1/*
2 * Copyright (c) 1983, 1989, 1993
3 *    The Regents of the University of California.  All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 *    notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 *    notice, this list of conditions and the following disclaimer in the
12 *    documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 *    must display the following acknowledgement:
15 * 	This product includes software developed by the University of
16 * 	California, Berkeley and its contributors.
17 * 4. Neither the name of the University nor the names of its contributors
18 *    may be used to endorse or promote products derived from this software
19 *    without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34/*
35 * Copyright (c) 1996-1999 by Internet Software Consortium.
36 *
37 * Permission to use, copy, modify, and distribute this software for any
38 * purpose with or without fee is hereby granted, provided that the above
39 * copyright notice and this permission notice appear in all copies.
40 *
41 * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
42 * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
43 * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
44 * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
45 * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
46 * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
47 * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
48 * SOFTWARE.
49 */
50
51/*
52 *	$Id: nameser.h,v 1.1 2006/03/01 19:01:36 majka Exp $
53 */
54
55#ifndef _NAMESER_9_H_
56#define _NAMESER_9_H_
57
58#ifdef BIND_8_COMPAT
59#include <arpa/nameser_compat.h>
60#endif
61
62#include <sys/param.h>
63#if (!defined(BSD)) || (BSD < 199306)
64# include <sys/bitypes.h>
65#else
66# include <sys/types.h>
67#endif
68#include <sys/cdefs.h>
69
70/*
71 * Revision information.  This is the release date in YYYYMMDD format.
72 * It can change every day so the right thing to do with it is use it
73 * in preprocessor commands such as "#if (__NAMESER > 19931104)".  Do not
74 * compare for equality; rather, use it to determine whether your libbind.a
75 * contains a new enough lib/nameser/ to support the feature you need.
76 */
77
78#define __NAMESER	19991006	/* New interface version stamp. */
79
80/*
81 * Define constants based on RFC 883, RFC 1034, RFC 1035
82 */
83#define NS_PACKETSZ	512	/* maximum packet size */
84#define NS_MAXDNAME	1025	/* maximum domain name */
85#define NS_MAXCDNAME	255	/* maximum compressed domain name */
86#define NS_MAXLABEL	63	/* maximum length of domain label */
87#define NS_HFIXEDSZ	12	/* #/bytes of fixed data in header */
88#define NS_QFIXEDSZ	4	/* #/bytes of fixed data in query */
89#define NS_RRFIXEDSZ	10	/* #/bytes of fixed data in r record */
90#define NS_INT32SZ	4	/* #/bytes of data in a u_int32_t */
91#define NS_INT16SZ	2	/* #/bytes of data in a u_int16_t */
92#define NS_INT8SZ	1	/* #/bytes of data in a u_int8_t */
93#define NS_INADDRSZ	4	/* IPv4 T_A */
94#define NS_IN6ADDRSZ	16	/* IPv6 T_AAAA */
95#define NS_CMPRSFLGS	0xc0	/* Flag bits indicating name compression. */
96#define NS_DEFAULTPORT	53	/* For both TCP and UDP. */
97
98/*
99 * These can be expanded with synonyms, just keep ns_parse.c:ns_parserecord()
100 * in synch with it.
101 */
102#define ns_sect res_9_ns_sect
103typedef enum __ns_sect {
104	ns_s_qd = 0,		/* Query: Question. */
105	ns_s_zn = 0,		/* Update: Zone. */
106	ns_s_an = 1,		/* Query: Answer. */
107	ns_s_pr = 1,		/* Update: Prerequisites. */
108	ns_s_ns = 2,		/* Query: Name servers. */
109	ns_s_ud = 2,		/* Update: Update. */
110	ns_s_ar = 3,		/* Query|Update: Additional records. */
111	ns_s_max = 4
112} ns_sect;
113
114/*
115 * This is a message handle.  It is caller allocated and has no dynamic data.
116 * This structure is intended to be opaque to all but ns_parse.c, thus the
117 * leading _'s on the member names.  Use the accessor functions, not the _'s.
