idoh
| Crates.io | idoh |
| lib.rs | idoh |
| version | 0.2.6 |
| created_at | 2025-06-12 06:11:14.804891+00 |
| updated_at | 2025-12-19 15:08:35.973226+00 |
| description | Async DoH client for Rust / Rust 异步 DoH 客户端 |
| homepage | https://github.com/js0-site/rust/tree/dev/idoh |
| repository | https://github.com/js0-site/rust.git |
| max_upload_size | |
| id | 1709394 |
| size | 94,820 |
i18n.site (i18nsite)
documentation
README
idoh : Async DoH Client for Rust
Table of Contents
Introduction
idoh is an async Rust library for DNS over HTTPS (DoH) resolution.
Built on idns, which provides DnsRace, Cache, Parse trait, and more.
Features
- Multiple DoH providers (Tencent, Google, Cloudflare, DNS.SB, 360, NextDNS, AliDNS)
- Simple API with direct DNS answer access
- Async/await based on
tokio - Robust error handling for provider failures
- Optional static initialization for global DoH client
- Strong type safety
Usage
Add to Cargo.toml:
[dependencies]
idoh = "0.2"
idns = "0.2"
Basic Query
use idns::QType;
use idoh::Doh;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let doh = Doh::new("dns.google/resolve");
let answers = doh.query("google.com", QType::A).await?;
if let Some(answers) = answers {
for answer in answers {
println!("IP: {}", answer.val);
}
}
Ok(())
}
TXT Record Lookup
use idns::QType;
use idoh::Doh;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let doh = Doh::new("dns.google/resolve");
let answers = doh.query("qq.com", QType::TXT).await?;
if let Some(answers) = answers {
for answer in answers {
if answer.val.starts_with("v=spf1") {
println!("SPF: {}", answer.val);
}
}
}
Ok(())
}
DnsRace + Cache (Recommended)
Race multiple DoH servers and cache results:
use idoh::{DOH_LI, doh_li};
use idns::{Cache, DnsRace, Mx, Query};
use std::time::Instant;
#[tokio::main]
async fn main() {
let race = DnsRace::new(doh_li(DOH_LI));
let cache: Cache<Mx> = Cache::new(60); // 60s TTL
// First query (cache miss)
let t1 = Instant::now();
let r1 = cache.query(&race, "gmail.com").await;
let d1 = t1.elapsed();
println!("First: {}ms", d1.as_millis());
if let Some(mx_list) = &*r1.unwrap() {
for mx in mx_list {
println!(" {} {}", mx.priority, mx.server);
}
}
// Second query (cache hit)
let t2 = Instant::now();
let _ = cache.query(&race, "gmail.com").await;
let d2 = t2.elapsed();
println!("Cache: {}μs", d2.as_micros());
}
Output:
First: 744ms
5 gmail-smtp-in.l.google.com
10 alt1.gmail-smtp-in.l.google.com
20 alt2.gmail-smtp-in.l.google.com
30 alt3.gmail-smtp-in.l.google.com
40 alt4.gmail-smtp-in.l.google.com
Cache: 1μs
Performance
| Operation | Time | Notes |
|---|---|---|
| Network Lookup | ~744 ms | Depends on provider latency |
| Cache Lookup | ~1.8 µs | Zero-copy, >400,000x faster |
Design
idoh prioritizes latency minimization through concurrent queries to multiple DoH providers. The first valid response wins, mitigating network jitter and single-provider slowness.
Call Flow
graph TD
A[User: doh.query] --> B[Doh::query]
B --> C[Build URL with name & qtype]
C --> D[ireq::req HTTP GET]
D --> E[DoH Server]
E --> F[JSON Response]
F --> G[serde_json::from_slice]
G --> H{Status == 0?}
H -- Yes --> I[Parse Answer array]
H -- No --> J[Return None]
I --> K[Convert DnsAnswer to Answer]
K --> L[Return Ok Some Vec Answer]
With DnsRace (idns)
graph TD
A[User: race.answer_li] --> B[DnsRace::answer_li]
B --> C[Spawn concurrent tasks]
C --> D[Doh 1: query]
C --> E[Doh 2: query]
C --> F[Doh N: query]
D --> G[Channel]
E --> G
F --> G
G --> H[First Success]
H --> I[Cancel pending]
I --> J[Return Result]
API Reference
Struct: Doh
DoH client for DNS resolution.
pub struct Doh {
pub url: String,
}
impl Doh {
pub fn new(url: impl Into<String>) -> Self;
pub async fn query(&self, name: &str, qtype: QType) -> Result<Option<Vec<Answer>>>;
}
Implements idns::Query trait for integration with DnsRace and Cache.
