├── .github
    └── workflows
    │   └── test.yml
├── .gitignore
├── .hgignore
├── .hgtags
├── LICENSE
├── MANIFEST.in
├── README
├── README.md
├── _config.yml
├── dnslib
    ├── __init__.py
    ├── bimap.py
    ├── bit.py
    ├── buffer.py
    ├── client.py
    ├── digparser.py
    ├── dns.py
    ├── fixedresolver.py
    ├── intercept.py
    ├── label.py
    ├── lex.py
    ├── proxy.py
    ├── ranges.py
    ├── server.py
    ├── shellresolver.py
    ├── test
    │   ├── 1.1.1.1.in-addr.arpa.-PTR
    │   ├── 8.8.8.8.in-addr.arpa.-PTR
    │   ├── 9.9.9.9.in-addr.arpa.-PTR
    │   ├── ECC94C1D-7026-41AA-B47E-FDFE40EB9957.com-A
    │   ├── _sip._udp.sipgate.co.uk-SRV
    │   ├── cloudflare.com-A
    │   ├── cloudflare.com-A-dnssec
    │   ├── cloudflare.com-AAAA
    │   ├── cloudflare.com-AAAA-dnssec
    │   ├── cloudflare.com-CNAME
    │   ├── cloudflare.com-CNAME-dnssec
    │   ├── cloudflare.com-MX
    │   ├── cloudflare.com-MX-dnssec
    │   ├── cloudflare.com-NS
    │   ├── cloudflare.com-NS-dnssec
    │   ├── cloudflare.com-SOA
    │   ├── cloudflare.com-SOA-dnssec
    │   ├── cloudflare.com-TXT
    │   ├── cloudflare.com-TXT-dnssec
    │   ├── dig
    │   │   ├── google.com-A.dig
    │   │   └── google.com-ANY.dig
    │   ├── example.org-DNSKEY
    │   ├── example.org-DS
    │   ├── example.org-MX-dnssec
    │   ├── example.org-PTR-dnssec
    │   ├── example.org-SOA-dnssec
    │   ├── fedoraproject.org-TLSA
    │   ├── google.com-MX
    │   ├── google.com-NS
    │   ├── google.com-SOA
    │   ├── google.com-TXT
    │   ├── he.net-MX
    │   ├── he.net-NS
    │   ├── he.net-SOA
    │   ├── he.net-TXT
    │   ├── iana.org-A
    │   ├── iana.org-A-dnssec
    │   ├── iana.org-AAAA
    │   ├── iana.org-AAAA-dnssec
    │   ├── iana.org-DNSKEY
    │   ├── iana.org-MX
    │   ├── iana.org-MX-dnssec
    │   ├── iana.org-NS
    │   ├── iana.org-NS-dnssec
    │   ├── iana.org-PTR-dnssec
    │   ├── iana.org-SOA
    │   ├── iana.org-SOA-dnssec
    │   ├── iana.org-TXT
    │   ├── iana.org-TXT-dnssec
    │   ├── oilpro.ch-TYPE65534
    │   ├── openssl.org-TLSA
    │   ├── salsa.debian.org-SSHFP
    │   ├── sip2sip.info-NAPTR
    │   ├── www.example.org-A-dnssec
    │   ├── www.example.org-AAAA-dnssec
    │   ├── www.example.org-ANY-dnssec
    │   ├── www.example.org-CNAME-dnssec
    │   ├── www.example.org-TXT-dnssec
    │   ├── www.google.com-A
    │   ├── www.google.com-AAAA
    │   ├── www.google.com-CNAME
    │   ├── www.he.net-A
    │   ├── www.he.net-AAAA
    │   ├── www.he.net-CNAME
    │   ├── www.iana.org-A-dnssec
    │   ├── www.iana.org-AAAA-dnssec
    │   ├── www.iana.org-ANY-dnssec
    │   └── www.iana.org-CNAME-dnssec
    ├── test_decode.py
    └── zoneresolver.py
├── fuzz.py
├── run_tests.sh
└── setup.py


/.github/workflows/test.yml:
--------------------------------------------------------------------------------
 1 | name: Python package
 2 | 
 3 | on: [push]
 4 | 
 5 | jobs:
 6 |   build:
 7 | 
 8 |     runs-on: ubuntu-latest
 9 |     strategy:
10 |       max-parallel: 4
11 |       matrix:
12 |         python-version: ['3.x']
13 | 
14 |     steps:
15 |     - uses: actions/checkout@v3
16 |     - name: Set up Python ${{ matrix.python-version }}
17 |       uses: actions/setup-python@v4
18 |       with:
19 |         python-version: ${{ matrix.python-version }}
20 |     - name: Run tests
21 |       run: |
22 |         pwd
23 |         export PYTHONPATH=$(pwd)
24 |         python -m dnslib.__init__
25 |         python dnslib/__init__.py 
26 |         python dnslib/bimap.py 
27 |         python dnslib/bit.py 
28 |         python dnslib/buffer.py 
29 |         python dnslib/label.py 
30 |         python dnslib/dns.py 
31 |         python dnslib/lex.py 
32 |         python dnslib/server.py 
33 |         python dnslib/digparser.py 
34 |         python dnslib/ranges.py -
35 |         python dnslib/test_decode.py 
36 |         python fuzz.py
37 |         
38 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | *.pyc
2 | build
3 | dist
4 | *.egg-info
5 | __pycache__
6 | 


--------------------------------------------------------------------------------
/.hgignore:
--------------------------------------------------------------------------------
 1 | syntax: glob
 2 | 
 3 | *.swp
 4 | *.pyc
 5 | *~
 6 | *egg-info
 7 | .DS_Store
 8 | build
 9 | dist
10 | MANIFEST
11 | PKG-INFO
12 | 


--------------------------------------------------------------------------------
/.hgtags:
--------------------------------------------------------------------------------
 1 | 5d1c34b512568beea78225a0ce0b14d31e63695a py3-release
 2 | 6622f8dfda7196c992c548c6cb3204dac0a099c8 0.8.3
 3 | 5a67733005e02cf59cdec44f5f8a0289295178ad py2
 4 | 78b64356f780269694d12b86e86d206c918c49fe 0.9.3
 5 | 78b64356f780269694d12b86e86d206c918c49fe 0.9.3
 6 | b8d4bd109949da943c03363606cd98d971bebcc5 0.9.3
 7 | a248c72d340fd80ec8164a9f9d0ff1ab887f327a 0.9.4
 8 | ef31508b35d5cf7b83b76743d2f7ef94efce818f 0.9.5
 9 | ef31508b35d5cf7b83b76743d2f7ef94efce818f 0.9.5
10 | 0000000000000000000000000000000000000000 0.9.5
11 | 0000000000000000000000000000000000000000 0.9.5
12 | 12c05da42f9cf151579642e28496f8bd9e7194a3 0.9.5
13 | 13d7ed4d6c62bcb23cbd8792b86b873c64d774c0 0.9.6
14 | 13d7ed4d6c62bcb23cbd8792b86b873c64d774c0 0.9.6
15 | 0000000000000000000000000000000000000000 0.9.6
16 | 0000000000000000000000000000000000000000 0.9.6
17 | c6871d81b4f85c2028a2a2665633698e37321c40 0.9.6
18 | f303b7091b8bcc4f07ed46c5364992a20b5fc405 0.9.7
19 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | Copyright (c) 2010 - 2017 Paul Chakravarti.
 2 | All rights reserved.
 3 | 
 4 | Redistribution and use in source and binary forms, with or without
 5 | modification, are permitted provided that the following conditions are met:
 6 | 
 7 | 1. Redistributions of source code must retain the above copyright notice, this
 8 |    list of conditions and the following disclaimer.
 9 | 2. Redistributions in binary form must reproduce the above copyright notice,
10 |    this list of conditions and the following disclaimer in the documentation
11 |    and/or other materials provided with the distribution.
12 | 
13 | THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
14 | ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
15 | WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
16 | DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
17 | ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
18 | (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
19 | LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
20 | ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
21 | (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
22 | SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
23 | 


--------------------------------------------------------------------------------
/MANIFEST.in:
--------------------------------------------------------------------------------
1 | include README.github
2 | include run_tests.sh
3 | include fuzz.py
4 | include LICENSE
5 | recursive-include dnslib/test *
6 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | README


--------------------------------------------------------------------------------
/_config.yml:
--------------------------------------------------------------------------------
1 | theme: jekyll-theme-minimal


--------------------------------------------------------------------------------
/dnslib/bimap.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     Bimap - bidirectional mapping between code/value
  5 | """
  6 | 
  7 | import sys,types
  8 | 
  9 | class BimapError(Exception):
 10 |     pass
 11 | 
 12 | class Bimap(object):
 13 | 
 14 |     """
 15 |         Bi-directional mapping between code/text.
 16 | 
 17 |         Initialised using:
 18 | 
 19 |             name:   Used for exceptions
 20 |             dict:   Dict mapping from code (numeric) to text
 21 |             error:  Error type to raise if key not found
 22 |                     _or_ callable which either generates mapping
 23 |                     return error
 24 | 
 25 |         The class provides:
 26 | 
 27 |             * A 'forward' map (code->text) which is accessed through
 28 |               __getitem__ (bimap[code])
 29 |             * A 'reverse' map (code>value) which is accessed through
 30 |               __getattr__ (bimap.text)
 31 |             * A 'get' method which does a forward lookup (code->text)
 32 |               and returns a textual version of code if there is no
 33 |               explicit mapping (or default provided)
 34 | 
 35 |         >>> class TestError(Exception):
 36 |         ...     pass
 37 | 
 38 |         >>> TEST = Bimap('TEST',{1:'A', 2:'B', 3:'C'},TestError)
 39 |         >>> TEST[1]
 40 |         'A'
 41 |         >>> TEST.A
 42 |         1
 43 |         >>> TEST.X
 44 |         Traceback (most recent call last):
 45 |         ...
 46 |         TestError: TEST: Invalid reverse lookup: [X]
 47 |         >>> TEST[99]
 48 |         Traceback (most recent call last):
 49 |         ...
 50 |         TestError: TEST: Invalid forward lookup: [99]
 51 |         >>> TEST.get(99)
 52 |         '99'
 53 | 
 54 |         # Test with callable error
 55 |         >>> def _error(name,key,forward):
 56 |         ...     if forward:
 57 |         ...         try:
 58 |         ...             return "TEST%d" % (key,)
 59 |         ...         except:
 60 |         ...             raise TestError("%s: Invalid forward lookup: [%s]" % (name,key))
 61 |         ...     else:
 62 |         ...         if key.startswith("TEST"):
 63 |         ...             try:
 64 |         ...                 return int(key[4:])
 65 |         ...             except:
 66 |         ...                 pass
 67 |         ...         raise TestError("%s: Invalid reverse lookup: [%s]" % (name,key))
 68 |         >>> TEST2 = Bimap('TEST2',{1:'A', 2:'B', 3:'C'},_error)
 69 |         >>> TEST2[1]
 70 |         'A'
 71 |         >>> TEST2[9999]
 72 |         'TEST9999'
 73 |         >>> TEST2['abcd']
 74 |         Traceback (most recent call last):
 75 |         ...
 76 |         TestError: TEST2: Invalid forward lookup: [abcd]
 77 |         >>> TEST2.A
 78 |         1
 79 |         >>> TEST2.TEST9999
 80 |         9999
 81 |         >>> TEST2.X
 82 |         Traceback (most recent call last):
 83 |         ...
 84 |         TestError: TEST2: Invalid reverse lookup: [X]
 85 | 
 86 |     """
 87 | 
 88 |     def __init__(self,name,forward,error=AttributeError):
 89 |         self.name = name
 90 |         self.error = error
 91 |         self.forward = forward.copy()
 92 |         self.reverse = dict([(v,k) for (k,v) in list(forward.items())])
 93 | 
 94 |     def get(self,k,default=None):
 95 |         try:
 96 |             return self.forward[k]
 97 |         except KeyError as e:
 98 |             return default or str(k)
 99 | 
100 |     def __getitem__(self,k):
101 |         try:
102 |             return self.forward[k]
103 |         except KeyError as e:
104 |             if isinstance(self.error,types.FunctionType):
105 |                 return self.error(self.name,k,True)
106 |             else:
107 |                 raise self.error("%s: Invalid forward lookup: [%s]" % (self.name,k))
108 | 
109 |     def __getattr__(self,k):
110 |         try:
111 |             # Python 3.7 inspect module (called by doctest) checks for __wrapped__ attribute
112 |             if k == "__wrapped__":
113 |                 raise AttributeError()
114 |             return self.reverse[k]
115 |         except KeyError as e:
116 |             if isinstance(self.error,types.FunctionType):
117 |                 return self.error(self.name,k,False)
118 |             else:
119 |                 raise self.error("%s: Invalid reverse lookup: [%s]" % (self.name,k))
120 | 
121 | if __name__ == '__main__':
122 |     import doctest,sys
123 |     sys.exit(0 if doctest.testmod().failed == 0 else 1)
124 | 


--------------------------------------------------------------------------------
/dnslib/bit.py:
--------------------------------------------------------------------------------
 1 | # -*- coding: utf-8 -*-
 2 | 
 3 | """
 4 |     Some basic bit mainpulation utilities
 5 | """
 6 | from __future__ import print_function
 7 | 
 8 | FILTER = bytearray([ (i < 32 or i > 127) and 46 or i for i in range(256) ])
 9 | 
10 | def hexdump(src, length=16, prefix=''):
11 |     """
12 |     Print hexdump of string
13 | 
14 |     >>> print(hexdump(b"abcd" * 4))
15 |     0000  61 62 63 64 61 62 63 64  61 62 63 64 61 62 63 64  abcdabcd abcdabcd
16 | 
17 |     >>> print(hexdump(bytearray(range(48))))
18 |     0000  00 01 02 03 04 05 06 07  08 09 0a 0b 0c 0d 0e 0f  ........ ........
19 |     0010  10 11 12 13 14 15 16 17  18 19 1a 1b 1c 1d 1e 1f  ........ ........
20 |     0020  20 21 22 23 24 25 26 27  28 29 2a 2b 2c 2d 2e 2f   !"#$%&' ()*+,-./
21 | 
22 |     """
23 |     n = 0
24 |     left = length // 2
25 |     right = length - left
26 |     result= []
27 |     src = bytearray(src)
28 |     while src:
29 |         s,src = src[:length],src[length:]
30 |         l,r = s[:left],s[left:]
31 |         hexa = "%-*s" % (left*3,' '.join(["%02x"%x for x in l]))
32 |         hexb = "%-*s" % (right*3,' '.join(["%02x"%x for x in r]))
33 |         lf = l.translate(FILTER)
34 |         rf = r.translate(FILTER)
35 |         result.append("%s%04x  %s %s %s %s" % (prefix, n, hexa, hexb,
36 |                                                lf.decode(), rf.decode()))
37 |         n += length
38 |     return "\n".join(result)
39 | 
40 | def get_bits(data,offset,bits=1):
41 |     """
42 |         Get specified bits from integer
43 | 
44 |         >>> bin(get_bits(0b0011100,2))
45 |         '0b1'
46 |         >>> bin(get_bits(0b0011100,0,4))
47 |         '0b1100'
48 | 
49 |     """
50 |     mask = ((1 << bits) - 1) << offset
51 |     return (data & mask) >> offset
52 | 
53 | def set_bits(data,value,offset,bits=1):
54 |     """
55 |         Set specified bits in integer
56 | 
57 |         >>> bin(set_bits(0,0b1010,0,4))
58 |         '0b1010'
59 |         >>> bin(set_bits(0,0b1010,3,4))
60 |         '0b1010000'
61 |     """
62 |     mask = ((1 << bits) - 1) << offset
63 |     clear = 0xffff ^ mask
64 |     data = (data & clear) | ((value << offset) & mask)
65 |     return data
66 | 
67 | def binary(n,count=16,reverse=False):
68 |     """
69 |         Display n in binary (only difference from built-in `bin` is
70 |         that this function returns a fixed width string and can
71 |         optionally be reversed
72 | 
73 |         >>> binary(6789)
74 |         '0001101010000101'
75 |         >>> binary(6789,8)
76 |         '10000101'
77 |         >>> binary(6789,reverse=True)
78 |         '1010000101011000'
79 | 
80 |     """
81 |     bits = [str((n >> y) & 1) for y in range(count-1, -1, -1)]
82 |     if reverse:
83 |         bits.reverse()
84 |     return "".join(bits)
85 | 
86 | if __name__ == '__main__':
87 |     import doctest,sys
88 |     sys.exit(0 if doctest.testmod().failed == 0 else 1)
89 | 


--------------------------------------------------------------------------------
/dnslib/buffer.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     Buffer - simple data buffer
  5 | """
  6 | 
  7 | import binascii,struct
  8 | 
  9 | class BufferError(Exception):
 10 |     pass
 11 | 
 12 | class Buffer(object):
 13 | 
 14 |     """
 15 |     A simple data buffer - supports packing/unpacking in struct format
 16 | 
 17 |     # Needed for Python 2/3 doctest compatibility
 18 |     >>> def p(s):
 19 |     ...     if not isinstance(s,str):
 20 |     ...         return s.decode()
 21 |     ...     return s
 22 | 
 23 |     >>> b = Buffer()
 24 |     >>> b.pack("!BHI",1,2,3)
 25 |     >>> b.offset
 26 |     7
 27 |     >>> b.append(b"0123456789")
 28 |     >>> b.offset
 29 |     17
 30 |     >>> p(b.hex())
 31 |     '0100020000000330313233343536373839'
 32 |     >>> b.offset = 0
 33 |     >>> b.unpack("!BHI")
 34 |     (1, 2, 3)
 35 |     >>> bytearray(b.get(5))
 36 |     bytearray(b'01234')
 37 |     >>> bytearray(b.get(5))
 38 |     bytearray(b'56789')
 39 |     >>> b.update(7,"2s",b"xx")
 40 |     >>> b.offset = 7
 41 |     >>> bytearray(b.get(5))
 42 |     bytearray(b'xx234')
 43 |     """
 44 | 
 45 |     def __init__(self,data=b''):
 46 |         """
 47 |             Initialise Buffer from data
 48 |         """
 49 |         self.data = bytearray(data)
 50 |         self.offset = 0
 51 | 
 52 |     def remaining(self):
 53 |         """
 54 |             Return bytes remaining
 55 |         """
 56 |         return len(self.data) - self.offset
 57 | 
 58 |     def get(self,length):
 59 |         """
 60 |             Gen len bytes at current offset (& increment offset)
 61 |         """
 62 |         if length > self.remaining():
 63 |             raise BufferError("Not enough bytes [offset=%d,remaining=%d,requested=%d]" %
 64 |                     (self.offset,self.remaining(),length))
 65 |         start = self.offset
 66 |         end = self.offset + length
 67 |         self.offset += length
 68 |         return bytes(self.data[start:end])
 69 | 
 70 |     def hex(self):
 71 |         """
 72 |             Return data as hex string
 73 |         """
 74 |         return binascii.hexlify(self.data)
 75 | 
 76 |     def pack(self,fmt,*args):
 77 |         """
 78 |             Pack data at end of data according to fmt (from struct) & increment
 79 |             offset
 80 |         """
 81 |         self.offset += struct.calcsize(fmt)
 82 |         self.data += struct.pack(fmt,*args)
 83 | 
 84 |     def append(self,s):
 85 |         """
 86 |             Append s to end of data & increment offset
 87 |         """
 88 |         self.offset += len(s)
 89 |         self.data += s
 90 | 
 91 |     def update(self,ptr,fmt,*args):
 92 |         """
 93 |             Modify data at offset `ptr`
 94 |         """
 95 |         s = struct.pack(fmt,*args)
 96 |         self.data[ptr:ptr+len(s)] = s
 97 | 
 98 |     def unpack(self,fmt):
 99 |         """
100 |             Unpack data at current offset according to fmt (from struct)
101 |         """
102 |         try:
103 |             data = self.get(struct.calcsize(fmt))
104 |             return struct.unpack(fmt,data)
105 |         except struct.error as e:
106 |             raise BufferError("Error unpacking struct '%s' <%s>" %
107 |                     (fmt,binascii.hexlify(data).decode()))
108 | 
109 |     def __len__(self):
110 |         return len(self.data)
111 | 
112 | if __name__ == '__main__':
113 |     import doctest,sys
114 |     sys.exit(0 if doctest.testmod().failed == 0 else 1)
115 | 


--------------------------------------------------------------------------------
/dnslib/client.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     DNS Client - DiG-like CLI utility.
  5 | 
  6 |     Mostly useful for testing. Can optionally compare results from two
  7 |     nameservers (--diff) or compare results against DiG (--dig).
  8 | 
  9 |     Usage: python -m dnslib.client [options|--help]
 10 | 
 11 |     See --help for usage.
 12 | """
 13 | 
 14 | from __future__ import print_function
 15 | 
 16 | try:
 17 |     from subprocess import getoutput,getstatusoutput
 18 | except ImportError:
 19 |     from commands import getoutput,getstatusoutput
 20 | 
 21 | import binascii,code,pprint,sys
 22 | 
 23 | from dnslib.dns import DNSRecord,DNSHeader,DNSQuestion,DNSError,QTYPE,EDNS0
 24 | from dnslib.digparser import DigParser
 25 | 
 26 | if __name__ == '__main__':
 27 | 
 28 |     import argparse,sys,time
 29 | 
 30 |     p = argparse.ArgumentParser(description="DNS Client")
 31 |     p.add_argument("--server","-s",default="8.8.8.8",
 32 |                     metavar="<address:port>",
 33 |                     help="Server address:port (default:8.8.8.8:53) (port is optional)")
 34 |     p.add_argument("--query",action='store_true',default=False,
 35 |                     help="Show query (default: False)")
 36 |     p.add_argument("--hex",action='store_true',default=False,
 37 |                     help="Dump packet in hex (default: False)")
 38 |     p.add_argument("--tcp",action='store_true',default=False,
 39 |                     help="Use TCP (default: UDP)")
 40 |     p.add_argument("--noretry",action='store_true',default=False,
 41 |                     help="Don't retry query using TCP if truncated (default: false)")
 42 |     p.add_argument("--diff",default="",
 43 |                     help="Compare response from alternate nameserver (format: address:port / default: false)")
 44 |     p.add_argument("--dig",action='store_true',default=False,
 45 |                     help="Compare result with DiG - if ---diff also specified use alternative nameserver for DiG request (default: false)")
 46 |     p.add_argument("--short",action='store_true',default=False,
 47 |                     help="Short output - rdata only (default: false)")
 48 |     p.add_argument("--dnssec",action='store_true',default=False,
 49 |                     help="Set DNSSEC (DO/AD) flags in query (default: false)")
 50 |     p.add_argument("--debug",action='store_true',default=False,
 51 |                     help="Drop into CLI after request (default: false)")
 52 |     p.add_argument("domain",metavar="<domain>",
 53 |                     help="Query domain")
 54 |     p.add_argument("qtype",metavar="<type>",default="A",nargs="?",
 55 |                     help="Query type (default: A)")
 56 |     args = p.parse_args()
 57 | 
 58 |     # Construct request
 59 |     try:
 60 |         q = DNSRecord(q=DNSQuestion(args.domain,getattr(QTYPE,args.qtype)))
 61 | 
 62 |         if args.dnssec:
 63 |             q.add_ar(EDNS0(flags="do",udp_len=4096))
 64 |             q.header.ad = 1
 65 | 
 66 |         address,_,port = args.server.partition(':')
 67 |         port = int(port or 53)
 68 | 
 69 |         if args.query:
 70 |             print(";; Sending%s:" % (" (TCP)" if args.tcp else ""))
 71 |             if args.hex:
 72 |                 print(";; QUERY:",binascii.hexlify(q.pack()).decode())
 73 |             print(q)
 74 |             print()
 75 | 
 76 |         a_pkt = q.send(address,port,tcp=args.tcp)
 77 |         a = DNSRecord.parse(a_pkt)
 78 | 
 79 |         if q.header.id != a.header.id:
 80 |             raise DNSError('Response transaction id does not match query transaction id')
 81 | 
 82 |         if a.header.tc and args.noretry == False:
 83 |             # Truncated - retry in TCP mode
 84 |             a_pkt = q.send(address,port,tcp=True)
 85 |             a = DNSRecord.parse(a_pkt)
 86 | 
 87 |         if args.dig or args.diff:
 88 |             if args.diff:
 89 |                 address,_,port = args.diff.partition(':')
 90 |                 port = int(port or 53)
 91 | 
 92 |             if args.dig:
 93 |                 if getstatusoutput("dig -v")[0] != 0:
 94 |                     p.error("DiG not found")
 95 |                 if args.dnssec:
 96 |                     dig = getoutput("dig +qr +dnssec -p %d %s %s @%s" % (
 97 |                                     port, args.domain, args.qtype, address))
 98 |                 else:
 99 |                     dig = getoutput("dig +qr +noedns +noadflag -p %d %s %s @%s" % (
100 |                                     port, args.domain, args.qtype, address))
101 |                 dig_reply = list(iter(DigParser(dig)))
102 |                 # DiG might have retried in TCP mode so get last q/a
103 |                 q_diff = dig_reply[-2]
104 |                 a_diff = dig_reply[-1]
105 |             else:
106 |                 q_diff = DNSRecord(header=DNSHeader(id=q.header.id),
107 |                                    q=DNSQuestion(args.domain,
108 |                                                  getattr(QTYPE,args.qtype)))
109 |                 q_diff = q
110 |                 diff = q_diff.send(address,port,tcp=args.tcp)
111 |                 a_diff = DNSRecord.parse(diff)
112 |                 if a_diff.header.tc and args.noretry == False:
113 |                     diff = q_diff.send(address,port,tcp=True)
114 |                     a_diff = DNSRecord.parse(diff)
115 | 
116 |         if args.short:
117 |             print(a.short())
118 |         else:
119 |             print(";; Got answer:")
120 |             if args.hex:
121 |                 print(";; RESPONSE:",binascii.hexlify(a_pkt).decode())
122 |                 if args.diff and not args.dig:
123 |                     print(";; DIFF    :",binascii.hexlify(diff).decode())
124 |             print(a)
125 |             print()
126 | 
127 |             if args.dig or args.diff:
128 |                 if q != q_diff:
129 |                     print(";;; ERROR: Diff Question differs")
130 |                     for (d1,d2) in q.diff(q_diff):
131 |                         if d1:
132 |                             print(";; - %s" % d1)
133 |                         if d2:
134 |                             print(";; + %s" % d2)
135 |                 if a != a_diff:
136 |                     print(";;; ERROR: Diff Response differs")
137 |                     for (d1,d2) in a.diff(a_diff):
138 |                         if d1:
139 |                             print(";; - %s" % d1)
140 |                         if d2:
141 |                             print(";; + %s" % d2)
142 | 
143 |         if args.debug:
144 |             code.interact(local=locals())
145 | 
146 |     except DNSError as e:
147 |         p.error(e)
148 | 


