Actions
Feature #3835
closed
Resolv::DNS: Retry via TCP on truncated UDP response
Feature #3835:
Resolv::DNS: Retry via TCP on truncated UDP response
Status:
Closed
Assignee:
-
Target version:
-
Description
=begin
Resolv::DNS has code implementing DNS queries via TCP, but it is not currently used at all. Furthermore, any truncated responses received via UDP are parsed and intact RRs are used, silently discarding any truncated RRs. E.g.:
$ dig amazon.com TXT
;; Truncated, retrying in TCP mode.
; <<>> DiG 9.6.1-P3 <<>> amazon.com TXT
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1197
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;amazon.com. IN TXT
;; ANSWER SECTION:
amazon.com. 3592 IN TXT "spf2.0/pra ip4:207.171.160.0/19 ip4:87.238.80.0/21 ip4:72.21.193.0/24
ip4:72.21.196.0/22 ip4:72.21.208.0/24 ip4:72.21.205.0/24
ip4:72.21.209.0/24 ip4:194.154.193.200/28 ip4:194.7.41.152/28
ip4:212.123.28.40/32 ip4:203.81.17.0/24 ~all"
amazon.com. 3592 IN TXT "v=spf1 ip4:207.171.160.0/19 ip4:87.238.80.0/21 ip4:72.21.193.0/24
ip4:72.21.196.0/22 ip4:72.21.208.0/24 ip4:72.21.205.0/24
ip4:72.21.209.0/24 ip4:194.154.193.200/28 ip4:194.7.41.152/28
ip4:212.123.28.40/32 ip4:203.81.17.0/24 ~all"
;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Sep 15 20:21:49 2010
;; MSG SIZE rcvd: 516
With an unpatched 1.9.2 Resolv::DNS:
>> pp Resolv::DNS.new.getresources('amazon.com', Resolv::DNS::Resource::IN::TXT); nil
[#<Resolv::DNS::Resource::IN::TXT:0x0000000143b0b0
@strings=
["spf2.0/pra ip4:207.171.160.0/19 ip4:87.238.80.0/21 ip4:72.21.193.0/24 ip4:72.21.196.0/22
ip4:72.21.208.0/24 ip4:72.21.205.0/24 ip4:72.21.209.0/24 ip4:194.154.193.200/28 ip4:194.7.41.152/28
ip4:212.123.28.40/32 ip4:203.81.17.0/24 ~all"],
@ttl=2185>]
=> nil
The attached patch changes Resolv::DNS#each_resource to check UDP responses for truncation and retries via TCP, which is the proper behavior per RFC 1123, section 6.1.3.2 http://tools.ietf.org/html/rfc1123#page-75 and implemented by most resolver libraries.
Effect:
>> pp Resolv::DNS.new.getresources('amazon.com', Resolv::DNS::Resource::IN::TXT); nil
[#<Resolv::DNS::Resource::IN::TXT:0x0000000214adf0
@strings=
["spf2.0/pra ip4:207.171.160.0/19 ip4:87.238.80.0/21 ip4:72.21.193.0/24 ip4:72.21.196.0/22
ip4:72.21.208.0/24 ip4:72.21.205.0/24 ip4:72.21.209.0/24 ip4:194.154.193.200/28 ip4:194.7.41.152/28
ip4:212.123.28.40/32 ip4:203.81.17.0/24 ~all"],
@ttl=2237>,
#<Resolv::DNS::Resource::IN::TXT:0x0000000214a580
@strings=
["v=spf1 ip4:207.171.160.0/19 ip4:87.238.80.0/21 ip4:72.21.193.0/24 ip4:72.21.196.0/22
ip4:72.21.208.0/24 ip4:72.21.205.0/24 ip4:72.21.209.0/24 ip4:194.154.193.200/28 ip4:194.7.41.152/28
ip4:212.123.28.40/32 ip4:203.81.17.0/24 ~all"],
@ttl=2237>]
=> nil
I'm also attaching a patch for 1.8.7 in the hope that it will be merged into 1.8.7, too.
Of course it would be nice to also support EDNS0, but that's beyond what I can deliver right now.
=end
Files
Updated by 
Updated by
Actions