feat: add network DNS resolution, reachability, preflight, and WHOIS/RDAP modules

Author: canaria-computer

README.md

@@ -455,14 +455,14 @@ down-force complete <config-file> --dry-run
    ├─ アクセス情報の自動取得
    ├─ レポートディレクトリ作成（BASE32タイムスタンプ）
    ↓
-2. DNS/IP事前検証（最優先）
+2. DNS/IP事前検証（最優先）✅ **実装済み**: `internal/network/dns.go`, `internal/network/reachability.go`
    ├─ DoH並行クエリ（Quad9/Cloudflare/Google）
    ├─ システムDNS解決
    ├─ 結果比較（改ざん検出/応答がいずれかにでもあれば続行）
    ├─ IPv4/IPv6アドレス取得
    └─ DNS解決失敗 → 終了
    ↓
-3. WHOIS/RDAP事前確認（早期終了判定）
+3. WHOIS/RDAP事前確認（早期終了判定）✅ **実装済み**: `internal/whois/rdap.go`, `internal/whois/whois.go`
    ├─ ドメインWHOIS
    ├─ ドメインRDAP
    ├─ Domain Status確認

go.mod

@@ -6,12 +6,17 @@ toolchain go1.24.11
 
 require (
 	github.com/charmbracelet/huh v0.8.0
+	github.com/miekg/dns v1.1.59
+	github.com/openrdap/rdap v0.9.1
 	github.com/santhosh-tekuri/jsonschema/v5 v5.3.1
+	github.com/tantalor93/doh-go v0.3.0
 	golang.org/x/net v0.47.0
 	gopkg.in/yaml.v3 v3.0.1
 )
 
 require (
+	github.com/alecthomas/kingpin/v2 v2.3.2 // indirect
+	github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 // indirect
 	github.com/atotto/clipboard v0.1.4 // indirect
 	github.com/catppuccin/go v0.3.0 // indirect
 	github.com/charmbracelet/bubbles v0.21.1-0.20250623103423-23b8fd6302d7 // indirect
@@ -20,10 +25,15 @@ require (
 	github.com/dustin/go-humanize v1.0.1 // indirect
 	github.com/erikgeiser/coninput v0.0.0-20211004153227-1c3628e74d0f // indirect
 	github.com/mattn/go-localereader v0.0.1 // indirect
+	github.com/mitchellh/go-homedir v1.1.0 // indirect
 	github.com/mitchellh/hashstructure/v2 v2.0.2 // indirect
 	github.com/muesli/ansi v0.0.0-20230316100256-276c6243b2f6 // indirect
 	github.com/muesli/cancelreader v0.2.2 // indirect
+	github.com/xhit/go-str2duration/v2 v2.1.0 // indirect
+	golang.org/x/crypto v0.44.0 // indirect
+	golang.org/x/mod v0.29.0 // indirect
 	golang.org/x/sync v0.18.0 // indirect
+	golang.org/x/tools v0.38.0 // indirect
 )
 
