dnsruby 1.43 → 1.44
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- data/Rakefile +22 -0
- data/lib/Dnsruby/Config.rb +1 -1
- data/lib/Dnsruby/PacketSender.rb +17 -13
- data/lib/Dnsruby/Resolver.rb +4 -2
- data/lib/Dnsruby/iana_ports.rb +5224 -5224
- data/lib/Dnsruby/resource/NSEC.rb +6 -3
- data/lib/Dnsruby/resource/NSEC3.rb +7 -5
- data/lib/Dnsruby/resource/OPT.rb +0 -1
- data/lib/Dnsruby/resource/RRSIG.rb +6 -2
- data/lib/Dnsruby/select_thread.rb +1 -1
- data/lib/Dnsruby/zone_reader.rb +1 -1
- data/lib/dnsruby.rb +5 -1
- data/test/tc_nsec3.rb +9 -0
- data/test/tc_rrsig.rb +2 -2
- metadata +3 -2
|
@@ -79,13 +79,15 @@ module Dnsruby
|
|
|
79
79
|
# from the wire, already decoded
|
|
80
80
|
types =t
|
|
81
81
|
elsif (t.instance_of?String)
|
|
82
|
-
if
|
|
83
|
-
t = t
|
|
82
|
+
if (index = t.index";")
|
|
83
|
+
t = t[0, index]
|
|
84
|
+
end
|
|
85
|
+
if (index = t.index")")
|
|
86
|
+
t = t[0, index]
|
|
84
87
|
end
|
|
85
88
|
# List of mnemonics
|
|
86
89
|
types=[]
|
|
87
90
|
mnemonics = t.split(" ")
|
|
88
|
-
mnemonics.pop
|
|
89
91
|
mnemonics.each do |m|
|
|
90
92
|
type = Types.new(m)
|
|
91
93
|
types.push(type)
|
|
@@ -261,6 +263,7 @@ module Dnsruby
|
|
|
261
263
|
len = len + data[1].length
|
|
262
264
|
end
|
|
263
265
|
self.types=(input[len, input.length-len])
|
|
266
|
+
@types = NSEC.get_types(input[len, input.length-len])
|
|
264
267
|
end
|
|
265
268
|
end
|
|
266
269
|
|
|
@@ -131,10 +131,15 @@ module Dnsruby
|
|
|
131
131
|
|
|
132
132
|
n = Name.create(name)
|
|
133
133
|
out = n.canonical
|
|
134
|
+
begin
|
|
134
135
|
(0..iterations).each {
|
|
135
136
|
out =NSEC3.h(out + salt, hash_alg);
|
|
136
137
|
}
|
|
137
138
|
return Base32.encode32hex(out).downcase
|
|
139
|
+
rescue ArgumentError
|
|
140
|
+
TheLog.error("Unknown hash algorithm #{hash_alg} used for NSEC3 hash")
|
|
141
|
+
return "Unknown NSEC3 hash algorithm"
|
|
142
|
+
end
|
|
138
143
|
end
|
|
139
144
|
|
|
140
145
|
def h(x) # :nodoc: all
|
|
@@ -142,11 +147,10 @@ module Dnsruby
|
|
|
142
147
|
end
|
|
143
148
|
|
|
144
149
|
def NSEC3.h(x, hash_alg) # :nodoc: all
|
|
145
|
-
if Nsec3HashAlgorithms.SHA_1 == hash_alg
|
|
150
|
+
if (Nsec3HashAlgorithms.SHA_1 == hash_alg)
|
|
146
151
|
return Digest::SHA1.digest(x)
|
|
147
152
|
end
|
|
148
|
-
|
|
149
|
-
return "Unknown NSEC3 hash algorithm"
|
|
153
|
+
raise ArgumentError.new("Unknown hash algorithm")
|
|
150
154
|
end
|
|
151
155
|
|
|
152
156
|
def hash_alg=(a)
|
|
@@ -264,9 +268,7 @@ module Dnsruby
|
|
|
264
268
|
self.hash_alg=(data[0]).to_i
|
|
265
269
|
self.flags=(data[1]).to_i
|
|
266
270
|
self.iterations=(data[2]).to_i
|
|
267
|
-
# self.salt=NSEC3.decode_salt(data[3])
|
|
268
271
|
self.salt=(data[3])
|
|
269
|
-
# self.salt_length=(@salt.length)
|
|
270
272
|
|
|
271
273
|
len = data[0].length + data[1].length + data[2].length + data[3].length + 4
|
|
272
274
|
# There may or may not be brackets around next_hashed
|
data/lib/Dnsruby/resource/OPT.rb
CHANGED
|
@@ -179,8 +179,8 @@ module Dnsruby
|
|
|
179
179
|
self.signature=buf.unpack("m*")[0]
|
|
180
180
|
end
|
|
181
181
|
end
|
|
182
|
-
|
|
183
|
-
def get_time(input)
|
|
182
|
+
|
|
183
|
+
def RRSIG.get_time(input)
|
|
184
184
|
if (input.kind_of?Fixnum)
|
|
185
185
|
return input
|
|
186
186
|
end
|
|
@@ -217,6 +217,10 @@ module Dnsruby
|
|
|
217
217
|
end
|
|
218
218
|
end
|
|
219
219
|
|
|
220
|
+
def get_time(input)
|
|
221
|
+
return RRSIG.get_time(input)
|
|
222
|
+
end
|
|
223
|
+
|
|
220
224
|
def format_time(time)
|
|
221
225
|
return Time.at(time).gmtime.strftime("%Y%m%d%H%M%S")
|
|
222
226
|
end
|
|
@@ -276,7 +276,7 @@ module Dnsruby
|
|
|
276
276
|
if (ret = res.check_response(msg, bytes, query, client_queue, id, tcp))
|
|
277
277
|
remove_id(id)
|
|
278
278
|
exception = msg.get_exception
|
|
279
|
-
if (ret.
