fix: adding missing dns class

hectorvent · hectorvent · commit 9d64e9be2a99 · 2026-04-24T02:39:31.000-05:00
diff --git a/src/main/java/io/github/hectorvent/floci/core/common/dns/EmbeddedDnsServer.java b/src/main/java/io/github/hectorvent/floci/core/common/dns/EmbeddedDnsServer.java
@@ -0,0 +1,233 @@
+package io.github.hectorvent.floci.core.common.dns;
+
+import io.github.hectorvent.floci.config.EmulatorConfig;
+import io.github.hectorvent.floci.core.common.docker.ContainerDetector;
+import io.vertx.core.Vertx;
+import io.vertx.core.buffer.Buffer;
+import io.vertx.core.datagram.DatagramSocket;
+import io.vertx.core.datagram.DatagramSocketOptions;
+import jakarta.enterprise.context.ApplicationScoped;
+import jakarta.inject.Inject;
+import org.jboss.logging.Logger;
+
+import java.net.DatagramPacket;
+import java.net.InetAddress;
+import java.nio.ByteBuffer;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Optional;
+
+/**
+ * Embedded UDP/53 DNS server that runs inside the Floci container and is injected
+ * into every spawned container (Lambda, RDS, ElastiCache) as their DNS resolver.
+ *
+ * Resolves *.{floci.hostname} (and any configured extra-suffixes) to Floci's own
+ * Docker network IP so virtual-hosted S3 URLs (my-bucket.floci:4566) work from
+ * inside Lambda containers without requiring wildcard Docker aliases.
+ *
+ * All other queries are forwarded transparently to the upstream resolver read from
+ * /etc/resolv.conf (Docker's embedded DNS at 127.0.0.11).
+ *
+ * Only starts when Floci detects it is running inside Docker. No-op on the host.
+ */
+@ApplicationScoped
+public class EmbeddedDnsServer {
+
+    private static final Logger LOG = Logger.getLogger(EmbeddedDnsServer.class);
+    private static final int DNS_PORT = 53;
+    private static final int TTL = 60;
+    private static final String FALLBACK_UPSTREAM = "127.0.0.11";
+
+    private volatile String serverIp;
+    private final List<String> suffixes = new ArrayList<>();
+    private String upstreamDns;
+
+    EmbeddedDnsServer(List<String> suffixes) {
+        this.suffixes.addAll(suffixes);
+    }
+
+    @Inject
+    public EmbeddedDnsServer(EmulatorConfig config, ContainerDetector containerDetector, Vertx vertx) {
+        if (!containerDetector.isRunningInContainer()) {
+            return;
+        }
+        try {
+            String myIp = InetAddress.getLocalHost().getHostAddress();
+            upstreamDns = readUpstreamDns();
+
+            config.hostname().ifPresent(suffixes::add);
+            config.dns().extraSuffixes().ifPresent(suffixes::addAll);
+
+            DatagramSocket socket = vertx.createDatagramSocket(new DatagramSocketOptions().setIpV6(false));
+            socket.listen(DNS_PORT, "0.0.0.0", ar -> {
+                if (ar.succeeded()) {
+                    serverIp = myIp;
+                    LOG.infov("Embedded DNS server started on {0}:53, resolving {1} → {0}", myIp, suffixes);
+                    socket.handler(packet -> handleQuery(
+                            vertx, socket, packet.data().getBytes(),
+                            packet.sender().host(), packet.sender().port(), myIp));
+                } else {
+                    LOG.warnv("Embedded DNS server failed to bind on port 53: {0}", ar.cause().getMessage());
+                }
+            });
+        } catch (Exception e) {
+            LOG.warnv("Failed to initialize embedded DNS server: {0}", e.getMessage());
+        }
+    }
+
+    public Optional<String> getServerIp() {
+        return Optional.ofNullable(serverIp);
+    }
+
+    // ── packet handling ───────────────────────────────────────────────────────
+
+    private void handleQuery(Vertx vertx, DatagramSocket socket, byte[] data,
+                             String senderHost, int senderPort, String myIp) {
+        try {
+            ByteBuffer buf = ByteBuffer.wrap(data);
+            short txId = buf.getShort();
