mhost 0.11.3

Fast, async DNS lookup library and CLI -- modern dig/host replacement with parallel multi-server queries, DoH, DoT, subdomain discovery, and zone verification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

// Copyright 2017-2021 Lukas Pustina <lukas@pustina.de>
//
// Licensed under the Apache License, Version 2.0, <LICENSE-APACHE or
// http://apache.org/licenses/LICENSE-2.0> or the MIT license <LICENSE-MIT or
// http://opensource.org/licenses/MIT>, at your option. This file may not be
// copied, modified, or distributed except according to those terms.

//! Pure DNS lint checks that analyse [`Lookups`] results for common misconfigurations.
//!
//! Each submodule targets a specific DNS record type or practice (CAA, CNAME, DMARC,
//! DNSSEC, HTTPS/SVCB, MX, NS, SPF, TTL). The lint functions are synchronous, pure
//! functions with no network or app-layer dependencies, making them suitable for both
//! library consumers and application code.
//!
//! # Key types
//!
//! - [`CheckResult`] — outcome of an individual lint check (Ok / Warning / Failed / NotFound).
//!
//! # Example
//!
//! ```no_run
//! use mhost::lints::{check_spf, CheckResult};
//! # use mhost::resolver::Lookups;
//! # fn example(lookups: &Lookups) {
//! let results = check_spf(lookups);
//! for r in &results {
//!     if r.is_failed() {
//!         eprintln!("SPF lint failure: {:?}", r);
//!     }
//! }
//! # }
//! ```
//!
//! [`Lookups`]: crate::resolver::Lookups

use serde::Serialize;

pub mod caa;
pub mod cnames;
pub mod dmarc;
pub mod dnssec_lint;
pub mod https_svcb;
pub mod mx;
pub mod ns;
pub mod spf;
pub mod ttl;

/// Outcome of an individual lint check.
#[derive(Debug, Clone, PartialEq, Eq, Serialize)]
pub enum CheckResult {
    NotFound(),
    Ok(String),
    Warning(String),
    Failed(String),
}

impl CheckResult {
    pub fn is_warning(&self) -> bool {
        matches!(self, CheckResult::Warning(_))
    }

    pub fn is_failed(&self) -> bool {
        matches!(self, CheckResult::Failed(_))
    }
}

// Re-export shared lint functions
pub use caa::check_caa;
pub use cnames::check_cname_apex;
pub use dmarc::{check_dmarc_records, is_dmarc};
pub use dnssec_lint::check_dnssec;
pub use https_svcb::check_https_svcb_mode;
pub use mx::check_mx_sync;
pub use ns::check_ns_count;
pub use spf::check_spf;
pub use ttl::check_ttl;