 require (

go.sum

@@ -1,5 +1,9 @@
 github.com/MakeNowJust/heredoc v1.0.0 h1:cXCdzVdstXyiTqTvfqk9SDHpKNjxuom+DOlyEeQ4pzQ=
 github.com/MakeNowJust/heredoc v1.0.0/go.mod h1:mG5amYoWBHf8vpLOuehzbGGw0EHxpZZ6lCpQ4fNJ8LE=
+github.com/alecthomas/kingpin/v2 v2.3.2 h1:H0aULhgmSzN8xQ3nX1uxtdlTHYoPLu5AhHxWrKI6ocU=
+github.com/alecthomas/kingpin/v2 v2.3.2/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 h1:s6gZFSlWYmbqAuRjVTiNNhvNRfY2Wxp9nhfyel4rklc=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
 github.com/atotto/clipboard v0.1.4 h1:EH0zSVneZPSuFR11BlR9YppQTVDbh5+16AmcJi4g1z4=
 github.com/atotto/clipboard v0.1.4/go.mod h1:ZY9tmq7sm5xIbd9bOK4onWV4S6X0u6GY7Vn0Yu86PYI=
 github.com/aymanbagabas/go-osc52/v2 v2.0.1 h1:HwpRHbFMcZLEVr42D4p7XBqjyuxQH5SMiErDT4WkJ2k=
@@ -41,6 +45,7 @@ github.com/charmbracelet/x/xpty v0.1.2/go.mod h1:XK2Z0id5rtLWcpeNiMYBccNNBrP2IJn
 github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
 github.com/creack/pty v1.1.24 h1:bJrF4RRfyJnbTJqzRLHzcGaZK1NeM5kTC9jGgovnR1s=
 github.com/creack/pty v1.1.24/go.mod h1:08sCNb52WyoAwi2QDyzUCTgcvVFhUzewun7wtTfvcwE=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/disintegration/imaging v1.6.2 h1:w1LecBlG2Lnp8B3jk5zSuNqd7b4DXhcjwek1ei82L+c=
@@ -53,8 +58,12 @@ github.com/go-logfmt/logfmt v0.6.0 h1:wGYYu3uicYdqXVgoYbvnkrPVXkuLM1p1ifugDMEdRi
 github.com/go-logfmt/logfmt v0.6.0/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-rod/rod v0.116.2 h1:A5t2Ky2A+5eD/ZJQr1EfsQSe5rms5Xof/qj296e+ZqA=
 github.com/go-rod/rod v0.116.2/go.mod h1:H+CMO9SCNc2TJ2WfrG+pKhITz57uGNYU43qYHh438Mg=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
+github.com/jarcoal/httpmock v1.3.0 h1:2RJ8GP0IIaWwcC9Fp2BmVi8Kog3v2Hn7VXM3fTd+nuc=
+github.com/jarcoal/httpmock v1.3.0/go.mod h1:3yb8rc4BI7TCBhFY8ng0gjuLKJNquuDNiPaZjnENuYg=
 github.com/lucasb-eyer/go-colorful v1.2.0 h1:1nnpGOrhyZZuNyfu1QjKiUICQ74+3FNCN69Aj6K7nkY=
 github.com/lucasb-eyer/go-colorful v1.2.0/go.mod h1:R4dSotOR9KMtayYi1e77YzuveK+i7ruzyGqttikkLy0=
 github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
@@ -63,6 +72,10 @@ github.com/mattn/go-localereader v0.0.1 h1:ygSAOl7ZXTx4RdPYinUpg6W99U8jWvWi9Ye2J
 github.com/mattn/go-localereader v0.0.1/go.mod h1:8fBrzywKY7BI3czFoHkuzRoWE9C+EiG4R1k4Cjx5p88=
 github.com/mattn/go-runewidth v0.0.16 h1:E5ScNMtiwvlvB5paMFdw9p4kSQzbXFikJ5SQO6TULQc=
 github.com/mattn/go-runewidth v0.0.16/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w=
+github.com/miekg/dns v1.1.59 h1:C9EXc/UToRwKLhK5wKU/I4QVsBUc8kE6MkHBkeypWZs=
+github.com/miekg/dns v1.1.59/go.mod h1:nZpewl5p6IvctfgrckopVx2OlSEHPRO/U4SYkRklrEk=
+github.com/mitchellh/go-homedir v1.1.0 h1:lukF9ziXFxDFPkA1vsr5zpc1XuPDn/wFntq5mG+4E0Y=
+github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
 github.com/mitchellh/hashstructure/v2 v2.0.2/go.mod h1:MG3aRVU/N29oo/V/IhBX8GR/zz4kQkprJgF2EVszyDE=
 github.com/muesli/ansi v0.0.0-20230316100256-276c6243b2f6 h1:ZK8zHtRHOkbHy6Mmr5D264iyp3TiX5OmNcI5cIARiQI=
@@ -71,6 +84,8 @@ github.com/muesli/cancelreader v0.2.2 h1:3I4Kt4BQjOR54NavqnDogx/MIoWBFa0StPA8ELU
 github.com/muesli/cancelreader v0.2.2/go.mod h1:3XuTXfFS2VjM+HTLZY9Ak0l6eUKfijIfMUZ4EgX0QYo=
