pancap/ethernet/dns/question.go

package dns

import (
	"fmt"
	"git.darknebu.la/maride/pancap/common"
	"github.com/google/gopacket/layers"
	"golang.org/x/net/publicsuffix"
	"log"
)

var (
	numQuestions int
	questionDomains []string
	questionBaseDomains []string
	questionPrivateDomains []string
	questionType = make(map[layers.DNSType]int)
)

// Called on every DNS packet to process questions
func processDNSQuestion(questions []layers.DNSQuestion) {
	// Iterate over all questions
	for _, question := range questions {
		// Raise stats
		numQuestions++

		// Add question to questions array
		name := string(question.Name)
		basename, basenameErr := publicsuffix.EffectiveTLDPlusOne(name)

		if basenameErr != nil {
			// Encountered error while checking for the basename
			log.Printf("Encountered error while checking '%s' domain for its basename: %s", name, basenameErr.Error())
			continue
		}

		// Process type questions
		processType(questionType, question.Type)

		// Append full domain and base domain
		questionDomains = common.AppendIfUnique(name, questionDomains)

		// Check if we need to add the base name to the private list
		_, icannManaged := publicsuffix.PublicSuffix(name)
		if icannManaged {
			// TLD is managed by ICANN, add to the base list
			questionBaseDomains = common.AppendIfUnique(basename, questionBaseDomains)
		} else {
			// it's not managed by ICANN, so it's private - add it to the private list
			questionPrivateDomains = common.AppendIfUnique(name, questionPrivateDomains)
		}
	}
}

// Prints a summary of all DNS questions
func printDNSQuestionSummary() {
	// Overall question stats
	fmt.Printf("%d DNS questions in total\n", numQuestions)
	fmt.Printf("%s records\n", generateDNSTypeSummary(questionType))
	fmt.Printf("%d unique domains of %d base domains, of which are %d private (non-ICANN) TLDs.\n", len(questionDomains), len(questionBaseDomains), len(questionPrivateDomains))

	// Output base domains asked for
	if len(questionBaseDomains) > 0 {
		fmt.Println("Asked for these base domains:")
		common.PrintTree(questionBaseDomains)
	}

	// Output private domains
	if len(questionPrivateDomains) > 0 {
		fmt.Println("Asked for these private (non-ICANN managed) domains:")
		common.PrintTree(questionPrivateDomains)
	}
}
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`package dns`

			`import (`
			`"fmt"`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`"git.darknebu.la/maride/pancap/common"`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`"github.com/google/gopacket/layers"`
			`"golang.org/x/net/publicsuffix"`
			`"log"`
			`)`

			`var (`
			`numQuestions int`
			`questionDomains []string`
			`questionBaseDomains []string`
			`questionPrivateDomains []string`
			`questionType = make(map[layers.DNSType]int)`
			`)`

			`// Called on every DNS packet to process questions`
			`func processDNSQuestion(questions []layers.DNSQuestion) {`
			`// Iterate over all questions`
			`for _, question := range questions {`
			`// Raise stats`
			`numQuestions++`

			`// Add question to questions array`
			`name := string(question.Name)`
			`basename, basenameErr := publicsuffix.EffectiveTLDPlusOne(name)`

			`if basenameErr != nil {`
			`// Encountered error while checking for the basename`
			`log.Printf("Encountered error while checking '%s' domain for its basename: %s", name, basenameErr.Error())`
			`continue`
			`}`

			`// Process type questions`
			`processType(questionType, question.Type)`

			`// Append full domain and base domain`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`questionDomains = common.AppendIfUnique(name, questionDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00
			`// Check if we need to add the base name to the private list`
			`_, icannManaged := publicsuffix.PublicSuffix(name)`
			`if icannManaged {`
			`// TLD is managed by ICANN, add to the base list`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`questionBaseDomains = common.AppendIfUnique(basename, questionBaseDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`} else {`
			`// it's not managed by ICANN, so it's private - add it to the private list`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`questionPrivateDomains = common.AppendIfUnique(name, questionPrivateDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`
			`}`
			`}`

			`// Prints a summary of all DNS questions`
			`func printDNSQuestionSummary() {`
			`// Overall question stats`
			`fmt.Printf("%d DNS questions in total\n", numQuestions)`
			`fmt.Printf("%s records\n", generateDNSTypeSummary(questionType))`
			`fmt.Printf("%d unique domains of %d base domains, of which are %d private (non-ICANN) TLDs.\n", len(questionDomains), len(questionBaseDomains), len(questionPrivateDomains))`

			`// Output base domains asked for`
			`if len(questionBaseDomains) > 0 {`
			`fmt.Println("Asked for these base domains:")`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`common.PrintTree(questionBaseDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`

			`// Output private domains`
			`if len(questionPrivateDomains) > 0 {`
			`fmt.Println("Asked for these private (non-ICANN managed) domains:")`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`common.PrintTree(questionPrivateDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`
			`}`