sing-box/route/router_dns.go

package route

import (
	"context"
	"errors"
	"net/netip"
	"strings"
	"time"

	"github.com/sagernet/sing-box/adapter"
	C "github.com/sagernet/sing-box/constant"
	"github.com/sagernet/sing-dns"
	"github.com/sagernet/sing/common/cache"
	E "github.com/sagernet/sing/common/exceptions"
	F "github.com/sagernet/sing/common/format"
	M "github.com/sagernet/sing/common/metadata"

	mDNS "github.com/miekg/dns"
)

type DNSReverseMapping struct {
	cache *cache.LruCache[netip.Addr, string]
}

func NewDNSReverseMapping() *DNSReverseMapping {
	return &DNSReverseMapping{
		cache: cache.New[netip.Addr, string](),
	}
}

func (m *DNSReverseMapping) Save(address netip.Addr, domain string, ttl int) {
	m.cache.StoreWithExpire(address, domain, time.Now().Add(time.Duration(ttl)*time.Second))
}

func (m *DNSReverseMapping) Query(address netip.Addr) (string, bool) {
	domain, loaded := m.cache.Load(address)
	return domain, loaded
}

func (r *Router) matchDNS(ctx context.Context, allowFakeIP bool, index int, isAddressQuery bool) (context.Context, dns.Transport, dns.DomainStrategy, adapter.DNSRule, int) {
	metadata := adapter.ContextFrom(ctx)
	if metadata == nil {
		panic("no context")
	}
	if index < len(r.dnsRules) {
		dnsRules := r.dnsRules
		if index != -1 {
			dnsRules = dnsRules[index+1:]
		}
		for currentRuleIndex, rule := range dnsRules {
			if rule.WithAddressLimit() && !isAddressQuery {
				continue
			}
			metadata.ResetRuleCache()
			if rule.Match(metadata) {
				detour := rule.Outbound()
				transport, loaded := r.transportMap[detour]
				if !loaded {
					r.dnsLogger.ErrorContext(ctx, "transport not found: ", detour)
					continue
				}
				_, isFakeIP := transport.(adapter.FakeIPTransport)
				if isFakeIP && !allowFakeIP {
					continue
				}
				ruleIndex := currentRuleIndex
				if index != -1 {
					ruleIndex += index + 1
				}
				r.dnsLogger.DebugContext(ctx, "match[", ruleIndex, "] ", rule.String(), " => ", detour)
				if isFakeIP || rule.DisableCache() {
					ctx = dns.ContextWithDisableCache(ctx, true)
				}
				if rewriteTTL := rule.RewriteTTL(); rewriteTTL != nil {
					ctx = dns.ContextWithRewriteTTL(ctx, *rewriteTTL)
				}
				if clientSubnet := rule.ClientSubnet(); clientSubnet != nil {
					ctx = dns.ContextWithClientSubnet(ctx, *clientSubnet)
				}
				if domainStrategy, dsLoaded := r.transportDomainStrategy[transport]; dsLoaded {
					return ctx, transport, domainStrategy, rule, ruleIndex
				} else {
					return ctx, transport, r.defaultDomainStrategy, rule, ruleIndex
				}
			}
		}
	}
	if domainStrategy, dsLoaded := r.transportDomainStrategy[r.defaultTransport]; dsLoaded {
		return ctx, r.defaultTransport, domainStrategy, nil, -1
	} else {
		return ctx, r.defaultTransport, r.defaultDomainStrategy, nil, -1
	}
}

func (r *Router) Exchange(ctx context.Context, message *mDNS.Msg) (*mDNS.Msg, error) {
	if len(message.Question) > 0 {
		r.dnsLogger.DebugContext(ctx, "exchange ", formatQuestion(message.Question[0].String()))
	}
	var (
		response  *mDNS.Msg
		cached    bool
		transport dns.Transport
		err       error
	)
	response, cached = r.dnsClient.ExchangeCache(ctx, message)
	if !cached {
		var metadata *adapter.InboundContext
		ctx, metadata = adapter.AppendContext(ctx)
		if len(message.Question) > 0 {
			metadata.QueryType = message.Question[0].Qtype
			switch metadata.QueryType {
			case mDNS.TypeA:
				metadata.IPVersion = 4
			case mDNS.TypeAAAA:
				metadata.IPVersion = 6
			}
			metadata.Domain = fqdnToDomain(message.Question[0].Name)
		}
		var (
			strategy  dns.DomainStrategy
			rule      adapter.DNSRule
			ruleIndex int
		)
		ruleIndex = -1
		for {
			var (
				dnsCtx       context.Context
				cancel       context.CancelFunc
				addressLimit bool
			)

