2017-03-17 13:42:53 +08:00
|
|
|
package main
|
|
|
|
|
|
|
|
|
|
import (
|
2021-01-25 05:36:23 +08:00
|
|
|
"encoding/json"
|
2017-03-17 13:42:53 +08:00
|
|
|
"flag"
|
|
|
|
|
"fmt"
|
2020-03-10 22:13:20 +08:00
|
|
|
"os"
|
2017-03-21 11:28:43 +08:00
|
|
|
"strings"
|
Switch to Go 1.13 error wrapping (#604)
* Replaced errors.Wrap with fmt.Errorf (#589)
* Find: errors\.Wrap\(([^,]+),\s+(["`][^"`]*)(["`])\)
Replace: fmt.Errorf($2: %w$3, $1)
* Replaced errors.Wrapf with fmt.Errorf (#589)
* Find: errors\.Wrapf\(([^,]+),\s+(["`][^"`]*)(["`])\)
Replace: fmt.Errorf($2: %w$3, $1)
* Find: errors\.Wrapf\(([^,]+),\s+(["`][^"`]*)(["`])(,[^)]+)\)
* Replace: fmt.Errorf($2: %w$3$4, $1)
* Replaced errors.Errorf with fmt.Errorf (#589)
* Find: errors\.Errorf
Replace: fmt.Errorf
* Cleaned up remaining imports
* Cleanup
* Regenerate provider support matrix
This was broken by #533 ... and it's now the third time this has been missed.
2020-01-29 00:06:56 +08:00
|
|
|
"testing"
|
2021-05-02 23:25:57 +08:00
|
|
|
"time"
|
Switch to Go 1.13 error wrapping (#604)
* Replaced errors.Wrap with fmt.Errorf (#589)
* Find: errors\.Wrap\(([^,]+),\s+(["`][^"`]*)(["`])\)
Replace: fmt.Errorf($2: %w$3, $1)
* Replaced errors.Wrapf with fmt.Errorf (#589)
* Find: errors\.Wrapf\(([^,]+),\s+(["`][^"`]*)(["`])\)
Replace: fmt.Errorf($2: %w$3, $1)
* Find: errors\.Wrapf\(([^,]+),\s+(["`][^"`]*)(["`])(,[^)]+)\)
* Replace: fmt.Errorf($2: %w$3$4, $1)
* Replaced errors.Errorf with fmt.Errorf (#589)
* Find: errors\.Errorf
Replace: fmt.Errorf
* Cleaned up remaining imports
* Cleanup
* Regenerate provider support matrix
This was broken by #533 ... and it's now the third time this has been missed.
2020-01-29 00:06:56 +08:00
|
|
|
|
2023-05-21 01:21:45 +08:00
|
|
|
"github.com/StackExchange/dnscontrol/v4/models"
|
|
|
|
|
"github.com/StackExchange/dnscontrol/v4/pkg/credsfile"
|
|
|
|
|
"github.com/StackExchange/dnscontrol/v4/pkg/nameservers"
|
|
|
|
|
"github.com/StackExchange/dnscontrol/v4/pkg/zonerecs"
|
|
|
|
|
"github.com/StackExchange/dnscontrol/v4/providers"
|
|
|
|
|
_ "github.com/StackExchange/dnscontrol/v4/providers/_all"
|
|
|
|
|
"github.com/StackExchange/dnscontrol/v4/providers/cloudflare"
|
2021-03-05 07:58:23 +08:00
|
|
|
"github.com/miekg/dns/dnsutil"
|
2017-03-17 13:42:53 +08:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
var providerToRun = flag.String("provider", "", "Provider to run")
|
2023-02-07 21:07:37 +08:00
|
|
|
var startIdx = flag.Int("start", -1, "Test number to begin with")
|
|
|
|
|
var endIdx = flag.Int("end", -1, "Test index to stop after")
|
2017-03-21 11:28:43 +08:00
|
|
|
var verbose = flag.Bool("verbose", false, "Print corrections as you run them")
|
2021-05-02 23:25:57 +08:00
|
|
|
var printElapsed = flag.Bool("elapsed", false, "Print elapsed time for each testgroup")
|
2021-10-12 04:04:49 +08:00
|
|
|
var enableCFWorkers = flag.Bool("cfworkers", true, "Set false to disable CF worker tests")
|
2017-03-17 13:42:53 +08:00
|
|
|
|
|
|
|
|
func init() {
|
2019-10-05 22:45:57 +08:00
|
|
|
testing.Init()
|
2022-12-12 04:02:58 +08:00
|
|
|
|
2017-03-17 13:42:53 +08:00
|
|
|
flag.Parse()
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-22 00:19:16 +08:00
|
|
|
// Helper constants/funcs for the CLOUDFLARE proxy testing:
|
|
|
|
|
|
2023-09-16 03:30:55 +08:00
|
|
|
func CfProxyOff() *TestCase { return tc("proxyoff", cfProxyA("prxy", "174.136.107.111", "off")) }
|
|
|
|
|
func CfProxyOn() *TestCase { return tc("proxyon", cfProxyA("prxy", "174.136.107.111", "on")) }
|
|
|
|
|
func CfProxyFull1() *TestCase { return tc("proxyf1", cfProxyA("prxy", "174.136.107.111", "full")) }
|
|
|
|
|
func CfProxyFull2() *TestCase { return tc("proxyf2", cfProxyA("prxy", "174.136.107.222", "full")) }
|
|
|
|
|
func CfCProxyOff() *TestCase { return tc("cproxyoff", cfProxyCNAME("cproxy", "example.com.", "off")) }
|
|
|
|
|
func CfCProxyOn() *TestCase { return tc("cproxyon", cfProxyCNAME("cproxy", "example.com.", "on")) }
|
|
|
|
|
func CfCProxyFull() *TestCase { return tc("cproxyf", cfProxyCNAME("cproxy", "example.com.", "full")) }
|
2023-08-22 00:19:16 +08:00
|
|
|
|
|
|
|
|
// ---
|
|
|
|
|
|
2024-03-04 00:27:29 +08:00
|
|
|
func getProvider(t *testing.T) (providers.DNSServiceProvider, string, map[string]string) {
|
2017-03-17 13:42:53 +08:00
|
|
|
if *providerToRun == "" {
|
|
|
|
|
t.Log("No provider specified with -provider")
|
2024-03-04 00:27:29 +08:00
|
|
|
return nil, "", nil
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2022-05-03 08:12:30 +08:00
|
|
|
jsons, err := credsfile.LoadProviderConfigs("providers.json")
|
2017-03-17 13:42:53 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatalf("Error loading provider configs: %s", err)
|
|
|
|
|
}
|
|
|
|
|
for name, cfg := range jsons {
|
|
|
|
|
if *providerToRun != name {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2021-01-25 05:36:23 +08:00
|
|
|
|
|
|
|
|
var metadata json.RawMessage
|
|
|
|
|
// CLOUDFLAREAPI tests related to CF_REDIRECT/CF_TEMP_REDIRECT
|
|
|
|
|
// requires metadata to enable this feature.
|
|
|
|
|
// In hindsight, I have no idea why this metadata flag is required to
|
|
|
|
|
// use this feature. Maybe because we didn't have the capabilities
|
|
|
|
|
// feature at the time?
|
|
|
|
|
if name == "CLOUDFLAREAPI" {
|
2021-10-12 04:04:49 +08:00
|
|
|
if *enableCFWorkers {
|
|
|
|
|
metadata = []byte(`{ "manage_redirects": true, "manage_workers": true }`)
|
|
|
|
|
} else {
|
|
|
|
|
metadata = []byte(`{ "manage_redirects": true }`)
|
|
|
|
|
}
|
2021-01-25 05:36:23 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
provider, err := providers.CreateDNSProvider(name, cfg, metadata)
|
2017-03-17 13:42:53 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
2021-01-25 05:36:23 +08:00
|
|
|
|
2021-10-12 04:04:49 +08:00
|
|
|
if name == "CLOUDFLAREAPI" && *enableCFWorkers {
|
|
|
|
|
// Cloudflare only. Will do nothing if provider != *cloudflareProvider.
|
|
|
|
|
if err := cloudflare.PrepareCloudflareTestWorkers(provider); err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-03-04 00:27:29 +08:00
|
|
|
return provider, cfg["domain"], cfg
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2021-01-25 05:36:23 +08:00
|
|
|
|
2017-03-17 13:42:53 +08:00
|
|
|
t.Fatalf("Provider %s not found", *providerToRun)
|
2024-03-04 00:27:29 +08:00
|
|
|
return nil, "", nil
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestDNSProviders(t *testing.T) {
|
2024-03-04 00:27:29 +08:00
|
|
|
provider, domain, cfg := getProvider(t)
|
2017-03-17 13:42:53 +08:00
|
|
|
if provider == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
2020-12-19 01:14:43 +08:00
|
|
|
if domain == "" {
|
|
|
|
|
t.Fatal("NO DOMAIN SET! Exiting!")
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-31 08:38:08 +08:00
|
|
|
t.Run(domain, func(t *testing.T) {
|
2024-03-04 00:27:29 +08:00
|
|
|
runTests(t, provider, domain, cfg)
|
2017-03-17 13:42:53 +08:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func getDomainConfigWithNameservers(t *testing.T, prv providers.DNSServiceProvider, domainName string) *models.DomainConfig {
|
|
|
|
|
dc := &models.DomainConfig{
|
|
|
|
|
Name: domainName,
|
|
|
|
|
}
|
2023-05-03 01:04:59 +08:00
|
|
|
dc.UpdateSplitHorizonNames()
|
2021-02-06 01:12:45 +08:00
|
|
|
|
2017-03-17 13:42:53 +08:00
|
|
|
// fix up nameservers
|
|
|
|
|
ns, err := prv.GetNameservers(domainName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal("Failed getting nameservers", err)
|
|
|
|
|
}
|
|
|
|
|
dc.Nameservers = ns
|
|
|
|
|
nameservers.AddNSRecords(dc)
|
|
|
|
|
return dc
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
// testPermitted returns nil if the test is permitted, otherwise an
|
|
|
|
|
// error explaining why it is not.
|
2024-03-04 00:21:50 +08:00
|
|
|
func testPermitted(p string, f TestGroup) error {
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
// not() and only() can't be mixed.
|
|
|
|
|
if len(f.only) != 0 && len(f.not) != 0 {
|
|
|
|
|
return fmt.Errorf("invalid filter: can't mix not() and only()")
|
2017-03-21 11:28:43 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
// TODO(tlim): Have a separate validation pass so that such mistakes
|
|
|
|
|
// are more visible?
|
|
|
|
|
|
2021-10-12 04:04:49 +08:00
|
|
|
// If there are any trueflags, make sure they are all true.
|
|
|
|
|
for _, c := range f.trueflags {
|
|
|
|
|
if !c {
|
|
|
|
|
return fmt.Errorf("excluded by alltrue(%v)", f.trueflags)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
// If there are any required capabilities, make sure they all exist.
|
|
|
|
|
if len(f.required) != 0 {
|
|
|
|
|
for _, c := range f.required {
|
|
|
|
|
if !providers.ProviderHasCapability(*providerToRun, c) {
|
|
|
|
|
return fmt.Errorf("%s not supported", c)
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If there are any "only" items, you must be one of them.
|
|
|
|
|
if len(f.only) != 0 {
|
|
|
|
|
for _, provider := range f.only {
|
|
|
|
|
if p == provider {
|
|
|
|
|
return nil
|
2017-03-21 11:28:43 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
return fmt.Errorf("disabled by only")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If there are any "not" items, you must NOT be one of them.
|
|
|
|
|
if len(f.not) != 0 {
|
|
|
|
|
for _, provider := range f.not {
|
|
|
|
|
if p == provider {
|
|
|
|
|
return fmt.Errorf("excluded by not(\"%s\")", provider)
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// makeChanges runs one set of DNS record tests. Returns true on success.
|
|
|
|
|
func makeChanges(t *testing.T, prv providers.DNSServiceProvider, dc *models.DomainConfig, tst *TestCase, desc string, expectChanges bool, origConfig map[string]string) bool {
|
|
|
|
|
domainName := dc.Name
|
|
|
|
|
|
2020-03-23 01:38:37 +08:00
|
|
|
return t.Run(desc+":"+tst.Desc, func(t *testing.T) {
|
2020-03-10 22:13:20 +08:00
|
|
|
dom, _ := dc.Copy()
|
|
|
|
|
for _, r := range tst.Records {
|
|
|
|
|
rc := models.RecordConfig(*r)
|
|
|
|
|
if strings.Contains(rc.GetTargetField(), "**current-domain**") {
|
|
|
|
|
_ = rc.SetTarget(strings.Replace(rc.GetTargetField(), "**current-domain**", domainName, 1) + ".")
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
if strings.Contains(rc.GetTargetField(), "**current-domain-no-trailing**") {
|
|
|
|
|
_ = rc.SetTarget(strings.Replace(rc.GetTargetField(), "**current-domain-no-trailing**", domainName, 1))
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
if strings.Contains(rc.GetLabelFQDN(), "**current-domain**") {
|
|
|
|
|
rc.SetLabelFromFQDN(strings.Replace(rc.GetLabelFQDN(), "**current-domain**", domainName, 1), domainName)
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
//if providers.ProviderHasCapability(*providerToRun, providers.CanUseAzureAlias) {
|
|
|
|
|
if strings.Contains(rc.GetTargetField(), "**subscription-id**") {
|
|
|
|
|
_ = rc.SetTarget(strings.Replace(rc.GetTargetField(), "**subscription-id**", origConfig["SubscriptionID"], 1))
|
|
|
|
|
}
|
|
|
|
|
if strings.Contains(rc.GetTargetField(), "**resource-group**") {
|
|
|
|
|
_ = rc.SetTarget(strings.Replace(rc.GetTargetField(), "**resource-group**", origConfig["ResourceGroup"], 1))
|
|
|
|
|
}
|
|
|
|
|
//}
|
|
|
|
|
dom.Records = append(dom.Records, &rc)
|
|
|
|
|
}
|
2023-04-15 03:22:23 +08:00
|
|
|
if *providerToRun == "AXFRDDNS" {
|
|
|
|
|
// Bind will refuse a DDNS update when the resulting zone
|
|
|
|
|
// contains a NS record without an associated address
|
|
|
|
|
// records (A or AAAA)
|
|
|
|
|
dom.Records = append(dom.Records, a("ns."+domainName+".", "9.8.7.6"))
|
|
|
|
|
}
|
2023-04-24 02:28:18 +08:00
|
|
|
dom.Unmanaged = tst.Unmanaged
|
2023-05-25 03:14:36 +08:00
|
|
|
dom.UnmanagedUnsafe = tst.UnmanagedUnsafe
|
2020-03-10 22:13:20 +08:00
|
|
|
models.PostProcessRecords(dom.Records)
|
|
|
|
|
dom2, _ := dom.Copy()
|
|
|
|
|
|
2021-03-08 02:19:22 +08:00
|
|
|
if err := providers.AuditRecords(*providerToRun, dom.Records); err != nil {
|
2022-08-15 08:46:56 +08:00
|
|
|
t.Skipf("***SKIPPED(PROVIDER DOES NOT SUPPORT '%s' ::%q)", err, desc)
|
2021-03-08 02:19:22 +08:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
// get and run corrections for first time
|
2023-05-16 22:42:08 +08:00
|
|
|
_, corrections, err := zonerecs.CorrectZoneRecords(prv, dom)
|
2020-03-10 22:13:20 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(fmt.Errorf("runTests: %w", err))
|
|
|
|
|
}
|
2023-05-09 10:29:58 +08:00
|
|
|
if tst.Changeless {
|
2023-05-16 22:42:08 +08:00
|
|
|
if count := len(corrections); count != 0 {
|
2023-05-09 10:29:58 +08:00
|
|
|
t.Logf("Expected 0 corrections on FIRST run, but found %d.", count)
|
|
|
|
|
for i, c := range corrections {
|
|
|
|
|
t.Logf("UNEXPECTED #%d: %s", i, c.Msg)
|
|
|
|
|
}
|
|
|
|
|
t.FailNow()
|
|
|
|
|
}
|
|
|
|
|
} else if (len(corrections) == 0 && expectChanges) && (tst.Desc != "Empty") {
|
2020-03-10 22:13:20 +08:00
|
|
|
t.Fatalf("Expected changes, but got none")
|
|
|
|
|
}
|
|
|
|
|
for _, c := range corrections {
|
|
|
|
|
if *verbose {
|
2023-02-08 05:53:49 +08:00
|
|
|
t.Log("\n" + c.Msg)
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
2023-04-24 02:28:18 +08:00
|
|
|
if c.F != nil { // F == nil if there is just a msg, no action.
|
|
|
|
|
err = c.F()
|
|
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If we just emptied out the zone, no need for a second pass.
