unbound/daemon/worker.c

933707f3Ssthen/*
933707f3Ssthen * daemon/worker.c - worker that handles a pending list of requests.
933707f3Ssthen *
933707f3Ssthen * Copyright (c) 2007, NLnet Labs. All rights reserved.
933707f3Ssthen *
933707f3Ssthen * This software is open source.
933707f3Ssthen *
933707f3Ssthen * Redistribution and use in source and binary forms, with or without
933707f3Ssthen * modification, are permitted provided that the following conditions
933707f3Ssthen * are met:
933707f3Ssthen *
933707f3Ssthen * Redistributions of source code must retain the above copyright notice,
933707f3Ssthen * this list of conditions and the following disclaimer.
933707f3Ssthen *
933707f3Ssthen * Redistributions in binary form must reproduce the above copyright notice,
933707f3Ssthen * this list of conditions and the following disclaimer in the documentation
933707f3Ssthen * and/or other materials provided with the distribution.
933707f3Ssthen *
933707f3Ssthen * Neither the name of the NLNET LABS nor the names of its contributors may
933707f3Ssthen * be used to endorse or promote products derived from this software without
933707f3Ssthen * specific prior written permission.
933707f3Ssthen *
933707f3Ssthen * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
0b68ff31Ssthen * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
0b68ff31Ssthen * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
0b68ff31Ssthen * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
0b68ff31Ssthen * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
0b68ff31Ssthen * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
0b68ff31Ssthen * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
0b68ff31Ssthen * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
0b68ff31Ssthen * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
0b68ff31Ssthen * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
0b68ff31Ssthen * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
933707f3Ssthen */
933707f3Ssthen
933707f3Ssthen/**
933707f3Ssthen * \file
933707f3Ssthen *
933707f3Ssthen * This file implements the worker that handles callbacks on events, for
933707f3Ssthen * pending requests.
933707f3Ssthen */
933707f3Ssthen#include "config.h"
933707f3Ssthen#include "util/log.h"
933707f3Ssthen#include "util/net_help.h"
933707f3Ssthen#include "util/random.h"
933707f3Ssthen#include "daemon/worker.h"
933707f3Ssthen#include "daemon/daemon.h"
933707f3Ssthen#include "daemon/remote.h"
933707f3Ssthen#include "daemon/acl_list.h"
933707f3Ssthen#include "util/netevent.h"
933707f3Ssthen#include "util/config_file.h"
933707f3Ssthen#include "util/module.h"
933707f3Ssthen#include "util/regional.h"
933707f3Ssthen#include "util/storage/slabhash.h"
933707f3Ssthen#include "services/listen_dnsport.h"
933707f3Ssthen#include "services/outside_network.h"
933707f3Ssthen#include "services/outbound_list.h"
933707f3Ssthen#include "services/cache/rrset.h"
933707f3Ssthen#include "services/cache/infra.h"
933707f3Ssthen#include "services/cache/dns.h"
938a3a5eSflorian#include "services/authzone.h"
933707f3Ssthen#include "services/mesh.h"
933707f3Ssthen#include "services/localzone.h"
eaf2578eSsthen#include "services/rpz.h"
933707f3Ssthen#include "util/data/msgparse.h"
933707f3Ssthen#include "util/data/msgencode.h"
933707f3Ssthen#include "util/data/dname.h"
933707f3Ssthen#include "util/fptr_wlist.h"
d896b962Ssthen#include "util/proxy_protocol.h"
933707f3Ssthen#include "util/tube.h"
2308e98cSsthen#include "util/edns.h"
8b7325afSsthen#include "util/timeval_func.h"
933707f3Ssthen#include "iterator/iter_fwd.h"
163a4143Ssthen#include "iterator/iter_hints.h"
191f22c6Ssthen#include "iterator/iter_utils.h"
933707f3Ssthen#include "validator/autotrust.h"
163a4143Ssthen#include "validator/val_anchor.h"
2be9e038Ssthen#include "respip/respip.h"
e10d3884Sbrad#include "libunbound/context.h"
e10d3884Sbrad#include "libunbound/libworker.h"
a58bff56Ssthen#include "sldns/sbuffer.h"
2be9e038Ssthen#include "sldns/wire2str.h"
2be9e038Ssthen#include "util/shm_side/shm_main.h"
2be9e038Ssthen#include "dnscrypt/dnscrypt.h"
a3167c07Ssthen#include "dnstap/dtstream.h"
933707f3Ssthen
933707f3Ssthen#ifdef HAVE_SYS_TYPES_H
933707f3Ssthen#  include <sys/types.h>
933707f3Ssthen#endif
933707f3Ssthen#ifdef HAVE_NETDB_H
933707f3Ssthen#include <netdb.h>
933707f3Ssthen#endif
933707f3Ssthen#include <signal.h>
933707f3Ssthen#ifdef UB_ON_WINDOWS
933707f3Ssthen#include "winrc/win_svc.h"
933707f3Ssthen#endif
933707f3Ssthen
933707f3Ssthen/** Size of an UDP datagram */
933707f3Ssthen#define NORMAL_UDP_SIZE	512 /* bytes */
a58bff56Ssthen/** ratelimit for error responses */
a58bff56Ssthen#define ERROR_RATELIMIT 100 /* qps */
933707f3Ssthen
933707f3Ssthen/**
933707f3Ssthen * seconds to add to prefetch leeway.  This is a TTL that expires old rrsets
933707f3Ssthen * earlier than they should in order to put the new update into the cache.
933707f3Ssthen * This additional value is to make sure that if not all TTLs are equal in
933707f3Ssthen * the message to be updated(and replaced), that rrsets with up to this much
933707f3Ssthen * extra TTL are also replaced.  This means that the resulting new message
933707f3Ssthen * will have (most likely) this TTL at least, avoiding very small 'split
933707f3Ssthen * second' TTLs due to operators choosing relative primes for TTLs (or so).
933707f3Ssthen * Also has to be at least one to break ties (and overwrite cached entry).
933707f3Ssthen */
933707f3Ssthen#define PREFETCH_EXPIRY_ADD 60
933707f3Ssthen
933707f3Ssthen/** Report on memory usage by this thread and global */
933707f3Ssthenstatic void
933707f3Ssthenworker_mem_report(struct worker* ATTR_UNUSED(worker),
933707f3Ssthen	struct serviced_query* ATTR_UNUSED(cur_serv))
933707f3Ssthen{
933707f3Ssthen#ifdef UNBOUND_ALLOC_STATS
77079be7Ssthen	/* measure memory leakage */
77079be7Ssthen	extern size_t unbound_mem_alloc, unbound_mem_freed;
933707f3Ssthen	/* debug func in validator module */
933707f3Ssthen	size_t total, front, back, mesh, msg, rrset, infra, ac, superac;
163a4143Ssthen	size_t me, iter, val, anch;
933707f3Ssthen	int i;
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen	size_t subnet = 0;
2be9e038Ssthen#endif /* CLIENT_SUBNET */
933707f3Ssthen	if(verbosity < VERB_ALGO)
933707f3Ssthen		return;
933707f3Ssthen	front = listen_get_mem(worker->front);
933707f3Ssthen	back = outnet_get_mem(worker->back);
933707f3Ssthen	msg = slabhash_get_mem(worker->env.msg_cache);
933707f3Ssthen	rrset = slabhash_get_mem(&worker->env.rrset_cache->table);
933707f3Ssthen	infra = infra_get_mem(worker->env.infra_cache);
933707f3Ssthen	mesh = mesh_get_mem(worker->env.mesh);
8b7325afSsthen	ac = alloc_get_mem(worker->alloc);
933707f3Ssthen	superac = alloc_get_mem(&worker->daemon->superalloc);
163a4143Ssthen	anch = anchors_get_mem(worker->env.anchors);
933707f3Ssthen	iter = 0;
933707f3Ssthen	val = 0;
933707f3Ssthen	for(i=0; i<worker->env.mesh->mods.num; i++) {
933707f3Ssthen		fptr_ok(fptr_whitelist_mod_get_mem(worker->env.mesh->
933707f3Ssthen			mods.mod[i]->get_mem));
933707f3Ssthen		if(strcmp(worker->env.mesh->mods.mod[i]->name, "validator")==0)
933707f3Ssthen			val += (*worker->env.mesh->mods.mod[i]->get_mem)
933707f3Ssthen				(&worker->env, i);
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen		else if(strcmp(worker->env.mesh->mods.mod[i]->name,
e21c60efSsthen			"subnetcache")==0)
2be9e038Ssthen			subnet += (*worker->env.mesh->mods.mod[i]->get_mem)
2be9e038Ssthen				(&worker->env, i);
2be9e038Ssthen#endif /* CLIENT_SUBNET */
933707f3Ssthen		else	iter += (*worker->env.mesh->mods.mod[i]->get_mem)
933707f3Ssthen				(&worker->env, i);
933707f3Ssthen	}
933707f3Ssthen	me = sizeof(*worker) + sizeof(*worker->base) + sizeof(*worker->comsig)
933707f3Ssthen		+ comm_point_get_mem(worker->cmd_com)
933707f3Ssthen		+ sizeof(worker->rndstate)
933707f3Ssthen		+ regional_get_mem(worker->scratchpad)
933707f3Ssthen		+ sizeof(*worker->env.scratch_buffer)
*98bc733bSsthen		+ sldns_buffer_capacity(worker->env.scratch_buffer);
*98bc733bSsthen	if(worker->daemon->env->fwds)
*98bc733bSsthen		log_info("forwards=%u", (unsigned)forwards_get_mem(worker->env.fwds));
*98bc733bSsthen	if(worker->daemon->env->hints)
*98bc733bSsthen		log_info("hints=%u", (unsigned)hints_get_mem(worker->env.hints));
933707f3Ssthen	if(worker->thread_num == 0)
933707f3Ssthen		me += acl_list_get_mem(worker->daemon->acl);
933707f3Ssthen	if(cur_serv) {
933707f3Ssthen		me += serviced_get_mem(cur_serv);
933707f3Ssthen	}
933707f3Ssthen	total = front+back+mesh+msg+rrset+infra+iter+val+ac+superac+me;
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen	total += subnet;
2be9e038Ssthen	log_info("Memory conditions: %u front=%u back=%u mesh=%u msg=%u "
2be9e038Ssthen		"rrset=%u infra=%u iter=%u val=%u subnet=%u anchors=%u "
2be9e038Ssthen		"alloccache=%u globalalloccache=%u me=%u",
2be9e038Ssthen		(unsigned)total, (unsigned)front, (unsigned)back,
2be9e038Ssthen		(unsigned)mesh, (unsigned)msg, (unsigned)rrset, (unsigned)infra,
2be9e038Ssthen		(unsigned)iter, (unsigned)val,
2be9e038Ssthen		(unsigned)subnet, (unsigned)anch, (unsigned)ac,
2be9e038Ssthen		(unsigned)superac, (unsigned)me);
2be9e038Ssthen#else /* no CLIENT_SUBNET */
933707f3Ssthen	log_info("Memory conditions: %u front=%u back=%u mesh=%u msg=%u "
163a4143Ssthen		"rrset=%u infra=%u iter=%u val=%u anchors=%u "
933707f3Ssthen		"alloccache=%u globalalloccache=%u me=%u",
933707f3Ssthen		(unsigned)total, (unsigned)front, (unsigned)back,
933707f3Ssthen		(unsigned)mesh, (unsigned)msg, (unsigned)rrset,
163a4143Ssthen		(unsigned)infra, (unsigned)iter, (unsigned)val, (unsigned)anch,
163a4143Ssthen		(unsigned)ac, (unsigned)superac, (unsigned)me);
2be9e038Ssthen#endif /* CLIENT_SUBNET */
77079be7Ssthen	log_info("Total heap memory estimate: %u  total-alloc: %u  "
77079be7Ssthen		"total-free: %u", (unsigned)total,
77079be7Ssthen		(unsigned)unbound_mem_alloc, (unsigned)unbound_mem_freed);
933707f3Ssthen#else /* no UNBOUND_ALLOC_STATS */
933707f3Ssthen	size_t val = 0;
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen	size_t subnet = 0;
2be9e038Ssthen#endif /* CLIENT_SUBNET */
933707f3Ssthen	int i;
933707f3Ssthen	if(verbosity < VERB_QUERY)
933707f3Ssthen		return;
933707f3Ssthen	for(i=0; i<worker->env.mesh->mods.num; i++) {
933707f3Ssthen		fptr_ok(fptr_whitelist_mod_get_mem(worker->env.mesh->
933707f3Ssthen			mods.mod[i]->get_mem));
933707f3Ssthen		if(strcmp(worker->env.mesh->mods.mod[i]->name, "validator")==0)
933707f3Ssthen			val += (*worker->env.mesh->mods.mod[i]->get_mem)
933707f3Ssthen				(&worker->env, i);
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen		else if(strcmp(worker->env.mesh->mods.mod[i]->name,
e21c60efSsthen			"subnetcache")==0)
2be9e038Ssthen			subnet += (*worker->env.mesh->mods.mod[i]->get_mem)
2be9e038Ssthen				(&worker->env, i);
2be9e038Ssthen#endif /* CLIENT_SUBNET */
933707f3Ssthen	}
2be9e038Ssthen#ifdef CLIENT_SUBNET
2be9e038Ssthen	verbose(VERB_QUERY, "cache memory msg=%u rrset=%u infra=%u val=%u "
2be9e038Ssthen		"subnet=%u",
2be9e038Ssthen		(unsigned)slabhash_get_mem(worker->env.msg_cache),
2be9e038Ssthen		(unsigned)slabhash_get_mem(&worker->env.rrset_cache->table),
2be9e038Ssthen		(unsigned)infra_get_mem(worker->env.infra_cache),
2be9e038Ssthen		(unsigned)val, (unsigned)subnet);
2be9e038Ssthen#else /* no CLIENT_SUBNET */
933707f3Ssthen	verbose(VERB_QUERY, "cache memory msg=%u rrset=%u infra=%u val=%u",
933707f3Ssthen		(unsigned)slabhash_get_mem(worker->env.msg_cache),
933707f3Ssthen		(unsigned)slabhash_get_mem(&worker->env.rrset_cache->table),
933707f3Ssthen		(unsigned)infra_get_mem(worker->env.infra_cache),
933707f3Ssthen		(unsigned)val);
2be9e038Ssthen#endif /* CLIENT_SUBNET */
933707f3Ssthen#endif /* UNBOUND_ALLOC_STATS */
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_send_cmd(struct worker* worker, enum worker_commands cmd)
933707f3Ssthen{
933707f3Ssthen	uint32_t c = (uint32_t)htonl(cmd);
933707f3Ssthen	if(!tube_write_msg(worker->cmd, (uint8_t*)&c, sizeof(c), 0)) {
933707f3Ssthen		log_err("worker send cmd %d failed", (int)cmd);
933707f3Ssthen	}
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint
933707f3Ssthenworker_handle_service_reply(struct comm_point* c, void* arg, int error,
933707f3Ssthen	struct comm_reply* reply_info)
933707f3Ssthen{
933707f3Ssthen	struct outbound_entry* e = (struct outbound_entry*)arg;
933707f3Ssthen	struct worker* worker = e->qstate->env->worker;
933707f3Ssthen	struct serviced_query *sq = e->qsent;
933707f3Ssthen
933707f3Ssthen	verbose(VERB_ALGO, "worker svcd callback for qstate %p", e->qstate);
933707f3Ssthen	if(error != 0) {
933707f3Ssthen		mesh_report_reply(worker->env.mesh, e, reply_info, error);
933707f3Ssthen		worker_mem_report(worker, sq);
933707f3Ssthen		return 0;
933707f3Ssthen	}
933707f3Ssthen	/* sanity check. */
0b68ff31Ssthen	if(!LDNS_QR_WIRE(sldns_buffer_begin(c->buffer))
0b68ff31Ssthen		|| LDNS_OPCODE_WIRE(sldns_buffer_begin(c->buffer)) !=
933707f3Ssthen			LDNS_PACKET_QUERY
0b68ff31Ssthen		|| LDNS_QDCOUNT(sldns_buffer_begin(c->buffer)) > 1) {
933707f3Ssthen		/* error becomes timeout for the module as if this reply
933707f3Ssthen		 * never arrived. */
933707f3Ssthen		verbose(VERB_ALGO, "worker: bad reply handled as timeout");
933707f3Ssthen		mesh_report_reply(worker->env.mesh, e, reply_info,
933707f3Ssthen			NETEVENT_TIMEOUT);
933707f3Ssthen		worker_mem_report(worker, sq);
933707f3Ssthen		return 0;
933707f3Ssthen	}
933707f3Ssthen	mesh_report_reply(worker->env.mesh, e, reply_info, NETEVENT_NOERROR);
933707f3Ssthen	worker_mem_report(worker, sq);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
a58bff56Ssthen/** ratelimit error replies
a58bff56Ssthen * @param worker: the worker struct with ratelimit counter
a58bff56Ssthen * @param err: error code that would be wanted.
a58bff56Ssthen * @return value of err if okay, or -1 if it should be discarded instead.
a58bff56Ssthen */
a58bff56Ssthenstatic int
a58bff56Ssthenworker_err_ratelimit(struct worker* worker, int err)
a58bff56Ssthen{
a58bff56Ssthen	if(worker->err_limit_time == *worker->env.now) {
a58bff56Ssthen		/* see if limit is exceeded for this second */
a58bff56Ssthen		if(worker->err_limit_count++ > ERROR_RATELIMIT)
a58bff56Ssthen			return -1;
a58bff56Ssthen	} else {
a58bff56Ssthen		/* new second, new limits */
a58bff56Ssthen		worker->err_limit_time = *worker->env.now;
a58bff56Ssthen		worker->err_limit_count = 1;
a58bff56Ssthen	}
a58bff56Ssthen	return err;
a58bff56Ssthen}
a58bff56Ssthen
8b7325afSsthen/**
8b7325afSsthen * Structure holding the result of the worker_check_request function.
8b7325afSsthen * Based on configuration it could be called up to four times; ideally should
8b7325afSsthen * be called once.
8b7325afSsthen */
8b7325afSsthenstruct check_request_result {
8b7325afSsthen	int checked;
8b7325afSsthen	int value;
8b7325afSsthen};
933707f3Ssthen/** check request sanity.
933707f3Ssthen * @param pkt: the wire packet to examine for sanity.
933707f3Ssthen * @param worker: parameters for checking.
8b7325afSsthen * @param out: struct to update with the result.