 github.com/muesli/termenv v0.16.0 h1:S5AlUN9dENB57rsbnkPyfdGuWIlkmzJjbFf0Tf5FWUc=
 github.com/muesli/termenv v0.16.0/go.mod h1:ZRfOIKPFDYQoDFF4Olj7/QJbW60Ol/kL1pU3VfY/Cnk=
+github.com/openrdap/rdap v0.9.1 h1:Rv6YbanbiVPsKRvOLdUmlU1AL5+2OFuEFLjFN+mQsCM=
+github.com/openrdap/rdap v0.9.1/go.mod h1:vKSiotbsENrjM/vaHXLddXbW8iQkBfa+ldEuYEjyLTQ=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
@@ -83,8 +98,14 @@ github.com/spf13/cobra v1.10.2 h1:DMTTonx5m65Ic0GOoRY2c16WCbHxOOw6xxezuLaBpcU=
 github.com/spf13/cobra v1.10.2/go.mod h1:7C1pvHqHw5A4vrJfjNwvOdzYu0Gml16OCs2GRiTUUS4=
 github.com/spf13/pflag v1.0.9 h1:9exaQaMOCwffKiiiYk6/BndUBv+iRViNW+4lEMi0PvY=
 github.com/spf13/pflag v1.0.9/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
 github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/tantalor93/doh-go v0.3.0 h1:Hy7CRfrpUeqhAt/XGSWr3L4Wro+lmbvNH7476Lx2rDA=
+github.com/tantalor93/doh-go v0.3.0/go.mod h1:1uDDy9iGTVHKEofhXUz9pTvCo7QAPRNys7pxkdLbFuM=
+github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
+github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e h1:JVG44RsyaB9T2KIHavMF/ppJZNG9ZpyihvCd0w101no=
 github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e/go.mod h1:RbqR21r5mrJuqunuUZ/Dhy/avygyECGrLceyNeo4LiM=
 github.com/ysmood/fetchup v0.2.3 h1:ulX+SonA0Vma5zUFXtv52Kzip/xe7aj4vqT5AJwQ+ZQ=
@@ -102,11 +123,15 @@ github.com/ysmood/gson v0.7.3/go.mod h1:3Kzs5zDl21g5F/BlLTNcuAGAYLKt2lV5G8D1zF3R
 github.com/ysmood/leakless v0.9.0 h1:qxCG5VirSBvmi3uynXFkcnLMzkphdh3xx5FtrORwDCU=
 github.com/ysmood/leakless v0.9.0/go.mod h1:R8iAXPRaG97QJwqxs74RdwzcRHT1SWCGTNqY8q0JvMQ=
 go.yaml.in/yaml/v3 v3.0.4/go.mod h1:DhzuOOF2ATzADvBadXxruRBLzYTpT36CKvDb3+aBEFg=
+golang.org/x/crypto v0.44.0 h1:A97SsFvM3AIwEEmTBiaxPPTYpDC47w720rdiiUvgoAU=
+golang.org/x/crypto v0.44.0/go.mod h1:013i+Nw79BMiQiMsOPcVCB5ZIJbYkerPrGnOa00tvmc=
 golang.org/x/exp v0.0.0-20231006140011-7918f672742d h1:jtJma62tbqLibJ5sFQz8bKtEM8rJBtfilJ2qTU199MI=
 golang.org/x/exp v0.0.0-20231006140011-7918f672742d/go.mod h1:ldy0pHrwJyGW56pPQzzkH36rKxoZW1tw7ZJpeKx+hdo=
 golang.org/x/image v0.0.0-20191009234506-e7c1f5e7dbb8/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/image v0.33.0 h1:LXRZRnv1+zGd5XBUVRFmYEphyyKJjQjCRiOuAP3sZfQ=
 golang.org/x/image v0.33.0/go.mod h1:DD3OsTYT9chzuzTQt+zMcOlBHgfoKQb1gry8p76Y1sc=
+golang.org/x/mod v0.29.0 h1:HV8lRxZC4l2cr3Zq1LvtOsi/ThTgWnUk/y64QSs8GwA=
+golang.org/x/mod v0.29.0/go.mod h1:NyhrlYXJ2H4eJiRy/WDBO6HMqZQ6q9nk4JzS3NuCK+w=
 golang.org/x/net v0.47.0 h1:Mx+4dIFzqraBXUugkia1OOvlD6LemFo1ALMHjrXDOhY=
 golang.org/x/net v0.47.0/go.mod h1:/jNxtkgq5yWUGYkaZGqo27cfGZ1c5Nen03aYrrKpVRU=
 golang.org/x/sync v0.18.0 h1:kr88TuHDroi+UVf+0hZnirlk8o8T+4MrK6mr60WkH/I=
@@ -118,7 +143,10 @@ golang.org/x/sys v0.38.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.31.0 h1:aC8ghyu4JhP8VojJ2lEHBnochRno1sgL6nEi9WGFGMM=
 golang.org/x/text v0.31.0/go.mod h1:tKRAlv61yKIjGGHX/4tP1LTbc13YSec1pxVEWXzfoeM=
+golang.org/x/tools v0.38.0 h1:Hx2Xv8hISq8Lm16jvBZ2VQf+RLmbd7wVUsALibYI/IQ=
+golang.org/x/tools v0.38.0/go.mod h1:yEsQ/d/YK8cjh0L6rZlY8tgtlKiBNTL14pGDJPJpYQs=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

