diff options
| author | Côme Chilliet <91878298+come-nc@users.noreply.github.com> | 2024-11-14 14:21:04 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-11-14 14:21:04 +0100 |
| commit | 0696ec12d548253ac4459a14f16f1dd58a4adc6a (patch) | |
| tree | 37314f8aa6cce9362acb901ac9717eaa7be75477 | |
| parent | eedf7c44aa6b69aaf1de37022f01c14a2b7a993f (diff) | |
| parent | c559f62a36403dbbee6bf56e28af536c5747d5f2 (diff) | |
| download | nextcloud-server-0696ec12d548253ac4459a14f16f1dd58a4adc6a.tar.gz nextcloud-server-0696ec12d548253ac4459a14f16f1dd58a4adc6a.zip | |
Merge pull request #49278 from nextcloud/backport/48675/stable29
[stable29] DNS: do not query CNAME if A succeeded already
| -rw-r--r-- | lib/private/Http/Client/DnsPinMiddleware.php | 7 | ||||
| -rw-r--r-- | tests/lib/Http/Client/DnsPinMiddlewareTest.php | 5 |
2 files changed, 8 insertions, 4 deletions
diff --git a/lib/private/Http/Client/DnsPinMiddleware.php b/lib/private/Http/Client/DnsPinMiddleware.php index 0d2f8d0bdc8..1f2815990dc 100644 --- a/lib/private/Http/Client/DnsPinMiddleware.php +++ b/lib/private/Http/Client/DnsPinMiddleware.php @@ -74,17 +74,21 @@ class DnsPinMiddleware { $soaDnsEntry = $this->soaRecord($target); $dnsNegativeTtl = $soaDnsEntry['minimum-ttl'] ?? null; + $canHaveCnameRecord = true; $dnsTypes = \defined('AF_INET6') || @inet_pton('::1') ? [DNS_A, DNS_AAAA, DNS_CNAME] : [DNS_A, DNS_CNAME]; foreach ($dnsTypes as $dnsType) { + if ($canHaveCnameRecord === false && $dnsType === DNS_CNAME) { + continue; + } + if ($this->negativeDnsCache->isNegativeCached($target, $dnsType)) { continue; } $dnsResponses = $this->dnsGetRecord($target, $dnsType); - $canHaveCnameRecord = true; if ($dnsResponses !== false && count($dnsResponses) > 0) { foreach ($dnsResponses as $dnsResponse) { if (isset($dnsResponse['ip'])) { @@ -95,7 +99,6 @@ class DnsPinMiddleware { $canHaveCnameRecord = false; } elseif (isset($dnsResponse['target']) && $canHaveCnameRecord) { $targetIps = array_merge($targetIps, $this->dnsResolve($dnsResponse['target'], $recursionCount)); - $canHaveCnameRecord = true; } } } elseif ($dnsNegativeTtl !== null) { diff --git a/tests/lib/Http/Client/DnsPinMiddlewareTest.php b/tests/lib/Http/Client/DnsPinMiddlewareTest.php index 54071f37b1a..65763027408 100644 --- a/tests/lib/Http/Client/DnsPinMiddlewareTest.php +++ b/tests/lib/Http/Client/DnsPinMiddlewareTest.php @@ -554,10 +554,11 @@ class DnsPinMiddlewareTest extends TestCase { ['nextcloud' => ['allow_local_address' => false]] ); - $this->assertCount(4, $dnsQueries); + $this->assertCount(3, $dnsQueries); $this->assertContains('example.com' . DNS_SOA, $dnsQueries); $this->assertContains('subsubdomain.subdomain.example.com' . DNS_A, $dnsQueries); $this->assertContains('subsubdomain.subdomain.example.com' . DNS_AAAA, $dnsQueries); - $this->assertContains('subsubdomain.subdomain.example.com' . DNS_CNAME, $dnsQueries); + // CNAME should not be queried if A or AAAA succeeded already + $this->assertNotContains('subsubdomain.subdomain.example.com' . DNS_CNAME, $dnsQueries); } } |