fergalmoran/DnsServer
1
0
Fork 0
mirror of https://github.com/fergalmoran/DnsServer.git synced 2025-12-22 09:29:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
3b96811325dac6181d29220a2061fcbc68be9112
DnsServer/DnsServerCore/Dns/ResolverDnsCache.cs

235 lines
11 KiB
C#
Raw Blame History

/*
Technitium DNS Server
Copyright (C) 2025 Shreyas Zare (shreyas@technitium.com)
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
using DnsServerCore.ApplicationCommon;
using System;
using System.Collections.Generic;
using System.Net;
using System.Threading.Tasks;
using TechnitiumLibrary.Net;
using TechnitiumLibrary.Net.Dns;
using TechnitiumLibrary.Net.Dns.EDnsOptions;
using TechnitiumLibrary.Net.Dns.ResourceRecords;
namespace DnsServerCore.Dns
{
class ResolverDnsCache : IDnsCache
{
#region variables
readonly DnsServer _dnsServer;
readonly bool _skipDnsAppAuthoritativeRequestHandlers;
readonly bool _skipConditionalForwardingResolution;
#endregion
#region constructor
public ResolverDnsCache(DnsServer dnsServer, bool skipDnsAppAuthoritativeRequestHandlers, bool skipConditionalForwardingResolution = false)
{
_dnsServer = dnsServer;
_skipDnsAppAuthoritativeRequestHandlers = skipDnsAppAuthoritativeRequestHandlers;
_skipConditionalForwardingResolution = skipConditionalForwardingResolution;
}
#endregion
#region private
private async Task<DnsDatagram> DnsApplicationQueryClosestDelegationAsync(DnsDatagram request)
{
if (_skipDnsAppAuthoritativeRequestHandlers || (_dnsServer.DnsApplicationManager.DnsAuthoritativeRequestHandlers.Count < 1) || (request.Question.Count != 1))
return null;
IPEndPoint localEP = new IPEndPoint(IPAddress.Any, 0);
DnsQuestionRecord question = request.Question[0];
string currentDomain = question.Name;
while (true)
{
DnsDatagram nsRequest = new DnsDatagram(0, false, DnsOpcode.StandardQuery, false, false, true, false, false, false, DnsResponseCode.NoError, new DnsQuestionRecord[] { new DnsQuestionRecord(currentDomain, DnsResourceRecordType.NS, DnsClass.IN) });
foreach (IDnsAuthoritativeRequestHandler requestHandler in _dnsServer.DnsApplicationManager.DnsAuthoritativeRequestHandlers)
{
try
{
DnsDatagram nsResponse = await requestHandler.ProcessRequestAsync(nsRequest, localEP, DnsTransportProtocol.Tcp, false);
if (nsResponse is not null)
{
if ((nsResponse.Answer.Count > 0) && (nsResponse.Answer[0].Type == DnsResourceRecordType.NS))
return new DnsDatagram(request.Identifier, true, nsResponse.OPCODE, nsResponse.AuthoritativeAnswer, nsResponse.Truncation, nsResponse.RecursionDesired, nsResponse.RecursionAvailable, nsResponse.AuthenticData, nsResponse.CheckingDisabled, nsResponse.RCODE, request.Question, null, nsResponse.Answer, nsResponse.Additional);
else if ((nsResponse.Authority.Count > 0) && (nsResponse.FindFirstAuthorityType() == DnsResourceRecordType.NS))
return new DnsDatagram(request.Identifier, true, nsResponse.OPCODE, nsResponse.AuthoritativeAnswer, nsResponse.Truncation, nsResponse.RecursionDesired, nsResponse.RecursionAvailable, nsResponse.AuthenticData, nsResponse.CheckingDisabled, nsResponse.RCODE, request.Question, null, nsResponse.Authority, nsResponse.Additional);
}
}
catch (DnsClientException ex)
{
_dnsServer.ResolverLogManager?.Write(ex);
}
catch (Exception ex)
{
_dnsServer.LogManager?.Write(ex);
}
}
//get parent domain
int i = currentDomain.IndexOf('.');
if (i < 0)
break;
currentDomain = currentDomain.Substring(i + 1);
}
return null;
}
private Task<DnsDatagram> DoConditionalForwardingResolutionAsync(DnsDatagram request, IReadOnlyList<DnsResourceRecord> conditionalForwarders)
{
DnsQuestionRecord question = request.Question[0];
NetworkAddress eDnsClientSubnet = null;
bool advancedForwardingClientSubnet = false; //this feature is used by Advanced Forwarding app to cache response per network group
EDnsClientSubnetOptionData requestECS = request.GetEDnsClientSubnetOption();
if (requestECS is not null)
{
//use ECS from client request
switch (requestECS.Family)
{
case EDnsClientSubnetAddressFamily.IPv4:
