use std::fs::File; use std::io::Read; use std::net::Ipv4Addr; use std::net::Ipv6Addr; type Error = Box; type Result = std::result::Result; pub struct BytePacketBuffer { pub buf: [u8; 512], pub pos: usize, } impl BytePacketBuffer { /// This gives us a fresh buffer for holding the packet contents, and a /// field for keeping track of where we are. pub fn new() -> BytePacketBuffer { BytePacketBuffer { buf: [0; 512], pos: 0, } } /// Current position within buffer fn pos(&self) -> usize { self.pos } /// Step the buffer position forward a specific number of steps fn step(&mut self, steps: usize) -> Result<()> { self.pos += steps; Ok(()) } /// Change the buffer position fn seek(&mut self, pos: usize) -> Result<()> { self.pos = pos; Ok(()) } /// Read a single byte and move the position one step forward fn read(&mut self) -> Result { if self.pos >= 512 { return Err("End of buffer".into()); } let res = self.buf[self.pos]; self.pos += 1; Ok(res) } /// Get a single byte, without changing the buffer position fn get(&mut self, pos: usize) -> Result { if pos >= 512 { return Err("End of buffer".into()); } Ok(self.buf[pos]) } /// Get a range of bytes fn get_range(&mut self, start: usize, len: usize) -> Result<&[u8]> { if start + len >= 512 { return Err("End of buffer".into()); } Ok(&self.buf[start..start + len as usize]) } /// Read two bytes, stepping two steps forward fn read_u16(&mut self) -> Result { let res = ((self.read()? as u16) << 8) | (self.read()? as u16); Ok(res) } /// Read four bytes, stepping four steps forward fn read_u32(&mut self) -> Result { let res = ((self.read()? as u32) << 24) | ((self.read()? as u32) << 16) | ((self.read()? as u32) << 8) | ((self.read()? as u32) << 0); Ok(res) } /// Read a qname /// /// The tricky part: Reading domain names, taking labels into consideration. /// Will take something like [3]www[6]google[3]com[0] and append /// www.google.com to outstr. fn read_qname(&mut self, outstr: &mut String) -> Result<()> { // Since we might encounter jumps, we'll keep track of our position // locally as opposed to using the position within the struct. This // allows us to move the shared position to a point past our current // qname, while keeping track of our progress on the current qname // using this variable. let mut pos = self.pos(); // track whether or not we've jumped let mut jumped = false; let max_jumps = 5; let mut jumps_performed = 0; // Our delimiter which we append for each label. Since we don't want a // dot at the beginning of the domain name we'll leave it empty for now // and set it to "." at the end of the first iteration. let mut delim = ""; loop { // Dns Packets are untrusted data, so we need to be paranoid. Someone // can craft a packet with a cycle in the jump instructions. This guards // against such packets. if jumps_performed > max_jumps { return Err(format!