|
|
|
|
|
if len(tst.Records) == 0 {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// run a second time and expect zero corrections
|
2023-05-16 22:42:08 +08:00
|
|
|
_, corrections, err = zonerecs.CorrectZoneRecords(prv, dom2)
|
2020-03-10 22:13:20 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
2023-05-16 22:42:08 +08:00
|
|
|
if count := len(corrections); count != 0 {
|
2023-04-24 02:28:18 +08:00
|
|
|
t.Logf("Expected 0 corrections on second run, but found %d.", count)
|
2020-03-10 22:13:20 +08:00
|
|
|
for i, c := range corrections {
|
2021-06-25 06:26:21 +08:00
|
|
|
t.Logf("UNEXPECTED #%d: %s", i, c.Msg)
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
t.FailNow()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
2024-03-04 00:27:29 +08:00
|
|
|
func runTests(t *testing.T, prv providers.DNSServiceProvider, domainName string, origConfig map[string]string) {
|
2024-02-09 05:39:30 +08:00
|
|
|
dc := getDomainConfigWithNameservers(t, prv, domainName)
|
2024-03-04 00:50:24 +08:00
|
|
|
testGroups := makeTests()
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
firstGroup := *startIdx
|
2023-02-07 21:07:37 +08:00
|
|
|
if firstGroup == -1 {
|
|
|
|
|
firstGroup = 0
|
|
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
lastGroup := *endIdx
|
2023-02-07 21:07:37 +08:00
|
|
|
if lastGroup == -1 {
|
2020-03-10 22:13:20 +08:00
|
|
|
lastGroup = len(testGroups)
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
curGroup := -1
|
|
|
|
|
for gIdx, group := range testGroups {
|
|
|
|
|
|
|
|
|
|
// Abide by -start -end flags
|
2020-03-11 04:53:17 +08:00
|
|
|
curGroup++
|
2020-03-10 22:13:20 +08:00
|
|
|
if curGroup < firstGroup || curGroup > lastGroup {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Abide by filter
|
2024-03-04 00:21:50 +08:00
|
|
|
if err := testPermitted(*providerToRun, *group); err != nil {
|
2020-03-10 22:13:20 +08:00
|
|
|
//t.Logf("%s: ***SKIPPED(%v)***", group.Desc, err)
|
|
|
|
|
makeChanges(t, prv, dc, tc("Empty"), fmt.Sprintf("%02d:%s ***SKIPPED(%v)***", gIdx, group.Desc, err), false, origConfig)
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
|
2023-12-20 00:16:32 +08:00
|
|
|
// Start the testgroup with a clean slate.
|
|
|
|
|
makeChanges(t, prv, dc, tc("Empty"), "Clean Slate", false, nil)
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
// Run the tests.
|
2023-12-20 00:16:32 +08:00
|
|
|
start := time.Now()
|
2021-01-23 01:54:39 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
for _, tst := range group.tests {
|
2021-05-02 23:25:57 +08:00
|
|
|
|
2023-04-02 20:42:10 +08:00
|
|
|
// TODO(tlim): This is the old version. It skipped the remaining tc() statements if one failed.
|
|
|
|
|
// The new code continues to test the remaining tc() statements. Keeping this as a comment
|
|
|
|
|
// in case we ever want to do something similar.
|
|
|
|
|
// https://github.com/StackExchange/dnscontrol/pull/2252#issuecomment-1492204409
|
|
|
|
|
// makeChanges(t, prv, dc, tst, fmt.Sprintf("%02d:%s", gIdx, group.Desc), true, origConfig)
|
|
|
|
|
// if t.Failed() {
|
|
|
|
|
// break
|
|
|
|
|
// }
|
|
|
|
|
if ok := makeChanges(t, prv, dc, tst, fmt.Sprintf("%02d:%s", gIdx, group.Desc), true, origConfig); !ok {
|
2020-03-10 22:13:20 +08:00
|
|
|
break
|
|
|
|
|
}
|
2023-04-02 20:42:10 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
|
2021-05-02 23:25:57 +08:00
|
|
|
elapsed := time.Since(start)
|
|
|
|
|
if *printElapsed {
|
|
|
|
|
fmt.Printf("ELAPSED %02d %7.2f %q\n", gIdx, elapsed.Seconds(), group.Desc)
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestDualProviders(t *testing.T) {
|
2024-03-04 00:27:29 +08:00
|
|
|
p, domain, _ := getProvider(t)
|
2017-03-17 13:42:53 +08:00
|
|
|
if p == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
2020-12-19 01:14:43 +08:00
|
|
|
if domain == "" {
|
|
|
|
|
t.Fatal("NO DOMAIN SET! Exiting!")
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
dc := getDomainConfigWithNameservers(t, p, domain)
|
2021-12-22 01:23:11 +08:00
|
|
|
if !providers.ProviderHasCapability(*providerToRun, providers.DocDualHost) {
|
|
|
|
|
t.Skip("Skipping. DocDualHost == Cannot")
|
|
|
|
|
return
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
// clear everything
|
|
|
|
|
run := func() {
|
2017-03-23 00:54:55 +08:00
|
|
|
dom, _ := dc.Copy()
|
2023-04-15 03:22:23 +08:00
|
|
|
|
2023-05-16 22:42:08 +08:00
|
|
|
rs, cs, err := zonerecs.CorrectZoneRecords(p, dom)
|
2017-03-17 13:42:53 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
2023-05-16 22:42:08 +08:00
|
|
|
for i, c := range rs {
|
|
|
|
|
t.Logf("INFO#%d:\n%s", i+1, c.Msg)
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
for i, c := range cs {
|
2023-02-28 14:25:09 +08:00
|
|
|
t.Logf("#%d:\n%s", i+1, c.Msg)
|
2017-03-17 13:42:53 +08:00
|
|
|
if err = c.F(); err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
t.Log("Clearing everything")
|
|
|
|
|
run()
|
|
|
|
|
// add bogus nameservers
|
|
|
|
|
dc.Records = []*models.RecordConfig{}
|
2022-04-24 21:08:40 +08:00
|
|
|
nslist, _ := models.ToNameservers([]string{"ns1.example.com", "ns2.example.com"})
|
|
|
|
|
dc.Nameservers = append(dc.Nameservers, nslist...)
|
2017-03-17 13:42:53 +08:00
|
|
|
nameservers.AddNSRecords(dc)
|
|
|
|
|
t.Log("Adding nameservers from another provider")
|
|
|
|
|
run()
|
|
|
|
|
// run again to make sure no corrections
|
|
|
|
|
t.Log("Running again to ensure stability")
|
2023-05-16 22:42:08 +08:00
|
|
|
rs, cs, err := zonerecs.CorrectZoneRecords(p, dc)
|
2017-03-17 13:42:53 +08:00
|
|
|
if err != nil {
|
|
|
|
|
t.Fatal(err)
|
|
|
|
|
}
|
2023-05-16 22:42:08 +08:00
|
|
|
if count := len(cs); count != 0 {
|
2023-04-24 02:28:18 +08:00
|
|
|
t.Logf("Expect no corrections on second run, but found %d.", count)
|
2023-05-16 22:42:08 +08:00
|
|
|
for i, c := range rs {
|
|
|
|
|
t.Logf("INFO#%d:\n%s", i+1, c.Msg)
|
|
|
|
|
}
|
2017-03-23 00:54:55 +08:00
|
|
|
for i, c := range cs {
|
2023-05-16 22:42:08 +08:00
|
|
|
t.Logf("#%d: %s", i+1, c.Msg)
|
2017-03-23 00:54:55 +08:00
|
|
|
}
|
|
|
|
|
t.FailNow()
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-07 21:27:41 +08:00
|
|
|
func TestNameserverDots(t *testing.T) {
|
|
|
|
|
// Issue https://github.com/StackExchange/dnscontrol/issues/491
|
|
|
|
|
// If this fails, the provider's GetNameservers() function uses
|
|
|
|
|
// models.ToNameserversStripTD() instead of models.ToNameservers()
|
|
|
|
|
// or vise-versa.
|
|
|
|
|
|
|
|
|
|
// Setup:
|
2024-03-04 00:27:29 +08:00
|
|
|
p, domain, _ := getProvider(t)
|
2023-05-07 21:27:41 +08:00
|
|
|
if p == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if domain == "" {
|
|
|
|
|
t.Fatal("NO DOMAIN SET! Exiting!")
|
|
|
|
|
}
|
|
|
|
|
dc := getDomainConfigWithNameservers(t, p, domain)
|
|
|
|
|
if !providers.ProviderHasCapability(*providerToRun, providers.DocDualHost) {
|
|
|
|
|
t.Skip("Skipping. DocDualHost == Cannot")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
t.Run("No trailing dot in nameserver", func(t *testing.T) {
|
|
|
|
|
for _, nameserver := range dc.Nameservers {
|
|
|
|
|
//fmt.Printf("DEBUG: nameserver.Name = %q\n", nameserver.Name)
|
|
|
|
|
if strings.HasSuffix(nameserver.Name, ".") {
|
|
|
|
|
t.Errorf("Provider returned nameserver with trailing dot: %q", nameserver)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
type TestGroup struct {
|
2021-10-12 04:04:49 +08:00
|
|
|
Desc string
|
|
|
|
|
required []providers.Capability
|
|
|
|
|
only []string
|
|
|
|
|
not []string
|
|
|
|
|
trueflags []bool
|
|
|
|
|
tests []*TestCase
|
2020-03-10 22:13:20 +08:00
|
|
|
}
|
|
|
|
|
|
2017-03-17 13:42:53 +08:00
|
|
|
type TestCase struct {
|
2023-05-25 03:14:36 +08:00
|
|
|
Desc string
|
|
|
|
|
Records []*models.RecordConfig
|
|
|
|
|
Unmanaged []*models.UnmanagedConfig
|
|
|
|
|
UnmanagedUnsafe bool // DISABLE_IGNORE_SAFETY_CHECK
|
|
|
|
|
Changeless bool // set to true if any changes would be an error
|
2023-05-09 10:29:58 +08:00
|
|
|
}
|
|
|
|
|
|
2023-05-25 03:14:36 +08:00
|
|
|
// ExpectNoChanges indicates that no changes is not an error, it is a requirement.
|
2023-05-09 10:29:58 +08:00
|
|
|
func (tc *TestCase) ExpectNoChanges() *TestCase {
|
|
|
|
|
tc.Changeless = true
|
|
|
|
|
return tc
|
|
|
|
|
}
|
2023-05-25 03:14:36 +08:00
|
|
|
|
|
|
|
|
// UnsafeIgnore is the equivalent of DISABLE_IGNORE_SAFETY_CHECK
|
|
|
|
|
func (tc *TestCase) UnsafeIgnore() *TestCase {
|
|
|
|
|
tc.UnmanagedUnsafe = true
|
|
|
|
|
return tc
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func SetLabel(r *models.RecordConfig, label, domain string) {
|
2018-03-20 05:18:58 +08:00
|
|
|
r.Name = label
|
|
|
|
|
r.NameFQDN = dnsutil.AddOrigin(label, "**current-domain**")
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func a(name, target string) *models.RecordConfig {
|
2017-03-17 13:42:53 +08:00
|
|
|
return makeRec(name, target, "A")
|
|
|
|
|
}
|
|
|
|
|
|
2023-11-22 22:38:58 +08:00
|
|
|
func aaaa(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeRec(name, target, "AAAA")
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func alias(name, target string) *models.RecordConfig {
|
2017-04-20 03:13:28 +08:00
|
|
|
return makeRec(name, target, "ALIAS")
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func azureAlias(name, aliasType, target string) *models.RecordConfig {
|
2020-03-03 00:25:42 +08:00
|
|
|
r := makeRec(name, target, "AZURE_ALIAS")
|
|
|
|
|
r.AzureAlias = map[string]string{
|
|
|
|
|
"type": aliasType,
|
|
|
|
|
}
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func caa(name string, tag string, flag uint8, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "CAA")
|
|
|
|
|
r.SetTargetCAA(flag, tag, target)
|
2021-01-25 05:36:23 +08:00
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-30 19:09:42 +08:00
|
|
|
func cfProxyA(name, target, status string) *models.RecordConfig {
|
|
|
|
|
r := a(name, target)
|
|
|
|
|
r.Metadata = make(map[string]string)
|
|
|
|
|
r.Metadata["cloudflare_proxy"] = status
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func cfProxyCNAME(name, target, status string) *models.RecordConfig {
|
|
|
|
|
r := cname(name, target)
|
|
|
|
|
r.Metadata = make(map[string]string)
|
|
|
|
|
r.Metadata["cloudflare_proxy"] = status
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2021-10-12 04:04:49 +08:00
|
|
|
func cfWorkerRoute(pattern, target string) *models.RecordConfig {
|
|
|
|
|
t := fmt.Sprintf("%s,%s", pattern, target)
|
|
|
|
|
r := makeRec("@", t, "CF_WORKER_ROUTE")
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func cfRedir(pattern, target string) *models.RecordConfig {
|
|
|
|
|
t := fmt.Sprintf("%s,%s", pattern, target)
|
|
|
|
|
r := makeRec("@", t, "CF_REDIRECT")
|
2023-03-17 02:04:20 +08:00
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func cfRedirTemp(pattern, target string) *models.RecordConfig {
|
|
|
|
|
t := fmt.Sprintf("%s,%s", pattern, target)
|
|
|
|
|
r := makeRec("@", t, "CF_TEMP_REDIRECT")
|
2017-03-23 00:54:55 +08:00
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func cname(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeRec(name, target, "CNAME")
|
2019-03-28 22:40:13 +08:00
|
|
|
}
|
|
|
|
|
|
2023-09-10 14:05:26 +08:00
|
|
|
func dhcid(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeRec(name, target, "DHCID")
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func ds(name string, keyTag uint16, algorithm, digestType uint8, digest string) *models.RecordConfig {
|
2020-05-30 22:40:21 +08:00
|
|
|
r := makeRec(name, "", "DS")
|
2021-03-08 02:19:22 +08:00
|
|
|
r.SetTargetDS(keyTag, algorithm, digestType, digest)
|
2020-05-30 22:40:21 +08:00
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-25 03:14:36 +08:00
|
|
|
func ignoreName(labelSpec string) *models.RecordConfig {
|
2023-10-23 01:56:13 +08:00
|
|
|
return ignore(labelSpec, "*", "*")
|
2020-08-18 23:14:34 +08:00
|
|
|
}
|
|
|
|
|
|
2023-05-25 03:14:36 +08:00
|
|
|
func ignoreTarget(targetSpec string, typeSpec string) *models.RecordConfig {
|
2024-03-04 01:17:12 +08:00
|
|
|
return ignore("*", typeSpec, targetSpec)
|
2023-05-25 03:14:36 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func ignore(labelSpec string, typeSpec string, targetSpec string) *models.RecordConfig {
|
|
|
|
|
r := &models.RecordConfig{
|
|
|
|
|
Type: "IGNORE",
|
|
|
|
|
Metadata: map[string]string{},
|
|
|
|
|
}
|
2023-10-23 01:56:13 +08:00
|
|
|
|
2023-05-25 03:14:36 +08:00
|
|
|
r.Metadata["ignore_LabelPattern"] = labelSpec
|
|
|
|
|
r.Metadata["ignore_RTypePattern"] = typeSpec
|
|
|
|
|
r.Metadata["ignore_TargetPattern"] = targetSpec
|
2018-03-20 05:18:58 +08:00
|
|
|
return r
|
2018-01-16 04:39:29 +08:00
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func loc(name string, d1 uint8, m1 uint8, s1 float32, ns string,
|
|
|
|
|
d2 uint8, m2 uint8, s2 float32, ew string, al int32, sz float32, hp float32, vp float32) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, "", "LOC")
|
|
|
|
|
r.SetLOCParams(d1, m1, s1, ns, d2, m2, s2, ew, al, sz, hp, vp)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func makeRec(name, target, typ string) *models.RecordConfig {
|
|
|
|
|
r := &models.RecordConfig{
|
2018-03-20 05:18:58 +08:00
|
|
|
Type: typ,
|
|
|
|
|
TTL: 300,
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
2021-03-05 07:58:23 +08:00
|
|
|
SetLabel(r, name, "**current-domain**")
|
2018-03-20 05:18:58 +08:00
|
|
|
r.SetTarget(target)
|
|
|
|
|
return r
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func manyA(namePattern, target string, n int) []*models.RecordConfig {
|
|
|
|
|
recs := []*models.RecordConfig{}
|
2020-03-10 22:13:20 +08:00
|
|
|
for i := 0; i < n; i++ {
|
|
|
|
|
recs = append(recs, makeRec(fmt.Sprintf(namePattern, i), target, "A"))
|
|
|
|
|
}
|
|
|
|
|
return recs
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func mx(name string, prio uint16, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "MX")
|
|
|
|
|
r.MxPreference = prio
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func ns(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeRec(name, target, "NS")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func naptr(name string, order uint16, preference uint16, flags string, service string, regexp string, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "NAPTR")
|
|
|
|
|
r.SetTargetNAPTR(order, preference, flags, service, regexp, target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func ptr(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeRec(name, target, "PTR")
|
|
|
|
|
}
|
|
|
|
|
|
2023-11-28 06:50:21 +08:00
|
|
|
func r53alias(name, aliasType, target, evalTargetHealth string) *models.RecordConfig {
|
2023-03-29 07:30:01 +08:00
|
|
|
r := makeRec(name, target, "R53_ALIAS")
|
|
|
|
|
r.R53Alias = map[string]string{
|
2023-11-28 06:50:21 +08:00
|
|
|
"type": aliasType,
|
|
|
|
|
"evaluate_target_health": evalTargetHealth,
|
2023-03-29 07:30:01 +08:00
|
|
|
}
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func soa(name string, ns, mbox string, serial, refresh, retry, expire, minttl uint32) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, "", "SOA")
|
|
|
|
|
r.SetTargetSOA(ns, mbox, serial, refresh, retry, expire, minttl)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func srv(name string, priority, weight, port uint16, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "SRV")
|
|
|
|
|
r.SetTargetSRV(priority, weight, port, target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func sshfp(name string, algorithm uint8, fingerprint uint8, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "SSHFP")
|
|
|
|
|
r.SetTargetSSHFP(algorithm, fingerprint, target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-30 01:23:04 +08:00
|
|
|
func ovhdkim(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeOvhNativeRecord(name, target, "DKIM")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func ovhspf(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeOvhNativeRecord(name, target, "SPF")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func ovhdmarc(name, target string) *models.RecordConfig {
|
|
|
|
|
return makeOvhNativeRecord(name, target, "DMARC")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func makeOvhNativeRecord(name, target, rType string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, "", "TXT")
|
|
|
|
|
r.Metadata = make(map[string]string)
|
|
|
|
|
r.Metadata["create_ovh_native_record"] = rType
|
|
|
|
|
r.SetTarget(target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
func testgroup(desc string, items ...interface{}) *TestGroup {
|
|
|
|
|
group := &TestGroup{Desc: desc}
|
|
|
|
|
for _, item := range items {
|
|
|
|
|
switch v := item.(type) {
|
|
|
|
|
case requiresFilter:
|
|
|
|
|
if len(group.tests) != 0 {
|
|
|
|
|
fmt.Printf("ERROR: requires() must be before all tc(): %v\n", desc)
|
|
|
|
|
os.Exit(1)
|
|
|
|
|
}
|
|
|
|
|
group.required = append(group.required, v.caps...)
