feat(smartdns): Add DNS Server and DNSSEC tools with comprehensive unit tests

2024-09-18 19:28:28 +02:00
parent 2cfecab96f
commit 5c06ae1edb
10 changed files with 1038 additions and 389 deletions
--- a/ts_server/classes.dnsserver.ts
+++ b/ts_server/classes.dnsserver.ts
@ -7,59 +7,61 @@ interface IDnsServerOptions {
  udpPort: number;
 }

-class DnsServer {
+interface IDnsHandler {
+  domainPattern: string;
+  recordTypes: string[];
+  handler: (question: plugins.dnsPacket.Question) => plugins.dnsPacket.Answer | null;
+}
+
+export class DnsServer {
  private udpServer: plugins.dgram.Socket;
  private httpsServer: plugins.https.Server;
+  private handlers: IDnsHandler[] = [];

-  constructor(private options: IDnsServerOptions) {
-    this.udpServer = plugins.dgram.createSocket('udp4');
-    this.setupUdpServer();
+  constructor(private options: IDnsServerOptions) {}

-    this.httpsServer = plugins.https.createServer(
-      {
-        key: plugins.fs.readFileSync(options.httpsKey),
-        cert: plugins.fs.readFileSync(options.httpsCert)
-      },
-      this.handleHttpsRequest.bind(this)
-    );
+  public registerHandler(
+    domainPattern: string,
+    recordTypes: string[],
+    handler: (question: plugins.dnsPacket.Question) => plugins.dnsPacket.Answer | null
+  ): void {
+    this.handlers.push({ domainPattern, recordTypes, handler });
  }

-  private setupUdpServer(): void {
-    this.udpServer.on('message', (msg, rinfo) => {
-      const request = plugins.dnsPacket.decode(msg);
-      const response = {
-        type: 'response' as const,
-        id: request.id,
-        flags: plugins.dnsPacket.RECURSION_DESIRED | plugins.dnsPacket.RECURSION_AVAILABLE,
-        questions: request.questions,
-        answers: [] as plugins.dnsPacket.Answer[]
-      };
+  private processDnsRequest(request: plugins.dnsPacket.Packet): plugins.dnsPacket.Packet {
+    const response: plugins.dnsPacket.Packet = {
+      type: 'response',
+      id: request.id,
+      flags: plugins.dnsPacket.RECURSION_DESIRED | plugins.dnsPacket.RECURSION_AVAILABLE,
+      questions: request.questions,
+      answers: [],
+    };

-      const question = request.questions[0];
-      console.log(`UDP query for ${question.name} of type ${question.type}`);
+    for (const question of request.questions) {
+      console.log(`Query for ${question.name} of type ${question.type}`);

-      if (question.type === 'A') {
-        response.answers.push({
-          name: question.name,
-          type: 'A',
-          class: 'IN',
-          ttl: 300,
-          data: '127.0.0.1'
-        });
+      let answered = false;
+
+      for (const handlerEntry of this.handlers) {
+        if (
+          plugins.minimatch.minimatch(question.name, handlerEntry.domainPattern) &&
+          handlerEntry.recordTypes.includes(question.type)
+        ) {
+          const answer = handlerEntry.handler(question);
+          if (answer) {
+            response.answers.push(answer);
+            answered = true;
+            break;
+          }
+        }
      }

-      const responseData = plugins.dnsPacket.encode(response);
-      this.udpServer.send(responseData, rinfo.port, rinfo.address);
-    });
+      if (!answered) {
+        console.log(`No handler found for ${question.name} of type ${question.type}`);
+      }
+    }

-    this.udpServer.on('error', (err) => {
-      console.error(`UDP Server error:\n${err.stack}`);
-      this.udpServer.close();
-    });
-
-    this.udpServer.bind(this.options.udpPort, '0.0.0.0', () => {
-      console.log(`UDP DNS server running on port ${this.options.udpPort}`);
-    });
+    return response;
  }

  private handleHttpsRequest(req: plugins.http.IncomingMessage, res: plugins.http.ServerResponse): void {
@ -71,27 +73,7 @@ class DnsServer {
      }).on('end', () => {
        const msg = Buffer.concat(body);
        const request = plugins.dnsPacket.decode(msg);
-        const response = {
-          type: 'response' as const,
-          id: request.id,
-          flags: plugins.dnsPacket.RECURSION_DESIRED | plugins.dnsPacket.RECURSION_AVAILABLE,
-          questions: request.questions,
-          answers: [] as plugins.dnsPacket.Answer[]
-        };
-
-        const question = request.questions[0];
-        console.log(`DoH query for ${question.name} of type ${question.type}`);
-
-        if (question.type === 'A') {
-          response.answers.push({
-            name: question.name,
-            type: 'A',
-            class: 'IN',
-            ttl: 300,
-            data: '127.0.0.1'
-          });
-        }
-
+        const response = this.processDnsRequest(request);
        const responseData = plugins.dnsPacket.encode(response);
        res.writeHead(200, { 'Content-Type': 'application/dns-message' });
        res.end(responseData);
@ -102,19 +84,64 @@ class DnsServer {
    }
  }

-  public start(): void {
-    this.httpsServer.listen(this.options.httpsPort, () => {
-      console.log(`DoH server running on port ${this.options.httpsPort}`);
+  public async start(): Promise<void> {
+    this.httpsServer = plugins.https.createServer(
+      {
+        key: this.options.httpsKey,
+        cert: this.options.httpsCert,
+      },
+      this.handleHttpsRequest.bind(this)
+    );
+
+    this.udpServer = plugins.dgram.createSocket('udp4');
+    this.udpServer.on('message', (msg, rinfo) => {
+      const request = plugins.dnsPacket.decode(msg);
+      const response = this.processDnsRequest(request);
+      const responseData = plugins.dnsPacket.encode(response);
+      this.udpServer.send(responseData, rinfo.port, rinfo.address);
    });
+
+    this.udpServer.on('error', (err) => {
+      console.error(`UDP Server error:\n${err.stack}`);
+      this.udpServer.close();
+    });
+
+    const udpListeningDeferred = plugins.smartpromise.defer<void>();
+    const httpsListeningDeferred = plugins.smartpromise.defer<void>();
+    try {
+      this.udpServer.bind(this.options.udpPort, '0.0.0.0', () => {
+        console.log(`UDP DNS server running on port ${this.options.udpPort}`);
+        udpListeningDeferred.resolve();
+      });
+
+      this.httpsServer.listen(this.options.httpsPort, () => {
+        console.log(`HTTPS DNS server running on port ${this.options.httpsPort}`);
+        httpsListeningDeferred.resolve();
+      });
+    } catch (err) {
+      console.error('Error starting DNS server:', err);
+      process.exit(1);
+    }
+    await Promise.all([udpListeningDeferred.promise, httpsListeningDeferred.promise]);
  }

-  public stop(): void {
+  public async stop(): Promise<void> {
+    const doneUdp = plugins.smartpromise.defer<void>();
+    const doneHttps = plugins.smartpromise.defer<void>();
    this.udpServer.close(() => {
      console.log('UDP DNS server stopped');
+      this.udpServer.unref();
+      this.udpServer = null;
+      doneUdp.resolve();
    });

    this.httpsServer.close(() => {
      console.log('HTTPS DNS server stopped');
+      this.httpsServer.unref();
+      this.httpsServer = null;
+      doneHttps.resolve();
    });
+
+    await Promise.all([doneUdp.promise, doneHttps.promise]);
  }
-}
+}