933707f3Ssthen*/
8b7325afSsthenstatic void
8b7325afSsthenworker_check_request(sldns_buffer* pkt, struct worker* worker,
8b7325afSsthen	struct check_request_result* out)
933707f3Ssthen{
8b7325afSsthen	if(out->checked) return;
8b7325afSsthen	out->checked = 1;
0b68ff31Ssthen	if(sldns_buffer_limit(pkt) < LDNS_HEADER_SIZE) {
933707f3Ssthen		verbose(VERB_QUERY, "request too short, discarded");
8b7325afSsthen		out->value = -1;
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(sldns_buffer_limit(pkt) > NORMAL_UDP_SIZE &&
933707f3Ssthen		worker->daemon->cfg->harden_large_queries) {
933707f3Ssthen		verbose(VERB_QUERY, "request too large, discarded");
8b7325afSsthen		out->value = -1;
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(LDNS_QR_WIRE(sldns_buffer_begin(pkt))) {
933707f3Ssthen		verbose(VERB_QUERY, "request has QR bit on, discarded");
8b7325afSsthen		out->value = -1;
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(LDNS_TC_WIRE(sldns_buffer_begin(pkt))) {
0b68ff31Ssthen		LDNS_TC_CLR(sldns_buffer_begin(pkt));
933707f3Ssthen		verbose(VERB_QUERY, "request bad, has TC bit on");
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_FORMERR);
8b7325afSsthen		return;
933707f3Ssthen	}
20237c55Ssthen	if(LDNS_OPCODE_WIRE(sldns_buffer_begin(pkt)) != LDNS_PACKET_QUERY &&
20237c55Ssthen		LDNS_OPCODE_WIRE(sldns_buffer_begin(pkt)) != LDNS_PACKET_NOTIFY) {
933707f3Ssthen		verbose(VERB_QUERY, "request unknown opcode %d",
0b68ff31Ssthen			LDNS_OPCODE_WIRE(sldns_buffer_begin(pkt)));
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_NOTIMPL);
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(LDNS_QDCOUNT(sldns_buffer_begin(pkt)) != 1) {
933707f3Ssthen		verbose(VERB_QUERY, "request wrong nr qd=%d",
0b68ff31Ssthen			LDNS_QDCOUNT(sldns_buffer_begin(pkt)));
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_FORMERR);
8b7325afSsthen		return;
933707f3Ssthen	}
20237c55Ssthen	if(LDNS_ANCOUNT(sldns_buffer_begin(pkt)) != 0 &&
20237c55Ssthen		(LDNS_ANCOUNT(sldns_buffer_begin(pkt)) != 1 ||
20237c55Ssthen		LDNS_OPCODE_WIRE(sldns_buffer_begin(pkt)) != LDNS_PACKET_NOTIFY)) {
933707f3Ssthen		verbose(VERB_QUERY, "request wrong nr an=%d",
0b68ff31Ssthen			LDNS_ANCOUNT(sldns_buffer_begin(pkt)));
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_FORMERR);
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(LDNS_NSCOUNT(sldns_buffer_begin(pkt)) != 0) {
933707f3Ssthen		verbose(VERB_QUERY, "request wrong nr ns=%d",
0b68ff31Ssthen			LDNS_NSCOUNT(sldns_buffer_begin(pkt)));
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_FORMERR);
8b7325afSsthen		return;
933707f3Ssthen	}
0b68ff31Ssthen	if(LDNS_ARCOUNT(sldns_buffer_begin(pkt)) > 1) {
933707f3Ssthen		verbose(VERB_QUERY, "request wrong nr ar=%d",
0b68ff31Ssthen			LDNS_ARCOUNT(sldns_buffer_begin(pkt)));
8b7325afSsthen		out->value = worker_err_ratelimit(worker, LDNS_RCODE_FORMERR);
8b7325afSsthen		return;
933707f3Ssthen	}
8b7325afSsthen	out->value = 0;
8b7325afSsthen	return;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_handle_control_cmd(struct tube* ATTR_UNUSED(tube), uint8_t* msg,
933707f3Ssthen	size_t len, int error, void* arg)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	enum worker_commands cmd;
933707f3Ssthen	if(error != NETEVENT_NOERROR) {
933707f3Ssthen		free(msg);
933707f3Ssthen		if(error == NETEVENT_CLOSED)
933707f3Ssthen			comm_base_exit(worker->base);
933707f3Ssthen		else	log_info("control event: %d", error);
933707f3Ssthen		return;
933707f3Ssthen	}
933707f3Ssthen	if(len != sizeof(uint32_t)) {
933707f3Ssthen		fatal_exit("bad control msg length %d", (int)len);
933707f3Ssthen	}
0b68ff31Ssthen	cmd = sldns_read_uint32(msg);
933707f3Ssthen	free(msg);
933707f3Ssthen	switch(cmd) {
933707f3Ssthen	case worker_cmd_quit:
933707f3Ssthen		verbose(VERB_ALGO, "got control cmd quit");
933707f3Ssthen		comm_base_exit(worker->base);
933707f3Ssthen		break;
933707f3Ssthen	case worker_cmd_stats:
933707f3Ssthen		verbose(VERB_ALGO, "got control cmd stats");
933707f3Ssthen		server_stats_reply(worker, 1);
933707f3Ssthen		break;
933707f3Ssthen	case worker_cmd_stats_noreset:
933707f3Ssthen		verbose(VERB_ALGO, "got control cmd stats_noreset");
933707f3Ssthen		server_stats_reply(worker, 0);
933707f3Ssthen		break;
933707f3Ssthen	case worker_cmd_remote:
933707f3Ssthen		verbose(VERB_ALGO, "got control cmd remote");
933707f3Ssthen		daemon_remote_exec(worker);
933707f3Ssthen		break;
933707f3Ssthen	default:
933707f3Ssthen		log_err("bad command %d", (int)cmd);
933707f3Ssthen		break;
933707f3Ssthen	}
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthen/** check if a delegation is secure */
933707f3Ssthenstatic enum sec_status
933707f3Ssthencheck_delegation_secure(struct reply_info *rep)
933707f3Ssthen{
933707f3Ssthen	/* return smallest security status */
933707f3Ssthen	size_t i;
933707f3Ssthen	enum sec_status sec = sec_status_secure;
933707f3Ssthen	enum sec_status s;
933707f3Ssthen	size_t num = rep->an_numrrsets + rep->ns_numrrsets;
933707f3Ssthen	/* check if answer and authority are OK */
933707f3Ssthen	for(i=0; i<num; i++) {
933707f3Ssthen		s = ((struct packed_rrset_data*)rep->rrsets[i]->entry.data)
933707f3Ssthen			->security;
933707f3Ssthen		if(s < sec)
933707f3Ssthen			sec = s;
933707f3Ssthen	}
933707f3Ssthen	/* in additional, only unchecked triggers revalidation */
933707f3Ssthen	for(i=num; i<rep->rrset_count; i++) {
933707f3Ssthen		s = ((struct packed_rrset_data*)rep->rrsets[i]->entry.data)
933707f3Ssthen			->security;
933707f3Ssthen		if(s == sec_status_unchecked)
933707f3Ssthen			return s;
933707f3Ssthen	}
933707f3Ssthen	return sec;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthen/** remove nonsecure from a delegation referral additional section */
933707f3Ssthenstatic void
933707f3Ssthendeleg_remove_nonsecure_additional(struct reply_info* rep)
933707f3Ssthen{
933707f3Ssthen	/* we can simply edit it, since we are working in the scratch region */
933707f3Ssthen	size_t i;
933707f3Ssthen	enum sec_status s;
933707f3Ssthen
933707f3Ssthen	for(i = rep->an_numrrsets+rep->ns_numrrsets; i<rep->rrset_count; i++) {
933707f3Ssthen		s = ((struct packed_rrset_data*)rep->rrsets[i]->entry.data)
933707f3Ssthen			->security;
933707f3Ssthen		if(s != sec_status_secure) {
933707f3Ssthen			memmove(rep->rrsets+i, rep->rrsets+i+1,
933707f3Ssthen				sizeof(struct ub_packed_rrset_key*)*
933707f3Ssthen				(rep->rrset_count - i - 1));
933707f3Ssthen			rep->ar_numrrsets--;
933707f3Ssthen			rep->rrset_count--;
933707f3Ssthen			i--;
933707f3Ssthen		}
933707f3Ssthen	}
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthen/** answer nonrecursive query from the cache */
933707f3Ssthenstatic int
933707f3Ssthenanswer_norec_from_cache(struct worker* worker, struct query_info* qinfo,
933707f3Ssthen	uint16_t id, uint16_t flags, struct comm_reply* repinfo,
933707f3Ssthen	struct edns_data* edns)
933707f3Ssthen{
933707f3Ssthen	/* for a nonrecursive query return either:
933707f3Ssthen	 * 	o an error (servfail; we try to avoid this)
933707f3Ssthen	 * 	o a delegation (closest we have; this routine tries that)
933707f3Ssthen	 * 	o the answer (checked by answer_from_cache)
933707f3Ssthen	 *
933707f3Ssthen	 * So, grab a delegation from the rrset cache.
933707f3Ssthen	 * Then check if it needs validation, if so, this routine fails,
933707f3Ssthen	 * so that iterator can prime and validator can verify rrsets.
933707f3Ssthen	 */
933707f3Ssthen	uint16_t udpsize = edns->udp_size;
933707f3Ssthen	int secure = 0;
e9c7b4efSsthen	time_t timenow = *worker->env.now;
8b7325afSsthen	int has_cd_bit = (flags&BIT_CD);
8b7325afSsthen	int must_validate = (!has_cd_bit || worker->env.cfg->ignore_cd)
933707f3Ssthen		&& worker->env.need_to_validate;
933707f3Ssthen	struct dns_msg *msg = NULL;
933707f3Ssthen	struct delegpt *dp;
933707f3Ssthen
933707f3Ssthen	dp = dns_cache_find_delegation(&worker->env, qinfo->qname,
933707f3Ssthen		qinfo->qname_len, qinfo->qtype, qinfo->qclass,
d1e2768aSsthen		worker->scratchpad, &msg, timenow, 0, NULL, 0);
933707f3Ssthen	if(!dp) { /* no delegation, need to reprime */
933707f3Ssthen		return 0;
933707f3Ssthen	}
77079be7Ssthen	/* In case we have a local alias, copy it into the delegation message.
77079be7Ssthen	 * Shallow copy should be fine, as we'll be done with msg in this
77079be7Ssthen	 * function. */
77079be7Ssthen	msg->qinfo.local_alias = qinfo->local_alias;
933707f3Ssthen	if(must_validate) {
933707f3Ssthen		switch(check_delegation_secure(msg->rep)) {
933707f3Ssthen		case sec_status_unchecked:
933707f3Ssthen			/* some rrsets have not been verified yet, go and
933707f3Ssthen			 * let validator do that */
933707f3Ssthen			return 0;
933707f3Ssthen		case sec_status_bogus:
20237c55Ssthen		case sec_status_secure_sentinel_fail:
933707f3Ssthen			/* some rrsets are bogus, reply servfail */
933707f3Ssthen			edns->edns_version = EDNS_ADVERTISED_VERSION;
933707f3Ssthen			edns->udp_size = EDNS_ADVERTISED_SIZE;
933707f3Ssthen			edns->ext_rcode = 0;
933707f3Ssthen			edns->bits &= EDNS_DO;
77079be7Ssthen			if(!inplace_cb_reply_servfail_call(&worker->env, qinfo, NULL,
9982a05dSsthen				msg->rep, LDNS_RCODE_SERVFAIL, edns, repinfo, worker->scratchpad,
9982a05dSsthen				worker->env.now_tv))
2ee382b6Ssthen					return 0;
8b7325afSsthen			/* Attach the cached EDE (RFC8914) */
8b7325afSsthen			if(worker->env.cfg->ede &&
8b7325afSsthen				msg->rep->reason_bogus != LDNS_EDE_NONE) {
8b7325afSsthen				edns_opt_list_append_ede(&edns->opt_list_out,
8b7325afSsthen					worker->scratchpad, msg->rep->reason_bogus,
8b7325afSsthen					msg->rep->reason_bogus_str);
0bdb4f62Ssthen			}
933707f3Ssthen			error_encode(repinfo->c->buffer, LDNS_RCODE_SERVFAIL,
933707f3Ssthen				&msg->qinfo, id, flags, edns);
933707f3Ssthen			if(worker->stats.extended) {
933707f3Ssthen				worker->stats.ans_bogus++;
933707f3Ssthen				worker->stats.ans_rcode[LDNS_RCODE_SERVFAIL]++;
933707f3Ssthen			}
933707f3Ssthen			return 1;
933707f3Ssthen		case sec_status_secure:
933707f3Ssthen			/* all rrsets are secure */
933707f3Ssthen			/* remove non-secure rrsets from the add. section*/
933707f3Ssthen			if(worker->env.cfg->val_clean_additional)
933707f3Ssthen				deleg_remove_nonsecure_additional(msg->rep);
933707f3Ssthen			secure = 1;
933707f3Ssthen			break;
933707f3Ssthen		case sec_status_indeterminate:
933707f3Ssthen		case sec_status_insecure:
933707f3Ssthen		default:
933707f3Ssthen			/* not secure */
933707f3Ssthen			secure = 0;
933707f3Ssthen			break;
933707f3Ssthen		}
933707f3Ssthen	}
933707f3Ssthen	/* return this delegation from the cache */
933707f3Ssthen	edns->edns_version = EDNS_ADVERTISED_VERSION;
933707f3Ssthen	edns->udp_size = EDNS_ADVERTISED_SIZE;
933707f3Ssthen	edns->ext_rcode = 0;
933707f3Ssthen	edns->bits &= EDNS_DO;
d896b962Ssthen	if(worker->env.cfg->disable_edns_do && (edns->bits & EDNS_DO))
d896b962Ssthen		edns->edns_present = 0;
77079be7Ssthen	if(!inplace_cb_reply_cache_call(&worker->env, qinfo, NULL, msg->rep,
9982a05dSsthen		(int)(flags&LDNS_RCODE_MASK), edns, repinfo, worker->scratchpad,
9982a05dSsthen		worker->env.now_tv))
2ee382b6Ssthen			return 0;
933707f3Ssthen	msg->rep->flags |= BIT_QR|BIT_RA;
8b7325afSsthen	/* Attach the cached EDE (RFC8914) if CD bit is set and the answer is
8b7325afSsthen	 * bogus. */
8b7325afSsthen	if(worker->env.cfg->ede && has_cd_bit &&
8b7325afSsthen		(check_delegation_secure(msg->rep) == sec_status_bogus ||
8b7325afSsthen		check_delegation_secure(msg->rep) == sec_status_secure_sentinel_fail) &&
8b7325afSsthen		msg->rep->reason_bogus != LDNS_EDE_NONE) {
8b7325afSsthen		edns_opt_list_append_ede(&edns->opt_list_out,
8b7325afSsthen			worker->scratchpad, msg->rep->reason_bogus,
8b7325afSsthen			msg->rep->reason_bogus_str);
8b7325afSsthen	}
e21c60efSsthen	if(!reply_info_answer_encode(&msg->qinfo, msg->rep, id, flags,
933707f3Ssthen		repinfo->c->buffer, 0, 1, worker->scratchpad,
933707f3Ssthen		udpsize, edns, (int)(edns->bits & EDNS_DO), secure)) {
77079be7Ssthen		if(!inplace_cb_reply_servfail_call(&worker->env, qinfo, NULL, NULL,
9982a05dSsthen			LDNS_RCODE_SERVFAIL, edns, repinfo, worker->scratchpad,
9982a05dSsthen			worker->env.now_tv))
e21c60efSsthen				edns->opt_list_inplace_cb_out = NULL;
933707f3Ssthen		error_encode(repinfo->c->buffer, LDNS_RCODE_SERVFAIL,
933707f3Ssthen			&msg->qinfo, id, flags, edns);
933707f3Ssthen	}
933707f3Ssthen	if(worker->stats.extended) {
933707f3Ssthen		if(secure) worker->stats.ans_secure++;
933707f3Ssthen		server_stats_insrcode(&worker->stats, repinfo->c->buffer);
933707f3Ssthen	}
933707f3Ssthen	return 1;
933707f3Ssthen}
933707f3Ssthen
2be9e038Ssthen/** Apply, if applicable, a response IP action to a cached answer.
2be9e038Ssthen * If the answer is rewritten as a result of an action, '*encode_repp' will
2be9e038Ssthen * point to the reply info containing the modified answer.  '*encode_repp' will
2be9e038Ssthen * be intact otherwise.
2be9e038Ssthen * It returns 1 on success, 0 otherwise. */
2be9e038Ssthenstatic int
2be9e038Ssthenapply_respip_action(struct worker* worker, const struct query_info* qinfo,
2be9e038Ssthen	struct respip_client_info* cinfo, struct reply_info* rep,
45872187Ssthen	struct sockaddr_storage* addr, socklen_t addrlen,
45872187Ssthen	struct ub_packed_rrset_key** alias_rrset,
eaf2578eSsthen	struct reply_info** encode_repp, struct auth_zones* az)
2be9e038Ssthen{
eba819a2Ssthen	struct respip_action_info actinfo = {0, 0, 0, 0, NULL, 0, NULL};
eaf2578eSsthen	actinfo.action = respip_none;
2be9e038Ssthen
2be9e038Ssthen	if(qinfo->qtype != LDNS_RR_TYPE_A &&
2be9e038Ssthen		qinfo->qtype != LDNS_RR_TYPE_AAAA &&
2be9e038Ssthen		qinfo->qtype != LDNS_RR_TYPE_ANY)
2be9e038Ssthen		return 1;
2be9e038Ssthen
2be9e038Ssthen	if(!respip_rewrite_reply(qinfo, cinfo, rep, encode_repp, &actinfo,
0bdb4f62Ssthen		alias_rrset, 0, worker->scratchpad, az, NULL))
2be9e038Ssthen		return 0;
2be9e038Ssthen
2be9e038Ssthen	/* xxx_deny actions mean dropping the reply, unless the original reply
2be9e038Ssthen	 * was redirected to response-ip data. */
8b7325afSsthen	if(actinfo.action == respip_always_deny ||
8b7325afSsthen		((actinfo.action == respip_deny ||
2be9e038Ssthen		actinfo.action == respip_inform_deny) &&
8b7325afSsthen		*encode_repp == rep))
2be9e038Ssthen		*encode_repp = NULL;
2be9e038Ssthen
2be9e038Ssthen	/* If address info is returned, it means the action should be an
2be9e038Ssthen	 * 'inform' variant and the information should be logged. */
2be9e038Ssthen	if(actinfo.addrinfo) {
eaf2578eSsthen		respip_inform_print(&actinfo, qinfo->qname,
2be9e038Ssthen			qinfo->qtype, qinfo->qclass, qinfo->local_alias,
45872187Ssthen			addr, addrlen);
eaf2578eSsthen
eaf2578eSsthen		if(worker->stats.extended && actinfo.rpz_used) {
eaf2578eSsthen			if(actinfo.rpz_disabled)
eaf2578eSsthen				worker->stats.rpz_action[RPZ_DISABLED_ACTION]++;
eaf2578eSsthen			if(actinfo.rpz_cname_override)
eaf2578eSsthen				worker->stats.rpz_action[RPZ_CNAME_OVERRIDE_ACTION]++;
eaf2578eSsthen			else
eaf2578eSsthen				worker->stats.rpz_action[
eaf2578eSsthen					respip_action_to_rpz_action(actinfo.action)]++;
eaf2578eSsthen		}
2be9e038Ssthen	}
2be9e038Ssthen
2be9e038Ssthen	return 1;
2be9e038Ssthen}
2be9e038Ssthen
2be9e038Ssthen/** answer query from the cache.