--------------------------------------------------------------------------------
/dnslib/digparser.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | """
  3 | 
  4 |     digparser
  5 |     ---------
  6 | 
  7 |     Encode/decode DNS packets from DiG textual representation. Parses
  8 |     question (if present: +qr flag) & answer sections and returns list
  9 |     of DNSRecord objects.
 10 | 
 11 |     Unsupported RR types are skipped (this is different from the packet
 12 |     parser which will store and encode the RDATA as a binary blob)
 13 | 
 14 |     >>> dig = os.path.join(os.path.dirname(__file__),"test","dig","google.com-A.dig")
 15 |     >>> with open(dig) as f:
 16 |     ...     l = DigParser(f)
 17 |     ...     for record in l:
 18 |     ...         print('---')
 19 |     ...         print(repr(record))
 20 |     ---
 21 |     <DNS Header: id=0x5c9a type=QUERY opcode=QUERY flags=RD rcode='NOERROR' q=1 a=0 ns=0 ar=0>
 22 |     <DNS Question: 'google.com.' qtype=A qclass=IN>
 23 |     ---
 24 |     <DNS Header: id=0x5c9a type=RESPONSE opcode=QUERY flags=RD,RA rcode='NOERROR' q=1 a=16 ns=0 ar=0>
 25 |     <DNS Question: 'google.com.' qtype=A qclass=IN>
 26 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.183'>
 27 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.152'>
 28 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.172'>
 29 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.177'>
 30 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.157'>
 31 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.153'>
 32 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.182'>
 33 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.168'>
 34 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.178'>
 35 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.162'>
 36 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.187'>
 37 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.167'>
 38 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.148'>
 39 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.173'>
 40 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.158'>
 41 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='62.252.169.163'>
 42 | 
 43 |     >>> dig = os.path.join(os.path.dirname(__file__),"test","dig","google.com-ANY.dig")
 44 |     >>> with open(dig) as f:
 45 |     ...     l = DigParser(f)
 46 |     ...     for record in l:
 47 |     ...         print('---')
 48 |     ...         print(repr(record))
 49 |     ---
 50 |     <DNS Header: id=0xb294 type=QUERY opcode=QUERY flags=RD rcode='NOERROR' q=1 a=0 ns=0 ar=0>
 51 |     <DNS Question: 'google.com.' qtype=ANY qclass=IN>
 52 |     ---
 53 |     <DNS Header: id=0xb294 type=RESPONSE opcode=QUERY flags=RD,RA rcode='NOERROR' q=1 a=14 ns=0 ar=0>
 54 |     <DNS Question: 'google.com.' qtype=ANY qclass=IN>
 55 |     <DNS RR: 'google.com.' rtype=A rclass=IN ttl=299 rdata='216.58.212.110'>
 56 |     <DNS RR: 'google.com.' rtype=AAAA rclass=IN ttl=299 rdata='2a00:1450:4009:807::200e'>
 57 |     <DNS RR: 'google.com.' rtype=CAA rclass=IN ttl=86399 rdata='0 issue "symantec.com"'>
 58 |     <DNS RR: 'google.com.' rtype=MX rclass=IN ttl=599 rdata='40 alt3.aspmx.l.google.com.'>
 59 |     <DNS RR: 'google.com.' rtype=MX rclass=IN ttl=599 rdata='10 aspmx.l.google.com.'>
 60 |     <DNS RR: 'google.com.' rtype=NS rclass=IN ttl=86399 rdata='ns2.google.com.'>
 61 |     <DNS RR: 'google.com.' rtype=MX rclass=IN ttl=599 rdata='20 alt1.aspmx.l.google.com.'>
 62 |     <DNS RR: 'google.com.' rtype=SOA rclass=IN ttl=59 rdata='ns2.google.com. dns-admin.google.com. 144578247 900 900 1800 60'>
 63 |     <DNS RR: 'google.com.' rtype=NS rclass=IN ttl=86399 rdata='ns1.google.com.'>
 64 |     <DNS RR: 'google.com.' rtype=NS rclass=IN ttl=86399 rdata='ns4.google.com.'>
 65 |     <DNS RR: 'google.com.' rtype=NS rclass=IN ttl=86399 rdata='ns3.google.com.'>
 66 |     <DNS RR: 'google.com.' rtype=MX rclass=IN ttl=599 rdata='50 alt4.aspmx.l.google.com.'>
 67 |     <DNS RR: 'google.com.' rtype=TXT rclass=IN ttl=3599 rdata='"v=spf1 include:_spf.google.com ~all"'>
 68 |     <DNS RR: 'google.com.' rtype=MX rclass=IN ttl=599 rdata='30 alt2.aspmx.l.google.com.'>
 69 | 
 70 | """
 71 | 
 72 | from __future__ import print_function
 73 | 
 74 | import glob,os.path,string,re
 75 | 
 76 | from dnslib.lex import WordLexer
 77 | from dnslib.dns import (DNSRecord,DNSHeader,DNSQuestion,DNSError,
 78 |                         RR,RD,RDMAP,QR,RCODE,CLASS,QTYPE,EDNS0)
 79 | 
 80 | class DigParser:
 81 | 
 82 |     """
 83 |         Parse Dig output
 84 |     """
 85 | 
 86 |     def __init__(self,dig,debug=False):
 87 |         self.debug = debug
 88 |         self.l = WordLexer(dig)
 89 |         self.l.commentchars = ';'
 90 |         self.l.nltok = ('NL',None)
 91 |         self.i = iter(self.l)
 92 | 
 93 |     def parseHeader(self,l1,l2):
 94 |         _,_,_,opcode,_,status,_,_id = l1.split()
 95 |         _,flags,_ = l2.split(';')
 96 |         header = DNSHeader(id=int(_id),bitmap=0)
 97 |         header.opcode = getattr(QR,opcode.rstrip(','))
 98 |         header.rcode = getattr(RCODE,status.rstrip(','))
 99 |         for f in ('qr','aa','tc','rd','ra','ad','cd'):
100 |             if f in flags:
101 |                 setattr(header,f,1)
102 |         return header
103 | 
104 |     def expect(self,expect):
105 |         t,val = next(self.i)
106 |         if t != expect:
107 |             raise ValueError("Invalid Token: %s (expecting: %s)" % (t,expect))
108 |         return val
109 | 
110 |     def parseQuestions(self,q,dns):
111 |         for qname,qclass,qtype in q:
112 |             dns.add_question(DNSQuestion(qname,
113 |                                          getattr(QTYPE,qtype),
114 |                                          getattr(CLASS,qclass)))
115 | 
116 |     def parseAnswers(self,a,auth,ar,dns):
117 |         sect_map = {'a':'add_answer','auth':'add_auth','ar':'add_ar'}
118 |         for sect in 'a','auth','ar':
119 |             f = getattr(dns,sect_map[sect])
120 |             for rr in locals()[sect]:
121 |                 rname,ttl,rclass,rtype = rr[:4]
122 |                 rdata = rr[4:]
123 |                 rd = RDMAP.get(rtype,RD)
124 |                 try:
125 |                     if rd == RD and \
126 |                        any([ x not in string.hexdigits for x in rdata[-1]]):
127 |                         # Only support hex encoded data for fallback RD
128 |                         pass
129 |                     else:
130 |                         f(RR(rname=rname,
131 |                                 ttl=int(ttl),
132 |                                 rtype=getattr(QTYPE,rtype),
133 |                                 rclass=getattr(CLASS,rclass),
134 |                                 rdata=rd.fromZone(rdata)))
135 |                 except DNSError as e:
136 |                     if self.debug:
137 |                         print("DNSError:",e,rr)
138 |                     else:
139 |                         # Skip records we dont understand
140 |                         pass
141 | 
142 |     def parseEDNS(self,edns,dns):
143 |         args = {}
144 |         m = re.search(r'version: (\d+),',edns)
145 |         if m:
146 |             args['version'] = int(m.group(1))
147 |         m = re.search(r'flags:\s*(.*?);',edns)
148 |         if m:
149 |             args['flags'] = m.group(1)
150 |         m = re.search(r'udp: (\d+)',edns)
151 |         if m:
152 |             args['udp_len'] = int(m.group(1))
153 |         dns.add_ar(EDNS0(**args))
154 | 
155 |     def __iter__(self):
156 |         return self.parse()
157 | 
158 |     def parse(self):
159 |         dns = None
160 |         section = None
161 |         paren = False
162 |         rr = []
163 |         try:
164 |             while True:
165 |                 tok,val = next(self.i)
166 |                 if tok == 'COMMENT':
167 |                     if val.startswith('; ->>HEADER<<-'):
168 |                         # Start new record
169 |                         if dns:
170 |                             # If we have a current record complete this
171 |                             self.parseQuestions(q,dns)
172 |                             self.parseAnswers(a,auth,ar,dns)
173 |                             yield(dns)
174 |                         dns = DNSRecord()
175 |                         q,a,auth,ar = [],[],[],[]
176 |                         self.expect('NL')
177 |                         val2 = self.expect('COMMENT')
178 |                         dns.header = self.parseHeader(val,val2)
179 |                     elif val.startswith('; QUESTION'):
180 |                         section = q
181 |                     elif val.startswith('; ANSWER'):
182 |                         section = a
183 |                     elif val.startswith('; AUTHORITY'):
184 |                         section = auth
185 |                     elif val.startswith('; ADDITIONAL'):
186 |                         section = ar
187 |                     elif val.startswith('; OPT'):
188 |                         # Only partial support for parsing EDNS records
189 |                         self.expect('NL')
190 |                         val2 = self.expect('COMMENT')
191 |                         self.parseEDNS(val2,dns)
192 |                     elif val.startswith(';') or tok[1].startswith('<<>>'):
193 |                         pass
194 |                     elif dns and section == q:
195 |                         q.append(val.split())
196 |                 elif tok == 'ATOM':
197 |                     if val == '(':
198 |                         paren = True
199 |                     elif val == ')':
200 |                         paren = False
201 |                     else:
202 |                         rr.append(val)
203 |                 elif tok == 'NL' and not paren and rr:
204 |                     if self.debug:
205 |                         print(">>",rr)
206 |                     section.append(rr)
207 |                     rr = []
208 |         except StopIteration:
209 |             if rr:
210 |                 self.section.append(rr)
211 |             if dns:
212 |                 self.parseQuestions(q,dns)
213 |                 self.parseAnswers(a,auth,ar,dns)
214 |                 yield(dns)
215 | 
216 | if __name__ == '__main__':
217 | 
218 |     import argparse,doctest,sys
219 | 
220 |     p = argparse.ArgumentParser(description="DigParser Test")
221 |     p.add_argument("--dig",action='store_true',default=False,
222 |                     help="Parse DiG output (stdin)")
223 |     p.add_argument("--debug",action='store_true',default=False,
224 |                     help="Debug output")
225 | 
226 |     args = p.parse_args()
227 | 
228 |     if args.dig:
229 |         l = DigParser(sys.stdin,args.debug)
230 |         for record in l:
231 |             print(repr(record))
232 |     else:
233 |         sys.exit(0 if doctest.testmod().failed == 0 else 1)
234 | 


--------------------------------------------------------------------------------
/dnslib/fixedresolver.py:
--------------------------------------------------------------------------------
 1 | # -*- coding: utf-8 -*-
 2 | 
 3 | """
 4 |     FixedResolver - example resolver which responds with fixed response
 5 |                     to all requests
 6 | """
 7 | 
 8 | from __future__ import print_function
 9 | 
10 | import copy
11 | 
12 | from dnslib import RR
13 | from dnslib.server import DNSServer,DNSHandler,BaseResolver,DNSLogger
14 | 
15 | class FixedResolver(BaseResolver):
16 |     """
17 |         Respond with fixed response to all requests
18 |     """
19 |     def __init__(self,zone):
20 |         # Parse RRs
21 |         self.rrs = RR.fromZone(zone)
22 | 
23 |     def resolve(self,request,handler):
24 |         reply = request.reply()
25 |         qname = request.q.qname
26 |         # Replace labels with request label
27 |         for rr in self.rrs:
28 |             a = copy.copy(rr)
29 |             a.rname = qname
30 |             reply.add_answer(a)
31 |         return reply
32 | 
33 | if __name__ == '__main__':
34 | 
35 |     import argparse,sys,time
36 | 
37 |     p = argparse.ArgumentParser(description="Fixed DNS Resolver")
38 |     p.add_argument("--response","-r",default=". 60 IN A 127.0.0.1",
39 |                     metavar="<response>",
40 |                     help="DNS response (zone format) (default: 127.0.0.1)")
41 |     p.add_argument("--zonefile","-f",
42 |                     metavar="<zonefile>",
43 |                     help="DNS response (zone file, '-' for stdin)")
44 |     p.add_argument("--port","-p",type=int,default=53,
45 |                     metavar="<port>",
46 |                     help="Server port (default:53)")
47 |     p.add_argument("--address","-a",default="",
48 |                     metavar="<address>",
49 |                     help="Listen address (default:all)")
50 |     p.add_argument("--udplen","-u",type=int,default=0,
51 |                     metavar="<udplen>",
52 |                     help="Max UDP packet length (default:0)")
53 |     p.add_argument("--tcp",action='store_true',default=False,
54 |                     help="TCP server (default: UDP only)")
55 |     p.add_argument("--log",default="request,reply,truncated,error",
56 |                     help="Log hooks to enable (default: +request,+reply,+truncated,+error,-recv,-send,-data)")
57 |     p.add_argument("--log-prefix",action='store_true',default=False,
58 |                     help="Log prefix (timestamp/handler/resolver) (default: False)")
59 |     args = p.parse_args()
60 | 
61 |     if args.zonefile:
62 |         if args.zonefile == '-':
63 |             args.response = sys.stdin
64 |         else:
65 |             args.response = open(args.zonefile)
66 | 
67 |     resolver = FixedResolver(args.response)
68 |     logger = DNSLogger(args.log,prefix=args.log_prefix)
69 | 
70 |     print("Starting Fixed Resolver (%s:%d) [%s]" % (
71 |                         args.address or "*",
72 |                         args.port,
73 |                         "UDP/TCP" if args.tcp else "UDP"))
74 | 
75 |     for rr in resolver.rrs:
76 |         print("    | ",rr.toZone().strip(),sep="")
77 |     print()
78 | 
79 |     if args.udplen:
80 |         DNSHandler.udplen = args.udplen
81 | 
82 |     udp_server = DNSServer(resolver,
83 |                            port=args.port,
84 |                            address=args.address,
85 |                            logger=logger)
86 |     udp_server.start_thread()
87 | 
88 |     if args.tcp:
89 |         tcp_server = DNSServer(resolver,
90 |                                port=args.port,
91 |                                address=args.address,
92 |                                tcp=True,
93 |                                logger=logger)
94 |         tcp_server.start_thread()
95 | 
96 |     while udp_server.isAlive():
97 |         time.sleep(1)
98 | 
99 | 


--------------------------------------------------------------------------------
/dnslib/intercept.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     InterceptResolver - proxy requests to upstream server
  5 |                         (optionally intercepting)
  6 | 
  7 | """
  8 | from __future__ import print_function
  9 | 
 10 | import binascii,copy,socket,struct,sys
 11 | 
 12 | from dnslib import DNSRecord,RR,QTYPE,RCODE,parse_time
 13 | from dnslib.server import DNSServer,DNSHandler,BaseResolver,DNSLogger
 14 | from dnslib.label import DNSLabel
 15 | 
 16 | class InterceptResolver(BaseResolver):
 17 | 
 18 |     """
 19 |         Intercepting resolver
 20 | 
 21 |         Proxy requests to upstream server optionally intercepting requests
 22 |         matching local records
 23 |     """
 24 | 
 25 |     def __init__(self,address,port,ttl,intercept,skip,nxdomain,forward,all_qtypes,timeout=0):
 26 |         """
 27 |             address/port    - upstream server
 28 |             ttl             - default ttl for intercept records
 29 |             intercept       - list of wildcard RRs to respond to (zone format)
 30 |             skip            - list of wildcard labels to skip
 31 |             nxdomain        - list of wildcard labels to return NXDOMAIN
 32 |             forward         - list of wildcard labels to forward
 33 |             all_qtypes      - intercept all qtypes if qname matches.
 34 |             timeout         - timeout for upstream server(s)
 35 |         """
 36 |         self.address = address
 37 |         self.port = port
 38 |         self.ttl = parse_time(ttl)
 39 |         self.skip = skip
 40 |         self.nxdomain = nxdomain
 41 |         self.forward = []
 42 |         for i in forward:
 43 |             qname, _, upstream = i.partition(':')
 44 |             upstream_ip, _, upstream_port = upstream.partition(':')
 45 |             self.forward.append((qname, upstream_ip, int(upstream_port or '53')))
 46 |         self.all_qtypes = all_qtypes
 47 |         self.timeout = timeout
 48 |         self.zone = []
 49 |         for i in intercept:
 50 |             if i == '-':
 51 |                 i = sys.stdin.read()
 52 |             for rr in RR.fromZone(i,ttl=self.ttl):
 53 |                 self.zone.append((rr.rname,QTYPE[rr.rtype],rr))
 54 | 
 55 |     def resolve(self,request,handler):
 56 |         matched = False
 57 |         reply = request.reply()
 58 |         qname = request.q.qname
 59 |         qtype = QTYPE[request.q.qtype]
 60 |         # Try to resolve locally unless on skip list
 61 |         if not any([qname.matchGlob(s) for s in self.skip]):
 62 |             for name,rtype,rr in self.zone:
 63 |                 if qname.matchGlob(name):
 64 |                     if qtype in (rtype,'ANY','CNAME'):
 65 |                         a = copy.copy(rr)
 66 |                         a.rname = qname
 67 |                         reply.add_answer(a)
 68 |                     matched = True
 69 |         # Check for NXDOMAIN
 70 |         if any([qname.matchGlob(s) for s in self.nxdomain]):
 71 |             reply.header.rcode = getattr(RCODE,'NXDOMAIN')
 72 |             return reply
 73 |         if matched and self.all_qtypes:
 74 |             return reply
 75 |         # Otherwise proxy, first checking forwards, then to upstream.
 76 |         upstream, upstream_port = self.address,self.port
 77 |         if not any([qname.matchGlob(s) for s in self.skip]):
 78 |             for name, ip, port in self.forward:
 79 |                 if qname.matchGlob(name):
 80 |                     upstream, upstream_port = ip, port
 81 |         if not reply.rr:
 82 |             try:
 83 |                 if handler.protocol == 'udp':
 84 |                     proxy_r = request.send(upstream,upstream_port,
 85 |                                     timeout=self.timeout)
 86 |                 else:
 87 |                     proxy_r = request.send(upstream,upstream_port,
 88 |                                     tcp=True,timeout=self.timeout)
 89 |                 reply = DNSRecord.parse(proxy_r)
 90 |             except socket.timeout:
 91 |                 reply.header.rcode = getattr(RCODE,'SERVFAIL')
 92 | 
 93 |         return reply
 94 | 
 95 | if __name__ == '__main__':
 96 | 
 97 |     import argparse,sys,time
 98 | 
 99 |     p = argparse.ArgumentParser(description="DNS Intercept Proxy")
100 |     p.add_argument("--port","-p",type=int,default=53,
101 |                     metavar="<port>",
102 |                     help="Local proxy port (default:53)")
103 |     p.add_argument("--address","-a",default="",
104 |                     metavar="<address>",
105 |                     help="Local proxy listen address (default:all)")
106 |     p.add_argument("--upstream","-u",default="8.8.8.8:53",
107 |             metavar="<dns server:port>",
108 |                     help="Upstream DNS server:port (default:8.8.8.8:53)")
109 |     p.add_argument("--tcp",action='store_true',default=False,
110 |                     help="TCP proxy (default: UDP only)")
111 |     p.add_argument("--intercept","-i",action="append",
112 |                     metavar="<zone record>",
113 |                     help="Intercept requests matching zone record (glob) ('-' for stdin)")
114 |     p.add_argument("--skip","-s",action="append",
115 |                     metavar="<label>",
116 |                     help="Don't intercept matching label (glob)")
117 |     p.add_argument("--nxdomain","-x",action="append",
118 |                     metavar="<label>",
119 |                     help="Return NXDOMAIN (glob)")
120 |     p.add_argument("--forward","-f",action="append",
121 |                    metavar="<label:dns server:port>",
122 |                    help="forward requests matching label (glob) to dns server")
123 |     p.add_argument("--ttl","-t",default="60s",
124 |                     metavar="<ttl>",
125 |                     help="Intercept TTL (default: 60s)")
126 |     p.add_argument("--timeout","-o",type=float,default=5,
127 |                     metavar="<timeout>",
128 |                     help="Upstream timeout (default: 5s)")
129 |     p.add_argument("--all-qtypes",action='store_true',default=False,
130 |                    help="Return an empty response if qname matches, but qtype doesn't")
131 |     p.add_argument("--log",default="request,reply,truncated,error",
132 |                     help="Log hooks to enable (default: +request,+reply,+truncated,+error,-recv,-send,-data)")
133 |     p.add_argument("--log-prefix",action='store_true',default=False,
134 |                     help="Log prefix (timestamp/handler/resolver) (default: False)")
135 |     args = p.parse_args()
136 | 
137 |     args.dns,_,args.dns_port = args.upstream.partition(':')
138 |     args.dns_port = int(args.dns_port or 53)
139 | 
140 |     resolver = InterceptResolver(args.dns,
141 |                                  args.dns_port,
142 |                                  args.ttl,
143 |                                  args.intercept or [],
144 |                                  args.skip or [],
145 |                                  args.nxdomain or [],
146 |                                  args.forward or [],
147 |                                  args.all_qtypes,
148 |                                  args.timeout)
149 |     logger = DNSLogger(args.log,args.log_prefix)
150 | 
151 |     print("Starting Intercept Proxy (%s:%d -> %s:%d) [%s]" % (
152 |                         args.address or "*",args.port,
153 |                         args.dns,args.dns_port,
154 |                         "UDP/TCP" if args.tcp else "UDP"))
155 | 
156 |     for rr in resolver.zone:
157 |         print("    | ",rr[2].toZone(),sep="")
158 |     if resolver.nxdomain:
159 |         print("    NXDOMAIN:",", ".join(resolver.nxdomain))
160 |     if resolver.skip:
161 |         print("    Skipping:",", ".join(resolver.skip))
162 |     if resolver.forward:
163 |         print("    Forwarding:")
164 |         for i in resolver.forward:
165 |             print("    | ","%s:%s:%s" % i,sep="")
166 |     print()
167 | 
168 | 
169 |     DNSHandler.log = {
170 |         'log_request',      # DNS Request
171 |         'log_reply',        # DNS Response
172 |         'log_truncated',    # Truncated
173 |         'log_error',        # Decoding error
174 |     }
175 | 
176 |     udp_server = DNSServer(resolver,
177 |                            port=args.port,
178 |                            address=args.address,
179 |                            logger=logger)
180 |     udp_server.start_thread()
181 | 
182 |     if args.tcp:
183 |         tcp_server = DNSServer(resolver,
184 |                                port=args.port,
185 |                                address=args.address,
186 |                                tcp=True,
187 |                                logger=logger)
188 |         tcp_server.start_thread()
189 | 
190 |     while udp_server.isAlive():
191 |         time.sleep(1)
192 | 
193 | 