internal/network/dns.go

@@ -0,0 +1,222 @@
+/*
+Copyright © 2025 canaria-computer
+*/
+package network
+
+import (
+	"context"
+	"net"
+	"sync"
+	"time"
+
+	"github.com/miekg/dns"
+	"github.com/tantalor93/doh-go/doh"
+)
+
+// DNSResult represents the result of DNS resolution
+type DNSResult struct {
+	Domain    string                    `json:"domain"`
+	IPv4      []string                  `json:"ipv4"`
+	IPv6      []string                  `json:"ipv6"`
+	Providers map[string]ProviderResult `json:"providers"`
+	Tampering bool                      `json:"tampering"`
+	Success   bool                      `json:"success"`
+}
+
+// ProviderResult represents the result from a single DNS provider
+type ProviderResult struct {
+	IPv4  []string `json:"ipv4"`
+	IPv6  []string `json:"ipv6"`
+	Error string   `json:"error,omitempty"`
+}
+
+// DoHProvider represents a DNS over HTTPS provider
+type DoHProvider struct {
+	Name string
+	URL  string
+}
+
+// DefaultDoHProviders returns the default list of DoH providers
+var DefaultDoHProviders = []DoHProvider{
+	{Name: "quad9", URL: "https://dns.quad9.net/dns-query"},
+	{Name: "cloudflare", URL: "https://cloudflare-dns.com/dns-query"},
+	{Name: "google", URL: "https://dns.google/dns-query"},
+}
+
+// ResolveAll performs DNS resolution using DoH providers and system DNS in parallel
+func ResolveAll(domain string) (*DNSResult, error) {
+	return ResolveAllWithTimeout(domain, 10*time.Second)
+}
+
+// ResolveAllWithTimeout performs DNS resolution with a custom timeout
+func ResolveAllWithTimeout(domain string, timeout time.Duration) (*DNSResult, error) {
+	ctx, cancel := context.WithTimeout(context.Background(), timeout)
+	defer cancel()
+
+	result := &DNSResult{
+		Domain:    domain,
+		Providers: make(map[string]ProviderResult),
+	}
+
+	var wg sync.WaitGroup
+	var mu sync.Mutex
+
+	// Query system DNS
+	wg.Add(1)
+	go func() {
+		defer wg.Done()
+		pr := resolveSystem(ctx, domain)
+		mu.Lock()
+		result.Providers["system"] = pr
+		mu.Unlock()
+	}()
+
+	// Query DoH providers
+	for _, provider := range DefaultDoHProviders {
+		wg.Add(1)
+		go func(p DoHProvider) {
+			defer wg.Done()
+			pr := resolveDoH(ctx, domain, p)
+			mu.Lock()
+			result.Providers[p.Name] = pr
+			mu.Unlock()
+		}(provider)
+	}
+
+	wg.Wait()
+
+	// Aggregate results
+	allIPv4 := make(map[string]bool)
+	allIPv6 := make(map[string]bool)
+	hasSuccess := false
+
+	for _, pr := range result.Providers {
+		if pr.Error == "" {
+			hasSuccess = true
+			for _, ip := range pr.IPv4 {
+				allIPv4[ip] = true
+			}
+			for _, ip := range pr.IPv6 {
+				allIPv6[ip] = true