2be9e038Ssthen * Normally, the answer message will be built in repinfo->c->buffer; if the
2be9e038Ssthen * answer is supposed to be suppressed or the answer is supposed to be an
2be9e038Ssthen * incomplete CNAME chain, the buffer is explicitly cleared to signal the
2be9e038Ssthen * caller as such.  In the latter case *partial_rep will point to the incomplete
2be9e038Ssthen * reply, and this function is (possibly) supposed to be called again with that
2be9e038Ssthen * *partial_rep value to complete the chain.  In addition, if the query should
2be9e038Ssthen * be completely dropped, '*need_drop' will be set to 1. */
933707f3Ssthenstatic int
933707f3Ssthenanswer_from_cache(struct worker* worker, struct query_info* qinfo,
eaf2578eSsthen	struct respip_client_info* cinfo, int* need_drop, int* is_expired_answer,
eaf2578eSsthen	int* is_secure_answer, struct ub_packed_rrset_key** alias_rrset,
2be9e038Ssthen	struct reply_info** partial_repp,
933707f3Ssthen	struct reply_info* rep, uint16_t id, uint16_t flags,
933707f3Ssthen	struct comm_reply* repinfo, struct edns_data* edns)
933707f3Ssthen{
e9c7b4efSsthen	time_t timenow = *worker->env.now;
933707f3Ssthen	uint16_t udpsize = edns->udp_size;
2be9e038Ssthen	struct reply_info* encode_rep = rep;
2be9e038Ssthen	struct reply_info* partial_rep = *partial_repp;
8b7325afSsthen	int has_cd_bit = (flags&BIT_CD);
8b7325afSsthen	int must_validate = (!has_cd_bit || worker->env.cfg->ignore_cd)
933707f3Ssthen		&& worker->env.need_to_validate;
2be9e038Ssthen	*partial_repp = NULL;  /* avoid accidental further pass */
eaf2578eSsthen
eaf2578eSsthen	/* Check TTL */
eaf2578eSsthen	if(rep->ttl < timenow) {
eaf2578eSsthen		/* Check if we need to serve expired now */
eaf2578eSsthen		if(worker->env.cfg->serve_expired &&
2bdc0ed1Ssthen			!worker->env.cfg->serve_expired_client_timeout
2bdc0ed1Ssthen#ifdef USE_CACHEDB
2bdc0ed1Ssthen			&& !(worker->env.cachedb_enabled &&
2bdc0ed1Ssthen			  worker->env.cfg->cachedb_check_when_serve_expired)
2bdc0ed1Ssthen#endif
2bdc0ed1Ssthen			) {
2308e98cSsthen				if(worker->env.cfg->serve_expired_ttl &&
2308e98cSsthen					rep->serve_expired_ttl < timenow)
2308e98cSsthen					return 0;
8b7325afSsthen				/* Ignore expired failure answers */
8b7325afSsthen				if(FLAGS_GET_RCODE(rep->flags) !=
8b7325afSsthen					LDNS_RCODE_NOERROR &&
8b7325afSsthen					FLAGS_GET_RCODE(rep->flags) !=
8b7325afSsthen					LDNS_RCODE_NXDOMAIN &&
8b7325afSsthen					FLAGS_GET_RCODE(rep->flags) !=
8b7325afSsthen					LDNS_RCODE_YXDOMAIN)
8b7325afSsthen					return 0;
77079be7Ssthen				if(!rrset_array_lock(rep->ref, rep->rrset_count, 0))
77079be7Ssthen					return 0;
eaf2578eSsthen				*is_expired_answer = 1;
77079be7Ssthen		} else {
933707f3Ssthen			/* the rrsets may have been updated in the meantime.
933707f3Ssthen			 * we will refetch the message format from the
933707f3Ssthen			 * authoritative server
933707f3Ssthen			 */
933707f3Ssthen			return 0;
933707f3Ssthen		}
eaf2578eSsthen	} else {
933707f3Ssthen		if(!rrset_array_lock(rep->ref, rep->rrset_count, timenow))
933707f3Ssthen			return 0;
77079be7Ssthen	}
eaf2578eSsthen	/* locked and ids and ttls are OK. */
eaf2578eSsthen
933707f3Ssthen	/* check CNAME chain (if any) */
933707f3Ssthen	if(rep->an_numrrsets > 0 && (rep->rrsets[0]->rk.type ==
933707f3Ssthen		htons(LDNS_RR_TYPE_CNAME) || rep->rrsets[0]->rk.type ==
933707f3Ssthen		htons(LDNS_RR_TYPE_DNAME))) {
a58bff56Ssthen		if(!reply_check_cname_chain(qinfo, rep)) {
933707f3Ssthen			/* cname chain invalid, redo iterator steps */
933707f3Ssthen			verbose(VERB_ALGO, "Cache reply: cname chain broken");
550cf4a9Ssthen			goto bail_out;
933707f3Ssthen		}
933707f3Ssthen	}
933707f3Ssthen	/* check security status of the cached answer */
20237c55Ssthen	if(must_validate && (rep->security == sec_status_bogus ||
20237c55Ssthen		rep->security == sec_status_secure_sentinel_fail)) {
933707f3Ssthen		/* BAD cached */
933707f3Ssthen		edns->edns_version = EDNS_ADVERTISED_VERSION;
933707f3Ssthen		edns->udp_size = EDNS_ADVERTISED_SIZE;
933707f3Ssthen		edns->ext_rcode = 0;
933707f3Ssthen		edns->bits &= EDNS_DO;
d896b962Ssthen		if(worker->env.cfg->disable_edns_do && (edns->bits & EDNS_DO))
d896b962Ssthen			edns->edns_present = 0;
77079be7Ssthen		if(!inplace_cb_reply_servfail_call(&worker->env, qinfo, NULL, rep,
9982a05dSsthen			LDNS_RCODE_SERVFAIL, edns, repinfo, worker->scratchpad,
9982a05dSsthen			worker->env.now_tv))
77079be7Ssthen			goto bail_out;
8b7325afSsthen		/* Attach the cached EDE (RFC8914) */
8b7325afSsthen		if(worker->env.cfg->ede && rep->reason_bogus != LDNS_EDE_NONE) {
8b7325afSsthen			edns_opt_list_append_ede(&edns->opt_list_out,
8b7325afSsthen					worker->scratchpad, rep->reason_bogus,
8b7325afSsthen					rep->reason_bogus_str);
0bdb4f62Ssthen		}
933707f3Ssthen		error_encode(repinfo->c->buffer, LDNS_RCODE_SERVFAIL,
933707f3Ssthen			qinfo, id, flags, edns);
933707f3Ssthen		rrset_array_unlock_touch(worker->env.rrset_cache,
933707f3Ssthen			worker->scratchpad, rep->ref, rep->rrset_count);
933707f3Ssthen		if(worker->stats.extended) {
933707f3Ssthen			worker->stats.ans_bogus ++;
933707f3Ssthen			worker->stats.ans_rcode[LDNS_RCODE_SERVFAIL] ++;
933707f3Ssthen		}
933707f3Ssthen		return 1;
933707f3Ssthen	} else if(rep->security == sec_status_unchecked && must_validate) {
933707f3Ssthen		verbose(VERB_ALGO, "Cache reply: unchecked entry needs "
933707f3Ssthen			"validation");
933707f3Ssthen		goto bail_out; /* need to validate cache entry first */
933707f3Ssthen	} else if(rep->security == sec_status_secure) {
eaf2578eSsthen		if(reply_all_rrsets_secure(rep)) {
eaf2578eSsthen			*is_secure_answer = 1;
eaf2578eSsthen		} else {
933707f3Ssthen			if(must_validate) {
933707f3Ssthen				verbose(VERB_ALGO, "Cache reply: secure entry"
933707f3Ssthen					" changed status");
933707f3Ssthen				goto bail_out; /* rrset changed, re-verify */
933707f3Ssthen			}
eaf2578eSsthen			*is_secure_answer = 0;
933707f3Ssthen		}
eaf2578eSsthen	} else *is_secure_answer = 0;
933707f3Ssthen
933707f3Ssthen	edns->edns_version = EDNS_ADVERTISED_VERSION;
933707f3Ssthen	edns->udp_size = EDNS_ADVERTISED_SIZE;
933707f3Ssthen	edns->ext_rcode = 0;
933707f3Ssthen	edns->bits &= EDNS_DO;
d896b962Ssthen	if(worker->env.cfg->disable_edns_do && (edns->bits & EDNS_DO))
d896b962Ssthen		edns->edns_present = 0;
2be9e038Ssthen	*alias_rrset = NULL; /* avoid confusion if caller set it to non-NULL */
eaf2578eSsthen	if((worker->daemon->use_response_ip || worker->daemon->use_rpz) &&
eaf2578eSsthen		!partial_rep && !apply_respip_action(worker, qinfo, cinfo, rep,
45872187Ssthen		&repinfo->client_addr, repinfo->client_addrlen, alias_rrset,
eaf2578eSsthen		&encode_rep, worker->env.auth_zones)) {
2be9e038Ssthen		goto bail_out;
2be9e038Ssthen	} else if(partial_rep &&
2be9e038Ssthen		!respip_merge_cname(partial_rep, qinfo, rep, cinfo,
eaf2578eSsthen		must_validate, &encode_rep, worker->scratchpad,
eaf2578eSsthen		worker->env.auth_zones)) {
2be9e038Ssthen		goto bail_out;
2be9e038Ssthen	}
eaf2578eSsthen	if(encode_rep != rep) {
eaf2578eSsthen		/* if rewritten, it can't be considered "secure" */
eaf2578eSsthen		*is_secure_answer = 0;
eaf2578eSsthen	}
2be9e038Ssthen	if(!encode_rep || *alias_rrset) {
2be9e038Ssthen		if(!encode_rep)
2be9e038Ssthen			*need_drop = 1;
2be9e038Ssthen		else {
2be9e038Ssthen			/* If a partial CNAME chain is found, we first need to
2be9e038Ssthen			 * make a copy of the reply in the scratchpad so we
2be9e038Ssthen			 * can release the locks and lookup the cache again. */
2be9e038Ssthen			*partial_repp = reply_info_copy(encode_rep, NULL,
2be9e038Ssthen				worker->scratchpad);
2be9e038Ssthen			if(!*partial_repp)
2be9e038Ssthen				goto bail_out;
2be9e038Ssthen		}
0bdb4f62Ssthen	} else {
0bdb4f62Ssthen		if(*is_expired_answer == 1 &&
0bdb4f62Ssthen			worker->env.cfg->ede_serve_expired && worker->env.cfg->ede) {
0bdb4f62Ssthen			EDNS_OPT_LIST_APPEND_EDE(&edns->opt_list_out,
0bdb4f62Ssthen				worker->scratchpad, LDNS_EDE_STALE_ANSWER, "");
0bdb4f62Ssthen		}
8b7325afSsthen		/* Attach the cached EDE (RFC8914) if CD bit is set and the
8b7325afSsthen		 * answer is bogus. */
8b7325afSsthen		if(*is_secure_answer == 0 &&
8b7325afSsthen			worker->env.cfg->ede && has_cd_bit &&
8b7325afSsthen			encode_rep->reason_bogus != LDNS_EDE_NONE) {
8b7325afSsthen			edns_opt_list_append_ede(&edns->opt_list_out,
8b7325afSsthen				worker->scratchpad, encode_rep->reason_bogus,
8b7325afSsthen				encode_rep->reason_bogus_str);
8b7325afSsthen		}
8b7325afSsthen		if(!inplace_cb_reply_cache_call(&worker->env, qinfo, NULL, encode_rep,
8b7325afSsthen			(int)(flags&LDNS_RCODE_MASK), edns, repinfo, worker->scratchpad,
8b7325afSsthen			worker->env.now_tv))
8b7325afSsthen			goto bail_out;
0bdb4f62Ssthen		if(!reply_info_answer_encode(qinfo, encode_rep, id, flags,
933707f3Ssthen			repinfo->c->buffer, timenow, 1, worker->scratchpad,
0bdb4f62Ssthen			udpsize, edns, (int)(edns->bits & EDNS_DO),
0bdb4f62Ssthen			*is_secure_answer)) {
0bdb4f62Ssthen			if(!inplace_cb_reply_servfail_call(&worker->env, qinfo,
0bdb4f62Ssthen				NULL, NULL, LDNS_RCODE_SERVFAIL, edns, repinfo,
0bdb4f62Ssthen				worker->scratchpad, worker->env.now_tv))
e21c60efSsthen					edns->opt_list_inplace_cb_out = NULL;
933707f3Ssthen			error_encode(repinfo->c->buffer, LDNS_RCODE_SERVFAIL,
933707f3Ssthen				qinfo, id, flags, edns);
933707f3Ssthen		}
0bdb4f62Ssthen	}
933707f3Ssthen	/* cannot send the reply right now, because blocking network syscall
933707f3Ssthen	 * is bad while holding locks. */
933707f3Ssthen	rrset_array_unlock_touch(worker->env.rrset_cache, worker->scratchpad,
933707f3Ssthen		rep->ref, rep->rrset_count);
933707f3Ssthen	/* go and return this buffer to the client */
933707f3Ssthen	return 1;
550cf4a9Ssthen
550cf4a9Ssthenbail_out:
550cf4a9Ssthen	rrset_array_unlock_touch(worker->env.rrset_cache,
550cf4a9Ssthen		worker->scratchpad, rep->ref, rep->rrset_count);
550cf4a9Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
8240c1b9Ssthen/** Reply to client and perform prefetch to keep cache up to date. */
933707f3Ssthenstatic void
933707f3Ssthenreply_and_prefetch(struct worker* worker, struct query_info* qinfo,
0bdb4f62Ssthen	uint16_t flags, struct comm_reply* repinfo, time_t leeway, int noreply,
0bdb4f62Ssthen	int rpz_passthru, struct edns_option* opt_list)
933707f3Ssthen{
0bdb4f62Ssthen	(void)opt_list;
933707f3Ssthen	/* first send answer to client to keep its latency
933707f3Ssthen	 * as small as a cachereply */
8240c1b9Ssthen	if(!noreply) {
550cf4a9Ssthen		if(repinfo->c->tcp_req_info) {
550cf4a9Ssthen			sldns_buffer_copy(
550cf4a9Ssthen				repinfo->c->tcp_req_info->spool_buffer,
550cf4a9Ssthen				repinfo->c->buffer);
550cf4a9Ssthen		}
933707f3Ssthen		comm_point_send_reply(repinfo);
550cf4a9Ssthen	}
933707f3Ssthen	server_stats_prefetch(&worker->stats, worker);
0bdb4f62Ssthen#ifdef CLIENT_SUBNET
0bdb4f62Ssthen	/* Check if the subnet module is enabled. In that case pass over the
0bdb4f62Ssthen	 * comm_reply information for ECS generation later. The mesh states are
0bdb4f62Ssthen	 * unique when subnet is enabled. */
0bdb4f62Ssthen	if(modstack_find(&worker->env.mesh->mods, "subnetcache") != -1
0bdb4f62Ssthen		&& worker->env.unique_mesh) {
0bdb4f62Ssthen		mesh_new_prefetch(worker->env.mesh, qinfo, flags, leeway +
8b7325afSsthen			PREFETCH_EXPIRY_ADD, rpz_passthru,
8b7325afSsthen			&repinfo->client_addr, opt_list);
0bdb4f62Ssthen		return;
0bdb4f62Ssthen	}
0bdb4f62Ssthen#endif
933707f3Ssthen	/* create the prefetch in the mesh as a normal lookup without
933707f3Ssthen	 * client addrs waiting, which has the cache blacklisted (to bypass
933707f3Ssthen	 * the cache and go to the network for the data). */
933707f3Ssthen	/* this (potentially) runs the mesh for the new query */
933707f3Ssthen	mesh_new_prefetch(worker->env.mesh, qinfo, flags, leeway +
0bdb4f62Ssthen		PREFETCH_EXPIRY_ADD, rpz_passthru, NULL, NULL);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthen/**
933707f3Ssthen * Fill CH class answer into buffer. Keeps query.
933707f3Ssthen * @param pkt: buffer
933707f3Ssthen * @param str: string to put into text record (<255).
2be9e038Ssthen * 	array of strings, every string becomes a text record.
2be9e038Ssthen * @param num: number of strings in array.
933707f3Ssthen * @param edns: edns reply information.
2ee382b6Ssthen * @param worker: worker with scratch region.
2308e98cSsthen * @param repinfo: reply information for a communication point.
933707f3Ssthen */
933707f3Ssthenstatic void
2be9e038Ssthenchaos_replystr(sldns_buffer* pkt, char** str, int num, struct edns_data* edns,
2308e98cSsthen	struct worker* worker, struct comm_reply* repinfo)
933707f3Ssthen{
2be9e038Ssthen	int i;
0b68ff31Ssthen	unsigned int rd = LDNS_RD_WIRE(sldns_buffer_begin(pkt));
0b68ff31Ssthen	unsigned int cd = LDNS_CD_WIRE(sldns_buffer_begin(pkt));
e21c60efSsthen	size_t udpsize = edns->udp_size;
e21c60efSsthen	edns->edns_version = EDNS_ADVERTISED_VERSION;
e21c60efSsthen	edns->udp_size = EDNS_ADVERTISED_SIZE;
e21c60efSsthen	edns->bits &= EDNS_DO;
e21c60efSsthen	if(!inplace_cb_reply_local_call(&worker->env, NULL, NULL, NULL,
e21c60efSsthen		LDNS_RCODE_NOERROR, edns, repinfo, worker->scratchpad,
e21c60efSsthen		worker->env.now_tv))
e21c60efSsthen			edns->opt_list_inplace_cb_out = NULL;
0b68ff31Ssthen	sldns_buffer_clear(pkt);
0b68ff31Ssthen	sldns_buffer_skip(pkt, (ssize_t)sizeof(uint16_t)); /* skip id */
0b68ff31Ssthen	sldns_buffer_write_u16(pkt, (uint16_t)(BIT_QR|BIT_RA));
0b68ff31Ssthen	if(rd) LDNS_RD_SET(sldns_buffer_begin(pkt));
0b68ff31Ssthen	if(cd) LDNS_CD_SET(sldns_buffer_begin(pkt));
0b68ff31Ssthen	sldns_buffer_write_u16(pkt, 1); /* qdcount */
2be9e038Ssthen	sldns_buffer_write_u16(pkt, (uint16_t)num); /* ancount */
0b68ff31Ssthen	sldns_buffer_write_u16(pkt, 0); /* nscount */
0b68ff31Ssthen	sldns_buffer_write_u16(pkt, 0); /* arcount */
933707f3Ssthen	(void)query_dname_len(pkt); /* skip qname */
0b68ff31Ssthen	sldns_buffer_skip(pkt, (ssize_t)sizeof(uint16_t)); /* skip qtype */
0b68ff31Ssthen	sldns_buffer_skip(pkt, (ssize_t)sizeof(uint16_t)); /* skip qclass */
2be9e038Ssthen	for(i=0; i<num; i++) {
2be9e038Ssthen		size_t len = strlen(str[i]);
2be9e038Ssthen		if(len>255) len=255; /* cap size of TXT record */
e21c60efSsthen		if(sldns_buffer_position(pkt)+2+2+2+4+2+1+len+
e21c60efSsthen			calc_edns_field_size(edns) > udpsize) {
e21c60efSsthen			sldns_buffer_write_u16_at(pkt, 6, i); /* ANCOUNT */
e21c60efSsthen			LDNS_TC_SET(sldns_buffer_begin(pkt));
e21c60efSsthen			break;
e21c60efSsthen		}
0b68ff31Ssthen		sldns_buffer_write_u16(pkt, 0xc00c); /* compr ptr to query */
0b68ff31Ssthen		sldns_buffer_write_u16(pkt, LDNS_RR_TYPE_TXT);
0b68ff31Ssthen		sldns_buffer_write_u16(pkt, LDNS_RR_CLASS_CH);
0b68ff31Ssthen		sldns_buffer_write_u32(pkt, 0); /* TTL */
0b68ff31Ssthen		sldns_buffer_write_u16(pkt, sizeof(uint8_t) + len);
0b68ff31Ssthen		sldns_buffer_write_u8(pkt, len);
2be9e038Ssthen		sldns_buffer_write(pkt, str[i], len);
2be9e038Ssthen	}
0b68ff31Ssthen	sldns_buffer_flip(pkt);
2be9e038Ssthen	if(sldns_buffer_capacity(pkt) >=
2be9e038Ssthen		sldns_buffer_limit(pkt)+calc_edns_field_size(edns))
933707f3Ssthen		attach_edns_record(pkt, edns);
933707f3Ssthen}
933707f3Ssthen
2be9e038Ssthen/** Reply with one string */
2be9e038Ssthenstatic void
2be9e038Ssthenchaos_replyonestr(sldns_buffer* pkt, const char* str, struct edns_data* edns,
2308e98cSsthen	struct worker* worker, struct comm_reply* repinfo)
2be9e038Ssthen{
2308e98cSsthen	chaos_replystr(pkt, (char**)&str, 1, edns, worker, repinfo);
2be9e038Ssthen}
2be9e038Ssthen
2be9e038Ssthen/**
2be9e038Ssthen * Create CH class trustanchor answer.