+            short flags = buf.getShort();
+            short qdCount = buf.getShort();
+            buf.getShort(); // ancount
+            buf.getShort(); // nscount
+            buf.getShort(); // arcount
+
+            if ((flags & 0x8000) != 0 || qdCount < 1) {
+                return; // not a standard query
+            }
+
+            int questionOffset = buf.position(); // always 12 for a standard query
+            String qname = readName(buf, data);
+            short qtype = buf.getShort();
+            buf.getShort(); // qclass
+            int questionEnd = buf.position();
+
+            if (qtype == 1 && matchesSuffix(qname)) {
+                byte[] response = buildAResponse(data, txId, questionOffset, questionEnd, myIp);
+                socket.send(Buffer.buffer(response), senderPort, senderHost, v -> {});
+            } else {
+                forwardAsync(vertx, socket, data, senderHost, senderPort);
+            }
+        } catch (Exception e) {
+            LOG.debugv("DNS packet error: {0}", e.getMessage());
+        }
+    }
+
+    // ── helpers ───────────────────────────────────────────────────────────────
+
+    boolean matchesSuffix(String name) {
+        if (name == null || name.isEmpty()) {
+            return false;
+        }
+        String lower = name.toLowerCase();
+        for (String suffix : suffixes) {
+            String s = suffix.toLowerCase();
+            if (lower.equals(s) || lower.endsWith("." + s)) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    String readName(ByteBuffer buf, byte[] data) {
+        StringBuilder sb = new StringBuilder();
+        int safety = 0;
+        while (buf.hasRemaining() && safety++ < 128) {
+            int len = buf.get() & 0xFF;
+            if (len == 0) {
+                break;
+            }
+            if ((len & 0xC0) == 0xC0) {
+                // compression pointer
+                int offset = ((len & 0x3F) << 8) | (buf.get() & 0xFF);
+                ByteBuffer ptr = ByteBuffer.wrap(data);
+                ptr.position(offset);
+                if (sb.length() > 0) {
+                    sb.append('.');
+                }
+                sb.append(readName(ptr, data));
+                return sb.toString();
+            }
+            if (sb.length() > 0) {
+                sb.append('.');
+            }
+            byte[] label = new byte[len];
+            buf.get(label);
+            sb.append(new String(label));
+        }
+        return sb.toString();
+    }
+
+    byte[] buildAResponse(byte[] query, short txId, int questionOffset, int questionEnd, String ip) {
+        int questionLength = questionEnd - questionOffset;
+        // header(12) + question + answer(name-ptr(2) + type(2) + class(2) + ttl(4) + rdlen(2) + rdata(4))
+        ByteBuffer resp = ByteBuffer.allocate(12 + questionLength + 16);
+
+        // header
+        resp.putShort(txId);
+        resp.putShort((short) 0x8180); // QR=1, AA=1, RD=1, RCODE=0
+        resp.putShort((short) 1);      // qdcount
+        resp.putShort((short) 1);      // ancount
+        resp.putShort((short) 0);      // nscount
+        resp.putShort((short) 0);      // arcount
+
+        // question (copied verbatim from query)
+        resp.put(query, questionOffset, questionLength);
+
+        // answer
+        resp.putShort((short) 0xC00C); // name pointer to offset 12 (start of question name)
+        resp.putShort((short) 1);       // type A
+        resp.putShort((short) 1);       // class IN
+        resp.putInt(TTL);
+        resp.putShort((short) 4);       // rdlength
+
+        for (String octet : ip.split("\\.")) {
+            resp.put((byte) Integer.parseInt(octet));
+        }
+
+        return resp.array();
+    }
+
+    private void forwardAsync(Vertx vertx, DatagramSocket socket, byte[] query,
+                              String senderHost, int senderPort) {
+        String upstream = upstreamDns;