Struct: Answer (from idns)
DNS answer record.
pub struct Answer {
pub name: String,
pub type_id: u16,
pub ttl: u32,
pub val: String,
}
Enum: Error
pub enum Error {
Http(ireq::Error),
Json(serde_json::Error),
}
Function: doh_li
Create DoH clients from URL list.
pub fn doh_li(li: &[&str]) -> Vec<Doh>
Constant: DOH_LI
Pre-configured DoH provider URLs:
pub static DOH_LI: &[&str] = &[
"doh.pub/resolve", // Tencent
"dns.google/resolve", // Google
"cloudflare-dns.com/dns-query", // Cloudflare
"doh.sb/dns-query", // DNS.SB
"doh.360.cn/resolve", // 360
"dns.nextdns.io", // NextDNS
"dns.alidns.com/resolve", // AliDNS
];
Static: DOH (feature = "static")
Global DnsRace<Doh> instance for convenient access.
pub static DOH: idns::DnsRace<Doh>
Tech Stack
| Component | Crate | Purpose |
|---|---|---|
| Runtime | tokio | Async execution |
| HTTP | ireq | Lightweight client with proxy support |
| JSON | serde_json | Response parsing |
| Error | thiserror | Error handling |
| Static Init | static_init | Optional global client |
Directory Structure
├── src/
│ ├── lib.rs # Module exports, Doh struct, DOH_LI constant
│ └── error.rs # Error and Result types
├── tests/
│ └── main.rs # Integration tests
├── Cargo.toml
└── readme/
├── en.md # English documentation
└── zh.md # Chinese documentation
History
DNS, the phonebook of the Internet, was designed in the 1980s without encryption. Every website visit leaked destinations in plaintext.
In 2018, IETF standardized DNS over HTTPS (RFC 8484). By wrapping DNS queries in encrypted HTTPS traffic, DoH prevents eavesdropping and manipulation.
Paul Mockapetris invented DNS in 1983 (RFC 882/883). He later reflected that security was not considered because "the Internet was a friendly place." Thirty-five years later, DoH finally addressed this oversight.
The name "idoh" follows the naming convention of the js0.site project: "i" prefix + functionality. Here, "doh" represents DNS over HTTPS.
About
This project is part of js0.site · Refactoring the Internet Plan.
About
This project is an open-source component of js0.site ⋅ Refactoring the Internet Plan.
We are redefining the development paradigm of the Internet in a componentized way. Welcome to follow us:
idoh : Rust 异步 DoH 客户端
目录
简介
idoh 是 Rust 异步 DNS over HTTPS (DoH) 解析库。
基于 idns 构建,idns 提供 DnsRace、Cache、Parse trait 等功能。
特性
- 多 DoH 提供商支持(腾讯、Google、Cloudflare、DNS.SB、360、NextDNS、阿里)
- 简洁 API,直接返回 DNS 应答
- 基于
tokio的异步设计 - 健壮的错误处理
- 可选静态初始化全局客户端
- 强类型安全
使用
添加到 Cargo.toml:
[dependencies]
idoh = "0.2"
idns = "0.2"
基础查询
use idns::QType;
use idoh::Doh;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let doh = Doh::new("dns.google/resolve");
let answers = doh.query("google.com", QType::A).await?;
if let Some(answers) = answers {
for answer in answers {
println!("IP: {}", answer.val);
}
}
Ok(())
}
TXT 记录查询
use idns::QType;
use idoh::Doh;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let doh = Doh::new("dns.google/resolve");
let answers = doh.query("qq.com", QType::TXT).await?;
if let Some(answers) = answers {
for answer in answers {
if answer.val.starts_with("v=spf1") {
println!("SPF: {}", answer.val);
}
}
}
Ok(())
}
DnsRace + Cache(推荐)