--------------------------------------------------------------------------------
/dnslib/label.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     DNSLabel/DNSBuffer - DNS label handling & encoding/decoding
  5 | """
  6 | 
  7 | from __future__ import print_function
  8 | 
  9 | import fnmatch,re,string
 10 | 
 11 | from dnslib.bit import get_bits,set_bits
 12 | from dnslib.buffer import Buffer, BufferError
 13 | 
 14 | # In theory valid label characters should be letters,digits,hyphen,underscore (LDH)
 15 | # LDH = set(bytearray(b'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-_'))
 16 | # For compatibility we only escape non-printable characters
 17 | LDH = set(range(33,127))
 18 | ESCAPE = re.compile(r'\\([0-9][0-9][0-9])')
 19 | 
 20 | class DNSLabelError(Exception):
 21 |     pass
 22 | 
 23 | class DNSLabel(object):
 24 | 
 25 |     """
 26 |     Container for DNS label
 27 | 
 28 |     Supports IDNA encoding for unicode domain names
 29 | 
 30 |     >>> l1 = DNSLabel("aaa.bbb.ccc.")
 31 |     >>> l2 = DNSLabel([b"aaa",b"bbb",b"ccc"])
 32 |     >>> l1 == l2
 33 |     True
 34 |     >>> l3 = DNSLabel("AAA.BBB.CCC")
 35 |     >>> l1 == l3
 36 |     True
 37 |     >>> l1 == 'AAA.BBB.CCC'
 38 |     True
 39 |     >>> x = { l1 : 1 }
 40 |     >>> x[l1]
 41 |     1
 42 |     >>> l1
 43 |     <DNSLabel: 'aaa.bbb.ccc.'>
 44 |     >>> str(l1)
 45 |     'aaa.bbb.ccc.'
 46 |     >>> l3 = l1.add("xxx.yyy")
 47 |     >>> l3
 48 |     <DNSLabel: 'xxx.yyy.aaa.bbb.ccc.'>
 49 |     >>> l3.matchSuffix(l1)
 50 |     True
 51 |     >>> l3.matchSuffix("xxx.yyy.")
 52 |     False
 53 |     >>> l3.matchSuffix("Bbb.ccc.")
 54 |     True
 55 |     >>> l3.stripSuffix("bbb.ccc.")
 56 |     <DNSLabel: 'xxx.yyy.aaa.'>
 57 |     >>> l3.matchGlob("*.[abc]aa.BBB.ccc")
 58 |     True
 59 |     >>> l3.matchGlob("*.[abc]xx.bbb.ccc")
 60 |     False
 61 |     >>> l1.matchWildcard("*.bbb.ccc")
 62 |     True
 63 |     >>> l1.matchWildcard("*.CCC")
 64 |     True
 65 |     >>> l1.matchWildcard("*.xxx.bbb.ccc")
 66 |     False
 67 |     >>> l1.matchWildcard("aaa.bbb.ccc")
 68 |     True
 69 |     >>> l1.matchWildcard("bbb.ccc")
 70 |     False
 71 |     >>> l1.matchWildcard("xxx.aaa.bbb.ccc")
 72 |     False
 73 | 
 74 |     # Too hard to get unicode doctests to work on Python 3.2
 75 |     # (works on 3.3)
 76 |     # >>> u1 = DNSLabel(u'\u2295.com')
 77 |     # >>> u1.__str__() == u'\u2295.com.'
 78 |     # True
 79 |     # >>> u1.label == ( b"xn--keh", b"com" )
 80 |     # True
 81 | 
 82 |     """
 83 |     def __init__(self,label):
 84 |         """
 85 |             Create DNS label instance
 86 | 
 87 |             Label can be specified as:
 88 |             - a list/tuple of byte strings
 89 |             - a byte string (split into components separated by b'.')
 90 |             - a unicode string which will be encoded according to RFC3490/IDNA
 91 |         """
 92 |         if type(label) == DNSLabel:
 93 |             self.label = label.label
 94 |         elif type(label) in (list,tuple):
 95 |             self.label = tuple(label)
 96 |         else:
 97 |             if not label or label in (b'.','.'):
 98 |                 self.label = ()
 99 |             elif type(label) is not bytes:
100 |                 if type('') != type(b''):
101 |                     # Py3
102 |                     label = ESCAPE.sub(lambda m:chr(int(m[1])),label)
103 |                 self.label = tuple(label.encode("idna").\
104 |                                 rstrip(b".").split(b"."))
105 |             else:
106 |                 if type('') == type(b''):
107 |                     # Py2
108 |                     label = ESCAPE.sub(lambda m:chr(int(m.groups()[0])),label)
109 |                 self.label = tuple(label.rstrip(b".").split(b"."))
110 | 
111 |     def add(self,name):
112 |         """
113 |             Prepend name to label
114 |         """
115 |         new = DNSLabel(name)
116 |         if self.label:
117 |             new.label += self.label
118 |         return new
119 | 
120 |     def matchGlob(self,pattern):
121 |         if type(pattern) != DNSLabel:
122 |             pattern = DNSLabel(pattern)
123 |         return fnmatch.fnmatch(str(self).lower(),str(pattern).lower())
124 | 
125 |     def matchWildcard(self,pattern):
126 |         """
127 |             Wildcard match according to https://datatracker.ietf.org/doc/html/rfc1034#section-4.3.3   
128 |             (This only allows a single '*' prefix wildcard which matches one or more labels)
129 | 
130 |             Note that the spec is defined at the zone level (if there is a more
131 |             specific overlapping match within the zone) some soem additional
132 |             logic is required in the resolved to implement this.
133 | 
134 |         """
135 |         if type(pattern) != DNSLabel:
136 |             pattern = DNSLabel(pattern)
137 |         if pattern.label[0] != b'*' and len(self.label) != len(pattern.label):
138 |             # No wildcard - number of labels must match
139 |             return False
140 |         for (a,b) in zip(reversed(self.label),reversed(pattern.label)):
141 |             if b != b'*' and a.lower() != b.lower():
142 |                 return False
143 |         return True
144 | 
145 |     def matchSuffix(self,suffix):
146 |         """
147 |             Return True if label suffix matches
148 |         """
149 |         suffix = DNSLabel(suffix)
150 |         return DNSLabel(self.label[-len(suffix.label):]) == suffix
151 | 
152 |     def stripSuffix(self,suffix):
153 |         """
154 |             Strip suffix from label
155 |         """
156 |         suffix = DNSLabel(suffix)
157 |         if self.matchSuffix(suffix):
158 |             return DNSLabel(self.label[:-len(suffix.label)])
159 |         else:
160 |             return self
161 | 
162 |     def idna(self):
163 |         return ".".join([ s.decode("idna") for s in self.label ]) + "."
164 | 
165 |     def _decode(self,s):
166 |         if set(s).issubset(LDH):
167 |             # All chars in LDH
168 |             return s.decode()
169 |         else:
170 |             # Need to encode
171 |             return "".join([(chr(c) if (c in LDH) else "\\%03d" % c) for c in s])
172 | 
173 |     def __str__(self):
174 |         return ".".join([ self._decode(bytearray(s)) for s in self.label ]) + "."
175 | 
176 |     def __repr__(self):
177 |         return "<DNSLabel: '%s'>" % str(self)
178 | 
179 |     def __hash__(self):
180 |         return hash(tuple(map(lambda x:x.lower(),self.label)))
181 | 
182 |     def __ne__(self,other):
183 |         return not self == other
184 | 
185 |     def __eq__(self,other):
186 |         if type(other) != DNSLabel:
187 |             return self.__eq__(DNSLabel(other))
188 |         else:
189 |             return [ l.lower() for l in self.label ] == \
190 |                    [ l.lower() for l in other.label ]
191 | 
192 |     def __len__(self):
193 |         return len(b'.'.join(self.label))
194 | 
195 | class DNSBuffer(Buffer):
196 | 
197 |     """
198 |     Extends Buffer to provide DNS name encoding/decoding (with caching)
199 | 
200 |     # Needed for Python 2/3 doctest compatibility
201 |     >>> def p(s):
202 |     ...     if not isinstance(s,str):
203 |     ...         return s.decode()
204 |     ...     return s
205 | 
206 |     >>> b = DNSBuffer()
207 |     >>> b.encode_name(b'aaa.bbb.ccc.')
208 |     >>> len(b)
209 |     13
210 |     >>> b.encode_name(b'aaa.bbb.ccc.')
211 |     >>> len(b)
212 |     15
213 |     >>> b.encode_name(b'xxx.yyy.zzz')
214 |     >>> len(b)
215 |     28
216 |     >>> b.encode_name(b'zzz.xxx.bbb.ccc.')
217 |     >>> len(b)
218 |     38
219 |     >>> b.encode_name(b'aaa.xxx.bbb.ccc')
220 |     >>> len(b)
221 |     44
222 |     >>> b.offset = 0
223 |     >>> print(b.decode_name())
224 |     aaa.bbb.ccc.
225 |     >>> print(b.decode_name())
226 |     aaa.bbb.ccc.
227 |     >>> print(b.decode_name())
228 |     xxx.yyy.zzz.
229 |     >>> print(b.decode_name())
230 |     zzz.xxx.bbb.ccc.
231 |     >>> print(b.decode_name())
232 |     aaa.xxx.bbb.ccc.
233 | 
234 |     >>> b = DNSBuffer()
235 |     >>> b.encode_name([b'a.aa',b'b.bb',b'c.cc'])
236 |     >>> b.offset = 0
237 |     >>> len(b.decode_name().label)
238 |     3
239 | 
240 |     >>> b = DNSBuffer()
241 |     >>> b.encode_name_nocompress(b'aaa.bbb.ccc.')
242 |     >>> len(b)
243 |     13
244 |     >>> b.encode_name_nocompress(b'aaa.bbb.ccc.')
245 |     >>> len(b)
246 |     26
247 |     >>> b.offset = 0
248 |     >>> print(b.decode_name())
249 |     aaa.bbb.ccc.
250 |     >>> print(b.decode_name())
251 |     aaa.bbb.ccc.
252 |     """
253 | 
254 |     def __init__(self,data=b''):
255 |         """
256 |             Add 'names' dict to cache stored labels
257 |         """
258 |         super(DNSBuffer,self).__init__(data)
259 |         self.names = {}
260 | 
261 |     def decode_name(self,last=-1):
262 |         """
263 |             Decode label at current offset in buffer (following pointers
264 |             to cached elements where necessary)
265 |         """
266 |         label = []
267 |         done = False
268 |         while not done:
269 |             (length,) = self.unpack("!B")
270 |             if get_bits(length,6,2) == 3:
271 |                 # Pointer
272 |                 self.offset -= 1
273 |                 pointer = get_bits(self.unpack("!H")[0],0,14)
274 |                 save = self.offset
275 |                 if last == save:
276 |                     raise BufferError("Recursive pointer in DNSLabel [offset=%d,pointer=%d,length=%d]" %
277 |                             (self.offset,pointer,len(self.data)))
278 |                 if pointer < self.offset:
279 |                     self.offset = pointer
280 |                 else:
281 |                     # Pointer can't point forwards
282 |                     raise BufferError("Invalid pointer in DNSLabel [offset=%d,pointer=%d,length=%d]" %
283 |                             (self.offset,pointer,len(self.data)))
284 |                 label.extend(self.decode_name(save).label)
285 |                 self.offset = save
286 |                 done = True
287 |             else:
288 |                 if length > 0:
289 |                     l = self.get(length)
290 |                     try:
291 |                         l.decode()
292 |                     except UnicodeDecodeError:
293 |                         raise BufferError("Invalid label <%s>" % l)
294 |                     label.append(l)
295 |                 else:
296 |                     done = True
297 |         return DNSLabel(label)
298 | 
299 |     def encode_name(self,name):
300 |         """
301 |             Encode label and store at end of buffer (compressing
302 |             cached elements where needed) and store elements
303 |             in 'names' dict
304 |         """
305 |         if not isinstance(name,DNSLabel):
306 |             name = DNSLabel(name)
307 |         if len(name) > 253:
308 |             raise DNSLabelError("Domain label too long: %r" % name)
309 |         name = list(name.label)
310 |         while name:
311 |             if tuple(name) in self.names:
312 |                 # Cached - set pointer
313 |                 pointer = self.names[tuple(name)]
314 |                 pointer = set_bits(pointer,3,14,2)
315 |                 self.pack("!H",pointer)
316 |                 return
317 |             else:
318 |                 self.names[tuple(name)] = self.offset
319 |                 element = name.pop(0)
320 |                 if len(element) > 63:
321 |                     raise DNSLabelError("Label component too long: %r" % element)
322 |                 self.pack("!B",len(element))
323 |                 self.append(element)
324 |         self.append(b'\x00')
325 | 
326 |     def encode_name_nocompress(self,name):
327 |         """
328 |             Encode and store label with no compression
329 |             (needed for RRSIG, SRV, NSEC)
330 |         """
331 |         if not isinstance(name,DNSLabel):
332 |             name = DNSLabel(name)
333 |         if len(name) > 253:
334 |             raise DNSLabelError("Domain label too long: %r" % name)
335 |         name = list(name.label)
336 |         while name:
337 |             element = name.pop(0)
338 |             if len(element) > 63:
339 |                 raise DNSLabelError("Label component too long: %r" % element)
340 |             self.pack("!B",len(element))
341 |             self.append(element)
342 |         self.append(b'\x00')
343 | 
344 | if __name__ == '__main__':
345 |     import doctest,sys
346 |     sys.exit(0 if doctest.testmod().failed == 0 else 1)
347 | 


--------------------------------------------------------------------------------
/dnslib/lex.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | from __future__ import print_function
  4 | 
  5 | import collections,string
  6 | 
  7 | try:
  8 |     from StringIO import StringIO
  9 | except ImportError:
 10 |     from io import StringIO
 11 | 
 12 | class Lexer(object):
 13 | 
 14 |     """
 15 |         Simple Lexer base class. Provides basic lexer framework and
 16 |         helper functionality (read/peek/pushback etc)
 17 | 
 18 |         Each state is implemented using a method (lexXXXX) which should
 19 |         match a single token and return a (token,lexYYYY) tuple, with lexYYYY
 20 |         representing the next state. If token is None this is not emitted
 21 |         and if lexYYYY is None or the lexer reaches the end of the
 22 |         input stream the lexer exits.
 23 | 
 24 |         The 'parse' method returns a generator that will return tokens
 25 |         (the class also acts as an iterator)
 26 | 
 27 |         The default start state is 'lexStart'
 28 | 
 29 |         Input can either be a string/bytes or file object.
 30 | 
 31 |         The approach is based loosely on Rob Pike's Go lexer presentation
 32 |         (using generators rather than channels).
 33 | 
 34 |         >>> p = Lexer("a bcd efgh")
 35 |         >>> p.read()
 36 |         'a'
 37 |         >>> p.read()
 38 |         ' '
 39 |         >>> p.peek(3)
 40 |         'bcd'
 41 |         >>> p.read(5)
 42 |         'bcd e'
 43 |         >>> p.pushback('e')
 44 |         >>> p.read(4)
 45 |         'efgh'
 46 |     """
 47 | 
 48 |     escape_chars = '\\'
 49 |     escape = {'n':'\n','t':'\t','r':'\r'}
 50 | 
 51 |     def __init__(self,f,debug=False):
 52 |         if hasattr(f,'read'):
 53 |             self.f = f
 54 |         elif type(f) == str:
 55 |             self.f = StringIO(f)
 56 |         elif type(f) == bytes:
 57 |             self.f = StringIO(f.decode())
 58 |         else:
 59 |             raise ValueError("Invalid input")
 60 |         self.debug = debug
 61 |         self.q = collections.deque()
 62 |         self.state = self.lexStart
 63 |         self.escaped = False
 64 |         self.eof = False
 65 | 
 66 |     def __iter__(self):
 67 |         return self.parse()
 68 | 
 69 |     def next_token(self):
 70 |         if self.debug:
 71 |             print("STATE",self.state)
 72 |         (tok,self.state) = self.state()
 73 |         return tok
 74 | 
 75 |     def parse(self):
 76 |         while self.state is not None and not self.eof:
 77 |             tok = self.next_token()
 78 |             if tok:
 79 |                 yield tok
 80 | 
 81 |     def read(self,n=1):
 82 |         s = ""
 83 |         while self.q and n > 0:
 84 |             s += self.q.popleft()
 85 |             n -= 1
 86 |         s += self.f.read(n)
 87 |         if s == '':
 88 |             self.eof = True
 89 |         if self.debug:
 90 |             print("Read: >%s<" % repr(s))
 91 |         return s
 92 | 
 93 |     def peek(self,n=1):
 94 |         s = ""
 95 |         i = 0
 96 |         while len(self.q) > i and n > 0:
 97 |             s += self.q[i]
 98 |             i += 1
 99 |             n -= 1
100 |         r = self.f.read(n)
101 |         if n > 0 and r == '':
102 |             self.eof = True
103 |         self.q.extend(r)
104 |         if self.debug:
105 |             print("Peek : >%s<" % repr(s + r))
106 |         return s + r
107 | 
108 |     def pushback(self,s):
109 |         p = collections.deque(s)
110 |         p.extend(self.q)
111 |         self.q = p
112 | 
113 |     def readescaped(self):
114 |         c = self.read(1)
115 |         if c in self.escape_chars:
116 |             self.escaped = True
117 |             n = self.peek(3)
118 |             if n.isdigit():
119 |                 n = self.read(3)
120 |                 if self.debug:
121 |                     print("Escape: >%s<" % n)
122 |                 return chr(int(n,8))
123 |             elif n[0] in 'x':
124 |                 x = self.read(3)
125 |                 if self.debug:
126 |                     print("Escape: >%s<" % x)
127 |                 return chr(int(x[1:],16))
128 |             else:
129 |                 c = self.read(1)
130 |                 if self.debug:
131 |                     print("Escape: >%s<" % c)
132 |                 return self.escape.get(c,c)
133 |         else:
134 |             self.escaped = False
135 |             return c
136 | 
137 |     def lexStart(self):
138 |         return (None,None)
139 | 
140 | class WordLexer(Lexer):
141 |     """
142 |         Example lexer which will split input stream into words (respecting
143 |         quotes)
144 | 
145 |         To emit SPACE tokens: self.spacetok = ('SPACE',None)
146 |         To emit NL tokens: self.nltok = ('NL',None)
147 | 
148 |         >>> l = WordLexer(r'abc "def\100\x3d\\. ghi" jkl')
149 |         >>> list(l)
150 |         [('ATOM', 'abc'), ('ATOM', 'def@=. ghi'), ('ATOM', 'jkl')]
151 |         >>> l = WordLexer(r"1 '2 3 4' 5")
152 |         >>> list(l)
153 |         [('ATOM', '1'), ('ATOM', '2 3 4'), ('ATOM', '5')]
154 |         >>> l = WordLexer("abc# a comment")
155 |         >>> list(l)
156 |         [('ATOM', 'abc'), ('COMMENT', 'a comment')]
157 |     """
158 | 
159 |     wordchars = set(string.ascii_letters) | set(string.digits) | \
160 |                 set(string.punctuation)
161 |     quotechars = set('"\'')
162 |     commentchars = set('#')
163 |     spacechars = set(' \t\x0b\x0c')
164 |     nlchars = set('\r\n')
165 |     spacetok = None
166 |     nltok = None
167 | 
168 |     def lexStart(self):
169 |         return (None,self.lexSpace)
170 | 
171 |     def lexSpace(self):
172 |         s = []
173 |         if self.spacetok:
174 |             tok = lambda n : (self.spacetok,n) if s else (None,n)
175 |         else:
176 |             tok = lambda n : (None,n)
177 |         while not self.eof:
178 |             c = self.peek()
179 |             if c in self.spacechars:
180 |                 s.append(self.read())
181 |             elif c in self.nlchars:
182 |                 return tok(self.lexNL)
183 |             elif c in self.commentchars:
184 |                 return tok(self.lexComment)
185 |             elif c in self.quotechars:
186 |                 return tok(self.lexQuote)
187 |             elif c in self.wordchars:
188 |                 return tok(self.lexWord)
189 |             elif c:
190 |                 raise ValueError("Invalid input [%d]: %s" % (
191 |                                         self.f.tell(),c))
192 |         return (None,None)
193 | 
194 |     def lexNL(self):
195 |         while True:
196 |             c = self.read()
197 |             if c not in self.nlchars:
198 |                 self.pushback(c)
199 |                 return (self.nltok,self.lexSpace)
200 | 
201 |     def lexComment(self):
202 |         s = []
203 |         tok = lambda n : (('COMMENT',''.join(s)),n) if s else (None,n)
204 |         start = False
205 |         _ = self.read()
206 |         while not self.eof:
207 |             c = self.read()
208 |             if c == '\n':
209 |                 self.pushback(c)
210 |                 return tok(self.lexNL)
211 |             elif start or c not in string.whitespace:
212 |                 start = True
213 |                 s.append(c)
214 |         return tok(None)
215 | 
216 |     def lexWord(self):
217 |         s = []
218 |         tok = lambda n : (('ATOM',''.join(s)),n) if s else (None,n)
219 |         while not self.eof:
220 |             c = self.peek()
221 |             if c == '"':
222 |                 return tok(self.lexQuote)
223 |             elif c in self.commentchars:
224 |                 return tok(self.lexComment)
225 |             elif c.isspace():
226 |                 return tok(self.lexSpace)
227 |             elif c in self.wordchars:
228 |                 s.append(self.read())
229 |             elif c:
230 |                 raise ValueError('Invalid input [%d]: %s' % (
231 |                                     self.f.tell(),c))
232 |         return tok(None)
233 | 
234 |     def lexQuote(self):
235 |         s = []
236 |         tok = lambda n : (('ATOM',''.join(s)),n)
237 |         q = self.read(1)
238 |         while not self.eof:
239 |             c = self.readescaped()
240 |             if c == q and not self.escaped:
241 |                 break
242 |             else:
243 |                 s.append(c)
244 |         return tok(self.lexSpace)
245 | 
246 | class RandomLexer(Lexer):
247 | 
248 |     """
249 |         Test lexing from infinite stream.
250 | 
251 |         Extract strings of letters/numbers from /dev/urandom
252 | 
253 |         >>> import itertools,sys
254 |         >>> if sys.version[0] == '2':
255 |         ...     f = open("/dev/urandom")
256 |         ... else:
257 |         ...     f = open("/dev/urandom",encoding="ascii",errors="replace")
258 |         >>> r = RandomLexer(f)
259 |         >>> i = iter(r)
260 |         >>> len(list(itertools.islice(i,10)))
261 |         10
262 |     """
263 | 
264 |     minalpha = 4
265 |     mindigits = 3
266 | 
267 |     def lexStart(self):
268 |         return (None,self.lexRandom)
269 | 
270 |     def lexRandom(self):
271 |         n = 0
272 |         c = self.peek(1)
273 |         while not self.eof:
274 |             if c.isalpha():
275 |                 return (None,self.lexAlpha)
276 |             elif c.isdigit():
277 |                 return (None,self.lexDigits)
278 |             else:
279 |                 n += 1
280 |                 _ = self.read(1)
281 |                 c = self.peek(1)
282 |         return (None,None)
283 | 
284 |     def lexDigits(self):
285 |         s = []
286 |         c = self.read(1)
287 |         while c.isdigit():
288 |             s.append(c)
289 |             c = self.read(1)
290 |         self.pushback(c)
291 |         if len(s) >= self.mindigits:
292 |             return (('NUMBER',"".join(s)),self.lexRandom)
293 |         else:
294 |             return (None,self.lexRandom)
295 | 
296 |     def lexAlpha(self):
297 |         s = []
298 |         c = self.read(1)
299 |         while c.isalpha():
300 |             s.append(c)
301 |             c = self.read(1)
302 |         self.pushback(c)
303 |         if len(s) >= self.minalpha:
304 |             return (('STRING',"".join(s)),self.lexRandom)
305 |         else:
306 |             return (None,self.lexRandom)
307 | 
308 | if __name__ == '__main__':
309 | 
310 |     import argparse,doctest,sys
311 | 
312 |     p = argparse.ArgumentParser(description="Lex Tester")
313 |     p.add_argument("--lex","-l",action='store_true',default=False,
314 |                     help="Lex input (stdin)")
315 |     p.add_argument("--nl",action='store_true',default=False,
316 |                     help="Output NL tokens")
317 |     p.add_argument("--space",action='store_true',default=False,
318 |                     help="Output Whitespace tokens")
319 |     p.add_argument("--wordchars",help="Wordchars")
320 |     p.add_argument("--quotechars",help="Quotechars")
321 |     p.add_argument("--commentchars",help="Commentchars")
322 |     p.add_argument("--spacechars",help="Spacechars")
323 |     p.add_argument("--nlchars",help="NLchars")
324 | 
325 |     args = p.parse_args()
326 | 
327 |     if args.lex:
328 |         l = WordLexer(sys.stdin)
329 |         if args.wordchars:
330 |             l.wordchars = set(args.wordchars)
331 |         if args.quotechars:
332 |             l.quotechars = set(args.quotechars)
333 |         if args.commentchars:
334 |             l.commentchars = set(args.commentchars)
335 |         if args.spacechars:
336 |             l.spacechars = set(args.spacechars)
337 |         if args.nlchars:
338 |             l.nlchars = set(args.nlchars)
339 |         if args.space:
340 |             l.spacetok = ('SPACE',)
341 |         if args.nl:
342 |             l.nltok = ('NL',)
343 | 
344 |         for tok in l:
345 |             print(tok)
346 |     else:
347 |         try:
348 |             # Test if we have /dev/urandom
349 |             open("/dev/urandom")
350 |             sys.exit(0 if doctest.testmod().failed == 0 else 1)
351 |         except IOError:
352 |             # Don't run stream test
353 |             doctest.run_docstring_examples(Lexer, globals())
354 |             doctest.run_docstring_examples(WordLexer, globals())
355 | 
356 | 