2be9e038Ssthen * @param pkt: buffer
2be9e038Ssthen * @param edns: edns reply information.
2be9e038Ssthen * @param w: worker with scratch region.
2308e98cSsthen * @param repinfo: reply information for a communication point.
2be9e038Ssthen */
2be9e038Ssthenstatic void
2308e98cSsthenchaos_trustanchor(sldns_buffer* pkt, struct edns_data* edns, struct worker* w,
2308e98cSsthen	struct comm_reply* repinfo)
2be9e038Ssthen{
2be9e038Ssthen#define TA_RESPONSE_MAX_TXT 16 /* max number of TXT records */
2be9e038Ssthen#define TA_RESPONSE_MAX_TAGS 32 /* max number of tags printed per zone */
2be9e038Ssthen	char* str_array[TA_RESPONSE_MAX_TXT];
2be9e038Ssthen	uint16_t tags[TA_RESPONSE_MAX_TAGS];
2be9e038Ssthen	int num = 0;
2be9e038Ssthen	struct trust_anchor* ta;
2be9e038Ssthen
2be9e038Ssthen	if(!w->env.need_to_validate) {
2be9e038Ssthen		/* no validator module, reply no trustanchors */
2308e98cSsthen		chaos_replystr(pkt, NULL, 0, edns, w, repinfo);
2be9e038Ssthen		return;
2be9e038Ssthen	}
2be9e038Ssthen
2be9e038Ssthen	/* fill the string with contents */
2be9e038Ssthen	lock_basic_lock(&w->env.anchors->lock);
2be9e038Ssthen	RBTREE_FOR(ta, struct trust_anchor*, w->env.anchors->tree) {
2be9e038Ssthen		char* str;
2be9e038Ssthen		size_t i, numtag, str_len = 255;
2be9e038Ssthen		if(num == TA_RESPONSE_MAX_TXT) continue;
2be9e038Ssthen		str = (char*)regional_alloc(w->scratchpad, str_len);
2be9e038Ssthen		if(!str) continue;
2be9e038Ssthen		lock_basic_lock(&ta->lock);
2be9e038Ssthen		numtag = anchor_list_keytags(ta, tags, TA_RESPONSE_MAX_TAGS);
2be9e038Ssthen		if(numtag == 0) {
2be9e038Ssthen			/* empty, insecure point */
2be9e038Ssthen			lock_basic_unlock(&ta->lock);
2be9e038Ssthen			continue;
2be9e038Ssthen		}
2be9e038Ssthen		str_array[num] = str;
2be9e038Ssthen		num++;
2be9e038Ssthen
2be9e038Ssthen		/* spool name of anchor */
2be9e038Ssthen		(void)sldns_wire2str_dname_buf(ta->name, ta->namelen, str, str_len);
2be9e038Ssthen		str_len -= strlen(str); str += strlen(str);
2be9e038Ssthen		/* spool tags */
2be9e038Ssthen		for(i=0; i<numtag; i++) {
2be9e038Ssthen			snprintf(str, str_len, " %u", (unsigned)tags[i]);
2be9e038Ssthen			str_len -= strlen(str); str += strlen(str);
2be9e038Ssthen		}
2be9e038Ssthen		lock_basic_unlock(&ta->lock);
2be9e038Ssthen	}
2be9e038Ssthen	lock_basic_unlock(&w->env.anchors->lock);
2be9e038Ssthen
2308e98cSsthen	chaos_replystr(pkt, str_array, num, edns, w, repinfo);
2be9e038Ssthen	regional_free_all(w->scratchpad);
2be9e038Ssthen}
2be9e038Ssthen
933707f3Ssthen/**
933707f3Ssthen * Answer CH class queries.
933707f3Ssthen * @param w: worker
933707f3Ssthen * @param qinfo: query info. Pointer into packet buffer.
933707f3Ssthen * @param edns: edns info from query.
2308e98cSsthen * @param repinfo: reply information for a communication point.
933707f3Ssthen * @param pkt: packet buffer.
933707f3Ssthen * @return: true if a reply is to be sent.
933707f3Ssthen */
933707f3Ssthenstatic int
933707f3Ssthenanswer_chaos(struct worker* w, struct query_info* qinfo,
2308e98cSsthen	struct edns_data* edns, struct comm_reply* repinfo, sldns_buffer* pkt)
933707f3Ssthen{
933707f3Ssthen	struct config_file* cfg = w->env.cfg;
933707f3Ssthen	if(qinfo->qtype != LDNS_RR_TYPE_ANY && qinfo->qtype != LDNS_RR_TYPE_TXT)
933707f3Ssthen		return 0;
933707f3Ssthen	if(query_dname_compare(qinfo->qname,
933707f3Ssthen		(uint8_t*)"\002id\006server") == 0 ||
933707f3Ssthen		query_dname_compare(qinfo->qname,
933707f3Ssthen		(uint8_t*)"\010hostname\004bind") == 0)
933707f3Ssthen	{
933707f3Ssthen		if(cfg->hide_identity)
933707f3Ssthen			return 0;
933707f3Ssthen		if(cfg->identity==NULL || cfg->identity[0]==0) {
933707f3Ssthen			char buf[MAXHOSTNAMELEN+1];
933707f3Ssthen			if (gethostname(buf, MAXHOSTNAMELEN) == 0) {
933707f3Ssthen				buf[MAXHOSTNAMELEN] = 0;
2308e98cSsthen				chaos_replyonestr(pkt, buf, edns, w, repinfo);
933707f3Ssthen			} else 	{
933707f3Ssthen				log_err("gethostname: %s", strerror(errno));
2308e98cSsthen				chaos_replyonestr(pkt, "no hostname", edns, w, repinfo);
933707f3Ssthen			}
933707f3Ssthen		}
2308e98cSsthen		else 	chaos_replyonestr(pkt, cfg->identity, edns, w, repinfo);
933707f3Ssthen		return 1;
933707f3Ssthen	}
933707f3Ssthen	if(query_dname_compare(qinfo->qname,
933707f3Ssthen		(uint8_t*)"\007version\006server") == 0 ||
933707f3Ssthen		query_dname_compare(qinfo->qname,
933707f3Ssthen		(uint8_t*)"\007version\004bind") == 0)
933707f3Ssthen	{
933707f3Ssthen		if(cfg->hide_version)
933707f3Ssthen			return 0;
933707f3Ssthen		if(cfg->version==NULL || cfg->version[0]==0)
2308e98cSsthen			chaos_replyonestr(pkt, PACKAGE_STRING, edns, w, repinfo);
2308e98cSsthen		else 	chaos_replyonestr(pkt, cfg->version, edns, w, repinfo);
933707f3Ssthen		return 1;
933707f3Ssthen	}
2be9e038Ssthen	if(query_dname_compare(qinfo->qname,
2be9e038Ssthen		(uint8_t*)"\013trustanchor\007unbound") == 0)
2be9e038Ssthen	{
2be9e038Ssthen		if(cfg->hide_trustanchor)
2be9e038Ssthen			return 0;
2308e98cSsthen		chaos_trustanchor(pkt, edns, w, repinfo);
2be9e038Ssthen		return 1;
2be9e038Ssthen	}
2be9e038Ssthen
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
20237c55Ssthen/**
20237c55Ssthen * Answer notify queries.  These are notifies for authoritative zones,
20237c55Ssthen * the reply is an ack that the notify has been received.  We need to check
20237c55Ssthen * access permission here.
20237c55Ssthen * @param w: worker
20237c55Ssthen * @param qinfo: query info. Pointer into packet buffer.
20237c55Ssthen * @param edns: edns info from query.
45872187Ssthen * @param addr: client address.
45872187Ssthen * @param addrlen: client address length.
20237c55Ssthen * @param pkt: packet buffer.
20237c55Ssthen */
20237c55Ssthenstatic void
20237c55Ssthenanswer_notify(struct worker* w, struct query_info* qinfo,
45872187Ssthen	struct edns_data* edns, sldns_buffer* pkt,
45872187Ssthen	struct sockaddr_storage* addr, socklen_t addrlen)
20237c55Ssthen{
20237c55Ssthen	int refused = 0;
20237c55Ssthen	int rcode = LDNS_RCODE_NOERROR;
20237c55Ssthen	uint32_t serial = 0;
20237c55Ssthen	int has_serial;
20237c55Ssthen	if(!w->env.auth_zones) return;
20237c55Ssthen	has_serial = auth_zone_parse_notify_serial(pkt, &serial);
20237c55Ssthen	if(auth_zones_notify(w->env.auth_zones, &w->env, qinfo->qname,
45872187Ssthen		qinfo->qname_len, qinfo->qclass, addr,
45872187Ssthen		addrlen, has_serial, serial, &refused)) {
20237c55Ssthen		rcode = LDNS_RCODE_NOERROR;
20237c55Ssthen	} else {
20237c55Ssthen		if(refused)
20237c55Ssthen			rcode = LDNS_RCODE_REFUSED;
20237c55Ssthen		else	rcode = LDNS_RCODE_SERVFAIL;
20237c55Ssthen	}
20237c55Ssthen
20237c55Ssthen	if(verbosity >= VERB_DETAIL) {
20237c55Ssthen		char buf[380];
20237c55Ssthen		char zname[255+1];
20237c55Ssthen		char sr[25];
20237c55Ssthen		dname_str(qinfo->qname, zname);
20237c55Ssthen		sr[0]=0;
20237c55Ssthen		if(has_serial)
20237c55Ssthen			snprintf(sr, sizeof(sr), "serial %u ",
20237c55Ssthen				(unsigned)serial);
20237c55Ssthen		if(rcode == LDNS_RCODE_REFUSED)
20237c55Ssthen			snprintf(buf, sizeof(buf),
20237c55Ssthen				"refused NOTIFY %sfor %s from", sr, zname);
20237c55Ssthen		else if(rcode == LDNS_RCODE_SERVFAIL)
20237c55Ssthen			snprintf(buf, sizeof(buf),
20237c55Ssthen				"servfail for NOTIFY %sfor %s from", sr, zname);
20237c55Ssthen		else	snprintf(buf, sizeof(buf),
20237c55Ssthen				"received NOTIFY %sfor %s from", sr, zname);
45872187Ssthen		log_addr(VERB_DETAIL, buf, addr, addrlen);
20237c55Ssthen	}
20237c55Ssthen	edns->edns_version = EDNS_ADVERTISED_VERSION;
20237c55Ssthen	edns->udp_size = EDNS_ADVERTISED_SIZE;
20237c55Ssthen	edns->ext_rcode = 0;
20237c55Ssthen	edns->bits &= EDNS_DO;
20237c55Ssthen	error_encode(pkt, rcode, qinfo,
20237c55Ssthen		*(uint16_t*)(void *)sldns_buffer_begin(pkt),
20237c55Ssthen		sldns_buffer_read_u16_at(pkt, 2), edns);
20237c55Ssthen	LDNS_OPCODE_SET(sldns_buffer_begin(pkt), LDNS_PACKET_NOTIFY);
20237c55Ssthen}
20237c55Ssthen
e10d3884Sbradstatic int
0b68ff31Ssthendeny_refuse(struct comm_point* c, enum acl_access acl,
0b68ff31Ssthen	enum acl_access deny, enum acl_access refuse,
0bdb4f62Ssthen	struct worker* worker, struct comm_reply* repinfo,
8b7325afSsthen	struct acl_addr* acladdr, int ede,
8b7325afSsthen	struct check_request_result* check_result)
0b68ff31Ssthen{
0b68ff31Ssthen	if(acl == deny) {
0bdb4f62Ssthen		if(verbosity >= VERB_ALGO) {
45872187Ssthen			log_acl_action("dropped", &repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen, acl, acladdr);
0bdb4f62Ssthen			log_buf(VERB_ALGO, "dropped", c->buffer);
0bdb4f62Ssthen		}
0b68ff31Ssthen		comm_point_drop_reply(repinfo);
0b68ff31Ssthen		if(worker->stats.extended)
0b68ff31Ssthen			worker->stats.unwanted_queries++;
0b68ff31Ssthen		return 0;
0b68ff31Ssthen	} else if(acl == refuse) {
0bdb4f62Ssthen		size_t opt_rr_mark;
0bdb4f62Ssthen
0bdb4f62Ssthen		if(verbosity >= VERB_ALGO) {
45872187Ssthen			log_acl_action("refused", &repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen, acl, acladdr);
0b68ff31Ssthen			log_buf(VERB_ALGO, "refuse", c->buffer);
0bdb4f62Ssthen		}
0bdb4f62Ssthen
0b68ff31Ssthen		if(worker->stats.extended)
0b68ff31Ssthen			worker->stats.unwanted_queries++;
8b7325afSsthen		worker_check_request(c->buffer, worker, check_result);
8b7325afSsthen		if(check_result->value != 0) {
8b7325afSsthen			if(check_result->value != -1) {
8b7325afSsthen				LDNS_QR_SET(sldns_buffer_begin(c->buffer));
8b7325afSsthen				LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
8b7325afSsthen					check_result->value);
8b7325afSsthen				return 1;
8b7325afSsthen			}
0b68ff31Ssthen			comm_point_drop_reply(repinfo);
8b7325afSsthen			return 0;
0b68ff31Ssthen		}
0bdb4f62Ssthen		/* worker_check_request() above guarantees that the buffer contains at
0bdb4f62Ssthen		 * least a header and that qdcount == 1
0bdb4f62Ssthen		 */
0bdb4f62Ssthen		log_assert(sldns_buffer_limit(c->buffer) >= LDNS_HEADER_SIZE
0bdb4f62Ssthen			&& LDNS_QDCOUNT(sldns_buffer_begin(c->buffer)) == 1);
0bdb4f62Ssthen
f46c52bfSsthen		sldns_buffer_set_position(c->buffer, LDNS_HEADER_SIZE); /* skip header */
0bdb4f62Ssthen
0bdb4f62Ssthen		/* check additional section is present and that we respond with EDEs */
0bdb4f62Ssthen		if(LDNS_ARCOUNT(sldns_buffer_begin(c->buffer)) != 1
0bdb4f62Ssthen			|| !ede) {
0bdb4f62Ssthen			LDNS_QDCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0b68ff31Ssthen			LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0b68ff31Ssthen			LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
0b68ff31Ssthen				LDNS_RCODE_REFUSED);
f46c52bfSsthen			sldns_buffer_set_position(c->buffer, LDNS_HEADER_SIZE);
0bdb4f62Ssthen			sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen			return 1;
0bdb4f62Ssthen		}
0bdb4f62Ssthen
0bdb4f62Ssthen		if (!query_dname_len(c->buffer)) {
0bdb4f62Ssthen			LDNS_QDCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0bdb4f62Ssthen			LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen				LDNS_RCODE_FORMERR);
77079be7Ssthen			sldns_buffer_set_position(c->buffer, LDNS_HEADER_SIZE);
77079be7Ssthen			sldns_buffer_flip(c->buffer);
0b68ff31Ssthen			return 1;
0b68ff31Ssthen		}
0bdb4f62Ssthen		/* space available for query type and class? */
0bdb4f62Ssthen		if (sldns_buffer_remaining(c->buffer) < 2 * sizeof(uint16_t)) {
0bdb4f62Ssthen                        LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0bdb4f62Ssthen                        LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen				 LDNS_RCODE_FORMERR);
0bdb4f62Ssthen			LDNS_QDCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			sldns_buffer_set_position(c->buffer, LDNS_HEADER_SIZE);
0bdb4f62Ssthen                        sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen			return 1;
0bdb4f62Ssthen		}
0bdb4f62Ssthen		LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0bdb4f62Ssthen		LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen			LDNS_RCODE_REFUSED);
0bdb4f62Ssthen
0bdb4f62Ssthen		sldns_buffer_skip(c->buffer, (ssize_t)sizeof(uint16_t)); /* skip qtype */
0bdb4f62Ssthen
0bdb4f62Ssthen		sldns_buffer_skip(c->buffer, (ssize_t)sizeof(uint16_t)); /* skip qclass */
0bdb4f62Ssthen
0bdb4f62Ssthen		/* The OPT RR to be returned should come directly after
0bdb4f62Ssthen		 * the query, so mark this spot.