|
|
279
|
+
if (ret.kind_of?TsigError)
|
|
280
280
|
exception = ret
|
|
281
281
|
end
|
|
282
282
|
Dnsruby.log.debug{"Pushing response to client queue"}
|
data/lib/Dnsruby/zone_reader.rb
CHANGED
|
@@ -68,7 +68,7 @@ module Dnsruby
|
|
|
68
68
|
# Process the next line of the file
|
|
69
69
|
# Returns a string representing the normalised line.
|
|
70
70
|
def process_line(line, do_prefix_hack = false)
|
|
71
|
-
return nil if (line
|
|
71
|
+
return nil if (line[0,1] == ";")
|
|
72
72
|
return nil if (line.strip.length == 0)
|
|
73
73
|
return nil if (!line || (line.length == 0))
|
|
74
74
|
@in_quoted_section = false if !@continued_line
|
data/lib/dnsruby.rb
CHANGED
|
@@ -104,7 +104,7 @@ require 'Dnsruby/TheLog'
|
|
|
104
104
|
module Dnsruby
|
|
105
105
|
|
|
106
106
|
# @TODO@ Remember to update version in dnsruby.gemspec!
|
|
107
|
-
VERSION = 1.
|
|
107
|
+
VERSION = 1.44
|
|
108
108
|
def Dnsruby.version
|
|
109
109
|
return VERSION
|
|
110
110
|
end
|
|
@@ -462,6 +462,10 @@ module Dnsruby
|
|
|
462
462
|
class TsigError < OtherResolvError
|
|
463
463
|
end
|
|
464
464
|
|
|
465
|
+
# Sent a signed packet, got an unsigned response
|
|
466
|
+
class TsigNotSignedResponseError < TsigError
|
|
467
|
+
end
|
|
468
|
+
|
|
465
469
|
#Indicates an error in decoding an incoming DNS message
|
|
466
470
|
class DecodeError < ResolvError
|
|
467
471
|
end
|
data/test/tc_nsec3.rb
CHANGED
|
@@ -127,6 +127,15 @@ class Nsec3Test < Test::Unit::TestCase
|
|
|
127
127
|
assert(nsec.to_s.include?(Types.TYPE65534.string))
|
|
128
128
|
end
|
|
129
129
|
|
|
130
|
+
def test_types
|
|
131
|
+
rr = RR.create("tfkha3ph6qs16qu3oqtmnfc5tbckpjl7.archi.amt. 1209600 IN NSEC3 1 1 5 - 1tmmto81uc71moj44cli3m6avs5l44l3 NSEC3 CNAME RRSIG ; flags: optout")
|
|
132
|
+
assert(rr.types.include?Types::NSEC3)
|
|
133
|
+
assert(rr.types.include?Types::CNAME)
|
|
134
|
+
assert(rr.types.include?Types::RRSIG)
|
|
135
|
+
rr = RR.create("929p027vb26s89h6fv5j7hmsis4tcr1p.tjeb.nl. 3600 IN NSEC3 1 0 5 beef 9rs4nbe7128ap5i6v196ge2iag5b7rcq A AAAA RRSIG
|
|
136
|
+
")
|
|
137
|
+
end
|
|
138
|
+
|
|
130
139
|
def test_rfc_examples
|
|
131
140
|
print "IMPLEMENT NSEC3 validation!\n"
|
|
132
141
|
return
|
data/test/tc_rrsig.rb
CHANGED
|
@@ -32,8 +32,8 @@ class RrsigTest < Test::Unit::TestCase
|
|
|
32
32
|
assert_equal(Dnsruby::Algorithms::RSASHA1, rrsig.algorithm)
|
|
33
33
|
assert_equal(3, rrsig.labels)
|
|
34
34
|
assert_equal(86400, rrsig.original_ttl)
|
|
35
|
-
assert_equal(Time.
|
|
36
|
-
assert_equal(Time.
|
|
35
|
+
assert_equal(Time.gm(2003,03,22,17,31, 03).to_i, rrsig.expiration)
|
|
36
|
+
assert_equal(Time.gm(2003,02,20,17,31,03).to_i, rrsig.inception)
|
|
37
37
|
assert_equal(2642, rrsig.key_tag)
|
|
38
38
|
assert_equal(Dnsruby::Name.create("example.com."), rrsig.signers_name)
|
|
39
39
|
assert_equal("oJB1W6WNGv+ldvQ3WDG0MQkg5IEhjRip8WTr" +
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: dnsruby
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: "1.
|
|
4
|
+
version: "1.44"
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- AlexD
|
|
@@ -9,7 +9,7 @@ autorequire: dnsruby
|
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
11
|
|
|
12
|
-
date: 2010-
|
|
12
|
+
date: 2010-03-03 00:00:00 +00:00
|
|
13
13
|
default_executable:
|
|
14
14
|
dependencies: []
|
|
15
15
|
|
|
@@ -25,6 +25,7 @@ extra_rdoc_files:
|
|
|
25
25
|
- README
|
|
26
26
|
- EVENTMACHINE
|
|
27
27
|
files:
|
|
28
|
+
- Rakefile
|
|
28
29
|
- test/custom.txt
|
|
29
30
|
- test/resolv.conf
|
|
30
31
|
- test/tc_axfr.rb
|