118 */
119#define ns_msg res_9_ns_msg
120typedef struct __ns_msg {
121	const u_char	*_msg, *_eom;
122	u_int16_t	_id, _flags, _counts[ns_s_max];
123	const u_char	*_sections[ns_s_max];
124	ns_sect		_sect;
125	int		_rrnum;
126	const u_char	*_msg_ptr;
127} ns_msg;
128
129/* Private data structure - do not use from outside library. */
130#define _ns_flagdata _res_9_ns_flagdata
131struct _ns_flagdata {  int mask, shift;  };
132extern struct _ns_flagdata _ns_flagdata[];
133
134/* Accessor macros - this is part of the public interface. */
135
136#define ns_msg_id(handle) ((handle)._id + 0)
137#define ns_msg_base(handle) ((handle)._msg + 0)
138#define ns_msg_end(handle) ((handle)._eom + 0)
139#define ns_msg_size(handle) ((handle)._eom - (handle)._msg)
140#define ns_msg_count(handle, section) ((handle)._counts[section] + 0)
141
142/*
143 * This is a parsed record.  It is caller allocated and has no dynamic data.
144 */
145#define ns_rr res_9_ns_rr
146
147typedef	struct __ns_rr {
148	char		name[NS_MAXDNAME];
149	u_int16_t	type;
150	u_int16_t	rr_class;
151	u_int32_t	ttl;
152	u_int16_t	rdlength;
153	const u_char *	rdata;
154} ns_rr;
155
156/* Accessor macros - this is part of the public interface. */
157#define ns_rr_name(rr)	(((rr).name[0] != '\0') ? (rr).name : ".")
158#define ns_rr_type(rr)	((ns_type)((rr).type + 0))
159#define ns_rr_class(rr)	((ns_class)((rr).rr_class + 0))
160#define ns_rr_ttl(rr)	((rr).ttl + 0)
161#define ns_rr_rdlen(rr)	((rr).rdlength + 0)
162#define ns_rr_rdata(rr)	((rr).rdata + 0)
163
164/*
165 * These don't have to be in the same order as in the packet flags word,
166 * and they can even overlap in some cases, but they will need to be kept
167 * in synch with ns_parse.c:ns_flagdata[].
168 */
169#define ns_flag res_9_ns_flag
170typedef enum __ns_flag {
171	ns_f_qr,		/* Question/Response. */
172	ns_f_opcode,		/* Operation code. */
173	ns_f_aa,		/* Authoritative Answer. */
174	ns_f_tc,		/* Truncation occurred. */
175	ns_f_rd,		/* Recursion Desired. */
176	ns_f_ra,		/* Recursion Available. */
177	ns_f_z,			/* MBZ. */
178	ns_f_ad,		/* Authentic Data (DNSSEC). */
179	ns_f_cd,		/* Checking Disabled (DNSSEC). */
180	ns_f_rcode,		/* Response code. */
181	ns_f_max
182} ns_flag;
183
184/*
185 * Currently defined opcodes.
186 */
187#define ns_opcode res_9_ns_opcode
188typedef enum __ns_opcode {
189	ns_o_query = 0,		/* Standard query. */
190	ns_o_iquery = 1,	/* Inverse query (deprecated/unsupported). */
191	ns_o_status = 2,	/* Name server status query (unsupported). */
192				/* Opcode 3 is undefined/reserved. */
193	ns_o_notify = 4,	/* Zone change notification. */
194	ns_o_update = 5,	/* Zone update message. */
195	ns_o_max = 6
196} ns_opcode;
197
198/*
199 * Currently defined response codes.