eDnsClientSubnet = new NetworkAddress(requestECS.Address, requestECS.SourcePrefixLength);
break;
case EDnsClientSubnetAddressFamily.IPv6:
eDnsClientSubnet = new NetworkAddress(requestECS.Address, requestECS.SourcePrefixLength);
break;
}
advancedForwardingClientSubnet = requestECS.AdvancedForwardingClientSubnet;
}
ResolverDnsCache dnsCache = new ResolverDnsCache(_dnsServer, _skipDnsAppAuthoritativeRequestHandlers, true);
return _dnsServer.PriorityConditionalForwarderResolveAsync(question, eDnsClientSubnet, advancedForwardingClientSubnet, dnsCache, _skipDnsAppAuthoritativeRequestHandlers, conditionalForwarders);
}
#endregion
#region public
public async Task<DnsDatagram> QueryClosestDelegationAsync(DnsDatagram request)
{
DnsDatagram authResponse = _dnsServer.AuthZoneManager.QueryClosestDelegation(request);
if (authResponse is null)
authResponse = await DnsApplicationQueryClosestDelegationAsync(request);
DnsDatagram cacheResponse = await _dnsServer.CacheZoneManager.QueryClosestDelegationAsync(request);
if ((authResponse is not null) && (authResponse.Authority.Count > 0))
{
if ((cacheResponse is not null) && (cacheResponse.Authority.Count > 0))
{
DnsResourceRecord authResponseFirstAuthority = authResponse.FindFirstAuthorityRecord();
DnsResourceRecord cacheResponseFirstAuthority = cacheResponse.FindFirstAuthorityRecord();
if (cacheResponseFirstAuthority.Name.Length > authResponseFirstAuthority.Name.Length)
return cacheResponse;
}
return authResponse;
}
else
{
return cacheResponse;
}
}
public virtual async Task<DnsDatagram> QueryAsync(DnsDatagram request, bool serveStale, bool findClosestNameServers = false, bool resetExpiry = false)
{
DnsDatagram authResponse = _dnsServer.AuthZoneManager.Query(request, true);
if (authResponse is not null)
{
if ((authResponse.RCODE != DnsResponseCode.NoError) || (authResponse.Answer.Count > 0) || (authResponse.Authority.Count == 0) || authResponse.IsFirstAuthoritySOA())
return authResponse;
}
else if (!_skipDnsAppAuthoritativeRequestHandlers)
{
foreach (IDnsAuthoritativeRequestHandler requestHandler in _dnsServer.DnsApplicationManager.DnsAuthoritativeRequestHandlers)
{
try
{
authResponse = await requestHandler.ProcessRequestAsync(request, new IPEndPoint(IPAddress.Any, 0), DnsTransportProtocol.Tcp, true);
if (authResponse is not null)
{
if ((authResponse.RCODE != DnsResponseCode.NoError) || (authResponse.Answer.Count > 0) || (authResponse.Authority.Count == 0) || authResponse.IsFirstAuthoritySOA())
return authResponse;
}
}
catch (DnsClientException ex)
{
_dnsServer.ResolverLogManager?.Write(ex);
}
catch (Exception ex)
{
_dnsServer.LogManager?.Write(ex);
}
}
}
DnsDatagram cacheResponse = await _dnsServer.CacheZoneManager.QueryAsync(request, serveStale, findClosestNameServers, resetExpiry);
if (cacheResponse is not null)
{
if ((cacheResponse.RCODE != DnsResponseCode.NoError) || (cacheResponse.Answer.Count > 0) || (cacheResponse.Authority.Count == 0) || cacheResponse.IsFirstAuthoritySOA())
return cacheResponse;
}
if ((authResponse is not null) && (authResponse.Authority.Count > 0))
{
if ((cacheResponse is not null) && (cacheResponse.Authority.Count > 0))
{
DnsResourceRecord authResponseFirstAuthority = authResponse.FindFirstAuthorityRecord();
DnsResourceRecord cacheResponseFirstAuthority = cacheResponse.FindFirstAuthorityRecord();
if (cacheResponseFirstAuthority.Name.Length > authResponseFirstAuthority.Name.Length)
return cacheResponse;
}
if (!_skipConditionalForwardingResolution)
{
DnsResourceRecord authResponseFirstAuthority = authResponse.FindFirstAuthorityRecord();
if (authResponseFirstAuthority.Type == DnsResourceRecordType.FWD)
return await DoConditionalForwardingResolutionAsync(request, authResponse.Authority);
}
return authResponse;
}
else
{
return cacheResponse;
}
}
public void CacheResponse(DnsDatagram response, bool isDnssecBadCache = false, string zoneCut = null)
{
_dnsServer.CacheZoneManager.CacheResponse(response, isDnssecBadCache, zoneCut);
}
#endregion
}
}
Reference in New Issue View Git Blame Copy Permalink