domain 0.12.0

A DNS library for Rust.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226

//! Extended DNS errors.
//!
//! See [RFC 8914](https://datatracker.ietf.org/doc/html/rfc8914).

use core::fmt;

use domain_macros::*;

use crate::new::base::wire::U16;

//----------- ExtError -------------------------------------------------------

/// An extended DNS error.
#[derive(
    PartialEq, Eq, Hash, AsBytes, BuildBytes, ParseBytesZC, UnsizedCopy,
)]
#[repr(C)]
pub struct ExtError {
    /// The error code.
    pub code: ExtErrorCode,

    /// A human-readable description of the error.
    text: str,
}

impl ExtError {
    /// A human-readable description of the error.
    pub fn text(&self) -> Option<&str> {
        if !self.text.is_empty() {
            Some(self.text.strip_suffix('\0').unwrap_or(&self.text))
        } else {
            None
        }
    }
}

//--- Formatting

impl fmt::Debug for ExtError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.debug_struct("ExtError")
            .field("code", &self.code)
            .field("text", &self.text())
            .finish()
    }
}

//----------- ExtErrorCode ---------------------------------------------------

/// The code for an extended DNS error.
#[derive(
    Copy,
    Clone,
    PartialEq,
    Eq,
    PartialOrd,
    Ord,
    Hash,
    AsBytes,
    BuildBytes,
    ParseBytes,
    ParseBytesZC,
    SplitBytes,
    SplitBytesZC,
    UnsizedCopy,
)]
#[repr(transparent)]
pub struct ExtErrorCode {
    /// The error code.
    pub code: U16,
}

//--- Associated Constants

impl ExtErrorCode {
    /// Create a new [`ExtErrorCode`].
    const fn new(code: u16) -> Self {
        Self {
            code: U16::new(code),
        }
    }

    /// An unspecified extended error.
    ///
    /// This should be used when there is no other appropriate error code.
    pub const OTHER: Self = Self::new(0);

    /// DNSSEC validation failed because a DNSKEY used an unknown algorithm.
    pub const BAD_DNSKEY_ALG: Self = Self::new(1);

    /// DNSSEC validation failed because a DS set used an unknown algorithm.
    pub const BAD_DS_ALG: Self = Self::new(2);

    /// An up-to-date answer could not be retrieved in time.
    pub const STALE_ANSWER: Self = Self::new(3);

    /// Policy dictated that a forged answer be returned.
    pub const FORGED_ANSWER: Self = Self::new(4);

    /// The DNSSEC validity of the answer could not be determined.
    pub const DNSSEC_INDETERMINATE: Self = Self::new(5);

    /// The answer was invalid as per DNSSEC.
    pub const DNSSEC_BOGUS: Self = Self::new(6);

    /// The DNSSEC signature of the answer expired.
    pub const SIG_EXPIRED: Self = Self::new(7);

    /// The DNSSEC signature of the answer is valid in the future.
    pub const SIG_FUTURE: Self = Self::new(8);

    /// DNSSEC validation failed because a DNSKEY record was missing.
    pub const DNSKEY_MISSING: Self = Self::new(9);

    /// DNSSEC validation failed because RRSIGs were unexpectedly missing.
    pub const RRSIGS_MISSING: Self = Self::new(10);

    /// DNSSEC validation failed because a DNSKEY wasn't a ZSK.
    pub const NOT_ZSK: Self = Self::new(11);

    /// DNSSEC validation failed because an NSEC(3) record could not be found.
    pub const NSEC_MISSING: Self = Self::new(12);

    /// The server failure error was cached from an upstream.
    pub const CACHED_ERROR: Self = Self::new(13);

    /// The server is not ready to serve requests.
    pub const NOT_READY: Self = Self::new(14);

    /// The request is blocked by internal policy.
    pub const BLOCKED: Self = Self::new(15);

    /// The request is blocked by external policy.
    pub const CENSORED: Self = Self::new(16);

    /// The request is blocked by the client's own filters.
    pub const FILTERED: Self = Self::new(17);

    /// The client is prohibited from making requests.
    pub const PROHIBITED: Self = Self::new(18);

    /// An up-to-date answer could not be retrieved in time.
    pub const STALE_NXDOMAIN: Self = Self::new(19);

    /// The request cannot be answered authoritatively.
    pub const NOT_AUTHORITATIVE: Self = Self::new(20);

    /// The request / operation is not supported.
    pub const NOT_SUPPORTED: Self = Self::new(21);

    /// No upstream authorities answered the request (in time).
    pub const NO_REACHABLE_AUTHORITY: Self = Self::new(22);

    /// An unrecoverable network error occurred.
    pub const NETWORK_ERROR: Self = Self::new(23);

    /// The server's local zone data is invalid.
    pub const INVALID_DATA: Self = Self::new(24);

    /// An impure operation was stated in a DNS-over-QUIC 0-RTT packet.
    ///
    /// See [RFC 9250](https://datatracker.ietf.org/doc/html/rfc9250).
    pub const TOO_EARLY: Self = Self::new(26);

    /// DNSSEC validation failed because an NSEC3 parameter was unsupported.
    pub const BAD_NSEC3_ITERS: Self = Self::new(27);
}

//--- Inspection

impl ExtErrorCode {
    /// Whether this is a private-use code.
    ///
    /// Private-use codes occupy the range 49152 to 65535 (inclusive).
    pub fn is_private(&self) -> bool {
        self.code >= 49152
    }
}

//--- Formatting

impl fmt::Debug for ExtErrorCode {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        let text = match *self {
            Self::OTHER => "other",
            Self::BAD_DNSKEY_ALG => "unsupported DNSKEY algorithm",
            Self::BAD_DS_ALG => "unspported DS digest type",
            Self::STALE_ANSWER => "stale answer",
            Self::FORGED_ANSWER => "forged answer",
            Self::DNSSEC_INDETERMINATE => "DNSSEC indeterminate",
            Self::DNSSEC_BOGUS => "DNSSEC bogus",
            Self::SIG_EXPIRED => "signature expired",
            Self::SIG_FUTURE => "signature not yet valid",
            Self::DNSKEY_MISSING => "DNSKEY missing",
            Self::RRSIGS_MISSING => "RRSIGs missing",
            Self::NOT_ZSK => "no zone key bit set",
            Self::NSEC_MISSING => "nsec missing",
            Self::CACHED_ERROR => "cached error",
            Self::NOT_READY => "not ready",
            Self::BLOCKED => "blocked",
            Self::CENSORED => "censored",
            Self::FILTERED => "filtered",
            Self::PROHIBITED => "prohibited",
            Self::STALE_NXDOMAIN => "stale NXDOMAIN answer",
            Self::NOT_AUTHORITATIVE => "not authoritative",
            Self::NOT_SUPPORTED => "not supported",
            Self::NO_REACHABLE_AUTHORITY => "no reachable authority",
            Self::NETWORK_ERROR => "network error",
            Self::INVALID_DATA => "invalid data",
            Self::TOO_EARLY => "too early",
            Self::BAD_NSEC3_ITERS => "unsupported NSEC3 iterations value",

            _ => {
                return f
                    .debug_tuple("ExtErrorCode")
                    .field(&self.code.get())
                    .finish();
            }
        };

        f.debug_tuple("ExtErrorCode")
            .field(&self.code.get())
            .field(&text)
            .finish()
    }
}