2016-08-23 08:31:50 +08:00
|
|
|
package bind
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
|
|
|
bind -
|
|
|
|
Generate zonefiles suitiable for BIND.
|
|
|
|
|
|
|
|
The zonefiles are read and written to the directory -bind_dir
|
|
|
|
|
|
|
|
If the old zonefiles are readable, we read them to determine
|
|
|
|
if an update is actually needed. The old zonefile is also used
|
|
|
|
as the basis for generating the new SOA serial number.
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
import (
|
2017-03-15 05:47:40 +08:00
|
|
|
"bytes"
|
2016-08-23 08:31:50 +08:00
|
|
|
"encoding/json"
|
|
|
|
"fmt"
|
|
|
|
"log"
|
|
|
|
"os"
|
|
|
|
"path/filepath"
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
"github.com/miekg/dns"
|
2018-02-16 01:02:50 +08:00
|
|
|
"github.com/pkg/errors"
|
2016-08-23 08:31:50 +08:00
|
|
|
|
|
|
|
"github.com/StackExchange/dnscontrol/models"
|
|
|
|
"github.com/StackExchange/dnscontrol/providers"
|
|
|
|
"github.com/StackExchange/dnscontrol/providers/diff"
|
|
|
|
)
|
|
|
|
|
2018-01-05 08:19:35 +08:00
|
|
|
var features = providers.DocumentationNotes{
|
|
|
|
providers.CanUseCAA: providers.Can(),
|
|
|
|
providers.CanUsePTR: providers.Can(),
|
|
|
|
providers.CanUseSRV: providers.Can(),
|
|
|
|
providers.CanUseTLSA: providers.Can(),
|
|
|
|
providers.CanUseTXTMulti: providers.Can(),
|
|
|
|
providers.CantUseNOPURGE: providers.Cannot(),
|
2017-09-15 04:13:17 +08:00
|
|
|
providers.DocCreateDomains: providers.Can("Driver just maintains list of zone files. It should automatically add missing ones."),
|
2018-01-05 08:19:35 +08:00
|
|
|
providers.DocDualHost: providers.Can(),
|
2017-09-15 04:13:17 +08:00
|
|
|
providers.DocOfficiallySupported: providers.Can(),
|
|
|
|
}
|
|
|
|
|
2017-07-06 22:24:21 +08:00
|
|
|
func initBind(config map[string]string, providermeta json.RawMessage) (providers.DNSServiceProvider, error) {
|
|
|
|
// config -- the key/values from creds.json
|
|
|
|
// meta -- the json blob from NewReq('name', 'TYPE', meta)
|
2017-09-13 22:00:41 +08:00
|
|
|
api := &Bind{
|
|
|
|
directory: config["directory"],
|
|
|
|
}
|
|
|
|
if api.directory == "" {
|
|
|
|
api.directory = "zones"
|
|
|
|
}
|
2017-07-06 22:24:21 +08:00
|
|
|
if len(providermeta) != 0 {
|
|
|
|
err := json.Unmarshal(providermeta, api)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
api.nameservers = models.StringsToNameservers(api.DefaultNS)
|
|
|
|
return api, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func init() {
|
2018-01-05 08:19:35 +08:00
|
|
|
providers.RegisterDomainServiceProviderType("BIND", initBind, features)
|
2017-07-06 22:24:21 +08:00
|
|
|
}
|
|
|
|
|
2018-01-10 01:53:16 +08:00
|
|
|
// SoaInfo contains the parts of a SOA rtype.
