Class: PassiveDNS::ISC

Inherits:

Object

• Object
• PassiveDNS::ISC

Defined in:

lib/pdns/iscpdns.rb

Constant Summary

@@base =

"https://dnsdb-api.isc.org/lookup"

Instance Attribute Summary

• #debug ⇒ Object

  Returns the value of attribute debug.

Instance Method Summary

• #initialize(config = "#{ENV['HOME']}/.isc-dnsdb-query.conf") ⇒ ISC constructor

  A new instance of ISC.

• #lookup(label) ⇒ Object
• #parse_json(page, response_time) ⇒ Object

Constructor Details

#initialize(config = "#{ENV['HOME']}/.isc-dnsdb-query.conf") ⇒ ISC

Returns a new instance of ISC.

# File 'lib/pdns/iscpdns.rb', line 12

def initialize(config="#{ENV['HOME']}/.isc-dnsdb-query.conf")
	@debug = false
	if File.exist?(config)
		@key = File.open(config).readline.chomp
		if @key =~ /^[0-9a-f]{64}$/
			# pass
		elsif @key =~ /^APIKEY=\"([0-9a-f]{64})\"/
			@key = $1
		else
			raise "Format of configuration file (default: #{ENV['HOME']}/.isc-dnsdb-query.conf) is:\nAPIKEY=\"<key>\"\nE.g.,\nAPIKEY=\"d41d8cd98f00b204e9800998ecf8427ed41d8cd98f00b204e9800998ecf8427e\"\n"
		end
	else
		raise "Configuration file for ISC is required for intialization\nFormat of configuration file (default: #{ENV['HOME']}/.isc-dnsdb-query.conf) is:\nAPIKEY=\"<key>\"\nE.g.,\nAPIKEY=\"d41d8cd98f00b204e9800998ecf8427ed41d8cd98f00b204e9800998ecf8427e\"\n"
	end
end

Instance Attribute Details

#debug ⇒ Object

Returns the value of attribute debug.

# File 'lib/pdns/iscpdns.rb', line 9

def debug
  @debug
end

Instance Method Details

#lookup(label) ⇒ Object

# File 'lib/pdns/iscpdns.rb', line 51

def lookup(label)
	$stderr.puts "DEBUG: ISC.lookup(#{label})" if @debug
	Timeout::timeout(240) {
		url = nil
		if label =~ /^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}(\/\d{1,2})?$/
			label = label.gsub(/\//,',')
			url = "#{@@base}/rdata/ip/#{label}"
		else
			url = "#{@@base}/rrset/name/#{label}"
		end
		url = URI.parse url
		http = Net::HTTP.new(url.host, url.port)
		http.use_ssl = (url.scheme == 'https')
		http.verify_mode = OpenSSL::SSL::VERIFY_NONE
		http.verify_depth = 5
		request = Net::HTTP::Get.new(url.path)
		request.add_field("User-Agent", "Ruby/#{RUBY_VERSION} ChrisLee passive dns script")
		request.add_field("X-API-Key", @key)
		request.add_field("Accept", "application/json")
		t1 = Time.now
		response = http.request(request)
		t2 = Time.now
		$stderr.puts response if @debug
		parse_json(response.body,t2-t1)
	}
rescue Timeout::Error => e
	$stderr.puts "ISC lookup timed out: #{label}"
end

#parse_json(page, response_time) ⇒ Object

# File 'lib/pdns/iscpdns.rb', line 28

def parse_json(page,response_time)
	res = []
	raise "Error: unable to parse request" if page =~ /Error: unable to parse request/
	# need to remove the json_class tag or the parser will crap itself trying to find a class to align it to
	rows = page.split(/\n/)
	rows.each do |row|
		record = JSON.parse(row)
		record['rdata'] = [record['rdata']] if record['rdata'].class == String
		record['rdata'].each do |rdata|
			if record['time_first']
				res << PDNSResult.new('ISC',response_time,record['rrname'],rdata,record['rrtype'],0,Time.at(record['time_first'].to_i).utc.strftime("%Y-%m-%dT%H:%M:%SZ"),Time.at(record['time_last'].to_i).utc.strftime("%Y-%m-%dT%H:%M:%SZ"),record['count'])
			else
				res << PDNSResult.new('ISC',response_time,record['rrname'],rdata,record['rrtype'])
			end
		end
	end
	res
rescue Exception => e
	$stderr.puts "ISC Exception: #{e}"
	$stderr.puts page
	raise e
end