			dnsCtx, transport, strategy, rule, ruleIndex = r.matchDNS(ctx, true, ruleIndex, isAddressQuery(message))
			dnsCtx, cancel = context.WithTimeout(dnsCtx, C.DNSTimeout)
			if rule != nil && rule.WithAddressLimit() {
				addressLimit = true
				response, err = r.dnsClient.ExchangeWithResponseCheck(dnsCtx, transport, message, strategy, func(response *mDNS.Msg) bool {
					metadata.DestinationAddresses, _ = dns.MessageToAddresses(response)
					return rule.MatchAddressLimit(metadata)
				})
			} else {
				addressLimit = false
				response, err = r.dnsClient.Exchange(dnsCtx, transport, message, strategy)
			}
			cancel()
			var rejected bool
			if err != nil {
				if errors.Is(err, dns.ErrResponseRejectedCached) {
					rejected = true
					r.dnsLogger.DebugContext(ctx, E.Cause(err, "response rejected for ", formatQuestion(message.Question[0].String())), " (cached)")
				} else if errors.Is(err, dns.ErrResponseRejected) {
					rejected = true
					r.dnsLogger.DebugContext(ctx, E.Cause(err, "response rejected for ", formatQuestion(message.Question[0].String())))
				} else if len(message.Question) > 0 {
					r.dnsLogger.ErrorContext(ctx, E.Cause(err, "exchange failed for ", formatQuestion(message.Question[0].String())))
				} else {
					r.dnsLogger.ErrorContext(ctx, E.Cause(err, "exchange failed for <empty query>"))
				}
			}
			if addressLimit && rejected {
				continue
			}
			break
		}
	}
	if err != nil {
		return nil, err
	}
	if r.dnsReverseMapping != nil && len(message.Question) > 0 && response != nil && len(response.Answer) > 0 {
		if _, isFakeIP := transport.(adapter.FakeIPTransport); !isFakeIP {
			for _, answer := range response.Answer {
				switch record := answer.(type) {
				case *mDNS.A:
					r.dnsReverseMapping.Save(M.AddrFromIP(record.A), fqdnToDomain(record.Hdr.Name), int(record.Hdr.Ttl))
				case *mDNS.AAAA:
					r.dnsReverseMapping.Save(M.AddrFromIP(record.AAAA), fqdnToDomain(record.Hdr.Name), int(record.Hdr.Ttl))
				}
			}
		}
	}
	return response, nil
}

func (r *Router) Lookup(ctx context.Context, domain string, strategy dns.DomainStrategy) ([]netip.Addr, error) {
	var (
		responseAddrs []netip.Addr
		cached        bool
		err           error
	)
	responseAddrs, cached = r.dnsClient.LookupCache(ctx, domain, strategy)
	if cached {
		return responseAddrs, nil
	}
	r.dnsLogger.DebugContext(ctx, "lookup domain ", domain)
	ctx, metadata := adapter.AppendContext(ctx)
	metadata.Domain = domain
	var (
		transport         dns.Transport
		transportStrategy dns.DomainStrategy
		rule              adapter.DNSRule
		ruleIndex         int
	)
	ruleIndex = -1
	for {
		var (
			dnsCtx       context.Context
			cancel       context.CancelFunc
			addressLimit bool
		)
		metadata.ResetRuleCache()
		metadata.DestinationAddresses = nil
		dnsCtx, transport, transportStrategy, rule, ruleIndex = r.matchDNS(ctx, false, ruleIndex, true)
		if strategy == dns.DomainStrategyAsIS {
			strategy = transportStrategy
		}
		dnsCtx, cancel = context.WithTimeout(dnsCtx, C.DNSTimeout)
		if rule != nil && rule.WithAddressLimit() {
			addressLimit = true
			responseAddrs, err = r.dnsClient.LookupWithResponseCheck(dnsCtx, transport, domain, strategy, func(responseAddrs []netip.Addr) bool {
				metadata.DestinationAddresses = responseAddrs
				return rule.MatchAddressLimit(metadata)
			})
		} else {
			addressLimit = false
			responseAddrs, err = r.dnsClient.Lookup(dnsCtx, transport, domain, strategy)
		}
		cancel()
		if err != nil {
			if errors.Is(err, dns.ErrResponseRejectedCached) {
				r.dnsLogger.DebugContext(ctx, "response rejected for ", domain, " (cached)")
			} else if errors.Is(err, dns.ErrResponseRejected) {
				r.dnsLogger.DebugContext(ctx, "response rejected for ", domain)
			} else {
				r.dnsLogger.ErrorContext(ctx, E.Cause(err, "lookup failed for ", domain))
			}
		} else if len(responseAddrs) == 0 {
			r.dnsLogger.ErrorContext(ctx, "lookup failed for ", domain, ": empty result")
			err = dns.RCodeNameError
		}
		if !addressLimit || err == nil {
			break
		}
	}
	if len(responseAddrs) > 0 {
		r.dnsLogger.InfoContext(ctx, "lookup succeed for ", domain, ": ", strings.Join(F.MapToString(responseAddrs), " "))
	}
	return responseAddrs, err
}

func (r *Router) LookupDefault(ctx context.Context, domain string) ([]netip.Addr, error) {
	return r.Lookup(ctx, domain, dns.DomainStrategyAsIS)
}

func (r *Router) ClearDNSCache() {
	r.dnsClient.ClearCache()
	if r.platformInterface != nil {
		r.platformInterface.ClearDNSCache()
	}
}

func isAddressQuery(message *mDNS.Msg) bool {
	for _, question := range message.Question {
		if question.Qtype == mDNS.TypeA || question.Qtype == mDNS.TypeAAAA || question.Qtype == mDNS.TypeHTTPS {
			return true
		}
	}
	return false
}

func fqdnToDomain(fqdn string) string {
	if mDNS.IsFqdn(fqdn) {
		return fqdn[:len(fqdn)-1]
	}
	return fqdn
}

func formatQuestion(string string) string {
	if strings.HasPrefix(string, ";") {
		string = string[1:]
	}
	string = strings.ReplaceAll(string, "\t", " ")
	for strings.Contains(string, "  ") {
		string = strings.ReplaceAll(string, "  ", " ")
	}
	return string
}
Improve dns log 2022-08-03 10:55:39 +00:00			`package route`

			`import (`
			`"context"`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`"errors"`
Improve dns log 2022-08-03 10:55:39 +00:00			`"net/netip"`
			`"strings"`
Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`"time"`
Improve dns log 2022-08-03 10:55:39 +00:00
Add ip_version rule item 2022-08-16 15:46:05 +00:00			`"github.com/sagernet/sing-box/adapter"`
Improve dns log 2022-08-03 10:55:39 +00:00			`C "github.com/sagernet/sing-box/constant"`
			`"github.com/sagernet/sing-dns"`
Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`"github.com/sagernet/sing/common/cache"`
Improve dns log 2022-08-03 10:55:39 +00:00			`E "github.com/sagernet/sing/common/exceptions"`
			`F "github.com/sagernet/sing/common/format"`
Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`M "github.com/sagernet/sing/common/metadata"`
Improve dns log 2022-08-03 10:55:39 +00:00
Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`mDNS "github.com/miekg/dns"`
Improve dns log 2022-08-03 10:55:39 +00:00			`)`

Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`type DNSReverseMapping struct {`
			`cache *cache.LruCache[netip.Addr, string]`
			`}`

			`func NewDNSReverseMapping() *DNSReverseMapping {`
			`return &DNSReverseMapping{`
			`cache: cache.New[netip.Addr, string](),`
			`}`
			`}`

			`func (m *DNSReverseMapping) Save(address netip.Addr, domain string, ttl int) {`
			`m.cache.StoreWithExpire(address, domain, time.Now().Add(time.Duration(ttl)*time.Second))`
			`}`

			`func (m *DNSReverseMapping) Query(address netip.Addr) (string, bool) {`
			`domain, loaded := m.cache.Load(address)`
			`return domain, loaded`
			`}`

Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`func (r *Router) matchDNS(ctx context.Context, allowFakeIP bool, index int, isAddressQuery bool) (context.Context, dns.Transport, dns.DomainStrategy, adapter.DNSRule, int) {`
Add strategy setting for each dns server 2022-08-22 04:01:50 +00:00			`metadata := adapter.ContextFrom(ctx)`
			`if metadata == nil {`
			`panic("no context")`
			`}`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`if index < len(r.dnsRules) {`
			`dnsRules := r.dnsRules`
			`if index != -1 {`
			`dnsRules = dnsRules[index+1:]`
			`}`
Fix DNS exchange index Signed-off-by: 气息 <qdshizh@gmail.com> 2024-03-19 04:04:16 +00:00			`for currentRuleIndex, rule := range dnsRules {`
Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`if rule.WithAddressLimit() && !isAddressQuery {`
			`continue`
			`}`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`metadata.ResetRuleCache()`
			`if rule.Match(metadata) {`
			`detour := rule.Outbound()`
			`transport, loaded := r.transportMap[detour]`
			`if !loaded {`
			`r.dnsLogger.ErrorContext(ctx, "transport not found: ", detour)`
			`continue`
			`}`
Always disable cache for fake-ip DNS transport if `independent_cache` disabled 2024-02-04 18:42:15 +00:00			`_, isFakeIP := transport.(adapter.FakeIPTransport)`
			`if isFakeIP && !allowFakeIP {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`continue`
			`}`
Fix DNS exchange index Signed-off-by: 气息 <qdshizh@gmail.com> 2024-03-19 04:04:16 +00:00			`ruleIndex := currentRuleIndex`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`if index != -1 {`
Fix DNS exchange index Signed-off-by: 气息 <qdshizh@gmail.com> 2024-03-19 04:04:16 +00:00			`ruleIndex += index + 1`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`}`
Fix DNS exchange index Signed-off-by: 气息 <qdshizh@gmail.com> 2024-03-19 04:04:16 +00:00			`r.dnsLogger.DebugContext(ctx, "match[", ruleIndex, "] ", rule.String(), " => ", detour)`
Always disable cache for fake-ip servers 2024-04-28 10:43:27 +00:00			`if isFakeIP \|\| rule.DisableCache() {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`ctx = dns.ContextWithDisableCache(ctx, true)`
			`}`
			`if rewriteTTL := rule.RewriteTTL(); rewriteTTL != nil {`
			`ctx = dns.ContextWithRewriteTTL(ctx, *rewriteTTL)`
			`}`
Add support for `client-subnet` DNS options 2024-02-09 10:37:25 +00:00			`if clientSubnet := rule.ClientSubnet(); clientSubnet != nil {`
			`ctx = dns.ContextWithClientSubnet(ctx, *clientSubnet)`
			`}`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`if domainStrategy, dsLoaded := r.transportDomainStrategy[transport]; dsLoaded {`
			`return ctx, transport, domainStrategy, rule, ruleIndex`
			`} else {`
			`return ctx, transport, r.defaultDomainStrategy, rule, ruleIndex`
			`}`
Add strategy setting for each dns server 2022-08-22 04:01:50 +00:00			`}`
			`}`
			`}`
Fix default dns transport strategy 2022-11-19 14:39:30 +00:00			`if domainStrategy, dsLoaded := r.transportDomainStrategy[r.defaultTransport]; dsLoaded {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`return ctx, r.defaultTransport, domainStrategy, nil, -1`
Fix default dns transport strategy 2022-11-19 14:39:30 +00:00			`} else {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`return ctx, r.defaultTransport, r.defaultDomainStrategy, nil, -1`
Fix default dns transport strategy 2022-11-19 14:39:30 +00:00			`}`
Add strategy setting for each dns server 2022-08-22 04:01:50 +00:00			`}`

Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`func (r Router) Exchange(ctx context.Context, message mDNS.Msg) (*mDNS.Msg, error) {`
			`if len(message.Question) > 0 {`
			`r.dnsLogger.DebugContext(ctx, "exchange ", formatQuestion(message.Question[0].String()))`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Improve DNS caching 2023-04-25 20:53:25 +00:00			`var (`
Always disable cache for fake-ip DNS transport if `independent_cache` disabled 2024-02-04 18:42:15 +00:00			`response *mDNS.Msg`
			`cached bool`
			`transport dns.Transport`
			`err error`
Improve DNS caching 2023-04-25 20:53:25 +00:00			`)`
			`response, cached = r.dnsClient.ExchangeCache(ctx, message)`
			`if !cached {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`var metadata *adapter.InboundContext`
			`ctx, metadata = adapter.AppendContext(ctx)`
Improve DNS caching 2023-04-25 20:53:25 +00:00			`if len(message.Question) > 0 {`
			`metadata.QueryType = message.Question[0].Qtype`
			`switch metadata.QueryType {`
			`case mDNS.TypeA:`
			`metadata.IPVersion = 4`
			`case mDNS.TypeAAAA:`
			`metadata.IPVersion = 6`
			`}`
			`metadata.Domain = fqdnToDomain(message.Question[0].Name)`
			`}`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`var (`
			`strategy dns.DomainStrategy`
			`rule adapter.DNSRule`
			`ruleIndex int`
			`)`
			`ruleIndex = -1`
			`for {`
			`var (`
			`dnsCtx context.Context`
			`cancel context.CancelFunc`
			`addressLimit bool`
			`)`

Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`dnsCtx, transport, strategy, rule, ruleIndex = r.matchDNS(ctx, true, ruleIndex, isAddressQuery(message))`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`dnsCtx, cancel = context.WithTimeout(dnsCtx, C.DNSTimeout)`
Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`if rule != nil && rule.WithAddressLimit() {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`addressLimit = true`
			`response, err = r.dnsClient.ExchangeWithResponseCheck(dnsCtx, transport, message, strategy, func(response *mDNS.Msg) bool {`
			`metadata.DestinationAddresses, _ = dns.MessageToAddresses(response)`
			`return rule.MatchAddressLimit(metadata)`
			`})`
			`} else {`
			`addressLimit = false`
			`response, err = r.dnsClient.Exchange(dnsCtx, transport, message, strategy)`
			`}`
			`cancel()`
Fix DNS fallthrough incorrectly 2024-03-15 09:21:52 +00:00			`var rejected bool`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`if err != nil {`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`if errors.Is(err, dns.ErrResponseRejectedCached) {`
Fix DNS fallthrough incorrectly 2024-03-15 09:21:52 +00:00			`rejected = true`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`r.dnsLogger.DebugContext(ctx, E.Cause(err, "response rejected for ", formatQuestion(message.Question[0].String())), " (cached)")`
			`} else if errors.Is(err, dns.ErrResponseRejected) {`
Fix DNS fallthrough incorrectly 2024-03-15 09:21:52 +00:00			`rejected = true`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`r.dnsLogger.DebugContext(ctx, E.Cause(err, "response rejected for ", formatQuestion(message.Question[0].String())))`
			`} else if len(message.Question) > 0 {`
			`r.dnsLogger.ErrorContext(ctx, E.Cause(err, "exchange failed for ", formatQuestion(message.Question[0].String())))`
			`} else {`
			`r.dnsLogger.ErrorContext(ctx, E.Cause(err, "exchange failed for <empty query>"))`
			`}`
			`}`
Fix DNS fallthrough incorrectly 2024-03-15 09:21:52 +00:00			`if addressLimit && rejected {`
			`continue`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`}`
Fix DNS fallthrough incorrectly 2024-03-15 09:21:52 +00:00			`break`
Add ip_version rule item 2022-08-16 15:46:05 +00:00			`}`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Always disable cache for fake-ip DNS transport if `independent_cache` disabled 2024-02-04 18:42:15 +00:00			`if err != nil {`
			`return nil, err`
			`}`
Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`if r.dnsReverseMapping != nil && len(message.Question) > 0 && response != nil && len(response.Answer) > 0 {`
Always disable cache for fake-ip DNS transport if `independent_cache` disabled 2024-02-04 18:42:15 +00:00			`if _, isFakeIP := transport.(adapter.FakeIPTransport); !isFakeIP {`
			`for _, answer := range response.Answer {`
			`switch record := answer.(type) {`
			`case *mDNS.A:`
			`r.dnsReverseMapping.Save(M.AddrFromIP(record.A), fqdnToDomain(record.Hdr.Name), int(record.Hdr.Ttl))`
			`case *mDNS.AAAA:`
			`r.dnsReverseMapping.Save(M.AddrFromIP(record.AAAA), fqdnToDomain(record.Hdr.Name), int(record.Hdr.Ttl))`
			`}`
Add dns reverse mapping 2023-03-23 11:08:48 +00:00			`}`
			`}`
			`}`
Always disable cache for fake-ip DNS transport if `independent_cache` disabled 2024-02-04 18:42:15 +00:00			`return response, nil`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`