200 */
201#define ns_rcode res_9_ns_rcode
202typedef	enum __ns_rcode {
203	ns_r_noerror = 0,	/* No error occurred. */
204	ns_r_formerr = 1,	/* Format error. */
205	ns_r_servfail = 2,	/* Server failure. */
206	ns_r_nxdomain = 3,	/* Name error. */
207	ns_r_notimpl = 4,	/* Unimplemented. */
208	ns_r_refused = 5,	/* Operation refused. */
209	/* these are for BIND_UPDATE */
210	ns_r_yxdomain = 6,	/* Name exists */
211	ns_r_yxrrset = 7,	/* RRset exists */
212	ns_r_nxrrset = 8,	/* RRset does not exist */
213	ns_r_notauth = 9,	/* Not authoritative for zone */
214	ns_r_notzone = 10,	/* Zone of record different from zone section */
215	ns_r_max = 11,
216	/* The following are EDNS extended rcodes */
217	ns_r_badvers = 16,
218	/* The following are TSIG errors */
219	ns_r_badsig = 16,
220	ns_r_badkey = 17,
221	ns_r_badtime = 18
222} ns_rcode;
223
224/* BIND_UPDATE */
225#define ns_update_operation res_9_ns_update_operation
226typedef enum __ns_update_operation {
227	ns_uop_delete = 0,
228	ns_uop_add = 1,
229	ns_uop_max = 2
230} ns_update_operation;
231
232/*
233 * This structure is used for TSIG authenticated messages
234 */
235#define ns_tsig_key res_9_ns_tsig_key
236struct ns_tsig_key {
237        char name[NS_MAXDNAME], alg[NS_MAXDNAME];
238        unsigned char *data;
239        int len;
240};
241typedef struct ns_tsig_key ns_tsig_key;
242
243/*
244 * This structure is used for TSIG authenticated TCP messages
245 */
246#define ns_tcp_tsig_state res_9_ns_tcp_tsig_state
247struct ns_tcp_tsig_state {
248	int counter;
249	struct dst_key *key;
250	void *ctx;
251	unsigned char sig[NS_PACKETSZ];
252	int siglen;
253};
254typedef struct ns_tcp_tsig_state ns_tcp_tsig_state;
255
256#define NS_TSIG_FUDGE 300
257#define NS_TSIG_TCP_COUNT 100
258#define NS_TSIG_ALG_HMAC_MD5 "HMAC-MD5.SIG-ALG.REG.INT"
259
260#define NS_TSIG_ERROR_NO_TSIG -10
261#define NS_TSIG_ERROR_NO_SPACE -11
262#define NS_TSIG_ERROR_FORMERR -12
263
264/*
265 * Currently defined type values for resources and queries.
266 */
267#define ns_typw res_9_ns_type
268typedef enum __ns_type {
269	ns_t_invalid = 0,	/* Cookie. */
270	ns_t_a = 1,		/* Host address. */
271	ns_t_ns = 2,		/* Authoritative server. */
272	ns_t_md = 3,		/* Mail destination. */
273	ns_t_mf = 4,		/* Mail forwarder. */
274	ns_t_cname = 5,		/* Canonical name. */
275	ns_t_soa = 6,		/* Start of authority zone. */
276	ns_t_mb = 7,		/* Mailbox domain name. */
277	ns_t_mg = 8,		/* Mail group member. */
278	ns_t_mr = 9,		/* Mail rename name. */
279	ns_t_null = 10,		/* Null resource record. */
280	ns_t_wks = 11,		/* Well known service. */
281	ns_t_ptr = 12,		/* Domain name pointer. */
282	ns_t_hinfo = 13,	/* Host information. */
283	ns_t_minfo = 14,	/* Mailbox information. */
284	ns_t_mx = 15,		/* Mail routing information. */
285	ns_t_txt = 16,		/* Text strings. */
286	ns_t_rp = 17,		/* Responsible person. */
287	ns_t_afsdb = 18,	/* AFS cell database. */
288	ns_t_x25 = 19,		/* X_25 calling address. */
289	ns_t_isdn = 20,		/* ISDN calling address. */
290	ns_t_rt = 21,		/* Router. */
291	ns_t_nsap = 22,		/* NSAP address. */
292	ns_t_nsap_ptr = 23,	/* Reverse NSAP lookup (deprecated). */
293	ns_t_sig = 24,		/* Security signature. */
294	ns_t_key = 25,		/* Security key. */
295	ns_t_px = 26,		/* X.400 mail mapping. */
296	ns_t_gpos = 27,		/* Geographical position (withdrawn). */
297	ns_t_aaaa = 28,		/* Ip6 Address. */