|
|
|
|
|
case notFilter:
|
|
|
|
|
if len(group.tests) != 0 {
|
|
|
|
|
fmt.Printf("ERROR: not() must be before all tc(): %v\n", desc)
|
|
|
|
|
os.Exit(1)
|
|
|
|
|
}
|
|
|
|
|
group.not = append(group.not, v.names...)
|
|
|
|
|
case onlyFilter:
|
|
|
|
|
if len(group.tests) != 0 {
|
|
|
|
|
fmt.Printf("ERROR: only() must be before all tc(): %v\n", desc)
|
|
|
|
|
os.Exit(1)
|
|
|
|
|
}
|
|
|
|
|
group.only = append(group.only, v.names...)
|
2021-10-12 04:04:49 +08:00
|
|
|
case alltrueFilter:
|
|
|
|
|
if len(group.tests) != 0 {
|
|
|
|
|
fmt.Printf("ERROR: alltrue() must be before all tc(): %v\n", desc)
|
|
|
|
|
os.Exit(1)
|
|
|
|
|
}
|
|
|
|
|
group.trueflags = append(group.trueflags, v.flags...)
|
2020-03-10 22:13:20 +08:00
|
|
|
case *TestCase:
|
|
|
|
|
group.tests = append(group.tests, v)
|
|
|
|
|
default:
|
|
|
|
|
fmt.Printf("I don't know about type %T (%v)\n", v, v)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return group
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 07:58:23 +08:00
|
|
|
func tc(desc string, recs ...*models.RecordConfig) *TestCase {
|
|
|
|
|
var records []*models.RecordConfig
|
2023-04-24 02:28:18 +08:00
|
|
|
var unmanagedItems []*models.UnmanagedConfig
|
2018-01-16 04:39:29 +08:00
|
|
|
for _, r := range recs {
|
2023-05-09 10:29:58 +08:00
|
|
|
switch r.Type {
|
2023-05-25 03:14:36 +08:00
|
|
|
case "IGNORE":
|
|
|
|
|
unmanagedItems = append(unmanagedItems, &models.UnmanagedConfig{
|
|
|
|
|
LabelPattern: r.Metadata["ignore_LabelPattern"],
|
|
|
|
|
RTypePattern: r.Metadata["ignore_RTypePattern"],
|
|
|
|
|
TargetPattern: r.Metadata["ignore_TargetPattern"],
|
|
|
|
|
})
|
|
|
|
|
continue
|
2023-05-09 10:29:58 +08:00
|
|
|
default:
|
2018-01-16 04:39:29 +08:00
|
|
|
records = append(records, r)
|
|
|
|
|
}
|
|
|
|
|
}
|
2017-03-17 13:42:53 +08:00
|
|
|
return &TestCase{
|
2023-10-23 01:56:13 +08:00
|
|
|
Desc: desc,
|
|
|
|
|
Records: records,
|
|
|
|
|
Unmanaged: unmanagedItems,
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-29 07:30:01 +08:00
|
|
|
func txt(name, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, "", "TXT")
|
|
|
|
|
r.SetTargetTXT(target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// func (r *models.RecordConfig) ttl(t uint32) *models.RecordConfig {
|
|
|
|
|
func ttl(r *models.RecordConfig, t uint32) *models.RecordConfig {
|
|
|
|
|
r.TTL = t
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func tlsa(name string, usage, selector, matchingtype uint8, target string) *models.RecordConfig {
|
|
|
|
|
r := makeRec(name, target, "TLSA")
|
|
|
|
|
r.SetTargetTLSA(usage, selector, matchingtype, target)
|
|
|
|
|
return r
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-09 04:49:26 +08:00
|
|
|
func ns1Urlfwd(name, target string) *models.RecordConfig {
|
2023-05-05 21:11:57 +08:00
|
|
|
return makeRec(name, target, "NS1_URLFWD")
|
2023-03-29 07:30:01 +08:00
|
|
|
}
|
|
|
|
|
|
2024-03-04 01:17:12 +08:00
|
|
|
func clear() *TestCase {
|
2020-03-10 22:13:20 +08:00
|
|
|
return tc("Empty")
|
2017-09-01 03:10:46 +08:00
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
type requiresFilter struct {
|
|
|
|
|
caps []providers.Capability
|
|
|
|
|
}
|
2017-04-20 03:13:28 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
func requires(c ...providers.Capability) requiresFilter {
|
|
|
|
|
return requiresFilter{caps: c}
|
|
|
|
|
}
|
2017-09-13 23:49:15 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
type notFilter struct {
|
|
|
|
|
names []string
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func not(n ...string) notFilter {
|
|
|
|
|
return notFilter{names: n}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type onlyFilter struct {
|
|
|
|
|
names []string
|
|
|
|
|
}
|
2017-09-13 23:49:15 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
func only(n ...string) onlyFilter {
|
|
|
|
|
return onlyFilter{names: n}
|
|
|
|
|
}
|
|
|
|
|
|
2021-10-12 04:04:49 +08:00
|
|
|
type alltrueFilter struct {
|
|
|
|
|
flags []bool
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func alltrue(f ...bool) alltrueFilter {
|
|
|
|
|
return alltrueFilter{flags: f}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
//
|
|
|
|
|
|
2024-03-04 00:50:24 +08:00
|
|
|
func makeTests() []*TestGroup {
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
sha256hash := strings.Repeat("0123456789abcdef", 4)
|
|
|
|
|
sha512hash := strings.Repeat("0123456789abcdef", 8)
|
|
|
|
|
reversedSha512 := strings.Repeat("fedcba9876543210", 8)
|
|
|
|
|
|
|
|
|
|
// Each group of tests begins with testgroup("Title").
|
|
|
|
|
// The system will remove any records so that the tests
|
|
|
|
|
// begin with a clean slate (i.e. no records).
|
|
|
|
|
|
|
|
|
|
// Filters:
|
|
|
|
|
|
|
|
|
|
// Only apply to providers that CanUseAlias.
|
|
|
|
|
// requires(providers.CanUseAlias),
|
|
|
|
|
// Only apply to ROUTE53 + GANDI_V5:
|
|
|
|
|
// only("ROUTE53", "GANDI_V5")
|
|
|
|
|
// Only apply to all providers except ROUTE53 + GANDI_V5:
|
|
|
|
|
// not("ROUTE53", "GANDI_V5"),
|
2021-10-12 04:04:49 +08:00
|
|
|
// Only run this test if all these bool flags are true:
|
|
|
|
|
// alltrue(*enableCFWorkers, *anotherFlag, myBoolValue)
|
2020-03-10 22:13:20 +08:00
|
|
|
// NOTE: You can't mix not() and only()
|
|
|
|
|
// reset(not("ROUTE53"), only("GCLOUD")), // ERROR!
|
|
|
|
|
// NOTE: All requires()/not()/only() must appear before any tc().
|
|
|
|
|
|
|
|
|
|
// tc()
|
|
|
|
|
// Each tc() indicates a set of records. The testgroup tries to
|
|
|
|
|
// migrate from one tc() to the next. For example the first tc()
|
|
|
|
|
// creates some records. The next tc() might list the same records
|
|
|
|
|
// but adds 1 new record and omits 1. Therefore migrating to this
|
|
|
|
|
// second tc() results in 1 record being created and 1 deleted; but
|
|
|
|
|
// for some providers it may be converting 1 record to another.
|
|
|
|
|
// Therefore some testgroups are testing the providers ability to
|
|
|
|
|
// transition between different states. Others are just testing
|
|
|
|
|
// whether or not a certain kind of record can be created and
|
|
|
|
|
// deleted.
|
|
|
|
|
|
2023-12-20 00:16:32 +08:00
|
|
|
// clear() is the same as tc("Empty"). It removes all records.
|
|
|
|
|
// Each testgroup() begins with clear() automagically. You do not
|
|
|
|
|
// have to include the clear() in teach testgroup().
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
tests := []*TestGroup{
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// START HERE
|
|
|
|
|
|
|
|
|
|
// Narrative: Hello friend! Are you adding a new DNS provider to
|
|
|
|
|
// DNSControl? That's awesome! I'm here to help.
|
|
|
|
|
//
|
|
|
|
|
// As you write your code, these tests will help verify that your
|
|
|
|
|
// code is correct and covers all the funny edge-cases that DNS
|
|
|
|
|
// providers throw at us.
|
2020-03-10 22:13:20 +08:00
|
|
|
//
|
2023-03-26 20:54:45 +08:00
|
|
|
// If you follow these sections marked "Narrative", I'll lead you
|
|
|
|
|
// through the tests. The tests start by testing very basic things
|
|
|
|
|
// (are you talking to the API correctly) and then moves on to
|
|
|
|
|
// more and more esoteric issues. It's like a video game where
|
|
|
|
|
// you have to solve all the levels but the game lets you skip
|
|
|
|
|
// around as long as all the levels are completed eventually. Some
|
|
|
|
|
// of the levels you can mark "not relevant" for your provider.
|
2020-03-10 22:13:20 +08:00
|
|
|
//
|
2023-03-26 20:54:45 +08:00
|
|
|
// Oh wait. I'm getting ahead of myself. How do you run these
|
|
|
|
|
// tests? That's documented here:
|
|
|
|
|
// https://docs.dnscontrol.org/developer-info/integration-tests
|
|
|
|
|
// You'll be running these tests a lot. I recommend you make a
|
|
|
|
|
// script that sets the environment variables and runs the tests
|
|
|
|
|
// to make it easy to run the tests. However don't check that
|
|
|
|
|
// file into a GIT repo... it contains API credentials that are
|
|
|
|
|
// secret!
|
|
|
|
|
|
|
|
|
|
///// Basic functionality (add/rename/change/delete).
|
|
|
|
|
|
|
|
|
|
// Narrative: Let's get started! The first thing to do is to
|
|
|
|
|
// make sure we can create an A record, change it, then delete it.
|
|
|
|
|
// That's the basic Add/Change/Delete process. Once these three
|
|
|
|
|
// features work you know that your API calls and authentication
|
|
|
|
|
// is working and we can do the most basic operations.
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2023-01-31 23:12:26 +08:00
|
|
|
testgroup("A",
|
|
|
|
|
tc("Create A", a("testa", "1.1.1.1")),
|
2023-03-26 20:54:45 +08:00
|
|
|
tc("Change A target", a("testa", "3.3.3.3")),
|
2023-01-19 01:34:45 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Congrats on getting those to work! Now let's try
|
|
|
|
|
// something a little more difficult. Let's do that same test at
|
|
|
|
|
// the apex of the domain. This may "just work" for your
|
|
|
|
|
// provider, or they might require something special like
|
|
|
|
|
// referring to the apex as "@".
|
|
|
|
|
|
|
|
|
|
// Same test, but at the apex of the domain.
|
|
|
|
|
testgroup("Apex",
|
|
|
|
|
tc("Create A", a("@", "2.2.2.2")),
|
|
|
|
|
tc("Change A target", a("@", "4.4.4.4")),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// Narrative: Another edge-case is the wildcard record ("*"). In
|
|
|
|
|
// theory this should "just work" but plenty of vendors require
|
|
|
|
|
// some weird quoting or escaping. None of that should be required
|
|
|
|
|
// but... sigh... they do it anyway. Let's find out how badly
|
|
|
|
|
// they screwed this up!
|
|
|
|
|
|
|
|
|
|
// Same test, but do it with a wildcard.
|
|
|
|
|
testgroup("Protocol-Wildcard",
|
|
|
|
|
not("HEDNS"), // Not supported by dns.he.net due to abuse
|
|
|
|
|
tc("Create wildcard", a("*", "3.3.3.3"), a("www", "5.5.5.5")),
|
|
|
|
|
tc("Delete wildcard", a("www", "5.5.5.5")),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
///// Test the basic DNS types
|
|
|
|
|
|
|
|
|
|
// Narrative: That wasn't as hard as expected, eh? Let's test the
|
|
|
|
|
// other basic record types like AAAA, CNAME, MX and TXT.
|
|
|
|
|
|
2023-11-22 22:38:58 +08:00
|
|
|
testgroup("AAAA",
|
|
|
|
|
tc("Create AAAA", aaaa("testaaaa", "2607:f8b0:4006:820::2006")),
|
|
|
|
|
tc("Change AAAA target", aaaa("testaaaa", "2607:f8b0:4006:820::2013")),
|
|
|
|
|
),
|
2023-03-26 20:54:45 +08:00
|
|
|
|
|
|
|
|
// CNAME
|
|
|
|
|
|
|
|
|
|
testgroup("CNAME",
|
|
|
|
|
tc("Create a CNAME", cname("testcname", "www.google.com.")),
|
|
|
|
|
tc("Change CNAME target", cname("testcname", "www.yahoo.com.")),
|
2023-02-08 03:55:01 +08:00
|
|
|
),
|
|
|
|
|
|
2024-04-02 04:47:11 +08:00
|
|
|
testgroup("CNAME-short",
|
|
|
|
|
tc("Create a CNAME",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
cname("testcname", "foo"),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// MX
|
|
|
|
|
|
|
|
|
|
// Narrative: MX is the first record we're going to test with
|
|
|
|
|
// multiple fields. All records have a target (A records have an
|
|
|
|
|
// IP address, CNAMEs have a destination (called "the canonical
|
|
|
|
|
// name" in the RFCs). MX records have a target (a hostname) but
|
|
|
|
|
// also have a "Preference". FunFact: The RFCs call this the
|
|
|
|
|
// "preference" but most engineers refer to it as the "priority".
|
|
|
|
|
// Now you know better.
|
|
|
|
|
// Let's make sure your code creates and updates the preference
|
|
|
|
|
// correctly!
|
|
|
|
|
|
2023-01-31 23:12:26 +08:00
|
|
|
testgroup("MX",
|
|
|
|
|
tc("Create MX", mx("testmx", 5, "foo.com.")),
|
|
|
|
|
tc("Change MX target", mx("testmx", 5, "bar.com.")),
|
|
|
|
|
tc("Change MX p", mx("testmx", 100, "bar.com.")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// TXT
|
|
|
|
|
|
|
|
|
|
// Narrative: TXT records can be very complex but we'll save those
|
|
|
|
|
// tests for later. Let's just test a simple string.
|
|
|
|
|
|
|
|
|
|
testgroup("TXT",
|
|
|
|
|
tc("Create TXT", txt("testtxt", "simple")),
|
|
|
|
|
tc("Change TXT target", txt("testtxt", "changed")),
|
2023-01-31 23:12:26 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Test API edge-cases
|
|
|
|
|
|
|
|
|
|
// Narrative: I'm proud of you for getting this far. All the
|
|
|
|
|
// basic types work! Now let's verify your code handles some of
|
|
|
|
|
// the more interesting ways that updates can happen. For
|
|
|
|
|
// example, let's try creating many records of the same or
|
|
|
|
|
// different type at once. Usually this "just works" but maybe
|
|
|
|
|
// there's an off-by-one error lurking. Once these work we'll have
|
|
|
|
|
// a new level of confidence in the code.
|
|
|
|
|
|
|
|
|
|
testgroup("ManyAtOnce",
|
2023-01-31 23:12:26 +08:00
|
|
|
tc("CreateManyAtLabel", a("www", "1.1.1.1"), a("www", "2.2.2.2"), a("www", "3.3.3.3")),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("Create an A record", a("www", "1.1.1.1")),
|
|
|
|
|
tc("Add at label1", a("www", "1.1.1.1"), a("www", "2.2.2.2")),
|
|
|
|
|
tc("Add at label2", a("www", "1.1.1.1"), a("www", "2.2.2.2"), a("www", "3.3.3.3")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
testgroup("manyTypesAtOnce",
|
2023-01-31 23:12:26 +08:00
|
|
|
tc("CreateManyTypesAtLabel", a("www", "1.1.1.1"), mx("testmx", 5, "foo.com."), mx("testmx", 100, "bar.com.")),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("Create an A record", a("www", "1.1.1.1")),
|
|
|
|
|
tc("Add Type At Label", a("www", "1.1.1.1"), mx("testmx", 5, "foo.com.")),
|
|
|
|
|
tc("Add Type At Label", a("www", "1.1.1.1"), mx("testmx", 5, "foo.com."), mx("testmx", 100, "bar.com.")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Exercise TTL operations.