("Limit of {} jumps exceeded", max_jumps).into()); } // At this point, we're always at the beginning of a label. Recall // that labels start with a length byte. let len = self.get(pos)?; // If len has the two most significant bit are set, it represents a // jump to some other offset in the packet: if (len & 0xC0) == 0xC0 { // Update the buffer position to a point past the current // label. We don't need to touch it any further. if !jumped { self.seek(pos + 2)?; } // Read another byte, calculate offset and perform the jump by // updating our local position variable let b2 = self.get(pos + 1)? as u16; let offset = (((len as u16) ^ 0xC0) << 8) | b2; pos = offset as usize; // Indicate that a jump was performed. jumped = true; jumps_performed += 1; continue; } // The base scenario, where we're reading a single label and // appending it to the output: else { // Move a single byte forward to move past the length byte. pos += 1; // Domain names are terminated by an empty label of length 0, // so if the length is zero we're done. if len == 0 { break; } // Append the delimiter to our output buffer first. outstr.push_str(delim); // Extract the actual ASCII bytes for this label and append them // to the output buffer. let str_buffer = self.get_range(pos, len as usize)?; outstr.push_str(&String::from_utf8_lossy(str_buffer).to_lowercase()); delim = "."; // Move forward the full length of the label. pos += len as usize; } } if !jumped { self.seek(pos)?; } Ok(()) } fn write(&mut self, val: u8) -> Result<()> { if self.pos >= 512 { return Err("End of buffer".into()); } self.buf[self.pos] = val; self.pos += 1; Ok(()) } fn write_u8(&mut self, val: u8) -> Result<()> { self.write(val)?; Ok(()) } fn write_u16(&mut self, val: u16) -> Result<()> { self.write((val >> 8) as u8)?; self.write((val & 0xFF) as u8)?; Ok(()) } fn write_u32(&mut self, val: u32) -> Result<()> { self.write(((val >> 24) & 0xFF) as u8)?; self.write(((val >> 16) & 0xFF) as u8)?; self.write(((val >> 8) & 0xFF) as u8)?; self.write(((val >> 0) & 0xFF) as u8)?; Ok(()) } fn write_qname(&mut self, qname: &str) -> Result<()> { for label in qname.split('.') { let len = label.len(); if len > 0x3f { return Err("Single label exceeds 63 characters of length".into()); } self.write_u8(len as u8)?; for b in label.as_bytes() { self.write_u8(*b)?; } } self.write_u8(0)?; Ok(()) } fn set(&mut self, pos: usize, val: u8) -> Result<()> { self.buf[pos] = val; Ok(()) } fn set_u16(&mut self, pos: usize, val: u16) -> Result<()> { self.set(pos, (val >> 8) as u8)?; self.set(pos + 1, (val & 0xFF) as u8)?; Ok(()) } } #[derive(Copy, Clone, Debug, PartialEq, Eq)] pub enum ResultCode { NOERROR = 0, FORMERR = 1, SERVFAIL = 2, NXDOMAIN = 3, NOTIMP = 4, REFUSED = 5, } impl ResultCode { pub fn from_num(num: u8) -> ResultCode { match num { 1 => ResultCode::FORMERR, 2 => ResultCode::SERVFAIL, 3 => ResultCode::NXDOMAIN, 4 => ResultCode::NOTIMP, 5 => ResultCode::REFUSED, 0 | _ => ResultCode::NOERROR, } } } #[derive(Clone, Debug)] pub struct DnsHeader { pub id: u16, // 16 bits pub recursion_desired: bool, // 1 bit pub truncated_message: bool, // 1 bit pub authoritative_answer: bool, // 1 bit pub opcode: u8, // 4 bits pub response: bool, // 1 bit pub rescode: ResultCode, // 4 bits pub checking_disabled: bool, // 1 bit pub authed_data: bool, // 1 bit pub z: bool, // 1 bit pub recursion_available: bool, // 1 bit pub questions: u16, // 16 bits pub answers: u16, // 16 bits pub authoritative_entries: u16, // 16 bits pub resource_entries: u16, // 16 bits } impl DnsHeader { pub fn new() -> DnsHeader { DnsHeader { id: 0, recursion_desired: false, truncated_message: false, authoritative_answer: false, opcode: 0, response: false, rescode: ResultCode::NOERROR, checking_disabled: false, authed_data: false, z: false, recursion_available: false, questions: 0, answers: 0, authoritative_entries: 0, resource_entries: 0, } } pub fn read(&mut self, buffer: &mut BytePacketBuffer) -> Result<()> { self.id = buffer.read_u16()?; let flags = buffer.read_u16()?; let a = (flags >> 8) as u8; let b = (flags & 0xFF) as u8; self.recursion_desired = (a & (1 << 0)) > 0; self.truncated_message = (a & (1 << 1)) > 0; self.authoritative_answer = (a & (1 << 2)) > 0; self.opcode = (a >> 3) & 0x0F; self.response = (a & (1 << 7)) > 0; self.rescode = ResultCode::from_num(b & 0x0F); self.checking_disabled = (b & (1 << 4)) > 0; self.authed_data = (b & (1 << 5)) > 0; self.z = (b & (1 << 6)) > 0; self.recursion_available = (b & (1 << 7)) > 0; self.questions = buffer.read_u16()?; self.answers = buffer.read_u16()?; self.authoritative_entries = buffer.read_u16()?; self.resource_entries = buffer.read_u16()?; // Return the constant header size Ok(()) } pub fn write(&self, buffer: &mut BytePacketBuffer) -> Result<()> { buffer.write_u16(self.id)?; buffer.write_u8( (self.recursion_desired as u8) | ((self.truncated_message as u8) << 1) | ((self.authoritative_answer as u8) << 2) | (self.opcode << 3) | ((self.response as u8) << 7) as u8, )?; buffer.write_u8( (self.rescode as u8) | ((self.checking_disabled as u8) << 4) | ((self.authed_data as u8) << 5) | ((self.z as u8) << 6) | ((self.recursion_available as u8) << 7), )?; buffer.write_u16(self.questions)?; buffer.write_u16(self.answers)?; buffer.write_u16(self.authoritative_entries)?; buffer.write_u16(self.resource_entries)?; Ok(()) } } #[derive(PartialEq, Eq, Debug, Clone, Hash, Copy)] pub enum QueryType { UNKNOWN(u16), A, // 1 NS, // 2 CNAME, // 5 MX, // 15 AAAA, // 28 } impl QueryType { pub fn to_num(&self) -> u16 { match *self { QueryType::UNKNOWN(x) => x, QueryType::A => 1, QueryType::NS => 2, QueryType::CNAME => 5, QueryType::MX => 15, QueryType::AAAA => 28, } } pub fn from_num(num: u16) -> QueryType { match num { 1 => QueryType::A, 2 => QueryType::NS, 5 => QueryType::CNAME, 15 => QueryType::MX, 28 => QueryType::AAAA, _ => QueryType::UNKNOWN(num), } } } #[derive(Debug, Clone, PartialEq, Eq)] pub struct DnsQuestion { pub name: String, pub qtype: QueryType, } impl DnsQuestion { pub fn new(name: String, qtype: QueryType) -> DnsQuestion { DnsQuestion { name: name, qtype: qtype, } } pub fn read(&mut self, buffer: &mut BytePacketBuffer) -> Result<()> { buffer.read_qname(&mut self.name)?; self.qtype = QueryType::from_num(buffer.read_u16()?); // qtype let _ = buffer.read_u16()?; // class Ok(()) } pub fn write(&self, buffer: &mut BytePacketBuffer) -> Result<()> { buffer.write_qname(&self.name)?; let typenum = self.qtype.to_num(); buffer.write_u16(typenum)?; buffer.write_u16(1)?; Ok(()) } } #[derive(Debug, Clone, PartialEq, Eq, Hash, PartialOrd, Ord)] #[allow(dead_code)] pub enum DnsRecord { UNKNOWN { domain: String, qtype: u16, data_len: u16, ttl: u32, }, // 0 A { domain: String, addr: Ipv4Addr, ttl: u32, }, // 1 NS { domain: String, host: String, ttl: u32, }, // 2 CNAME { domain: String, host: String, ttl: u32, }, // 5 MX { domain: String, priority: u16, host: String, ttl: u32, }, // 15 AAAA { domain: String, addr: Ipv6Addr, ttl: u32, }, // 28 } impl DnsRecord { pub fn read(buffer: &mut BytePacketBuffer) -> Result { let