U d@sjdZddlZddlZddlZddlZddlZddlZddlZddlZddl Z ddl m Z m Z m Z mZmZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddZddZdZdZ zddl!Z!ddl"Z!ddl#Z#e!j$Z%e!j&j'j(Z)d Zz e#j*d d  d Z W5QRXWne+k rDYnXGd d d e%Z,Gd dde#j-Z.Wn$e/k rGdddZ.YnXeZ0z ddl1Z1Wn$e/k rGdddZ1YnXejZ2Gdddej3j4Z5Gdddej3j6Z7Gdddej3j4Z8Gdddej3j4Z9ej:j;Z;ddZe?ed rPej@aAnejBaAd!d"ZCd#d$ZDd%d&ZEd'd(ZFded)d*ZGdfd+d,ZHdd-dddddd.d dd dejIf ejJjKeLe eMeNe eLeNeOeOe e eLeOe eLeeOeLfe d/e eNejJjKd0d1d2ZPd3d4ZQd5d6ZRdge eejJjKeSfe e eMeeNeMfd7d8d9ZTdhe e e e eMeOeOe e ejUjVejWjXfe eSeOeOe d; dddd dddddejWjlf eLeejUjVeLfeejhjmeLfeejjjneLfe eMeNe e ejUjVejWjXfe eejUjVeLfeOe eMe eLeNeNeOeejUjVeLfe d]d^d_Z:Gd`dadaejoZpdd>ddddepjqfeLejrjse ejJjKeNe eMe eMe eLeNepddb dcddZtdS)pzTalk to a DNS server.N)AnyDictOptionalTupleUnioncCs,|dkr dS|t}|dkr(tjj|S)N)timedns exceptionTimeout) expirationtimeoutr-/tmp/pip-unpacked-wheel-pk5slln3/dns/query.py _remaining-s  rcCs|dkr dStt||SN)minr)r r rrr_expiration_for_this_attempt6srFT)http2cs0eZdZfddZdddZd ddZZS) _NetworkBackendcs&t||_||_||_||_dSr)super__init__ _local_port _resolver_bootstrap_address_family)selfresolver local_portbootstrap_addressfamily __class__rrrOs  z_NetworkBackend.__init__Nc Csg}t|\}}tj|r(||nP|jdk r@||jn8t|}|j} |r^tj|} |j j || |d} | }|D]} tj| } |dk s|j dkrtj ||j f| } nd} t| tj| }td|}z(t|tj | |f| |t|WStk rYq|Xq|tjdS)N)r lifetimerg@)_compute_timesr inet is_addressappendrrraf_for_addressr resolve_name addressesrlow_level_address_tuple _make_socketsocket SOCK_STREAMr_connect_CoreSyncStream ExceptionhttpcoreZ ConnectError)rhostportr local_addresssocket_optionsr*_r r ZanswersaddressafsourcesockZattempt_expirationrrr connect_tcpVsH       z_NetworkBackend.connect_tcpcCstdSrNotImplementedError)rpathr r6rrrconnect_unix_socket}sz#_NetworkBackend.connect_unix_socket)N)N)__name__ __module__ __qualname__rr<r@ __classcell__rrr!rrNs   (rcs*eZdZdddejdfdd ZZS)_HTTPTransportrN)rrrr cs>|dkrddl}|j}tj||t|||||j_dSNr)Z dns.resolverrResolverrrr_poolZ_network_backend)rrrrr argskwargsr r!rrrs  z_HTTPTransport.__init__)rArBrCr- AF_UNSPECrrDrrr!rrEs rEc@seZdZddZdS)rEcCstdSrr=)rr3r4r r5rrrr<sz_HTTPTransport.connect_tcpN)rArBrCr<rrrrrEsc@sTeZdZGdddeZGdddeZGdddZGdddZed d Z d S) sslc@s eZdZdS)zssl.WantReadExceptionNrArBrCrrrrWantReadExceptionsrNc@s eZdZdS)zssl.WantWriteExceptionNrMrrrrWantWriteExceptionsrOc@s eZdZdS)zssl.SSLContextNrMrrrr SSLContextsrPc@s eZdZdS)z ssl.SSLSocketNrMrrrr SSLSocketsrQcOs tddS)Nzno ssl support)r1)clsrIrJrrrcreate_default_contextszssl.create_default_contextN) rArBrCr1rNrOrPrQ classmethodrSrrrrrLs rLc@seZdZdZdS)UnexpectedSourcez=A DNS query response came from an unexpected address or port.NrArBrC__doc__rrrrrUsrUc@seZdZdZdS) BadResponsez|j|d|dWS|WSWntk rd|YnXdS)NF)do_handshake_on_connectserver_hostname)socket_factory setblockingbind wrap_socketr1close)r9typer: ssl_contextrrnrrrr,Xs    r,iz /dns-queryzdns.resolver.Resolver)qr{r r4r:r|one_rr_per_rrsetignore_trailingsessionr?postrverifyrr returnc Cstst|r t|tjs td|}t||||d\}}}d}ddi}|dk rtj |r|t j krxd ||| }q|t jkrd ||| }n|}|dkrd}d}n|d}|d }t|d t| || | |d }|rt|}ntjd t| |d }|f}| r*|dtt|d |j||||d}n.t|d}|}|j|||d|id}W5QRX|jdksz|jdkrtd ||j|jtjj|j|j |j!||d}|j"#|_$|%|st&|S)aReturn the response obtained after sending a query via DNS-over-HTTPS. *q*, a ``dns.message.Message``, the query to send. *where*, a ``str``, the nameserver IP address or the full URL. If an IP address is given, the URL will be constructed using the following schema: https://:/. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, a ``int``, the port to send the query to. The default is 443. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *session*, an ``httpx.Client``. If provided, the client session to use to send the queries. *path*, a ``str``. If *where* is an IP address, then *path* will be used to construct the URL to send the DNS query to. *post*, a ``bool``. If ``True``, the default, POST method will be used. *bootstrap_address*, a ``str``, the IP address to use to bypass resolution. *verify*, a ``bool`` or ``str``. If a ``True``, then TLS certificate verification of the server is done using the default CA bundle; if ``False``, then no verification is done; if a `str` then it specifies the path to a certificate file or directory which will be used for verification. *resolver*, a ``dns.resolver.Resolver`` or ``None``, the resolver to use for resolution of hostnames in URLs. If not specified, a new resolver with a default configuration will be used; note this is *not* the default resolver as that resolver might have been configured to use DoH causing a chicken-and-egg problem. This parameter only has an effect if the HTTP library is httpx. *family*, an ``int``, the address family. If socket.AF_UNSPEC (the default), both A and AAAA records will be retrieved. Returns a ``dns.message.Message``. z)session parameter must be an httpx.ClientFNacceptzapplication/dns-messagezhttps://{}:{}{}zhttps://[{}]:{}{}rrqT)r5http1rrrrrr )rrr transport)z content-typezcontent-length)headerscontentr =r )rr paramsi+z2{} responded with status code {} Response body: {}keyring request_macrr)'have_dohrYr\httpxClientrzto_wirer}r r%r&r-AF_INETformatAF_INET6rE _have_http2 contextlib nullcontextupdatestrlenrbase64urlsafe_b64encoderstripdecodeget status_codermessage from_wirerrelapsed total_secondsr is_responserX)rr{r r4r:r|rrrr?rrrrr wirer9r7Z the_sourcerrurlr5rcmresponseZtwirerrrrhttpslsD        rcCs2z ||WStk r*t||YqXqdS)zReads a datagram from the socket. A Timeout exception will be raised if the operation is not completed by the expiration time. N)recvfromBlockingIOErrorro)r;max_sizer rrr _udp_recvs rcCsHz"|r|||WS||WSWqtk r@t||YqXqdS)zSends the specified datagram to destination over the socket. A Timeout exception will be raised if the operation is not completed by the expiration time. N)sendtosendrrp)r;datarwr rrr _udp_sends r)r;whatrwr rcCs4t|tjjr|}t}t||||}||fS)aSend a DNS message to the specified UDP socket. *sock*, a ``socket``. *what*, a ``bytes`` or ``dns.message.Message``, the message to send. *destination*, a destination tuple appropriate for the address family of the socket, specifying where to send the query. *expiration*, a ``float`` or ``None``, the absolute time at which a timeout exception should be raised. If ``None``, no timeout will occur. Returns an ``(int, float)`` tuple of bytes sent and the sent time. )r\r rMessagerrr)r;rrwr sent_timenrrrsend_udps r) r;rwr rxrrrrraise_on_truncationrc Csbd} t|d|\} } t|j| ||rq(qt} tjj| |||||d} |rT| | fS| | | fSdS)aRead a DNS message from a UDP socket. *sock*, a ``socket``. *destination*, a destination tuple appropriate for the address family of the socket, specifying where the message is expected to arrive from. When receiving a response, this would be where the associated query was sent. *expiration*, a ``float`` or ``None``, the absolute time at which a timeout exception should be raised. If ``None``, no timeout will occur. *ignore_unexpected*, a ``bool``. If ``True``, ignore responses from unexpected sources. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *keyring*, a ``dict``, the keyring to use for TSIG. *request_mac*, a ``bytes`` or ``None``, the MAC of the request (for TSIG). *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *raise_on_truncation*, a ``bool``. If ``True``, raise an exception if the TC bit is set. Raises if the message is malformed, if network errors occur, of if there is a timeout. If *destination* is not ``None``, returns a ``(dns.message.Message, float)`` tuple of the received message and the received time. If *destination* is ``None``, returns a ``(dns.message.Message, float, tuple)`` tuple of the received message, the received time, and the address where the message arrived from. r)rrrrrN)rryr rr rr) r;rwr rxrrrrrrrv received_timerrrr receive_udp:s*4r5) rr{r r4r:r|rxrrrr;rc  Cs|} t||||\} } }t|\}}| r8t| }nt| tj|}|X}t|| | |t || ||||j |j || \}}|||_ | |st|W5QRSQRXdstdS)aLReturn the response obtained after sending a query via UDP. *q*, a ``dns.message.Message``, the query to send *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, an ``int``, the port send the message to. The default is 53. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *ignore_unexpected*, a ``bool``. If ``True``, ignore responses from unexpected sources. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *raise_on_truncation*, a ``bool``. If ``True``, raise an exception if the TC bit is set. *sock*, a ``socket.socket``, or ``None``, the socket to use for the query. If ``None``, the default, a socket is created. Note that if a socket is provided, it must be a nonblocking datagram socket, and the *source* and *source_port* are ignored. Returns a ``dns.message.Message``. FN)rr}r$rrr,r- SOCK_DGRAMrrrmacrrrXAssertionError)rr{r r4r:r|rxrrrr;rr9rw begin_timer rrnrrrrrudps<3     r) rr{r r4r:r|rxrrudp_socktcp_sockrc Csdz&t|||||||||d| } | dfWStjjk r^t||||||||| } | dfYSXdS)aReturn the response to the query, trying UDP first and falling back to TCP if UDP results in a truncated response. *q*, a ``dns.message.Message``, the query to send *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, an ``int``, the port send the message to. The default is 53. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *ignore_unexpected*, a ``bool``. If ``True``, ignore responses from unexpected sources. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *udp_sock*, a ``socket.socket``, or ``None``, the socket to use for the UDP query. If ``None``, the default, a socket is created. Note that if a socket is provided, it must be a nonblocking datagram socket, and the *source* and *source_port* are ignored for the UDP query. *tcp_sock*, a ``socket.socket``, or ``None``, the connected socket to use for the TCP query. If ``None``, the default, a socket is created. Note that if a socket is provided, it must be a nonblocking connected stream socket, and *where*, *source* and *source_port* are ignored for the TCP query. Returns a (``dns.message.Message``, tcp) tuple where tcp is ``True`` if and only if TCP was used. TFN)rr rZ Truncatedtcp) rr{r r4r:r|rxrrrrrrrrudp_with_fallbacks87  rc Csd}|dkrz.||}|dkr$t|t|8}||7}Wqttjfk r^t||Yqtjk r|t||YqXq|S)zRead the specified number of bytes from sock. Keep trying until we either get the desired amount, or we hit EOF. A Timeout exception will be raised if the operation is not completed by the expiration time. rr) recvEOFErrorrrrLSSLWantReadErrorroSSLWantWriteErrorrp)r;countr rnrrrr _net_read+s   rc Csxd}t|}||krtz||||d7}Wq ttjfk rRt||Yq tjk rpt||Yq Xq dS)zWrite the specified data to the socket. A Timeout exception will be raised if the operation is not completed by the expiration time. rN)rrrrLrrprro)r;rr currentlrrr _net_write@sr)r;rr