--------------------------------------------------------------------------------
/dnslib/proxy.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | from __future__ import print_function
  4 | 
  5 | import binascii,socket,struct
  6 | 
  7 | from dnslib import DNSRecord,RCODE,QTYPE
  8 | from dnslib.server import DNSServer,DNSHandler,BaseResolver,DNSLogger
  9 | 
 10 | class ProxyResolver(BaseResolver):
 11 |     """
 12 |         Proxy resolver - passes all requests to upstream DNS server and
 13 |         returns response
 14 | 
 15 |         Note that the request/response will be each be decoded/re-encoded
 16 |         twice:
 17 | 
 18 |         a) Request packet received by DNSHandler and parsed into DNSRecord
 19 |         b) DNSRecord passed to ProxyResolver, serialised back into packet
 20 |            and sent to upstream DNS server
 21 |         c) Upstream DNS server returns response packet which is parsed into
 22 |            DNSRecord
 23 |         d) ProxyResolver returns DNSRecord to DNSHandler which re-serialises
 24 |            this into packet and returns to client
 25 | 
 26 |         In practice this is actually fairly useful for testing but for a
 27 |         'real' transparent proxy option the DNSHandler logic needs to be
 28 |         modified (see PassthroughDNSHandler)
 29 | 
 30 |     """
 31 | 
 32 |     def __init__(self,address,port,timeout=0,strip_aaaa=False):
 33 |         self.address = address
 34 |         self.port = port
 35 |         self.timeout = timeout
 36 |         self.strip_aaaa = strip_aaaa
 37 | 
 38 |     def resolve(self,request,handler):
 39 |         try:
 40 |             if self.strip_aaaa and request.q.qtype == QTYPE.AAAA:
 41 |                 reply = request.reply()
 42 |                 reply.header.rcode = RCODE.NXDOMAIN
 43 |             else:
 44 |                 if handler.protocol == 'udp':
 45 |                     proxy_r = request.send(self.address,self.port,
 46 |                                     timeout=self.timeout)
 47 |                 else:
 48 |                     proxy_r = request.send(self.address,self.port,
 49 |                                     tcp=True,timeout=self.timeout)
 50 |                 reply = DNSRecord.parse(proxy_r)
 51 |         except socket.timeout:
 52 |             reply = request.reply()
 53 |             reply.header.rcode = getattr(RCODE,'NXDOMAIN')
 54 | 
 55 |         return reply
 56 | 
 57 | class PassthroughDNSHandler(DNSHandler):
 58 |     """
 59 |         Modify DNSHandler logic (get_reply method) to send directly to
 60 |         upstream DNS server rather then decoding/encoding packet and
 61 |         passing to Resolver (The request/response packets are still
 62 |         parsed and logged but this is not inline)
 63 |     """
 64 |     def get_reply(self,data):
 65 |         host,port = self.server.resolver.address,self.server.resolver.port
 66 | 
 67 |         request = DNSRecord.parse(data)
 68 |         self.server.logger.log_request(self,request)
 69 | 
 70 |         if self.protocol == 'tcp':
 71 |             data = struct.pack("!H",len(data)) + data
 72 |             response = send_tcp(data,host,port)
 73 |             response = response[2:]
 74 |         else:
 75 |             response = send_udp(data,host,port)
 76 | 
 77 |         reply = DNSRecord.parse(response)
 78 |         self.server.logger.log_reply(self,reply)
 79 | 
 80 |         return response
 81 | 
 82 | def send_tcp(data,host,port):
 83 |     """
 84 |         Helper function to send/receive DNS TCP request
 85 |         (in/out packets will have prepended TCP length header)
 86 |     """
 87 |     sock = None
 88 |     try:
 89 |         sock = socket.socket(socket.AF_INET,socket.SOCK_STREAM)
 90 |         sock.connect((host,port))
 91 |         sock.sendall(data)
 92 |         response = sock.recv(8192)
 93 |         length = struct.unpack("!H",bytes(response[:2]))[0]
 94 |         while len(response) - 2 < length:
 95 |             response += sock.recv(8192)
 96 |         return response
 97 |     finally:
 98 |         if (sock is not None):
 99 |             sock.close()
100 | 
101 | def send_udp(data,host,port):
102 |     """
103 |         Helper function to send/receive DNS UDP request
104 |     """
105 |     sock = None
106 |     try:
107 |         sock = socket.socket(socket.AF_INET,socket.SOCK_DGRAM)
108 |         sock.sendto(data,(host,port))
109 |         response,server = sock.recvfrom(8192)
110 |         return response
111 |     finally:
112 |         if (sock is not None):
113 |             sock.close()
114 | 
115 | if __name__ == '__main__':
116 | 
117 |     import argparse,sys,time
118 | 
119 |     p = argparse.ArgumentParser(description="DNS Proxy")
120 |     p.add_argument("--port","-p",type=int,default=53,
121 |                     metavar="<port>",
122 |                     help="Local proxy port (default:53)")
123 |     p.add_argument("--address","-a",default="",
124 |                     metavar="<address>",
125 |                     help="Local proxy listen address (default:all)")
126 |     p.add_argument("--upstream","-u",default="8.8.8.8:53",
127 |             metavar="<dns server:port>",
128 |                     help="Upstream DNS server:port (default:8.8.8.8:53)")
129 |     p.add_argument("--tcp",action='store_true',default=False,
130 |                     help="TCP proxy (default: UDP only)")
131 |     p.add_argument("--timeout","-o",type=float,default=5,
132 |                     metavar="<timeout>",
133 |                     help="Upstream timeout (default: 5s)")
134 |     p.add_argument("--strip-aaaa",action='store_true',default=False,
135 |                     help="Retuen NXDOMAIN for AAAA queries (default: off)")
136 |     p.add_argument("--passthrough",action='store_true',default=False,
137 |                     help="Dont decode/re-encode request/response (default: off)")
138 |     p.add_argument("--log",default="request,reply,truncated,error",
139 |                     help="Log hooks to enable (default: +request,+reply,+truncated,+error,-recv,-send,-data)")
140 |     p.add_argument("--log-prefix",action='store_true',default=False,
141 |                     help="Log prefix (timestamp/handler/resolver) (default: False)")
142 |     args = p.parse_args()
143 | 
144 |     args.dns,_,args.dns_port = args.upstream.partition(':')
145 |     args.dns_port = int(args.dns_port or 53)
146 | 
147 |     print("Starting Proxy Resolver (%s:%d -> %s:%d) [%s]" % (
148 |                         args.address or "*",args.port,
149 |                         args.dns,args.dns_port,
150 |                         "UDP/TCP" if args.tcp else "UDP"))
151 | 
152 |     resolver = ProxyResolver(args.dns,args.dns_port,args.timeout,args.strip_aaaa)
153 |     handler = PassthroughDNSHandler if args.passthrough else DNSHandler
154 |     logger = DNSLogger(args.log,prefix=args.log_prefix)
155 |     udp_server = DNSServer(resolver,
156 |                            port=args.port,
157 |                            address=args.address,
158 |                            logger=logger,
159 |                            handler=handler)
160 |     udp_server.start_thread()
161 | 
162 |     if args.tcp:
163 |         tcp_server = DNSServer(resolver,
164 |                                port=args.port,
165 |                                address=args.address,
166 |                                tcp=True,
167 |                                logger=logger,
168 |                                handler=handler)
169 |         tcp_server.start_thread()
170 | 
171 |     while udp_server.isAlive():
172 |         time.sleep(1)
173 | 
174 | 


--------------------------------------------------------------------------------
/dnslib/ranges.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     Wrapper around property builtin to restrict attribute to defined
  5 |     integer value range (throws ValueError).
  6 | 
  7 |     Intended to ensure that values packed with struct are in the
  8 |     correct range
  9 | 
 10 |     >>> class T(object):
 11 |     ...     a = range_property('a',-100,100)
 12 |     ...     b = B('b')
 13 |     ...     c = H('c')
 14 |     ...     d = I('d')
 15 |     ...     e = instance_property('e',(int,bool))
 16 |     >>> t = T()
 17 |     >>> for i in [0,100,-100]:
 18 |     ...     t.a = i
 19 |     ...     assert t.a == i
 20 |     >>> t.a = 101
 21 |     Traceback (most recent call last):
 22 |     ...
 23 |     ValueError: Attribute 'a' must be between -100-100 [101]
 24 |     >>> t.a = -101
 25 |     Traceback (most recent call last):
 26 |     ...
 27 |     ValueError: Attribute 'a' must be between -100-100 [-101]
 28 |     >>> t.a = 'blah'
 29 |     Traceback (most recent call last):
 30 |     ...
 31 |     ValueError: Attribute 'a' must be between -100-100 [blah]
 32 |     >>> t.e = 999
 33 |     >>> t.e = False
 34 |     >>> t.e = None
 35 |     Traceback (most recent call last):
 36 |     ...
 37 |     ValueError: Attribute 'e' must be instance of ...
 38 | 
 39 |     >>> check_range("test",123,0,255)
 40 |     >>> check_range("test",999,0,255)
 41 |     Traceback (most recent call last):
 42 |     ...
 43 |     ValueError: Attribute 'test' must be between 0-255 [999]
 44 | 
 45 |     >>> check_instance("test",123,int)
 46 |     >>> check_instance("test","xxx",int)
 47 |     Traceback (most recent call last):
 48 |     ...
 49 |     ValueError: Attribute 'test' must be instance of ...
 50 | 
 51 | """
 52 | 
 53 | import sys
 54 | if sys.version < '3':
 55 |     int_types = (int, long,)
 56 |     byte_types = (str,bytearray)
 57 | else:
 58 |     int_types = (int,)
 59 |     byte_types = (bytes,bytearray)
 60 | 
 61 | def check_instance(name,val,types):
 62 |     if not isinstance(val,types):
 63 |         raise ValueError("Attribute '%s' must be instance of %s [%s]" %
 64 |                                         (name,types,type(val)))
 65 | 
 66 | def check_bytes(name,val):
 67 |     return check_instance(name,val,byte_types)
 68 | 
 69 | def instance_property(attr,types):
 70 |     def getter(obj):
 71 |         return getattr(obj,"_%s" % attr)
 72 |     def setter(obj,val):
 73 |         if isinstance(val,types):
 74 |             setattr(obj,"_%s" % attr,val)
 75 |         else:
 76 |             raise ValueError("Attribute '%s' must be instance of %s [%s]" %
 77 |                                         (attr,types,type(val)))
 78 |     return property(getter,setter)
 79 | 
 80 | def BYTES(attr):
 81 |     return instance_property(attr,byte_types)
 82 | 
 83 | def check_range(name,val,min,max):
 84 |     if not (isinstance(val,int_types) and min <= val <= max):
 85 |         raise ValueError("Attribute '%s' must be between %d-%d [%s]" %
 86 |                                         (name,min,max,val))
 87 | 
 88 | def range_property(attr,min,max):
 89 |     def getter(obj):
 90 |         return getattr(obj,"_%s" % attr)
 91 |     def setter(obj,val):
 92 |         if isinstance(val,int_types) and min <= val <= max:
 93 |             setattr(obj,"_%s" % attr,val)
 94 |         else:
 95 |             raise ValueError("Attribute '%s' must be between %d-%d [%s]" %
 96 |                                         (attr,min,max,val))
 97 |     return property(getter,setter)
 98 | 
 99 | def B(attr):
100 |     """
101 |         Unsigned Byte
102 |     """
103 |     return range_property(attr,0,255)
104 | 
105 | def H(attr):
106 |     """
107 |         Unsigned Short
108 |     """
109 |     return range_property(attr,0,65535)
110 | 
111 | def I(attr):
112 |     """
113 |         Unsigned Long
114 |     """
115 |     return range_property(attr,0,4294967295)
116 | 
117 | def ntuple_range(attr,n,min,max):
118 |     f = lambda x : isinstance(x,int_types) and min <= x <= max
119 |     def getter(obj):
120 |         return getattr(obj,"_%s" % attr)
121 |     def setter(obj,val):
122 |         if len(val) != n:
123 |             raise ValueError("Attribute '%s' must be tuple with %d elements [%s]" %
124 |                                         (attr,n,val))
125 |         if all(map(f,val)):
126 |             setattr(obj,"_%s" % attr,val)
127 |         else:
128 |             raise ValueError("Attribute '%s' elements must be between %d-%d [%s]" %
129 |                                         (attr,min,max,val))
130 |     return property(getter,setter)
131 | 
132 | def IP4(attr):
133 |     return ntuple_range(attr,4,0,255)
134 | 
135 | def IP6(attr):
136 |     return ntuple_range(attr,16,0,255)
137 | 
138 | if __name__ == '__main__':
139 |     import doctest,sys
140 |     sys.exit(0 if doctest.testmod(optionflags=doctest.ELLIPSIS).failed == 0 else 1)
141 | 


--------------------------------------------------------------------------------
/dnslib/server.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | """
  4 |     DNS server framework - intended to simplify creation of custom resolvers.
  5 | 
  6 |     Comprises the following components:
  7 | 
  8 |         DNSServer   - socketserver wrapper (in most cases you should just
  9 |                       need to pass this an appropriate resolver instance
 10 |                       and start in either foreground/background)
 11 | 
 12 |         DNSHandler  - handler instantiated by DNSServer to handle requests
 13 |                       The 'handle' method deals with the sending/receiving
 14 |                       packets (handling TCP length prefix) and delegates
 15 |                       the protocol handling to 'get_reply'. This decodes
 16 |                       packet, hands off a DNSRecord to the Resolver instance,
 17 |                       and encodes the returned DNSRecord.
 18 | 
 19 |                       In most cases you dont need to change DNSHandler unless
 20 |                       you need to get hold of the raw protocol data in the
 21 |                       Resolver
 22 | 
 23 |         DNSLogger   - The class provides a default set of logging functions for
 24 |                       the various stages of the request handled by a DNSServer
 25 |                       instance which are enabled/disabled by flags in the 'log'
 26 |                       class variable.
 27 | 
 28 |         Resolver    - Instance implementing a 'resolve' method that receives
 29 |                       the decodes request packet and returns a response.
 30 | 
 31 |                       To implement a custom resolver in most cases all you need
 32 |                       is to implement this interface.
 33 | 
 34 |                       Note that there is only a single instance of the Resolver
 35 |                       so need to be careful about thread-safety and blocking
 36 | 
 37 |         The following examples use the server framework:
 38 | 
 39 |             fixedresolver.py    - Simple resolver which will respond to all
 40 |                                   requests with a fixed response
 41 |             zoneresolver.py     - Resolver which will take a standard zone
 42 |                                   file input
 43 |             shellresolver.py    - Example of a dynamic resolver
 44 |             proxy.py            - DNS proxy
 45 |             intercept.py        - Intercepting DNS proxy
 46 | 
 47 |         >>> resolver = BaseResolver()
 48 |         >>> logger = DNSLogger(prefix=False)
 49 |         >>> server = DNSServer(resolver,port=8053,address="localhost",logger=logger)
 50 |         >>> server.start_thread()
 51 |         >>> q = DNSRecord.question("abc.def")
 52 |         >>> a = q.send("localhost",8053)
 53 |         Request: [...] (udp) / 'abc.def.' (A)
 54 |         Reply: [...] (udp) / 'abc.def.' (A) / NXDOMAIN
 55 |         >>> print(DNSRecord.parse(a))
 56 |         ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: ...
 57 |         ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 58 |         ;; QUESTION SECTION:
 59 |         ;abc.def.                       IN      A
 60 |         >>> server.stop()
 61 | 
 62 |         DNSLogger accepts custom logging function (logf)
 63 | 
 64 |         >>> resolver = BaseResolver()
 65 |         >>> logger = DNSLogger(prefix=False,logf=lambda s:print(s.upper()))
 66 |         >>> server = DNSServer(resolver,port=8054,address="localhost",logger=logger)
 67 |         >>> server.start_thread()
 68 |         >>> q = DNSRecord.question("abc.def")
 69 |         >>> a = q.send("localhost",8054)
 70 |         REQUEST: [...] (UDP) / 'ABC.DEF.' (A)
 71 |         REPLY: [...] (UDP) / 'ABC.DEF.' (A) / NXDOMAIN
 72 |         >>> print(DNSRecord.parse(a))
 73 |         ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: ...
 74 |         ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 75 |         ;; QUESTION SECTION:
 76 |         ;abc.def.                       IN      A
 77 |         >>> server.stop()
 78 | 
 79 |         >>> class TestResolver:
 80 |         ...     def resolve(self,request,handler):
 81 |         ...         reply = request.reply()
 82 |         ...         reply.add_answer(*RR.fromZone("abc.def. 60 A 1.2.3.4"))
 83 |         ...         return reply
 84 |         >>> resolver = TestResolver()
 85 |         >>> logger = DNSLogger(prefix=False)
 86 |         >>> server = DNSServer(resolver,port=8055,address="localhost",logger=logger,tcp=True)
 87 |         >>> server.start_thread()
 88 |         >>> a = q.send("localhost",8055,tcp=True)
 89 |         Request: [...] (tcp) / 'abc.def.' (A)
 90 |         Reply: [...] (tcp) / 'abc.def.' (A) / RRs: A
 91 |         >>> print(DNSRecord.parse(a))
 92 |         ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: ...
 93 |         ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
 94 |         ;; QUESTION SECTION:
 95 |         ;abc.def.                       IN      A
 96 |         ;; ANSWER SECTION:
 97 |         abc.def.                60      IN      A       1.2.3.4
 98 |         >>> server.stop()
 99 | 
100 | 
101 | """
102 | from __future__ import print_function
103 | 
104 | import binascii,socket,struct,threading,time
105 | 
106 | try:
107 |     import socketserver
108 | except ImportError:
109 |     import SocketServer as socketserver
110 | 
111 | from dnslib import DNSRecord,DNSError,QTYPE,RCODE,RR
112 | 
113 | class BaseResolver(object):
114 |     """
115 |         Base resolver implementation. Provides 'resolve' method which is
116 |         called by DNSHandler with the decode request (DNSRecord instance)
117 |         and returns a DNSRecord instance as reply.
118 | 
119 |         In most cases you should be able to create a custom resolver by
120 |         just replacing the resolve method with appropriate resolver code for
121 |         application (see fixedresolver/zoneresolver/shellresolver for
122 |         examples)
123 | 
124 |         Note that a single instance is used by all DNSHandler instances so
125 |         need to consider blocking & thread safety.
126 |     """
127 |     def resolve(self,request,handler):
128 |         """
129 |             Example resolver - respond to all requests with NXDOMAIN
130 |         """
131 |         reply = request.reply()
132 |         reply.header.rcode = getattr(RCODE,'NXDOMAIN')
133 |         return reply
134 | 
135 | class DNSHandler(socketserver.BaseRequestHandler):
136 |     """
137 |         Handler for socketserver. Transparently handles both TCP/UDP requests
138 |         (TCP requests have length prepended) and hands off lookup to resolver
139 |         instance specified in <SocketServer>.resolver
140 |     """
141 | 
142 |     udplen = 0                  # Max udp packet length (0 = ignore)
143 | 
144 |     def handle(self):
145 |         if self.server.socket_type == socket.SOCK_STREAM:
146 |             self.protocol = 'tcp'
147 |             data = self.request.recv(8192)
148 |             if len(data) < 2:
149 |                 self.server.logger.log_error(self,"Request Truncated")
150 |                 return
151 |             length = struct.unpack("!H",bytes(data[:2]))[0]
152 |             while len(data) - 2 < length:
153 |                 new_data = self.request.recv(8192)
154 |                 if not new_data:
155 |                     break
156 |                 data += new_data
157 |             data = data[2:]
158 |         else:
159 |             self.protocol = 'udp'
160 |             data,connection = self.request
161 | 
162 |         self.server.logger.log_recv(self,data)
163 | 
164 |         try:
165 |             rdata = self.get_reply(data)
166 |             self.server.logger.log_send(self,rdata)
167 | 
168 |             if self.protocol == 'tcp':
169 |                 rdata = struct.pack("!H",len(rdata)) + rdata
170 |                 self.request.sendall(rdata)
171 |             else:
172 |                 connection.sendto(rdata,self.client_address)
173 | 
174 |         except DNSError as e:
175 |             self.server.logger.log_error(self,e)
176 | 
177 |     def get_reply(self,data):
178 |         request = DNSRecord.parse(data)
179 |         self.server.logger.log_request(self,request)
180 | 
181 |         resolver = self.server.resolver
182 |         reply = resolver.resolve(request,self)
183 |         self.server.logger.log_reply(self,reply)
184 | 
185 |         if self.protocol == 'udp':
186 |             rdata = reply.pack()
187 |             if self.udplen and len(rdata) > self.udplen:
188 |                 truncated_reply = reply.truncate()
189 |                 rdata = truncated_reply.pack()
190 |                 self.server.logger.log_truncated(self,truncated_reply)
191 |         else:
192 |             rdata = reply.pack()
193 | 
194 |         return rdata
195 | 
196 | class DNSLogger:
197 | 
198 |     """
199 |         The class provides a default set of logging functions for the various
200 |         stages of the request handled by a DNSServer instance which are
201 |         enabled/disabled by flags in the 'log' class variable.
202 | 
203 |         To customise logging create an object which implements the DNSLogger
204 |         interface and pass instance to DNSServer.
205 | 
206 |         The methods which the logger instance must implement are:
207 | 
208 |             log_recv          - Raw packet received
209 |             log_send          - Raw packet sent
210 |             log_request       - DNS Request
211 |             log_reply         - DNS Response
212 |             log_truncated     - Truncated
213 |             log_error         - Decoding error
214 |             log_data          - Dump full request/response
215 | 
216 |         A custom logging function can be passed to the constructor via the
217 |         `logf` parameter (defaults to print)
218 |     """
219 | 
220 |     def __init__(self,log="",prefix=True,logf=None):
221 |         """
222 |             Selectively enable log hooks depending on log argument
223 |             (comma separated list of hooks to enable/disable)
224 | 
225 |             - If empty enable default log hooks
226 |             - If entry starts with '+' (eg. +send,+recv) enable hook
227 |             - If entry starts with '-' (eg. -data) disable hook
228 |             - If entry doesn't start with +/- replace defaults
229 | 
230 |             Prefix argument enables/disables log prefix
231 | 
232 |             Logf argument sets log print function (defaults to print)
233 |         """
234 |         default = ["request","reply","truncated","error"]
235 |         log = log.split(",") if log else []
236 |         enabled = set([ s for s in log if s[0] not in '+-'] or default)
237 |         [ enabled.add(l[1:]) for l in log if l.startswith('+') ]
238 |         [ enabled.discard(l[1:]) for l in log if l.startswith('-') ]
239 |         for l in ['log_recv','log_send','log_request','log_reply',
240 |                   'log_truncated','log_error','log_data']:
241 |             if l[4:] not in enabled:
242 |                 setattr(self,l,self.log_pass)
243 |         self.prefix = prefix
244 |         self.logf = logf or print
245 | 
246 |     def log_pass(self,*args):
247 |         pass
248 | 
249 |     def log_prefix(self,handler):
250 |         if self.prefix:
251 |             return "%s [%s:%s] " % (time.strftime("%Y-%m-%d %X"),
252 |                                handler.__class__.__name__,
253 |                                handler.server.resolver.__class__.__name__)
254 |         else:
255 |             return ""
256 | 
257 |     def log_recv(self,handler,data):
258 |         self.logf("%sReceived: [%s:%d] (%s) <%d> : %s" % (
259 |                     self.log_prefix(handler),
260 |                     handler.client_address[0],
261 |                     handler.client_address[1],
262 |                     handler.protocol,
263 |                     len(data),
264 |                     binascii.hexlify(data)))
265 | 
266 |     def log_send(self,handler,data):
267 |         self.logf("%sSent: [%s:%d] (%s) <%d> : %s" % (
268 |                     self.log_prefix(handler),
269 |                     handler.client_address[0],
270 |                     handler.client_address[1],
271 |                     handler.protocol,
272 |                     len(data),
273 |                     binascii.hexlify(data)))
274 | 
275 |     def log_request(self,handler,request):
276 |         self.logf("%sRequest: [%s:%d] (%s) / '%s' (%s)" % (
277 |                     self.log_prefix(handler),
278 |                     handler.client_address[0],
279 |                     handler.client_address[1],
280 |                     handler.protocol,
281 |                     request.q.qname,
282 |                     QTYPE[request.q.qtype]))
283 |         self.log_data(request)
284 | 
285 |     def log_reply(self,handler,reply):
286 |         if reply.header.rcode == RCODE.NOERROR:
287 |             self.logf("%sReply: [%s:%d] (%s) / '%s' (%s) / RRs: %s" % (
288 |                     self.log_prefix(handler),
289 |                     handler.client_address[0],
290 |                     handler.client_address[1],
291 |                     handler.protocol,
292 |                     reply.q.qname,
293 |                     QTYPE[reply.q.qtype],
294 |                     ",".join([QTYPE[a.rtype] for a in reply.rr])))
295 |         else:
296 |             self.logf("%sReply: [%s:%d] (%s) / '%s' (%s) / %s" % (
297 |                     self.log_prefix(handler),
298 |                     handler.client_address[0],
299 |                     handler.client_address[1],
300 |                     handler.protocol,
301 |                     reply.q.qname,
302 |                     QTYPE[reply.q.qtype],
303 |                     RCODE[reply.header.rcode]))
304 |         self.log_data(reply)
305 | 
306 |     def log_truncated(self,handler,reply):
307 |         self.logf("%sTruncated Reply: [%s:%d] (%s) / '%s' (%s) / RRs: %s" % (
308 |                     self.log_prefix(handler),
309 |                     handler.client_address[0],
310 |                     handler.client_address[1],
311 |                     handler.protocol,
312 |                     reply.q.qname,
313 |                     QTYPE[reply.q.qtype],
314 |                     ",".join([QTYPE[a.rtype] for a in reply.rr])))
315 |         self.log_data(reply)
316 | 
317 |     def log_error(self,handler,e):
318 |         self.logf("%sInvalid Request: [%s:%d] (%s) :: %s" % (
319 |                     self.log_prefix(handler),
320 |                     handler.client_address[0],
321 |                     handler.client_address[1],
322 |                     handler.protocol,
323 |                     e))
324 | 
325 |     def log_data(self,dnsobj):
326 |         self.logf("\n%s\n" % (dnsobj.toZone("    ")))
327 | 
328 | 
329 | class UDPServer(socketserver.ThreadingMixIn,socketserver.UDPServer,object):
330 |     def __init__(self, server_address, handler):
331 |         self.allow_reuse_address = True
332 |         self.daemon_threads = True
333 |         if server_address[0] != '' and ':' in server_address[0]:
334 |             self.address_family = socket.AF_INET6
335 |         super(UDPServer,self).__init__(server_address, handler)
336 | 
337 | class TCPServer(socketserver.ThreadingMixIn,socketserver.TCPServer,object):
338 |     def __init__(self, server_address, handler):
339 |         self.allow_reuse_address = True
340 |         self.daemon_threads = True
341 |         if server_address[0] != '' and ':' in server_address[0]:
342 |             self.address_family = socket.AF_INET6
343 |         super(TCPServer,self).__init__(server_address, handler)
344 | 
345 | class DNSServer(object):
346 | 
347 |     """
348 |         Convenience wrapper for socketserver instance allowing
349 |         either UDP/TCP server to be started in blocking more
350 |         or as a background thread.
351 | 
352 |         Processing is delegated to custom resolver (instance) and
353 |         optionally custom logger (instance), handler (class), and
354 |         server (class)
355 | 
356 |         In most cases only a custom resolver instance is required
357 |         (and possibly logger)
358 |     """
359 |     def __init__(self,resolver,
360 |                       address="",
361 |                       port=53,
362 |                       tcp=False,
363 |                       logger=None,
364 |                       handler=DNSHandler,
365 |                       server=None):
366 |         """
367 |             resolver:   resolver instance
368 |             address:    listen address (default: "")
369 |             port:       listen port (default: 53)
370 |             tcp:        UDP (false) / TCP (true) (default: False)
371 |             logger:     logger instance (default: DNSLogger)
372 |             handler:    handler class (default: DNSHandler)
373 |             server:     socketserver class (default: UDPServer/TCPServer)
374 |         """
375 |         if not server:
376 |             if tcp:
377 |                 server = TCPServer
378 |             else:
379 |                 server = UDPServer
380 |         self.server = server((address,port),handler)
381 |         self.server.resolver = resolver
382 |         self.server.logger = logger or DNSLogger()
383 | 
384 |     def start(self):
385 |         self.server.serve_forever()
386 | 
387 |     def start_thread(self):
388 |         self.thread = threading.Thread(target=self.server.serve_forever)
389 |         self.thread.daemon = True
390 |         self.thread.start()
391 | 
392 |     def stop(self):
393 |         self.server.shutdown()
394 | 
395 |     def isAlive(self):
396 |         return self.thread.is_alive()
397 | 
398 | if __name__ == "__main__":
399 |     import doctest,sys
400 |     sys.exit(0 if doctest.testmod(optionflags=doctest.ELLIPSIS).failed == 0 else 1)
401 | 