|
|
|
|
|
|
|
|
|
|
// Narrative: TTLs are weird. They deserve some special tests.
|
|
|
|
|
// First we'll verify some simple cases but then we'll test the
|
|
|
|
|
// weirdest edge-case we've ever seen.
|
|
|
|
|
|
|
|
|
|
testgroup("Attl",
|
2023-06-17 19:51:13 +08:00
|
|
|
not("LINODE"), // Linode does not support arbitrary TTLs: both are rounded up to 3600.
|
2023-03-26 20:54:45 +08:00
|
|
|
tc("Create Arc", ttl(a("testa", "1.1.1.1"), 333)),
|
|
|
|
|
tc("Change TTL", ttl(a("testa", "1.1.1.1"), 999)),
|
2023-01-31 23:12:26 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("TTL",
|
2023-01-19 01:34:45 +08:00
|
|
|
not("NETCUP"), // NETCUP does not support TTLs.
|
2023-06-17 19:51:13 +08:00
|
|
|
not("LINODE"), // Linode does not support arbitrary TTLs: 666 and 1000 are both rounded up to 3600.
|
2023-02-08 05:53:49 +08:00
|
|
|
tc("Start", ttl(a("@", "8.8.8.8"), 666), a("www", "1.2.3.4"), a("www", "5.6.7.8")),
|
|
|
|
|
tc("Change a ttl", ttl(a("@", "8.8.8.8"), 1000), a("www", "1.2.3.4"), a("www", "5.6.7.8")),
|
|
|
|
|
tc("Change single target from set", ttl(a("@", "8.8.8.8"), 1000), a("www", "2.2.2.2"), a("www", "5.6.7.8")),
|
|
|
|
|
tc("Change all ttls", ttl(a("@", "8.8.8.8"), 500), ttl(a("www", "2.2.2.2"), 400), ttl(a("www", "5.6.7.8"), 400)),
|
2022-12-31 10:53:50 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Did you see that `not("NETCUP")` code? NETCUP just
|
|
|
|
|
// plain doesn't support TTLs, so those tests just plain can't
|
|
|
|
|
// ever work. `not("NETCUP")` tells the test system to skip those
|
|
|
|
|
// tests. There's also `only()` which runs a test only for certain
|
|
|
|
|
// providers. Those and more are documented above in the
|
|
|
|
|
// "Filters" section, which is on line 664 as I write this.
|
|
|
|
|
|
|
|
|
|
// Narrative: Ok, back to testing. This next test is a strange
|
|
|
|
|
// one. It's a strange situation that happens rarely. You might
|
|
|
|
|
// want to skip this and come back later, or ask for help on the
|
|
|
|
|
// mailing list.
|
|
|
|
|
|
|
|
|
|
// Test: At the start we have a single DNS record at a label.
|
|
|
|
|
// Next we add an additional record at the same label AND change
|
|
|
|
|
// the TTL of the existing record.
|
2022-12-31 10:53:50 +08:00
|
|
|
testgroup("add to label and change orig ttl",
|
|
|
|
|
tc("Setup", ttl(a("www", "5.6.7.8"), 400)),
|
|
|
|
|
tc("Add at same label, new ttl", ttl(a("www", "5.6.7.8"), 700), ttl(a("www", "1.2.3.4"), 700)),
|
2020-08-27 01:38:28 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: We're done with TTL tests now. If you fixed a bug
|
|
|
|
|
// in any of those tests give yourself a pat on the back. Finding
|
|
|
|
|
// bugs is not bad or shameful... it's an opportunity to help the
|
|
|
|
|
// world by fixing a problem! If only we could fix all the
|
|
|
|
|
// world's problems by editing code!
|
|
|
|
|
//
|
|
|
|
|
// Now let's look at one more edge-case: Can you change the type
|
|
|
|
|
// of a record? Some providers don't permit this and you have to
|
|
|
|
|
// delete the old record and create a new record in its place.
|
2020-03-10 22:13:20 +08:00
|
|
|
|
2022-09-08 02:08:06 +08:00
|
|
|
testgroup("TypeChange",
|
|
|
|
|
// Test whether the provider properly handles a label changing
|
|
|
|
|
// from one rtype to another.
|
2023-03-26 20:54:45 +08:00
|
|
|
tc("Create A", a("foo", "1.2.3.4")),
|
|
|
|
|
tc("Change to MX", mx("foo", 5, "mx.google.com.")),
|
|
|
|
|
tc("Change back to A", a("foo", "4.5.6.7")),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// Narrative: That worked? Of course that worked. You're awesome.
|
|
|
|
|
// Now let's make it even more difficult by involving CNAMEs. If
|
|
|
|
|
// there is a CNAME at a label, no other records can be at that
|
|
|
|
|
// label. That means the order of updates is critical when
|
|
|
|
|
// changing A->CNAME or CNAME->A. pkg/diff2 should order the
|
|
|
|
|
// changes properly for you. Let's verify that we got it right!
|
|
|
|
|
|
|
|
|
|
testgroup("TypeChangeHard",
|
2022-09-08 02:08:06 +08:00
|
|
|
tc("Create a CNAME", cname("foo", "google.com.")),
|
|
|
|
|
tc("Change to A record", a("foo", "1.2.3.4")),
|
|
|
|
|
tc("Change back to CNAME", cname("foo", "google2.com.")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
//// Test edge cases from various types.
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Every DNS record type has some weird edge-case that
|
|
|
|
|
// you wouldn't expect. This is where we test those situations.
|
|
|
|
|
// They're strange, but usually easy to fix or skip.
|
2022-09-08 02:08:06 +08:00
|
|
|
//
|
2023-03-26 20:54:45 +08:00
|
|
|
// Some of these are testing the provider more than your code.
|
2020-05-08 22:56:58 +08:00
|
|
|
//
|
2023-03-26 20:54:45 +08:00
|
|
|
// You can't fix your provider's code. That's why there is the
|
|
|
|
|
// auditrecord.go system. For example, if your provider doesn't
|
|
|
|
|
// support MX records that point to "." (yes, that's a thing),
|
|
|
|
|
// there's nothing you can do other than warn users that it isn't
|
|
|
|
|
// supported. We do this in the auditrecords.go file in each
|
|
|
|
|
// provider. It contains "rejectif.` statements that detect
|
|
|
|
|
// unsupported situations. Some good examples are in
|
|
|
|
|
// providers/cscglobal/auditrecords.go. Take a minute to read
|
|
|
|
|
// that.
|
2020-05-08 22:56:58 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("CNAME",
|
2023-12-05 00:54:03 +08:00
|
|
|
tc("Record pointing to @",
|
|
|
|
|
cname("foo", "**current-domain**"),
|
|
|
|
|
a("@", "1.2.3.4"),
|
|
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
2024-01-19 03:45:30 +08:00
|
|
|
testgroup("ApexMX",
|
2023-12-05 00:54:03 +08:00
|
|
|
tc("Record pointing to @",
|
|
|
|
|
mx("foo", 8, "**current-domain**"),
|
|
|
|
|
a("@", "1.2.3.4"),
|
|
|
|
|
),
|
2024-01-19 03:45:30 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// RFC 7505 NullMX
|
|
|
|
|
testgroup("NullMX",
|
|
|
|
|
not(
|
|
|
|
|
"TRANSIP", // TRANSIP is slow and doesn't support NullMX. Skip to save time.
|
|
|
|
|
),
|
|
|
|
|
tc("create", // Install a Null MX.
|
|
|
|
|
a("nmx", "1.2.3.3"), // Install this so it is ready for the next tc()
|
|
|
|
|
a("www", "1.2.3.9"), // Install this so it is ready for the next tc()
|
|
|
|
|
mx("nmx", 0, "."),
|
|
|
|
|
),
|
|
|
|
|
tc("unnull", // Change to regular MX.
|
|
|
|
|
a("nmx", "1.2.3.3"),
|
|
|
|
|
a("www", "1.2.3.9"),
|
|
|
|
|
mx("nmx", 3, "nmx.**current-domain**"),
|
|
|
|
|
mx("nmx", 9, "www.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
tc("renull", // Change back to Null MX.
|
|
|
|
|
a("nmx", "1.2.3.3"),
|
|
|
|
|
a("www", "1.2.3.9"),
|
|
|
|
|
mx("nmx", 0, "."),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// RFC 7505 NullMX at Apex
|
|
|
|
|
testgroup("NullMXApex",
|
|
|
|
|
not(
|
|
|
|
|
"TRANSIP", // TRANSIP is slow and doesn't support NullMX. Skip to save time.
|
|
|
|
|
),
|
|
|
|
|
tc("create", // Install a Null MX.
|
|
|
|
|
a("@", "1.2.3.2"), // Install this so it is ready for the next tc()
|
|
|
|
|
a("www", "1.2.3.8"), // Install this so it is ready for the next tc()
|
|
|
|
|
mx("@", 0, "."),
|
|
|
|
|
),
|
|
|
|
|
tc("unnull", // Change to regular MX.
|
|
|
|
|
a("@", "1.2.3.2"),
|
|
|
|
|
a("www", "1.2.3.8"),
|
|
|
|
|
mx("@", 2, "**current-domain**"),
|
|
|
|
|
mx("@", 8, "www.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
tc("renull", // Change back to Null MX.
|
|
|
|
|
a("@", "1.2.3.2"),
|
|
|
|
|
a("www", "1.2.3.8"),
|
|
|
|
|
mx("@", 0, "."),
|
|
|
|
|
),
|
2020-03-25 21:53:28 +08:00
|
|
|
),
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("NS",
|
2021-03-08 02:19:22 +08:00
|
|
|
not(
|
|
|
|
|
"DNSIMPLE", // Does not support NS records nor subdomains.
|
|
|
|
|
"EXOSCALE", // Not supported.
|
|
|
|
|
"NETCUP", // NS records not currently supported.
|
|
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("NS for subdomain", ns("xyz", "ns2.foo.com.")),
|
|
|
|
|
tc("Dual NS for subdomain", ns("xyz", "ns2.foo.com."), ns("xyz", "ns1.foo.com.")),
|
2021-01-25 04:35:12 +08:00
|
|
|
tc("NS Record pointing to @", a("@", "1.2.3.4"), ns("foo", "**current-domain**")),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
//// TXT tests
|
|
|
|
|
|
|
|
|
|
// Narrative: TXT records are weird. It's just text, right? Sadly
|
|
|
|
|
// "just text" means quotes and other funny characters that might
|
|
|
|
|
// need special handling. In some cases providers ban certain
|
|
|
|
|
// chars in the string.
|
|
|
|
|
//
|
|
|
|
|
// Let's test the weirdness we've found. I wouldn't bother trying
|
|
|
|
|
// too hard to fix these. Just skip them by updating
|
|
|
|
|
// auditrecords.go for your provider.
|
|
|
|
|
|
2021-03-08 02:19:22 +08:00
|
|
|
// In this next section we test all the edge cases related to TXT
|
|
|
|
|
// records. Compliance with the RFCs varies greatly with each provider.
|
|
|
|
|
// Rather than creating a "Capability" for each possible different
|
|
|
|
|
// failing or malcompliance (there would be many!), each provider
|
|
|
|
|
// supplies a function AuditRecords() which returns an error if
|
|
|
|
|
// the provider can not support a record.
|
|
|
|
|
// The integration tests use this feedback to skip tests that we know would fail.
|
|
|
|
|
// (Elsewhere the result of AuditRecords() is used in the
|
|
|
|
|
// "dnscontrol check" phase.)
|
|
|
|
|
|
|
|
|
|
testgroup("complex TXT",
|
|
|
|
|
// Do not use only()/not()/requires() in this section.
|
|
|
|
|
// If your provider needs to skip one of these tests, update
|
|
|
|
|
// "provider/*/recordaudit.AuditRecords()" to reject that kind
|
2023-12-05 06:45:25 +08:00
|
|
|
// of record.
|
|
|
|
|
|
|
|
|
|
// Some of these test cases are commented out because they test
|
|
|
|
|
// something that isn't widely used or supported. For example
|
|
|
|
|
// many APIs don't support a backslack (`\`) in a TXT record;
|
|
|
|
|
// luckily we've never seen a need for that "in the wild". If
|
|
|
|
|
// you want to future-proof your provider, temporarily remove
|
|
|
|
|
// the comments and get those tests working, or reject it using
|
|
|
|
|
// auditrecords.go.
|
|
|
|
|
|
|
|
|
|
// ProTip: Unsure how a provider's API escapes something? Try
|
|
|
|
|
// adding the TXT record via the Web UI and watch how the string
|
|
|
|
|
// is escaped when you download the records.
|
|
|
|
|
|
|
|
|
|
// Nobody needs this and many APIs don't allow it.
|
|
|
|
|
tc("a 0-byte TXT", txt("foo0", "")),
|
|
|
|
|
|
|
|
|
|
// Test edge cases around 255, 255*2, 255*3:
|
|
|
|
|
tc("a 254-byte TXT", txt("foo254", strings.Repeat("A", 254))), // 255-1
|
|
|
|
|
tc("a 255-byte TXT", txt("foo255", strings.Repeat("B", 255))), // 255
|
|
|
|
|
tc("a 256-byte TXT", txt("foo256", strings.Repeat("C", 256))), // 255+1
|
|
|
|
|
tc("a 509-byte TXT", txt("foo509", strings.Repeat("D", 509))), // 255*2-1
|
|
|
|
|
tc("a 510-byte TXT", txt("foo510", strings.Repeat("E", 510))), // 255*2
|
|
|
|
|
tc("a 511-byte TXT", txt("foo511", strings.Repeat("F", 511))), // 255*2+1
|
|
|
|
|
tc("a 764-byte TXT", txt("foo764", strings.Repeat("G", 764))), // 255*3-1
|
|
|
|
|
tc("a 765-byte TXT", txt("foo765", strings.Repeat("H", 765))), // 255*3
|
|
|
|
|
tc("a 766-byte TXT", txt("foo766", strings.Repeat("J", 766))), // 255*3+1
|
2022-09-08 02:08:06 +08:00
|
|
|
//clear(),
|
2020-03-10 22:13:20 +08:00
|
|
|
|
2022-09-08 02:08:06 +08:00
|
|
|
tc("TXT with 1 single-quote", txt("foosq", "quo'te")),
|
|
|
|
|
tc("TXT with 1 backtick", txt("foobt", "blah`blah")),
|
2023-12-05 06:45:25 +08:00
|
|
|
tc("TXT with 1 dq-1interior", txt("foodq", `in"side`)),
|
|
|
|
|
tc("TXT with 2 dq-2interior", txt("foodqs", `in"ter"ior`)),
|
|
|
|
|
tc("TXT with 1 dq-left", txt("foodqs", `"left`)),
|
|
|
|
|
tc("TXT with 1 dq-right", txt("foodqs", `right"`)),
|
|
|
|
|
|
|
|
|
|
// Semicolons don't need special treatment.
|
|
|
|
|
// https://serverfault.com/questions/743789
|
|
|
|
|
tc("TXT with semicolon", txt("foosc1", `semi;colon`)),
|
|
|
|
|
tc("TXT with semicolon ws", txt("foosc2", `wssemi ; colon`)),
|
|
|
|
|
|
|
|
|
|
tc("TXT interior ws", txt("foosp", "with spaces")),
|
2023-12-11 20:21:49 +08:00
|
|
|
//tc("TXT leading ws", txt("foowsb", " leadingspace")),
|
2023-12-11 09:47:44 +08:00
|
|
|
tc("TXT trailing ws", txt("foows1", "trailingws ")),
|
2023-12-05 06:45:25 +08:00
|
|
|
|
|
|
|
|
// Vultr syntax-checks TXT records with SPF contents.
|
|
|
|
|
tc("Create a TXT/SPF", txt("foo", "v=spf1 ip4:99.99.99.99 -all")),
|
|
|
|
|
|
|
|
|
|
// Nobody needs this and many APIs don't allow it.
|
|
|
|
|
tc("TXT with 1 backslash", txt("fooosbs1", `1back\slash`)),
|
|
|
|
|
tc("TXT with 2 backslash", txt("fooosbs2", `2back\\slash`)),
|
|
|
|
|
tc("TXT with 3 backslash", txt("fooosbs3", `3back\\\slash`)),
|
|
|
|
|
tc("TXT with 4 backslash", txt("fooosbs4", `4back\\\\slash`)),
|
|
|
|
|
|
|
|
|
|
// Nobody needs this and many APIs don't allow it.
|
|
|
|
|
//tc("Create TXT with frequently difficult characters", txt("fooex", `!^.*$@#%^&()([][{}{<></:;-_=+\`)),
|
|
|
|
|
),
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2023-12-05 06:45:25 +08:00
|
|
|
testgroup("TXT backslashes",
|
|
|
|
|
tc("TXT with backslashs",
|
|
|
|
|
txt("fooosbs1", `1back\slash`),
|
|
|
|
|
txt("fooosbs2", `2back\\slash`),
|
|
|
|
|
txt("fooosbs3", `3back\\\slash`),
|
|
|
|
|
txt("fooosbs4", `4back\\\\slash`)),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
//
|
2022-09-08 02:08:06 +08:00
|
|
|
// API Edge Cases
|
2020-03-10 22:13:20 +08:00
|
|
|
//
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Congratulate yourself for getting this far.
|
|
|
|
|
// Seriously. Buy yourself a beer or other beverage. Kick back.
|
|
|
|
|
// Take a break. Ok, break over! Time for some more weird edge
|
|
|
|
|
// cases.
|
|
|
|
|
|
|
|
|
|
// DNSControl downcases all DNS labels. These tests make sure
|
|
|
|
|
// that's all done correctly.
