Merge pull request #282 from projectdiscovery/fix/axfr-force-tcp

Mzack9999 · web-flow · commit b03f730a44c3 · 2026-03-21T17:07:28.000+01:00
Fixing axfr
diff --git a/client.go b/client.go
@@ -681,7 +681,11 @@ func (c *Client) axfr(host string) (*AXFRData, error) {
 		}
 	}
 
-	resolvers = append(resolvers, c.resolvers...)
+	for _, r := range c.resolvers {
+		if nr, ok := r.(*NetworkResolver); ok {
+			resolvers = append(resolvers, &NetworkResolver{Protocol: TCP, Host: nr.Host, Port: nr.Port})
+		}
+	}
 
 	var data []*DNSData
 	// perform zone transfer for each ns
diff --git a/client_test.go b/client_test.go
@@ -171,6 +171,24 @@ func TestTrace(t *testing.T) {
 	require.Nil(t, err, "could not resolve dns")
 }
 
+func TestAXFRWithUDPResolvers(t *testing.T) {
+	// Resolver configured without tcp: prefix defaults to UDP.
+	// AXFR requires TCP, so axfr() must force TCP on fallback resolvers.
+	client, err := New([]string{"81.4.108.41:53"}, 3)
+	require.NoError(t, err)
+
+	axfrData, err := client.AXFR("zonetransfer.me")
+	require.NoError(t, err)
+	require.NotNil(t, axfrData)
+	require.True(t, len(axfrData.DNSData) > 0, "expected AXFR records but got none")
+
+	var totalRecords int
+	for _, d := range axfrData.DNSData {
+		totalRecords += len(d.AllRecords)
+	}
+	require.True(t, totalRecords > 0, "expected non-empty AXFR records")
+}
+
 func TestParseFromMsgIgnoresExtraAndNsSections(t *testing.T) {
 	msg := new(dns.Msg)
 	msg.SetQuestion("example.com.", dns.TypeA)

Original file line number	Diff line number	Diff line change
`@@ -681,7 +681,11 @@ func (c Client) axfr(host string) (AXFRData, error) {`
`681`	`681`	`}`
`682`	`682`	`}`
`683`	`683`
`684`		`- resolvers = append(resolvers, c.resolvers...)`
	`684`	`+ for _, r := range c.resolvers {`
	`685`	`+ if nr, ok := r.(*NetworkResolver); ok {`
	`686`	`+ resolvers = append(resolvers, &NetworkResolver{Protocol: TCP, Host: nr.Host, Port: nr.Port})`
	`687`	`+ }`
	`688`	`+ }`
`685`	`689`
`686`	`690`	`var data []*DNSData`
`687`	`691`	`// perform zone transfer for each ns`