+        if (upstream == null) {
+            return;
+        }
+        vertx.executeBlocking(() -> {
+            try (java.net.DatagramSocket fwd = new java.net.DatagramSocket()) {
+                fwd.setSoTimeout(2000);
+                InetAddress addr = InetAddress.getByName(upstream);
+                fwd.send(new DatagramPacket(query, query.length, addr, DNS_PORT));
+                byte[] buf = new byte[512];
+                DatagramPacket resp = new DatagramPacket(buf, buf.length);
+                fwd.receive(resp);
+                return Arrays.copyOf(resp.getData(), resp.getLength());
+            }
+        }).onSuccess(response ->
+            socket.send(Buffer.buffer(response), senderPort, senderHost, v -> {})
+        ).onFailure(e ->
+            LOG.debugv("DNS forwarding to {0} failed: {1}", upstream, e.getMessage())
+        );
+    }
+
+    private String readUpstreamDns() {
+        try {
+            for (String line : Files.readAllLines(Path.of("/etc/resolv.conf"))) {
+                line = line.trim();
+                if (line.startsWith("nameserver ")) {
+                    String server = line.substring("nameserver ".length()).trim();
+                    if (!server.equals("127.0.0.1")) {
+                        return server;
+                    }
+                }
+            }
+        } catch (Exception e) {
+            LOG.debugv("Could not read /etc/resolv.conf: {0}", e.getMessage());
+        }
+        return FALLBACK_UPSTREAM;
+    }
+}
diff --git a/src/test/java/io/github/hectorvent/floci/core/common/dns/EmbeddedDnsServerTest.java b/src/test/java/io/github/hectorvent/floci/core/common/dns/EmbeddedDnsServerTest.java
@@ -0,0 +1,164 @@
+package io.github.hectorvent.floci.core.common.dns;
+
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+import java.nio.ByteBuffer;
+import java.util.List;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+class EmbeddedDnsServerTest {
+
+    private EmbeddedDnsServer dns;
+
+    @BeforeEach
+    void setUp() {
+        dns = new EmbeddedDnsServer(List.of("localhost.floci.io"));
+    }
+
+    // ── matchesSuffix ─────────────────────────────────────────────────────────
+
+    @Test
+    void matchesSuffix_exactMatch() {
+        assertTrue(dns.matchesSuffix("localhost.floci.io"));
+    }
+
+    @Test
+    void matchesSuffix_singleSubdomain() {
+        assertTrue(dns.matchesSuffix("my-bucket.localhost.floci.io"));
+    }
+
+    @Test
+    void matchesSuffix_deeplyNested() {
+        assertTrue(dns.matchesSuffix("deeply.nested.bucket.localhost.floci.io"));
+    }
+
+    @Test
+    void matchesSuffix_caseInsensitive() {
+        assertTrue(dns.matchesSuffix("My-Bucket.Localhost.Floci.IO"));
+    }
+
+    @Test
+    void matchesSuffix_noMatch() {
+        assertFalse(dns.matchesSuffix("my-bucket.s3.amazonaws.com"));
+    }
+
+    @Test
+    void matchesSuffix_partialSuffixNoMatch() {
+        assertFalse(dns.matchesSuffix("floci.io"));
+    }
+
+    @Test
+    void matchesSuffix_nullAndEmpty() {
+        assertFalse(dns.matchesSuffix(null));
+        assertFalse(dns.matchesSuffix(""));
+    }
+
+    // ── readName ──────────────────────────────────────────────────────────────
+
+    @Test
+    void readName_simple() {
+        // my-bucket.localhost.floci.io encoded as DNS labels
+        byte[] encoded = encodeName("my-bucket.localhost.floci.io");
+        ByteBuffer buf = ByteBuffer.wrap(encoded);
+        assertEquals("my-bucket.localhost.floci.io", dns.readName(buf, encoded));
+    }
+
+    @Test
+    void readName_singleLabel() {
+        byte[] encoded = encodeName("floci");
+        ByteBuffer buf = ByteBuffer.wrap(encoded);
+        assertEquals("floci", dns.readName(buf, encoded));
+    }
+
+    @Test
+    void readName_withCompressionPointer() {
+        // Build a buffer where the name at offset 12 is "floci.io" and
+        // a pointer at offset 0 points to it.
