Need advice on "Hex signed 2's complement" alrgorithm

fantuz / DNSProxy

DNSProxy listens for incoming DNS requests, parses and encapsulates such queries into HTTP requests towards DoH resolvers as per RFC-8484. Upon valid response from DoH HTTP service DNSProxy will craft and send RFC-1035 compliant DNS responses back to calling client. DNSProxy protects you from privacy leaks, with option to store raw response packets

https://tools.ietf.org/html/rfc8484

MIT License

15 stars 4 forks source link

Need advice on "Hex signed 2's complement" alrgorithm #5

Closed fantuz closed 4 years ago

fantuz commented 6 years ago

this post to track the progress of "Hex signed 2's complement" rework.

TTL value is generated from headers, but not reflected correctly in UDP packet due to wrong conversion HEX to HEX 2's.

Tracking to find help and close soon, is trivial to fix.

fantuz commented 4 years ago

TTL is not perfectly extracted out of HTTP headers.

Rewriting of TTL into DNS wire packet works like a charm, when needed to override the original packet's TTL. Normally is up to the DoH provider to write the same (good) value on HTTP/DNS wire packet as into HTTP headers, contained in ache-control/max-age.

Hence, the whole problem is solved. Algorithm is OK, technique is validated by compliance to RFC standard