298	ns_t_loc = 29,		/* Location Information. */
299	ns_t_nxt = 30,		/* Next domain (security). */
300	ns_t_eid = 31,		/* Endpoint identifier. */
301	ns_t_nimloc = 32,	/* Nimrod Locator. */
302	ns_t_srv = 33,		/* Server Selection. */
303	ns_t_atma = 34,		/* ATM Address */
304	ns_t_naptr = 35,	/* Naming Authority PoinTeR */
305	ns_t_kx = 36,		/* Key Exchange */
306	ns_t_cert = 37,		/* Certification record */
307	ns_t_a6 = 38,		/* IPv6 address (deprecates AAAA) */
308	ns_t_dname = 39,	/* Non-terminal DNAME (for IPv6) */
309	ns_t_sink = 40,		/* Kitchen sink (experimentatl) */
310	ns_t_opt = 41,		/* EDNS0 option (meta-RR) */
311	ns_t_tkey = 249,	/* Transaction key */
312	ns_t_tsig = 250,	/* Transaction signature. */
313	ns_t_ixfr = 251,	/* Incremental zone transfer. */
314	ns_t_axfr = 252,	/* Transfer zone of authority. */
315	ns_t_mailb = 253,	/* Transfer mailbox records. */
316	ns_t_maila = 254,	/* Transfer mail agent records. */
317	ns_t_any = 255,		/* Wildcard match. */
318	ns_t_zxfr = 256,	/* BIND-specific, nonstandard. */
319	ns_t_max = 65536
320} ns_type;
321
322/* Exclusively a QTYPE? (not also an RTYPE) */
323#define	ns_t_qt_p(t) (ns_t_xfr_p(t) || (t) == ns_t_any || \
324		      (t) == ns_t_mailb || (t) == ns_t_maila)
325/* Some kind of meta-RR? (not a QTYPE, but also not an RTYPE) */
326#define	ns_t_mrr_p(t) ((t) == ns_t_tsig || (t) == ns_t_opt)
327/* Exclusively an RTYPE? (not also a QTYPE or a meta-RR) */
328#define ns_t_rr_p(t) (!ns_t_qt_p(t) && !ns_t_mrr_p(t))
329#define ns_t_udp_p(t) ((t) != ns_t_axfr && (t) != ns_t_zxfr)
330#define ns_t_xfr_p(t) ((t) == ns_t_axfr || (t) == ns_t_ixfr || \
331		       (t) == ns_t_zxfr)
332
333/*
334 * Values for class field
335 */
336#define ns_class res_9_ns_class
337typedef enum __ns_class {
338	ns_c_invalid = 0,	/* Cookie. */
339	ns_c_in = 1,		/* Internet. */
340	ns_c_2 = 2,		/* unallocated/unsupported. */
341	ns_c_chaos = 3,		/* MIT Chaos-net. */
342	ns_c_hs = 4,		/* MIT Hesiod. */
343	/* Query class values which do not appear in resource records */
344	ns_c_none = 254,	/* for prereq. sections in update requests */
345	ns_c_any = 255,		/* Wildcard match. */
346	ns_c_max = 65536
347} ns_class;
348
349/* DNSSEC constants. */
350
351#define ns_key_types res_9_ns_key_types
352typedef enum __ns_key_types {
353	ns_kt_rsa = 1,		/* key type RSA/MD5 */
354	ns_kt_dh  = 2,		/* Diffie Hellman */
355	ns_kt_dsa = 3,		/* Digital Signature Standard (MANDATORY) */
356	ns_kt_private = 254	/* Private key type starts with OID */
357} ns_key_types;
358
359#define ns_cert_types res_9_ns_cert_types
360typedef enum __ns_cert_types {
361	cert_t_pkix = 1,	/* PKIX (X.509v3) */
362	cert_t_spki = 2,	/* SPKI */
363	cert_t_pgp  = 3,	/* PGP */
364	cert_t_url  = 253,	/* URL private type */
365	cert_t_oid  = 254	/* OID private type */
366} ns_cert_types;
367
368/* Flags field of the KEY RR rdata. */
369#define	NS_KEY_TYPEMASK		0xC000	/* Mask for "type" bits */
370#define	NS_KEY_TYPE_AUTH_CONF	0x0000	/* Key usable for both */
371#define	NS_KEY_TYPE_CONF_ONLY	0x8000	/* Key usable for confidentiality */
372#define	NS_KEY_TYPE_AUTH_ONLY	0x4000	/* Key usable for authentication */
373#define	NS_KEY_TYPE_NO_KEY	0xC000	/* No key usable for either; no key */
374/* The type bits can also be interpreted independently, as single bits: */
375#define	NS_KEY_NO_AUTH		0x8000	/* Key unusable for authentication */
376#define	NS_KEY_NO_CONF		0x4000	/* Key unusable for confidentiality */
377#define	NS_KEY_RESERVED2	0x2000	/* Security is *mandatory* if bit=0 */
378#define	NS_KEY_EXTENDED_FLAGS	0x1000	/* reserved - must be zero */
379#define	NS_KEY_RESERVED4	0x0800  /* reserved - must be zero */
380#define	NS_KEY_RESERVED5	0x0400  /* reserved - must be zero */
381#define	NS_KEY_NAME_TYPE	0x0300	/* these bits determine the type */
382#define	NS_KEY_NAME_USER	0x0000	/* key is assoc. with user */
383#define	NS_KEY_NAME_ENTITY	0x0200	/* key is assoc. with entity eg host */
384#define	NS_KEY_NAME_ZONE	0x0100	/* key is zone key */
385#define	NS_KEY_NAME_RESERVED	0x0300	/* reserved meaning */
386#define	NS_KEY_RESERVED8	0x0080  /* reserved - must be zero */
387#define	NS_KEY_RESERVED9	0x0040  /* reserved - must be zero */
388#define	NS_KEY_RESERVED10	0x0020  /* reserved - must be zero */
389#define	NS_KEY_RESERVED11	0x0010  /* reserved - must be zero */
390#define	NS_KEY_SIGNATORYMASK	0x000F	/* key can sign RR's of same name */
391#define	NS_KEY_RESERVED_BITMASK ( NS_KEY_RESERVED2 | \
392				  NS_KEY_RESERVED4 | \
393				  NS_KEY_RESERVED5 | \
394				  NS_KEY_RESERVED8 | \
395				  NS_KEY_RESERVED9 | \
396				  NS_KEY_RESERVED10 | \
397				  NS_KEY_RESERVED11 )
398#define NS_KEY_RESERVED_BITMASK2 0xFFFF /* no bits defined here */
399
400/* The Algorithm field of the KEY and SIG RR's is an integer, {1..254} */
401#define	NS_ALG_MD5RSA		1	/* MD5 with RSA */
402#define	NS_ALG_DH               2	/* Diffie Hellman KEY */
403#define	NS_ALG_DSA              3	/* DSA KEY */
404#define	NS_ALG_DSS              NS_ALG_DSA
405#define	NS_ALG_EXPIRE_ONLY	253	/* No alg, no security */
406#define	NS_ALG_PRIVATE_OID	254	/* Key begins with OID giving alg */
407
408/* Protocol values  */
409/* value 0 is reserved */
410#define NS_KEY_PROT_TLS         1
411#define NS_KEY_PROT_EMAIL       2
412#define NS_KEY_PROT_DNSSEC      3
413#define NS_KEY_PROT_IPSEC       4
414#define NS_KEY_PROT_ANY		255
415
416/* Signatures */
417#define	NS_MD5RSA_MIN_BITS	 512	/* Size of a mod or exp in bits */
418#define	NS_MD5RSA_MAX_BITS	2552
419	/* Total of binary mod and exp */
420#define	NS_MD5RSA_MAX_BYTES	((NS_MD5RSA_MAX_BITS+7/8)*2+3)
421	/* Max length of text sig block */
422#define	NS_MD5RSA_MAX_BASE64	(((NS_MD5RSA_MAX_BYTES+2)/3)*4)
423#define NS_MD5RSA_MIN_SIZE	((NS_MD5RSA_MIN_BITS+7)/8)
424#define NS_MD5RSA_MAX_SIZE	((NS_MD5RSA_MAX_BITS+7)/8)
425
426#define NS_DSA_SIG_SIZE         41
427#define NS_DSA_MIN_SIZE         213
428#define NS_DSA_MAX_BYTES        405
429
430/* Offsets into SIG record rdata to find various values */
431#define	NS_SIG_TYPE	0	/* Type flags */
432#define	NS_SIG_ALG	2	/* Algorithm */
433#define	NS_SIG_LABELS	3	/* How many labels in name */
434#define	NS_SIG_OTTL	4	/* Original TTL */
435#define	NS_SIG_EXPIR	8	/* Expiration time */
436#define	NS_SIG_SIGNED	12	/* Signature time */
437#define	NS_SIG_FOOT	16	/* Key footprint */
438#define	NS_SIG_SIGNER	18	/* Domain name of who signed it */
439
440/* How RR types are represented as bit-flags in NXT records */
441#define	NS_NXT_BITS 8
442#define	NS_NXT_BIT_SET(  n,p) (p[(n)/NS_NXT_BITS] |=  (0x80>>((n)%NS_NXT_BITS)))
443#define	NS_NXT_BIT_CLEAR(n,p) (p[(n)/NS_NXT_BITS] &= ~(0x80>>((n)%NS_NXT_BITS)))
444#define	NS_NXT_BIT_ISSET(n,p) (p[(n)/NS_NXT_BITS] &   (0x80>>((n)%NS_NXT_BITS)))
445#define NS_NXT_MAX 127
446
447/*
448 * EDNS0 extended flags, host order.
449 */
450#define NS_OPT_DNSSEC_OK	0x8000U
451
452/*
453 * Inline versions of get/put short/long.  Pointer is advanced.
454 */
455#define NS_GET16(s, cp) do { \
456	const u_char *t_cp = (const u_char *)(cp); \
457	(s) = ((u_int16_t)t_cp[0] << 8) \
458	    | ((u_int16_t)t_cp[1]) \
459	    ; \
460	(cp) += NS_INT16SZ; \
461} while (0)
462
463#define NS_GET32(l, cp) do { \
464	const u_char *t_cp = (const u_char *)(cp); \
465	(l) = ((u_int32_t)t_cp[0] << 24) \
466	    | ((u_int32_t)t_cp[1] << 16) \
467	    | ((u_int32_t)t_cp[2] << 8) \
468	    | ((u_int32_t)t_cp[3]) \
469	    ; \
470	(cp) += NS_INT32SZ; \
471} while (0)
472
473#define NS_PUT16(s, cp) do { \
474	u_int16_t t_s = (u_int16_t)(s); \
475	u_char *t_cp = (u_char *)(cp); \
476	*t_cp++ = t_s >> 8; \
477	*t_cp   = t_s; \
478	(cp) += NS_INT16SZ; \
479} while (0)
480
481#define NS_PUT32(l, cp) do { \
482	u_int32_t t_l = (u_int32_t)(l); \
483	u_char *t_cp = (u_char *)(cp); \
484	*t_cp++ = t_l >> 24; \
485	*t_cp++ = t_l >> 16; \
486	*t_cp++ = t_l >> 8; \
487	*t_cp   = t_l; \
488	(cp) += NS_INT32SZ; \
489} while (0)
490
491/*
492 * ANSI C identifier hiding for bind's lib/nameser.
493 */
494#define	ns_msg_getflag		res_9_ns_msg_getflag
495#define ns_get16		res_9_ns_get16
496#define ns_get32		res_9_ns_get32
497#define ns_put16		res_9_ns_put16
498#define ns_put32		res_9_ns_put32
499#define ns_initparse		res_9_ns_initparse
500#define ns_skiprr		res_9_ns_skiprr
501#define ns_parserr		res_9_ns_parserr
502#define	ns_sprintrr		res_9_ns_sprintrr
503#define	ns_sprintrrf		res_9_ns_sprintrrf
504#define	ns_format_ttl		res_9_ns_format_ttl
505#define	ns_parse_ttl		res_9_ns_parse_ttl
506#define ns_datetosecs		res_9_ns_datetosecs
507#define	ns_name_ntol		res_9_ns_name_ntol
508#define	ns_name_ntop		res_9_ns_name_ntop
509#define	ns_name_pton		res_9_ns_name_pton
510#define	ns_name_unpack		res_9_ns_name_unpack
511#define	ns_name_pack		res_9_ns_name_pack
512#define	ns_name_compress	res_9_ns_name_compress
513#define	ns_name_uncompress	res_9_ns_name_uncompress
514#define	ns_name_skip		res_9_ns_name_skip
515#define	ns_name_rollback	res_9_ns_name_rollback
516#define	ns_sign			res_9_ns_sign
517#define	ns_sign2		res_9_ns_sign2
518#define	ns_sign_tcp		res_9_ns_sign_tcp
519#define	ns_sign_tcp2		res_9_ns_sign_tcp2
520#define	ns_sign_tcp_init	res_9_ns_sign_tcp_init
521#define ns_find_tsig		res_9_ns_find_tsig
522#define	ns_verify		res_9_ns_verify
523#define	ns_verify_tcp		res_9_ns_verify_tcp
524#define	ns_verify_tcp_init	res_9_ns_verify_tcp_init
525#define	ns_samedomain		res_9_ns_samedomain
526#define	ns_subdomain		res_9_ns_subdomain
527#define	ns_makecanon		res_9_ns_makecanon
528#define	ns_samename		res_9_ns_samename
529
530__BEGIN_DECLS
531int		ns_msg_getflag __P((ns_msg, int));