竞速查询多 DoH 服务器并缓存结果:
use idoh::{DOH_LI, doh_li};
use idns::{Cache, DnsRace, Mx, Query};
use std::time::Instant;
#[tokio::main]
async fn main() {
let race = DnsRace::new(doh_li(DOH_LI));
let cache: Cache<Mx> = Cache::new(60); // 60 秒 TTL
// 首次查询(缓存未命中)
let t1 = Instant::now();
let r1 = cache.query(&race, "gmail.com").await;
let d1 = t1.elapsed();
println!("首次: {}ms", d1.as_millis());
if let Some(mx_list) = &*r1.unwrap() {
for mx in mx_list {
println!(" {} {}", mx.priority, mx.server);
}
}
// 再次查询(缓存命中)
let t2 = Instant::now();
let _ = cache.query(&race, "gmail.com").await;
let d2 = t2.elapsed();
println!("缓存: {}μs", d2.as_micros());
}
输出:
首次: 744ms
5 gmail-smtp-in.l.google.com
10 alt1.gmail-smtp-in.l.google.com
20 alt2.gmail-smtp-in.l.google.com
30 alt3.gmail-smtp-in.l.google.com
40 alt4.gmail-smtp-in.l.google.com
缓存: 1μs
性能
| 操作 | 耗时 | 说明 |
|---|---|---|
| 网络查询 | ~744 ms | 取决于提供商延迟 |
| 缓存查询 | ~1.8 µs | 零拷贝,快 40 万倍以上 |
设计
idoh 通过并发查询多 DoH 提供商实现延迟最小化。首个有效响应胜出,规避网络抖动和单点故障。
调用流程
graph TD
A[用户: doh.query] --> B[Doh::query]
B --> C[构建 URL: name + qtype]
C --> D[ireq::req HTTP GET]
D --> E[DoH 服务器]
E --> F[JSON 响应]
F --> G[serde_json::from_slice]
G --> H{Status == 0?}
H -- 是 --> I[解析 Answer 数组]
H -- 否 --> J[返回 None]
I --> K[DnsAnswer 转 Answer]
K --> L[返回 Ok Some Vec Answer]
配合 DnsRace (idns)
graph TD
A[用户: race.answer_li] --> B[DnsRace::answer_li]
B --> C[启动并发任务]
C --> D[Doh 1: query]
C --> E[Doh 2: query]
C --> F[Doh N: query]
D --> G[通道]
E --> G
F --> G
G --> H[首个成功]
H --> I[取消待处理]
I --> J[返回结果]
API 参考
结构体: Doh
DoH 客户端。
pub struct Doh {
pub url: String,
}
impl Doh {
pub fn new(url: impl Into<String>) -> Self;
pub async fn query(&self, name: &str, qtype: QType) -> Result<Option<Vec<Answer>>>;
}
实现 idns::Query trait,可与 DnsRace、Cache 集成。
结构体: Answer (来自 idns)
DNS 应答记录。
pub struct Answer {
pub name: String,
pub type_id: u16,
pub ttl: u32,
pub val: String,
}
枚举: Error
pub enum Error {
Http(ireq::Error),
Json(serde_json::Error),
}
函数: doh_li
从 URL 列表创建 DoH 客户端。
pub fn doh_li(li: &[&str]) -> Vec<Doh>
常量: DOH_LI
预配置 DoH 提供商 URL:
pub static DOH_LI: &[&str] = &[
"doh.pub/resolve", // 腾讯
"dns.google/resolve", // Google
"cloudflare-dns.com/dns-query", // Cloudflare
"doh.sb/dns-query", // DNS.SB
"doh.360.cn/resolve", // 360
"dns.nextdns.io", // NextDNS
"dns.alidns.com/resolve", // 阿里
];
静态变量: DOH (feature = "static")
全局 DnsRace<Doh> 实例。
pub static DOH: idns::DnsRace<Doh>
技术栈
| 组件 | Crate | 用途 |
|---|---|---|
| 运行时 | tokio | 异步执行 |
| HTTP | ireq | 轻量客户端,支持代理 |
| JSON | serde_json | 响应解析 |
| 错误 | thiserror | 错误处理 |
| 静态初始化 | static_init | 可选全局客户端 |
目录结构
├── src/
│ ├── lib.rs # 模块导出、Doh 结构体、DOH_LI 常量
│ └── error.rs # Error 和 Result 类型
├── tests/
│ └── main.rs # 集成测试
├── Cargo.toml
└── readme/
├── en.md # 英文文档
└── zh.md # 中文文档
历史
DNS 作为互联网电话簿,设计于 1980 年代,未考虑加密。每次网站访问都明文暴露目的地。
2018 年,IETF 标准化 DNS over HTTPS (RFC 8484)。通过将 DNS 查询封装在加密 HTTPS 流量中,DoH 防止窃听和篡改。
Paul Mockapetris 于 1983 年发明 DNS (RFC 882/883)。他后来回忆,当时未考虑安全是因为"互联网是友好的地方"。三十五年后,DoH 终于弥补了这一疏漏。
"idoh" 命名遵循 js0.site 项目惯例:"i" 前缀 + 功能。此处 "doh" 代表 DNS over HTTPS。
关于
本项目为 js0.site · 重构互联网计划 开源组件。
关于
本项目为 js0.site ⋅ 重构互联网计划 的开源组件。
我们正在以组件化的方式重新定义互联网的开发范式,欢迎关注: