1Net::DNS::Packet(3) User Contributed Perl Documentation Net::DNS::Packet(3)
2
6 Net::DNS::Packet - DNS protocol packet
7
9 use Net::DNS::Packet;
10 $query = Net::DNS::Packet->new( 'example.com', 'MX', 'IN' );
12 $reply = $resolver->send( $query );
14
16 A Net::DNS::Packet object represents a DNS protocol packet.
17
19 new
20 $packet = Net::DNS::Packet->new( 'example.com' );
21 $packet = Net::DNS::Packet->new( 'example.com', 'MX', 'IN' );
22 $packet = Net::DNS::Packet->new();
24 If passed a domain, type, and class, new() creates a Net::DNS::Packet
26 object which is suitable for making a DNS query for the specified
27 information. The type and class may be omitted; they default to A and
28 IN.
29 If called with an empty argument list, new() creates an empty packet.
31 $packet = Net::DNS::Packet->decode( \$data );
33 $packet = Net::DNS::Packet->decode( \$data, 1 ); # debug
34 $packet = Net::DNS::Packet->new( \$data ... );
35 If passed a reference to a scalar containing DNS packet data, a new
37 packet object is created by decoding the data. The optional second
38 boolean argument enables debugging output.
39 Returns undef if unable to create a packet object.
41 Decoding errors, including data corruption and truncation, are
43 collected in the $@ ($EVAL_ERROR) variable.
44 ( $packet, $length ) = Net::DNS::Packet->decode( \$data );
46 If called in array context, returns a packet object and the number of
48 octets successfully decoded.
49 Note that the number of RRs in each section of the packet may differ
51 from the corresponding header value if the data has been truncated or
52 corrupted during transmission.
53 data
55 $data = $packet->data;
56 $data = $packet->data( $size );
57 Returns the packet data in binary format, suitable for sending as a
59 query or update request to a nameserver.
60 Truncation may be specified using a non-zero optional size argument.
62 header
64 $header = $packet->header;
65 Constructor method which returns a Net::DNS::Header object which
67 represents the header section of the packet.
68 edns
70 $edns = $packet->edns;
71 $version = $edns->version;
72 $UDPsize = $edns->size;
73 Auxiliary function which provides access to the EDNS protocol extension
75 OPT RR.
76 reply
78 $reply = $query->reply( $UDPmax );
79 Constructor method which returns a new reply packet.
81 The optional UDPsize argument is the maximum UDP packet size which can
83 be reassembled by the local network stack, and is advertised in
84 response to an EDNS query.
85 question, zone
87 @question = $packet->question;
88 Returns a list of Net::DNS::Question objects representing the question
90 section of the packet.
91 In dynamic update packets, this section is known as zone() and
93 specifies the DNS zone to be updated.
94 answer, pre, prerequisite
96 @answer = $packet->answer;
97 Returns a list of Net::DNS::RR objects representing the answer section
99 of the packet.
100 In dynamic update packets, this section is known as pre() or
102 prerequisite() and specifies the RRs or RRsets which must or must not
103 preexist.
104 authority, update
106 @authority = $packet->authority;
107 Returns a list of Net::DNS::RR objects representing the authority
109 section of the packet.
110 In dynamic update packets, this section is known as update() and
112 specifies the RRs or RRsets to be added or deleted.
113 additional
115 @additional = $packet->additional;
116 Returns a list of Net::DNS::RR objects representing the additional
118 section of the packet.
119 print
121 $packet->print;
122 Prints the entire packet to the currently selected output filehandle
124 using the master file format mandated by RFC1035.
125 string
127 print $packet->string;
128 Returns a string representation of the packet.
130 from
132 print "packet received from ", $packet->from, "\n";
133 Returns the IP address from which this packet was received. This
135 method will return undef for user-created packets.
136 size
138 print "packet size: ", $packet->size, " octets\n";
139 Returns the size of the packet in octets as it was received from a
141 nameserver. This method will return undef for user-created packets
142 (use length($packet->data) instead).
143 push
145 $ancount = $packet->push( prereq => $rr );
146 $nscount = $packet->push( update => $rr );
147 $arcount = $packet->push( additional => $rr );
148 $nscount = $packet->push( update => $rr1, $rr2, $rr3 );
150 $nscount = $packet->push( update => @rr );
151 Adds RRs to the specified section of the packet.
153 Returns the number of resource records in the specified section.
155 Section names may be abbreviated to the first three characters.
157 unique_push
159 $ancount = $packet->unique_push( prereq => $rr );
160 $nscount = $packet->unique_push( update => $rr );
161 $arcount = $packet->unique_push( additional => $rr );
162 $nscount = $packet->unique_push( update => $rr1, $rr2, $rr3 );
164 $nscount = $packet->unique_push( update => @rr );
165 Adds RRs to the specified section of the packet provided that the RRs
167 are not already present in the same section.
168 Returns the number of resource records in the specified section.
170 Section names may be abbreviated to the first three characters.
172 pop
174 my $rr = $packet->pop( 'pre' );
175 my $rr = $packet->pop( 'update' );
176 my $rr = $packet->pop( 'additional' );
177 Removes a single RR from the specified section of the packet.
179 sign_tsig
181 $query = Net::DNS::Packet->new( 'www.example.com', 'A' );
182 $query->sign_tsig(
184 'Khmac-sha512.example.+165+01018.private',
185 fudge => 60
186 );
187 $reply = $res->send( $query );
189 $reply->verify( $query ) || die $reply->verifyerr;
191 Attaches a TSIG resource record object, which will be used to sign the
193 packet (see RFC 2845).
194 The TSIG record can be customised by optional additional arguments to
196 sign_tsig() or by calling the appropriate Net::DNS::RR::TSIG methods.
197 If you wish to create a TSIG record using a non-standard algorithm, you
199 will have to create it yourself. In all cases, the TSIG name must
200 uniquely identify the key shared between the parties, and the algorithm
201 name must identify the signing function to be used with the specified
202 key.
203 $tsig = Net::DNS::RR->new(
205 name => 'tsig.example',
206 type => 'TSIG',
207 algorithm => 'custom-algorithm',
208 key => '<base64 key text>',
209 sig_function => sub {
210 my ($key, $data) = @_;
211 ...
212 }
213 );
214 $query->sign_tsig( $tsig );
216 The historical simplified syntax is still available, but additional
218 options can not be specified.
219 $packet->sign_tsig( $key_name, $key );
221 The response to an inbound request is signed by presenting the request
223 in place of the key parameter.
224 $response = $request->reply;
226 $response->sign_tsig( $request, @options );
227 Multi-packet transactions are signed by chaining the sign_tsig() calls
229 together as follows:
230 $opaque = $packet1->sign_tsig( 'Kexample.+165+13281.private' );
232 $opaque = $packet2->sign_tsig( $opaque );
233 $packet3->sign_tsig( $opaque );
234 The opaque intermediate object references returned during multi-packet
236 signing are not intended to be accessed by the end-user application.
237 Any such access is expressly forbidden.
238 Note that a TSIG record is added to every packet; this implementation
240 does not support the suppressed signature scheme described in RFC2845.
241 verify and verifyerr
243 $packet->verify() || die $packet->verifyerr;
244 $reply->verify( $query ) || die $reply->verifyerr;
245 Verify TSIG signature of packet or reply to the corresponding query.
247 $opaque = $packet1->verify( $query ) || die $packet1->verifyerr;
249 $opaque = $packet2->verify( $opaque );
250 $verifed = $packet3->verify( $opaque ) || die $packet3->verifyerr;
251 The opaque intermediate object references returned during multi-packet
253 verify() will be undefined (Boolean false) if verification fails.
254 Access to the object itself, if it exists, is expressly forbidden.
255 Testing at every stage may be omitted, which results in a BADSIG error
256 on the final packet in the absence of more specific information.
257 sign_sig0
259 SIG0 support is provided through the Net::DNS::RR::SIG class. The
260 requisite cryptographic components are not integrated into Net::DNS but
261 reside in the Net::DNS::SEC distribution available from CPAN.
262 $update = Net::DNS::Update->new('example.com');
264 $update->push( update => rr_add('foo.example.com A 10.1.2.3'));
265 $update->sign_sig0('Kexample.com+003+25317.private');
266 Execution will be terminated if Net::DNS::SEC is not available.
268 verify SIG0
270 $packet->verify( $keyrr ) || die $packet->verifyerr;
271 $packet->verify( [$keyrr, ...] ) || die $packet->verifyerr;
272 Verify SIG0 packet signature against one or more specified KEY RRs.
274 sigrr
276 $sigrr = $packet->sigrr() || die 'unsigned packet';
277 The sigrr method returns the signature RR from a signed packet or
279 undefined if the signature is absent.
280 truncate
282 The truncate method takes a maximum length as argument and then tries
283 to truncate the packet and set the TC bit according to the rules of
284 RFC2181 Section 9.
285 The smallest length limit that is honoured is 512 octets.
287
289 Copyright (c)1997-2000 Michael Fuhr.
290 Portions Copyright (c)2002-2004 Chris Reinhardt.
292 Portions Copyright (c)2002-2009 Olaf Kolkman
294 Portions Copyright (c)2007-2019 Dick Franks
296 All rights reserved.
298
300 Permission to use, copy, modify, and distribute this software and its
301 documentation for any purpose and without fee is hereby granted,
302 provided that the above copyright notice appear in all copies and that
303 both that copyright notice and this permission notice appear in
304 supporting documentation, and that the name of the author not be used
305 in advertising or publicity pertaining to distribution of the software
306 without specific prior written permission.
307 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
309 OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
310 MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
311 IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
312 CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
313 TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
314 SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
315
317 perl, Net::DNS, Net::DNS::Update, Net::DNS::Header, Net::DNS::Question,
318 Net::DNS::RR, Net::DNS::RR::TSIG, RFC1035 Section 4.1, RFC2136 Section
319 2, RFC2845
320perl v5.32.1 2021-01-27 Net::DNS::Packet(3)