2 * Copyright (C) 2009 Internet Systems Consortium, Inc. ("ISC")
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
9 * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
10 * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
11 * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
12 * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
13 * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
14 * PERFORMANCE OF THIS SOFTWARE.
17 /* $Id: sample.c,v 1.5 2009/09/29 15:06:07 fdupont Exp $ */
21 #include <sys/types.h>
22 #include <sys/socket.h>
24 #include <netinet/in.h>
26 #include <arpa/inet.h>
34 #include <isc/base64.h>
35 #include <isc/buffer.h>
38 #include <isc/sockaddr.h>
41 #include <dns/client.h>
42 #include <dns/fixedname.h>
43 #include <dns/keyvalues.h>
46 #include <dns/rdata.h>
47 #include <dns/rdataset.h>
48 #include <dns/rdatastruct.h>
49 #include <dns/rdatatype.h>
50 #include <dns/result.h>
51 #include <dns/secalg.h>
58 printdata(dns_rdataset_t *rdataset, dns_name_t *owner) {
64 if (!dns_rdataset_isassociated(rdataset)) {
65 printf("[WARN: empty]\n");
66 return (ISC_R_SUCCESS);
69 isc_buffer_init(&target, t, sizeof(t));
71 result = dns_rdataset_totext(rdataset, owner, ISC_FALSE, ISC_FALSE,
73 if (result != ISC_R_SUCCESS)
75 isc_buffer_usedregion(&target, &r);
76 printf("%.*s", (int)r.length, (char *)r.base);
78 return (ISC_R_SUCCESS);
81 ISC_PLATFORM_NORETURN_PRE static void
82 usage(void) ISC_PLATFORM_NORETURN_POST;
86 fprintf(stderr, "sample [-t RRtype] "
87 "[[-a algorithm] [-e] -k keyname -K keystring] "
88 "[-s domain:serveraddr_for_domain ] "
89 "server_address hostname\n");
95 set_key(dns_client_t *client, char *keynamestr, char *keystr,
96 isc_boolean_t is_sep, isc_mem_t **mctxp)
99 dns_fixedname_t fkeyname;
102 dns_rdata_dnskey_t keystruct;
103 unsigned char keydata[4096];
104 isc_buffer_t keydatabuf;
105 unsigned char rrdata[4096];
106 isc_buffer_t rrdatabuf;
112 result = isc_mem_create(0, 0, mctxp);
113 if (result != ISC_R_SUCCESS) {
114 fprintf(stderr, "failed to crate mctx\n");
118 if (algname != NULL) {
120 tr.length = strlen(algname);
121 result = dns_secalg_fromtext(&alg, &tr);
122 if (result != ISC_R_SUCCESS) {
123 fprintf(stderr, "failed to identify the algorithm\n");
127 alg = DNS_KEYALG_RSASHA1;
129 keystruct.common.rdclass = dns_rdataclass_in;
130 keystruct.common.rdtype = dns_rdatatype_dnskey;
131 keystruct.flags = DNS_KEYOWNER_ZONE; /* fixed */
133 keystruct.flags |= DNS_KEYFLAG_KSK;
134 keystruct.protocol = DNS_KEYPROTO_DNSSEC; /* fixed */
135 keystruct.algorithm = alg;
137 isc_buffer_init(&keydatabuf, keydata, sizeof(keydata));
138 isc_buffer_init(&rrdatabuf, rrdata, sizeof(rrdata));
139 result = isc_base64_decodestring(keystr, &keydatabuf);
140 if (result != ISC_R_SUCCESS) {
141 fprintf(stderr, "base64 decode failed\n");
144 isc_buffer_usedregion(&keydatabuf, &r);
145 keystruct.datalen = r.length;
146 keystruct.data = r.base;
148 result = dns_rdata_fromstruct(NULL, keystruct.common.rdclass,
149 keystruct.common.rdtype,
150 &keystruct, &rrdatabuf);
151 if (result != ISC_R_SUCCESS) {
152 fprintf(stderr, "failed to construct key rdata\n");
155 namelen = strlen(keynamestr);
156 isc_buffer_init(&b, keynamestr, namelen);
157 isc_buffer_add(&b, namelen);
158 dns_fixedname_init(&fkeyname);
159 keyname = dns_fixedname_name(&fkeyname);
160 result = dns_name_fromtext(keyname, &b, dns_rootname, 0, NULL);
161 if (result != ISC_R_SUCCESS) {
162 fprintf(stderr, "failed to construct key name\n");
165 result = dns_client_addtrustedkey(client, dns_rdataclass_in,
166 keyname, &rrdatabuf);
167 if (result != ISC_R_SUCCESS) {
168 fprintf(stderr, "failed to add key for %s\n",
175 addserver(dns_client_t *client, const char *addrstr, const char *namespace) {
176 struct addrinfo hints, *res;
179 isc_sockaddrlist_t servers;
183 dns_fixedname_t fname;
184 dns_name_t *name = NULL;