0bdb4f62Ssthen		 */
0bdb4f62Ssthen		opt_rr_mark = sldns_buffer_position(c->buffer);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* Skip through the RR records */
0bdb4f62Ssthen		if(LDNS_ANCOUNT(sldns_buffer_begin(c->buffer)) != 0 ||
0bdb4f62Ssthen			LDNS_NSCOUNT(sldns_buffer_begin(c->buffer)) != 0) {
0bdb4f62Ssthen			if(!skip_pkt_rrs(c->buffer,
0bdb4f62Ssthen				((int)LDNS_ANCOUNT(sldns_buffer_begin(c->buffer)))+
0bdb4f62Ssthen				((int)LDNS_NSCOUNT(sldns_buffer_begin(c->buffer))))) {
0bdb4f62Ssthen				LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen					LDNS_RCODE_FORMERR);
0bdb4f62Ssthen				LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen				LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen				LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen				sldns_buffer_set_position(c->buffer, opt_rr_mark);
0bdb4f62Ssthen				sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen				return 1;
0bdb4f62Ssthen			}
0bdb4f62Ssthen		}
0bdb4f62Ssthen		/* Do we have a valid OPT RR here? If not return REFUSED (could be a valid TSIG or something so no FORMERR) */
0bdb4f62Ssthen		/* domain name must be the root of length 1. */
0bdb4f62Ssthen		if(sldns_buffer_remaining(c->buffer) < 1 || *sldns_buffer_current(c->buffer) != 0) {
0bdb4f62Ssthen			LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			sldns_buffer_set_position(c->buffer, opt_rr_mark);
0bdb4f62Ssthen			sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen			return 1;
0bdb4f62Ssthen		} else {
0bdb4f62Ssthen			sldns_buffer_skip(c->buffer, 1); /* skip root label */
0bdb4f62Ssthen		}
0bdb4f62Ssthen		if(sldns_buffer_remaining(c->buffer) < 2 ||
0bdb4f62Ssthen			sldns_buffer_read_u16(c->buffer) != LDNS_RR_TYPE_OPT) {
0bdb4f62Ssthen			LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			sldns_buffer_set_position(c->buffer, opt_rr_mark);
0bdb4f62Ssthen			sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen			return 1;
0bdb4f62Ssthen		}
0bdb4f62Ssthen		/* Write OPT RR directly after the query,
0bdb4f62Ssthen		 * so without the (possibly skipped) Answer and NS RRs
0bdb4f62Ssthen		 */
0bdb4f62Ssthen		LDNS_ANCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen		LDNS_NSCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen		sldns_buffer_clear(c->buffer); /* reset write limit */
0bdb4f62Ssthen		sldns_buffer_set_position(c->buffer, opt_rr_mark);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* Check if OPT record can be written
0bdb4f62Ssthen		 * 17 == root label (1) + RR type (2) + UDP Size (2)
0bdb4f62Ssthen		 *     + Fields (4) + rdata len (2) + EDE Option code (2)
0bdb4f62Ssthen		 *     + EDE Option length (2) + EDE info-code (2)
0bdb4f62Ssthen		 */
0bdb4f62Ssthen		if (sldns_buffer_available(c->buffer, 17) == 0) {
0bdb4f62Ssthen			LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 0);
0bdb4f62Ssthen			sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen			return 1;
0bdb4f62Ssthen		}
0bdb4f62Ssthen
0bdb4f62Ssthen		LDNS_ARCOUNT_SET(sldns_buffer_begin(c->buffer), 1);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* root label */
0bdb4f62Ssthen		sldns_buffer_write_u8(c->buffer, 0);
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, LDNS_RR_TYPE_OPT);
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, EDNS_ADVERTISED_SIZE);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* write OPT Record TTL Field */
0bdb4f62Ssthen		sldns_buffer_write_u32(c->buffer, 0);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* write rdata len: EDE option + length + info-code */
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, 6);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* write OPTIONS; add EDE option code */
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, LDNS_EDNS_EDE);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* write single EDE option length (for just 1 info-code) */
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, 2);
0bdb4f62Ssthen
0bdb4f62Ssthen		/* write single EDE info-code */
0bdb4f62Ssthen		sldns_buffer_write_u16(c->buffer, LDNS_EDE_PROHIBITED);
0bdb4f62Ssthen
0bdb4f62Ssthen		sldns_buffer_flip(c->buffer);
0bdb4f62Ssthen
0bdb4f62Ssthen		verbose(VERB_ALGO, "attached EDE code: %d", LDNS_EDE_PROHIBITED);
0bdb4f62Ssthen
0bdb4f62Ssthen		return 1;
0bdb4f62Ssthen
0bdb4f62Ssthen	}
0b68ff31Ssthen
0b68ff31Ssthen	return -1;
0b68ff31Ssthen}
0b68ff31Ssthen
e10d3884Sbradstatic int
45872187Ssthendeny_refuse_all(struct comm_point* c, enum acl_access* acl,
0bdb4f62Ssthen	struct worker* worker, struct comm_reply* repinfo,
8b7325afSsthen	struct acl_addr** acladdr, int ede, int check_proxy,
8b7325afSsthen	struct check_request_result* check_result)
0b68ff31Ssthen{
45872187Ssthen	if(check_proxy) {
45872187Ssthen		*acladdr = acl_addr_lookup(worker->daemon->acl,
45872187Ssthen			&repinfo->remote_addr, repinfo->remote_addrlen);
45872187Ssthen	} else {
45872187Ssthen		*acladdr = acl_addr_lookup(worker->daemon->acl,
45872187Ssthen			&repinfo->client_addr, repinfo->client_addrlen);
45872187Ssthen	}
45872187Ssthen	/* If there is no ACL based on client IP use the interface ACL. */
45872187Ssthen	if(!(*acladdr) && c->socket) {
45872187Ssthen		*acladdr = c->socket->acl;
45872187Ssthen	}
45872187Ssthen	*acl = acl_get_control(*acladdr);
45872187Ssthen	return deny_refuse(c, *acl, acl_deny, acl_refuse, worker, repinfo,
8b7325afSsthen		*acladdr, ede, check_result);
0b68ff31Ssthen}
0b68ff31Ssthen
e10d3884Sbradstatic int
0b68ff31Ssthendeny_refuse_non_local(struct comm_point* c, enum acl_access acl,
0bdb4f62Ssthen	struct worker* worker, struct comm_reply* repinfo,
8b7325afSsthen	struct acl_addr* acladdr, int ede,
8b7325afSsthen	struct check_request_result* check_result)
0b68ff31Ssthen{
0bdb4f62Ssthen	return deny_refuse(c, acl, acl_deny_non_local, acl_refuse_non_local,
8b7325afSsthen		worker, repinfo, acladdr, ede, check_result);
8b7325afSsthen}
8b7325afSsthen
8b7325afSsthen/* Check if the query is blocked by source IP rate limiting.
8b7325afSsthen * Returns 1 if it passes the check, 0 otherwise. */
8b7325afSsthenstatic int
8b7325afSsthencheck_ip_ratelimit(struct worker* worker, struct sockaddr_storage* addr,
8b7325afSsthen	socklen_t addrlen, int has_cookie, sldns_buffer* pkt)
8b7325afSsthen{
8b7325afSsthen	if(!infra_ip_ratelimit_inc(worker->env.infra_cache, addr, addrlen,
8b7325afSsthen			*worker->env.now, has_cookie,
8b7325afSsthen			worker->env.cfg->ip_ratelimit_backoff, pkt)) {
8b7325afSsthen		/* See if we can pass through with slip factor */
8b7325afSsthen		if(!has_cookie && worker->env.cfg->ip_ratelimit_factor != 0 &&
8b7325afSsthen			ub_random_max(worker->env.rnd,
8b7325afSsthen			worker->env.cfg->ip_ratelimit_factor) == 0) {
8b7325afSsthen			char addrbuf[128];
8b7325afSsthen			addr_to_str(addr, addrlen, addrbuf, sizeof(addrbuf));
8b7325afSsthen			verbose(VERB_QUERY, "ip_ratelimit allowed through for "
8b7325afSsthen				"ip address %s because of slip in "
8b7325afSsthen				"ip_ratelimit_factor", addrbuf);
8b7325afSsthen			return 1;
8b7325afSsthen		}
8b7325afSsthen		return 0;
8b7325afSsthen	}
8b7325afSsthen	return 1;
0b68ff31Ssthen}
0b68ff31Ssthen
0b68ff31Ssthenint
933707f3Ssthenworker_handle_request(struct comm_point* c, void* arg, int error,
933707f3Ssthen	struct comm_reply* repinfo)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	int ret;
77079be7Ssthen	hashvalue_type h;
933707f3Ssthen	struct lruhash_entry* e;
933707f3Ssthen	struct query_info qinfo;
933707f3Ssthen	struct edns_data edns;
0bdb4f62Ssthen	struct edns_option* original_edns_list = NULL;
933707f3Ssthen	enum acl_access acl;
77079be7Ssthen	struct acl_addr* acladdr;
8b7325afSsthen	int pre_edns_ip_ratelimit = 1;
e10d3884Sbrad	int rc = 0;
2be9e038Ssthen	int need_drop = 0;
eaf2578eSsthen	int is_expired_answer = 0;
eaf2578eSsthen	int is_secure_answer = 0;
0bdb4f62Ssthen	int rpz_passthru = 0;
8b7325afSsthen	long long wait_queue_time = 0;
2be9e038Ssthen	/* We might have to chase a CNAME chain internally, in which case
2be9e038Ssthen	 * we'll have up to two replies and combine them to build a complete
2be9e038Ssthen	 * answer.  These variables control this case. */
2be9e038Ssthen	struct ub_packed_rrset_key* alias_rrset = NULL;
2be9e038Ssthen	struct reply_info* partial_rep = NULL;
2be9e038Ssthen	struct query_info* lookup_qinfo = &qinfo;
f6b99bafSsthen	struct query_info qinfo_tmp; /* placeholder for lookup_qinfo */
2be9e038Ssthen	struct respip_client_info* cinfo = NULL, cinfo_tmp;
8b7325afSsthen	struct timeval wait_time;
8b7325afSsthen	struct check_request_result check_result = {0,0};
7191de28Ssthen	memset(&qinfo, 0, sizeof(qinfo));
933707f3Ssthen
2c144df0Ssthen	if((error != NETEVENT_NOERROR && error != NETEVENT_DONE)|| !repinfo) {
933707f3Ssthen		/* some bad tcp query DNS formats give these error calls */
933707f3Ssthen		verbose(VERB_ALGO, "handle request called with err=%d", error);
933707f3Ssthen		return 0;
933707f3Ssthen	}
8b7325afSsthen
8b7325afSsthen	if (worker->env.cfg->sock_queue_timeout && timeval_isset(&c->recv_tv)) {
8b7325afSsthen		timeval_subtract(&wait_time, worker->env.now_tv, &c->recv_tv);
8b7325afSsthen		wait_queue_time = wait_time.tv_sec * 1000000 +  wait_time.tv_usec;
8b7325afSsthen		if (worker->stats.max_query_time_us < wait_queue_time)
8b7325afSsthen			worker->stats.max_query_time_us = wait_queue_time;
8b7325afSsthen		if(wait_queue_time >
8b7325afSsthen			(long long)(worker->env.cfg->sock_queue_timeout * 1000000)) {
8b7325afSsthen			/* count and drop queries that were sitting in the socket queue too long */
8b7325afSsthen			worker->stats.num_queries_timed_out++;
8b7325afSsthen			return 0;
8b7325afSsthen		}
8b7325afSsthen	}
8b7325afSsthen
2be9e038Ssthen#ifdef USE_DNSCRYPT
2be9e038Ssthen	repinfo->max_udp_size = worker->daemon->cfg->max_udp_size;
2be9e038Ssthen	if(!dnsc_handle_curved_request(worker->daemon->dnscenv, repinfo)) {
2be9e038Ssthen		worker->stats.num_query_dnscrypt_crypted_malformed++;
2be9e038Ssthen		return 0;
2be9e038Ssthen	}
2be9e038Ssthen	if(c->dnscrypt && !repinfo->is_dnscrypted) {
2be9e038Ssthen		char buf[LDNS_MAX_DOMAINLEN+1];
2be9e038Ssthen		/* Check if this is unencrypted and asking for certs */
8b7325afSsthen		worker_check_request(c->buffer, worker, &check_result);
8b7325afSsthen		if(check_result.value != 0) {
2be9e038Ssthen			verbose(VERB_ALGO,
2be9e038Ssthen				"dnscrypt: worker check request: bad query.");
45872187Ssthen			log_addr(VERB_CLIENT,"from",&repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen);
2be9e038Ssthen			comm_point_drop_reply(repinfo);
2be9e038Ssthen			return 0;
2be9e038Ssthen		}
2be9e038Ssthen		if(!query_info_parse(&qinfo, c->buffer)) {
2be9e038Ssthen			verbose(VERB_ALGO,
2be9e038Ssthen				"dnscrypt: worker parse request: formerror.");
45872187Ssthen			log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen);
2be9e038Ssthen			comm_point_drop_reply(repinfo);
2be9e038Ssthen			return 0;
2be9e038Ssthen		}
2be9e038Ssthen		dname_str(qinfo.qname, buf);
2be9e038Ssthen		if(!(qinfo.qtype == LDNS_RR_TYPE_TXT &&
2be9e038Ssthen			strcasecmp(buf,
2be9e038Ssthen			worker->daemon->dnscenv->provider_name) == 0)) {
2be9e038Ssthen			verbose(VERB_ALGO,
bdfc4d55Sflorian				"dnscrypt: not TXT \"%s\". Received: %s \"%s\"",
2be9e038Ssthen				worker->daemon->dnscenv->provider_name,
2be9e038Ssthen				sldns_rr_descript(qinfo.qtype)->_name,
2be9e038Ssthen				buf);
2be9e038Ssthen			comm_point_drop_reply(repinfo);
2be9e038Ssthen			worker->stats.num_query_dnscrypt_cleartext++;
2be9e038Ssthen			return 0;
2be9e038Ssthen		}
2be9e038Ssthen		worker->stats.num_query_dnscrypt_cert++;
2be9e038Ssthen		sldns_buffer_rewind(c->buffer);
2be9e038Ssthen	} else if(c->dnscrypt && repinfo->is_dnscrypted) {
2be9e038Ssthen		worker->stats.num_query_dnscrypt_crypted++;
2be9e038Ssthen	}
2be9e038Ssthen#endif
e10d3884Sbrad#ifdef USE_DNSTAP
191f22c6Ssthen	/*
191f22c6Ssthen	 * sending src (client)/dst (local service) addresses over DNSTAP from incoming request handler
191f22c6Ssthen	 */
191f22c6Ssthen	if(worker->dtenv.log_client_query_messages) {
45872187Ssthen		log_addr(VERB_ALGO, "request from client", &repinfo->client_addr, repinfo->client_addrlen);
2bdc0ed1Ssthen		log_addr(VERB_ALGO, "to local addr", (void*)repinfo->c->socket->addr, repinfo->c->socket->addrlen);
2bdc0ed1Ssthen		dt_msg_send_client_query(&worker->dtenv, &repinfo->client_addr, (void*)repinfo->c->socket->addr, c->type, c->ssl, c->buffer,
8b7325afSsthen		((worker->env.cfg->sock_queue_timeout && timeval_isset(&c->recv_tv))?&c->recv_tv:NULL));
191f22c6Ssthen	}
e10d3884Sbrad#endif
45872187Ssthen	/* Check deny/refuse ACLs */
45872187Ssthen	if(repinfo->is_proxied) {
45872187Ssthen		if((ret=deny_refuse_all(c, &acl, worker, repinfo, &acladdr,
8b7325afSsthen			worker->env.cfg->ede, 1, &check_result)) != -1) {
e10d3884Sbrad			if(ret == 1)
e10d3884Sbrad				goto send_reply;
0b68ff31Ssthen			return ret;
933707f3Ssthen		}
45872187Ssthen	}
45872187Ssthen	if((ret=deny_refuse_all(c, &acl, worker, repinfo, &acladdr,
8b7325afSsthen		worker->env.cfg->ede, 0, &check_result)) != -1) {
45872187Ssthen		if(ret == 1)
45872187Ssthen			goto send_reply;
45872187Ssthen		return ret;
45872187Ssthen	}
45872187Ssthen
8b7325afSsthen	worker_check_request(c->buffer, worker, &check_result);
8b7325afSsthen	if(check_result.value != 0) {
933707f3Ssthen		verbose(VERB_ALGO, "worker check request: bad query.");
45872187Ssthen		log_addr(VERB_CLIENT,"from",&repinfo->client_addr, repinfo->client_addrlen);
8b7325afSsthen		if(check_result.value != -1) {
0b68ff31Ssthen			LDNS_QR_SET(sldns_buffer_begin(c->buffer));
8b7325afSsthen			LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
8b7325afSsthen				check_result.value);
933707f3Ssthen			return 1;
933707f3Ssthen		}
933707f3Ssthen		comm_point_drop_reply(repinfo);
933707f3Ssthen		return 0;
933707f3Ssthen	}
77079be7Ssthen
933707f3Ssthen	worker->stats.num_queries++;
f46c52bfSsthen	pre_edns_ip_ratelimit = !worker->env.cfg->do_answer_cookie
f46c52bfSsthen		|| sldns_buffer_limit(c->buffer) < LDNS_HEADER_SIZE
f46c52bfSsthen		|| LDNS_ARCOUNT(sldns_buffer_begin(c->buffer)) == 0;
77079be7Ssthen
8b7325afSsthen	/* If the IP rate limiting check needs extra EDNS information (e.g.,
8b7325afSsthen	 * DNS Cookies) postpone the check until after EDNS is parsed. */
8b7325afSsthen	if(pre_edns_ip_ratelimit) {
8b7325afSsthen		/* NOTE: we always check the repinfo->client_address.