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("Case Sensitivity",
|
2023-03-26 20:54:45 +08:00
|
|
|
// The decoys are required so that there is at least one actual
|
|
|
|
|
// change in each tc.
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("Create CAPS", mx("BAR", 5, "BAR.com.")),
|
|
|
|
|
tc("Downcase label", mx("bar", 5, "BAR.com."), a("decoy", "1.1.1.1")),
|
|
|
|
|
tc("Downcase target", mx("bar", 5, "bar.com."), a("decoy", "2.2.2.2")),
|
|
|
|
|
tc("Upcase both", mx("BAR", 5, "BAR.COM."), a("decoy", "3.3.3.3")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-23 02:57:28 +08:00
|
|
|
// Make sure we can manipulate one DNS record when there is
|
|
|
|
|
// another at the same label.
|
|
|
|
|
testgroup("testByLabel",
|
|
|
|
|
tc("initial",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("foo", "2.3.4.5"),
|
|
|
|
|
),
|
|
|
|
|
tc("changeOne",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("foo", "3.4.5.6"), // Change
|
|
|
|
|
),
|
|
|
|
|
tc("deleteOne",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
//a("foo", "3.4.5.6"), // Delete
|
|
|
|
|
),
|
|
|
|
|
tc("addOne",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("foo", "3.4.5.6"), // Add
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// Make sure we can manipulate one DNS record when there is
|
|
|
|
|
// another at the same RecordSet.
|
|
|
|
|
testgroup("testByRecordSet",
|
|
|
|
|
tc("initial",
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
a("foo", "2.3.4.5"),
|
|
|
|
|
a("foo", "3.4.5.6"),
|
|
|
|
|
mx("foo", 10, "foo.**current-domain**"),
|
|
|
|
|
mx("foo", 20, "bar.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
tc("changeOne",
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
a("foo", "2.3.4.5"),
|
|
|
|
|
a("foo", "8.8.8.8"), // Change
|
|
|
|
|
mx("foo", 10, "foo.**current-domain**"),
|
|
|
|
|
mx("foo", 20, "bar.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
tc("deleteOne",
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
a("foo", "2.3.4.5"),
|
|
|
|
|
//a("foo", "8.8.8.8"), // Delete
|
|
|
|
|
mx("foo", 10, "foo.**current-domain**"),
|
|
|
|
|
mx("foo", 20, "bar.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
tc("addOne",
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
a("foo", "2.3.4.5"),
|
|
|
|
|
a("foo", "8.8.8.8"), // Add
|
|
|
|
|
mx("foo", 10, "foo.**current-domain**"),
|
|
|
|
|
mx("foo", 20, "bar.**current-domain**"),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Here we test the IDNA (internationalization)
|
|
|
|
|
// features. But first a joke:
|
|
|
|
|
// Q: What do you call someone that speaks 2 languages?
|
|
|
|
|
// A: bilingual
|
|
|
|
|
// Q: What do you call someone that speaks 3 languages?
|
|
|
|
|
// A: trilingual
|
|
|
|
|
// Q: What do you call someone that speaks 1 language?
|
|
|
|
|
// A: American
|
|
|
|
|
// Get it? Well, that's why I'm not a stand-up comedian.
|
|
|
|
|
// Anyway... let's make sure foreign languages work.
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("IDNA",
|
2021-01-14 22:53:06 +08:00
|
|
|
not("SOFTLAYER"),
|
2020-03-10 22:13:20 +08:00
|
|
|
// SOFTLAYER: fails at direct internationalization, punycode works, of course.
|
|
|
|
|
tc("Internationalized name", a("ööö", "1.2.3.4")),
|
|
|
|
|
tc("Change IDN", a("ööö", "2.2.2.2")),
|
|
|
|
|
tc("Internationalized CNAME Target", cname("a", "ööö.com.")),
|
|
|
|
|
),
|
|
|
|
|
testgroup("IDNAs in CNAME targets",
|
2023-06-17 19:51:13 +08:00
|
|
|
not("CLOUDFLAREAPI"),
|
2020-03-10 22:13:20 +08:00
|
|
|
// LINODE: hostname validation does not allow the target domain TLD
|
|
|
|
|
tc("IDN CNAME AND Target", cname("öoö", "ööö.企业.")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Some providers send the list of DNS records one
|
|
|
|
|
// "page" at a time. The data you get includes a flag that
|
|
|
|
|
// indicates you to the request is incomplete and you need to
|
|
|
|
|
// request the next page of data. They don't realize that
|
|
|
|
|
// computers have gigabytes of RAM and the largest DNS zone might
|
|
|
|
|
// have kilobytes of records. Unneeded complexity... sigh.
|
|
|
|
|
//
|
|
|
|
|
// Let's test to make sure we got the paging right. I always fear
|
|
|
|
|
// off-by-one errors when I write this kind of code. Like... if a
|
|
|
|
|
// get tells you it has returned a page that starts at record 0
|
|
|
|
|
// and includes 100 records, should the next "get" request records
|
|
|
|
|
// starting at 99 or 100 or 101?
|
|
|
|
|
//
|
|
|
|
|
// These tests can be VERY slow. That's why we use not() and
|
|
|
|
|
// only() to skip these tests for providers that doesn't use
|
|
|
|
|
// paging.
|
|
|
|
|
|
2020-06-25 03:16:00 +08:00
|
|
|
testgroup("pager101",
|
2020-03-10 22:13:20 +08:00
|
|
|
// Tests the paging code of providers. Many providers page at 100.
|
|
|
|
|
// Notes:
|
2020-03-23 01:38:37 +08:00
|
|
|
// - Gandi: page size is 100, therefore we test with 99, 100, and 101
|
2020-11-12 23:53:44 +08:00
|
|
|
// - DIGITALOCEAN: page size is 100 (default: 20)
|
2020-12-29 05:07:33 +08:00
|
|
|
not(
|
2022-08-15 22:14:10 +08:00
|
|
|
"AZURE_DNS", // Removed because it is too slow
|
2020-12-29 05:07:33 +08:00
|
|
|
"CLOUDFLAREAPI", // Infinite pagesize but due to slow speed, skipping.
|
2023-02-28 14:25:09 +08:00
|
|
|
"DIGITALOCEAN", // No paging. Why bother?
|
2024-02-13 02:42:37 +08:00
|
|
|
"DESEC", // Skip due to daily update limits.
|
2023-12-05 06:45:25 +08:00
|
|
|
//"CSCGLOBAL", // Doesn't page. Works fine. Due to the slow API we skip.
|
|
|
|
|
"GANDI_V5", // Their API is so damn slow. We'll add it back as needed.
|
|
|
|
|
"HEDNS", // Doesn't page. Works fine. Due to the slow API we skip.
|
|
|
|
|
"LOOPIA", // Their API is so damn slow. Plus, no paging.
|
|
|
|
|
"MSDNS", // No paging done. No need to test.
|
|
|
|
|
"NAMEDOTCOM", // Their API is so damn slow. We'll add it back as needed.
|
|
|
|
|
"NS1", // Free acct only allows 50 records, therefore we skip
|
2023-01-31 23:12:26 +08:00
|
|
|
//"ROUTE53", // Batches up changes in pages.
|
2023-12-05 00:54:03 +08:00
|
|
|
"TRANSIP", // Doesn't page. Works fine. Due to the slow API we skip.
|
2020-12-29 05:07:33 +08:00
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("99 records", manyA("rec%04d", "1.2.3.4", 99)...),
|
|
|
|
|
tc("100 records", manyA("rec%04d", "1.2.3.4", 100)...),
|
|
|
|
|
tc("101 records", manyA("rec%04d", "1.2.3.4", 101)...),
|
|
|
|
|
),
|
|
|
|
|
|
2020-06-25 03:16:00 +08:00
|
|
|
testgroup("pager601",
|
2020-12-29 05:07:33 +08:00
|
|
|
only(
|
2023-03-24 23:12:32 +08:00
|
|
|
//"AZURE_DNS", // Removed because it is too slow
|
2022-08-15 22:14:10 +08:00
|
|
|
//"CLOUDFLAREAPI", // Infinite pagesize but due to slow speed, skipping.
|
2023-03-24 23:12:32 +08:00
|
|
|
//"CSCGLOBAL", // Doesn't page. Works fine. Due to the slow API we skip.
|
2024-02-13 02:42:37 +08:00
|
|
|
//"DESEC", // Skip due to daily update limits.
|
2023-03-24 23:12:32 +08:00
|
|
|
//"GANDI_V5", // Their API is so damn slow. We'll add it back as needed.
|
|
|
|
|
//"MSDNS", // No paging done. No need to test.
|
2020-12-29 05:07:33 +08:00
|
|
|
"GCLOUD",
|
2022-06-13 04:01:08 +08:00
|
|
|
"HEXONET",
|
2023-01-31 23:12:26 +08:00
|
|
|
"ROUTE53", // Batches up changes in pages.
|
2020-12-29 05:07:33 +08:00
|
|
|
),
|
2020-06-25 03:16:00 +08:00
|
|
|
tc("601 records", manyA("rec%04d", "1.2.3.4", 600)...),
|
|
|
|
|
tc("Update 601 records", manyA("rec%04d", "1.2.3.5", 600)...),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("pager1201",
|
2020-12-29 05:07:33 +08:00
|
|
|
only(
|
2022-03-04 22:42:36 +08:00
|
|
|
//"AKAMAIEDGEDNS", // No paging done. No need to test.
|
2023-03-24 23:12:32 +08:00
|
|
|
//"AZURE_DNS", // Currently failing. See https://github.com/StackExchange/dnscontrol/issues/770
|
2022-03-04 22:42:36 +08:00
|
|
|
//"CLOUDFLAREAPI", // Fails with >1000 corrections. See https://github.com/StackExchange/dnscontrol/issues/1440
|
2022-06-13 04:01:08 +08:00
|
|
|
//"CSCGLOBAL", // Doesn't page. Works fine. Due to the slow API we skip.
|
2024-02-13 02:42:37 +08:00
|
|
|
//"DESEC", // Skip due to daily update limits.
|
2023-03-24 23:12:32 +08:00
|
|
|
//"GANDI_V5", // Their API is so damn slow. We'll add it back as needed.
|
|
|
|
|
//"HEDNS", // No paging done. No need to test.
|
2022-03-04 22:42:36 +08:00
|
|
|
//"MSDNS", // No paging done. No need to test.
|
2023-08-08 22:47:39 +08:00
|
|
|
"GCLOUD",
|
2023-03-24 23:12:32 +08:00
|
|
|
"HEXONET",
|
|
|
|
|
"HOSTINGDE", // Pages.
|
|
|
|
|
"ROUTE53", // Batches up changes in pages.
|
2020-12-29 05:07:33 +08:00
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("1200 records", manyA("rec%04d", "1.2.3.4", 1200)...),
|
|
|
|
|
tc("Update 1200 records", manyA("rec%04d", "1.2.3.5", 1200)...),
|
|
|
|
|
),
|
|
|
|
|
|
2024-01-05 20:49:36 +08:00
|
|
|
// Test the boundaries of Google' batch system.
|
|
|
|
|
// 1200 is used because it is larger than batchMax.
|
|
|
|
|
// https://github.com/StackExchange/dnscontrol/pull/2762#issuecomment-1877825559
|
|
|
|
|
testgroup("batchRecordswithOthers",
|
|
|
|
|
only(
|
|
|
|
|
"GCLOUD",
|
|
|
|
|
),
|
|
|
|
|
tc("1200 records",
|
|
|
|
|
manyA("rec%04d", "1.2.3.4", 1200)...),
|
|
|
|
|
tc("Update 1200 records and Create others", append(
|
|
|
|
|
manyA("arec%04d", "1.2.3.4", 1200),
|
|
|
|
|
manyA("rec%04d", "1.2.3.5", 1200)...)...),
|
|
|
|
|
tc("Update 1200 records and Create and Delete others", append(
|
|
|
|
|
manyA("rec%04d", "1.2.3.4", 1200),
|
|
|
|
|
manyA("zrec%04d", "1.2.3.4", 1200)...)...),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
//// CanUse* types:
|
2023-01-30 11:01:41 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Many DNS record types are optional. If the provider
|
|
|
|
|
// supports them, there's a CanUse* variable that flags that
|
|
|
|
|
// feature. Here we test those. Each of these should (1) create
|
|
|
|
|
// the record, (2) test changing additional fields one at a time,
|
|
|
|
|
// maybe 2 at a time, (3) delete the record. If you can do those 3
|
|
|
|
|
// things, we're pretty sure you've implemented it correctly.
|
2020-03-10 22:13:20 +08:00
|
|
|
|
|
|
|
|
testgroup("CAA",
|
|
|
|
|
requires(providers.CanUseCAA),
|
|
|
|
|
tc("CAA record", caa("@", "issue", 0, "letsencrypt.org")),
|
|
|
|
|
tc("CAA change tag", caa("@", "issuewild", 0, "letsencrypt.org")),
|
|
|
|
|
tc("CAA change target", caa("@", "issuewild", 0, "example.com")),
|
2022-03-26 03:16:36 +08:00
|
|
|
tc("CAA change flag", caa("@", "issuewild", 128, "example.com")),
|
2022-09-08 02:08:06 +08:00
|
|
|
tc("CAA many records", caa("@", "issuewild", 128, ";")),
|
|
|
|
|
// Test support of spaces in the 3rd field. Some providers don't
|
|
|
|
|
// support this. See providers/exoscale/auditrecords.go as an example.
|
|
|
|
|
tc("CAA whitespace", caa("@", "issue", 0, "letsencrypt.org; validationmethods=dns-01; accounturi=https://acme-v02.api.letsencrypt.org/acme/acct/1234")),
|
2022-01-25 22:57:20 +08:00
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// LOCation records. // No.47
|
|
|
|
|
testgroup("LOC",
|
|
|
|
|
requires(providers.CanUseLOC),
|
|
|
|
|
//42 21 54 N 71 06 18 W -24m 30m
|
|
|
|
|
tc("Single LOC record", loc("@", 42, 21, 54, "N", 71, 6, 18, "W", -24, 30, 0, 0)),
|
|
|
|
|
//42 21 54 N 71 06 18 W -24m 30m
|
|
|
|
|
tc("Update single LOC record", loc("@", 42, 21, 54, "N", 71, 6, 18, "W", -24, 30, 10, 0)),
|
|
|
|
|
tc("Multiple LOC records-create a-d modify apex", //create a-d, modify @
|
|
|
|
|
//42 21 54 N 71 06 18 W -24m 30m
|
|
|
|
|
loc("@", 42, 21, 54, "N", 71, 6, 18, "W", -24, 30, 0, 0),
|
|
|
|
|
//42 21 43.952 N 71 5 6.344 W -24m 1m 200m
|
|
|
|
|
loc("a", 42, 21, 43.952, "N", 71, 5, 6.344, "W", -24, 1, 200, 10),
|
|
|
|
|
//52 14 05 N 00 08 50 E 10m
|
|
|
|
|
loc("b", 52, 14, 5, "N", 0, 8, 50, "E", 10, 0, 0, 0),
|
|
|
|
|
//32 7 19 S 116 2 25 E 10m
|
|
|
|
|
loc("c", 32, 7, 19, "S", 116, 2, 25, "E", 10, 0, 0, 0),
|
|
|
|
|
//42 21 28.764 N 71 00 51.617 W -44m 2000m
|
|
|
|
|
loc("d", 42, 21, 28.764, "N", 71, 0, 51.617, "W", -44, 2000, 0, 0),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// Narrative: NAPTR records are used by IP telephony ("SIP")
|
|
|
|
|
// systems. NAPTR records are rarely used, but if you use them
|
|
|
|
|
// you'll want to use DNSControl because editing them is a pain.
