1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
|
-- | Simple, high-level DNS lookup functions for clients.
--
-- All of the lookup functions necessary run in IO since they
-- interact with the network. The return types are similar, but
-- differ in what can be returned from a successful lookup.
--
-- We can think of the return type as either \"what I asked for\" or
-- \"an error\". For example, the 'lookupA' function, if successful,
-- will return a list of 'IPv4'. The 'lookupMX' function will
-- instead return a list of @('Domain','Int')@ pairs, where each pair
-- represents a hostname and its associated priority.
--
-- The order of multiple results may not be consistent between
-- lookups. If you require consistent results, apply
-- 'Data.List.sort' to the returned list.
--
-- The errors that can occur are the same for all lookups. Namely:
--
-- * Timeout
--
-- * Wrong sequence number (foul play?)
--
-- * Unexpected data in the response
--
-- If an error occurs, you should be able to pattern match on the
-- 'DNSError' constructor to determine which of these is the case.
--
-- /Note/: A result of \"no records\" is not considered an
-- error. If you perform, say, an \'AAAA\' lookup for a domain with
-- no such records, the \"success\" result would be @Right []@.
--
-- We perform a successful lookup of \"www.example.com\":
--
-- >>> let hostname = Data.ByteString.Char8.pack "www.example.com"
-- >>>
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupA resolver hostname
-- Right [93.184.216.34]
--
-- The only error that we can easily cause is a timeout. We do this
-- by creating and utilizing a 'ResolvConf' which has a timeout of
-- one millisecond and a very limited number of retries:
--
-- >>> let hostname2 = Data.ByteString.Char8.pack "www.example.com"
-- >>> let badrc = defaultResolvConf { resolvTimeout = 0, resolvRetry = 1 }
-- >>>
-- >>> rs2 <- makeResolvSeed badrc
-- >>> withResolver rs2 $ \resolver -> lookupA resolver hostname2
-- Left RetryLimitExceeded
--
-- As is the convention, successful results will always be wrapped
-- in a 'Right' while errors will be wrapped in a 'Left'.
--
-- For convenience, you may wish to enable GHC\'s OverloadedStrings
-- extension. This will allow you to avoid calling
-- 'Data.ByteString.Char8.pack' on each domain name. See
-- <https://downloads.haskell.org/~ghc/latest/docs/html/users_guide/glasgow_exts.html#overloaded-string-literals>
-- for more information. In the following examples,
-- we assuem this extension is enabled.
--
-- All lookup functions eventually call 'lookupRaw'. See its documentation
-- to understand the concrete lookup behavior.
module Network.DNS.Lookup (
lookupA, lookupAAAA
, lookupMX, lookupAviaMX, lookupAAAAviaMX
, lookupNS
, lookupNSAuth
, lookupTXT
, lookupSOA
, lookupPTR
, lookupRDNS
, lookupSRV
) where
import qualified Data.ByteString.Char8 as BS
import Data.IP (IPv4, IPv6)
import Network.DNS.Imports
import Network.DNS.LookupRaw as DNS
import Network.DNS.Resolver as DNS
import Network.DNS.Types.Internal
-- $setup
-- >>> :set -XOverloadedStrings
----------------------------------------------------------------
-- | Look up all \'A\' records for the given hostname.
--
-- A straightforward example:
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupA resolver "192.0.2.1.nip.io"
-- Right [192.0.2.1]
--
-- This function will also follow a CNAME and resolve its target if
-- one exists for the queried hostname:
--
-- >>> rs2 <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs2 $ \resolver -> lookupA resolver "www.kame.net"
-- Right [210.155.141.200]
--
lookupA :: Resolver -> Domain -> IO (Either DNSError [IPv4])
lookupA rlv dom = do
erds <- DNS.lookup rlv dom A
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError IPv4
unTag (RD_A x) = Right x
unTag _ = Left UnexpectedRDATA
-- | Look up all (IPv6) \'AAAA\' records for the given hostname.