532u_int		ns_get16 __P((const u_char *));
533u_long		ns_get32 __P((const u_char *));
534void		ns_put16 __P((u_int, u_char *));
535void		ns_put32 __P((u_long, u_char *));
536int		ns_initparse __P((const u_char *, int, ns_msg *));
537int		ns_skiprr __P((const u_char *, const u_char *, ns_sect, int));
538int		ns_parserr __P((ns_msg *, ns_sect, int, ns_rr *));
539int		ns_sprintrr __P((const ns_msg *, const ns_rr *,
540				 const char *, const char *, char *, size_t));
541int		ns_sprintrrf __P((const u_char *, size_t, const char *,
542				  ns_class, ns_type, u_long, const u_char *,
543				  size_t, const char *, const char *,
544				  char *, size_t));
545int		ns_format_ttl __P((u_long, char *, size_t));
546int		ns_parse_ttl __P((const char *, u_long *));
547u_int32_t	ns_datetosecs __P((const char *cp, int *errp));
548int		ns_name_ntol __P((const u_char *, u_char *, size_t));
549int		ns_name_ntop __P((const u_char *, char *, size_t));
550int		ns_name_pton __P((const char *, u_char *, size_t));
551int		ns_name_unpack __P((const u_char *, const u_char *,
552				    const u_char *, u_char *, size_t));
553int		ns_name_pack __P((const u_char *, u_char *, int,
554				  const u_char **, const u_char **));
555int		ns_name_uncompress __P((const u_char *, const u_char *,
556					const u_char *, char *, size_t));
557int		ns_name_compress __P((const char *, u_char *, size_t,
558				      const u_char **, const u_char **));
559int		ns_name_skip __P((const u_char **, const u_char *));
560void		ns_name_rollback __P((const u_char *, const u_char **,
561				      const u_char **));
562int		ns_sign __P((u_char *, int *, int, int, void *,
563			     const u_char *, int, u_char *, int *, time_t));
564int		ns_sign2 __P((u_char *, int *, int, int, void *,
565			      const u_char *, int, u_char *, int *, time_t,
566			      u_char **, u_char **));
567int		ns_sign_tcp __P((u_char *, int *, int, int,
568				 ns_tcp_tsig_state *, int));
569int		ns_sign_tcp2 __P((u_char *, int *, int, int,
570				  ns_tcp_tsig_state *, int,
571				  u_char **, u_char **));
572int		ns_sign_tcp_init __P((void *, const u_char *, int,
573					ns_tcp_tsig_state *));
574u_char		*ns_find_tsig __P((u_char *, u_char *));
575int		ns_verify __P((u_char *, int *, void *,
576			       const u_char *, int, u_char *, int *,
577			       time_t *, int));
578int		ns_verify_tcp __P((u_char *, int *, ns_tcp_tsig_state *, int));
579int		ns_verify_tcp_init __P((void *, const u_char *, int,
580					ns_tcp_tsig_state *));
581int		ns_samedomain __P((const char *, const char *));
582int		ns_subdomain __P((const char *, const char *));
583int		ns_makecanon __P((const char *, char *, size_t));
584int		ns_samename __P((const char *, const char *));
585__END_DECLS
586
587#endif /* !_NAMESER_9_H_ */
588