mut domain = String::new(); buffer.read_qname(&mut domain)?; let qtype_num = buffer.read_u16()?; let qtype = QueryType::from_num(qtype_num); let _ = buffer.read_u16()?; let ttl = buffer.read_u32()?; let data_len = buffer.read_u16()?; match qtype { QueryType::A => { let raw_addr = buffer.read_u32()?; let addr = Ipv4Addr::new( ((raw_addr >> 24) & 0xFF) as u8, ((raw_addr >> 16) & 0xFF) as u8, ((raw_addr >> 8) & 0xFF) as u8, ((raw_addr >> 0) & 0xFF) as u8, ); Ok(DnsRecord::A { domain: domain, addr: addr, ttl: ttl, }) } QueryType::AAAA => { let raw_addr1 = buffer.read_u32()?; let raw_addr2 = buffer.read_u32()?; let raw_addr3 = buffer.read_u32()?; let raw_addr4 = buffer.read_u32()?; let addr = Ipv6Addr::new( ((raw_addr1 >> 16) & 0xFFFF) as u16, ((raw_addr1 >> 0) & 0xFFFF) as u16, ((raw_addr2 >> 16) & 0xFFFF) as u16, ((raw_addr2 >> 0) & 0xFFFF) as u16, ((raw_addr3 >> 16) & 0xFFFF) as u16, ((raw_addr3 >> 0) & 0xFFFF) as u16, ((raw_addr4 >> 16) & 0xFFFF) as u16, ((raw_addr4 >> 0) & 0xFFFF) as u16, ); Ok(DnsRecord::AAAA { domain: domain, addr: addr, ttl: ttl, }) } QueryType::NS => { let mut ns = String::new(); buffer.read_qname(&mut ns)?; Ok(DnsRecord::NS { domain: domain, host: ns, ttl: ttl, }) } QueryType::CNAME => { let mut cname = String::new(); buffer.read_qname(&mut cname)?; Ok(DnsRecord::CNAME { domain: domain, host: cname, ttl: ttl, }) } QueryType::MX => { let priority = buffer.read_u16()?; let mut mx = String::new(); buffer.read_qname(&mut mx)?; Ok(DnsRecord::MX { domain: domain, priority: priority, host: mx, ttl: ttl, }) } QueryType::UNKNOWN(_) => { buffer.step(data_len as usize)?; Ok(DnsRecord::UNKNOWN { domain: domain, qtype: qtype_num, data_len: data_len, ttl: ttl, }) } } } pub fn write(&self, buffer: &mut BytePacketBuffer) -> Result { let start_pos = buffer.pos(); match *self { DnsRecord::A { ref domain, ref addr, ttl, } => { buffer.write_qname(domain)?; buffer.write_u16(QueryType::A.to_num())?; buffer.write_u16(1)?; buffer.write_u32(ttl)?; buffer.write_u16(4)?; let octets = addr.octets(); buffer.write_u8(octets[0])?; buffer.write_u8(octets[1])?; buffer.write_u8(octets[2])?; buffer.write_u8(octets[3])?; } DnsRecord::NS { ref domain, ref host, ttl, } => { buffer.write_qname(domain)?; buffer.write_u16(QueryType::NS.to_num())?; buffer.write_u16(1)?; buffer.write_u32(ttl)?; let pos = buffer.pos(); buffer.write_u16(0)?; buffer.write_qname(host)?; let size = buffer.pos() - (pos + 2); buffer.set_u16(pos, size as u16)?; } DnsRecord::CNAME { ref domain, ref host, ttl, } => { buffer.write_qname(domain)?; buffer.write_u16(QueryType::CNAME.to_num())?; buffer.write_u16(1)?; buffer.write_u32(ttl)?; let pos = buffer.pos(); buffer.write_u16(0)?; buffer.write_qname(host)?; let size = buffer.pos() - (pos + 2); buffer.set_u16(pos, size as u16)?; } DnsRecord::MX { ref domain, priority, ref host, ttl, } => { buffer.write_qname(domain)?; buffer.write_u16(QueryType::MX.to_num())?; buffer.write_u16(1)?; buffer.write_u32(ttl)?; let pos = buffer.pos(); buffer.write_u16(0)?; buffer.write_u16(priority)?; buffer.write_qname(host)?; let size = buffer.pos() - (pos + 2); buffer.set_u16(pos, size as u16)?; } DnsRecord::AAAA { ref domain, ref addr, ttl, } => { buffer.write_qname(domain)?; buffer.write_u16(QueryType::AAAA.to_num())?; buffer.write_u16(1)?; buffer.write_u32(ttl)?; buffer.write_u16(16)?; for octet in &addr.segments() { buffer.write_u16(*octet)?; } } DnsRecord::UNKNOWN { .. } => { println!