8b7325afSsthen		 *       IP ratelimiting is implicitly disabled for proxies. */
8b7325afSsthen		if(!check_ip_ratelimit(worker, &repinfo->client_addr,
8b7325afSsthen			repinfo->client_addrlen, 0, c->buffer)) {
77079be7Ssthen			worker->stats.num_queries_ip_ratelimited++;
77079be7Ssthen			comm_point_drop_reply(repinfo);
77079be7Ssthen			return 0;
77079be7Ssthen		}
77079be7Ssthen	}
77079be7Ssthen
933707f3Ssthen	if(!query_info_parse(&qinfo, c->buffer)) {
933707f3Ssthen		verbose(VERB_ALGO, "worker parse request: formerror.");
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
7191de28Ssthen		memset(&qinfo, 0, sizeof(qinfo)); /* zero qinfo.qname */
a58bff56Ssthen		if(worker_err_ratelimit(worker, LDNS_RCODE_FORMERR) == -1) {
a58bff56Ssthen			comm_point_drop_reply(repinfo);
a58bff56Ssthen			return 0;
a58bff56Ssthen		}
0b68ff31Ssthen		sldns_buffer_rewind(c->buffer);
0b68ff31Ssthen		LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0b68ff31Ssthen		LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
933707f3Ssthen			LDNS_RCODE_FORMERR);
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
933707f3Ssthen	if(worker->env.cfg->log_queries) {
933707f3Ssthen		char ip[128];
45872187Ssthen		addr_to_str(&repinfo->client_addr, repinfo->client_addrlen, ip, sizeof(ip));
f6b99bafSsthen		log_query_in(ip, qinfo.qname, qinfo.qtype, qinfo.qclass);
933707f3Ssthen	}
933707f3Ssthen	if(qinfo.qtype == LDNS_RR_TYPE_AXFR ||
933707f3Ssthen		qinfo.qtype == LDNS_RR_TYPE_IXFR) {
933707f3Ssthen		verbose(VERB_ALGO, "worker request: refused zone transfer.");
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
0b68ff31Ssthen		sldns_buffer_rewind(c->buffer);
0b68ff31Ssthen		LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0b68ff31Ssthen		LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
933707f3Ssthen			LDNS_RCODE_REFUSED);
933707f3Ssthen		if(worker->stats.extended) {
933707f3Ssthen			worker->stats.qtype[qinfo.qtype]++;
933707f3Ssthen		}
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
77079be7Ssthen	if(qinfo.qtype == LDNS_RR_TYPE_OPT ||
77079be7Ssthen		qinfo.qtype == LDNS_RR_TYPE_TSIG ||
77079be7Ssthen		qinfo.qtype == LDNS_RR_TYPE_TKEY ||
77079be7Ssthen		qinfo.qtype == LDNS_RR_TYPE_MAILA ||
77079be7Ssthen		qinfo.qtype == LDNS_RR_TYPE_MAILB ||
77079be7Ssthen		(qinfo.qtype >= 128 && qinfo.qtype <= 248)) {
77079be7Ssthen		verbose(VERB_ALGO, "worker request: formerror for meta-type.");
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
77079be7Ssthen		if(worker_err_ratelimit(worker, LDNS_RCODE_FORMERR) == -1) {
77079be7Ssthen			comm_point_drop_reply(repinfo);
77079be7Ssthen			return 0;
77079be7Ssthen		}
77079be7Ssthen		sldns_buffer_rewind(c->buffer);
77079be7Ssthen		LDNS_QR_SET(sldns_buffer_begin(c->buffer));
77079be7Ssthen		LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
77079be7Ssthen			LDNS_RCODE_FORMERR);
77079be7Ssthen		if(worker->stats.extended) {
77079be7Ssthen			worker->stats.qtype[qinfo.qtype]++;
77079be7Ssthen		}
77079be7Ssthen		goto send_reply;
77079be7Ssthen	}
8b7325afSsthen	if((ret=parse_edns_from_query_pkt(
8b7325afSsthen			c->buffer, &edns, worker->env.cfg, c, repinfo,
8b7325afSsthen			(worker->env.now ? *worker->env.now : time(NULL)),
*98bc733bSsthen			worker->scratchpad,
*98bc733bSsthen			worker->daemon->cookie_secrets)) != 0) {
24893edcSsthen		struct edns_data reply_edns;
933707f3Ssthen		verbose(VERB_ALGO, "worker parse edns: formerror.");
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
24893edcSsthen		memset(&reply_edns, 0, sizeof(reply_edns));
24893edcSsthen		reply_edns.edns_present = 1;
24893edcSsthen		error_encode(c->buffer, ret, &qinfo,
24893edcSsthen			*(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
24893edcSsthen			sldns_buffer_read_u16_at(c->buffer, 2), &reply_edns);
2ee382b6Ssthen		regional_free_all(worker->scratchpad);
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
2308e98cSsthen	if(edns.edns_present) {
2308e98cSsthen		if(edns.edns_version != 0) {
e21c60efSsthen			edns.opt_list_in = NULL;
e21c60efSsthen			edns.opt_list_out = NULL;
e21c60efSsthen			edns.opt_list_inplace_cb_out = NULL;
933707f3Ssthen			verbose(VERB_ALGO, "query with bad edns version.");
45872187Ssthen			log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen);
8b7325afSsthen			extended_error_encode(c->buffer, EDNS_RCODE_BADVERS, &qinfo,
e10d3884Sbrad				*(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
8b7325afSsthen				sldns_buffer_read_u16_at(c->buffer, 2), 0, &edns);
2ee382b6Ssthen			regional_free_all(worker->scratchpad);
e10d3884Sbrad			goto send_reply;
933707f3Ssthen		}
2308e98cSsthen		if(edns.udp_size < NORMAL_UDP_SIZE &&
933707f3Ssthen		   worker->daemon->cfg->harden_short_bufsize) {
933707f3Ssthen			verbose(VERB_QUERY, "worker request: EDNS bufsize %d ignored",
933707f3Ssthen				(int)edns.udp_size);
45872187Ssthen			log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen				repinfo->client_addrlen);
933707f3Ssthen			edns.udp_size = NORMAL_UDP_SIZE;
933707f3Ssthen		}
2308e98cSsthen	}
8b7325afSsthen
8b7325afSsthen	/* Get stats for cookies */
8b7325afSsthen	server_stats_downstream_cookie(&worker->stats, &edns);
8b7325afSsthen
8b7325afSsthen	/* If the IP rate limiting check was postponed, check now. */
8b7325afSsthen	if(!pre_edns_ip_ratelimit) {
8b7325afSsthen		/* NOTE: we always check the repinfo->client_address.
8b7325afSsthen		 *       IP ratelimiting is implicitly disabled for proxies. */
8b7325afSsthen		if(!check_ip_ratelimit(worker, &repinfo->client_addr,
8b7325afSsthen			repinfo->client_addrlen, edns.cookie_valid,
8b7325afSsthen			c->buffer)) {
8b7325afSsthen			worker->stats.num_queries_ip_ratelimited++;
8b7325afSsthen			comm_point_drop_reply(repinfo);
8b7325afSsthen			return 0;
8b7325afSsthen		}
8b7325afSsthen	}
8b7325afSsthen
8b7325afSsthen	/* "if, else if" sequence below deals with downstream DNS Cookies */
8b7325afSsthen	if(acl != acl_allow_cookie)
8b7325afSsthen		; /* pass; No cookie downstream processing whatsoever */
8b7325afSsthen
8b7325afSsthen	else if(edns.cookie_valid)
8b7325afSsthen		; /* pass; Valid cookie is good! */
8b7325afSsthen
8b7325afSsthen	else if(c->type != comm_udp)
8b7325afSsthen		; /* pass; Stateful transport */
8b7325afSsthen
8b7325afSsthen	else if(edns.cookie_present) {
8b7325afSsthen		/* Cookie present, but not valid: Cookie was bad! */
8b7325afSsthen		extended_error_encode(c->buffer,
8b7325afSsthen			LDNS_EXT_RCODE_BADCOOKIE, &qinfo,
8b7325afSsthen			*(uint16_t*)(void *)
8b7325afSsthen			sldns_buffer_begin(c->buffer),
8b7325afSsthen			sldns_buffer_read_u16_at(c->buffer, 2),
8b7325afSsthen			0, &edns);
8b7325afSsthen		regional_free_all(worker->scratchpad);
8b7325afSsthen		goto send_reply;
8b7325afSsthen	} else {
8b7325afSsthen		/* Cookie required, but no cookie present on UDP */
8b7325afSsthen		verbose(VERB_ALGO, "worker request: "
8b7325afSsthen			"need cookie or stateful transport");
8b7325afSsthen		log_addr(VERB_ALGO, "from",&repinfo->remote_addr
8b7325afSsthen		                          , repinfo->remote_addrlen);
8b7325afSsthen		EDNS_OPT_LIST_APPEND_EDE(&edns.opt_list_out,
8b7325afSsthen			worker->scratchpad, LDNS_EDE_OTHER,
8b7325afSsthen			"DNS Cookie needed for UDP replies");
8b7325afSsthen		error_encode(c->buffer,
8b7325afSsthen			(LDNS_RCODE_REFUSED|BIT_TC), &qinfo,
8b7325afSsthen			*(uint16_t*)(void *)
8b7325afSsthen			sldns_buffer_begin(c->buffer),
8b7325afSsthen			sldns_buffer_read_u16_at(c->buffer, 2),
8b7325afSsthen			&edns);
8b7325afSsthen		regional_free_all(worker->scratchpad);
8b7325afSsthen		goto send_reply;
8b7325afSsthen	}
8b7325afSsthen
e9c7b4efSsthen	if(edns.udp_size > worker->daemon->cfg->max_udp_size &&
e9c7b4efSsthen		c->type == comm_udp) {
e9c7b4efSsthen		verbose(VERB_QUERY,
e9c7b4efSsthen			"worker request: max UDP reply size modified"
e9c7b4efSsthen			" (%d to max-udp-size)", (int)edns.udp_size);
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
e9c7b4efSsthen		edns.udp_size = worker->daemon->cfg->max_udp_size;
e9c7b4efSsthen	}
e9c7b4efSsthen	if(edns.udp_size < LDNS_HEADER_SIZE) {
933707f3Ssthen		verbose(VERB_ALGO, "worker request: edns is too small.");
45872187Ssthen		log_addr(VERB_CLIENT, "from", &repinfo->client_addr,
45872187Ssthen			repinfo->client_addrlen);
0b68ff31Ssthen		LDNS_QR_SET(sldns_buffer_begin(c->buffer));
0b68ff31Ssthen		LDNS_TC_SET(sldns_buffer_begin(c->buffer));
0b68ff31Ssthen		LDNS_RCODE_SET(sldns_buffer_begin(c->buffer),
933707f3Ssthen			LDNS_RCODE_SERVFAIL);
0b68ff31Ssthen		sldns_buffer_set_position(c->buffer, LDNS_HEADER_SIZE);
0b68ff31Ssthen		sldns_buffer_write_at(c->buffer, 4,
933707f3Ssthen			(uint8_t*)"\0\0\0\0\0\0\0\0", 8);
0b68ff31Ssthen		sldns_buffer_flip(c->buffer);
2ee382b6Ssthen		regional_free_all(worker->scratchpad);
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
933707f3Ssthen	if(worker->stats.extended)
933707f3Ssthen		server_stats_insquery(&worker->stats, c, qinfo.qtype,
933707f3Ssthen			qinfo.qclass, &edns, repinfo);
933707f3Ssthen	if(c->type != comm_udp)
933707f3Ssthen		edns.udp_size = 65535; /* max size for TCP replies */
933707f3Ssthen	if(qinfo.qclass == LDNS_RR_CLASS_CH && answer_chaos(worker, &qinfo,
2308e98cSsthen		&edns, repinfo, c->buffer)) {
2ee382b6Ssthen		regional_free_all(worker->scratchpad);
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
20237c55Ssthen	if(LDNS_OPCODE_WIRE(sldns_buffer_begin(c->buffer)) ==
20237c55Ssthen		LDNS_PACKET_NOTIFY) {
45872187Ssthen		answer_notify(worker, &qinfo, &edns, c->buffer,
45872187Ssthen			&repinfo->client_addr, repinfo->client_addrlen);
20237c55Ssthen		regional_free_all(worker->scratchpad);
20237c55Ssthen		goto send_reply;
20237c55Ssthen	}
77079be7Ssthen	if(local_zones_answer(worker->daemon->local_zones, &worker->env, &qinfo,
77079be7Ssthen		&edns, c->buffer, worker->scratchpad, repinfo, acladdr->taglist,
77079be7Ssthen		acladdr->taglen, acladdr->tag_actions,
77079be7Ssthen		acladdr->tag_actions_size, acladdr->tag_datas,
77079be7Ssthen		acladdr->tag_datas_size, worker->daemon->cfg->tagname,
77079be7Ssthen		worker->daemon->cfg->num_tags, acladdr->view)) {
933707f3Ssthen		regional_free_all(worker->scratchpad);
0b68ff31Ssthen		if(sldns_buffer_limit(c->buffer) == 0) {
933707f3Ssthen			comm_point_drop_reply(repinfo);
933707f3Ssthen			return 0;
933707f3Ssthen		}
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
938a3a5eSflorian	if(worker->env.auth_zones &&
e21c60efSsthen		rpz_callback_from_worker_request(worker->env.auth_zones,
eaf2578eSsthen		&worker->env, &qinfo, &edns, c->buffer, worker->scratchpad,
0bdb4f62Ssthen		repinfo, acladdr->taglist, acladdr->taglen, &worker->stats,
0bdb4f62Ssthen		&rpz_passthru)) {
eaf2578eSsthen		regional_free_all(worker->scratchpad);
eaf2578eSsthen		if(sldns_buffer_limit(c->buffer) == 0) {
eaf2578eSsthen			comm_point_drop_reply(repinfo);
eaf2578eSsthen			return 0;
eaf2578eSsthen		}
eaf2578eSsthen		goto send_reply;
eaf2578eSsthen	}
eaf2578eSsthen	if(worker->env.auth_zones &&
938a3a5eSflorian		auth_zones_answer(worker->env.auth_zones, &worker->env,
2308e98cSsthen		&qinfo, &edns, repinfo, c->buffer, worker->scratchpad)) {
938a3a5eSflorian		regional_free_all(worker->scratchpad);
938a3a5eSflorian		if(sldns_buffer_limit(c->buffer) == 0) {
938a3a5eSflorian			comm_point_drop_reply(repinfo);
938a3a5eSflorian			return 0;
938a3a5eSflorian		}
938a3a5eSflorian		/* set RA for everyone that can have recursion (based on
938a3a5eSflorian		 * access control list) */
938a3a5eSflorian		if(LDNS_RD_WIRE(sldns_buffer_begin(c->buffer)) &&
938a3a5eSflorian		   acl != acl_deny_non_local && acl != acl_refuse_non_local)
938a3a5eSflorian			LDNS_RA_SET(sldns_buffer_begin(c->buffer));
938a3a5eSflorian		goto send_reply;
938a3a5eSflorian	}
0b68ff31Ssthen
0b68ff31Ssthen	/* We've looked in our local zones. If the answer isn't there, we
0b68ff31Ssthen	 * might need to bail out based on ACLs now. */
0bdb4f62Ssthen	if((ret=deny_refuse_non_local(c, acl, worker, repinfo, acladdr,
8b7325afSsthen		worker->env.cfg->ede, &check_result)) != -1)
0b68ff31Ssthen	{
2ee382b6Ssthen		regional_free_all(worker->scratchpad);
e10d3884Sbrad		if(ret == 1)
e10d3884Sbrad			goto send_reply;
0b68ff31Ssthen		return ret;
0b68ff31Ssthen	}
0b68ff31Ssthen
0b68ff31Ssthen	/* If this request does not have the recursion bit set, verify
20237c55Ssthen	 * ACLs allow the recursion bit to be treated as set. */
20237c55Ssthen	if(!(LDNS_RD_WIRE(sldns_buffer_begin(c->buffer))) &&
20237c55Ssthen		acl == acl_allow_setrd ) {
20237c55Ssthen		LDNS_RD_SET(sldns_buffer_begin(c->buffer));
20237c55Ssthen	}
20237c55Ssthen
20237c55Ssthen	/* If this request does not have the recursion bit set, verify
0b68ff31Ssthen	 * ACLs allow the snooping. */
0b68ff31Ssthen	if(!(LDNS_RD_WIRE(sldns_buffer_begin(c->buffer))) &&
933707f3Ssthen		acl != acl_allow_snoop ) {
0bdb4f62Ssthen		if(worker->env.cfg->ede) {
0bdb4f62Ssthen			EDNS_OPT_LIST_APPEND_EDE(&edns.opt_list_out,
0bdb4f62Ssthen				worker->scratchpad, LDNS_EDE_NOT_AUTHORITATIVE, "");
0bdb4f62Ssthen		}
bdfc4d55Sflorian		error_encode(c->buffer, LDNS_RCODE_REFUSED, &qinfo,
bdfc4d55Sflorian			*(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen			sldns_buffer_read_u16_at(c->buffer, 2), &edns);
2ee382b6Ssthen		regional_free_all(worker->scratchpad);
933707f3Ssthen		log_addr(VERB_ALGO, "refused nonrec (cache snoop) query from",
45872187Ssthen			&repinfo->client_addr, repinfo->client_addrlen);
0bdb4f62Ssthen
e10d3884Sbrad		goto send_reply;
933707f3Ssthen	}
77079be7Ssthen
77079be7Ssthen	/* If we've found a local alias, replace the qname with the alias
77079be7Ssthen	 * target before resolving it. */
77079be7Ssthen	if(qinfo.local_alias) {
77079be7Ssthen		struct ub_packed_rrset_key* rrset = qinfo.local_alias->rrset;
77079be7Ssthen		struct packed_rrset_data* d = rrset->entry.data;
77079be7Ssthen
77079be7Ssthen		/* Sanity check: our current implementation only supports
77079be7Ssthen		 * a single CNAME RRset as a local alias. */
77079be7Ssthen		if(qinfo.local_alias->next ||
77079be7Ssthen			rrset->rk.type != htons(LDNS_RR_TYPE_CNAME) ||
77079be7Ssthen			d->count != 1) {
77079be7Ssthen			log_err("assumption failure: unexpected local alias");
77079be7Ssthen			regional_free_all(worker->scratchpad);
77079be7Ssthen			return 0; /* drop it */
77079be7Ssthen		}
77079be7Ssthen		qinfo.qname = d->rr_data[0] + 2;
77079be7Ssthen		qinfo.qname_len = d->rr_len[0] - 2;
77079be7Ssthen	}
77079be7Ssthen
2be9e038Ssthen	/* If we may apply IP-based actions to the answer, build the client
2be9e038Ssthen	 * information.  As this can be expensive, skip it if there is
2be9e038Ssthen	 * absolutely no possibility of it. */
eaf2578eSsthen	if((worker->daemon->use_response_ip || worker->daemon->use_rpz) &&
2be9e038Ssthen		(qinfo.qtype == LDNS_RR_TYPE_A ||
2be9e038Ssthen		qinfo.qtype == LDNS_RR_TYPE_AAAA ||
2be9e038Ssthen		qinfo.qtype == LDNS_RR_TYPE_ANY)) {
2be9e038Ssthen		cinfo_tmp.taglist = acladdr->taglist;
2be9e038Ssthen		cinfo_tmp.taglen = acladdr->taglen;
2be9e038Ssthen		cinfo_tmp.tag_actions = acladdr->tag_actions;
2be9e038Ssthen		cinfo_tmp.tag_actions_size = acladdr->tag_actions_size;
2be9e038Ssthen		cinfo_tmp.tag_datas = acladdr->tag_datas;
2be9e038Ssthen		cinfo_tmp.tag_datas_size = acladdr->tag_datas_size;
2be9e038Ssthen		cinfo_tmp.view = acladdr->view;
2be9e038Ssthen		cinfo_tmp.respip_set = worker->daemon->respip_set;
2be9e038Ssthen		cinfo = &cinfo_tmp;
2be9e038Ssthen	}
2be9e038Ssthen
0bdb4f62Ssthen	/* Keep the original edns list around. The pointer could change if there is
0bdb4f62Ssthen	 * a cached answer (through the inplace callback function there).
0bdb4f62Ssthen	 * No need to actually copy the contents as they shouldn't change.
0bdb4f62Ssthen	 * Used while prefetching and subnet is enabled. */
0bdb4f62Ssthen	original_edns_list = edns.opt_list_in;
2be9e038Ssthenlookup_cache:
2be9e038Ssthen	/* Lookup the cache.  In case we chase an intermediate CNAME chain
2be9e038Ssthen	 * this is a two-pass operation, and lookup_qinfo is different for
2be9e038Ssthen	 * each pass.  We should still pass the original qinfo to
2be9e038Ssthen	 * answer_from_cache(), however, since it's used to build the reply. */
e21c60efSsthen	if(!edns_bypass_cache_stage(edns.opt_list_in, &worker->env)) {
eaf2578eSsthen		is_expired_answer = 0;
eaf2578eSsthen		is_secure_answer = 0;
2be9e038Ssthen		h = query_info_hash(lookup_qinfo, sldns_buffer_read_u16_at(c->buffer, 2));
2be9e038Ssthen		if((e=slabhash_lookup(worker->env.msg_cache, h, lookup_qinfo, 0))) {
d1e2768aSsthen			struct reply_info* rep = (struct reply_info*)e->data;
933707f3Ssthen			/* answer from cache - we have acquired a readlock on it */
d1e2768aSsthen			if(answer_from_cache(worker, &qinfo, cinfo, &need_drop,
d1e2768aSsthen				&is_expired_answer, &is_secure_answer,
d1e2768aSsthen				&alias_rrset, &partial_rep, rep,
e10d3884Sbrad				*(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
0b68ff31Ssthen				sldns_buffer_read_u16_at(c->buffer, 2), repinfo,
933707f3Ssthen				&edns)) {
2be9e038Ssthen				/* prefetch it if the prefetch TTL expired.
