Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP

add TODO

latest commit 2dc3e40828
Miek Gieben authored April 23, 2014
Octocat-spinner-32 .gitignore gitignore update October 15, 2013
Octocat-spinner-32 AUTHORS add AUTHOR file February 10, 2014
Octocat-spinner-32 CONTRIBUTORS Update the list of CONTRIBUTORS March 02, 2014
Octocat-spinner-32 LICENSE Update the copy right for the original GO files May 12, 2013
Octocat-spinner-32 README.md Update the README slightly April 11, 2014
Octocat-spinner-32 client.go Comment tweak February 14, 2014
Octocat-spinner-32 client_test.go Remove external DNS dependency February 15, 2014
Octocat-spinner-32 clientconfig.go Rename this variable January 19, 2014
Octocat-spinner-32 defaults.go Documenation fixes January 12, 2014
Octocat-spinner-32 dns.go Document domain name and TXT escaping behaviour March 02, 2014
Octocat-spinner-32 dns_test.go Revert "Use dLen for domain name length" February 14, 2014
Octocat-spinner-32 dnssec.go must lowercase ownername when computing hash for DS April 10, 2014
Octocat-spinner-32 dnssec_test.go Add test for SRV signing February 02, 2014
Octocat-spinner-32 dyn_test.go Set license on test files May 12, 2013
Octocat-spinner-32 edns.go Make EDNS0 unpack return error on failure January 24, 2014
Octocat-spinner-32 example_test.go Nobody uses these author/version handlers, kill them October 17, 2013
Octocat-spinner-32 keygen.go Update all copyright notices May 12, 2013
Octocat-spinner-32 kscan.go Update documentation January 26, 2014
Octocat-spinner-32 labels.go Overallocate label index buffer January 25, 2014
Octocat-spinner-32 labels_test.go Test for procent in label names February 07, 2014
Octocat-spinner-32 msg.go Check and better errors April 08, 2014
Octocat-spinner-32 nsecx.go Split off stuff to package chain December 25, 2013
Octocat-spinner-32 nsecx_test.go Split off stuff to package chain December 25, 2013
Octocat-spinner-32 parse_test.go tests: fix for 32 bit platforms April 10, 2014
Octocat-spinner-32 rawmsg.go gofmt June 14, 2013
Octocat-spinner-32 scanner.go Update all copyright notices May 12, 2013
Octocat-spinner-32 server.go server: pool: remove pool implementation April 10, 2014
Octocat-spinner-32 server_test.go Make race detector not fire on this simple test February 28, 2014
Octocat-spinner-32 singleinflight.go Implement outstanding query detection. August 24, 2013
Octocat-spinner-32 tlsa.go Update all copyright notices May 12, 2013
Octocat-spinner-32 tsig.go Update TSIG doc header to avoid godoc oddity March 02, 2014
Octocat-spinner-32 types.go add TODO April 23, 2014
Octocat-spinner-32 update.go Update all copyright notices May 12, 2013
Octocat-spinner-32 xfr.go update license in pool.go January 06, 2014
Octocat-spinner-32 zgenerate.go Use *Token instead of Token when parsing November 09, 2013
Octocat-spinner-32 zscan.go NewRR: add documentation about Rdlength April 21, 2014
Octocat-spinner-32 zscan_rr.go RRSIGs: parse epoch timestamp too January 11, 2014
README.md

Alternative (more granular) approach to a DNS library

Less is more.

Complete and usable DNS library. All widely used Resource Records are supported, including the DNSSEC types. It follows a lean and mean philosophy. If there is stuff you should know as a DNS programmer there isn't a convenience function for it. Server side and client side programming is supported, i.e. you can build servers and resolvers with it.

If you like this, you may also be interested in:

Goals

  • KISS;
  • Fast;
  • Small API, if its easy to code in Go, don't make a function for it.

Users

A not-so-up-to-date-list-that-may-be-actually-current:

Features

  • UDP/TCP queries, IPv4 and IPv6;
  • RFC 1035 zone file parsing ($INCLUDE, $ORIGIN, $TTL and $GENERATE (for all record types) are supported;
  • Fast:
    • Reply speed around ~ 80K qps (faster hardware results in more qps);
    • Parsing RRs ~ 100K RR/s, that's 5M records in about 50 seconds;
  • Server side programming (mimicking the net/http package);
  • Client side programming;
  • DNSSEC: signing, validating and key generation for DSA, RSA and ECDSA;
  • EDNS0, NSID;
  • AXFR/IXFR;
  • TSIG;
  • DNS name compression.

Have fun!

Miek Gieben - 2010-2012 - miek@miek.nl

Building

Building is done with the go tool. If you have setup your GOPATH correctly, the following should work:

go get github.com/miekg/dns
go build github.com/miekg/dns

Examples

A short "how to use the API" is at the beginning of dns.go (this also will show when you call godoc github.com/miekg/dns).

Example programs can be found in the github.com/miekg/exdns repository.

Supported RFCs

all of them

  • 103{4,5} - DNS standard
  • 1348 - NSAP record
  • 1982 - Serial Arithmetic
  • 1876 - LOC record
  • 1995 - IXFR
  • 1996 - DNS notify
  • 2136 - DNS Update (dynamic updates)
  • 2181 - RRset definition - there is no RRset type though, just []RR
  • 2537 - RSAMD5 DNS keys
  • 2065 - DNSSEC (updated in later RFCs)
  • 2671 - EDNS record
  • 2782 - SRV record
  • 2845 - TSIG record
  • 2915 - NAPTR record
  • 2929 - DNS IANA Considerations
  • 3110 - RSASHA1 DNS keys
  • 3225 - DO bit (DNSSEC OK)
  • 340{1,2,3} - NAPTR record
  • 3445 - Limiting the scope of (DNS)KEY
  • 3597 - Unkown RRs
  • 403{3,4,5} - DNSSEC + validation functions
  • 4255 - SSHFP record
  • 4343 - Case insensitivity
  • 4408 - SPF record
  • 4509 - SHA256 Hash in DS
  • 4592 - Wildcards in the DNS
  • 4635 - HMAC SHA TSIG
  • 4701 - DHCID
  • 4892 - id.server
  • 5001 - NSID
  • 5155 - NSEC3 record
  • 5205 - HIP record
  • 5702 - SHA2 in the DNS
  • 5936 - AXFR
  • 5966 - TCP implementation recommendations
  • 6605 - ECDSA
  • 6742 - ILNP DNS
  • 6891 - EDNS0 update
  • 6895 - DNS IANA considerations
  • 7043 - EUI48/EUI64 records
  • xxxx - URI record (draft)
  • xxxx - EDNS0 DNS Update Lease (draft)
  • xxxx - Algorithm-Signal (draft)

Loosely based upon

  • ldns
  • NSD
  • Net::DNS
  • GRONG

TODO

  • Support for on-the-fly-signing or check how to do it;
  • Ratelimiting? server side (RRL);
  • Make a srv.Stop() that stops the server;
  • privatekey.Precompute() when signing?
  • Last remaining RRs: APL, ATMA, A6, KEY, SIG and NXT;
  • CAA parsing is broken;
  • Replies with TC bit are not parsed to the end.
Something went wrong with that request. Please try again.