--------------------------------------------------------------------------------
/dnslib/shellresolver.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | from __future__ import print_function
  4 | 
  5 | try:
  6 |     from subprocess import getoutput
  7 | except ImportError:
  8 |     from commands import getoutput
  9 | 
 10 | from dnslib import RR,QTYPE,RCODE,TXT,parse_time
 11 | from dnslib.label import DNSLabel
 12 | from dnslib.server import DNSServer,DNSHandler,BaseResolver,DNSLogger
 13 | 
 14 | class ShellResolver(BaseResolver):
 15 |     """
 16 |         Example dynamic resolver.
 17 |         Maps DNS labels to shell commands and returns result as TXT record
 18 |         (Note: No context is passed to the shell command)
 19 | 
 20 |         Shell commands are passed in a a list in <label>:<cmd> format - eg:
 21 | 
 22 |             [ 'uptime.abc.com.:uptime', 'ls:ls' ]
 23 | 
 24 |         Would respond to requests to 'uptime.abc.com.' with the output
 25 |         of the 'uptime' command.
 26 | 
 27 |         For non-absolute labels the 'origin' parameter is prepended
 28 | 
 29 |     """
 30 |     def __init__(self,routes,origin,ttl):
 31 |         self.origin = DNSLabel(origin)
 32 |         self.ttl = parse_time(ttl)
 33 |         self.routes = {}
 34 |         for r in routes:
 35 |             route,_,cmd = r.partition(":")
 36 |             if route.endswith('.'):
 37 |                 route = DNSLabel(route)
 38 |             else:
 39 |                 route = self.origin.add(route)
 40 |             self.routes[route] = cmd
 41 | 
 42 |     def resolve(self,request,handler):
 43 |         reply = request.reply()
 44 |         qname = request.q.qname
 45 |         cmd = self.routes.get(qname)
 46 |         if cmd:
 47 |             output = getoutput(cmd).encode()
 48 |             reply.add_answer(RR(qname,QTYPE.TXT,ttl=self.ttl,
 49 |                                 rdata=TXT(output[:254])))
 50 |         else:
 51 |             reply.header.rcode = RCODE.NXDOMAIN
 52 |         return reply
 53 | 
 54 | if __name__ == '__main__':
 55 | 
 56 |     import argparse,sys,time
 57 | 
 58 |     p = argparse.ArgumentParser(description="Shell DNS Resolver")
 59 |     p.add_argument("--map","-m",action="append",required=True,
 60 |                     metavar="<label>:<shell command>",
 61 |                     help="Map label to shell command (multiple supported)")
 62 |     p.add_argument("--origin","-o",default=".",
 63 |                     metavar="<origin>",
 64 |                     help="Origin domain label (default: .)")
 65 |     p.add_argument("--ttl","-t",default="60s",
 66 |                     metavar="<ttl>",
 67 |                     help="Response TTL (default: 60s)")
 68 |     p.add_argument("--port","-p",type=int,default=53,
 69 |                     metavar="<port>",
 70 |                     help="Server port (default:53)")
 71 |     p.add_argument("--address","-a",default="",
 72 |                     metavar="<address>",
 73 |                     help="Listen address (default:all)")
 74 |     p.add_argument("--udplen","-u",type=int,default=0,
 75 |                     metavar="<udplen>",
 76 |                     help="Max UDP packet length (default:0)")
 77 |     p.add_argument("--tcp",action='store_true',default=False,
 78 |                     help="TCP server (default: UDP only)")
 79 |     p.add_argument("--log",default="request,reply,truncated,error",
 80 |                     help="Log hooks to enable (default: +request,+reply,+truncated,+error,-recv,-send,-data)")
 81 |     p.add_argument("--log-prefix",action='store_true',default=False,
 82 |                     help="Log prefix (timestamp/handler/resolver) (default: False)")
 83 |     args = p.parse_args()
 84 | 
 85 |     resolver = ShellResolver(args.map,args.origin,args.ttl)
 86 |     logger = DNSLogger(args.log,prefix=args.log_prefix)
 87 | 
 88 |     print("Starting Shell Resolver (%s:%d) [%s]" % (
 89 |                         args.address or "*",
 90 |                         args.port,
 91 |                         "UDP/TCP" if args.tcp else "UDP"))
 92 | 
 93 |     for route,cmd in resolver.routes.items():
 94 |         print("    | ",route,"-->",cmd)
 95 |     print()
 96 | 
 97 |     if args.udplen:
 98 |         DNSHandler.udplen = args.udplen
 99 | 
100 |     udp_server = DNSServer(resolver,
101 |                            port=args.port,
102 |                            address=args.address,
103 |                            logger=logger)
104 |     udp_server.start_thread()
105 | 
106 |     if args.tcp:
107 |         tcp_server = DNSServer(resolver,
108 |                                port=args.port,
109 |                                address=args.address,
110 |                                tcp=True,
111 |                                logger=logger)
112 |         tcp_server.start_thread()
113 | 
114 |     while udp_server.isAlive():
115 |         time.sleep(1)
116 | 
117 | 


--------------------------------------------------------------------------------
/dnslib/test/1.1.1.1.in-addr.arpa.-PTR:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 66e301000001000000000000013101310131013107696e2d61646472046172706100000c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26339
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;1.1.1.1.in-addr.arpa.          IN      PTR
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 66e381800001000100000000013101310131013107696e2d61646472046172706100000c0001c00c000c0001000003580011036f6e65036f6e65036f6e65036f6e6500
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26339
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;1.1.1.1.in-addr.arpa.          IN      PTR
14 | ;; ANSWER SECTION:
15 | 1.1.1.1.in-addr.arpa.   856     IN      PTR     one.one.one.one.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/8.8.8.8.in-addr.arpa.-PTR:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 00fb01000001000000000000013801380138013807696e2d61646472046172706100000c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 251
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;8.8.8.8.in-addr.arpa.          IN      PTR
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 00fb81800001000100000000013801380138013807696e2d61646472046172706100000c0001c00c000c000100001ac9002013676f6f676c652d7075626c69632d646e732d6106676f6f676c6503636f6d00
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 251
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;8.8.8.8.in-addr.arpa.          IN      PTR
14 | ;; ANSWER SECTION:
15 | 8.8.8.8.in-addr.arpa.   6857    IN      PTR     google-public-dns-a.google.com.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/9.9.9.9.in-addr.arpa.-PTR:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 682e01000001000000000000013901390139013907696e2d61646472046172706100000c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26670
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;9.9.9.9.in-addr.arpa.          IN      PTR
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 682e81800001000100000000013901390139013907696e2d61646472046172706100000c0001c00c000c000100000dc0000f03646e73057175616439036e657400
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26670
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;9.9.9.9.in-addr.arpa.          IN      PTR
14 | ;; ANSWER SECTION:
15 | 9.9.9.9.in-addr.arpa.   3520    IN      PTR     dns.quad9.net.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/ECC94C1D-7026-41AA-B47E-FDFE40EB9957.com-A:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 12ac010000010000000000002445434339344331442d373032362d343141412d423437452d46444645343045423939353703636f6d0000010001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4780
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;ECC94C1D-7026-41AA-B47E-FDFE40EB9957.com. IN      A
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 12ac818300010000000100002445434339344331442d373032362d343141412d423437452d46444645343045423939353703636f6d0000010001c0310006000100000384003d01610c67746c642d73657276657273036e657400056e73746c640c766572697369676e2d677273c0315c96858c000007080000038400093a8000015180
10 | ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4780
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;ECC94C1D-7026-41AA-B47E-FDFE40EB9957.com. IN      A
14 | ;; AUTHORITY SECTION:
15 | com.                    900     IN      SOA     a.gtld-servers.net. nstld.verisign-grs.com. 1553368460 1800 900 604800 86400
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/_sip._udp.sipgate.co.uk-SRV:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 327101000001000000000000045f736970045f756470077369706761746502636f02756b0000210001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12913
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;_sip._udp.sipgate.co.uk.       IN      SRV
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 327181800001000100000000045f736970045f756470077369706761746502636f02756b0000210001c00c0021000100001b0000150000000013c4077369706761746502636f02756b00
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12913
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;_sip._udp.sipgate.co.uk.       IN      SRV
14 | ;; ANSWER SECTION:
15 | _sip._udp.sipgate.co.uk. 6912    IN      SRV     0 0 5060 sipgate.co.uk.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-A:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 6565010000010000000000000a636c6f7564666c61726503636f6d0000010001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25957
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      A
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 6565818000010002000000000a636c6f7564666c61726503636f6d0000010001c00c000100010000007a0004c629d7a2c00c000100010000007a0004c629d6a2
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25957
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      A
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         122     IN      A       198.41.215.162
16 | cloudflare.com.         122     IN      A       198.41.214.162
17 | 
18 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-A-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: fbe9012000010000000000010a636c6f7564666c61726503636f6d00000100010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64489
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      A
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: fbe9818000010003000000010a636c6f7564666c61726503636f6d0000010001c00c00010001000000480004c629d7a2c00c00010001000000480004c629d6a2c00c002e000100000048006200010d02000002585c982d425c956e2286c90a636c6f7564666c61726503636f6d0027626676f36c672f1c02ff5763c859c0a7e0c31c55004afac409a254709523cc924eec1a1044a1cb56aa069a6305370a27ce10bd7eeeb43383f5c36cc7d05ebe0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64489
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      A
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         72      IN      A       198.41.215.162
19 | cloudflare.com.         72      IN      A       198.41.214.162
20 | cloudflare.com.         72      IN      RRSIG   A 13 2 600 20190325012210 20190322232210 34505 cloudflare.com. J2JmdvNsZy8cAv9XY8hZwKfgwxxVAEr6xAmiVHCVI8ySTuwaEEShy1aqBppjBTcKJ84QvX7utDOD9cNsx9Bevg==
21 | ;; ADDITIONAL SECTION:
22 | ;; OPT PSEUDOSECTION
23 | ; EDNS: version: 0, flags: do; udp: 4096
24 | 
25 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-AAAA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f170010000010000000000000a636c6f7564666c61726503636f6d00001c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61808
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      AAAA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: f170818000010002000000000a636c6f7564666c61726503636f6d00001c0001c00c001c0001000000d80010260647000000000000000000c629d6a2c00c001c0001000000d80010260647000000000000000000c629d7a2
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61808
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      AAAA
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         216     IN      AAAA    2606:4700::c629:d6a2
16 | cloudflare.com.         216     IN      AAAA    2606:4700::c629:d7a2
17 | 
18 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-AAAA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 7fbc012000010000000000010a636c6f7564666c61726503636f6d00001c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32700
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      AAAA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 7fbc818000010003000000010a636c6f7564666c61726503636f6d00001c0001c00c001c0001000000a60010260647000000000000000000c629d6a2c00c001c0001000000a60010260647000000000000000000c629d7a2c00c002e0001000000a60062001c0d02000002585c982da05c956e8086c90a636c6f7564666c61726503636f6d0022f1cc168f73b417dc75dcf098358bddf5c16307a7019c97d62010108f312418acae0f672250223090e7984b001725e89b8a003a366f437b2806837de44d45e20000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32700
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      AAAA
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         166     IN      AAAA    2606:4700::c629:d6a2
19 | cloudflare.com.         166     IN      AAAA    2606:4700::c629:d7a2
20 | cloudflare.com.         166     IN      RRSIG   AAAA 13 2 600 20190325012344 20190322232344 34505 cloudflare.com. IvHMFo9ztBfcddzwmDWL3fXBYwenAZyX1iAQEI8xJBisrg9nIlAiMJDnmEsAFyXom4oAOjZvQ3soBoN95E1F4g==
21 | ;; ADDITIONAL SECTION:
22 | ;; OPT PSEUDOSECTION
23 | ; EDNS: version: 0, flags: do; udp: 4096
24 | 
25 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-CNAME:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 3550010000010000000000000a636c6f7564666c61726503636f6d0000050001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13648
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      CNAME
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 3550818000010000000100000a636c6f7564666c61726503636f6d0000050001c00c000600010000012c0020036e7333c00c03646e73c00c7906ce18000027100000096000093a800000012c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13648
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      CNAME
14 | ;; AUTHORITY SECTION:
15 | cloudflare.com.         300     IN      SOA     ns3.cloudflare.com. dns.cloudflare.com. 2030489112 10000 2400 604800 300
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-CNAME-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: e589012000010000000000010a636c6f7564666c61726503636f6d00000500010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58761
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      CNAME
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58761
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      CNAME
17 | ;; AUTHORITY SECTION:
18 | cloudflare.com.         250     IN      SOA     ns3.cloudflare.com. dns.cloudflare.com. 2030489112 10000 2400 604800 300
19 | cloudflare.com.         250     IN      RRSIG   SOA 13 2 300 20190325013009 20190322233009 34505 cloudflare.com. pOYN1SGMxEAUorvUHnQ1/qRVR5MBKgNYXwKVtSNxG/9J3ILoLK2WYxeHWJLli/toY3uM6VWOyrP6bI2PvGT1/g==
20 | cloudflare.com.         250     IN      NSEC    \000.cloudflare.com. A NS SOA HINFO MX TXT AAAA LOC SRV CERT SSHFP RRSIG NSEC DNSKEY TLSA HIP CDS CDNSKEY OPENPGPKEY SPF
21 | cloudflare.com.         250     IN      RRSIG   NSEC 13 2 300 20190325013009 20190322233009 34505 cloudflare.com. BhbzDBCh2dhz4T9CLJlRg/7I/a8KVWL2S9IjTqPFgxuAle7D7aBA3ut2W4SqpTzWe0hqVelGRMcMMeeHO7p8Hg==
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-MX:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: bafd010000010000000000000a636c6f7564666c61726503636f6d00000f0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47869
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      MX
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: bafd818000010005000000000a636c6f7564666c61726503636f6d00000f0001c00c000f00010000239900160028066173706d78320a676f6f676c656d61696cc017c00c000f000100002399000b0032066173706d7833c035c00c000f0001000023990013000a056173706d78016c06676f6f676c65c017c00c000f0001000023990009001404616c7431c067c00c000f0001000023990009001e04616c7432c067
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47869
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      MX
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         9113    IN      MX      40 aspmx2.googlemail.com.
16 | cloudflare.com.         9113    IN      MX      50 aspmx3.googlemail.com.
17 | cloudflare.com.         9113    IN      MX      10 aspmx.l.google.com.
18 | cloudflare.com.         9113    IN      MX      20 alt1.aspmx.l.google.com.
19 | cloudflare.com.         9113    IN      MX      30 alt2.aspmx.l.google.com.
20 | 
21 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-MX-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: e5e1012000010000000000010a636c6f7564666c61726503636f6d00000f00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58849
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      MX
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58849
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      MX
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         9064    IN      MX      40 aspmx2.googlemail.com.
19 | cloudflare.com.         9064    IN      MX      50 aspmx3.googlemail.com.
20 | cloudflare.com.         9064    IN      MX      10 aspmx.l.google.com.
21 | cloudflare.com.         9064    IN      MX      20 alt1.aspmx.l.google.com.
22 | cloudflare.com.         9064    IN      MX      30 alt2.aspmx.l.google.com.
23 | cloudflare.com.         9064    IN      RRSIG   MX 13 2 86400 20190325010202 20190322230202 34505 cloudflare.com. 3iyn7ZskIuFFUPSv3DOTVCOXhpDVqu2HramJ18zP89DUlOqbw+V6MgrJedhco6qpFaguOoJjs5bhyb92owqAjg==
24 | ;; ADDITIONAL SECTION:
25 | ;; OPT PSEUDOSECTION
26 | ; EDNS: version: 0, flags: do; udp: 4096
27 | 
28 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-NS:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: ad85010000010000000000000a636c6f7564666c61726503636f6d0000020001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44421
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      NS
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: ad85818000010005000000000a636c6f7564666c61726503636f6d0000020001c00c0002000100014d590006036e7335c00cc00c0002000100014d590006036e7336c00cc00c0002000100014d590006036e7337c00cc00c0002000100014d590006036e7333c00cc00c0002000100014d590006036e7334c00c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44421
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      NS
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         85337   IN      NS      ns5.cloudflare.com.
16 | cloudflare.com.         85337   IN      NS      ns6.cloudflare.com.
17 | cloudflare.com.         85337   IN      NS      ns7.cloudflare.com.
18 | cloudflare.com.         85337   IN      NS      ns3.cloudflare.com.
19 | cloudflare.com.         85337   IN      NS      ns4.cloudflare.com.
20 | 
21 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-NS-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f236012000010000000000010a636c6f7564666c61726503636f6d00000200010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62006
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      NS
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: f236818000010006000000010a636c6f7564666c61726503636f6d0000020001c00c0002000100014d280006036e7335c00cc00c0002000100014d280006036e7336c00cc00c0002000100014d280006036e7337c00cc00c0002000100014d280006036e7333c00cc00c0002000100014d280006036e7334c00cc00c002e000100014d28006200020d02000151805c982afa5c956bda86c90a636c6f7564666c61726503636f6d00dbd01bc863854d0297485143300f0bd1c12b0672026b3e7645abf0ab51c4f4817c729bc7f728df6908ef982aade084fe45b7849ce724535e9ff78b44772d482c0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62006
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      NS
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         85288   IN      NS      ns5.cloudflare.com.
19 | cloudflare.com.         85288   IN      NS      ns6.cloudflare.com.
20 | cloudflare.com.         85288   IN      NS      ns7.cloudflare.com.
21 | cloudflare.com.         85288   IN      NS      ns3.cloudflare.com.
22 | cloudflare.com.         85288   IN      NS      ns4.cloudflare.com.
23 | cloudflare.com.         85288   IN      RRSIG   NS 13 2 86400 20190325011226 20190322231226 34505 cloudflare.com. 29AbyGOFTQKXSFFDMA8L0cErBnICaz52Ravwq1HE9IF8cpvH9yjfaQjvmCqt4IT+RbeEnOckU16f94tEdy1ILA==
24 | ;; ADDITIONAL SECTION:
25 | ;; OPT PSEUDOSECTION
26 | ; EDNS: version: 0, flags: do; udp: 4096
27 | 
28 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-SOA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 8928010000010000000000000a636c6f7564666c61726503636f6d0000060001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35112
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      SOA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 8928818000010001000000000a636c6f7564666c61726503636f6d0000060001c00c00060001000000ad0020036e7333c00c03646e73c00c7906ce18000027100000096000093a800000012c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35112
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      SOA
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         173     IN      SOA     ns3.cloudflare.com. dns.cloudflare.com. 2030489112 10000 2400 604800 300
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-SOA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 7bda012000010000000000010a636c6f7564666c61726503636f6d00000600010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31706
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      SOA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 7bda818000010002000000010a636c6f7564666c61726503636f6d0000060001c00c000600010000007b0020036e7333c00c03646e73c00c7906ce18000027100000096000093a800000012cc00c002e00010000007b006200060d020000012c5c982ea25c956f8286c90a636c6f7564666c61726503636f6d00d398fbecbd928a65f32cc7399e12d907e42274a015ff9ee3734adfb395a5a6e63f28e4905f66841a9e3c5479323784f29197c6813b45f96f4d4e4df9c389832b0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 31706
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      SOA
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         123     IN      SOA     ns3.cloudflare.com. dns.cloudflare.com. 2030489112 10000 2400 604800 300
19 | cloudflare.com.         123     IN      RRSIG   SOA 13 2 300 20190325012802 20190322232802 34505 cloudflare.com. 05j77L2SimXzLMc5nhLZB+QidKAV/57jc0rfs5WlpuY/KOSQX2aEGp48VHkyN4TykZfGgTtF+W9NTk35w4mDKw==
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-TXT:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 415a010000010000000000000a636c6f7564666c61726503636f6d0000100001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16730
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      TXT
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 415a818000010006000000000a636c6f7564666c61726503636f6d0000100001c00c001000010000012b004544676f6f676c652d736974652d766572696669636174696f6e3d43377468664e65585661686b56686e6969715449316953566e456c4b525f6b4242746e45486b6547446c6fc00c001000010000012b003f3e6c6f676d65696e2d766572696669636174696f6e2d636f64653d62333433336338362d333832332d343830382d386137652d353830343234363966363534c00c001000010000012b002d2c7374617475732d706167652d646f6d61696e2d766572696669636174696f6e3d7231346672776c6a77627873c00c001000010000012b000e0d4d533d6d733730323734313834c00c001000010000012b003c3b66616365626f6f6b2d646f6d61696e2d766572696669636174696f6e3d68396d6d367a6f706a367032706f3534776f6131366d3562736b6d366f6fc00c001000010000012b00b3b2763d73706631206970343a3139392e31352e3231322e302f3232206970343a3137332e3234352e34382e302f323020696e636c7564653a5f7370662e676f6f676c652e636f6d20696e636c7564653a737066312e6d6373762e6e657420696e636c7564653a7370662e6d616e6472696c6c6170702e636f6d20696e636c7564653a6d61696c2e7a656e6465736b2e636f6d2020696e636c7564653a73747370672d637573746f6d65722e636f6d202d616c6c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16730
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;cloudflare.com.                IN      TXT
14 | ;; ANSWER SECTION:
15 | cloudflare.com.         299     IN      TXT     "google-site-verification=C7thfNeXVahkVhniiqTI1iSVnElKR_kBBtnEHkeGDlo"
16 | cloudflare.com.         299     IN      TXT     "logmein-verification-code=b3433c86-3823-4808-8a7e-58042469f654"
17 | cloudflare.com.         299     IN      TXT     "status-page-domain-verification=r14frwljwbxs"
18 | cloudflare.com.         299     IN      TXT     "MS=ms70274184"
19 | cloudflare.com.         299     IN      TXT     "facebook-domain-verification=h9mm6zopj6p2po54woa16m5bskm6oo"
20 | cloudflare.com.         299     IN      TXT     "v=spf1 ip4:199.15.212.0/22 ip4:173.245.48.0/20 include:_spf.google.com include:spf1.mcsv.net include:spf.mandrillapp.com include:mail.zendesk.com  include:stspg-customer.com -all"
21 | 
22 | 


--------------------------------------------------------------------------------
/dnslib/test/cloudflare.com-TXT-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 3051012000010000000000010a636c6f7564666c61726503636f6d00001000010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12369
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;cloudflare.com.                IN      TXT
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12369
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 7, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;cloudflare.com.                IN      TXT
17 | ;; ANSWER SECTION:
18 | cloudflare.com.         136     IN      TXT     "status-page-domain-verification=r14frwljwbxs"
19 | cloudflare.com.         136     IN      TXT     "facebook-domain-verification=h9mm6zopj6p2po54woa16m5bskm6oo"
20 | cloudflare.com.         136     IN      TXT     "logmein-verification-code=b3433c86-3823-4808-8a7e-58042469f654"
21 | cloudflare.com.         136     IN      TXT     "google-site-verification=C7thfNeXVahkVhniiqTI1iSVnElKR_kBBtnEHkeGDlo"
22 | cloudflare.com.         136     IN      TXT     "v=spf1 ip4:199.15.212.0/22 ip4:173.245.48.0/20 include:_spf.google.com include:spf1.mcsv.net include:spf.mandrillapp.com include:mail.zendesk.com  include:stspg-customer.com -all"
23 | cloudflare.com.         136     IN      TXT     "MS=ms70274184"
24 | cloudflare.com.         136     IN      RRSIG   TXT 13 2 300 20190325012814 20190322232814 34505 cloudflare.com. LwtQ/pV1/KqwNuz3py1mcX8K4tia9qMchb1iKCY/xYeMkQMDzT4XNDRCChYSRSzxTlt+/LlQv0Y0KLWUjiy3pA==
25 | ;; ADDITIONAL SECTION:
26 | ;; OPT PSEUDOSECTION
27 | ; EDNS: version: 0, flags: do; udp: 4096
28 | 
29 | 


--------------------------------------------------------------------------------
/dnslib/test/dig/google.com-A.dig:
--------------------------------------------------------------------------------
 1 | 
 2 | ; <<>> DiG 9.8.5-P1 <<>> +qr google.com
 3 | ;; global options: +cmd
 4 | ;; Sending:
 5 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23706
 6 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 7 | 
 8 | ;; QUESTION SECTION:
 9 | ;google.com.			IN	A
10 | 
11 | ;; Got answer:
12 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23706
13 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 16, AUTHORITY: 0, ADDITIONAL: 0
14 | 
15 | ;; QUESTION SECTION:
16 | ;google.com.			IN	A
17 | 
18 | ;; ANSWER SECTION:
19 | google.com.		299	IN	A	62.252.169.183
20 | google.com.		299	IN	A	62.252.169.152
21 | google.com.		299	IN	A	62.252.169.172
22 | google.com.		299	IN	A	62.252.169.177
23 | google.com.		299	IN	A	62.252.169.157
24 | google.com.		299	IN	A	62.252.169.153
25 | google.com.		299	IN	A	62.252.169.182
26 | google.com.		299	IN	A	62.252.169.168
27 | google.com.		299	IN	A	62.252.169.178
28 | google.com.		299	IN	A	62.252.169.162
29 | google.com.		299	IN	A	62.252.169.187
30 | google.com.		299	IN	A	62.252.169.167
31 | google.com.		299	IN	A	62.252.169.148
32 | google.com.		299	IN	A	62.252.169.173
33 | google.com.		299	IN	A	62.252.169.158
34 | google.com.		299	IN	A	62.252.169.163
35 | 
36 | ;; Query time: 42 msec
37 | ;; SERVER: 10.0.1.1#53(10.0.1.1)
38 | ;; WHEN: Mon May 05 12:01:30 BST 2014
39 | ;; MSG SIZE  rcvd: 284
40 | 
41 | 