+			}
+		}
+	}
+
+	// Convert to slices
+	for ip := range allIPv4 {
+		result.IPv4 = append(result.IPv4, ip)
+	}
+	for ip := range allIPv6 {
+		result.IPv6 = append(result.IPv6, ip)
+	}
+
+	result.Success = hasSuccess
+	result.Tampering = detectTampering(result.Providers)
+
+	return result, nil
+}
+
+// resolveSystem resolves using the system DNS resolver
+func resolveSystem(ctx context.Context, domain string) ProviderResult {
+	pr := ProviderResult{}
+
+	resolver := net.Resolver{}
+
+	// Resolve A records (IPv4)
+	ips, err := resolver.LookupIPAddr(ctx, domain)
+	if err != nil {
+		pr.Error = err.Error()
+		return pr
+	}
+
+	for _, ip := range ips {
+		if ip.IP.To4() != nil {
+			pr.IPv4 = append(pr.IPv4, ip.IP.String())
+		} else {
+			pr.IPv6 = append(pr.IPv6, ip.IP.String())
+		}
+	}
+
+	return pr
+}
+
+// resolveDoH resolves using DNS over HTTPS
+func resolveDoH(ctx context.Context, domain string, provider DoHProvider) ProviderResult {
+	pr := ProviderResult{}
+
+	// Create DoH client
+	client := doh.NewClient(provider.URL)
+
+	// Query A records (IPv4)
+	msgA := new(dns.Msg)
+	msgA.SetQuestion(dns.Fqdn(domain), dns.TypeA)
+
+	respA, err := client.SendViaPost(ctx, msgA)
+	if err != nil {
+		pr.Error = err.Error()
+		return pr
+	}
+
+	for _, ans := range respA.Answer {
+		if a, ok := ans.(*dns.A); ok {
+			pr.IPv4 = append(pr.IPv4, a.A.String())
+		}
+	}
+
+	// Query AAAA records (IPv6)
+	msgAAAA := new(dns.Msg)
+	msgAAAA.SetQuestion(dns.Fqdn(domain), dns.TypeAAAA)
+
+	respAAAA, err := client.SendViaPost(ctx, msgAAAA)
+	if err == nil {
+		for _, ans := range respAAAA.Answer {
+			if aaaa, ok := ans.(*dns.AAAA); ok {
+				pr.IPv6 = append(pr.IPv6, aaaa.AAAA.String())
+			}
+		}
+	}
+
+	return pr
+}
+
+// detectTampering checks if results differ significantly between providers
+func detectTampering(providers map[string]ProviderResult) bool {
+	var ipv4Sets []map[string]bool
+
+	for _, pr := range providers {
+		if pr.Error != "" {
+			continue
+		}
+
+		ipSet := make(map[string]bool)
+		for _, ip := range pr.IPv4 {
+			ipSet[ip] = true
+		}
+
+		if len(ipSet) > 0 {
+			ipv4Sets = append(ipv4Sets, ipSet)
+		}
+	}
+
+	// If we have less than 2 successful results, can't detect tampering
+	if len(ipv4Sets) < 2 {
+		return false
+	}
+
+	// Check if all sets have at least one common IP
+	firstSet := ipv4Sets[0]
+	for i := 1; i < len(ipv4Sets); i++ {
+		hasCommon := false
+		for ip := range firstSet {
+			if ipv4Sets[i][ip] {
+				hasCommon = true
+				break
+			}
+		}
+		if !hasCommon {
+			return true // Potential tampering detected
+		}
+	}
+
+	return false
+}