|
|
|
|
|
// If you want a fun read, check this out:
|
|
|
|
|
// https://www.devever.net/~hl/sip-victory
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("NAPTR",
|
|
|
|
|
requires(providers.CanUseNAPTR),
|
2019-04-17 17:23:32 +08:00
|
|
|
tc("NAPTR record", naptr("test", 100, 10, "U", "E2U+sip", "!^.*$!sip:customer-service@example.com!", "example.foo.com.")),
|
|
|
|
|
tc("NAPTR second record", naptr("test", 102, 10, "U", "E2U+email", "!^.*$!mailto:information@example.com!", "example.foo.com.")),
|
|
|
|
|
tc("NAPTR delete record", naptr("test", 100, 10, "U", "E2U+email", "!^.*$!mailto:information@example.com!", "example.foo.com.")),
|
|
|
|
|
tc("NAPTR change target", naptr("test", 100, 10, "U", "E2U+email", "!^.*$!mailto:information@example.com!", "example2.foo.com.")),
|
|
|
|
|
tc("NAPTR change order", naptr("test", 103, 10, "U", "E2U+email", "!^.*$!mailto:information@example.com!", "example2.foo.com.")),
|
|
|
|
|
tc("NAPTR change preference", naptr("test", 103, 20, "U", "E2U+email", "!^.*$!mailto:information@example.com!", "example2.foo.com.")),
|
|
|
|
|
tc("NAPTR change flags", naptr("test", 103, 20, "A", "E2U+email", "!^.*$!mailto:information@example.com!", "example2.foo.com.")),
|
|
|
|
|
tc("NAPTR change service", naptr("test", 103, 20, "A", "E2U+sip", "!^.*$!mailto:information@example.com!", "example2.foo.com.")),
|
|
|
|
|
tc("NAPTR change regexp", naptr("test", 103, 20, "A", "E2U+sip", "!^.*$!sip:customer-service@example.com!", "example2.foo.com.")),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
2021-03-22 03:35:45 +08:00
|
|
|
// ClouDNS provider can work with PTR records, but you need to create special type of zone
|
2023-03-26 20:54:45 +08:00
|
|
|
testgroup("PTR",
|
|
|
|
|
requires(providers.CanUsePTR),
|
|
|
|
|
not("CLOUDNS"),
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("Create PTR record", ptr("4", "foo.com.")),
|
|
|
|
|
tc("Modify PTR record", ptr("4", "bar.com.")),
|
|
|
|
|
),
|
2019-03-28 22:40:13 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: SOA records are ignored by most DNS providers. They
|
|
|
|
|
// auto-generate the values and ignore your SOA data. Don't
|
|
|
|
|
// implement the SOA record unless your provide can not work
|
|
|
|
|
// without them, like BIND.
|
|
|
|
|
|
2021-05-08 02:39:26 +08:00
|
|
|
// SOA
|
2023-03-26 20:54:45 +08:00
|
|
|
testgroup("SOA",
|
|
|
|
|
requires(providers.CanUseSOA),
|
2022-03-03 21:04:14 +08:00
|
|
|
clear(), // Extra clear required or only the first run passes.
|
2021-05-08 02:39:26 +08:00
|
|
|
tc("Create SOA record", soa("@", "kim.ns.cloudflare.com.", "dns.cloudflare.com.", 2037190000, 10000, 2400, 604800, 3600)),
|
|
|
|
|
tc("Modify SOA ns ", soa("@", "mmm.ns.cloudflare.com.", "dns.cloudflare.com.", 2037190000, 10000, 2400, 604800, 3600)),
|
|
|
|
|
tc("Modify SOA mbox ", soa("@", "mmm.ns.cloudflare.com.", "eee.cloudflare.com.", 2037190000, 10000, 2400, 604800, 3600)),
|
|
|
|
|
tc("Modify SOA refres", soa("@", "mmm.ns.cloudflare.com.", "eee.cloudflare.com.", 2037190000, 10001, 2400, 604800, 3600)),
|
|
|
|
|
tc("Modify SOA retry ", soa("@", "mmm.ns.cloudflare.com.", "eee.cloudflare.com.", 2037190000, 10001, 2401, 604800, 3600)),
|
|
|
|
|
tc("Modify SOA expire", soa("@", "mmm.ns.cloudflare.com.", "eee.cloudflare.com.", 2037190000, 10001, 2401, 604801, 3600)),
|
|
|
|
|
tc("Modify SOA minttl", soa("@", "mmm.ns.cloudflare.com.", "eee.cloudflare.com.", 2037190000, 10001, 2401, 604801, 3601)),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
testgroup("SRV",
|
|
|
|
|
requires(providers.CanUseSRV),
|
2017-09-13 23:49:15 +08:00
|
|
|
tc("SRV record", srv("_sip._tcp", 5, 6, 7, "foo.com.")),
|
|
|
|
|
tc("Second SRV record, same prio", srv("_sip._tcp", 5, 6, 7, "foo.com."), srv("_sip._tcp", 5, 60, 70, "foo2.com.")),
|
|
|
|
|
tc("3 SRV", srv("_sip._tcp", 5, 6, 7, "foo.com."), srv("_sip._tcp", 5, 60, 70, "foo2.com."), srv("_sip._tcp", 15, 65, 75, "foo3.com.")),
|
|
|
|
|
tc("Delete one", srv("_sip._tcp", 5, 6, 7, "foo.com."), srv("_sip._tcp", 15, 65, 75, "foo3.com.")),
|
|
|
|
|
tc("Change Target", srv("_sip._tcp", 5, 6, 7, "foo.com."), srv("_sip._tcp", 15, 65, 75, "foo4.com.")),
|
|
|
|
|
tc("Change Priority", srv("_sip._tcp", 52, 6, 7, "foo.com."), srv("_sip._tcp", 15, 65, 75, "foo4.com.")),
|
|
|
|
|
tc("Change Weight", srv("_sip._tcp", 52, 62, 7, "foo.com."), srv("_sip._tcp", 15, 65, 75, "foo4.com.")),
|
|
|
|
|
tc("Change Port", srv("_sip._tcp", 52, 62, 72, "foo.com."), srv("_sip._tcp", 15, 65, 75, "foo4.com.")),
|
2022-09-08 02:08:06 +08:00
|
|
|
clear(),
|
|
|
|
|
tc("Null Target", srv("_sip._tcp", 15, 65, 75, ".")),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
2017-09-13 23:49:15 +08:00
|
|
|
|
2023-02-19 23:57:41 +08:00
|
|
|
// https://github.com/StackExchange/dnscontrol/issues/2066
|
2023-03-26 20:54:45 +08:00
|
|
|
testgroup("SRV",
|
|
|
|
|
requires(providers.CanUseSRV),
|
2023-02-19 23:57:41 +08:00
|
|
|
tc("Create SRV333", ttl(srv("_sip._tcp", 5, 6, 7, "foo.com."), 333)),
|
|
|
|
|
tc("Change TTL999", ttl(srv("_sip._tcp", 5, 6, 7, "foo.com."), 999)),
|
|
|
|
|
),
|
|
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("SSHFP",
|
|
|
|
|
requires(providers.CanUseSSHFP),
|
2019-05-28 03:10:00 +08:00
|
|
|
tc("SSHFP record",
|
|
|
|
|
sshfp("@", 1, 1, "66c7d5540b7d75a1fb4c84febfa178ad99bdd67c")),
|
|
|
|
|
tc("SSHFP change algorithm",
|
|
|
|
|
sshfp("@", 2, 1, "66c7d5540b7d75a1fb4c84febfa178ad99bdd67c")),
|
2020-03-03 00:23:47 +08:00
|
|
|
tc("SSHFP change fingerprint and type",
|
2019-05-28 03:10:00 +08:00
|
|
|
sshfp("@", 2, 2, "745a635bc46a397a5c4f21d437483005bcc40d7511ff15fbfafe913a081559bc")),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
2020-01-25 01:21:01 +08:00
|
|
|
|
2020-03-10 22:13:20 +08:00
|
|
|
testgroup("TLSA",
|
|
|
|
|
requires(providers.CanUseTLSA),
|
2017-11-11 03:02:34 +08:00
|
|
|
tc("TLSA record", tlsa("_443._tcp", 3, 1, 1, sha256hash)),
|
|
|
|
|
tc("TLSA change usage", tlsa("_443._tcp", 2, 1, 1, sha256hash)),
|
|
|
|
|
tc("TLSA change selector", tlsa("_443._tcp", 2, 0, 1, sha256hash)),
|
|
|
|
|
tc("TLSA change matchingtype", tlsa("_443._tcp", 2, 0, 2, sha512hash)),
|
|
|
|
|
tc("TLSA change certificate", tlsa("_443._tcp", 2, 0, 2, reversedSha512)),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
2017-09-15 21:03:29 +08:00
|
|
|
|
2020-05-30 22:40:21 +08:00
|
|
|
testgroup("DS",
|
2020-05-30 23:05:54 +08:00
|
|
|
requires(providers.CanUseDS),
|
2021-04-23 03:35:22 +08:00
|
|
|
// Use a valid digest value here. Some providers verify that a valid digest is in use. See RFC 4034 and
|
|
|
|
|
// https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml
|
|
|
|
|
// https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml
|
2021-04-17 22:49:06 +08:00
|
|
|
tc("DS create", ds("@", 1, 13, 1, "da39a3ee5e6b4b0d3255bfef95601890afd80709")),
|
|
|
|
|
tc("DS change", ds("@", 8857, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DS change f1", ds("@", 3, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DS change f2", ds("@", 3, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DS change f3+4", ds("@", 3, 13, 1, "da39a3ee5e6b4b0d3255bfef95601890afd80709")),
|
|
|
|
|
tc("DS delete 1, create child", ds("another-child", 44, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("add 2 more DS",
|
|
|
|
|
ds("another-child", 44, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44"),
|
|
|
|
|
ds("another-child", 1501, 13, 1, "ee02c885b5b4ed64899f2d43eb2b8e6619bdb50c"),
|
|
|
|
|
ds("another-child", 1502, 8, 2, "2fa14f53e6b15cac9ac77846c7be87862c2a7e9ec0c6cea319db939317f126ed"),
|
|
|
|
|
ds("another-child", 65535, 13, 2, "2fa14f53e6b15cac9ac77846c7be87862c2a7e9ec0c6cea319db939317f126ed"),
|
|
|
|
|
),
|
|
|
|
|
// These are the same as below.
|
|
|
|
|
tc("DSchild create", ds("child", 1, 13, 1, "da39a3ee5e6b4b0d3255bfef95601890afd80709")),
|
|
|
|
|
tc("DSchild change", ds("child", 8857, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DSchild change f1", ds("child", 3, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DSchild change f2", ds("child", 3, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DSchild change f3+4", ds("child", 3, 13, 1, "da39a3ee5e6b4b0d3255bfef95601890afd80709")),
|
|
|
|
|
tc("DSchild delete 1, create child", ds("another-child", 44, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
2020-05-30 22:40:21 +08:00
|
|
|
),
|
|
|
|
|
|
2020-06-19 05:24:13 +08:00
|
|
|
testgroup("DS (children only)",
|
2023-03-26 20:54:45 +08:00
|
|
|
requires(providers.CanUseDSForChildren),
|
|
|
|
|
not("CLOUDNS", "CLOUDFLAREAPI"),
|
2021-04-23 03:35:22 +08:00
|
|
|
// Use a valid digest value here. Some providers verify that a valid digest is in use. See RFC 4034 and
|
|
|
|
|
// https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml
|
|
|
|
|
// https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml
|
2022-05-09 01:21:47 +08:00
|
|
|
tc("DSchild create", ds("child", 1, 14, 4, "417212fd1c8bc5896fefd8db58af824545e85b0d0546409366a30aef7269fae258173bd185fb262c86f3bb86fba04368")),
|
2021-04-17 22:49:06 +08:00
|
|
|
tc("DSchild change", ds("child", 8857, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DSchild change f1", ds("child", 3, 8, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("DSchild change f2", ds("child", 3, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
2022-05-09 01:21:47 +08:00
|
|
|
tc("DSchild change f3+4", ds("child", 3, 14, 4, "3115238f89e0bf5252d9718113b1b9fff854608d84be94eefb9210dc1cc0b4f3557342a27465cfacc42ef137ae9a5489")),
|
2021-04-17 22:49:06 +08:00
|
|
|
tc("DSchild delete 1, create child", ds("another-child", 44, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44")),
|
|
|
|
|
tc("add 2 more DSchild",
|
|
|
|
|
ds("another-child", 44, 13, 2, "4b9b6b073edd97feb5bc12dc4e1b32d2c6af7ae23a293936ceb87bb10494ec44"),
|
2022-05-09 01:21:47 +08:00
|
|
|
ds("another-child", 1501, 14, 4, "109bb6b5b6d5547c1ce03c7a8bd7d8f80c1cb0957f50c4f7fda04692079917e4f9cad52b878f3d8234e1a170b154b72d"),
|
2021-04-17 22:49:06 +08:00
|
|
|
ds("another-child", 1502, 8, 2, "2fa14f53e6b15cac9ac77846c7be87862c2a7e9ec0c6cea319db939317f126ed"),
|
|
|
|
|
ds("another-child", 65535, 13, 2, "2fa14f53e6b15cac9ac77846c7be87862c2a7e9ec0c6cea319db939317f126ed"),
|
2020-06-19 05:24:13 +08:00
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2021-01-23 01:54:39 +08:00
|
|
|
testgroup("DS (children only) CLOUDNS",
|
|
|
|
|
requires(providers.CanUseDSForChildren),
|
2021-01-25 05:36:23 +08:00
|
|
|
only("CLOUDNS", "CLOUDFLAREAPI"),
|
2021-04-17 22:49:06 +08:00
|
|
|
// Cloudns requires NS records before creating DS Record. Verify
|
|
|
|
|
// they are done in the right order, even if they are listed in
|
|
|
|
|
// the wrong order in dnsconfig.js.
|
2021-01-23 01:54:39 +08:00
|
|
|
tc("create DS",
|
|
|
|
|
// we test that provider correctly handles creating NS first by reversing the entries here
|
|
|
|
|
ds("child", 35632, 13, 1, "1E07663FF507A40874B8605463DD41DE482079D6"),
|
|
|
|
|
ns("child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
tc("modify field 1",
|
|
|
|
|
ds("child", 2075, 13, 1, "2706D12E256C8FDD9BFB45EFB25FE537E21A82F6"),
|
|
|
|
|
ns("child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
tc("modify field 3",
|
|
|
|
|
ds("child", 2075, 13, 2, "3F7A1EAC8C813A0BEBD0C3B8AAB387E31945EA0CD5E1D84A2E8E27674566C156"),
|
|
|
|
|
ns("child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
tc("modify field 2+3",
|
|
|
|
|
ds("child", 2159, 1, 4, "F50BEFEA333EE2901D72D31A08E1A3CD3F7E943FF4B38CF7C8AD92807F5302F76FB0B419182C0F47FFC71CBCB6EF4BD4"),
|
|
|
|
|
ns("child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
tc("modify field 2",
|
|
|
|
|
ds("child", 63909, 3, 4, "EEC7FA02E6788DA889B2CE41D43D92F948AB126EDCF83B7037E73CE9531C8E7E45653ABBAA76C2D6E42F98316EDE599B"),
|
|
|
|
|
ns("child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
//tc("modify field 2", ds("child", 65535, 254, 4, "0123456789ABCDEF")),
|
|
|
|
|
tc("delete 1, create 1",
|
|
|
|
|
ds("another-child", 35632, 13, 4, "F5F32ABCA6B01AA7A9963012F90B7C8523A1D946185A3AD70B67F3C9F18E7312FA9DD6AB2F7D8382F789213DB173D429"),
|
|
|
|
|
ns("another-child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
tc("add 2 more DS",
|
|
|
|
|
ds("another-child", 35632, 13, 4, "F5F32ABCA6B01AA7A9963012F90B7C8523A1D946185A3AD70B67F3C9F18E7312FA9DD6AB2F7D8382F789213DB173D429"),
|
|
|
|
|
ds("another-child", 2159, 1, 4, "F50BEFEA333EE2901D72D31A08E1A3CD3F7E943FF4B38CF7C8AD92807F5302F76FB0B419182C0F47FFC71CBCB6EF4BD4"),
|
|
|
|
|
ds("another-child", 63909, 3, 4, "EEC7FA02E6788DA889B2CE41D43D92F948AB126EDCF83B7037E73CE9531C8E7E45653ABBAA76C2D6E42F98316EDE599B"),
|
|
|
|
|
ns("another-child", "ns101.cloudns.net."),
|
|
|
|
|
),
|
|
|
|
|
// in CLouDNS we must delete DS Record before deleting NS record
|
|
|
|
|
// should no longer be necessary, provider should handle order correctly
|
|
|
|
|
//tc("delete all DS",
|
|
|
|
|
// ns("another-child", "ns101.cloudns.net."),
|
|
|
|
|
//),
|
|
|
|
|
),
|
2023-12-11 20:25:27 +08:00
|
|
|
testgroup("DHCID",
|
2023-09-15 21:11:30 +08:00
|
|
|
requires(providers.CanUseDHCID),
|
2023-12-11 20:25:27 +08:00
|
|
|
tc("Create DHCID record", dhcid("test", "AAIBY2/AuCccgoJbsaxcQc9TUapptP69lOjxfNuVAA2kjEA=")),
|
|
|
|
|
tc("Modify DHCID record", dhcid("test", "Test/AuCccgoJbsaxcQc9TUapptP69lOjxfNuVAA2kjEA=")),
|
2023-09-10 14:05:26 +08:00
|
|
|
),
|
2021-01-23 01:54:39 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
//// Vendor-specific record types
|
|
|
|
|
|
|
|
|
|
// Narrative: DNSControl supports DNS records that don't exist!
|
|
|
|
|
// Well, they exist for particular vendors. Let's test each of
|
|
|
|
|
// them here. If you are writing a new provider, I have some good
|
|
|
|
|
// news: These don't apply to you!
|
ROUTE53: Support Route53's ALIAS record type (#239) (#301)
* Stable comparison of metadata (#239)
Iterating over a map in Go never produces twice the same ordering.
Thus when comparing two metadata map with more than one key, the
`differ` is always finding differences.
To properly compare records metadata, we need to iterate the maps
in a deterministic way.