--------------------------------------------------------------------------------
/dnslib/test/dig/google.com-ANY.dig:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45716
 3 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 4 | ;; QUESTION SECTION:
 5 | ;google.com.                    IN      ANY
 6 | 
 7 | ;; Got answer:
 8 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45716
 9 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 14, AUTHORITY: 0, ADDITIONAL: 0
10 | ;; QUESTION SECTION:
11 | ;google.com.                    IN      ANY
12 | ;; ANSWER SECTION:
13 | google.com.             299     IN      A       216.58.212.110
14 | google.com.             299     IN      AAAA    2a00:1450:4009:807::200e
15 | google.com.             86399   IN      CAA     0 issue "symantec.com"
16 | google.com.             599     IN      MX      40 alt3.aspmx.l.google.com.
17 | google.com.             599     IN      MX      10 aspmx.l.google.com.
18 | google.com.             86399   IN      NS      ns2.google.com.
19 | google.com.             599     IN      MX      20 alt1.aspmx.l.google.com.
20 | google.com.             59      IN      SOA     ns2.google.com. dns-admin.google.com. 144578247 900 900 1800 60
21 | google.com.             86399   IN      NS      ns1.google.com.
22 | google.com.             86399   IN      NS      ns4.google.com.
23 | google.com.             86399   IN      NS      ns3.google.com.
24 | google.com.             599     IN      MX      50 alt4.aspmx.l.google.com.
25 | google.com.             3599    IN      TXT     "v=spf1 include:_spf.google.com ~all"
26 | google.com.             599     IN      MX      30 alt2.aspmx.l.google.com.
27 | 
28 | 


--------------------------------------------------------------------------------
/dnslib/test/example.org-DNSKEY:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 77d801000001000000000000076578616d706c65036f72670000300001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30680
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;example.org.                   IN      DNSKEY
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 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
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30680
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;example.org.                   IN      DNSKEY
14 | ;; ANSWER SECTION:
15 | example.org.            3599    IN      DNSKEY  256 3 8 AwEAAaEICJRNhrT+VywCYe+RS4m6u7ILTQq7S/JlYrOVAoEhDU7cPl09XlIGBx2PwQSkHP1FASgeoTHn3KILN4CO2LyjgKj5hJ3tL5maNJdCWSratsO46+Cv+dxT+bIf0nRO/cX/t3eP/oedlTuSp3NuXGwd5RQ/ELoLZ/Fl28sY2lmr
16 | example.org.            3599    IN      DNSKEY  257 3 8 AwEAAZtWmbB2NyRD8oX7JeNUfmJB928LBER6l44TokqhZDOL2g6IyxLv9Ku02X/C50iyUeK1r4lr9s9WdSSAH+Qi3ozeXvhZvzAcgQzNJ1jUj4TXufXkml4QIy9kwL18N3jRizs+Sj8gz56UQwPL1J3M3rhYvSrF0a2zQYt8Vt0+HGUNJnaJ7dTBbfALiUJc0ATuHKOU1Le+Pb0b/3Q6b4AG3ZNKciwy8Hb9wroeAwv5//tffTgTQy4D4544HZCUkRW8b/+jNCpzdw6x7g4edA938y+f4YnOn+0bI5pSpB4IDG+GKgrFO2gAEdttujylxJxsm+slx0Qn8WrvR/ZZvcYnXvs=
17 | example.org.            3599    IN      DNSKEY  257 3 8 AwEAAayIYwp6ixWfhYM4THrWtVOVLbtJLekeXoNANfroGA/9R5ynPhmRV5MufCgluPCXs0xcWKMxunggLfQm87L/KkL+9W6Ux5aCWIAlVIbD+VioVXuHbmaW0SUXApi1wIaq9yP9P0oVfbKSqlQLQPbvrOTGXAeR+XAARkgrPJQadTDw3zA7YugzoH/jJEmjK3AGVRUb13ZByUsf+aAnVJmAtBdl3772mN2rLoaCCa6wyCrT0YZcHrxiMGo8J/KjU/1IidfufsOHH1iQ3CLoV0KfhQDBb33S8TH30cu8WCPmKhJNWjbhLaTKTDV0GKl/GIYX3IKcNLY9TZjkwUnOcEc1MxE=
18 | 
19 | 


--------------------------------------------------------------------------------
/dnslib/test/example.org-DS:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f1c001000001000000000000076578616d706c65036f726700002b0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61888
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;example.org.                   IN      DS
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 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
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61888
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;example.org.                   IN      DS
14 | ;; ANSWER SECTION:
15 | example.org.            3600    IN      DS      37780 8 1 B4A5CCE8D82DC585E327E5896EAE82E0B9A76DC6
16 | example.org.            3600    IN      DS      3397 8 2 ED1168604BC6A14068B9905401E62698BB3663B6EC2073EBD3599B882A785BF6
17 | example.org.            3600    IN      DS      31589 8 1 7B8370002875DDA781390A8E586C31493847D9BC
18 | example.org.            3600    IN      DS      37780 8 2 D96AFA9022000D368B5F497877DF289A1E9A13A1AB1F97BC1BF4D5DE16879134
19 | example.org.            3600    IN      DS      3397 8 1 DEE10345942C98711EB058B25A749EE342FCE1DC
20 | example.org.            3600    IN      DS      31589 8 2 3FDC4C11FA3AD3535EA8C1CE3EAF7BFA5CA9AE8A834D98FEE10085CFAEB625AA
21 | 


--------------------------------------------------------------------------------
/dnslib/test/example.org-MX-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f13c01200001000000000001076578616d706c65036f726700000f00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61756
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;example.org.                   IN      MX
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: f13c81800001000000040001076578616d706c65036f726700000f0001c00c000600010000098b002a03736e7303646e73056963616e6ec014036e6f63c02d7849f56900001c2000000e100012750000000e10c00c002e00010000098b009f0006080200000e105cabcb065c90978c6c61076578616d706c65036f726700319c0f8317c42e880b3bbfc3a317683f181b58ee223a3b8c446af88f9d8f9432eb8d66fbf9b062b9c7a30b6a413f997953454191487ffe1c98ac1b5730ac538f41a549db8809dbb442665bc5419c4c9b1b2f450f4e09cdcdb93c25589be2a4967ff4e4fd47216fb61b61529f45a27f21a066f4a1492aba72aeeeb7b952af3d55c00c002f000100000ddd001a03777777076578616d706c65036f726700000762008008000380c00c002e000100000ddd009f002f080200000e105ca6c66d5c8a708b6c61076578616d706c65036f726700753ef330045e9f071ee0c89eee705856f9b55879c34bdae1c2f20be8bbcc3990c9d550f330e7f83f6a62139ab518c57505fc72d323d4eb4cad74bcc2daabefdcf3bb844e7de9fbcfe7531c414b5737ca935401862c295289704ca9df53b354ea5b7e48032e271f2ccfb58b545bdae231804594a5ae94e8d2b32ab74b5332b4d40000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61756
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;example.org.                   IN      MX
17 | ;; AUTHORITY SECTION:
18 | example.org.            2443    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018112873 7200 3600 1209600 3600
19 | example.org.            2443    IN      RRSIG   SOA 8 2 3600 20190408222822 20190319071732 27745 example.org. MZwPgxfELogLO7/DoxdoPxgbWO4iOjuMRGr4j52PlDLrjWb7+bBiucejC2pBP5l5U0VBkUh//hyYrBtXMKxTj0GlSduICdu0QmZbxUGcTJsbL0UPTgnNzbk8JVib4qSWf/Tk/Uchb7YbYVKfRaJ/IaBm9KFJKrpyru63uVKvPVU=
20 | example.org.            3549    IN      NSEC    www.example.org. A NS SOA TXT AAAA RRSIG NSEC DNSKEY
21 | example.org.            3549    IN      RRSIG   NSEC 8 2 3600 20190405030725 20190314151731 27745 example.org. dT7zMARenwce4Mie7nBYVvm1WHnDS9rhwvIL6LvMOZDJ1VDzMOf4P2piE5q1GMV1Bfxy0yPU60ytdLzC2qvv3PO7hE596fvP51McQUtXN8qTVAGGLClSiXBMqd9Ts1TqW35IAy4nHyzPtYtUW9riMYBFlKWulOjSsyq3S1MytNQ=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/example.org-PTR-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: a9f301200001000000000001076578616d706c65036f726700000c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 43507
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;example.org.                   IN      PTR
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 43507
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;example.org.                   IN      PTR
17 | ;; AUTHORITY SECTION:
18 | example.org.            2444    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018112873 7200 3600 1209600 3600
19 | example.org.            2444    IN      RRSIG   SOA 8 2 3600 20190408222822 20190319071732 27745 example.org. MZwPgxfELogLO7/DoxdoPxgbWO4iOjuMRGr4j52PlDLrjWb7+bBiucejC2pBP5l5U0VBkUh//hyYrBtXMKxTj0GlSduICdu0QmZbxUGcTJsbL0UPTgnNzbk8JVib4qSWf/Tk/Uchb7YbYVKfRaJ/IaBm9KFJKrpyru63uVKvPVU=
20 | example.org.            3550    IN      NSEC    www.example.org. A NS SOA TXT AAAA RRSIG NSEC DNSKEY
21 | example.org.            3550    IN      RRSIG   NSEC 8 2 3600 20190405030725 20190314151731 27745 example.org. dT7zMARenwce4Mie7nBYVvm1WHnDS9rhwvIL6LvMOZDJ1VDzMOf4P2piE5q1GMV1Bfxy0yPU60ytdLzC2qvv3PO7hE596fvP51McQUtXN8qTVAGGLClSiXBMqd9Ts1TqW35IAy4nHyzPtYtUW9riMYBFlKWulOjSsyq3S1MytNQ=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/example.org-SOA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 448401200001000000000001076578616d706c65036f726700000600010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17540
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;example.org.                   IN      SOA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17540
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;example.org.                   IN      SOA
17 | ;; ANSWER SECTION:
18 | example.org.            2444    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018112873 7200 3600 1209600 3600
19 | example.org.            2444    IN      RRSIG   SOA 8 2 3600 20190408222822 20190319071732 27745 example.org. MZwPgxfELogLO7/DoxdoPxgbWO4iOjuMRGr4j52PlDLrjWb7+bBiucejC2pBP5l5U0VBkUh//hyYrBtXMKxTj0GlSduICdu0QmZbxUGcTJsbL0UPTgnNzbk8JVib4qSWf/Tk/Uchb7YbYVKfRaJ/IaBm9KFJKrpyru63uVKvPVU=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/fedoraproject.org-TLSA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 77cc01000001000000000000045f343433045f7463700d6665646f726170726f6a656374036f72670000340001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30668
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;_443._tcp.fedoraproject.org.   IN      TLSA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 77cc81800001000100000000045f343433045f7463700d6665646f726170726f6a656374036f72670000340001c00c003400010000012c0023010101a268847da80175457baf603df3b0ab9cc99d1f6bb84b83c351f97e9e6f397bb4
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30668
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;_443._tcp.fedoraproject.org.   IN      TLSA
14 | ;; ANSWER SECTION:
15 | _443._tcp.fedoraproject.org. 300     IN      TLSA    1 1 1 A268847DA80175457BAF603DF3B0AB9CC99D1F6BB84B83C351F97E9E6F397BB4
16 | 


--------------------------------------------------------------------------------
/dnslib/test/google.com-MX:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 71640100000100000000000006676f6f676c6503636f6d00000f0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29028
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;google.com.                    IN      MX
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 71648180000100050000000006676f6f676c6503636f6d00000f0001c00c000f0001000001aa0011001404616c7431056173706d78016cc00cc00c000f0001000001aa0009001e04616c7432c02fc00c000f0001000001aa0009002804616c7433c02fc00c000f0001000001aa0009003204616c7434c02fc00c000f0001000001aa0004000ac02f
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29028
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;google.com.                    IN      MX
14 | ;; ANSWER SECTION:
15 | google.com.             426     IN      MX      20 alt1.aspmx.l.google.com.
16 | google.com.             426     IN      MX      30 alt2.aspmx.l.google.com.
17 | google.com.             426     IN      MX      40 alt3.aspmx.l.google.com.
18 | google.com.             426     IN      MX      50 alt4.aspmx.l.google.com.
19 | google.com.             426     IN      MX      10 aspmx.l.google.com.
20 | 
21 | 


--------------------------------------------------------------------------------
/dnslib/test/google.com-NS:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: b9440100000100000000000006676f6f676c6503636f6d0000020001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47428
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;google.com.                    IN      NS
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: b9448180000100040000000006676f6f676c6503636f6d0000020001c00c0002000100001be80006036e7331c00cc00c0002000100001be80006036e7332c00cc00c0002000100001be80006036e7333c00cc00c0002000100001be80006036e7334c00c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47428
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;google.com.                    IN      NS
14 | ;; ANSWER SECTION:
15 | google.com.             7144    IN      NS      ns1.google.com.
16 | google.com.             7144    IN      NS      ns2.google.com.
17 | google.com.             7144    IN      NS      ns3.google.com.
18 | google.com.             7144    IN      NS      ns4.google.com.
19 | 
20 | 


--------------------------------------------------------------------------------
/dnslib/test/google.com-SOA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 52580100000100000000000006676f6f676c6503636f6d0000060001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21080
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;google.com.                    IN      SOA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 52588180000100010000000006676f6f676c6503636f6d0000060001c00c00060001000000350026036e7331c00c09646e732d61646d696ec00c0e395bbd0000038400000384000007080000003c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21080
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;google.com.                    IN      SOA
14 | ;; ANSWER SECTION:
15 | google.com.             53      IN      SOA     ns1.google.com. dns-admin.google.com. 238640061 900 900 1800 60
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/google.com-TXT:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: b39b0100000100000000000006676f6f676c6503636f6d0000100001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45979
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;google.com.                    IN      TXT
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 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
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45979
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;google.com.                    IN      TXT
14 | ;; ANSWER SECTION:
15 | google.com.             2064    IN      TXT     "v=spf1 include:_spf.google.com ~all"
16 | google.com.             2064    IN      TXT     "docusign=05958488-4752-4ef2-95eb-aa7ba8a3bd0e"
17 | google.com.             2064    IN      TXT     "facebook-domain-verification=22rm551cu4k0ab0bxsw536tlds4h95"
18 | google.com.             2064    IN      TXT     "globalsign-smime-dv=CDYX+XFHUw2wml6/Gb8+59BsH31KzUr6c1l2BPvqKX8="
19 | 
20 | 


--------------------------------------------------------------------------------
/dnslib/test/he.net-MX:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 5a9101000001000000000000026865036e657400000f0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23185
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;he.net.                        IN      MX
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 5a9181800001000100000000026865036e657400000f0001c00c000f00010001515400040001c00c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23185
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;he.net.                        IN      MX
14 | ;; ANSWER SECTION:
15 | he.net.                 86356   IN      MX      1 he.net.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/he.net-NS:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: fec501000001000000000000026865036e65740000020001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65221
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;he.net.                        IN      NS
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: fec581800001000500000000026865036e65740000020001c00c00020001000151540006036e7332c00cc00c00020001000151540006036e7333c00cc00c00020001000151540006036e7334c00cc00c00020001000151540006036e7335c00cc00c00020001000151540006036e7331c00c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65221
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;he.net.                        IN      NS
14 | ;; ANSWER SECTION:
15 | he.net.                 86356   IN      NS      ns2.he.net.
16 | he.net.                 86356   IN      NS      ns3.he.net.
17 | he.net.                 86356   IN      NS      ns4.he.net.
18 | he.net.                 86356   IN      NS      ns5.he.net.
19 | he.net.                 86356   IN      NS      ns1.he.net.
20 | 
21 | 


--------------------------------------------------------------------------------
/dnslib/test/he.net-SOA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 3af801000001000000000000026865036e65740000060001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15096
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;he.net.                        IN      SOA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 3af881800001000100000000026865036e65740000060001c00c00060001000014040027036e7331c00c0a686f73746d6173746572c00c0c08cc7e00002a300000070800093a8000015180
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15096
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;he.net.                        IN      SOA
14 | ;; ANSWER SECTION:
15 | he.net.                 5124    IN      SOA     ns1.he.net. hostmaster.he.net. 201903230 10800 1800 604800 86400
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/he.net-TXT:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 3e9401000001000000000000026865036e65740000100001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16020
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;he.net.                        IN      TXT
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 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
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16020
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;he.net.                        IN      TXT
14 | ;; ANSWER SECTION:
15 | he.net.                 86356   IN      TXT     "v=spf1 mx a include:_prefixes.he.net a:mailhost.lightning.net a:admin.he.net a:corp.he.net a:tickets.he.net a:abuse.he.net a:ipv6.he.net a:tunnelbroker.net ip4:64.71.139.96/27 ip4:216.218.186.2 ip6:2001:470:0::/48 ~all"
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-A:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: a370010000010000000000000469616e61036f72670000010001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41840
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      A
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: a370818000010001000000000469616e61036f72670000010001c00c000100010000015e0004c0002b08
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41840
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      A
14 | ;; ANSWER SECTION:
15 | iana.org.               350     IN      A       192.0.43.8
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-A-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: db75012000010000000000010469616e61036f726700000100010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56181
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      A
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: db75818000010002000000010469616e61036f72670000010001c00c00010001000001670004c0002b08c00c002e000100000167009c0001080200000e105cb22ebc5c9615b5378f0469616e61036f72670050946b7161b4d9b1f6b7a515e53cbce090685d93bced244b088e133bbda214447cc6e3b953189235316e299ae88242cee234f4d9809ffa764115da6bb9895f65d55d3d014c6c520b8cc1f9fbe12cc896a21f1c70a53561b623073b81da5fee6990c2a7c83540bb0544f0c45b971051d7abcf5d5c009b76fb8c1c48101ac76a1d0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56181
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      A
17 | ;; ANSWER SECTION:
18 | iana.org.               359     IN      A       192.0.43.8
19 | iana.org.               359     IN      RRSIG   A 8 2 3600 20190413184724 20190323111709 14223 iana.org. UJRrcWG02bH2t6UV5Ty84JBoXZO87SRLCI4TO72iFER8xuO5UxiSNTFuKZrogkLO4jT02YCf+nZBFdpruYlfZdVdPQFMbFILjMH5++EsyJaiHxxwpTVhtiMHO4HaX+5pkMKnyDVAuwVE8MRblxBR16vPXVwAm3b7jBxIEBrHah0=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-AAAA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 4f6e010000010000000000000469616e61036f726700001c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20334
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      AAAA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 4f6e818000010001000000000469616e61036f726700001c0001c00c001c00010000015e001020010500008802000000000000000008
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20334
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      AAAA
14 | ;; ANSWER SECTION:
15 | iana.org.               350     IN      AAAA    2001:500:88:200::8
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-AAAA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 2729012000010000000000010469616e61036f726700001c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10025
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      AAAA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 2729818000010002000000010469616e61036f726700001c0001c00c001c000100000167001020010500008802000000000000000008c00c002e000100000167009c001c080200000e105cafbaf35c943795378f0469616e61036f72670029078d90e4ad37fced7d826c53c1b1c70fe166c90f100e9349b1d0d500e6a7cba4dcd840f56f6523f869feae6121dce49ab2f3154a0dcf850a5d5553aaaf27c338548f588aeca94f6ecd27ef4b01500b580f117ac34c0a51dbda97db3509d3ee1fa7ee4beec46f2de5a95dd0abf914ceef8a3ac7ed302e6b35399502b0c123290000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10025
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      AAAA
17 | ;; ANSWER SECTION:
18 | iana.org.               359     IN      AAAA    2001:500:88:200::8
19 | iana.org.               359     IN      RRSIG   AAAA 8 2 3600 20190411220851 20190322011709 14223 iana.org. KQeNkOStN/ztfYJsU8Gxxw/hZskPEA6TSbHQ1QDmp8uk3NhA9W9lI/hp/q5hIdzkmrLzFUoNz4UKXVVTqq8nwzhUj1iK7KlPbs0n70sBUAtYDxF6w0wKUdval9s1CdPuH6fuS+7Eby3lqV3Qq/kUzu+KOsftMC5rNTmVArDBIyk=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-DNSKEY:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 6e2d010000010000000000000469616e61036f72670000300001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28205
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      DNSKEY
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 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
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28205
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      DNSKEY
14 | ;; ANSWER SECTION:
15 | iana.org.               3455    IN      DNSKEY  256 3 8 AwEAAahyS04tdcO/3HxQxTM4P8mzvpiwN9oA6zc6reihJVg/pPXglrcQKToXlutDuYr93P7rdig1qxYyga087JwMWLuBQlYnQWWBwtOGml0IscUmCgS2bMbYxPgQL0U0KSsGn9IfY0F50NmGjEkqKFp3zKkNmgs170P1tZo001+MsK0L
16 | iana.org.               3455    IN      DNSKEY  257 3 8 AwEAAa02O9AMbFbTpcDedeuRuUKV82NGBPEJtMbS8TT5+PwONcMSzsljUMToEogvz7DfNmlKEOj4Z2dm6JY6KEnaod4QyI56ZJfssgwlE2r5+jouwcO7KzBHpVHQYsx9+909k2VAQn8SOQjNVhhYNjVPnLp3R759cXnM1hpn9gNsgehM9HPpjDwWpdem4035o9vuS+Q48frXcUKpxL/mPGFF9oL6VoGRETXrLesTGUmrRyyZBgCiY/XJKLQuEm1t5THrgJWM9WFO/IcaeBVBtkgj8IskOS2aAySGx4jAX5HLHJu6oOc/L2zjXhXsRgYKN9TMaKnWqez1CeM4Sn/Ay//BFqU=
17 | iana.org.               3455    IN      DNSKEY  257 3 8 AwEAAb0i1jarxjgmjsOAO7IbXvhwe4yBSGWpUnjj9SLZOguEbOY+6hrsLL5Xa9LKHDjgF/ovovtOj4t9JrKXQZ6c/kJdtaIkGcWzhACoNkum20mn2Ja3Zk1xJgEkMpOED5I3N6IHNCALSNw8rxu3c3xVDpD6Tf10+Bcpr4sjge32lNeVDjVPs7D7yJSQrr0tBui4rtsMkeQ8jNT9Hna7C/5MRAxqjpueX0Z7kEqv4vevv1Y7xDi7yloRzY/tx8BdYEVRNOQ9pbU2ERuFhUWmwT1DROUBwpK6husdOGbnPyGzCiHt14An5wYpj6B4Jao9DuNTgTl6xg20oyR46pRM1roTeIk=
18 | 
19 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-MX:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 4f99010000010000000000000469616e61036f726700000f0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20377
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      MX
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 4f99818000010004000000000469616e61036f726700000f0001c00c000f000100000dc60013000a08706563686f726131056963616e6ec011c00c000f000100000dc6000d000a08706563686f726132c031c00c000f000100000dc6000d000a08706563686f726136c031c00c000f000100000dc6000d000a08706563686f726138c031
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20377
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      MX
14 | ;; ANSWER SECTION:
15 | iana.org.               3526    IN      MX      10 pechora1.icann.org.
16 | iana.org.               3526    IN      MX      10 pechora2.icann.org.
17 | iana.org.               3526    IN      MX      10 pechora6.icann.org.
18 | iana.org.               3526    IN      MX      10 pechora8.icann.org.
19 | 
20 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-MX-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 1519012000010000000000010469616e61036f726700000f00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5401
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      MX
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5401
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      MX
17 | ;; ANSWER SECTION:
18 | iana.org.               3534    IN      MX      10 pechora1.icann.org.
19 | iana.org.               3534    IN      MX      10 pechora2.icann.org.
20 | iana.org.               3534    IN      MX      10 pechora6.icann.org.
21 | iana.org.               3534    IN      MX      10 pechora8.icann.org.
22 | iana.org.               3534    IN      RRSIG   MX 8 2 3600 20190413114643 20190323111709 14223 iana.org. W0AcyjNDAHMEVGSHxNH4MBaQNM+POuo/gVNoead2/xCe/YbxtabIfTtGe34Yac3W1tiCN8Ma537Bw1e+CHDjX22yIl8+abPiZDWl5aKuT5HStRcGiPJr1E/4MPPH2zsC6x4slAHDIc0ZcqlweHuoWSt0Yc/FhGuu0Rbn0g/Y0oE=
23 | ;; ADDITIONAL SECTION:
24 | ;; OPT PSEUDOSECTION
25 | ; EDNS: version: 0, flags: do; udp: 4096
26 | 
27 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-NS:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f869010000010000000000000469616e61036f72670000020001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63593
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      NS
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: f869818000010004000000000469616e61036f72670000020001c00c0002000100001baf001401610c69616e612d73657276657273036e657400c00c0002000100001baf00040162c028c00c0002000100001baf00040163c028c00c0002000100001baf000b026e73056963616e6ec011
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63593
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      NS
14 | ;; ANSWER SECTION:
15 | iana.org.               7087    IN      NS      a.iana-servers.net.
16 | iana.org.               7087    IN      NS      b.iana-servers.net.
17 | iana.org.               7087    IN      NS      c.iana-servers.net.
18 | iana.org.               7087    IN      NS      ns.icann.org.
19 | 
20 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-NS-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 5a61012000010000000000010469616e61036f726700000200010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23137
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      NS
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 5a61818000010005000000010469616e61036f72670000020001c00c0002000100001bb8001401610c69616e612d73657276657273036e657400c00c0002000100001bb800040162c028c00c0002000100001bb800040163c028c00c0002000100001bb8000b026e73056963616e6ec011c00c002e000100001bb8009c00020802000151805caefd895c930235378f0469616e61036f7267000e45d2770b26a91c4d00c85fa1638b1c6b7e4c6b16d2889276b1d4263113a7edf3279efbfdfa2bf7d314188e12c51fdc17a2e9fa335d08db4c5d63281dde4340a5fe28f1f4f3bbc18c3912fe52e71467cf2a59ed972e63607d276d0a87aa750c5c9db1989ff303fc31c900123b37f0722e34c6a9ec2c4fa6c4bf0518dcc885450000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23137
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      NS
17 | ;; ANSWER SECTION:
18 | iana.org.               7096    IN      NS      a.iana-servers.net.
19 | iana.org.               7096    IN      NS      b.iana-servers.net.
20 | iana.org.               7096    IN      NS      c.iana-servers.net.
21 | iana.org.               7096    IN      NS      ns.icann.org.
22 | iana.org.               7096    IN      RRSIG   NS 8 2 86400 20190411084041 20190321031709 14223 iana.org. DkXSdwsmqRxNAMhfoWOLHGt+TGsW0oiSdrHUJjETp+3zJ577/for99MUGI4SxR/cF6Lp+jNdCNtMXWMoHd5DQKX+KPH087vBjDkS/lLnFGfPKlntly5jYH0nbQqHqnUMXJ2xmJ/zA/wxyQASOzfwci40xqnsLE+mxL8FGNzIhUU=
23 | ;; ADDITIONAL SECTION:
24 | ;; OPT PSEUDOSECTION
25 | ; EDNS: version: 0, flags: do; udp: 4096
26 | 
27 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-PTR-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 6ad6012000010000000000010469616e61036f726700000c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27350
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      PTR
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27350
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      PTR
17 | ;; AUTHORITY SECTION:
18 | iana.org.               3600    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018113300 7200 3600 1209600 3600
19 | iana.org.               3600    IN      RRSIG   SOA 8 2 3600 20190413152719 20190323151709 14223 iana.org. AjBgPuP1h2nJcYa9fz6cODrIDQZ5Fd4TQ6Oc5ne8/EFq1/MFl2tbAAjlZ1ATtWfaeeTi/fq4n1kXaUy69Ie+6yIsnfw/sSNRyEWzswRNCOu2BUKhFLEucW7dFc31G5Tl0vM2rUQPgb2EW8pSFWbf+QTC3ku/DjTG2Z71+xWLCTo=
20 | iana.org.               3600    IN      NSEC    api.iana.org. A NS SOA MX TXT AAAA RRSIG NSEC DNSKEY
21 | iana.org.               3600    IN      RRSIG   NSEC 8 2 3600 20190410135213 20190320231709 14223 iana.org. I7ESskDm/0E/dVZM7XdEMVVM0R2MJDkJHWalZqpxaHx7zDAAQc4n7r1g6joycP4JPFfW9wUAiJqyCltfIKYk7bK1r+oObf67tKiXNjWecE9k0FiQGL3gmQoeIHDcEDruU5BGQjhHVpIVDx8ZUAccE/2KGVHyeNy6grnh75TtX6E=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-SOA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 9898010000010000000000000469616e61036f72670000060001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39064
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      SOA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 9898818000010001000000000469616e61036f72670000060001c00c0006000100000dc7002a03736e7303646e73056963616e6ec011036e6f63c02a7849f71600001c2000000e100012750000000e10
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39064
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      SOA
14 | ;; ANSWER SECTION:
15 | iana.org.               3527    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018113302 7200 3600 1209600 3600
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-SOA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: a7c1012000010000000000010469616e61036f726700000600010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42945
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      SOA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42945
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      SOA
17 | ;; ANSWER SECTION:
18 | iana.org.               3535    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018113302 7200 3600 1209600 3600
19 | iana.org.               3535    IN      RRSIG   SOA 8 2 3600 20190413192822 20190323211709 14223 iana.org. aX8VRn+4WvKx3EWfgEEGoNlC/YQPxlkEoGGGmXpDkTAt1tduH45LgrN3EHnzhZJqnOisjxUlg03oi5pHnm/tHkxoSD2rs4uiqRNGkBM11WTKZvsnk+MzyK/4+VF2quosabzDXJdgsvgnsSy9PqV1tEnIh9H2qNiKYwnM/TNzZxY=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-TXT:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: ecdd010000010000000000000469616e61036f72670000100001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 60637
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      TXT
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: ecdd818000010003000000000469616e61036f72670000100001c00c0010000100015136000e0d4d533d6d733232363630363339c00c0010000100015136001a19763d737066312072656469726563743d6963616e6e2e6f7267c00c0010000100015136004544676f6f676c652d736974652d766572696669636174696f6e3d69497154546355784e4434775a4f65566535486f3732387248334a4f53446e73735973594a377055745151
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 60637
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;iana.org.                      IN      TXT
14 | ;; ANSWER SECTION:
15 | iana.org.               86326   IN      TXT     "MS=ms22660639"
16 | iana.org.               86326   IN      TXT     "v=spf1 redirect=icann.org"
17 | iana.org.               86326   IN      TXT     "google-site-verification=iIqTTcUxND4wZOeVe5Ho728rH3JOSDnssYsYJ7pUtQQ"
18 | 
19 | 


