dnscontrol/pkg/normalize/flatten.go

109 lines
3.4 KiB
Go
Raw Normal View History

2017-09-30 03:30:36 +08:00
package normalize
import (
"fmt"
"strconv"
2017-09-30 03:30:36 +08:00
"strings"
"github.com/StackExchange/dnscontrol/v3/models"
"github.com/StackExchange/dnscontrol/v3/pkg/spflib"
2017-09-30 03:30:36 +08:00
)
// hasSpfRecords returns true if this record requests SPF unrolling.
func flattenSPFs(cfg *models.DNSConfig) []error {
var cache spflib.CachingResolver
var errs []error
var err error
for _, domain := range cfg.Domains {
apexTXTs := domain.Records.GroupedByKey()[models.RecordKey{Type: "TXT", NameFQDN: domain.Name}]
2017-09-30 03:30:36 +08:00
// flatten all spf records that have the "flatten" metadata
for _, txt := range apexTXTs {
var rec *spflib.SPFRecord
txtTarget := strings.Join(txt.TxtStrings, "")
2017-09-30 03:30:36 +08:00
if txt.Metadata["flatten"] != "" || txt.Metadata["split"] != "" {
if cache == nil {
cache, err = spflib.NewCache("spfcache.json")
if err != nil {
return []error{err}
}
}
rec, err = spflib.Parse(txtTarget, cache)
2017-09-30 03:30:36 +08:00
if err != nil {
errs = append(errs, err)
continue
}
}
if flatten, ok := txt.Metadata["flatten"]; ok && strings.HasPrefix(txtTarget, "v=spf1") {
2017-09-30 03:30:36 +08:00
rec = rec.Flatten(flatten)
err = txt.SetTargetTXT(rec.TXT())
if err != nil {
errs = append(errs, err)
continue
}
2017-09-30 03:30:36 +08:00
}
// now split if needed
if split, ok := txt.Metadata["split"]; ok {
overhead1 := 0
// overhead1: The first segment of the SPF record
// needs to be shorter than the others due to the overhead of
// other (non-SPF) txt records. If there are (for example) 50
// bytes of txt records also on this domain record, setting
// overhead1=50 reduces the maxLen by 50. It only affects the
// first part of the split.
if oh, ok := txt.Metadata["overhead1"]; ok {
i, err := strconv.Atoi(oh)
if err != nil {
errs = append(errs, Warning{fmt.Errorf("split overhead1 %q is not an int", oh)})
}
overhead1 = i
}
// Default txtMaxSize will not result in multiple TXT strings
txtMaxSize := 255
if oh, ok := txt.Metadata["txtMaxSize"]; ok {
i, err := strconv.Atoi(oh)
if err != nil {
errs = append(errs, Warning{fmt.Errorf("split txtMaxSize %q is not an int", oh)})
}
txtMaxSize = i
}
2017-09-30 03:30:36 +08:00
if !strings.Contains(split, "%d") {
errs = append(errs, Warning{fmt.Errorf("split format `%s` in `%s` is not proper format (missing %%d)", split, txt.GetLabelFQDN())})
2017-09-30 03:30:36 +08:00
continue
}
recs := rec.TXTSplit(split+"."+domain.Name, overhead1, txtMaxSize)
2017-09-30 03:30:36 +08:00
for k, v := range recs {
if k == "@" {
txt.SetTargetTXTs(v)
2017-09-30 03:30:36 +08:00
} else {
cp, _ := txt.Copy()
cp.SetTargetTXTs(v)
cp.SetLabelFromFQDN(k, domain.Name)
2017-09-30 03:30:36 +08:00
domain.Records = append(domain.Records, cp)
}
}
}
}
}
if cache == nil {
return errs
}
// check if cache is stale
for _, e := range cache.ResolveErrors() {
errs = append(errs, Warning{fmt.Errorf("problem resolving SPF record: %s", e)})
2017-09-30 03:30:36 +08:00
}
if len(cache.ResolveErrors()) == 0 {
changed := cache.ChangedRecords()
if len(changed) > 0 {
if err := cache.Save("spfcache.updated.json"); err != nil {
errs = append(errs, err)
} else {
errs = append(errs, Warning{fmt.Errorf("%d spf record lookups are out of date with cache (%s).\nWrote changes to spfcache.updated.json. Please rename and commit:\n $ mv spfcache.updated.json spfcache.json\n $ git commit -m 'Update spfcache.json' spfcache.json", len(changed), strings.Join(changed, ","))})
2017-09-30 03:30:36 +08:00
}
}
}
return errs
}