|
2016-08-23 08:31:50 +08:00
|
|
|
type SoaInfo struct {
|
|
|
|
Ns string `json:"master"`
|
|
|
|
Mbox string `json:"mbox"`
|
|
|
|
Serial uint32 `json:"serial"`
|
|
|
|
Refresh uint32 `json:"refresh"`
|
|
|
|
Retry uint32 `json:"retry"`
|
|
|
|
Expire uint32 `json:"expire"`
|
|
|
|
Minttl uint32 `json:"minttl"`
|
|
|
|
}
|
|
|
|
|
|
|
|
func (s SoaInfo) String() string {
|
|
|
|
return fmt.Sprintf("%s %s %d %d %d %d %d", s.Ns, s.Mbox, s.Serial, s.Refresh, s.Retry, s.Expire, s.Minttl)
|
|
|
|
}
|
|
|
|
|
2018-01-10 01:53:16 +08:00
|
|
|
// Bind is the provider handle for the Bind driver.
|
2016-08-23 08:31:50 +08:00
|
|
|
type Bind struct {
|
2017-03-23 00:38:08 +08:00
|
|
|
DefaultNS []string `json:"default_ns"`
|
|
|
|
DefaultSoa SoaInfo `json:"default_soa"`
|
|
|
|
nameservers []*models.Nameserver
|
2017-09-13 22:00:41 +08:00
|
|
|
directory string
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
|
2018-01-10 01:53:16 +08:00
|
|
|
// var bindSkeletin = flag.String("bind_skeletin", "skeletin/master/var/named/chroot/var/named/master", "")
|
2016-08-23 08:31:50 +08:00
|
|
|
|
2017-03-23 00:38:08 +08:00
|
|
|
func rrToRecord(rr dns.RR, origin string, replaceSerial uint32) (models.RecordConfig, uint32) {
|
2016-08-23 08:31:50 +08:00
|
|
|
// Convert's dns.RR into our native data type (models.RecordConfig).
|
|
|
|
// Records are translated directly with no changes.
|
|
|
|
// If it is an SOA for the apex domain and
|
2017-03-23 00:38:08 +08:00
|
|
|
// replaceSerial != 0, change the serial to replaceSerial.
|
2016-08-23 08:31:50 +08:00
|
|
|
// WARNING(tlim): This assumes SOAs do not have serial=0.
|
|
|
|
// If one is found, we replace it with serial=1.
|
2018-01-10 01:53:16 +08:00
|
|
|
var oldSerial, newSerial uint32
|
2016-08-23 08:31:50 +08:00
|
|
|
header := rr.Header()
|
2018-02-16 01:02:50 +08:00
|
|
|
rc := models.RecordConfig{
|
|
|
|
Type: dns.TypeToString[header.Rrtype],
|
|
|
|
TTL: header.Ttl,
|
|
|
|
}
|
|
|
|
rc.SetLabelFromFQDN(strings.TrimSuffix(header.Name, "."), origin)
|
2017-08-05 03:26:29 +08:00
|
|
|
switch v := rr.(type) { // #rtype_variations
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.A:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(v.A.String()))
|
2017-01-14 05:29:38 +08:00
|
|
|
case *dns.AAAA:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(v.AAAA.String()))
|
2017-07-26 02:59:40 +08:00
|
|
|
case *dns.CAA:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTargetCAA(v.Flag, v.Tag, v.Value))
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.CNAME:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(v.Target))
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.MX:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTargetMX(v.Preference, v.Mx))
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.NS:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(v.Ns))
|
2017-07-06 22:18:15 +08:00
|
|
|
case *dns.PTR:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(v.Ptr))
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.SOA:
|
2018-01-10 01:53:16 +08:00
|
|
|
oldSerial = v.Serial
|
|
|
|
if oldSerial == 0 {
|
2016-08-23 08:31:50 +08:00
|
|
|
// For SOA records, we never return a 0 serial number.