2be9e038Ssthen				 * Note that if there is more than one pass
2be9e038Ssthen				 * its qname must be that used for cache
2be9e038Ssthen				 * lookup. */
d1e2768aSsthen				if((worker->env.cfg->prefetch &&
d1e2768aSsthen					*worker->env.now >= rep->prefetch_ttl) ||
eaf2578eSsthen					(worker->env.cfg->serve_expired &&
d1e2768aSsthen					*worker->env.now > rep->ttl)) {
eaf2578eSsthen
d1e2768aSsthen					time_t leeway = rep->ttl - *worker->env.now;
d1e2768aSsthen					if(rep->ttl < *worker->env.now)
77079be7Ssthen						leeway = 0;
933707f3Ssthen					lock_rw_unlock(&e->lock);
0bdb4f62Ssthen
2be9e038Ssthen					reply_and_prefetch(worker, lookup_qinfo,
0b68ff31Ssthen						sldns_buffer_read_u16_at(c->buffer, 2),
8240c1b9Ssthen						repinfo, leeway,
0bdb4f62Ssthen						(partial_rep || need_drop),
0bdb4f62Ssthen						rpz_passthru,
0bdb4f62Ssthen						original_edns_list);
2be9e038Ssthen					if(!partial_rep) {
e10d3884Sbrad						rc = 0;
2ee382b6Ssthen						regional_free_all(worker->scratchpad);
e10d3884Sbrad						goto send_reply_rc;
933707f3Ssthen					}
2be9e038Ssthen				} else if(!partial_rep) {
933707f3Ssthen					lock_rw_unlock(&e->lock);
2ee382b6Ssthen					regional_free_all(worker->scratchpad);
e10d3884Sbrad					goto send_reply;
7191de28Ssthen				} else {
7191de28Ssthen					/* Note that we've already released the
7191de28Ssthen					 * lock if we're here after prefetch. */
7191de28Ssthen					lock_rw_unlock(&e->lock);
933707f3Ssthen				}
2be9e038Ssthen				/* We've found a partial reply ending with an
2be9e038Ssthen				 * alias.  Replace the lookup qinfo for the
2be9e038Ssthen				 * alias target and lookup the cache again to
2be9e038Ssthen				 * (possibly) complete the reply.  As we're
2be9e038Ssthen				 * passing the "base" reply, there will be no
2be9e038Ssthen				 * more alias chasing. */
2be9e038Ssthen				memset(&qinfo_tmp, 0, sizeof(qinfo_tmp));
2be9e038Ssthen				get_cname_target(alias_rrset, &qinfo_tmp.qname,
2be9e038Ssthen					&qinfo_tmp.qname_len);
2be9e038Ssthen				if(!qinfo_tmp.qname) {
2be9e038Ssthen					log_err("unexpected: invalid answer alias");
2be9e038Ssthen					regional_free_all(worker->scratchpad);
2be9e038Ssthen					return 0; /* drop query */
2be9e038Ssthen				}
2be9e038Ssthen				qinfo_tmp.qtype = qinfo.qtype;
2be9e038Ssthen				qinfo_tmp.qclass = qinfo.qclass;
2be9e038Ssthen				lookup_qinfo = &qinfo_tmp;
2be9e038Ssthen				goto lookup_cache;
2be9e038Ssthen			}
933707f3Ssthen			verbose(VERB_ALGO, "answer from the cache failed");
933707f3Ssthen			lock_rw_unlock(&e->lock);
933707f3Ssthen		}
0bdb4f62Ssthen
0b68ff31Ssthen		if(!LDNS_RD_WIRE(sldns_buffer_begin(c->buffer))) {
933707f3Ssthen			if(answer_norec_from_cache(worker, &qinfo,
e10d3884Sbrad				*(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
0b68ff31Ssthen				sldns_buffer_read_u16_at(c->buffer, 2), repinfo,
933707f3Ssthen				&edns)) {
2ee382b6Ssthen				regional_free_all(worker->scratchpad);
e10d3884Sbrad				goto send_reply;
933707f3Ssthen			}
933707f3Ssthen			verbose(VERB_ALGO, "answer norec from cache -- "
933707f3Ssthen				"need to validate or not primed");
933707f3Ssthen		}
77079be7Ssthen	}
0b68ff31Ssthen	sldns_buffer_rewind(c->buffer);
933707f3Ssthen	server_stats_querymiss(&worker->stats, worker);
933707f3Ssthen
933707f3Ssthen	if(verbosity >= VERB_CLIENT) {
933707f3Ssthen		if(c->type == comm_udp)
933707f3Ssthen			log_addr(VERB_CLIENT, "udp request from",
45872187Ssthen				&repinfo->client_addr, repinfo->client_addrlen);
933707f3Ssthen		else	log_addr(VERB_CLIENT, "tcp request from",
45872187Ssthen				&repinfo->client_addr, repinfo->client_addrlen);
933707f3Ssthen	}
933707f3Ssthen
933707f3Ssthen	/* grab a work request structure for this new request */
2be9e038Ssthen	mesh_new_client(worker->env.mesh, &qinfo, cinfo,
0b68ff31Ssthen		sldns_buffer_read_u16_at(c->buffer, 2),
0bdb4f62Ssthen		&edns, repinfo, *(uint16_t*)(void *)sldns_buffer_begin(c->buffer),
0bdb4f62Ssthen		rpz_passthru);
2ee382b6Ssthen	regional_free_all(worker->scratchpad);
933707f3Ssthen	worker_mem_report(worker, NULL);
933707f3Ssthen	return 0;
e10d3884Sbrad
e10d3884Sbradsend_reply:
e10d3884Sbrad	rc = 1;
e10d3884Sbradsend_reply_rc:
2be9e038Ssthen	if(need_drop) {
2be9e038Ssthen		comm_point_drop_reply(repinfo);
2be9e038Ssthen		return 0;
2be9e038Ssthen	}
eaf2578eSsthen	if(is_expired_answer) {
eaf2578eSsthen		worker->stats.ans_expired++;
eaf2578eSsthen	}
2c144df0Ssthen	server_stats_insrcode(&worker->stats, c->buffer);
eaf2578eSsthen	if(worker->stats.extended) {
eaf2578eSsthen		if(is_secure_answer) worker->stats.ans_secure++;
eaf2578eSsthen	}
e10d3884Sbrad#ifdef USE_DNSTAP
191f22c6Ssthen	/*
191f22c6Ssthen	 * sending src (client)/dst (local service) addresses over DNSTAP from send_reply code label (when we serviced local zone for ex.)
191f22c6Ssthen	 */
2bdc0ed1Ssthen	if(worker->dtenv.log_client_response_messages && rc !=0) {
2bdc0ed1Ssthen		log_addr(VERB_ALGO, "from local addr", (void*)repinfo->c->socket->addr, repinfo->c->socket->addrlen);
45872187Ssthen		log_addr(VERB_ALGO, "response to client", &repinfo->client_addr, repinfo->client_addrlen);
2bdc0ed1Ssthen		dt_msg_send_client_response(&worker->dtenv, &repinfo->client_addr, (void*)repinfo->c->socket->addr, c->type, c->ssl, c->buffer);
191f22c6Ssthen	}
e10d3884Sbrad#endif
77079be7Ssthen	if(worker->env.cfg->log_replies)
77079be7Ssthen	{
ebf5bb73Ssthen		struct timeval tv;
ebf5bb73Ssthen		memset(&tv, 0, sizeof(tv));
c3b38330Ssthen		if(qinfo.local_alias && qinfo.local_alias->rrset &&
c3b38330Ssthen			qinfo.local_alias->rrset->rk.dname) {
c3b38330Ssthen			/* log original qname, before the local alias was
c3b38330Ssthen			 * used to resolve that CNAME to something else */
c3b38330Ssthen			qinfo.qname = qinfo.local_alias->rrset->rk.dname;
45872187Ssthen			log_reply_info(NO_VERBOSE, &qinfo,
45872187Ssthen				&repinfo->client_addr, repinfo->client_addrlen,
f46c52bfSsthen				tv, 1, c->buffer,
2bdc0ed1Ssthen				(worker->env.cfg->log_destaddr?(void*)repinfo->c->socket->addr:NULL),
f46c52bfSsthen				c->type);
c3b38330Ssthen		} else {
45872187Ssthen			log_reply_info(NO_VERBOSE, &qinfo,
45872187Ssthen				&repinfo->client_addr, repinfo->client_addrlen,
f46c52bfSsthen				tv, 1, c->buffer,
2bdc0ed1Ssthen				(worker->env.cfg->log_destaddr?(void*)repinfo->c->socket->addr:NULL),
f46c52bfSsthen				c->type);
c3b38330Ssthen		}
77079be7Ssthen	}
2be9e038Ssthen#ifdef USE_DNSCRYPT
2be9e038Ssthen	if(!dnsc_handle_uncurved_request(repinfo)) {
2be9e038Ssthen		return 0;
2be9e038Ssthen	}
2be9e038Ssthen#endif
e10d3884Sbrad	return rc;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_sighandler(int sig, void* arg)
933707f3Ssthen{
e10d3884Sbrad	/* note that log, print, syscalls here give race conditions.
e10d3884Sbrad	 * And cause hangups if the log-lock is held by the application. */
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	switch(sig) {
933707f3Ssthen#ifdef SIGHUP
933707f3Ssthen		case SIGHUP:
933707f3Ssthen			comm_base_exit(worker->base);
933707f3Ssthen			break;
933707f3Ssthen#endif
0bdb4f62Ssthen#ifdef SIGBREAK
0bdb4f62Ssthen		case SIGBREAK:
0bdb4f62Ssthen#endif
933707f3Ssthen		case SIGINT:
933707f3Ssthen			worker->need_to_exit = 1;
933707f3Ssthen			comm_base_exit(worker->base);
933707f3Ssthen			break;
933707f3Ssthen#ifdef SIGQUIT
933707f3Ssthen		case SIGQUIT:
933707f3Ssthen			worker->need_to_exit = 1;
933707f3Ssthen			comm_base_exit(worker->base);
933707f3Ssthen			break;
933707f3Ssthen#endif
933707f3Ssthen		case SIGTERM:
933707f3Ssthen			worker->need_to_exit = 1;
933707f3Ssthen			comm_base_exit(worker->base);
933707f3Ssthen			break;
933707f3Ssthen		default:
e10d3884Sbrad			/* unknown signal, ignored */
933707f3Ssthen			break;
933707f3Ssthen	}
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthen/** restart statistics timer for worker, if enabled */
933707f3Ssthenstatic void
933707f3Ssthenworker_restart_timer(struct worker* worker)
933707f3Ssthen{
933707f3Ssthen	if(worker->env.cfg->stat_interval > 0) {
933707f3Ssthen		struct timeval tv;
933707f3Ssthen#ifndef S_SPLINT_S
933707f3Ssthen		tv.tv_sec = worker->env.cfg->stat_interval;
933707f3Ssthen		tv.tv_usec = 0;
933707f3Ssthen#endif
933707f3Ssthen		comm_timer_set(worker->stat_timer, &tv);
933707f3Ssthen	}
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid worker_stat_timer_cb(void* arg)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	server_stats_log(&worker->stats, worker, worker->thread_num);
933707f3Ssthen	mesh_stats(worker->env.mesh, "mesh has");
933707f3Ssthen	worker_mem_report(worker, NULL);
2be9e038Ssthen	/* SHM is enabled, process data to SHM */
2be9e038Ssthen	if (worker->daemon->cfg->shm_enable) {
2be9e038Ssthen		shm_main_run(worker);
2be9e038Ssthen	}
933707f3Ssthen	if(!worker->daemon->cfg->stat_cumulative) {
933707f3Ssthen		worker_stats_clear(worker);
933707f3Ssthen	}
933707f3Ssthen	/* start next timer */
933707f3Ssthen	worker_restart_timer(worker);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid worker_probe_timer_cb(void* arg)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	struct timeval tv;
933707f3Ssthen#ifndef S_SPLINT_S
933707f3Ssthen	tv.tv_sec = (time_t)autr_probe_timer(&worker->env);
933707f3Ssthen	tv.tv_usec = 0;
933707f3Ssthen#endif
933707f3Ssthen	if(tv.tv_sec != 0)
933707f3Ssthen		comm_timer_set(worker->env.probe_timer, &tv);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenstruct worker*
933707f3Ssthenworker_create(struct daemon* daemon, int id, int* ports, int n)
933707f3Ssthen{
933707f3Ssthen	unsigned int seed;
933707f3Ssthen	struct worker* worker = (struct worker*)calloc(1,
933707f3Ssthen		sizeof(struct worker));
933707f3Ssthen	if(!worker)
933707f3Ssthen		return NULL;
933707f3Ssthen	worker->numports = n;
933707f3Ssthen	worker->ports = (int*)memdup(ports, sizeof(int)*n);
933707f3Ssthen	if(!worker->ports) {
933707f3Ssthen		free(worker);
933707f3Ssthen		return NULL;
933707f3Ssthen	}
933707f3Ssthen	worker->daemon = daemon;
933707f3Ssthen	worker->thread_num = id;
933707f3Ssthen	if(!(worker->cmd = tube_create())) {
933707f3Ssthen		free(worker->ports);
933707f3Ssthen		free(worker);
933707f3Ssthen		return NULL;
933707f3Ssthen	}
933707f3Ssthen	/* create random state here to avoid locking trouble in RAND_bytes */
ebf5bb73Ssthen	if(!(worker->rndstate = ub_initstate(daemon->rand))) {
933707f3Ssthen		log_err("could not init random numbers.");
933707f3Ssthen		tube_delete(worker->cmd);
933707f3Ssthen		free(worker->ports);
933707f3Ssthen		free(worker);
933707f3Ssthen		return NULL;
933707f3Ssthen	}
452a1548Ssthen	explicit_bzero(&seed, sizeof(seed));
933707f3Ssthen	return worker;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint
933707f3Ssthenworker_init(struct worker* worker, struct config_file *cfg,
933707f3Ssthen	struct listen_port* ports, int do_sigs)
933707f3Ssthen{
e10d3884Sbrad#ifdef USE_DNSTAP
e10d3884Sbrad	struct dt_env* dtenv = &worker->dtenv;
e10d3884Sbrad#else
e10d3884Sbrad	void* dtenv = NULL;
e10d3884Sbrad#endif
45872187Ssthen#ifdef HAVE_GETTID
45872187Ssthen	worker->thread_tid = gettid();
45872187Ssthen#endif
933707f3Ssthen	worker->need_to_exit = 0;
933707f3Ssthen	worker->base = comm_base_create(do_sigs);
933707f3Ssthen	if(!worker->base) {
933707f3Ssthen		log_err("could not create event handling base");
933707f3Ssthen		worker_delete(worker);
933707f3Ssthen		return 0;
933707f3Ssthen	}
af4988b1Ssthen	comm_base_set_slow_accept_handlers(worker->base, &worker_stop_accept,
af4988b1Ssthen		&worker_start_accept, worker);
933707f3Ssthen	if(do_sigs) {
933707f3Ssthen#ifdef SIGHUP
933707f3Ssthen		ub_thread_sig_unblock(SIGHUP);
933707f3Ssthen#endif
0bdb4f62Ssthen#ifdef SIGBREAK
0bdb4f62Ssthen		ub_thread_sig_unblock(SIGBREAK);
0bdb4f62Ssthen#endif
933707f3Ssthen		ub_thread_sig_unblock(SIGINT);
933707f3Ssthen#ifdef SIGQUIT
933707f3Ssthen		ub_thread_sig_unblock(SIGQUIT);
933707f3Ssthen#endif
933707f3Ssthen		ub_thread_sig_unblock(SIGTERM);
933707f3Ssthen#ifndef LIBEVENT_SIGNAL_PROBLEM
933707f3Ssthen		worker->comsig = comm_signal_create(worker->base,
933707f3Ssthen			worker_sighandler, worker);
933707f3Ssthen		if(!worker->comsig
933707f3Ssthen#ifdef SIGHUP
933707f3Ssthen			|| !comm_signal_bind(worker->comsig, SIGHUP)
933707f3Ssthen#endif
933707f3Ssthen#ifdef SIGQUIT
933707f3Ssthen			|| !comm_signal_bind(worker->comsig, SIGQUIT)
933707f3Ssthen#endif
933707f3Ssthen			|| !comm_signal_bind(worker->comsig, SIGTERM)
0bdb4f62Ssthen#ifdef SIGBREAK
0bdb4f62Ssthen			|| !comm_signal_bind(worker->comsig, SIGBREAK)
0bdb4f62Ssthen#endif
933707f3Ssthen			|| !comm_signal_bind(worker->comsig, SIGINT)) {
933707f3Ssthen			log_err("could not create signal handlers");
933707f3Ssthen			worker_delete(worker);
933707f3Ssthen			return 0;
933707f3Ssthen		}
933707f3Ssthen#endif /* LIBEVENT_SIGNAL_PROBLEM */
933707f3Ssthen		if(!daemon_remote_open_accept(worker->daemon->rc,
933707f3Ssthen			worker->daemon->rc_ports, worker)) {
933707f3Ssthen			worker_delete(worker);
933707f3Ssthen			return 0;
933707f3Ssthen		}
933707f3Ssthen#ifdef UB_ON_WINDOWS
933707f3Ssthen		wsvc_setup_worker(worker);
933707f3Ssthen#endif /* UB_ON_WINDOWS */
933707f3Ssthen	} else { /* !do_sigs */
933707f3Ssthen		worker->comsig = NULL;
933707f3Ssthen	}
2c144df0Ssthen#ifdef USE_DNSTAP
2c144df0Ssthen	if(cfg->dnstap) {
2c144df0Ssthen		log_assert(worker->daemon->dtenv != NULL);
2c144df0Ssthen		memcpy(&worker->dtenv, worker->daemon->dtenv, sizeof(struct dt_env));
2c144df0Ssthen		if(!dt_init(&worker->dtenv, worker->base))
2c144df0Ssthen			fatal_exit("dt_init failed");
2c144df0Ssthen	}
2c144df0Ssthen#endif
933707f3Ssthen	worker->front = listen_create(worker->base, ports,
933707f3Ssthen		cfg->msg_buffer_size, (int)cfg->incoming_num_tcp,
2308e98cSsthen		cfg->do_tcp_keepalive
2308e98cSsthen			? cfg->tcp_keepalive_timeout
2308e98cSsthen			: cfg->tcp_idle_timeout,
2c144df0Ssthen		cfg->harden_large_queries, cfg->http_max_streams,
eba819a2Ssthen		cfg->http_endpoint, cfg->http_notls_downstream,
eba819a2Ssthen		worker->daemon->tcl, worker->daemon->listen_sslctx,
2308e98cSsthen		dtenv, worker_handle_request, worker);
933707f3Ssthen	if(!worker->front) {
933707f3Ssthen		log_err("could not create listening sockets");
933707f3Ssthen		worker_delete(worker);
933707f3Ssthen		return 0;
933707f3Ssthen	}
933707f3Ssthen	worker->back = outside_network_create(worker->base,
933707f3Ssthen		cfg->msg_buffer_size, (size_t)cfg->outgoing_num_ports,
933707f3Ssthen		cfg->out_ifs, cfg->num_out_ifs, cfg->do_ip4, cfg->do_ip6,
a3167c07Ssthen		cfg->do_tcp?cfg->outgoing_num_tcp:0, cfg->ip_dscp,
933707f3Ssthen		worker->daemon->env->infra_cache, worker->rndstate,
933707f3Ssthen		cfg->use_caps_bits_for_id, worker->ports, worker->numports,
32e31f52Ssthen		cfg->unwanted_threshold, cfg->outgoing_tcp_mss,
32e31f52Ssthen		&worker_alloc_cleanup, worker,
bdfc4d55Sflorian		cfg->do_udp || cfg->udp_upstream_without_downstream,
bdfc4d55Sflorian		worker->daemon->connect_sslctx, cfg->delay_close,
191f22c6Ssthen		cfg->tls_use_sni, dtenv, cfg->udp_connect,
191f22c6Ssthen		cfg->max_reuse_tcp_queries, cfg->tcp_reuse_timeout,
191f22c6Ssthen		cfg->tcp_auth_query_timeout);
933707f3Ssthen	if(!worker->back) {
933707f3Ssthen		log_err("could not create outgoing sockets");
933707f3Ssthen		worker_delete(worker);
933707f3Ssthen		return 0;
933707f3Ssthen	}
191f22c6Ssthen	iterator_set_ip46_support(&worker->daemon->mods, worker->daemon->env,
191f22c6Ssthen		worker->back);
933707f3Ssthen	/* start listening to commands */
933707f3Ssthen	if(!tube_setup_bg_listen(worker->cmd, worker->base,
933707f3Ssthen		&worker_handle_control_cmd, worker)) {
933707f3Ssthen		log_err("could not create control compt.");
933707f3Ssthen		worker_delete(worker);
933707f3Ssthen		return 0;
933707f3Ssthen	}
933707f3Ssthen	worker->stat_timer = comm_timer_create(worker->base,
933707f3Ssthen		worker_stat_timer_cb, worker);
933707f3Ssthen	if(!worker->stat_timer) {
933707f3Ssthen		log_err("could not create statistics timer");
933707f3Ssthen	}
933707f3Ssthen
933707f3Ssthen	/* we use the msg_buffer_size as a good estimate for what the
933707f3Ssthen	 * user wants for memory usage sizes */
933707f3Ssthen	worker->scratchpad = regional_create_custom(cfg->msg_buffer_size);
933707f3Ssthen	if(!worker->scratchpad) {
933707f3Ssthen		log_err("malloc failure");
933707f3Ssthen		worker_delete(worker);
933707f3Ssthen		return 0;
933707f3Ssthen	}
933707f3Ssthen
933707f3Ssthen	server_stats_init(&worker->stats, cfg);
8b7325afSsthen	worker->alloc = worker->daemon->worker_allocs[worker->thread_num];
8b7325afSsthen	alloc_set_id_cleanup(worker->alloc, &worker_alloc_cleanup, worker);
933707f3Ssthen	worker->env = *worker->daemon->env;
933707f3Ssthen	comm_base_timept(worker->base, &worker->env.now, &worker->env.now_tv);
933707f3Ssthen	worker->env.worker = worker;
bdfc4d55Sflorian	worker->env.worker_base = worker->base;
933707f3Ssthen	worker->env.send_query = &worker_send_query;
8b7325afSsthen	worker->env.alloc = worker->alloc;
bdfc4d55Sflorian	worker->env.outnet = worker->back;
933707f3Ssthen	worker->env.rnd = worker->rndstate;
7191de28Ssthen	/* If case prefetch is triggered, the corresponding mesh will clear
7191de28Ssthen	 * the scratchpad for the module env in the middle of request handling.
