Skip to content

DNS over TCP: support dns_resolve #4835

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
gpotter2 merged 1 commit into from
Sep 15, 2025
Merged

DNS over TCP: support dns_resolve #4835

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 19 additions & 5 deletions scapy/layers/dns.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1271,9 +1271,10 @@ def __getattr__(self, attr):

class DNS(DNSCompressedPacket):
name = "DNS"
FORCE_TCP = False
fields_desc = [
ConditionalField(ShortField("length", None),
lambda p: isinstance(p.underlayer, TCP)),
lambda p: p.FORCE_TCP or isinstance(p.underlayer, TCP)),
ShortField("id", 0),
BitField("qr", 0, 1),
BitEnumField("opcode", 0, 4, {0: "QUERY", 1: "IQUERY", 2: "STATUS"}),
Expand All @@ -1300,7 +1301,7 @@ class DNS(DNSCompressedPacket):

def get_full(self):
# Required for DNSCompressedPacket
if isinstance(self.underlayer, TCP):
if isinstance(self.underlayer, TCP) or self.FORCE_TCP:
return self.original[2:]
else:
return self.original
Expand Down Expand Up @@ -1332,7 +1333,10 @@ def mysummary(self):
)

def post_build(self, pkt, pay):
if isinstance(self.underlayer, TCP) and self.length is None:
if (
(isinstance(self.underlayer, TCP) or self.FORCE_TCP) and
self.length is None
):
pkt = struct.pack("!H", len(pkt) - 2) + pkt[2:]
return pkt + pay

Expand Down Expand Up @@ -1363,6 +1367,14 @@ def pre_dissect(self, s):
return s


class DNSTCP(DNS):
"""
A DNS packet that is always under TCP
"""
FORCE_TCP = True
match_subclass = True


bind_layers(UDP, DNS, dport=5353)
bind_layers(UDP, DNS, sport=5353)
bind_layers(UDP, DNS, dport=53)
Expand Down Expand Up @@ -1413,16 +1425,18 @@ def dns_resolve(qname, qtype="A", raw=False, tcp=False, verbose=1, timeout=3, **
try:
# Spawn a socket, connect to the nameserver on port 53
if tcp:
cls = DNSTCP
sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
else:
cls = DNS
sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
sock.settimeout(kwargs["timeout"])
sock.connect((nameserver, 53))
# Connected. Wrap it with DNS
sock = StreamSocket(sock, DNS)
sock = StreamSocket(sock, cls)
# I/O
res = sock.sr1(
DNS(qd=[DNSQR(qname=qname, qtype=qtype)], id=RandShort()),
cls(qd=[DNSQR(qname=qname, qtype=qtype)], id=RandShort()),
**kwargs,
)
except IOError as ex:
Expand Down
9 changes: 2 additions & 7 deletions test/regression.uts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3500,16 +3500,11 @@ import socket
sck = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
sck.connect(("8.8.8.8", 53))

class DNSTCP(Packet):
name = "DNS over TCP"
fields_desc = [ FieldLenField("len", None, fmt="!H", length_of="dns"),
PacketLenField("dns", 0, DNS, length_from=lambda p: p.len)]

ssck = StreamSocket(sck, DNSTCP)

r = ssck.sr1(DNSTCP(dns=DNS(rd=1, qd=DNSQR(qname="www.example.com"))), timeout=3)
r = ssck.sr1(DNSTCP(rd=1, qd=DNSQR(qname="www.example.com")), timeout=3)
sck.close()
assert DNSTCP in r and len(r.dns.an)
assert DNSTCP in r and len(r.an)

############
+ Tests of SSLStreamContext
Expand Down
Loading