|
2018-01-10 01:53:16 +08:00
|
|
|
oldSerial = 1
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
2018-01-10 01:53:16 +08:00
|
|
|
newSerial = v.Serial
|
2018-02-16 01:02:50 +08:00
|
|
|
//if (dnsutil.TrimDomainName(rc.Name, origin+".") == "@") && replaceSerial != 0 {
|
2018-03-20 05:18:58 +08:00
|
|
|
if rc.GetLabel() == "@" && replaceSerial != 0 {
|
2018-01-10 01:53:16 +08:00
|
|
|
newSerial = replaceSerial
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTarget(
|
|
|
|
fmt.Sprintf("%v %v %v %v %v %v %v",
|
|
|
|
v.Ns, v.Mbox, newSerial, v.Refresh, v.Retry, v.Expire, v.Minttl),
|
|
|
|
))
|
|
|
|
// FIXME(tlim): SOA should be handled by splitting out the fields.
|
2017-07-20 03:53:40 +08:00
|
|
|
case *dns.SRV:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTargetSRV(v.Priority, v.Weight, v.Port, v.Target))
|
2017-09-15 21:03:29 +08:00
|
|
|
case *dns.TLSA:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTargetTLSA(v.Usage, v.Selector, v.MatchingType, v.Certificate))
|
2016-08-23 08:31:50 +08:00
|
|
|
case *dns.TXT:
|
2018-02-16 01:02:50 +08:00
|
|
|
panicInvalid(rc.SetTargetTXTs(v.Txt))
|
2016-08-23 08:31:50 +08:00
|
|
|
default:
|
2017-07-20 03:53:40 +08:00
|
|
|
log.Fatalf("rrToRecord: Unimplemented zone record type=%s (%v)\n", rc.Type, rr)
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
2018-01-10 01:53:16 +08:00
|
|
|
return rc, oldSerial
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
|
2018-02-16 01:02:50 +08:00
|
|
|
func panicInvalid(err error) {
|
|
|
|
if err != nil {
|
|
|
|
panic(errors.Wrap(err, "unparsable record received from BIND"))
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-08-23 08:31:50 +08:00
|
|
|
func makeDefaultSOA(info SoaInfo, origin string) *models.RecordConfig {
|
|
|
|
// Make a default SOA record in case one isn't found:
|
2017-03-23 00:38:08 +08:00
|
|
|
soaRec := models.RecordConfig{
|
2016-08-23 08:31:50 +08:00
|
|
|
Type: "SOA",
|
|
|
|
}
|
2018-02-16 01:02:50 +08:00
|
|
|
soaRec.SetLabel("@", origin)
|
2016-08-23 08:31:50 +08:00
|
|
|
if len(info.Ns) == 0 {
|
2017-07-20 03:53:40 +08:00
|
|
|
info.Ns = "DEFAULT_NOT_SET."
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
if len(info.Mbox) == 0 {
|
2017-07-20 03:53:40 +08:00
|
|
|
info.Mbox = "DEFAULT_NOT_SET."
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
if info.Serial == 0 {
|
|
|
|
info.Serial = 1
|
|
|
|
}
|
|
|
|
if info.Refresh == 0 {
|
|
|
|
info.Refresh = 3600
|
|
|
|
}
|
|
|
|
if info.Retry == 0 {
|
|
|
|
info.Retry = 600
|
|
|
|
}
|
|
|
|
if info.Expire == 0 {
|
|
|
|
info.Expire = 604800
|
|
|
|
}
|
|
|
|
if info.Minttl == 0 {
|
|
|
|
info.Minttl = 1440
|
|
|
|
}
|
2018-02-16 01:02:50 +08:00
|
|
|
soaRec.SetTarget(info.String())
|
2016-08-23 08:31:50 +08:00
|
|
|
|
2017-03-23 00:38:08 +08:00
|
|
|
return &soaRec
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
|
2018-01-10 01:53:16 +08:00
|
|
|
// GetNameservers returns the nameservers for a domain.
|
2016-12-17 04:10:27 +08:00
|
|
|
func (c *Bind) GetNameservers(string) ([]*models.Nameserver, error) {
|
|
|
|
return c.nameservers, nil
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
|
2018-01-10 01:53:16 +08:00
|
|
|
// GetDomainCorrections returns a list of corrections to update a domain.