--
-- Examples:
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupAAAA resolver "www.wide.ad.jp"
-- Right [2001:200:0:180c:20c:29ff:fec9:9d61]
--
lookupAAAA :: Resolver -> Domain -> IO (Either DNSError [IPv6])
lookupAAAA rlv dom = do
erds <- DNS.lookup rlv dom AAAA
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError IPv6
unTag (RD_AAAA x) = Right x
unTag _ = Left UnexpectedRDATA
----------------------------------------------------------------
-- | Look up all \'MX\' records for the given hostname. Two parts
-- constitute an MX record: a hostname , and an integer priority. We
-- therefore return each record as a @('Domain', Int)@.
--
-- In this first example, we look up the MX for the domain \"example.com\".
-- It has an RFC7505 NULL MX (to prevent a deluge of spam from examples
-- posted on the internet).
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupMX resolver "example.com"
-- Right [(".",0)]
--
--
-- The domain \"mew.org\" does however have a single MX:
--
-- >>> rs2 <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs2 $ \resolver -> lookupMX resolver "mew.org"
-- Right [("mail.mew.org.",10)]
--
-- Also note that all hostnames are returned with a trailing dot to
-- indicate the DNS root.
--
-- However the MX host itself has no need for an MX record, so its MX RRset
-- is empty. But, \"no results\" is still a successful result.
--
-- >>> rs3 <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs3 $ \resolver -> lookupMX resolver "mail.mew.org"
-- Right []
--
lookupMX :: Resolver -> Domain -> IO (Either DNSError [(Domain,Int)])
lookupMX rlv dom = do
erds <- DNS.lookup rlv dom MX
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError (Domain,Int)
unTag (RD_MX pr dm) = Right (dm, fromIntegral pr)
unTag _ = Left UnexpectedRDATA
-- | Look up all \'MX\' records for the given hostname, and then
-- resolve their hostnames to IPv4 addresses by calling
-- 'lookupA'. The priorities are not retained.
--
-- Examples:
--
-- >>> import Data.List (sort)
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> ips <- withResolver rs $ \resolver -> lookupAviaMX resolver "wide.ad.jp"
-- >>> fmap sort ips
-- Right [203.178.136.30]
--
-- Since there is more than one result, it is necessary to sort the
-- list in order to check for equality.
--
lookupAviaMX :: Resolver -> Domain -> IO (Either DNSError [IPv4])
lookupAviaMX rlv dom = lookupXviaMX rlv dom (lookupA rlv)
-- | Look up all \'MX\' records for the given hostname, and then
-- resolve their hostnames to IPv6 addresses by calling
-- 'lookupAAAA'. The priorities are not retained.
--
lookupAAAAviaMX :: Resolver -> Domain -> IO (Either DNSError [IPv6])
lookupAAAAviaMX rlv dom = lookupXviaMX rlv dom (lookupAAAA rlv)
lookupXviaMX :: Resolver
-> Domain
-> (Domain -> IO (Either DNSError [a]))
-> IO (Either DNSError [a])
lookupXviaMX rlv dom func = do
edps <- lookupMX rlv dom
case edps of
-- We have to deconstruct and reconstruct the error so that the
-- typechecker does not conclude that a ~ (Domain, Int).
Left err -> return (Left err)
Right dps -> do
-- We'll get back a [Either DNSError a] here.
responses <- mapM (func . fst) dps
-- We can use 'sequence' to join all of the Eithers
-- together. If any of them are (Left _), we'll get a Left
-- overall. Otherwise, we'll get Right [a].
let overall = sequence responses
-- Finally, we use (fmap concat) to concatenate the responses
-- if there were no errors.
return $ fmap concat overall
----------------------------------------------------------------
-- | This function performs the real work for both 'lookupNS' and
-- 'lookupNSAuth'. The only difference between those two is which
-- function, 'lookup' or 'lookupAuth', is used to perform the
-- lookup. We take either of those as our first parameter.
lookupNSImpl :: (Resolver -> Domain -> TYPE -> IO (Either DNSError [RData]))
-> Resolver
-> Domain
-> IO (Either DNSError [Domain])
lookupNSImpl lookup_function rlv dom = do
erds <- lookup_function rlv dom NS
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError Domain
unTag (RD_NS dm) = Right dm
unTag _ = Left UnexpectedRDATA
-- | Look up all \'NS\' records for the given hostname. The results
-- are taken from the ANSWER section of the response (as opposed to
-- AUTHORITY). For details, see e.g.
