pancap/ethernet/dns/answer.go

package dns

import (
	"fmt"
	"git.darknebu.la/maride/pancap/common"
	"github.com/google/gopacket/layers"
	"golang.org/x/net/publicsuffix"
	"log"
)

var (
	numAnswers int
	answerDomains []string
	answerBaseDomains []string
	answerPrivateDomains []string
	answerType = make(map[layers.DNSType]int)
	answerPublicIPv4 []string
	answerPrivateIPv4 []string
)

// Called on every DNS packet to process response(s)
func processDNSAnswer(answers []layers.DNSResourceRecord) {
	for _, answer := range answers {
		// Raise stats
		numAnswers++

		// Add answer to answers array
		name := string(answer.Name)
		basename, basenameErr := publicsuffix.EffectiveTLDPlusOne(name)

		if basenameErr != nil {
			// Encountered error while checking for the basename
			log.Printf("Encountered error while checking '%s' domain for its basename: %s", name, basenameErr.Error())
			continue
		}

		// Process type answers
		processType(answerType, answer.Type)

		// Append full domain and base domain
		answerDomains = common.AppendIfUnique(name, answerDomains)

		// Check if we need to add the base name to the private list
		_, icannManaged := publicsuffix.PublicSuffix(name)
		if icannManaged {
			// TLD is managed by ICANN, add to the base list
			answerBaseDomains = common.AppendIfUnique(basename, answerBaseDomains)
		} else {
			// it's not managed by ICANN, so it's private - add it to the private list
			answerPrivateDomains = common.AppendIfUnique(name, answerPrivateDomains)
		}

		// Check if we got an A record answer
		if answer.Type == layers.DNSTypeA {
			// A record, check IP for being private
			if ipIsPrivate(answer.IP) {
				answerPrivateIPv4 = append(answerPrivateIPv4, answer.IP.String())
			} else {
				answerPublicIPv4 = append(answerPublicIPv4, answer.IP.String())
			}
		}
	}
}

// Prints a summary of all DNS answers
func printDNSAnswerSummary() {
	// Overall question stats
	fmt.Printf("%d DNS answers in total\n", numAnswers)
	fmt.Printf("%s records\n", generateDNSTypeSummary(answerType))
	fmt.Printf("%d unique domains of %d base domains, of which are %d private (non-ICANN) TLDs.\n", len(answerDomains), len(answerBaseDomains), len(answerPrivateDomains))

	// Output base domains answered with
	if len(answerBaseDomains) > 0 {
		fmt.Println("Answered with these base domains:")
		common.PrintTree(answerBaseDomains)
	}

	// Output private domains
	if len(answerPrivateDomains) > 0 {
		fmt.Println("Answered with these private (non-ICANN managed) domains:")
		common.PrintTree(answerPrivateDomains)
	}

	// Check for public and private IPs
	fmt.Printf("Answered with %d public IP addresses and %d private IP addresses\n", len(answerPublicIPv4), len(answerPrivateIPv4))
	if len(answerPrivateIPv4) > 0 {
		fmt.Println("Private IP addresses in answer:")
		common.PrintTree(answerPrivateIPv4)
	}
}
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`package dns`

			`import (`
			`"fmt"`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`"git.darknebu.la/maride/pancap/common"`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`"github.com/google/gopacket/layers"`
			`"golang.org/x/net/publicsuffix"`
			`"log"`
			`)`

			`var (`
			`numAnswers int`
			`answerDomains []string`
			`answerBaseDomains []string`
			`answerPrivateDomains []string`
			`answerType = make(map[layers.DNSType]int)`
			`answerPublicIPv4 []string`
			`answerPrivateIPv4 []string`
			`)`

			`// Called on every DNS packet to process response(s)`
			`func processDNSAnswer(answers []layers.DNSResourceRecord) {`
			`for _, answer := range answers {`
			`// Raise stats`
			`numAnswers++`

			`// Add answer to answers array`
			`name := string(answer.Name)`
			`basename, basenameErr := publicsuffix.EffectiveTLDPlusOne(name)`

			`if basenameErr != nil {`
			`// Encountered error while checking for the basename`
			`log.Printf("Encountered error while checking '%s' domain for its basename: %s", name, basenameErr.Error())`
			`continue`
			`}`

			`// Process type answers`
			`processType(answerType, answer.Type)`

			`// Append full domain and base domain`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`answerDomains = common.AppendIfUnique(name, answerDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00
			`// Check if we need to add the base name to the private list`
			`_, icannManaged := publicsuffix.PublicSuffix(name)`
			`if icannManaged {`
			`// TLD is managed by ICANN, add to the base list`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`answerBaseDomains = common.AppendIfUnique(basename, answerBaseDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`} else {`
			`// it's not managed by ICANN, so it's private - add it to the private list`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`answerPrivateDomains = common.AppendIfUnique(name, answerPrivateDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`

			`// Check if we got an A record answer`
			`if answer.Type == layers.DNSTypeA {`
			`// A record, check IP for being private`
			`if ipIsPrivate(answer.IP) {`
			`answerPrivateIPv4 = append(answerPrivateIPv4, answer.IP.String())`
			`} else {`
			`answerPublicIPv4 = append(answerPublicIPv4, answer.IP.String())`
			`}`
			`}`
			`}`
			`}`

			`// Prints a summary of all DNS answers`
			`func printDNSAnswerSummary() {`
			`// Overall question stats`
			`fmt.Printf("%d DNS answers in total\n", numAnswers)`
			`fmt.Printf("%s records\n", generateDNSTypeSummary(answerType))`
			`fmt.Printf("%d unique domains of %d base domains, of which are %d private (non-ICANN) TLDs.\n", len(answerDomains), len(answerBaseDomains), len(answerPrivateDomains))`

			`// Output base domains answered with`
			`if len(answerBaseDomains) > 0 {`
			`fmt.Println("Answered with these base domains:")`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`common.PrintTree(answerBaseDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`

			`// Output private domains`
			`if len(answerPrivateDomains) > 0 {`
			`fmt.Println("Answered with these private (non-ICANN managed) domains:")`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`common.PrintTree(answerPrivateDomains)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`

			`// Check for public and private IPs`
			`fmt.Printf("Answered with %d public IP addresses and %d private IP addresses\n", len(answerPublicIPv4), len(answerPrivateIPv4))`
			`if len(answerPrivateIPv4) > 0 {`
			`fmt.Println("Private IP addresses in answer:")`
Move common code into new package, 'common' 2019-11-29 13:32:07 +00:00			`common.PrintTree(answerPrivateIPv4)`
Move DNS to its own package, and unclutter dns.go in that step 2019-11-27 16:10:55 +00:00			`}`
			`}`