Signed-off-by: Brice Figureau <brice@daysofwonder.com>
* Support for Route53 ALIAS record type (#239)
Route53 ALIAS doesn't behave like a regular ALIAS, and is much more
limited as its target can only be some specific AWS resources or
another record in the same zone.
According to #239, this change adds a new directive R53_ALIAS which
implements this specific alias. This record type can only be used
with the Route53 provider.
This directive usage looks like this:
```js
D("example.com", REGISTRAR, DnsProvider("ROUTE53"),
R53_ALIAS("foo1", "A", "bar") // record in same zone
R53_ALIAS("foo2", "A",
"blahblah.elasticloadbalancing.us-west-1.amazonaws.com",
R53_ZONE('Z368ELLRRE2KJ0')) // ELB in us-west-1
```
Unfortunately, Route53 requires indicating the hosted zone id
where the target is defined (those are listed in AWS documentation,
see the R53_ALIAS documentation for links).
2018-01-16 18:53:12 +08:00
|
|
|
|
2023-12-05 00:54:03 +08:00
|
|
|
testgroup("ALIAS on apex",
|
2020-03-10 22:13:20 +08:00
|
|
|
requires(providers.CanUseAlias),
|
|
|
|
|
tc("ALIAS at root", alias("@", "foo.com.")),
|
|
|
|
|
tc("change it", alias("@", "foo2.com.")),
|
2023-12-05 00:54:03 +08:00
|
|
|
),
|
|
|
|
|
|
2024-04-02 04:47:11 +08:00
|
|
|
testgroup("ALIAS to nonfqdn",
|
|
|
|
|
requires(providers.CanUseAlias),
|
|
|
|
|
tc("ALIAS at root",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
alias("@", "foo"),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2023-12-05 00:54:03 +08:00
|
|
|
testgroup("ALIAS on subdomain",
|
|
|
|
|
requires(providers.CanUseAlias),
|
|
|
|
|
not("TRANSIP"), // TransIP does support ALIAS records, but only for apex records (@)
|
2020-03-10 22:13:20 +08:00
|
|
|
tc("ALIAS at subdomain", alias("test", "foo.com.")),
|
2020-11-12 13:30:40 +08:00
|
|
|
tc("change it", alias("test", "foo2.com.")),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
2022-09-08 02:08:06 +08:00
|
|
|
// AZURE features
|
|
|
|
|
|
2023-02-08 05:53:49 +08:00
|
|
|
testgroup("AZURE_ALIAS_A",
|
2020-03-10 22:13:20 +08:00
|
|
|
requires(providers.CanUseAzureAlias),
|
2020-11-12 13:30:40 +08:00
|
|
|
tc("create dependent A records",
|
|
|
|
|
a("foo.a", "1.2.3.4"),
|
|
|
|
|
a("quux.a", "2.3.4.5"),
|
|
|
|
|
),
|
|
|
|
|
tc("ALIAS to A record in same zone",
|
|
|
|
|
a("foo.a", "1.2.3.4"),
|
|
|
|
|
a("quux.a", "2.3.4.5"),
|
|
|
|
|
azureAlias("bar.a", "A", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/A/foo.a"),
|
|
|
|
|
),
|
2023-02-08 05:53:49 +08:00
|
|
|
tc("change aliasA",
|
2020-11-12 13:30:40 +08:00
|
|
|
a("foo.a", "1.2.3.4"),
|
|
|
|
|
a("quux.a", "2.3.4.5"),
|
|
|
|
|
azureAlias("bar.a", "A", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/A/quux.a"),
|
|
|
|
|
),
|
2023-02-08 05:53:49 +08:00
|
|
|
tc("change backA",
|
|
|
|
|
a("foo.a", "1.2.3.4"),
|
|
|
|
|
a("quux.a", "2.3.4.5"),
|
|
|
|
|
azureAlias("bar.a", "A", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/A/foo.a"),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("AZURE_ALIAS_CNAME",
|
|
|
|
|
requires(providers.CanUseAzureAlias),
|
2020-11-12 13:30:40 +08:00
|
|
|
tc("create dependent CNAME records",
|
2023-06-03 03:27:43 +08:00
|
|
|
cname("foo.cname", "google.com."),
|
|
|
|
|
cname("quux.cname", "google2.com."),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
tc("ALIAS to CNAME record in same zone",
|
2023-06-03 03:27:43 +08:00
|
|
|
cname("foo.cname", "google.com."),
|
|
|
|
|
cname("quux.cname", "google2.com."),
|
2023-02-08 05:53:49 +08:00
|
|
|
azureAlias("bar.cname", "CNAME", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/CNAME/foo.cname"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
2023-02-08 05:53:49 +08:00
|
|
|
tc("change aliasCNAME",
|
2023-06-03 03:27:43 +08:00
|
|
|
cname("foo.cname", "google.com."),
|
|
|
|
|
cname("quux.cname", "google2.com."),
|
2020-11-12 13:30:40 +08:00
|
|
|
azureAlias("bar.cname", "CNAME", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/CNAME/quux.cname"),
|
|
|
|
|
),
|
2023-02-08 05:53:49 +08:00
|
|
|
tc("change backCNAME",
|
2023-06-03 03:27:43 +08:00
|
|
|
cname("foo.cname", "google.com."),
|
|
|
|
|
cname("quux.cname", "google2.com."),
|
2023-02-08 05:53:49 +08:00
|
|
|
azureAlias("bar.cname", "CNAME", "/subscriptions/**subscription-id**/resourceGroups/**resource-group**/providers/Microsoft.Network/dnszones/**current-domain-no-trailing**/CNAME/foo.cname"),
|
|
|
|
|
),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
|
2023-03-29 07:25:40 +08:00
|
|
|
// ROUTE53 features
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2020-11-12 13:30:40 +08:00
|
|
|
testgroup("R53_ALIAS2",
|
|
|
|
|
requires(providers.CanUseRoute53Alias),
|
|
|
|
|
tc("create dependent records",
|
|
|
|
|
a("kyle", "1.2.3.4"),
|
|
|
|
|
a("cartman", "2.3.4.5"),
|
|
|
|
|
),
|
|
|
|
|
tc("ALIAS to A record in same zone",
|
|
|
|
|
a("kyle", "1.2.3.4"),
|
|
|
|
|
a("cartman", "2.3.4.5"),
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("kenny", "A", "kyle.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
tc("modify an r53 alias",
|
|
|
|
|
a("kyle", "1.2.3.4"),
|
|
|
|
|
a("cartman", "2.3.4.5"),
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("kenny", "A", "cartman.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
|
|
|
|
|
2020-11-12 13:30:40 +08:00
|
|
|
testgroup("R53_ALIAS_ORDER",
|
2020-03-10 22:13:20 +08:00
|
|
|
requires(providers.CanUseRoute53Alias),
|
2020-11-12 13:30:40 +08:00
|
|
|
tc("create target cnames",
|
|
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
cname("dev-system19", "ec2-54-91-99-999.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
|
|
|
|
tc("add an alias to 18",
|
|
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
cname("dev-system19", "ec2-54-91-99-999.compute-1.amazonaws.com."),
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system18.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
tc("modify alias to 19",
|
|
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
cname("dev-system19", "ec2-54-91-99-999.compute-1.amazonaws.com."),
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system19.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
tc("remove alias",
|
|
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
cname("dev-system19", "ec2-54-91-99-999.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
|
|
|
|
tc("add an alias back",
|
|
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
cname("dev-system19", "ec2-54-91-99-999.compute-1.amazonaws.com."),
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system19.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
|
|
|
|
tc("remove cnames",
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system19.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
),
|
2023-01-31 23:12:26 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("R53_ALIAS_CNAME",
|
|
|
|
|
requires(providers.CanUseRoute53Alias),
|
2020-11-12 13:30:40 +08:00
|
|
|
tc("create alias+cname in one step",
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system18.**current-domain**", "false"),
|
2020-11-12 13:30:40 +08:00
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
2020-03-10 22:13:20 +08:00
|
|
|
),
|
2021-01-25 05:36:23 +08:00
|
|
|
|
2023-03-01 23:00:58 +08:00
|
|
|
testgroup("R53_ALIAS_Loop",
|
|
|
|
|
// This will always be skipped because rejectifTargetEqualsLabel
|
|
|
|
|
// will always flag it as not permitted.
|
|
|
|
|
// See https://github.com/StackExchange/dnscontrol/issues/2107
|
|
|
|
|
requires(providers.CanUseRoute53Alias),
|
|
|
|
|
tc("loop should fail",
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("test-islandora", "CNAME", "test-islandora.**current-domain**", "false"),
|
2023-03-01 23:00:58 +08:00
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2023-05-02 06:33:29 +08:00
|
|
|
// Bug https://github.com/StackExchange/dnscontrol/issues/2285
|
|
|
|
|
testgroup("R53_alias pre-existing",
|
|
|
|
|
requires(providers.CanUseRoute53Alias),
|
|
|
|
|
tc("Create some records",
|
2023-11-28 06:50:21 +08:00
|
|
|
r53alias("dev-system", "CNAME", "dev-system18.**current-domain**", "false"),
|
2023-05-02 06:33:29 +08:00
|
|
|
cname("dev-system18", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
|
|
|
|
tc("Add a new record - ignoring foo",
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
ignoreName("dev-system*"),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2023-11-28 06:50:21 +08:00
|
|
|
testgroup("R53_alias evaluate_target_health",
|
|
|
|
|
requires(providers.CanUseRoute53Alias),
|
|
|
|
|
tc("Create alias and cname",
|
|
|
|
|
r53alias("test-record", "CNAME", "test-record-1.**current-domain**", "false"),
|
|
|
|
|
cname("test-record-1", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
|
|
|
|
tc("modify evaluate target health",
|
|
|
|
|
r53alias("test-record", "CNAME", "test-record-1.**current-domain**", "true"),
|
|
|
|
|
cname("test-record-1", "ec2-54-91-33-155.compute-1.amazonaws.com."),
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
|
2022-09-08 02:08:06 +08:00
|
|
|
// CLOUDFLAREAPI features
|
|
|
|
|
|
2021-01-25 05:36:23 +08:00
|
|
|
testgroup("CF_REDIRECT",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
|
|
|
|
tc("redir", cfRedir("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1")),
|
|
|
|
|
tc("change", cfRedir("cnn.**current-domain-no-trailing**/*", "https://change.cnn.com/$1")),
|
|
|
|
|
tc("changelabel", cfRedir("cable.**current-domain-no-trailing**/*", "https://change.cnn.com/$1")),
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2023-08-22 00:19:16 +08:00
|
|
|
// Removed these for speed. They tested if order matters,
|
2022-09-08 02:08:06 +08:00
|
|
|
// which it doesn't seem to. Re-add if needed.
|
|
|
|
|
//clear(),
|
|
|
|
|
//tc("multipleA",
|
|
|
|
|
// cfRedir("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
// cfRedir("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
//clear(),
|
|
|
|
|
//tc("multipleB",
|
|
|
|
|
// cfRedir("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
// cfRedir("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
//tc("change1",
|
|
|
|
|
// cfRedir("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
// cfRedir("cnn.**current-domain-no-trailing**/*", "https://change.cnn.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
//tc("change1",
|
|
|
|
|
// cfRedir("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
// cfRedir("cablenews.**current-domain-no-trailing**/*", "https://change.cnn.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
|
|
|
|
|
// TODO(tlim): Fix this test case. It is currently failing.
|
2021-01-25 05:36:23 +08:00
|
|
|
//clear(),
|
|
|
|
|
//tc("multiple3",
|
|
|
|
|
// cfRedir("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
// cfRedir("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
// cfRedir("nytimes.**current-domain-no-trailing**/*", "https://www.nytimes.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
|
2023-08-22 00:19:16 +08:00
|
|
|
// Repeat the above tests using CF_TEMP_REDIR instead
|
2021-01-25 05:36:23 +08:00
|
|
|
clear(),
|
|
|
|
|
tc("tempredir", cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1")),
|
|
|
|
|
tc("tempchange", cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://change.cnn.com/$1")),
|
|
|
|
|
tc("tempchangelabel", cfRedirTemp("cable.**current-domain-no-trailing**/*", "https://change.cnn.com/$1")),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("tempmultipleA",
|
|
|
|
|
cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
cfRedirTemp("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("tempmultipleB",
|
|
|
|
|
cfRedirTemp("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
),
|
|
|
|
|
tc("tempchange1",
|
|
|
|
|
cfRedirTemp("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://change.cnn.com/$1"),
|
|
|
|
|
),
|
|
|
|
|
tc("tempchange1",
|
|
|
|
|
cfRedirTemp("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
cfRedirTemp("cablenews.**current-domain-no-trailing**/*", "https://change.cnn.com/$1"),
|
|
|
|
|
),
|
|
|
|
|
// TODO(tlim): Fix this test case:
|
|
|
|
|
//tc("tempmultiple3",
|
|
|
|
|
// cfRedirTemp("msnbc.**current-domain-no-trailing**/*", "https://msnbc.cnn.com/$1"),
|
|
|
|
|
// cfRedirTemp("cnn.**current-domain-no-trailing**/*", "https://www.cnn.com/$1"),
|
|
|
|
|
// cfRedirTemp("nytimes.**current-domain-no-trailing**/*", "https://www.nytimes.com/$1"),
|
|
|
|
|
//),
|
|
|
|
|
),
|
2021-09-30 19:09:42 +08:00
|
|
|
|
2023-08-22 00:19:16 +08:00
|
|
|
testgroup("CF_PROXY A create",
|
2021-09-30 19:09:42 +08:00
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyOff(), clear(),
|
|
|
|
|
CfProxyOn(), clear(),
|
|
|
|
|
CfProxyFull1(), clear(),
|
|
|
|
|
CfProxyFull2(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
// These next testgroups attempt every possible transition between off, on, full1 and full2.
|
|
|
|
|
// "full1" simulates "full" without the IP being translated.
|
|
|
|
|
// "full2" simulates "full" WITH the IP translated.
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY A off to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
|
|
|
|
//CF_PROXY_OFF(), CF_PROXY_OFF(), clear(), // redundant
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyOff(), CfProxyOn(), clear(),
|
|
|
|
|
CfProxyOff(), CfProxyFull1(), clear(),
|
|
|
|
|
CfProxyOff(), CfProxyFull2(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY A on to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyOn(), CfProxyOff(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
//CF_PROXY_ON(), CF_PROXY_ON(), clear(), // redundant
|
|
|
|
|
//CF_PROXY_ON(), CF_PROXY_FULL1().ExpectNoChanges(), clear(), // Removed for speed
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyOn(), CfProxyFull2(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY A full1 to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyFull1(), CfProxyOff(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
//CF_PROXY_FULL1(), CF_PROXY_ON().ExpectNoChanges(), clear(), // Removed for speed
|
|
|
|
|
//CF_PROXY_FULL1(), CF_PROXY_FULL1(), clear(), // redundant
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyFull1(), CfProxyFull2(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY A full2 to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfProxyFull2(), CfProxyOff(), clear(),
|
|
|
|
|
CfProxyFull2(), CfProxyOn(), clear(),
|
|
|
|
|
CfProxyFull2(), CfProxyFull1(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
//CF_PROXY_FULL2(), CF_PROXY_FULL2(), clear(), // redundant
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY CNAME create",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfCProxyOff(), clear(),
|
|
|
|
|
CfCProxyOn(), clear(),
|
|
|
|
|
CfCProxyFull(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY CNAME off to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
|
|
|
|
//CF_CPROXY_OFF(), CF_CPROXY_OFF(), clear(), // redundant
|
2023-09-16 03:30:55 +08:00
|
|
|
CfCProxyOff(), CfCProxyOn(), clear(),
|
|
|
|
|
CfCProxyOff(), CfCProxyFull(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY CNAME on to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfCProxyOn(), CfCProxyOff(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
//CF_CPROXY_ON(), CF_CPROXY_ON(), clear(), // redundant
|
|
|
|
|
//CF_CPROXY_ON(), CF_CPROXY_FULL().ExpectNoChanges(), clear(), // Removed for speed
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("CF_PROXY CNAME full to X",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
2023-09-16 03:30:55 +08:00
|
|
|
CfCProxyFull(), CfCProxyOff(), clear(),
|
2023-08-22 00:19:16 +08:00
|
|
|
//CF_CPROXY_FULL(), CF_CPROXY_ON().ExpectNoChanges(), clear(), // Removed for speed
|
|
|
|
|
//CF_CPROXY_FULL(), CF_CPROXY_FULL(), clear(), // redundant
|
2021-09-30 19:09:42 +08:00
|
|
|
),
|
2021-10-12 04:04:49 +08:00
|
|
|
|
|
|
|
|
testgroup("CF_WORKER_ROUTE",
|
|
|
|
|
only("CLOUDFLAREAPI"),
|
|
|
|
|
alltrue(*enableCFWorkers),
|
|
|
|
|
// TODO(fdcastel): Add worker scripts via api call before test execution
|
|
|
|
|
tc("simple", cfWorkerRoute("cnn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_cnn")),
|
|
|
|
|
tc("changeScript", cfWorkerRoute("cnn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc")),
|
|
|
|
|
tc("changePattern", cfWorkerRoute("cable.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc")),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("createMultiple",
|
|
|
|
|
cfWorkerRoute("cnn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
cfWorkerRoute("msnbc.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc"),
|
|
|
|
|
),
|
|
|
|
|
tc("addOne",
|
|
|
|
|
cfWorkerRoute("msnbc.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc"),
|
|
|
|
|
cfWorkerRoute("cnn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
cfWorkerRoute("api.**current-domain-no-trailing**/cnn/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
),
|
|
|
|
|
tc("changeOne",
|
|
|
|
|
cfWorkerRoute("msn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc"),
|
|
|
|
|
cfWorkerRoute("cnn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
cfWorkerRoute("api.**current-domain-no-trailing**/cnn/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
),
|
|
|
|
|
tc("deleteOne",
|
|
|
|
|
cfWorkerRoute("msn.**current-domain-no-trailing**/*", "dnscontrol_integrationtest_msnbc"),
|
|
|
|
|
cfWorkerRoute("api.**current-domain-no-trailing**/cnn/*", "dnscontrol_integrationtest_cnn"),
|
|
|
|
|
),
|
|
|
|
|
),
|
2022-07-15 00:50:10 +08:00
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// NS1 features
|
|
|
|
|
|
|
|
|
|
testgroup("NS1_URLFWD tests",
|
|
|
|
|
only("NS1"),
|
2023-05-09 04:49:26 +08:00
|
|
|
tc("Add a urlfwd", ns1Urlfwd("urlfwd1", "/ http://example.com 302 2 0")),
|
|
|
|
|
tc("Update a urlfwd", ns1Urlfwd("urlfwd1", "/ http://example.org 301 2 0")),
|
2023-03-26 20:54:45 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
//// IGNORE* features
|
|
|
|
|
|
|
|
|
|
// Narrative: You're basically done now. These remaining tests
|
|
|
|
|
// exercise the NO_PURGE and IGNORE* features. These are handled
|
|
|
|
|
// by the pkg/diff2 module. If they work for any provider, they
|
|
|
|
|
// should work for all providers. However we're going to test
|
|
|
|
|
// them anyway because one never knows. Ready? Let's go!