rcCsTt|tjjr|}n|}t|}td||}t}t |||t||fS)a{Send a DNS message to the specified TCP socket. *sock*, a ``socket``. *what*, a ``bytes`` or ``dns.message.Message``, the message to send. *expiration*, a ``float`` or ``None``, the absolute time at which a timeout exception should be raised. If ``None``, no timeout will occur. Returns an ``(int, float)`` tuple of bytes sent and the sent time. !H) r\r rrrrstructpackrr)r;rr rrtcpmsgrrrrsend_tcpPs  r)r;r rrrrrc CsLt|d|}td|\}t|||}t} tjj|||||d} | | fS)aRead a DNS message from a TCP socket. *sock*, a ``socket``. *expiration*, a ``float`` or ``None``, the absolute time at which a timeout exception should be raised. If ``None``, no timeout will occur. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *keyring*, a ``dict``, the keyring to use for TSIG. *request_mac*, a ``bytes`` or ``None``, the MAC of the request (for TSIG). *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. Raises if the message is malformed, if network errors occur, of if there is a timeout. Returns a ``(dns.message.Message, float)`` tuple of the received message and the received time. rr)rrunpackrr rr) r;r rrrrldatarrrrrrr receive_tcpps!  rcCs`||}|dkrdS|tjtjtjfkrDt|||tjtj }|dkr\t |t |dSrF) connect_exerrnoZ EINPROGRESS EWOULDBLOCKZEALREADYrp getsockoptr- SOL_SOCKETSO_ERROROSErrorosstrerror)rnr8r errrrrr/s  r/) rr{r r4r:r|rrr;rc  Cs|} t|\} } |r$t|} n"t||||\} }}t| tj|} | `}|s\t||| t || | t || ||j |j |\}}|| |_ ||st|W5QRSQRXdstdS)aReturn the response obtained after sending a query via TCP. *q*, a ``dns.message.Message``, the query to send *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, an ``int``, the port send the message to. The default is 53. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *sock*, a ``socket.socket``, or ``None``, the connected socket to use for the query. If ``None``, the default, a socket is created. Note that if a socket is provided, it must be a nonblocking connected stream socket, and *where*, *port*, *source* and *source_port* are ignored. Returns a ``dns.message.Message``. FN)rr$rrr}r,r-r.r/rrrrrrrXr)rr{r r4r:r|rrr;rrr rr9rwrnrrrrrrs:+       rcCsTz|WdStjk r.t||Yqtjk rLt||YqXqdSr) do_handshakerLrrorrprmrrr_tls_handshakesrU) rr{r r4r:r|rrr;rrrc  Cs|rt||||||||| S|} t|\} } t||||\}}}| dkrp|spt} tjj| _| dkrpd| _ t |t j || | df}t ||| t|| t|| | t|| ||j|j|\}}|| |_||st|W5QRSQRXdstdS)a:Return the response obtained after sending a query via TLS. *q*, a ``dns.message.Message``, the query to send *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, an ``int``, the port send the message to. The default is 853. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *sock*, an ``ssl.SSLSocket``, or ``None``, the socket to use for the query. If ``None``, the default, a socket is created. Note that if a socket is provided, it must be a nonblocking connected SSL stream socket, and *where*, *port*, *source*, *source_port*, and *ssl_context* are ignored. *ssl_context*, an ``ssl.SSLContext``, the context to use when establishing a TLS connection. If ``None``, the default, creates one with the default configuration. *server_hostname*, a ``str`` containing the server's hostname. The default is ``None``, which means that no hostname is known, and if an SSL context is created, hostname checking will be disabled. Returns a ``dns.message.Message``. NF)rr)rrr$r}rLrS TLSVersionTLSv1_2minimum_versioncheck_hostnamer,r-r.r/rrrrrrrrXr)rr{r r4r:r|rrr;rrrrr r9rwrnrrrrrtlssd7          r) rr{r r4r:r|rr connectionrrrc  Cstjjstdd|_|} |r2td} |} ntjj| | d} | }| ^|s`| ||||} t |\}}| | }| | d| t|} W5QRXt}W5QRXtjj| |j|j||d}t||d|_||st|S)aReturn the response obtained after sending a query via DNS-over-QUIC. *q*, a ``dns.message.Message``, the query to send. *where*, a ``str``, the nameserver IP address. *timeout*, a ``float`` or ``None``, the number of seconds to wait before the query times out. If ``None``, the default, wait forever. *port*, a ``int``, the port to send the query to. The default is 853. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *one_rr_per_rrset*, a ``bool``. If ``True``, put each RR into its own RRset. *ignore_trailing*, a ``bool``. If ``True``, ignore trailing junk at end of the received message. *connection*, a ``dns.quic.SyncQuicConnection``. If provided, the connection to use to send the query. *verify*, a ``bool`` or ``str``. If a ``True``, then TLS certificate verification of the server is done using the default CA bundle; if ``False``, then no verification is done; if a `str` then it specifies the path to a certificate file or directory which will be used for verification. *server_hostname*, a ``str`` containing the server's hostname. The default is ``None``, which means that no hostname is known, and if an SSL context is created, hostname checking will be disabled. Returns a ``dns.message.Message``. zDNS-over-QUIC is not available.rN) verify_modeZ server_nameTrr)r quicZ have_quicrZidrrrZSyncQuicManagerconnectr$Z make_streamrZreceiverrrrrrmaxrrX)rr{r r4r:r|rrrrrrmanagerZthe_connectionZ the_managerstartr streamfinishrrrrras>2     r)r{zonerdtyperdclassr r4rkeyname relativizer#r:r|serialuse_udp keyalgorithmrc' cst|trtj|}tjj|}tj |||}|tjj krdtj |dddd| }|j ||dk r||j|||d|}t||| | \}}} | r|tjj krtd| rtjntj}t||| }t| \}}t|||t|}| rt||d|ntd||}t|||d }d }d }d}|rF|}tjj}nd}|}d} |st|\}}!|!dks|dk r|!|kr|}!| rt|d |!\}}n&t|d |!}"t d|"\}t|||!}|tjj k}#tjj!||j"|j#d || d |#d }$|$$}%|%tj$j%krt&|%|$j'} d}&|dkr|$j(r<|$j(dj|krHtj)*d|$j(d}|j+tjj,krntj)*dd}&|-}|tjj krtj./|dj.| krd }nd }|$j(|&dD]}|rtj)*d|j+tjj,krX|j|krX|r|dj.| kr tj)*dd }n|tjj kr&| }||krj|tjj0ksR|tjj krj|rjd }n|rtjj0}d }q|r|j"r|$j1stj)*d|$VqRW5QRXdS)aReturn a generator for the responses to a zone transfer. *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *zone*, a ``dns.name.Name`` or ``str``, the name of the zone to transfer. *rdtype*, an ``int`` or ``str``, the type of zone transfer. The default is ``dns.rdatatype.AXFR``. ``dns.rdatatype.IXFR`` can be used to do an incremental transfer instead. *rdclass*, an ``int`` or ``str``, the class of the zone transfer. The default is ``dns.rdataclass.IN``. *timeout*, a ``float``, the number of seconds to wait for each response message. If None, the default, wait forever. *port*, an ``int``, the port send the message to. The default is 53. *keyring*, a ``dict``, the keyring to use for TSIG. *keyname*, a ``dns.name.Name`` or ``str``, the name of the TSIG key to use. *relativize*, a ``bool``. If ``True``, all names in the zone will be relativized to the zone origin. It is essential that the relativize setting matches the one specified to ``dns.zone.from_xfr()`` if using this generator to make a zone. *lifetime*, a ``float``, the total number of seconds to spend doing the transfer. If ``None``, the default, then there is no limit on the time the transfer may take. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *serial*, an ``int``, the SOA serial number to use as the base for an IXFR diff sequence (only meaningful if *rdtype* is ``dns.rdatatype.IXFR``). *use_udp*, a ``bool``. If ``True``, use UDP (only meaningful for IXFR). *keyalgorithm*, a ``dns.name.Name`` or ``str``, the TSIG algorithm to use. Raises on errors, and so does the generator. Returns a generator of ``dns.message.Message`` objects. rINSOAz. . %u 0 0 0 0N) algorithmzcannot do a UDP AXFRrFTrrrrxfrorigintsig_ctxZmultirz No answer or RRset not for qnamezfirst RRset is not an SOArqzanswers after final SOAzIXFR base serial mismatch missing TSIG)2r\rr nameZ from_text rdatatype RdataTypemaker make_queryIXFRrrset authorityr'Zuse_tsigrr}rzr-rr.r,r$r/rrrrremptyrrrrrrrcodeZNOERROR TransferErrorrZanswerr FormErrorrr copyrZSerialAXFRhad_tsig)'r{rrrr r4rrrr#r:r|rrrrrrr9rw sock_typernr7r rrdoneZ delete_modeZ expecting_SOAZ soa_rrsetrZonamer mexpirationris_ixfrrrZ answer_indexrrrr sE                         r c@seZdZdZdZdZdZdS)UDPModeaHow should UDP be used in an IXFR from :py:func:`inbound_xfr()`? NEVER means "never use UDP; always use TCP" TRY_FIRST means "try to use UDP but fall back to TCP if needed" ONLY means "raise ``dns.xfr.UseTCP`` if trying UDP does not succeed" rrqrN)rArBrCrWNEVERZ TRY_FIRSTONLYrrrrr$rsr$) r{ txn_managerqueryr4r r#r:r|udp_moderc  Cs>|dkrtj|\}} n tj|} |jdj} | tjjk} |} | } t ||||\}}}t |\}}d}|r:d}| r|t j krtj}d}n tj}d}t|||}t||||rt|| d|n tdt| | }t|||tj|| | |$}d}d}|st |\}}|dks>|dk rB||krB|}|rZt|d|\}}n&t|d|}td|\}t|||}tjj||j|jd| || | d}z| |}WnFtjj!k r|st"|t j#krނd}d}t j }YqYnX|j$}q|s$|jr$|j%s$tj&'d W5QRXW5QRXqrdS) aConduct an inbound transfer and apply it via a transaction from the txn_manager. *where*, a ``str`` containing an IPv4 or IPv6 address, where to send the message. *txn_manager*, a ``dns.transaction.TransactionManager``, the txn_manager for this transfer (typically a ``dns.zone.Zone``). *query*, the query to send. If not supplied, a default query is constructed using information from the *txn_manager*. *port*, an ``int``, the port send the message to. The default is 53. *timeout*, a ``float``, the number of seconds to wait for each response message. If None, the default, wait forever. *lifetime*, a ``float``, the total number of seconds to spend doing the transfer. If ``None``, the default, then there is no limit on the time the transfer may take. *source*, a ``str`` containing an IPv4 or IPv6 address, specifying the source address. The default is the wildcard address. *source_port*, an ``int``, the port from which to send the message. The default is 0. *udp_mode*, a ``dns.query.UDPMode``, determines how UDP is used for IXFRs. The default is ``dns.UDPMode.NEVER``, i.e. only use TCP. Other possibilities are ``dns.UDPMode.TRY_FIRST``, which means "try UDP but fallback to TCP if needed", and ``dns.UDPMode.ONLY``, which means "try UDP and raise ``dns.xfr.UseTCP`` if it does not succeed. Raises on errors. NrTFrrrr r)(r r rZextract_serial_from_queryZquestionrrrZfrom_wire_originrr}r$r$r%r-rr.r,r/rrrrrZInboundrrrrrrrZprocess_messageZUseTCPrr&rrr r)r{r'r(r4r r#r:r|r)rrr#rrr9rwr7r retryr Zis_udprnrZinboundr!rr"Zrwirerrrrrr inbound_xfrs/                r+)T)NN)N)NNFFNrFF) NrNrFFFFN) NrNrFFFNN)N)NFNrF)NrNrFFN) NrNrFFNNN) NrNrFFNTN)urWrrenumrrr_r-rrtypingrrrrrZ dns.exceptionr Zdns.inetZ dns.messageZdns.nameZdns.quicZ dns.rcodeZdns.rdataclassZ dns.rdatatypeZ dns.serialZdns.transactionZdns.tsigZdns.xfrrrZ _have_httpxrr2Zhttpcore._backends.syncrZNetworkBackendZ_CoreNetworkBackendZ _backendssyncZ SyncStreamr0rr1rZ HTTPTransportrE ImportErrorrrLrr Z DNSExceptionrUrrXrYrZr rr$rirjhasattrrkr^SelectSelectorrorprtryr}r,rKrrrfloatintboolrrrbytesrrNameZtsigZKeyrrrrrrrr/rrrQrPrrZSyncQuicConnectionrrZ rdataclassr Zdefault_algorithmrZ RdataClassIntEnumr$r%Z transactionZTransactionManagerr+rrrrsx  4    ,      M U U " / D k   Z ;