			`func (r *Router) Lookup(ctx context.Context, domain string, strategy dns.DomainStrategy) ([]netip.Addr, error) {`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`var (`
			`responseAddrs []netip.Addr`
			`cached bool`
			`err error`
			`)`
			`responseAddrs, cached = r.dnsClient.LookupCache(ctx, domain, strategy)`
			`if cached {`
			`return responseAddrs, nil`
			`}`
Improve multiplexer 2022-08-03 13:51:34 +00:00			`r.dnsLogger.DebugContext(ctx, "lookup domain ", domain)`
Fix DNS routing 2022-09-04 04:39:43 +00:00			`ctx, metadata := adapter.AppendContext(ctx)`
			`metadata.Domain = domain`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`var (`
			`transport dns.Transport`
			`transportStrategy dns.DomainStrategy`
			`rule adapter.DNSRule`
			`ruleIndex int`
			`)`
			`ruleIndex = -1`
			`for {`
			`var (`
			`dnsCtx context.Context`
			`cancel context.CancelFunc`
			`addressLimit bool`
			`)`
			`metadata.ResetRuleCache()`
			`metadata.DestinationAddresses = nil`
Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`dnsCtx, transport, transportStrategy, rule, ruleIndex = r.matchDNS(ctx, false, ruleIndex, true)`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`if strategy == dns.DomainStrategyAsIS {`
			`strategy = transportStrategy`
			`}`
			`dnsCtx, cancel = context.WithTimeout(dnsCtx, C.DNSTimeout)`
			`if rule != nil && rule.WithAddressLimit() {`
			`addressLimit = true`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`responseAddrs, err = r.dnsClient.LookupWithResponseCheck(dnsCtx, transport, domain, strategy, func(responseAddrs []netip.Addr) bool {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`metadata.DestinationAddresses = responseAddrs`
			`return rule.MatchAddressLimit(metadata)`
			`})`
			`} else {`
			`addressLimit = false`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`responseAddrs, err = r.dnsClient.Lookup(dnsCtx, transport, domain, strategy)`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`}`
			`cancel()`
			`if err != nil {`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`if errors.Is(err, dns.ErrResponseRejectedCached) {`
			`r.dnsLogger.DebugContext(ctx, "response rejected for ", domain, " (cached)")`
			`} else if errors.Is(err, dns.ErrResponseRejected) {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`r.dnsLogger.DebugContext(ctx, "response rejected for ", domain)`
			`} else {`
			`r.dnsLogger.ErrorContext(ctx, E.Cause(err, "lookup failed for ", domain))`
			`}`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`} else if len(responseAddrs) == 0 {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`r.dnsLogger.ErrorContext(ctx, "lookup failed for ", domain, ": empty result")`
			`err = dns.RCodeNameError`
			`}`
			`if !addressLimit \|\| err == nil {`
			`break`
			`}`
Add strategy setting for each dns server 2022-08-22 04:01:50 +00:00			`}`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`if len(responseAddrs) > 0 {`
			`r.dnsLogger.InfoContext(ctx, "lookup succeed for ", domain, ": ", strings.Join(F.MapToString(responseAddrs), " "))`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Add rejected DNS response cache support 2024-02-14 12:42:58 +00:00			`return responseAddrs, err`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`

			`func (r *Router) LookupDefault(ctx context.Context, domain string) ([]netip.Addr, error) {`
Add strategy setting for each dns server 2022-08-22 04:01:50 +00:00			`return r.Lookup(ctx, domain, dns.DomainStrategyAsIS)`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`

Add `store_mode` and platform Clash mode selector 2023-08-24 13:52:38 +00:00			`func (r *Router) ClearDNSCache() {`
			`r.dnsClient.ClearCache()`
			`if r.platformInterface != nil {`
			`r.platformInterface.ClearDNSCache()`
			`}`
			`}`

Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`func isAddressQuery(message *mDNS.Msg) bool {`
			`for _, question := range message.Question {`
Fix non-IP queries accepted by address filter rules 2024-06-22 17:04:22 +00:00			`if question.Qtype == mDNS.TypeA \|\| question.Qtype == mDNS.TypeAAAA \|\| question.Qtype == mDNS.TypeHTTPS {`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`return true`
			`}`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Add address filter support for DNS rules 2024-02-03 09:45:27 +00:00			`return false`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`

Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`func fqdnToDomain(fqdn string) string {`
			`if mDNS.IsFqdn(fqdn) {`
			`return fqdn[:len(fqdn)-1]`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`return fqdn`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`

Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`func formatQuestion(string string) string {`
			`if strings.HasPrefix(string, ";") {`
			`string = string[1:]`
			`}`
			`string = strings.ReplaceAll(string, "\t", " ")`
			`for strings.Contains(string, " ") {`
			`string = strings.ReplaceAll(string, " ", " ")`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`
Refactor to miekg/dns 2022-09-13 08:18:39 +00:00			`return string`
Improve dns log 2022-08-03 10:55:39 +00:00			`}`