|
2016-08-23 08:31:50 +08:00
|
|
|
func (c *Bind) GetDomainCorrections(dc *models.DomainConfig) ([]*models.Correction, error) {
|
2017-03-23 00:38:08 +08:00
|
|
|
dc.Punycode()
|
2016-08-23 08:31:50 +08:00
|
|
|
// Phase 1: Copy everything to []*models.RecordConfig:
|
|
|
|
// expectedRecords < dc.Records[i]
|
|
|
|
// foundRecords < zonefile
|
|
|
|
//
|
|
|
|
// Phase 2: Do any manipulations:
|
|
|
|
// add NS
|
|
|
|
// manipulate SOA
|
|
|
|
//
|
|
|
|
// Phase 3: Convert to []diff.Records and compare:
|
|
|
|
// expectedDiffRecords < expectedRecords
|
|
|
|
// foundDiffRecords < foundRecords
|
|
|
|
// diff.Inc...(foundDiffRecords, expectedDiffRecords )
|
|
|
|
|
|
|
|
// Default SOA record. If we see one in the zone, this will be replaced.
|
2017-03-23 00:38:08 +08:00
|
|
|
soaRec := makeDefaultSOA(c.DefaultSoa, dc.Name)
|
2016-08-23 08:31:50 +08:00
|
|
|
|
|
|
|
// Read foundRecords:
|
|
|
|
foundRecords := make([]*models.RecordConfig, 0)
|
2017-03-23 00:38:08 +08:00
|
|
|
var oldSerial, newSerial uint32
|
2018-12-11 03:05:01 +08:00
|
|
|
|
|
|
|
if _, err := os.Stat(c.directory); os.IsNotExist(err) {
|
|
|
|
fmt.Printf("\nWARNING: BIND directory %q does not exist!\n", c.directory)
|
|
|
|
}
|
|
|
|
|
2017-09-13 22:00:41 +08:00
|
|
|
zonefile := filepath.Join(c.directory, strings.Replace(strings.ToLower(dc.Name), "/", "_", -1)+".zone")
|
2017-03-23 00:38:08 +08:00
|
|
|
foundFH, err := os.Open(zonefile)
|
|
|
|
zoneFileFound := err == nil
|
2016-08-23 08:31:50 +08:00
|
|
|
if err != nil && !os.IsNotExist(os.ErrNotExist) {
|
|
|
|
// Don't whine if the file doesn't exist. However all other
|
|
|
|
// errors will be reported.
|
|
|
|
fmt.Printf("Could not read zonefile: %v\n", err)
|
|
|
|
} else {
|
2017-03-23 00:38:08 +08:00
|
|
|
for x := range dns.ParseZone(foundFH, dc.Name, zonefile) {
|
2016-08-23 08:31:50 +08:00
|
|
|
if x.Error != nil {
|
|
|
|
log.Println("Error in zonefile:", x.Error)
|
|
|
|
} else {
|
2017-03-23 00:38:08 +08:00
|
|
|
rec, serial := rrToRecord(x.RR, dc.Name, oldSerial)
|
|
|
|
if serial != 0 && oldSerial != 0 {
|
2016-08-23 08:31:50 +08:00
|
|
|
log.Fatalf("Multiple SOA records in zonefile: %v\n", zonefile)
|
|
|
|
}
|
|
|
|
if serial != 0 {
|
|
|
|
// This was an SOA record. Update the serial.
