struct dns_domain *domains;
    enum dns_security dnssec;
    enum dns_server_transport transport;
    const char *sni;
};
 
struct dns_options {
    struct dns_domain *search_domains;
    struct dns_server *servers_prepull;
    struct dns_server *servers;
    struct gc_arena gc;
};
 
bool dns_server_priority_parse(long *priority, const char *str, bool pulled);
 
struct dns_server *dns_server_get(struct dns_server **entry, long priority, struct gc_arena *gc);
 
void dns_domain_list_append(struct dns_domain **entry, char **domains, struct gc_arena *gc);
 
bool dns_server_addr_parse(struct dns_server *server, const char *addr);
 
bool dns_options_verify(int msglevel, const struct dns_options *o);
 
struct dns_options clone_dns_options(const struct dns_options o, struct gc_arena *gc);
 
void dns_options_preprocess_pull(struct dns_options *o);
 
void dns_options_postprocess_pull(struct dns_options *o);
 
void setenv_dns_options(const struct dns_options *o, struct env_set *es);
 
void show_dns_options(const struct dns_options *o);
 
#endif /* ifndef DNS_H */