-- <http://www.zytrax.com/books/dns/ch15/>.
--
-- There will typically be more than one name server for a
-- domain. It is therefore extra important to sort the results if
-- you prefer them to be at all deterministic.
--
-- Examples:
--
-- >>> import Data.List (sort)
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> ns <- withResolver rs $ \resolver -> lookupNS resolver "mew.org"
-- >>> fmap sort ns
-- Right ["ns1.mew.org.","ns2.mew.org."]
--
lookupNS :: Resolver -> Domain -> IO (Either DNSError [Domain])
lookupNS = lookupNSImpl DNS.lookup
-- | Look up all \'NS\' records for the given hostname. The results
-- are taken from the AUTHORITY section of the response and not the
-- usual ANSWER (use 'lookupNS' for that). For details, see e.g.
-- <http://www.zytrax.com/books/dns/ch15/>.
--
-- There will typically be more than one name server for a
-- domain. It is therefore extra important to sort the results if
-- you prefer them to be at all deterministic.
--
-- For an example, we can look up the nameservers for
-- \"example.com\" from one of the root servers, a.gtld-servers.net,
-- the IP address of which was found beforehand:
--
-- >>> import Data.List (sort)
-- >>> let ri = RCHostName "192.5.6.30" -- a.gtld-servers.net
-- >>> let rc = defaultResolvConf { resolvInfo = ri }
-- >>> rs <- makeResolvSeed rc
-- >>> ns <- withResolver rs $ \resolver -> lookupNSAuth resolver "example.com"
-- >>> fmap sort ns
-- Right ["a.iana-servers.net.","b.iana-servers.net."]
--
lookupNSAuth :: Resolver -> Domain -> IO (Either DNSError [Domain])
lookupNSAuth = lookupNSImpl DNS.lookupAuth
----------------------------------------------------------------
-- | Look up all \'TXT\' records for the given hostname. The results
-- are free-form 'ByteString's.
--
-- Two common uses for \'TXT\' records are
-- <http://en.wikipedia.org/wiki/Sender_Policy_Framework> and
-- <http://en.wikipedia.org/wiki/DomainKeys_Identified_Mail>. As an
-- example, we find the SPF record for \"mew.org\":
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupTXT resolver "mew.org"
-- Right ["v=spf1 +mx -all"]
--
lookupTXT :: Resolver -> Domain -> IO (Either DNSError [ByteString])
lookupTXT rlv dom = do
erds <- DNS.lookup rlv dom TXT
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError ByteString
unTag (RD_TXT x) = Right x
unTag _ = Left UnexpectedRDATA
----------------------------------------------------------------
-- | Look up the \'SOA\' record for the given domain. The result 7-tuple
-- consists of the \'mname\', \'rname\', \'serial\', \'refresh\', \'retry\',
-- \'expire\' and \'minimum\' fields of the SOA record.
--
-- An \@ separator is used between the first and second labels of the
-- \'rname\' field. Since \'rname\' is an email address, it often contains
-- periods within its first label. Presently, the trailing period is not
-- removed from the domain part of the \'rname\', but this may change in the
-- future. Users should be prepared to remove any trailing period before
-- using the \'rname\` as a contact email address.
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> soa <- withResolver rs $ \resolver -> lookupSOA resolver "mew.org"
-- >>> map (\ (mn, rn, _, _, _, _, _) -> (mn, rn)) <$> soa
-- Right [("ns1.mew.org.","kazu@mew.org.")]