|
2017-03-23 00:38:08 +08:00
|
|
|
oldSerial = serial
|
2018-01-10 01:53:16 +08:00
|
|
|
newSerial = generateSerial(oldSerial)
|
2016-08-23 08:31:50 +08:00
|
|
|
// Regenerate with new serial:
|
2017-03-23 00:38:08 +08:00
|
|
|
*soaRec, _ = rrToRecord(x.RR, dc.Name, newSerial)
|
|
|
|
rec = *soaRec
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
foundRecords = append(foundRecords, &rec)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-01-12 03:38:07 +08:00
|
|
|
// Add SOA record to expected set:
|
2016-08-23 08:31:50 +08:00
|
|
|
if !dc.HasRecordTypeName("SOA", "@") {
|
2017-03-23 00:38:08 +08:00
|
|
|
dc.Records = append(dc.Records, soaRec)
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
|
2017-11-08 06:12:17 +08:00
|
|
|
// Normalize
|
2018-01-05 08:19:35 +08:00
|
|
|
models.PostProcessRecords(foundRecords)
|
2017-11-08 06:12:17 +08:00
|
|
|
|
2017-01-12 03:38:07 +08:00
|
|
|
differ := diff.New(dc)
|
|
|
|
_, create, del, mod := differ.IncrementalDiff(foundRecords)
|
2016-08-23 08:31:50 +08:00
|
|
|
|
2017-03-15 05:47:40 +08:00
|
|
|
buf := &bytes.Buffer{}
|
2016-08-23 08:31:50 +08:00
|
|
|
// Print a list of changes. Generate an actual change that is the zone
|
|
|
|
changes := false
|
|
|
|
for _, i := range create {
|
|
|
|
changes = true
|
2017-03-23 00:38:08 +08:00
|
|
|
if zoneFileFound {
|
2017-03-15 05:47:40 +08:00
|
|
|
fmt.Fprintln(buf, i)
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
for _, i := range del {
|
|
|
|
changes = true
|
2017-03-23 00:38:08 +08:00
|
|
|
if zoneFileFound {
|
2017-03-15 05:47:40 +08:00
|
|
|
fmt.Fprintln(buf, i)
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
for _, i := range mod {
|
|
|
|
changes = true
|
2017-03-23 00:38:08 +08:00
|
|
|
if zoneFileFound {
|
2017-03-15 05:47:40 +08:00
|
|
|
fmt.Fprintln(buf, i)
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
|
|
|
}
|
2017-03-15 05:47:40 +08:00
|
|
|
msg := fmt.Sprintf("GENERATE_ZONEFILE: %s\n", dc.Name)
|
2017-03-23 00:38:08 +08:00
|
|
|
if !zoneFileFound {
|
2017-03-15 05:47:40 +08:00
|
|
|
msg = msg + fmt.Sprintf(" (%d records)\n", len(create))
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
2017-03-15 05:47:40 +08:00
|
|
|
msg += buf.String()
|
2016-08-23 08:31:50 +08:00
|
|
|
corrections := []*models.Correction{}
|
|
|
|
if changes {
|
|
|
|
corrections = append(corrections,
|
|
|
|
&models.Correction{
|
|
|
|
Msg: msg,
|
|
|
|
F: func() error {
|
|
|
|
fmt.Printf("CREATING ZONEFILE: %v\n", zonefile)
|
|
|
|
zf, err := os.Create(zonefile)
|
|
|
|
if err != nil {
|
|
|
|
log.Fatalf("Could not create zonefile: %v", err)
|
|
|
|
}
|
|
|
|
zonefilerecords := make([]dns.RR, 0, len(dc.Records))
|
|
|
|
for _, r := range dc.Records {
|
2017-06-17 23:00:12 +08:00
|
|
|
zonefilerecords = append(zonefilerecords, r.ToRR())
|
2016-08-23 08:31:50 +08:00
|
|
|
}
|
2017-04-30 21:28:35 +08:00
|
|
|
err = WriteZoneFile(zf, zonefilerecords, dc.Name)
|
2016-08-23 08:31:50 +08:00
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
log.Fatalf("WriteZoneFile error: %v\n", err)
|
|
|
|
}
|
|
|
|
err = zf.Close()
|
|
|
|
if err != nil {
|
|
|
|
log.Fatalf("Closing: %v", err)
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
},
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
return corrections, nil
|
|
|
|
}
|