|
|
|
|
|
|
2023-05-25 03:14:36 +08:00
|
|
|
testgroup("IGNORE main",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("foo", "simple"),
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("bar", "5.5.5.5"),
|
|
|
|
|
),
|
|
|
|
|
tc("ignore label=foo",
|
|
|
|
|
a("bar", "5.5.5.5"),
|
|
|
|
|
ignore("foo", "", ""),
|
|
|
|
|
).ExpectNoChanges(),
|
|
|
|
|
tc("ignore type=txt",
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("bar", "5.5.5.5"),
|
|
|
|
|
ignore("", "TXT", ""),
|
|
|
|
|
).ExpectNoChanges(),
|
|
|
|
|
tc("ignore target=1.2.3.4",
|
|
|
|
|
txt("foo", "simple"),
|
|
|
|
|
a("bar", "5.5.5.5"),
|
|
|
|
|
ignore("", "", "1.2.3.4"),
|
|
|
|
|
).ExpectNoChanges(),
|
|
|
|
|
tc("ignore manytypes",
|
|
|
|
|
ignore("", "A,TXT", ""),
|
|
|
|
|
).ExpectNoChanges(),
|
2023-10-23 01:56:13 +08:00
|
|
|
),
|
2023-05-25 03:14:36 +08:00
|
|
|
|
|
|
|
|
testgroup("IGNORE apex",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("@", "simple"),
|
|
|
|
|
a("@", "1.2.3.4"),
|
|
|
|
|
).UnsafeIgnore(),
|
|
|
|
|
tc("ignore label=apex",
|
|
|
|
|
ignore("@", "", ""),
|
|
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
|
|
|
|
tc("ignore type=txt",
|
|
|
|
|
a("@", "1.2.3.4"),
|
|
|
|
|
ignore("", "TXT", ""),
|
|
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
|
|
|
|
tc("ignore target=1.2.3.4",
|
|
|
|
|
txt("@", "simple"),
|
|
|
|
|
ignore("", "", "1.2.3.4"),
|
|
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
|
|
|
|
tc("ignore manytypes",
|
|
|
|
|
ignore("", "A,TXT", ""),
|
|
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
2023-10-23 01:56:13 +08:00
|
|
|
),
|
2023-05-25 03:14:36 +08:00
|
|
|
|
|
|
|
|
// Legacy IGNORE_NAME and IGNORE_TARGET tests.
|
2022-09-08 02:08:06 +08:00
|
|
|
|
2022-07-15 00:50:10 +08:00
|
|
|
testgroup("IGNORE_NAME function",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("foo", "simple"),
|
|
|
|
|
a("foo", "1.2.3.4"),
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignore foo",
|
|
|
|
|
ignoreName("foo"),
|
|
|
|
|
a("bar", "1.2.3.4"),
|
|
|
|
|
).ExpectNoChanges(),
|
2022-07-15 00:50:10 +08:00
|
|
|
clear(),
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("bar.foo", "simple"),
|
|
|
|
|
a("bar.foo", "1.2.3.4"),
|
2023-05-09 10:29:58 +08:00
|
|
|
a("bar", "1.2.3.4"),
|
2022-07-15 00:50:10 +08:00
|
|
|
),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignore *.foo",
|
|
|
|
|
ignoreName("*.foo"),
|
2022-07-15 00:50:10 +08:00
|
|
|
a("bar", "1.2.3.4"),
|
2023-05-09 10:29:58 +08:00
|
|
|
).ExpectNoChanges(),
|
|
|
|
|
clear(),
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("bar.foo", "simple"),
|
|
|
|
|
a("bar.foo", "1.2.3.4"),
|
|
|
|
|
),
|
|
|
|
|
tc("ignore *.foo while we add 1",
|
2022-07-15 00:50:10 +08:00
|
|
|
ignoreName("*.foo"),
|
2023-05-09 10:29:58 +08:00
|
|
|
a("bar", "1.2.3.4"),
|
2022-07-15 00:50:10 +08:00
|
|
|
),
|
2023-10-23 01:56:13 +08:00
|
|
|
),
|
2022-07-15 00:50:10 +08:00
|
|
|
|
|
|
|
|
testgroup("IGNORE_NAME apex",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
txt("@", "simple"),
|
|
|
|
|
a("@", "1.2.3.4"),
|
|
|
|
|
txt("bar", "stringbar"),
|
|
|
|
|
a("bar", "2.4.6.8"),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignore apex",
|
|
|
|
|
ignoreName("@"),
|
|
|
|
|
txt("bar", "stringbar"),
|
|
|
|
|
a("bar", "2.4.6.8"),
|
2023-05-25 03:14:36 +08:00
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
clear(),
|
2022-07-15 00:50:10 +08:00
|
|
|
tc("Add a new record - ignoring apex",
|
2023-05-09 10:29:58 +08:00
|
|
|
ignoreName("@"),
|
2022-07-15 00:50:10 +08:00
|
|
|
txt("bar", "stringbar"),
|
|
|
|
|
a("bar", "2.4.6.8"),
|
|
|
|
|
a("added", "4.6.8.9"),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2023-10-23 01:56:13 +08:00
|
|
|
),
|
2022-07-15 00:50:10 +08:00
|
|
|
|
2023-05-09 10:29:58 +08:00
|
|
|
testgroup("IGNORE_TARGET function CNAME",
|
2022-07-15 00:50:10 +08:00
|
|
|
tc("Create some records",
|
|
|
|
|
cname("foo", "test.foo.com."),
|
2023-08-30 02:00:09 +08:00
|
|
|
cname("keep", "keeper.example.com."),
|
2022-07-15 00:50:10 +08:00
|
|
|
),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignoring CNAME=test.foo.com.",
|
|
|
|
|
ignoreTarget("test.foo.com.", "CNAME"),
|
2023-08-30 02:00:09 +08:00
|
|
|
cname("keep", "keeper.example.com."),
|
2023-05-09 10:29:58 +08:00
|
|
|
).ExpectNoChanges(),
|
|
|
|
|
tc("ignoring CNAME=test.foo.com. and add",
|
2022-07-15 00:50:10 +08:00
|
|
|
ignoreTarget("test.foo.com.", "CNAME"),
|
2023-08-30 02:00:09 +08:00
|
|
|
cname("keep", "keeper.example.com."),
|
2023-05-09 10:29:58 +08:00
|
|
|
a("adding", "1.2.3.4"),
|
|
|
|
|
cname("another", "www.example.com."),
|
2022-07-15 00:50:10 +08:00
|
|
|
),
|
2023-05-09 10:29:58 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("IGNORE_TARGET function CNAME*",
|
2022-07-15 00:50:10 +08:00
|
|
|
tc("Create some records",
|
2023-05-09 10:29:58 +08:00
|
|
|
cname("foo1", "test.foo.com."),
|
|
|
|
|
cname("foo2", "my.test.foo.com."),
|
|
|
|
|
cname("bar", "test.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignoring CNAME=test.foo.com.",
|
|
|
|
|
ignoreTarget("*.foo.com.", "CNAME"),
|
|
|
|
|
cname("foo2", "my.test.foo.com."),
|
|
|
|
|
cname("bar", "test.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignoring CNAME=test.foo.com. and add",
|
|
|
|
|
ignoreTarget("*.foo.com.", "CNAME"),
|
|
|
|
|
cname("foo2", "my.test.foo.com."),
|
|
|
|
|
cname("bar", "test.example.com."),
|
|
|
|
|
a("adding", "1.2.3.4"),
|
|
|
|
|
cname("another", "www.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("IGNORE_TARGET function CNAME**",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
cname("foo1", "test.foo.com."),
|
|
|
|
|
cname("foo2", "my.test.foo.com."),
|
|
|
|
|
cname("bar", "test.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignoring CNAME=test.foo.com.",
|
2022-07-15 00:50:10 +08:00
|
|
|
ignoreTarget("**.foo.com.", "CNAME"),
|
2023-05-09 10:29:58 +08:00
|
|
|
cname("bar", "test.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
2023-05-09 10:29:58 +08:00
|
|
|
tc("ignoring CNAME=test.foo.com. and add",
|
|
|
|
|
ignoreTarget("**.foo.com.", "CNAME"),
|
|
|
|
|
cname("bar", "test.example.com."),
|
|
|
|
|
a("adding", "1.2.3.4"),
|
|
|
|
|
cname("another", "www.example.com."),
|
2023-05-25 03:14:36 +08:00
|
|
|
).UnsafeIgnore(),
|
2022-07-15 00:50:10 +08:00
|
|
|
),
|
|
|
|
|
|
2023-05-13 02:43:41 +08:00
|
|
|
// https://github.com/StackExchange/dnscontrol/issues/2285
|
2023-05-09 10:29:58 +08:00
|
|
|
testgroup("IGNORE_TARGET b2285",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
cname("foo", "redact1.acm-validations.aws."),
|
|
|
|
|
cname("bar", "redact2.acm-validations.aws."),
|
|
|
|
|
),
|
|
|
|
|
tc("Add a new record - ignoring test.foo.com.",
|
|
|
|
|
ignoreTarget("**.acm-validations.aws.", "CNAME"),
|
|
|
|
|
).ExpectNoChanges(),
|
2023-10-23 01:56:13 +08:00
|
|
|
),
|
2023-03-26 20:54:45 +08:00
|
|
|
|
2024-02-10 04:55:13 +08:00
|
|
|
// https://github.com/StackExchange/dnscontrol/issues/2822
|
|
|
|
|
// Don't send empty updates.
|
|
|
|
|
// A carefully constructed IGNORE() can ignore all the
|
|
|
|
|
// changes. This resulted in the deSEC provider generating an
|
|
|
|
|
// empty upsert, which the API rejected.
|
|
|
|
|
testgroup("IGNORE everything b2822",
|
|
|
|
|
tc("Create some records",
|
|
|
|
|
a("dyndns-city1", "91.42.1.1"),
|
|
|
|
|
a("dyndns-city2", "91.42.1.2"),
|
|
|
|
|
aaaa("dyndns-city1", "2003:dd:d7ff::fe71:ce77"),
|
|
|
|
|
aaaa("dyndns-city2", "2003:dd:d7ff::fe71:ce78"),
|
|
|
|
|
),
|
|
|
|
|
tc("ignore them all",
|
|
|
|
|
a("dyndns-city1", "91.42.1.1"),
|
|
|
|
|
a("dyndns-city2", "91.42.1.2"),
|
|
|
|
|
aaaa("dyndns-city1", "2003:dd:d7ff::fe71:ce77"),
|
|
|
|
|
aaaa("dyndns-city2", "2003:dd:d7ff::fe71:ce78"),
|
|
|
|
|
ignore("dyndns-city1", "A,AAAA", ""),
|
|
|
|
|
ignore("dyndns-city2", "A,AAAA", ""),
|
|
|
|
|
).ExpectNoChanges().UnsafeIgnore(),
|
|
|
|
|
),
|
|
|
|
|
|
2023-08-30 01:23:04 +08:00
|
|
|
testgroup("structured TXT",
|
|
|
|
|
only("OVH"),
|
|
|
|
|
tc("Create TXT",
|
|
|
|
|
txt("spf", "v=spf1 ip4:99.99.99.99 -all"),
|
|
|
|
|
txt("dkim", "v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzwOUgwGWVIwQG8PBl89O37BdaoqEd/rT6r/Iot4PidtPJkPbVxWRi0mUgduAnsO8zHCz2QKAd5wPe9+l+Stwy6e0h27nAOkI/Edx3qwwWqWSUfwfIBWZG+lrFrhWgSIWCj2/TMkMMzBZJdhVszCzdGQiNPkGvKgjfqW5T0TZt0QIDAQAB"),
|
|
|
|
|
txt("_dmarc", "v=DMARC1; p=none; rua=mailto:dmarc@yourdomain.com")),
|
|
|
|
|
tc("Update TXT",
|
|
|
|
|
txt("spf", "v=spf1 a mx -all"),
|
|
|
|
|
txt("dkim", "v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDk72yk6UML8LGIXFobhvx6UDUntqGzmyie2FLMyrOYk1C7CVYR139VMbO9X1rFvZ8TaPnMCkMbuEGWGgWNc27MLYKfI+wP/SYGjRS98TNl9wXxP8tPfr6id5gks95sEMMaYTu8sctnN6sBOvr4hQ2oipVcBn/oxkrfhqvlcat5gQIDAQAB"),
|
|
|
|
|
txt("_dmarc", "v=DMARC1; p=none; rua=mailto:dmarc@example.com")),
|
|
|
|
|
),
|
|
|
|
|
|
|
|
|
|
testgroup("structured TXT as native records",
|
|
|
|
|
only("OVH"),
|
|
|
|
|
tc("Create native OVH records",
|
|
|
|
|
ovhspf("spf", "v=spf1 ip4:99.99.99.99 -all"),
|
|
|
|
|
ovhdkim("dkim", "v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzwOUgwGWVIwQG8PBl89O37BdaoqEd/rT6r/Iot4PidtPJkPbVxWRi0mUgduAnsO8zHCz2QKAd5wPe9+l+Stwy6e0h27nAOkI/Edx3qwwWqWSUfwfIBWZG+lrFrhWgSIWCj2/TMkMMzBZJdhVszCzdGQiNPkGvKgjfqW5T0TZt0QIDAQAB"),
|
|
|
|
|
ovhdmarc("_dmarc", "v=DMARC1; p=none; rua=mailto:dmarc@yourdomain.com")),
|
|
|
|
|
tc("Update native OVH records",
|
|
|
|
|
ovhspf("spf", "v=spf1 a mx -all"),
|
|
|
|
|
ovhdkim("dkim", "v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDk72yk6UML8LGIXFobhvx6UDUntqGzmyie2FLMyrOYk1C7CVYR139VMbO9X1rFvZ8TaPnMCkMbuEGWGgWNc27MLYKfI+wP/SYGjRS98TNl9wXxP8tPfr6id5gks95sEMMaYTu8sctnN6sBOvr4hQ2oipVcBn/oxkrfhqvlcat5gQIDAQAB"),
|
|
|
|
|
ovhdmarc("_dmarc", "v=DMARC1; p=none; rua=mailto:dmarc@example.com")),
|
|
|
|
|
),
|
|
|
|
|
|
2023-12-20 00:16:32 +08:00
|
|
|
// This MUST be the last test.
|
|
|
|
|
testgroup("final",
|
|
|
|
|
tc("final", txt("final", `TestDNSProviders was successful!`)),
|
|
|
|
|
),
|
|
|
|
|
|
2023-03-26 20:54:45 +08:00
|
|
|
// Narrative: Congrats! You're done! If you've made it this far
|
|
|
|
|
// you're very close to being able to submit your PR. Here's
|
|
|
|
|
// some tips:
|
|
|
|
|
|
|
|
|
|
// 1. Ask for help! It is normal to submit a PR when most (but
|
|
|
|
|
// not all) tests are passing. The community would be glad to
|
|
|
|
|
// help fix the remaining tests.
|
|
|
|
|
// 2. Take a moment to clean up your code. Delete debugging
|
|
|
|
|
// statements, add comments, run "staticcheck".
|
|
|
|
|
// 3. Thing change: Once your PR is accepted, re-run these tests
|
|
|
|
|
// every quarter. There may be library updates, API changes,
|
|
|
|
|
// etc.
|
|
|
|
|
|
2020-03-03 00:25:42 +08:00
|
|
|
}
|
2019-06-27 11:45:34 +08:00
|
|
|
|
2017-09-13 23:49:15 +08:00
|
|
|
return tests
|
2017-03-17 13:42:53 +08:00
|
|
|
}
|
