DNS primitive false positive

[lianke123321]

DNS primitive has a serious bug that could cause reply for another domain name being accepted by the wrong thread.

[rpanah]

We should try matching the query part of the response with the actual query domain name. To clean up the data that we already have, we can use the pcaps to match the query section.

[lianke123321]

False positive is still happening. Reopen the issue.

[lianke123321]

Confirm fixed by #246