mirrors/dnscrypt-proxy
1
0
Fork 0
mirror of https://github.com/DNSCrypt/dnscrypt-proxy.git synced 2025-03-04 02:14:40 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

More heuristics to detect valid plain DNS responses

Browse source
This commit is contained in:
Frank Denis 2025-01-11 15:29:49 +01:00
parent f332394c4b
commit 6dd22becac
1 changed files with 21 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
dnscrypt-proxy/serversInfo.go
View file

@ -620,7 +620,10 @@ func fetchDNSCryptServerInfo(proxy *Proxy, name string, stamp stamps.ServerStamp
&name, &name,
false, false,
) )
if err == nil { if err == nil && len(msg.Question) > 0 {
question := msg.Question[0]
if question.Qtype == query.Question[0].Qtype && strings.EqualFold(question.Name, query.Question[0].Name) {
dlog.Debugf("[%s] also serves plaintext DNS", name)
if msg.Id != 0xcafe { if msg.Id != 0xcafe {
dlog.Infof("[%s] handling of DNS message identifiers is broken", name) dlog.Infof("[%s] handling of DNS message identifiers is broken", name)
} }
@ -643,6 +646,7 @@ func fetchDNSCryptServerInfo(proxy *Proxy, name string, stamp stamps.ServerStamp
} }
} }
} }
}
return ServerInfo{ return ServerInfo{
Proto: stamps.StampProtoTypeDNSCrypt, Proto: stamps.StampProtoTypeDNSCrypt,