7191de28Ssthen	 * It would be prone to a use-after-free kind of bug, so we avoid
7191de28Ssthen	 * sharing it with worker's own scratchpad at the cost of having
7191de28Ssthen	 * one more pad per worker. */
7191de28Ssthen	worker->env.scratch = regional_create_custom(cfg->msg_buffer_size);
7191de28Ssthen	if(!worker->env.scratch) {
7191de28Ssthen		log_err("malloc failure");
7191de28Ssthen		worker_delete(worker);
7191de28Ssthen		return 0;
7191de28Ssthen	}
933707f3Ssthen	worker->env.mesh = mesh_create(&worker->daemon->mods, &worker->env);
191f22c6Ssthen	if(!worker->env.mesh) {
191f22c6Ssthen		log_err("malloc failure");
191f22c6Ssthen		worker_delete(worker);
191f22c6Ssthen		return 0;
191f22c6Ssthen	}
eaf2578eSsthen	/* Pass on daemon variables that we would need in the mesh area */
eaf2578eSsthen	worker->env.mesh->use_response_ip = worker->daemon->use_response_ip;
eaf2578eSsthen	worker->env.mesh->use_rpz = worker->daemon->use_rpz;
eaf2578eSsthen
933707f3Ssthen	worker->env.detach_subs = &mesh_detach_subs;
933707f3Ssthen	worker->env.attach_sub = &mesh_attach_sub;
2be9e038Ssthen	worker->env.add_sub = &mesh_add_sub;
933707f3Ssthen	worker->env.kill_sub = &mesh_state_delete;
933707f3Ssthen	worker->env.detect_cycle = &mesh_detect_cycle;
0b68ff31Ssthen	worker->env.scratch_buffer = sldns_buffer_new(cfg->msg_buffer_size);
191f22c6Ssthen	if(!worker->env.scratch_buffer) {
191f22c6Ssthen		log_err("malloc failure");
191f22c6Ssthen		worker_delete(worker);
191f22c6Ssthen		return 0;
191f22c6Ssthen	}
933707f3Ssthen	/* one probe timer per process -- if we have 5011 anchors */
933707f3Ssthen	if(autr_get_num_anchors(worker->env.anchors) > 0
933707f3Ssthen#ifndef THREADS_DISABLED
933707f3Ssthen		&& worker->thread_num == 0
933707f3Ssthen#endif
933707f3Ssthen		) {
933707f3Ssthen		struct timeval tv;
933707f3Ssthen		tv.tv_sec = 0;
933707f3Ssthen		tv.tv_usec = 0;
933707f3Ssthen		worker->env.probe_timer = comm_timer_create(worker->base,
933707f3Ssthen			worker_probe_timer_cb, worker);
933707f3Ssthen		if(!worker->env.probe_timer) {
933707f3Ssthen			log_err("could not create 5011-probe timer");
933707f3Ssthen		} else {
933707f3Ssthen			/* let timer fire, then it can reset itself */
933707f3Ssthen			comm_timer_set(worker->env.probe_timer, &tv);
933707f3Ssthen		}
933707f3Ssthen	}
938a3a5eSflorian	/* zone transfer tasks, setup once per process, if any */
938a3a5eSflorian	if(worker->env.auth_zones
938a3a5eSflorian#ifndef THREADS_DISABLED
938a3a5eSflorian		&& worker->thread_num == 0
938a3a5eSflorian#endif
938a3a5eSflorian		) {
938a3a5eSflorian		auth_xfer_pickup_initial(worker->env.auth_zones, &worker->env);
191f22c6Ssthen		auth_zones_pickup_zonemd_verify(worker->env.auth_zones,
191f22c6Ssthen			&worker->env);
938a3a5eSflorian	}
a3167c07Ssthen#ifdef USE_DNSTAP
a3167c07Ssthen	if(worker->daemon->cfg->dnstap
a3167c07Ssthen#ifndef THREADS_DISABLED
a3167c07Ssthen		&& worker->thread_num == 0
a3167c07Ssthen#endif
a3167c07Ssthen		) {
a3167c07Ssthen		if(!dt_io_thread_start(dtenv->dtio, comm_base_internal(
a3167c07Ssthen			worker->base), worker->daemon->num)) {
a3167c07Ssthen			log_err("could not start dnstap io thread");
a3167c07Ssthen			worker_delete(worker);
a3167c07Ssthen			return 0;
a3167c07Ssthen		}
a3167c07Ssthen	}
a3167c07Ssthen#endif /* USE_DNSTAP */
933707f3Ssthen	worker_mem_report(worker, NULL);
933707f3Ssthen	/* if statistics enabled start timer */
933707f3Ssthen	if(worker->env.cfg->stat_interval > 0) {
933707f3Ssthen		verbose(VERB_ALGO, "set statistics interval %d secs",
933707f3Ssthen			worker->env.cfg->stat_interval);
933707f3Ssthen		worker_restart_timer(worker);
933707f3Ssthen	}
d896b962Ssthen	pp_init(&sldns_write_uint16, &sldns_write_uint32);
933707f3Ssthen	return 1;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_work(struct worker* worker)
933707f3Ssthen{
933707f3Ssthen	comm_base_dispatch(worker->base);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_delete(struct worker* worker)
933707f3Ssthen{
933707f3Ssthen	if(!worker)
933707f3Ssthen		return;
933707f3Ssthen	if(worker->env.mesh && verbosity >= VERB_OPS) {
933707f3Ssthen		server_stats_log(&worker->stats, worker, worker->thread_num);
933707f3Ssthen		mesh_stats(worker->env.mesh, "mesh has");
933707f3Ssthen		worker_mem_report(worker, NULL);
933707f3Ssthen	}
933707f3Ssthen	outside_network_quit_prepare(worker->back);
933707f3Ssthen	mesh_delete(worker->env.mesh);
0b68ff31Ssthen	sldns_buffer_free(worker->env.scratch_buffer);
933707f3Ssthen	listen_delete(worker->front);
933707f3Ssthen	outside_network_delete(worker->back);
933707f3Ssthen	comm_signal_delete(worker->comsig);
933707f3Ssthen	tube_delete(worker->cmd);
933707f3Ssthen	comm_timer_delete(worker->stat_timer);
933707f3Ssthen	comm_timer_delete(worker->env.probe_timer);
933707f3Ssthen	free(worker->ports);
933707f3Ssthen	if(worker->thread_num == 0) {
933707f3Ssthen#ifdef UB_ON_WINDOWS
933707f3Ssthen		wsvc_desetup_worker(worker);
933707f3Ssthen#endif /* UB_ON_WINDOWS */
933707f3Ssthen	}
a3167c07Ssthen#ifdef USE_DNSTAP
a3167c07Ssthen	if(worker->daemon->cfg->dnstap
a3167c07Ssthen#ifndef THREADS_DISABLED
a3167c07Ssthen		&& worker->thread_num == 0
a3167c07Ssthen#endif
a3167c07Ssthen		) {
a3167c07Ssthen		dt_io_thread_stop(worker->dtenv.dtio);
a3167c07Ssthen	}
a3167c07Ssthen	dt_deinit(&worker->dtenv);
a3167c07Ssthen#endif /* USE_DNSTAP */
933707f3Ssthen	comm_base_delete(worker->base);
933707f3Ssthen	ub_randfree(worker->rndstate);
8b7325afSsthen	/* don't touch worker->alloc, as it's maintained in daemon */
7191de28Ssthen	regional_destroy(worker->env.scratch);
933707f3Ssthen	regional_destroy(worker->scratchpad);
933707f3Ssthen	free(worker);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenstruct outbound_entry*
77079be7Ssthenworker_send_query(struct query_info* qinfo, uint16_t flags, int dnssec,
e21c60efSsthen	int want_dnssec, int nocaps, int check_ratelimit,
e21c60efSsthen	struct sockaddr_storage* addr, socklen_t addrlen, uint8_t* zone,
e21c60efSsthen	size_t zonelen, int tcp_upstream, int ssl_upstream, char* tls_auth_name,
e21c60efSsthen	struct module_qstate* q, int* was_ratelimited)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = q->env->worker;
933707f3Ssthen	struct outbound_entry* e = (struct outbound_entry*)regional_alloc(
933707f3Ssthen		q->region, sizeof(*e));
933707f3Ssthen	if(!e)
933707f3Ssthen		return NULL;
933707f3Ssthen	e->qstate = q;
77079be7Ssthen	e->qsent = outnet_serviced_query(worker->back, qinfo, flags, dnssec,
e21c60efSsthen		want_dnssec, nocaps, check_ratelimit, tcp_upstream,
20237c55Ssthen		ssl_upstream, tls_auth_name, addr, addrlen, zone, zonelen, q,
e21c60efSsthen		worker_handle_service_reply, e, worker->back->udp_buff, q->env,
e21c60efSsthen		was_ratelimited);
933707f3Ssthen	if(!e->qsent) {
933707f3Ssthen		return NULL;
933707f3Ssthen	}
933707f3Ssthen	return e;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid
933707f3Ssthenworker_alloc_cleanup(void* arg)
933707f3Ssthen{
933707f3Ssthen	struct worker* worker = (struct worker*)arg;
933707f3Ssthen	slabhash_clear(&worker->env.rrset_cache->table);
933707f3Ssthen	slabhash_clear(worker->env.msg_cache);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid worker_stats_clear(struct worker* worker)
933707f3Ssthen{
933707f3Ssthen	server_stats_init(&worker->stats, worker->env.cfg);
933707f3Ssthen	mesh_stats_clear(worker->env.mesh);
933707f3Ssthen	worker->back->unwanted_replies = 0;
e10d3884Sbrad	worker->back->num_tcp_outgoing = 0;
d1e2768aSsthen	worker->back->num_udp_outgoing = 0;
933707f3Ssthen}
933707f3Ssthen
af4988b1Ssthenvoid worker_start_accept(void* arg)
af4988b1Ssthen{
af4988b1Ssthen	struct worker* worker = (struct worker*)arg;
af4988b1Ssthen	listen_start_accept(worker->front);
af4988b1Ssthen	if(worker->thread_num == 0)
af4988b1Ssthen		daemon_remote_start_accept(worker->daemon->rc);
af4988b1Ssthen}
af4988b1Ssthen
af4988b1Ssthenvoid worker_stop_accept(void* arg)
af4988b1Ssthen{
af4988b1Ssthen	struct worker* worker = (struct worker*)arg;
af4988b1Ssthen	listen_stop_accept(worker->front);
af4988b1Ssthen	if(worker->thread_num == 0)
af4988b1Ssthen		daemon_remote_stop_accept(worker->daemon->rc);
af4988b1Ssthen}
af4988b1Ssthen
933707f3Ssthen/* --- fake callbacks for fptr_wlist to work --- */
77079be7Ssthenstruct outbound_entry* libworker_send_query(
77079be7Ssthen	struct query_info* ATTR_UNUSED(qinfo),
77079be7Ssthen	uint16_t ATTR_UNUSED(flags), int ATTR_UNUSED(dnssec),
77079be7Ssthen	int ATTR_UNUSED(want_dnssec), int ATTR_UNUSED(nocaps),
e21c60efSsthen	int ATTR_UNUSED(check_ratelimit),
77079be7Ssthen	struct sockaddr_storage* ATTR_UNUSED(addr), socklen_t ATTR_UNUSED(addrlen),
e21c60efSsthen	uint8_t* ATTR_UNUSED(zone), size_t ATTR_UNUSED(zonelen), int ATTR_UNUSED(tcp_upstream),
20237c55Ssthen	int ATTR_UNUSED(ssl_upstream), char* ATTR_UNUSED(tls_auth_name),
e21c60efSsthen	struct module_qstate* ATTR_UNUSED(q), int* ATTR_UNUSED(was_ratelimited))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint libworker_handle_service_reply(struct comm_point* ATTR_UNUSED(c),
933707f3Ssthen	void* ATTR_UNUSED(arg), int ATTR_UNUSED(error),
933707f3Ssthen        struct comm_reply* ATTR_UNUSED(reply_info))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid libworker_handle_control_cmd(struct tube* ATTR_UNUSED(tube),
933707f3Ssthen        uint8_t* ATTR_UNUSED(buffer), size_t ATTR_UNUSED(len),
933707f3Ssthen        int ATTR_UNUSED(error), void* ATTR_UNUSED(arg))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid libworker_fg_done_cb(void* ATTR_UNUSED(arg), int ATTR_UNUSED(rcode),
0b68ff31Ssthen	sldns_buffer* ATTR_UNUSED(buf), enum sec_status ATTR_UNUSED(s),
2308e98cSsthen	char* ATTR_UNUSED(why_bogus), int ATTR_UNUSED(was_ratelimited))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenvoid libworker_bg_done_cb(void* ATTR_UNUSED(arg), int ATTR_UNUSED(rcode),
0b68ff31Ssthen	sldns_buffer* ATTR_UNUSED(buf), enum sec_status ATTR_UNUSED(s),
2308e98cSsthen	char* ATTR_UNUSED(why_bogus), int ATTR_UNUSED(was_ratelimited))
0b68ff31Ssthen{
0b68ff31Ssthen	log_assert(0);
0b68ff31Ssthen}
0b68ff31Ssthen
0b68ff31Ssthenvoid libworker_event_done_cb(void* ATTR_UNUSED(arg), int ATTR_UNUSED(rcode),
0b68ff31Ssthen	sldns_buffer* ATTR_UNUSED(buf), enum sec_status ATTR_UNUSED(s),
2308e98cSsthen	char* ATTR_UNUSED(why_bogus), int ATTR_UNUSED(was_ratelimited))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint context_query_cmp(const void* ATTR_UNUSED(a), const void* ATTR_UNUSED(b))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint order_lock_cmp(const void* ATTR_UNUSED(e1), const void* ATTR_UNUSED(e2))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
933707f3Ssthenint codeline_cmp(const void* ATTR_UNUSED(a), const void* ATTR_UNUSED(b))
933707f3Ssthen{
933707f3Ssthen	log_assert(0);
933707f3Ssthen	return 0;
933707f3Ssthen}
933707f3Ssthen
a3167c07Ssthen#ifdef USE_DNSTAP
a3167c07Ssthenvoid dtio_tap_callback(int ATTR_UNUSED(fd), short ATTR_UNUSED(ev),
a3167c07Ssthen	void* ATTR_UNUSED(arg))
a3167c07Ssthen{
a3167c07Ssthen	log_assert(0);
a3167c07Ssthen}
a3167c07Ssthen#endif
a3167c07Ssthen
a3167c07Ssthen#ifdef USE_DNSTAP
a3167c07Ssthenvoid dtio_mainfdcallback(int ATTR_UNUSED(fd), short ATTR_UNUSED(ev),
a3167c07Ssthen	void* ATTR_UNUSED(arg))
a3167c07Ssthen{
a3167c07Ssthen	log_assert(0);
a3167c07Ssthen}
a3167c07Ssthen#endif