Skip to content

Commit 0718984

Browse files
come-nccome-nc
authored
Merge pull request #48675 from georglauterbach/master
DNS: do not query CNAME if A succeeded already
2 parents 9576624 + 4d517a3 commit 0718984

File tree

2 files changed

+8
-4
lines changed

2 files changed

+8
-4
lines changed

lib/private/Http/Client/DnsPinMiddleware.php

Lines changed: 5 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -57,17 +57,21 @@ private function dnsResolve(string $target, int $recursionCount) : array {
5757

5858
$soaDnsEntry = $this->soaRecord($target);
5959
$dnsNegativeTtl = $soaDnsEntry['minimum-ttl'] ?? null;
60+
$canHaveCnameRecord = true;
6061

6162
$dnsTypes = \defined('AF_INET6') || @inet_pton('::1')
6263
? [DNS_A, DNS_AAAA, DNS_CNAME]
6364
: [DNS_A, DNS_CNAME];
6465
foreach ($dnsTypes as $dnsType) {
66+
if ($canHaveCnameRecord === false && $dnsType === DNS_CNAME) {
67+
continue;
68+
}
69+
6570
if ($this->negativeDnsCache->isNegativeCached($target, $dnsType)) {
6671
continue;
6772
}
6873

6974
$dnsResponses = $this->dnsGetRecord($target, $dnsType);
70-
$canHaveCnameRecord = true;
7175
if ($dnsResponses !== false && count($dnsResponses) > 0) {
7276
foreach ($dnsResponses as $dnsResponse) {
7377
if (isset($dnsResponse['ip'])) {
@@ -78,7 +82,6 @@ private function dnsResolve(string $target, int $recursionCount) : array {
7882
$canHaveCnameRecord = false;
7983
} elseif (isset($dnsResponse['target']) && $canHaveCnameRecord) {
8084
$targetIps = array_merge($targetIps, $this->dnsResolve($dnsResponse['target'], $recursionCount));
81-
$canHaveCnameRecord = true;
8285
}
8386
}
8487
} elseif ($dnsNegativeTtl !== null) {

tests/lib/Http/Client/DnsPinMiddlewareTest.php

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -537,10 +537,11 @@ static function (RequestInterface $request, array $options) {
537537
['nextcloud' => ['allow_local_address' => false]]
538538
);
539539

540-
$this->assertCount(4, $dnsQueries);
540+
$this->assertCount(3, $dnsQueries);
541541
$this->assertContains('example.com' . DNS_SOA, $dnsQueries);
542542
$this->assertContains('subsubdomain.subdomain.example.com' . DNS_A, $dnsQueries);
543543
$this->assertContains('subsubdomain.subdomain.example.com' . DNS_AAAA, $dnsQueries);
544-
$this->assertContains('subsubdomain.subdomain.example.com' . DNS_CNAME, $dnsQueries);
544+
// CNAME should not be queried if A or AAAA succeeded already
545+
$this->assertNotContains('subsubdomain.subdomain.example.com' . DNS_CNAME, $dnsQueries);
545546
}
546547
}

0 commit comments

Comments
 (0)