("Skipping record: {:?}", self); } } Ok(buffer.pos() - start_pos) } } #[derive(Clone, Debug)] pub struct DnsPacket { pub header: DnsHeader, pub questions: Vec, pub answers: Vec, pub authorities: Vec, pub resources: Vec, } impl DnsPacket { pub fn new() -> DnsPacket { DnsPacket { header: DnsHeader::new(), questions: Vec::new(), answers: Vec::new(), authorities: Vec::new(), resources: Vec::new(), } } pub fn from_buffer(buffer: &mut BytePacketBuffer) -> Result { let mut result = DnsPacket::new(); result.header.read(buffer)?; for _ in 0..result.header.questions { let mut question = DnsQuestion::new("".to_string(), QueryType::UNKNOWN(0)); question.read(buffer)?; result.questions.push(question); } for _ in 0..result.header.answers { let rec = DnsRecord::read(buffer)?; result.answers.push(rec); } for _ in 0..result.header.authoritative_entries { let rec = DnsRecord::read(buffer)?; result.authorities.push(rec); } for _ in 0..result.header.resource_entries { let rec = DnsRecord::read(buffer)?; result.resources.push(rec); } Ok(result) } pub fn write(&mut self, buffer: &mut BytePacketBuffer) -> Result<()> { self.header.questions = self.questions.len() as u16; self.header.answers = self.answers.len() as u16; self.header.authoritative_entries = self.authorities.len() as u16; self.header.resource_entries = self.resources.len() as u16; self.header.write(buffer)?; for question in &self.questions { question.write(buffer)?; } for rec in &self.answers { rec.write(buffer)?; } for rec in &self.authorities { rec.write(buffer)?; } for rec in &self.resources { rec.write(buffer)?; } Ok(()) } pub fn display(&self) { println!("{:#?}", self.header); for q in &self.questions { println!("{:#?}", q); } for rec in &self.answers { println!("{:#?}", rec); } for rec in &self.authorities { println!("{:#?}", rec); } for rec in &self.resources { println!("{:#?}", rec); } } } /*fn main() -> Result<()> { let mut f = File::open("response_packet.txt")?; let mut buffer = BytePacketBuffer::new(); f.read(&mut buffer.buf)?; let packet = DnsPacket::from_buffer(&mut buffer)?; println!("{:#?}", packet.header); for q in packet.questions { println!("{:#?}", q); } for rec in packet.answers { println!("{:#?}", rec); } for rec in packet.authorities { println!("{:#?}", rec); } for rec in packet.resources { println!("{:#?}", rec); } Ok(()) }*/ use std::net::UdpSocket; fn main() -> std::io::Result<()> { let socket = UdpSocket::bind("0.0.0.0:53")?; loop { let mut buffer = BytePacketBuffer::new(); let (number_of_bytes, src_addr) = socket.recv_from(&mut buffer.buf)?; print!("received: {} from {} \n", number_of_bytes, src_addr); let packet = DnsPacket::from_buffer(&mut buffer).unwrap(); packet.display(); let mut resp = DnsPacket::new(); resp.header.id = packet.header.id; resp.header.authoritative_answer = true; resp.header.response = true; resp.questions = packet.questions; resp.answers.push(DnsRecord::A{domain: "dimescu.ro".to_string(), addr: Ipv4Addr::new(3, 120, 139, 105), ttl: 30}); resp.display(); let mut req_buffer = BytePacketBuffer::new(); resp.write(&mut req_buffer).unwrap(); socket.send_to(&req_buffer.buf[0..req_buffer.pos], src_addr).unwrap(); } Ok(()) }