186 memset(&hints, 0, sizeof(hints));
187 hints.ai_family = AF_UNSPEC;
188 hints.ai_socktype = SOCK_DGRAM;
189 hints.ai_protocol = IPPROTO_UDP;
190 hints.ai_flags = AI_NUMERICHOST;
191 gai_error = getaddrinfo(addrstr, "53", &hints, &res);
192 if (gai_error != 0) {
193 fprintf(stderr, "getaddrinfo failed: %s\n",
194 gai_strerror(gai_error));
197 INSIST(res->ai_addrlen <= sizeof(sa.type));
198 memcpy(&sa.type, res->ai_addr, res->ai_addrlen);
200 sa.length = res->ai_addrlen;
201 ISC_LINK_INIT(&sa, link);
202 ISC_LIST_INIT(servers);
203 ISC_LIST_APPEND(servers, &sa, link);
205 if (namespace != NULL) {
206 namelen = strlen(namespace);
207 isc_buffer_init(&b, namespace, namelen);
208 isc_buffer_add(&b, namelen);
209 dns_fixedname_init(&fname);
210 name = dns_fixedname_name(&fname);
211 result = dns_name_fromtext(name, &b, dns_rootname, 0, NULL);
212 if (result != ISC_R_SUCCESS) {
213 fprintf(stderr, "failed to convert qname: %d\n",
219 result = dns_client_setservers(client, dns_rdataclass_in, name,
221 if (result != ISC_R_SUCCESS) {
222 fprintf(stderr, "set server failed: %d\n", result);
228 main(int argc, char *argv[]) {
231 char *altserver = NULL;
232 char *altserveraddr = NULL;
233 char *altservername = NULL;
234 dns_client_t *client = NULL;
235 char *keynamestr = NULL;
239 dns_fixedname_t qname0;
241 dns_name_t *qname, *name;
242 dns_rdatatype_t type = dns_rdatatype_a;
243 dns_rdataset_t *rdataset;
244 dns_namelist_t namelist;
245 isc_mem_t *keymctx = NULL;
246 unsigned int clientopt, resopt;
247 isc_boolean_t is_sep = ISC_FALSE;
249 while ((ch = getopt(argc, argv, "a:es:t:k:K:")) != -1) {
253 tr.length = strlen(optarg);
254 result = dns_rdatatype_fromtext(&type, &tr);
255 if (result != ISC_R_SUCCESS) {
257 "invalid RRtype: %s\n", optarg);
268 if (altserver != NULL) {
269 fprintf(stderr, "alternate server "
270 "already defined: %s\n",
292 if (altserver != NULL) {
295 cp = strchr(altserver, ':');
297 fprintf(stderr, "invalid alternate server: %s\n",
302 altservername = altserver;
303 altserveraddr = cp + 1;
307 result = dns_lib_init();
308 if (result != ISC_R_SUCCESS) {
309 fprintf(stderr, "dns_lib_init failed: %d\n", result);
314 result = dns_client_create(&client, clientopt);
315 if (result != ISC_R_SUCCESS) {
316 fprintf(stderr, "dns_client_create failed: %d\n", result);
320 /* Set the nameserver */
321 addserver(client, argv[0], NULL);
323 /* Set the alternate nameserver (when specified) */
324 if (altserver != NULL)
325 addserver(client, altserveraddr, altservername);
327 /* Install DNSSEC key (if given) */
328 if (keynamestr != NULL) {
329 if (keystr == NULL) {
331 "key string is missing "
332 "while key name is provided\n");
335 set_key(client, keynamestr, keystr, is_sep, &keymctx);
338 /* Construct qname */
339 namelen = strlen(argv[1]);
340 isc_buffer_init(&b, argv[1], namelen);
341 isc_buffer_add(&b, namelen);
342 dns_fixedname_init(&qname0);
343 qname = dns_fixedname_name(&qname0);
344 result = dns_name_fromtext(qname, &b, dns_rootname, 0, NULL);
345 if (result != ISC_R_SUCCESS)
346 fprintf(stderr, "failed to convert qname: %d\n", result);
348 /* Perform resolution */
350 if (keynamestr == NULL)
351 resopt |= DNS_CLIENTRESOPT_NODNSSEC;
352 ISC_LIST_INIT(namelist);
353 result = dns_client_resolve(client, qname, dns_rdataclass_in, type,
355 if (result != ISC_R_SUCCESS) {
357 "resolution failed: %s\n", dns_result_totext(result));
359 for (name = ISC_LIST_HEAD(namelist); name != NULL;
360 name = ISC_LIST_NEXT(name, link)) {
361 for (rdataset = ISC_LIST_HEAD(name->list);
363 rdataset = ISC_LIST_NEXT(rdataset, link)) {
364 if (printdata(rdataset, name) != ISC_R_SUCCESS)
365 fprintf(stderr, "print data failed\n");
369 dns_client_freeresanswer(client, &namelist);
372 dns_client_destroy(&client);
373 if (keynamestr != NULL)
374 isc_mem_destroy(&keymctx);
projects / FreeBSD / releng / 9.2.git / blob