Suricata

Looks like there are a couple of existing DNS parsers that I've not evaluated

• https://crates.io/crates/dns
• https://crates.io/crates/dns-parser
• https://crates.io/crates/dns-parser-joe

I'm not sure I would want to break out the DNS parser into its own repo, as that as extra overhead to the development process. But something possibly worth considering is breaking out some stuff, within the repo to their own crates. A while back I did this with the DHCP parser. It breaks out just the parsing, as the other parts of the DHCP module are pretty Suricata specific. The commit is now stale, but it still gets the idea across:

https://github.com/OISF/suricata/pull/4129/commits/fda42f73257e8a9f2703a2db24d5894731ece19f

API stability also needs to be considered, as now we are free to refactor as needed. Publishing it as a reusable component may imply some level of stability, and we don't exactly follow semver. However, Cargo does make it easy to specify specific versions.