--------------------------------------------------------------------------------
/dnslib/test/iana.org-TXT-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: a064012000010000000000010469616e61036f726700001000010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41060
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;iana.org.                      IN      TXT
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41060
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;iana.org.                      IN      TXT
17 | ;; ANSWER SECTION:
18 | iana.org.               86334   IN      TXT     "MS=ms22660639"
19 | iana.org.               86334   IN      TXT     "v=spf1 redirect=icann.org"
20 | iana.org.               86334   IN      TXT     "google-site-verification=iIqTTcUxND4wZOeVe5Ho728rH3JOSDnssYsYJ7pUtQQ"
21 | iana.org.               86334   IN      RRSIG   TXT 8 2 86400 20190412201515 20190322131709 14223 iana.org. XE55AJzq3NRPpuGpRR8+/QmCBwSiFBrjUb6Kg9PPo2crMqu25GVi7HdoXpWgXLSZKigDB60FjZ/tFymXDpFMJUwMNn9rs8bDU18xAN8V5a6Q8wJF/PyuxCUToXDAAbKwp4T3K+5OiC8xrGJCAy9qe06Ovf73r9G8CStJkuPkJ6U=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/oilpro.ch-TYPE65534:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 536601000001000000000000066f696c70726f02636800fffe0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21350
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;oilpro.ch.                     IN      TYPE65534
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 536681800001000200000000066f696c70726f02636800fffe0001c00cfffe00010000000000050dd5c60001c00cfffe00010000000000050d2a680001
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21350
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;oilpro.ch.                     IN      TYPE65534
14 | ;; ANSWER SECTION:
15 | oilpro.ch.              0       IN      TYPE65534 \# 5 0DD5C60001
16 | oilpro.ch.              0       IN      TYPE65534 \# 5 0D2A680001
17 | 
18 | 


--------------------------------------------------------------------------------
/dnslib/test/openssl.org-TLSA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 30b801000001000000000000045f353837045f746370036d7461076f70656e73736c036f72670000340001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12472
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;_587._tcp.mta.openssl.org.     IN      TLSA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 30b881800001000100000000045f353837045f746370036d7461076f70656e73736c036f72670000340001c00c0034000100000e1000230301016cf12d78fbf242909d01b96ab5590812954058dc32f8415f048fff064291921e
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12472
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;_587._tcp.mta.openssl.org.     IN      TLSA
14 | ;; ANSWER SECTION:
15 | _587._tcp.mta.openssl.org. 3600    IN      TLSA    3 1 1 6CF12D78FBF242909D01B96AB5590812954058DC32F8415F048FFF064291921E
16 | 


--------------------------------------------------------------------------------
/dnslib/test/salsa.debian.org-SSHFP:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 5afb010000010000000000000573616c73610664656269616e036f726700002c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23291
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;salsa.debian.org.              IN      SSHFP
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 5afb818000010004000000000573616c73610664656269616e036f726700002c0001c00c002c00010000025800160401676b02929dc7908278bcee876ea0f1640b8264e0c00c002c000100000258002204023800f7a464b070e0c8b61c45fb3211bcf4d9f1408901823be44e365c37c6afcec00c002c00010000025800160101eaa6c147facf35bc49946d9e8b90e2235c7da361c00c002c00010000025800220102f3c03414b13a6df37a3296b81774ec3e28d92e7c003667ca8e17d88433820a70
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23291
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;salsa.debian.org.              IN      SSHFP
14 | ;; ANSWER SECTION:
15 | salsa.debian.org.       600     IN      SSHFP   4 1 676B02929DC7908278BCEE876EA0F1640B8264E0
16 | salsa.debian.org.       600     IN      SSHFP   4 2 3800F7A464B070E0C8B61C45FB3211BCF4D9F1408901823BE44E365C37C6AFCE
17 | salsa.debian.org.       600     IN      SSHFP   1 1 EAA6C147FACF35BC49946D9E8B90E2235C7DA361
18 | salsa.debian.org.       600     IN      SSHFP   1 2 F3C03414B13A6DF37A3296B81774EC3E28D92E7C003667CA8E17D88433820A70
19 | 


--------------------------------------------------------------------------------
/dnslib/test/sip2sip.info-NAPTR:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: fd5101000001000000000000077369703273697004696e666f0000230001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64849
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;sip2sip.info.                  IN      NAPTR
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: fd5181800001000300000000077369703273697004696e666f0000230001c00c0023000100000da80027000a00640173075349502b44325400045f736970045f746370077369703273697004696e666f00c00c0023000100000da80027001e00640173075349502b44325500045f736970045f756470077369703273697004696e666f00c00c0023000100000da8002900050064017308534950532b44325400055f73697073045f746370077369703273697004696e666f00
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64849
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;sip2sip.info.                  IN      NAPTR
14 | ;; ANSWER SECTION:
15 | sip2sip.info.           3496    IN      NAPTR   10 100 "s" "SIP+D2T" "" _sip._tcp.sip2sip.info.
16 | sip2sip.info.           3496    IN      NAPTR   30 100 "s" "SIP+D2U" "" _sip._udp.sip2sip.info.
17 | sip2sip.info.           3496    IN      NAPTR   5 100 "s" "SIPS+D2T" "" _sips._tcp.sip2sip.info.
18 | 
19 | 


--------------------------------------------------------------------------------
/dnslib/test/www.example.org-A-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 9dca0120000100000000000103777777076578616d706c65036f726700000100010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40394
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.example.org.               IN      A
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 9dca8180000100020000000103777777076578616d706c65036f72670000010001c00c000100010000269000045db8d822c00c002e000100002690009f00010803000151805cab0a155c8f29ec6c61076578616d706c65036f726700906c9772c420ea13477d70f7c1c54b47456cd91ca835295f71c3e7d89db3bf22f2820f04a3d8f2f049ee4eca697c212084362e58be95ad583e0fbecfed7cdc3646eb3fbdfd7e1c98f8820bc48c7ab8219d3969f486c0cfa98af8e9ce27c9fa5ea0c2dab4f20ff5ae9f0bf2dd535616d03007a6929ffd078986ce38ff4c27d0f00000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40394
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.example.org.               IN      A
17 | ;; ANSWER SECTION:
18 | www.example.org.        9872    IN      A       93.184.216.34
19 | www.example.org.        9872    IN      RRSIG   A 8 3 86400 20190408084509 20190318051732 27745 example.org. kGyXcsQg6hNHfXD3wcVLR0Vs2RyoNSlfccPn2J2zvyLygg8Eo9jy8EnuTsppfCEghDYuWL6VrVg+D77P7XzcNkbrP739fhyY+IILxIx6uCGdOWn0hsDPqYr46c4nyfpeoMLatPIP9a6fC/LdU1YW0DAHppKf/QeJhs44/0wn0PA=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/www.example.org-AAAA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 2b110120000100000000000103777777076578616d706c65036f726700001c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11025
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.example.org.               IN      AAAA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 2b118180000100020000000103777777076578616d706c65036f726700001c0001c00c001c00010000095f001026062800022000010248189325c81946c00c002e00010000095f009f001c0803000151805cab0fc05c8feecc6c61076578616d706c65036f7267000c46fdf4436c4723a8a957d279e51f84973534bf4ed1bd8f5cc7d3a1ba80c381fc347d1738e6f36f1fa14f30f260e21c95db4ccea8be27f0dcf3cce56f6903cf2a8c234107cec6824df5ec32ef975dc9e8e0a82f7dea35aa50a593875a1443614cdb69afc58e93a94ca2dd8a1a6cead4bf22520d22915861652868a0e518caef0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11025
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.example.org.               IN      AAAA
17 | ;; ANSWER SECTION:
18 | www.example.org.        2399    IN      AAAA    2606:2800:220:1:248:1893:25c8:1946
19 | www.example.org.        2399    IN      RRSIG   AAAA 8 3 86400 20190408090920 20190318191732 27745 example.org. DEb99ENsRyOoqVfSeeUfhJc1NL9O0b2PXMfTobqAw4H8NH0XOObzbx+hTzDyYOIcldtMzqi+J/Dc88zlb2kDzyqMI0EHzsaCTfXsMu+XXcno4Kgvfeo1qlClk4daFENhTNtpr8WOk6lMot2KGmzq1L8iUg0ikVhhZShooOUYyu8=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/www.example.org-ANY-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 21060120000100000000000103777777076578616d706c65036f72670000ff00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8454
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.example.org.               IN      ANY
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 21068180000100040000000103777777076578616d706c65036f72670000ff0001c00c00010001000024dd00045db8d822c00c002e0001000024dd009f00010803000151805cab0a155c8f29ec6c61076578616d706c65036f726700906c9772c420ea13477d70f7c1c54b47456cd91ca835295f71c3e7d89db3bf22f2820f04a3d8f2f049ee4eca697c212084362e58be95ad583e0fbecfed7cdc3646eb3fbdfd7e1c98f8820bc48c7ab8219d3969f486c0cfa98af8e9ce27c9fa5ea0c2dab4f20ff5ae9f0bf2dd535616d03007a6929ffd078986ce38ff4c27d0f0c00c001c0001000007ac001026062800022000010248189325c81946c00c002e0001000007ac009f001c0803000151805cab0fc05c8feecc6c61076578616d706c65036f7267000c46fdf4436c4723a8a957d279e51f84973534bf4ed1bd8f5cc7d3a1ba80c381fc347d1738e6f36f1fa14f30f260e21c95db4ccea8be27f0dcf3cce56f6903cf2a8c234107cec6824df5ec32ef975dc9e8e0a82f7dea35aa50a593875a1443614cdb69afc58e93a94ca2dd8a1a6cead4bf22520d22915861652868a0e518caef0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8454
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.example.org.               IN      ANY
17 | ;; ANSWER SECTION:
18 | www.example.org.        9437    IN      A       93.184.216.34
19 | www.example.org.        9437    IN      RRSIG   A 8 3 86400 20190408084509 20190318051732 27745 example.org. kGyXcsQg6hNHfXD3wcVLR0Vs2RyoNSlfccPn2J2zvyLygg8Eo9jy8EnuTsppfCEghDYuWL6VrVg+D77P7XzcNkbrP739fhyY+IILxIx6uCGdOWn0hsDPqYr46c4nyfpeoMLatPIP9a6fC/LdU1YW0DAHppKf/QeJhs44/0wn0PA=
20 | www.example.org.        1964    IN      AAAA    2606:2800:220:1:248:1893:25c8:1946
21 | www.example.org.        1964    IN      RRSIG   AAAA 8 3 86400 20190408090920 20190318191732 27745 example.org. DEb99ENsRyOoqVfSeeUfhJc1NL9O0b2PXMfTobqAw4H8NH0XOObzbx+hTzDyYOIcldtMzqi+J/Dc88zlb2kDzyqMI0EHzsaCTfXsMu+XXcno4Kgvfeo1qlClk4daFENhTNtpr8WOk6lMot2KGmzq1L8iUg0ikVhhZShooOUYyu8=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/www.example.org-CNAME-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 21460120000100000000000103777777076578616d706c65036f726700000500010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8518
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.example.org.               IN      CNAME
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8518
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 4, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.example.org.               IN      CNAME
17 | ;; AUTHORITY SECTION:
18 | example.org.            2383    IN      SOA     sns.dns.icann.org. noc.dns.icann.org. 2018112873 7200 3600 1209600 3600
19 | example.org.            2383    IN      RRSIG   SOA 8 2 3600 20190408222822 20190319071732 27745 example.org. MZwPgxfELogLO7/DoxdoPxgbWO4iOjuMRGr4j52PlDLrjWb7+bBiucejC2pBP5l5U0VBkUh//hyYrBtXMKxTj0GlSduICdu0QmZbxUGcTJsbL0UPTgnNzbk8JVib4qSWf/Tk/Uchb7YbYVKfRaJ/IaBm9KFJKrpyru63uVKvPVU=
20 | www.example.org.        3600    IN      NSEC    example.org. A TXT AAAA RRSIG NSEC
21 | www.example.org.        3600    IN      RRSIG   NSEC 8 3 3600 20190407225304 20190318031732 27745 example.org. TxxS5qlTie+mYlMakEasAf/CUPz5h9CJL3uFrNszb5XgbPAFl2PRAHe6pRGdrxE8DQzv4VZXQi5wjPttLkiIBDURijYCxief+Oa/+CPut5PfyUlAWBfIhXps3IzeyG+G7vvX/pOxXuLrpNsykA0FLVQ6mMiRTgJZr/OYyrNg6RM=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/www.example.org-TXT-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 5bd30120000100000000000103777777076578616d706c65036f726700001000010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23507
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.example.org.               IN      TXT
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 5bd38180000100020000000103777777076578616d706c65036f72670000100001c00c0010000100015180000c0b763d73706631202d616c6cc00c002e000100015180009f00100803000151805cabfec35c90432c6c61076578616d706c65036f7267000ba82d72efa564a8d8b656c83267e183f7479afa40983777d77d8ef662149ff05240cc31b454e5c9fb589cb95004bcb5a2ec3c69f25f1125b2e56410a4aea776c87f42778fcb5a60b776f278cb0bf23330c3360a3841e20c708c45af700dcca71fe6d66cafbfd42719a7ad9a34251ed3c65f2194b8303f227a6bf69002f5737f0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23507
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.example.org.               IN      TXT
17 | ;; ANSWER SECTION:
18 | www.example.org.        86400   IN      TXT     "v=spf1 -all"
19 | www.example.org.        86400   IN      RRSIG   TXT 8 3 86400 20190409020907 20190319011732 27745 example.org. C6gtcu+lZKjYtlbIMmfhg/dHmvpAmDd3132O9mIUn/BSQMwxtFTlyftYnLlQBLy1ouw8afJfESWy5WQQpK6ndsh/QnePy1pgt3byeMsL8jMwwzYKOEHiDHCMRa9wDcynH+bWbK+/1CcZp62aNCUe08ZfIZS4MD8iemv2kAL1c38=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/www.google.com-A:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 4d6d010000010000000000000377777706676f6f676c6503636f6d0000010001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19821
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.google.com.                IN      A
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 4d6d818000010001000000000377777706676f6f676c6503636f6d0000010001c00c00010001000000760004d83acc44
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19821
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.google.com.                IN      A
14 | ;; ANSWER SECTION:
15 | www.google.com.         118     IN      A       216.58.204.68
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/www.google.com-AAAA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: ca43010000010000000000000377777706676f6f676c6503636f6d00001c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51779
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.google.com.                IN      AAAA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: ca43818000010001000000000377777706676f6f676c6503636f6d00001c0001c00c001c00010000007600102a001450400908140000000000002004
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51779
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.google.com.                IN      AAAA
14 | ;; ANSWER SECTION:
15 | www.google.com.         118     IN      AAAA    2a00:1450:4009:814::2004
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/www.google.com-CNAME:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 04be010000010000000000000377777706676f6f676c6503636f6d0000050001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1214
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.google.com.                IN      CNAME
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 04be818000010000000100000377777706676f6f676c6503636f6d0000050001c010000600010000002c0026036e7331c01009646e732d61646d696ec0100e395bbd0000038400000384000007080000003c
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1214
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.google.com.                IN      CNAME
14 | ;; AUTHORITY SECTION:
15 | google.com.             44      IN      SOA     ns1.google.com. dns-admin.google.com. 238640061 900 900 1800 60
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/www.he.net-A:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 0cb40100000100000000000003777777026865036e65740000010001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3252
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.he.net.                    IN      A
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 0cb48180000100020000000003777777026865036e65740000010001c00c00050001000029990002c010c01000010001000018070004d8daba02
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3252
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.he.net.                    IN      A
14 | ;; ANSWER SECTION:
15 | www.he.net.             10649   IN      CNAME   he.net.
16 | he.net.                 6151    IN      A       216.218.186.2
17 | 
18 | 


--------------------------------------------------------------------------------
/dnslib/test/www.he.net-AAAA:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: d5a70100000100000000000003777777026865036e657400001c0001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54695
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.he.net.                    IN      AAAA
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: d5a78180000100020000000003777777026865036e657400001c0001c00c00050001000029990002c010c010001c000100001807001020010470000000760000000000000002
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54695
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.he.net.                    IN      AAAA
14 | ;; ANSWER SECTION:
15 | www.he.net.             10649   IN      CNAME   he.net.
16 | he.net.                 6151    IN      AAAA    2001:470:0:76::2
17 | 
18 | 


--------------------------------------------------------------------------------
/dnslib/test/www.he.net-CNAME:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 70ab0100000100000000000003777777026865036e65740000050001
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28843
 4 | ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 5 | ;; QUESTION SECTION:
 6 | ;www.he.net.                    IN      CNAME
 7 | 
 8 | ;; Got answer:
 9 | ;; RESPONSE: 70ab8180000100010000000003777777026865036e65740000050001c00c00050001000029990002c010
10 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28843
11 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
12 | ;; QUESTION SECTION:
13 | ;www.he.net.                    IN      CNAME
14 | ;; ANSWER SECTION:
15 | www.he.net.             10649   IN      CNAME   he.net.
16 | 
17 | 


--------------------------------------------------------------------------------
/dnslib/test/www.iana.org-A-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: f6d101200001000000000001037777770469616e61036f726700000100010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63185
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.iana.org.                  IN      A
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63185
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.iana.org.                  IN      A
17 | ;; ANSWER SECTION:
18 | www.iana.org.           3090    IN      CNAME   ianawww.vip.icann.org.
19 | www.iana.org.           3090    IN      RRSIG   CNAME 8 3 3600 20190412195152 20190322211709 14223 iana.org. oNConfYQrfbT03NaDRSDJ9vpOCdTCGfvwIAEs9RGqtWfDS2s01ekXKCbi+cr4OdwTAxylAxTJJUkuMsWHk96tTvjITevuFV62KC7MYn9ieAMvanJzgH+6GmKyc1dwcOBYq6SNOs7ko9r1FPXHQ3Wf4qm9u3dvV3rIsUQkjxivT4=
20 | ianawww.vip.icann.org.  30      IN      A       192.0.32.8
21 | ianawww.vip.icann.org.  30      IN      RRSIG   A 7 4 30 20190330015108 20190323015108 32579 vip.icann.org. J8kAbifACFobKXCzIdeILEV3vBFklh0tOmf7w7ae2op76XwGPdm7NX7P0V8WLx4ILBQHttpZz/aH1jmeus155xjPOYt8488n0X+9dvIl+Sgo65Bvz0ON6vrLr3VYREFnLDBa5r8y0SMa2/u4D0RDvxSpVKRuZj7y2mjVP6Ma+W8=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/www.iana.org-AAAA-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: d10201200001000000000001037777770469616e61036f726700001c00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53506
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.iana.org.                  IN      AAAA
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 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
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53506
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.iana.org.                  IN      AAAA
17 | ;; ANSWER SECTION:
18 | www.iana.org.           2736    IN      CNAME   ianawww.vip.icann.org.
19 | www.iana.org.           2736    IN      RRSIG   CNAME 8 3 3600 20190412195152 20190322211709 14223 iana.org. oNConfYQrfbT03NaDRSDJ9vpOCdTCGfvwIAEs9RGqtWfDS2s01ekXKCbi+cr4OdwTAxylAxTJJUkuMsWHk96tTvjITevuFV62KC7MYn9ieAMvanJzgH+6GmKyc1dwcOBYq6SNOs7ko9r1FPXHQ3Wf4qm9u3dvV3rIsUQkjxivT4=
20 | ianawww.vip.icann.org.  30      IN      AAAA    2620:0:2d0:200::8
21 | ianawww.vip.icann.org.  30      IN      RRSIG   AAAA 7 4 30 20190330020024 20190323020024 32579 vip.icann.org. EyMcezrpQ8zqySuAYhj0hAANh5QFGAqiBztFITQ7WnGgYVpMvTswdweomdmAkcw9GojsS3n87cNxZBq2nQTxJUN0APTwAkyqZDLPReQ7Ami7/x542NBr99bzgsoZeCYqmkHA6Ngu0d59iV6rcPrFFdIFuOEmpoVqouALCiHrLsE=
22 | ;; ADDITIONAL SECTION:
23 | ;; OPT PSEUDOSECTION
24 | ; EDNS: version: 0, flags: do; udp: 4096
25 | 
26 | 


