| blob | ff6a4f69dcda04ee83121ed60da6f0fefa2ba747 |
1 // Copyright 2009 The Go Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style
3 // license that can be found in the LICENSE file.
5 // +build aix darwin dragonfly freebsd linux netbsd openbsd solaris
7 // DNS client: see RFC 1035.
8 // Has to be linked into package net for Dial.
10 // TODO(rsc):
11 // Could potentially handle many outstanding lookups faster.
12 // Could have a small cache.
13 // Random UDP source port (net.Dial should do that for us).
14 // Random request IDs.
16 package net
19 "context"
20 "errors"
21 "io"
22 "math/rand"
23 "os"
24 "sync"
25 "time"
26 )
28 // A dnsConn represents a DNS transport endpoint.
30 io.Closer
34 // dnsRoundTrip executes a single DNS transaction, returning a
35 // DNS response message for the provided DNS query message.
37 }
39 // dnsPacketConn implements the dnsConn interface for RFC 1035's
40 // "UDP usage" transport mechanism. Conn is a packet-oriented connection,
41 // such as a *UDPConn.
43 Conn
44 }
50 }
53 }
60 }
63 // Ignore invalid responses as they may be malicious
64 // forgery attempts. Instead continue waiting until
65 // timeout. See golang.org/issue/13281.
66 continue
67 }
69 }
70 }
72 // dnsStreamConn implements the dnsConn interface for RFC 1035's
73 // "TCP usage" transport mechanism. Conn is a stream-oriented connection,
74 // such as a *TCPConn.
76 Conn
77 }
83 }
88 }
93 }
97 }
101 }
105 }
108 }
110 }
112 // exchange sends a query on the connection and hopes for a response.
113 func (r *Resolver) exchange(ctx context.Context, server, name string, qtype uint16, timeout time.Duration) (*dnsMsg, error) {
117 },
120 },
121 }
123 // TODO(mdempsky): Refactor so defers from UDP-based
124 // exchanges happen before TCP-based exchange.
132 }
136 }
141 }
143 continue
144 }
146 }
148 }
150 // Do a lookup for a single name, which must be rooted
151 // (otherwise answer will not find the answers).
152 func (r *Resolver) tryOneName(ctx context.Context, cfg *dnsConfig, name string, qtype uint16) (string, []dnsRR, error) {
153 var lastErr error
167 }
170 }
171 // Set IsTemporary for socket-level errors. Note that this flag
172 // may also be used to indicate a SERVFAIL response.
175 }
176 continue
177 }
178 // libresolv continues to the next server when it receives
179 // an invalid referral response. See golang.org/issue/15434.
180 if msg.rcode == dnsRcodeSuccess && !msg.authoritative && !msg.recursion_available && len(msg.answer) == 0 && len(msg.extra) == 0 {
182 continue
183 }
185 // If answer errored for rcodes dnsRcodeSuccess or dnsRcodeNameError,
186 // it means the response in msg was not useful and trying another
187 // server probably won't help. Return now in those cases.
188 // TODO: indicate this in a more obvious way, such as a field on DNSError?
191 }
192 lastErr = err
193 }
194 }
196 }
198 // addrRecordList converts and returns a list of IP addresses from DNS
199 // address records (both A and AAAA). Other record types are ignored.
205 addrs = append(addrs, IPAddr{IP: IPv4(byte(rr.A>>24), byte(rr.A>>16), byte(rr.A>>8), byte(rr.A))})
210 }
211 }
212 return addrs
213 }
215 // A resolverConfig represents a DNS stub resolver configuration.
219 // ch is used as a semaphore that only allows one lookup at a
220 // time to recheck resolv.conf.
226 }
228 var resolvConf resolverConfig
230 // init initializes conf and is only called via conf.initOnce.
232 // Set dnsConfig and lastChecked so we don't parse
233 // resolv.conf twice the first time.
237 }
240 // Prepare ch so that only one update of resolverConfig may
241 // run at once.
243 }
245 // tryUpdate tries to update conf with the named resolv.conf file.
246 // The name variable only exists for testing. It is otherwise always
247 // "/etc/resolv.conf".
251 // Ensure only one update at a time checks resolv.conf.