+        byte[] data = new byte[20];
+        // pointer at offset 0 → offset 4
+        data[0] = (byte) 0xC0;
+        data[1] = 0x04;
+        // "floci.io" at offset 4
+        byte[] name = encodeName("floci.io");
+        System.arraycopy(name, 0, data, 4, name.length);
+
+        ByteBuffer buf = ByteBuffer.wrap(data);
+        assertEquals("floci.io", dns.readName(buf, data));
+    }
+
+    // ── buildAResponse ────────────────────────────────────────────────────────
+
+    @Test
+    void buildAResponse_hasCorrectTransactionId() {
+        byte[] query = buildQuery("my-bucket.localhost.floci.io", (short) 0x1234);
+        byte[] response = dns.buildAResponse(query, (short) 0x1234, 12, query.length, "172.19.0.2");
+        short txId = ByteBuffer.wrap(response).getShort(0);
+        assertEquals((short) 0x1234, txId);
+    }
+
+    @Test
+    void buildAResponse_flagsIndicateResponse() {
+        byte[] query = buildQuery("bucket.localhost.floci.io", (short) 1);
+        byte[] response = dns.buildAResponse(query, (short) 1, 12, query.length, "10.0.0.1");
+        short flags = ByteBuffer.wrap(response).getShort(2);
+        assertTrue((flags & 0x8000) != 0, "QR bit must be set");
+    }
+
+    @Test
+    void buildAResponse_answerCountIsOne() {
+        byte[] query = buildQuery("bucket.localhost.floci.io", (short) 2);
+        byte[] response = dns.buildAResponse(query, (short) 2, 12, query.length, "10.0.0.1");
+        short ancount = ByteBuffer.wrap(response).getShort(6);
+        assertEquals(1, ancount);
+    }
+
+    @Test
+    void buildAResponse_ipAddressIsCorrect() {
+        byte[] query = buildQuery("bucket.localhost.floci.io", (short) 3);
+        byte[] response = dns.buildAResponse(query, (short) 3, 12, query.length, "172.19.0.42");
+        // IP starts at offset: 12 (header) + questionLength + 2+2+2+4+2 = questionLength + 24
+        int questionLength = query.length - 12;
+        ByteBuffer resp = ByteBuffer.wrap(response);
+        resp.position(12 + questionLength + 10); // skip header + question + name-ptr(2) + type(2) + class(2) + ttl(4)
+        short rdlen = resp.getShort();
+        assertEquals(4, rdlen);
+        assertEquals((byte) 172, resp.get());
+        assertEquals((byte) 19, resp.get());
+        assertEquals((byte) 0, resp.get());
+        assertEquals((byte) 42, resp.get());
+    }
+
+    // ── helpers ───────────────────────────────────────────────────────────────
+
+    private byte[] encodeName(String name) {
+        String[] labels = name.split("\\.");
+        int len = 1; // trailing zero
+        for (String l : labels) len += 1 + l.length();
+        byte[] buf = new byte[len];
+        int pos = 0;
+        for (String label : labels) {
+            buf[pos++] = (byte) label.length();
+            for (char c : label.toCharArray()) buf[pos++] = (byte) c;
+        }
+        buf[pos] = 0;
+        return buf;
+    }
+
+    private byte[] buildQuery(String name, short txId) {
+        byte[] encodedName = encodeName(name);
+        // header(12) + name + type(2) + class(2)
+        ByteBuffer buf = ByteBuffer.allocate(12 + encodedName.length + 4);
+        buf.putShort(txId);
+        buf.putShort((short) 0x0100); // standard query, RD=1
+        buf.putShort((short) 1);       // qdcount
+        buf.putShort((short) 0);
+        buf.putShort((short) 0);
+        buf.putShort((short) 0);
+        buf.put(encodedName);
+        buf.putShort((short) 1); // type A
+        buf.putShort((short) 1); // class IN
+        return buf.array();
+    }
+}