--
lookupSOA :: Resolver -> Domain -> IO (Either DNSError [(Domain,Mailbox,Word32,Word32,Word32,Word32,Word32)])
lookupSOA rlv dom = do
erds <- DNS.lookup rlv dom SOA
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError (Domain,Mailbox,Word32,Word32,Word32,Word32,Word32)
unTag (RD_SOA mn mr serial refresh retry expire mini) = Right (mn, mr, serial, refresh, retry, expire, mini)
unTag _ = Left UnexpectedRDATA
----------------------------------------------------------------
-- | Look up all \'PTR\' records for the given hostname. To perform a
-- reverse lookup on an IP address, you must first reverse its
-- octets and then append the suffix \".in-addr.arpa.\"
--
-- We look up the PTR associated with the IP address
-- 210.130.137.80, i.e., 80.137.130.210.in-addr.arpa:
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupPTR resolver "180.2.232.202.in-addr.arpa"
-- Right ["www.iij.ad.jp."]
--
-- The 'lookupRDNS' function is more suited to this particular task.
--
lookupPTR :: Resolver -> Domain -> IO (Either DNSError [Domain])
lookupPTR rlv dom = do
erds <- DNS.lookup rlv dom PTR
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError Domain
unTag (RD_PTR dm) = Right dm
unTag _ = Left UnexpectedRDATA
-- | Convenient wrapper around 'lookupPTR' to perform a reverse lookup
-- on a single IP address.
--
-- We repeat the example from 'lookupPTR', except now we pass the IP
-- address directly:
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupRDNS resolver "202.232.2.180"
-- Right ["www.iij.ad.jp."]
--
lookupRDNS :: Resolver -> Domain -> IO (Either DNSError [Domain])
lookupRDNS rlv ip = lookupPTR rlv dom
where
-- ByteString constants.
dot = BS.pack "."
suffix = BS.pack ".in-addr.arpa"
octets = BS.split '.' ip
reverse_ip = BS.intercalate dot (reverse octets)
dom = reverse_ip `BS.append` suffix
----------------------------------------------------------------
-- | Look up all \'SRV\' records for the given hostname. SRV records
-- consist (see <https://tools.ietf.org/html/rfc2782>) of the
-- following four fields:
--
-- * Priority (lower is more-preferred)
--
-- * Weight (relative frequency with which to use this record
-- amongst all results with the same priority)
--
-- * Port (the port on which the service is offered)
--
-- * Target (the hostname on which the service is offered)
--
-- The first three are integral, and the target is another DNS
-- hostname. We therefore return a four-tuple
-- @(Int,Int,Int,'Domain')@.
--
-- Examples:
--
-- >>> rs <- makeResolvSeed defaultResolvConf
-- >>> withResolver rs $ \resolver -> lookupSRV resolver "_xmpp-server._tcp.jabber.ietf.org"
-- Right [(5,0,5269,"_dc-srv.6661af51975d._xmpp-server._tcp.jabber.ietf.org.")]
-- Though the "jabber.ietf.orgs" SRV record may prove reasonably stable, as
-- with anything else published in DNS it is subject to change. Also, this
-- example only works when connected to the Internet. Perhaps the above
-- example should be displayed in a format that is not recognized as a test
-- by "doctest".
lookupSRV :: Resolver -> Domain -> IO (Either DNSError [(Word16, Word16, Word16, Domain)])
lookupSRV rlv dom = do
erds <- DNS.lookup rlv dom SRV
case erds of
-- See lookupXviaMX for an explanation of this construct.
Left err -> return (Left err)
Right rds -> return $ mapM unTag rds
where
unTag :: RData -> Either DNSError (Word16, Word16, Word16, Domain)
unTag (RD_SRV pri wei prt dm) = Right (pri,wei,prt,dm)
unTag _ = Left UnexpectedRDATA
|