253 return
254 }
259 return
260 }
266 }
268 return
269 }
275 }
283 }
284 }
288 }
290 func (r *Resolver) lookup(ctx context.Context, name string, qtype uint16) (cname string, rrs []dnsRR, err error) {
292 // We used to use "invalid domain name" as the error,
293 // but that is a detail of the specific lookup mechanism.
294 // Other lookups might allow broader name syntax
295 // (for example Multicast DNS allows UTF-8; see RFC 6762).
296 // For consistency with libc resolvers, report no such host.
298 }
306 break
307 }
309 // If we hit a temporary error with StrictErrors enabled,
310 // stop immediately instead of trying more names.
311 break
312 }
313 }
315 // Show original name passed to lookup, not suffixed one.
316 // In general we might have tried many suffixes; showing
317 // just one is misleading. See also golang.org/issue/6324.
319 }
320 return
321 }
323 // avoidDNS reports whether this is a hostname for which we should not
324 // use DNS. Currently this includes only .onion, per RFC 7686. See
325 // golang.org/issue/13705. Does not cover .local names (RFC 6762),
326 // see golang.org/issue/16739.
330 }
333 }
335 }
337 // nameList returns a list of names for sequential DNS queries.
341 }
343 // Check name length (see isDomainName).
348 }
350 // If name is rooted (trailing dot), try only that name.
353 }
357 l++
359 // Build list of search choices.
361 // If name has enough dots, try unsuffixed first.
364 }
365 // Try suffixes that are not too long (see isDomainName).
369 }
370 }
371 // Try unsuffixed, if not tried first above.
374 }
375 return names
376 }
378 // hostLookupOrder specifies the order of LookupHost lookup strategies.
379 // It is basically a simplified representation of nsswitch.conf.
380 // "files" means /etc/hosts.
384 // hostLookupCgo means defer to cgo.
386 hostLookupFilesDNS // files first
387 hostLookupDNSFiles // dns first
388 hostLookupFiles // only files
389 hostLookupDNS // only DNS
390 )
398 }
402 return s
403 }
405 }
407 // goLookupHost is the native Go implementation of LookupHost.
408 // Used only if cgoLookupHost refuses to handle the request
409 // (that is, only if cgoLookupHost is the stub in cgo_stub.go).
410 // Normally we let cgo use the C library resolver instead of
411 // depending on our lookup code, so that Go and C get the same
412 // answers.
415 }
417 func (r *Resolver) goLookupHostOrder(ctx context.Context, name string, order hostLookupOrder) (addrs []string, err error) {
419 // Use entries from /etc/hosts if they match.
422 return
423 }
424 }
427 return
428 }
432 }
433 return
434 }
436 // lookup entries from /etc/hosts
443 }
444 }
446 return
447 }
449 // goLookupIP is the native Go implementation of LookupIP.
450 // The libc versions are in cgo_*.go.
454 return
455 }
457 func (r *Resolver) goLookupIPCNAMEOrder(ctx context.Context, name string, order hostLookupOrder) (addrs []IPAddr, cname string, err error) {
462 }
463 }
465 // See comment in func lookup above about use of errNoSuchHost.
467 }
473 cname string
474 rrs []dnsRR
475 error
476 }
479 var lastErr error
486 }
489 racer := <-lane
492 // This error will abort the nameList loop.
496 // Prefer error for original name.
498 }
499 continue
500 }
504 }
505 }
507 // If either family hit an error with StrictErrors enabled,
508 // discard all addresses. This ensures that network flakiness
509 // cannot turn a dualstack hostname IPv4/IPv6-only.
511 break
512 }
514 break
515 }
516 }
518 // Show original name passed to lookup, not suffixed one.
519 // In general we might have tried many suffixes; showing
520 // just one is misleading. See also golang.org/issue/6324.
522 }
527 }
530 }
531 }
533 }
535 // goLookupCNAME is the native Go (non-cgo) implementation of LookupCNAME.
539 return
540 }
542 // goLookupPTR is the native Go implementation of LookupAddr.
543 // Used only if cgoLookupPTR refuses to handle the request (that is,
544 // only if cgoLookupPTR is the stub in cgo_stub.go).
545 // Normally we let cgo use the C library resolver instead of depending
546 // on our lookup code, so that Go and C get the same answers.
551 }
555 }
559 }
563 }
565 }