--------------------------------------------------------------------------------
/dnslib/test/www.iana.org-ANY-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 7fd001200001000000000001037777770469616e61036f72670000ff00010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32720
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.iana.org.                  IN      ANY
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 7fd081800001000200000001037777770469616e61036f72670000ff0001c00c0005000100000a6500140769616e6177777703766970056963616e6ec015c00c002e000100000a65009c0005080300000e105cb0ec585c9550d5378f0469616e61036f726700a0d0a89df610adf6d3d3735a0d148327dbe93827530867efc08004b3d446aad59f0d2dacd357a45ca09b8be72be0e7704c0c72940c53249524b8cb161e4f7ab53be32137afb8557ad8a0bb3189fd89e00cbda9c9ce01fee8698ac9cd5dc1c38162ae9234eb3b928f6bd453d71d0dd67f8aa6f6edddbd5deb22c510923c62bd3e0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32720
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.iana.org.                  IN      ANY
17 | ;; ANSWER SECTION:
18 | www.iana.org.           2661    IN      CNAME   ianawww.vip.icann.org.
19 | www.iana.org.           2661    IN      RRSIG   CNAME 8 3 3600 20190412195152 20190322211709 14223 iana.org. oNConfYQrfbT03NaDRSDJ9vpOCdTCGfvwIAEs9RGqtWfDS2s01ekXKCbi+cr4OdwTAxylAxTJJUkuMsWHk96tTvjITevuFV62KC7MYn9ieAMvanJzgH+6GmKyc1dwcOBYq6SNOs7ko9r1FPXHQ3Wf4qm9u3dvV3rIsUQkjxivT4=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test/www.iana.org-CNAME-dnssec:
--------------------------------------------------------------------------------
 1 | ;; Sending:
 2 | ;; QUERY: 113001200001000000000001037777770469616e61036f726700000500010000291000000080000000
 3 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4400
 4 | ;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
 5 | ;; QUESTION SECTION:
 6 | ;www.iana.org.                  IN      CNAME
 7 | ;; ADDITIONAL SECTION:
 8 | ;; OPT PSEUDOSECTION
 9 | ; EDNS: version: 0, flags: do; udp: 4096
10 | 
11 | ;; Got answer:
12 | ;; RESPONSE: 113081800001000200000001037777770469616e61036f72670000050001c00c0005000100000c1100140769616e6177777703766970056963616e6ec015c00c002e000100000c11009c0005080300000e105cb0ec585c9550d5378f0469616e61036f726700a0d0a89df610adf6d3d3735a0d148327dbe93827530867efc08004b3d446aad59f0d2dacd357a45ca09b8be72be0e7704c0c72940c53249524b8cb161e4f7ab53be32137afb8557ad8a0bb3189fd89e00cbda9c9ce01fee8698ac9cd5dc1c38162ae9234eb3b928f6bd453d71d0dd67f8aa6f6edddbd5deb22c510923c62bd3e0000291000000080000000
13 | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4400
14 | ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
15 | ;; QUESTION SECTION:
16 | ;www.iana.org.                  IN      CNAME
17 | ;; ANSWER SECTION:
18 | www.iana.org.           3089    IN      CNAME   ianawww.vip.icann.org.
19 | www.iana.org.           3089    IN      RRSIG   CNAME 8 3 3600 20190412195152 20190322211709 14223 iana.org. oNConfYQrfbT03NaDRSDJ9vpOCdTCGfvwIAEs9RGqtWfDS2s01ekXKCbi+cr4OdwTAxylAxTJJUkuMsWHk96tTvjITevuFV62KC7MYn9ieAMvanJzgH+6GmKyc1dwcOBYq6SNOs7ko9r1FPXHQ3Wf4qm9u3dvV3rIsUQkjxivT4=
20 | ;; ADDITIONAL SECTION:
21 | ;; OPT PSEUDOSECTION
22 | ; EDNS: version: 0, flags: do; udp: 4096
23 | 
24 | 


--------------------------------------------------------------------------------
/dnslib/test_decode.py:
--------------------------------------------------------------------------------
  1 | #!/usr/bin/env python3
  2 | # -*- coding: utf-8 -*-
  3 | """
  4 |     Test dnslib packet encoding/decoding
  5 | 
  6 |     Reads test files from dnslib/test (by default) containing
  7 |     dump of DNS exchange (packet dump & parse output) and test
  8 |     round-trip parsing - specifically:
  9 | 
 10 |         - Parse packet data and zone format data and compare
 11 |         - Repack parsed packet data and compare with original
 12 | 
 13 |     This should test the 'parse', 'fromZone' and 'pack' methods of the
 14 |     associated record types.
 15 | 
 16 |     The original parsed output is created using dnslib by default so systematic
 17 |     encode/decode errors will not be found. By default the test data is
 18 |     checked against 'dig' to ensure that it is correct when generated
 19 |     using the --new option.
 20 | 
 21 |     By default the module runs in 'unittest' mode (and supports unittest
 22 |     --verbose/--failfast options)
 23 | 
 24 |     The module can also be run in interactive mode (--interactive) and inspect
 25 |     failed tests (--debug)
 26 | 
 27 |     New test data files can be automatically created using the:
 28 | 
 29 |         --new <domain> <type>
 30 | 
 31 |     option. The data is checked against dig output and an error raised if
 32 |     this does not match. This is effectively the same as running:
 33 | 
 34 |         python -m dnslib.client --query --hex --dig <domain> <type>
 35 | 
 36 |     It is possible to manually generate test data files using dnslib.client
 37 |     even if the dig data doesn't match (this is usually due to an unsupported
 38 |     RDATA type which dnslib will output in hex rather then parsing contents).
 39 |     The roundtrip tests will still work in this case (the unknown RDATA is
 40 |     handled as an opaque blob).
 41 | 
 42 |     In some cases the tests will fail as a result of the zone file parser
 43 |     being more fragile than the packet parser (especially with broken data)
 44 | 
 45 |     Note - unittests are dynamically generated from the test directory contents
 46 |     (matched against the --glob parameter)
 47 | 
 48 | """
 49 | 
 50 | from __future__ import print_function
 51 | 
 52 | from dnslib.dns import DNSRecord,EDNS0
 53 | from dnslib.digparser import DigParser
 54 | 
 55 | import argparse,binascii,code,glob,os,os.path,sys,unittest
 56 | 
 57 | try:
 58 |     from subprocess import getoutput
 59 | except ImportError:
 60 |     from commands import getoutput
 61 | 
 62 | try:
 63 |     input = raw_input
 64 | except NameError:
 65 |     pass
 66 | 
 67 | class TestContainer(unittest.TestCase):
 68 |     pass
 69 | 
 70 | def new_test(domain,qtype,address="8.8.8.8",port=53,nodig=False,dnssec=False):
 71 |     tcp = False
 72 |     q = DNSRecord.question(domain,qtype)
 73 |     if dnssec:
 74 |         q.add_ar(EDNS0(flags="do",udp_len=4096))
 75 |         q.header.ad = 1
 76 |     a_pkt = q.send(address,port)
 77 |     a = DNSRecord.parse(a_pkt)
 78 |     if a.header.tc:
 79 |         tcp = True
 80 |         a_pkt = q.send(address,port,tcp)
 81 |         a = DNSRecord.parse(a_pkt)
 82 | 
 83 |     if not nodig:
 84 |         if dnssec:
 85 |             dig = getoutput("dig +qr +dnssec -p %d %s %s @%s" % (
 86 |                             port, domain, qtype, address))
 87 |         else:
 88 |             dig = getoutput("dig +qr +noedns +noadflag -p %d %s %s @%s" % (
 89 |                             port, domain, qtype, address))
 90 |         dig_reply = list(iter(DigParser(dig)))
 91 |         # DiG might have retried in TCP mode so get last q/a
 92 |         q_dig = dig_reply[-2]
 93 |         a_dig = dig_reply[-1]
 94 | 
 95 |         if q != q_dig or a != a_dig:
 96 |             if q != q_dig:
 97 |                 print(";;; ERROR: Diff Question differs")
 98 |                 for (d1,d2) in q.diff(q_dig):
 99 |                     if d1:
100 |                         print(";; - %s" % d1)
101 |                     if d2:
102 |                         print(";; + %s" % d2)
103 |             if a != a_dig:
104 |                 print(";;; ERROR: Diff Response differs")
105 |                 for (d1,d2) in a.diff(a_dig):
106 |                     if d1:
107 |                         print(";; - %s" % d1)
108 |                     if d2:
109 |                         print(";; + %s" % d2)
110 |             return
111 | 
112 |     if dnssec:
113 |         fname = "%s-%s-dnssec" % (domain,qtype)
114 |     else:
115 |         fname = "%s-%s" % (domain,qtype)
116 |     print("Writing test file: %s" % (fname))
117 |     with open(fname,"w") as f:
118 |         print(";; Sending:",file=f)
119 |         print(";; QUERY:",binascii.hexlify(q.pack()).decode(),file=f)
120 |         print(q,file=f)
121 |         print(file=f)
122 |         print(";; Got answer:",file=f)
123 |         print(";; RESPONSE:",binascii.hexlify(a_pkt).decode(),file=f)
124 |         print(a,file=f)
125 |         print(file=f)
126 | 
127 | def check_decode(f,debug=False):
128 |     errors = []
129 | 
130 |     # Parse the q/a records
131 |     with open(f) as x:
132 |         q,r = DigParser(x)
133 | 
134 |     # Grab the hex data
135 |     with open(f,'rb') as x:
136 |         for l in x.readlines():
137 |             if l.startswith(b';; QUERY:'):
138 |                 qdata = binascii.unhexlify(l.split()[-1])
139 |             elif l.startswith(b';; RESPONSE:'):
140 |                 rdata = binascii.unhexlify(l.split()[-1])
141 | 
142 |     # Parse the hex data
143 |     qparse = DNSRecord.parse(qdata)
144 |     rparse = DNSRecord.parse(rdata)
145 | 
146 |     # Check records generated from DiG input matches
147 |     # records parsed from packet data
148 |     if q != qparse:
149 |         errors.append(('Question',q.diff(qparse)))
150 |     if r != rparse:
151 |         errors.append(('Reply',r.diff(rparse)))
152 | 
153 |     # Repack the data
154 |     qpack = qparse.pack()
155 |     rpack = rparse.pack()
156 | 
157 |     # Check if repacked question data matches original
158 |     # We occasionally get issues where original packet did not
159 |     # compress all labels - in this case we reparse packed
160 |     # record, repack this and compare with the packed data
161 |     if qpack != qdata:
162 |         if len(qpack) < len(qdata):
163 |             # Shorter - possibly compression difference
164 |             if DNSRecord.parse(qpack).pack() != qpack:
165 |                 errors.append(('Question Pack',(qdata,qpack)))
166 |         else:
167 |             errors.append(('Question Pack',(qdata,qpack)))
168 |     if rpack != rdata:
169 |         if len(rpack) < len(rdata):
170 |             if DNSRecord.parse(rpack).pack() != rpack:
171 |                 errors.append(('Reply Pack',(rdata,rpack)))
172 |         else:
173 |             errors.append(('Reply Pack',(rdata,rpack)))
174 | 
175 |     if debug:
176 |         if errors:
177 |             print("ERROR\n")
178 |             print_errors(errors)
179 |             print()
180 |             if input(">>> Inspect [y/n]? ").lower().startswith('y'):
181 |                 code.interact(local=locals())
182 |             print()
183 |         else:
184 |             print("OK")
185 | 
186 |     return errors
187 | 
188 | def print_errors(errors):
189 |     for err,err_data in errors:
190 |         if err == 'Question':
191 |             print("Question error:")
192 |             for (d1,d2) in err_data:
193 |                 if d1:
194 |                     print(";; - %s" % d1)
195 |                 if d2:
196 |                     print(";; + %s" % d2)
197 |         elif err == 'Reply':
198 |             print("Reply error:")
199 |             for (d1,d2) in err_data:
200 |                 if d1:
201 |                     print(";; - %s" % d1)
202 |                 if d2:
203 |                     print(";; + %s" % d2)
204 |         elif err == 'Question Pack':
205 |             print("Question pack error")
206 |             print("QDATA:",binascii.hexlify(err_data[0]))
207 |             print(DNSRecord.parse(err_data[0]))
208 |             print("QPACK:",binascii.hexlify(err_data[1]))
209 |             print(DNSRecord.parse(err_data[1]))
210 |         elif err == 'Reply Pack':
211 |             print("Response pack error")
212 |             print("RDATA:",binascii.hexlify(err_data[0]))
213 |             print(DNSRecord.parse(err_data[0]))
214 |             print("RPACK:",binascii.hexlify(err_data[1]))
215 |             print(DNSRecord.parse(err_data[1]))
216 | 
217 | def test_generator(f):
218 |     def test(self):
219 |         self.assertEqual(check_decode(f),[])
220 |     return test
221 | 
222 | if __name__ == '__main__':
223 | 
224 |     testdir = os.path.join(os.path.dirname(__file__),"test")
225 | 
226 |     p = argparse.ArgumentParser(description="Test Decode")
227 |     p.add_argument("--new","-n",nargs=2,
228 |                     metavar="<domain/type>",
229 |                     help="Create new test case (args: <domain> <type>)")
230 |     p.add_argument("--dnssec",action='store_true',default=False,
231 |                     help="With --new send DNSSEC request (DO)")
232 |     p.add_argument("--nodig",action='store_true',default=False,
233 |                     help="Don't test new data against DiG")
234 |     p.add_argument("--unittest",action='store_true',default=True,
235 |                     help="Run unit tests")
236 |     p.add_argument("--verbose",action='store_true',default=False,
237 |                     help="Verbose unit test output")
238 |     p.add_argument("--failfast",action='store_true',default=False,
239 |                     help="Stop unit tests on first failure")
240 |     p.add_argument("--interactive",action='store_true',default=False,
241 |                     help="Run in interactive mode")
242 |     p.add_argument("--debug",action='store_true',default=False,
243 |                     help="Debug errors (interactive mode)")
244 |     p.add_argument("--glob","-g",default="*",
245 |                     help="Glob pattern")
246 |     p.add_argument("--testdir","-t",default=testdir,
247 |                     help="Test dir (%s)" % testdir)
248 |     p.add_argument("--testfile","-f",default=None,
249 |                     help="Test single file")
250 |     args = p.parse_args()
251 | 
252 |     if args.testfile:
253 |         e = check_decode(args.testfile,args.debug)
254 |         if not args.debug:
255 |             if e:
256 |                 print("ERROR\n")
257 |                 print_errors(e)
258 |                 print()
259 |             else:
260 |                 print("OK")
261 |     else:
262 |         os.chdir(args.testdir)
263 |         if args.new:
264 |             new_test(*args.new,nodig=args.nodig,dnssec=args.dnssec)
265 |         elif args.interactive:
266 |             for f in glob.iglob(args.glob):
267 |                 if os.path.isfile(f):
268 |                     print("-- %s: " % f,end='')
269 |                     e = check_decode(f,args.debug)
270 |                     if not args.debug:
271 |                         if e:
272 |                             print("ERROR\n")
273 |                             print_errors(e)
274 |                             print()
275 |                         else:
276 |                             print("OK")
277 |         elif args.unittest:
278 |             for f in glob.iglob(args.glob):
279 |                 if os.path.isfile(f):
280 |                     test_name = 'test_%s' % f
281 |                     test = test_generator(f)
282 |                     setattr(TestContainer,test_name,test)
283 |             unittest.main(argv=[__name__],
284 |                           verbosity=2 if args.verbose else 1,
285 |                           failfast=args.failfast)
286 | 
287 | 
288 | 
289 | 


--------------------------------------------------------------------------------
/dnslib/zoneresolver.py:
--------------------------------------------------------------------------------
  1 | # -*- coding: utf-8 -*-
  2 | 
  3 | from __future__ import print_function
  4 | 
  5 | import copy
  6 | 
  7 | from dnslib import RR,QTYPE,RCODE
  8 | from dnslib.server import DNSServer,DNSHandler,BaseResolver,DNSLogger
  9 | 
 10 | class ZoneResolver(BaseResolver):
 11 |     """
 12 |         Simple fixed zone file resolver.
 13 |     """
 14 | 
 15 |     def __init__(self,zone,glob=False):
 16 |         """
 17 |             Initialise resolver from zone file.
 18 |             Stores RRs as a list of (label,type,rr) tuples
 19 |             If 'glob' is True use glob match against zone file
 20 |         """
 21 |         self.zone = [(rr.rname,QTYPE[rr.rtype],rr) for rr in RR.fromZone(zone)]
 22 |         self.glob = glob
 23 |         self.eq = 'matchGlob' if glob else '__eq__'
 24 | 
 25 |     def resolve(self,request,handler):
 26 |         """
 27 |             Respond to DNS request - parameters are request packet & handler.
 28 |             Method is expected to return DNS response
 29 |         """
 30 |         reply = request.reply()
 31 |         qname = request.q.qname
 32 |         qtype = QTYPE[request.q.qtype]
 33 |         for name,rtype,rr in self.zone:
 34 |             # Check if label & type match
 35 |             if getattr(qname,self.eq)(name) and (qtype == rtype or
 36 |                                                  qtype == 'ANY' or
 37 |                                                  rtype == 'CNAME'):
 38 |                 # If we have a glob match fix reply label
 39 |                 if self.glob:
 40 |                     a = copy.copy(rr)
 41 |                     a.rname = qname
 42 |                     reply.add_answer(a)
 43 |                 else:
 44 |                     reply.add_answer(rr)
 45 |                 # Check for A/AAAA records associated with reply and
 46 |                 # add in additional section
 47 |                 if rtype in ['CNAME','NS','MX','PTR']:
 48 |                     for a_name,a_rtype,a_rr in self.zone:
 49 |                         if a_name == rr.rdata.label and a_rtype in ['A','AAAA']:
 50 |                             reply.add_ar(a_rr)
 51 |         if not reply.rr:
 52 |             reply.header.rcode = RCODE.NXDOMAIN
 53 |         return reply
 54 | 
 55 | if __name__ == '__main__':
 56 | 
 57 |     import argparse,sys,time
 58 | 
 59 |     p = argparse.ArgumentParser(description="Zone DNS Resolver")
 60 |     p.add_argument("--zone","-z",required=True,
 61 |                         metavar="<zone-file>",
 62 |                         help="Zone file ('-' for stdin)")
 63 |     p.add_argument("--port","-p",type=int,default=53,
 64 |                         metavar="<port>",
 65 |                         help="Server port (default:53)")
 66 |     p.add_argument("--address","-a",default="",
 67 |                         metavar="<address>",
 68 |                         help="Listen address (default:all)")
 69 |     p.add_argument("--glob",action='store_true',default=False,
 70 |                         help="Glob match against zone file (default: false)")
 71 |     p.add_argument("--udplen","-u",type=int,default=0,
 72 |                     metavar="<udplen>",
 73 |                     help="Max UDP packet length (default:0)")
 74 |     p.add_argument("--tcp",action='store_true',default=False,
 75 |                         help="TCP server (default: UDP only)")
 76 |     p.add_argument("--log",default="request,reply,truncated,error",
 77 |                     help="Log hooks to enable (default: +request,+reply,+truncated,+error,-recv,-send,-data)")
 78 |     p.add_argument("--log-prefix",action='store_true',default=False,
 79 |                     help="Log prefix (timestamp/handler/resolver) (default: False)")
 80 |     args = p.parse_args()
 81 | 
 82 |     if args.zone == '-':
 83 |         args.zone = sys.stdin
 84 |     else:
 85 |         args.zone = open(args.zone)
 86 | 
 87 |     resolver = ZoneResolver(args.zone,args.glob)
 88 |     logger = DNSLogger(args.log,prefix=args.log_prefix)
 89 | 
 90 |     print("Starting Zone Resolver (%s:%d) [%s]" % (
 91 |                         args.address or "*",
 92 |                         args.port,
 93 |                         "UDP/TCP" if args.tcp else "UDP"))
 94 | 
 95 |     for rr in resolver.zone:
 96 |         print("    | ",rr[2].toZone(),sep="")
 97 |     print()
 98 | 
 99 |     if args.udplen:
100 |         DNSHandler.udplen = args.udplen
101 | 
102 |     udp_server = DNSServer(resolver,
103 |                            port=args.port,
104 |                            address=args.address,
105 |                            logger=logger)
106 |     udp_server.start_thread()
107 | 
108 |     if args.tcp:
109 |         tcp_server = DNSServer(resolver,
110 |                                port=args.port,
111 |                                address=args.address,
112 |                                tcp=True,
113 |                                logger=logger)
114 |         tcp_server.start_thread()
115 | 
116 |     while udp_server.isAlive():
117 |         time.sleep(1)
118 | 
119 | 


--------------------------------------------------------------------------------
/fuzz.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python3
 2 | 
 3 | from __future__ import print_function
 4 | 
 5 | import argparse,binascii,os,pprint,traceback,sys
 6 | from random import randrange
 7 | from dnslib import DNSRecord,DNSQuestion,QTYPE,DNSError
 8 | 
 9 | def fuzz_delete(b):
10 |     """ Delete byte """
11 |     f = b[:]
12 |     del f[randrange(len(b))]
13 |     return f
14 | 
15 | def fuzz_add(b):
16 |     """ Add byte """
17 |     f = b[:]
18 |     f.insert(randrange(len(b)),randrange(256))
19 |     return f
20 | 
21 | def fuzz_change(b):
22 |     """ Change byte """
23 |     f = b[:]
24 |     f[randrange(len(b))] = randrange(256)
25 |     return f
26 | 
27 | def fname(f):
28 |     try:
29 |         return f.func_name
30 |     except AttributeError:
31 |         return f.__name__
32 | 
33 | if __name__ == '__main__':
34 | 
35 |     a = argparse.ArgumentParser(description="DNS Fuzzer")
36 |     a.add_argument("--server","-s",default="8.8.8.8",
37 |                     help="DNS server address[:port] (default:8.8.8.8:53)")
38 |     a.add_argument("--query","-q",default="google.com",
39 |                    help="DNS query (default:google.com)")
40 |     a.add_argument("--type","-t",default="A",
41 |                    help="DNS query type (default:A)")
42 |     a.add_argument("--debug","-d",action='store_true',default=False,
43 |                    help="Print debug output")
44 |     a.add_argument("--number","-n",type=int,default=200,
45 |             help="Number of iterations (default:200)")
46 |     a.add_argument("--tcp",action='store_true',default=False,
47 |                     help="Use TCP (default: UDP)")
48 |     args = a.parse_args()
49 | 
50 |     def p(*s):
51 |         if args.debug:
52 |             print(*s)
53 | 
54 |     uncaught = 0
55 |     exceptions = []
56 | 
57 |     address,_,port = args.server.partition(':')
58 |     port = int(port or 53)
59 | 
60 |     if args.query == 'google.com' and args.type == 'A':
61 |         question = None
62 |         packet = bytearray(binascii.unhexlify(b'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'))
63 |     else:
64 |         question = DNSRecord(q=DNSQuestion(args.query,getattr(QTYPE,args.type)))
65 |         packet = bytearray(question.send(address,port,tcp=args.tcp))
66 | 
67 |     original = DNSRecord.parse(packet)
68 | 
69 |     if question:
70 |         p("Question:")
71 |         p(question.toZone(prefix="  | "))
72 | 
73 |     p("Original:")
74 |     p(original.toZone(prefix="  | "))
75 | 
76 |     for f in (fuzz_delete,fuzz_add,fuzz_change):
77 |         for i in range(args.number):
78 |             try:
79 |                 fuzzed_pkt = f(packet)
80 |                 fuzzed = DNSRecord.parse(fuzzed_pkt)
81 |                 if original != fuzzed:
82 |                     diff = original.diff(fuzzed)
83 |                     p("[%s:parsed ok] >>> %d Diff Errors" % (fname(f),len(diff)))
84 |                     p(pprint.pformat(diff))
85 |             except DNSError as e:
86 |                 p("[%s:exception] >>> %s" % (fname(f),str(e)))
87 |             except Exception as e:
88 |                 raise
89 |                 uncaught += 1
90 |                 exceptions.append((binascii.hexlify(fuzzed_pkt),traceback.format_exc(limit=1)))
91 |                 p(traceback.format_exc())
92 | 
93 |     p("-----------------------")
94 |     print("Uncaught Exceptions: %d" % uncaught)
95 | 
96 |     if exceptions:
97 |         pprint.pprint(exceptions)
98 | 
99 | 


--------------------------------------------------------------------------------
/run_tests.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | export PYTHONPATH=$(pwd)
 4 | 
 5 | : ${VERSIONS:="python python3"}
 6 | 
 7 | for src in __init__.py bimap.py bit.py buffer.py label.py dns.py lex.py server.py digparser.py ranges.py test_decode.py
 8 | do
 9 |     echo "===" $src
10 |     for py in $VERSIONS
11 |     do
12 |         echo "Testing:" $($py --version 2>&1)
13 |         $py dnslib/$src
14 |     done
15 | done
16 | 
17 | for py in $VERSIONS
18 | do
19 |     echo "Fuzz:" $($py --version 2>&1)
20 |     $py fuzz.py
21 | done
22 | 


--------------------------------------------------------------------------------
/setup.py:
--------------------------------------------------------------------------------
 1 | #!/usr/bin/env python
 2 | 
 3 | # To update PyPi version:
 4 | #
 5 | # (Make sure you have updated version and changelog in __init__.py)
 6 | #
 7 | # ./run_tests.sh
 8 | # python3 setup.py readme
 9 | # git commit -am ...
10 | # git push 
11 | # git tag -a <version> -m <message>
12 | # git push --tags
13 | # (Create release from tag on Github)
14 | #
15 | # rm -rf dist
16 | # python3 setup.py sdist
17 | # python3 setup.py bdist_wheel 
18 | # python2 setup.py bdist_wheel 
19 | # twine upload
20 | 
21 | try:
22 |     from setuptools import Command, setup
23 | except ImportError:
24 |     from distutils.core import Command, setup
25 | 
26 | import dnslib
27 | long_description = dnslib.__doc__.rstrip() + "\n"
28 | version = dnslib.version
29 | 
30 | class GenerateReadme(Command):
31 |     description = "Generates README file from long_description"
32 |     user_options = []
33 |     def initialize_options(self): pass
34 |     def finalize_options(self): pass
35 |     def run(self):
36 |         open("README","w").write(long_description)
37 | 
38 | setup(name='dnslib',
39 |       version = version,
40 |       description = 'Simple library to encode/decode DNS wire-format packets',
41 |       long_description = long_description,
42 |       long_description_content_type="text/markdown",
43 |       author = 'PaulC',
44 |       url = 'https://github.com/paulc/dnslib',
45 |       cmdclass = {'readme' : GenerateReadme},
46 |       packages = ['dnslib'],
47 |       package_dir = {'dnslib' : 'dnslib'},
48 |       license = 'BSD',
49 |       classifiers = [ "Topic :: Internet :: Name Service (DNS)",
50 |                       "Programming Language :: Python :: 2",
51 |                       "Programming Language :: Python :: 3",
52 |                       ],
53 |      )
54 | 


--------------------------------------------------------------------------------